Installing Active Directory Domain Controller on Windows Server 2016

Staring with Windows Server 2012, Microsoft discontinues Active Directory Domain Services Installation Wizard (dcpromo.exe) to install Active Directory Domain Controller. We can using Server Manager to install the Active Directory Domain Service (AD DS) role and run the Active Directory Domain Services Configuration Wizard to install Active Directory Domain Controller on Windows Server 2016. In this article, we are Installing Active Directory Domain Controller on Windows Server 2016.

Before we begin the installation, let’s make sure that the TCP/IP and DNS Server addresses are configured properly.  Be sure to specify the static IP address for the server.


This is the First Domain Controller / DNS Server, the installation process will install the DNS service automatically and update the primary DNS entry for you.  

To Configure KTM-2k16-DC1 as a Domain Controller and DNS Server:

1. Open Server Manager Dashboard screen, click Manage and then click Add Roles and Features.

2. On the Before you begin page, click Next.

3. On the Select installation type page, select Role-based or features-based installation and click Next.

4. On the Select destination server page, select a server from the server pool and click Next.

5. In the Select server roles page, select Active Directory Domain Services and click Add Features when prompted, and then click Next.

6. In the Select features page, click Next.

7. In the Active Directory Domain Services page, click Next.

8. In the Confirm installation selections page, click Install. Wait for the installation to complete.

9. In the Installation progress page, click the blue Promote this server to a domain controller.

Related Post  Best Practices on Setting up Hyper-V Cluster Networks in Windows Server 2016

10. In the Deployment Configuration page, select Add a new forest and in the Root domain name field, type and then click Next.

11. In the Domain Controller Options page, leave the default values and type DSRM password and click Next.

12. In the DNS Option page, click Next.

13. In the Additional Option page, accept default NetBIOS domain name and click Next.

14. On the Paths page, click Next.

15. In the Review Options page, Review your selections and click Next.

16. In the Prerequisites Check page, verify All prerequisite checks passed successfully. Click Install to begin installation. Allow the Installation to complete.

18. After Restart the server verify an Active Directory Installation:

Open Server Manger Dashboard, click Tools and select Active Directory Users and Computers. Verify that the new Active Directory Domain has been created and the computer on which we installed Active Directory is listed as a Domain Controller for that domain.

TIP: If the Active Directory domain you created isn’t listed in this dialog box, your Active Directory Installation was not successful. You’ll probably have to reinstall Active Directory.

19. Open DNS Manager to verify that four folders should be displayed: _msdcs, _sites, _tcp, _udp.

20. Open the Command prompt, type net share and Press Enter. Verify NETLOGON and SYSVOLfolder.

21. Open DNS Manager to configure Reverse Lookup Zones:

In the console tree of DNS Manager, expand KTM-2k16-DC1, and click Reverse Lookup Zones. Right-click Reverse Lookup Zones, and then click New Zone.

Open the Command prompt, type nslookup to verify the DNS Configuration.

Related Post  VM Load Balancing in Windows Server 2016

Before configure Reverse Lookup Zones:

22. On the Welcome to the New Zone Wizard page, click Next.

23. On the Zone Type page, select Primary Zone, and then click Next.

24. On the Active Directory Zone Replication Scope, select To all DNS servers running on domain controllers in this domain: and click Next.

25. On the Reverse Lookup Zone Name page, make sure IPv4 Reverse Lookup Zone is selected, and then click Next.

26. On the Reverse Lookup Zone Name page, in the Network ID field, type the start of the subnet range of your network (in this case, 192.168.xx), and then click Next.

27. On the Dynamic Update page, select Allow only secure dynamic updates (recommended for Active Directory) and click Next.

28. On the Completing the New Zone Wizard page, click Finish.

29. Expand Reverse Lookup Zones, right click on, and select New Pointer (PTR), type the IP Address of the KTM-2K16-DC1 (Domain Controller), click Browse, then select KTM-2K16-DC1 and click OK twice.

30. After Configured Reverse Lookup Zones at first time, Open Command Prompt, type nslookup to verify the DNS configuration.

31. Open Active Directory Sites and Services console, verify Global Catalog check box is selected.




Installing Active Directory Domain Controllers on Windows Server 2016 is same as installing Active Directory Domain Controllers on Windows Server 2012 R2. I hope this article help during deploying domain controller on Windows Server 2016.






Related Post  Cluster OS Rolling Upgrades in Windows Server 2016

Leave a Reply

Your email address will not be published. Required fields are marked *