Previous Page | Next Page

  1. Introduction
  2. Windows 2000 Professional
  3. Windows 2000 Server
  4. Windows 2000 Advanced Server
  5. Windows 2000 Datacenter Server
  6. Application Support
  7. System Operation
  8. Disks and Volumes
  9. Filesystems
  10. Configuration Files
  11. Security
  12. Network Support
  13. Access Management
  14. Processes
  15. AD Structure
  16. AD Objects
  17. AD Object Naming
  18. AD Schema
  19. AD Sites
  20. Domains
  21. AD Functions
  22. AD Replication
  23. DNS
  24. AD Security
  25. AD Installation
  26. AD Configuration
  27. AD Performance
  28. Installation
  29. Installation Options
  30. Unattended Installation
  31. Software Distribution
  32. Remote Installation Service
  33. Language
  34. Accessibility
  35. File Attributes
  37. Distributed File System
  38. Control Panel
  39. Active Directory Tools
  40. Computer Management Console Tools
  41. MMC Tools
  42. Network Tools
  43. Network Monitor
  44. System Performance Monitoring
  45. Tools
  46. Managing Services
  47. Connections
  48. TCP/IP
  49. DHCP
  50. Printing
  51. Routing
  52. IPSec
  53. ICS
  54. Fault Tolerance
  55. Backup
  56. System Failure
  57. Services
  58. Remote Access
  59. WINS
  60. IIS
  61. Certificate Server
  62. Terminal Services
  63. Web Services
  64. Authentication
  65. Accounts
  66. Permissions
  67. Groups
  68. User Rights and Auditing
  69. Auditing
  70. User Profiles
  71. Policies
  72. Group Policies
  73. Miscellaneous
  74. Terms
  75. Credits

Active Directory Installation

Active Directory must be installed on Windows 2000 servers that are to be Windows 2000 domain controllers. It can be installed on Windows 2000:

  • Server
  • Advanced Server
  • Datacenter Server.

When Active Directory is installed on a computer, that computer is promoted by Active Directory to a domain controller. If the computer is the first domain controller, it creates an Active Directory database. If it is not the first, it gets a read and write copy of the AD database.


  • The computer must be Windows 2000 Server, Advanced Server or Datacenter Server.
  • At least one volume on the computer must be formatted with NTFS.
  • DNS must be active on the network prior to AD installation or be installed during AD installation. DNS must support SRV records and be dynamic.
  • The computer must have IP protocol installed and have a static IP address.
  • The Kerberos v5 authentication protocol must be installed.
  • Time and zone information must be correct. Simple Network Time Protocol (SNTP) (RFC 1769) synchronizes time on network computers (nodes)

Installation Process

You can install Active Directory by selecting "Start", "Run", and typing "Dcpromo.exe" in the text box or follow the following selections:

  1. Click "Administrative Tools".
  2. Select "Configure Your Server".
  3. Select "Active Directory Installation Wizard".

Directory Service Client

On non Windows 2000 systems, the Directory Service Client can be installed which will allow those systems to:

  • Search the Active Directory.
  • Change passwords on domain controllers.
  • Use D6 shares that are fault tolerant.

Internet Explorer 4.01 or later must be installed on any system that the Directory Service Client is to be installed on in order for the install wizard to run. To install Directory Service Client:

  1. Place the Windows 2000 CD in the CDROM drive.
  2. Indicate that you do not want to upgrade Windows and close the dialog box.
  3. Open a DOS prompt and change drives to the drive letter of the CDROM drive,
  4. Type "cd \clients\win9x" and type "dsclient".
  5. Follow the wizard prompts to complete the installation.


DNS is required to use Active Directory since clients use DNS to locate Active Directory controllers. Servers and client computers register their names and IP addresses with the DNS server. The DNS server must support Service Resource Records (SRVs) according to RFC 2052 and dynamic update protocol according to RFC 2136. DNS can be installed with the Active Directory server or on a separate DNS server.

Active Directory Installation Effects

  • The server becomes a domain controller.
  • A new Windows 2000 domain is created.
  • A new domain tree and forest is created.

In each child domain, Active Directory must be installed on the first domain controller.

Verification of Active Directory

Select "Start", "Programs", "Administrative Tools", "Active Directory Users and Computers" and click the + next to the domain. Highlight the domain controllers folder, and the computer Active Directory was installed on should appear in the right pane.