Configure and manage Active Directory - Administering Windows Server 2012 R2

Information Technology Reference

In-Depth Information

rODC prerequisites

The prerequisites for installing an RODC in your AD DS domain are the following:

■ Forest functional level of Windows Server 2003 or higher.

■ Domain and forest prep steps ( once only per domain or forest).

adprep /forestprep

adprep /domainprep /gpprep

adprep /rodcprep

■ AD DS installed.

■ At least one writable domain controller running Windows Server 2008 or higher. The

domain controller must also be a DNS server and have a registered name server (NS)

resource record.

Installing a domain controller from media

When deploying a domain controller at a remote location, you can speed up the process

of initial replication by installing the AD DS database from disk: IFM. When combined with

staging, IFM enables the deployment of a remote RODC possible even over a slow link and

without any specialized knowledge at the remote site.

To create the media, use the Ntdsutil.exe ifm command. You can also create the installation

media by restoring a critical-volume backup of a domain controller in the same domain. The

requirements for IFM are these:

■ You can't use IFM to create the first domain controller in a domain; there must be a

Windows Server 2008 or later domain controller.

■ The IFM media must be taken from the same domain as the new domain controller.

■ If you're creating a global catalog server, the IFM must be from a domain controller

that is also a global catalog.

■ To install a domain controller that is also a DNS server, the IFM must be from a domain

controller that is also a DNS server.

■ To create installation media for a writable domain controller, you must create the IFM

on a writeable domain controller that is running Windows Server 2008 or later.

■ To create installation media for an RODC, you can create the IFM on either a writeable

domain controller or an RODC.

■ To create installation media that includes SYSVOL, you must create the IFM on a

domain controller running Windows Server 2008 Service Pack 2 or later.

To create the installation media, open a command shell or Windows PowerShell window

with Run As Administrator. In the shell, use the following commands to create the media:

Ntdsutil

activate instance ntds

ifm

create [Sysvol] <full/RODC> <pathtomediafolder>

Search WWH ::

Custom Search

Home