How to Configure DNS Reverse Lookup Zone in Windows Server 2012

Hi Community,

before we start with DHCP let us complette the DNS config by creating a Reverse Lookup Zone on our current DNS server.

1. The first thing we have to do is to open the “Server Manager” and than click “DNS” under “Tools”.

2. In the DNS MMC we click right on “Revers Loopup Zone” and select “New Zone…”.

3. Now the configuration wizzard starts. Klick “Next” to beginn.

4. Now you can select the zone type. In our case we select “Primary zone” and we want to store the information in Active Directory. So please select also “Store the zone in Active Directory”.

To learn more about DNS, feel free to visite Wiki page http://en.wikipedia.org/wiki/Domain_Name_System

5. Now we configure Zone replication. To prevent us from to much network traffic because of DNS replication, we do not replicate the zone over the complette forest, we replicate only in this domain.

6. After this you have to select the IP Version that will be handled by this zone.

7. Then enter the Network ID the musst be identified.

8. Now you have to set Dynamic Update for DNS entry’s. In a pure Windows Server DNS environment you should select “Allow only secure dynamic updates” otherwise you should select “Do not allow dynamic updates”. “Allow both nonsecure and secure dynamic updates” could be a entrace for Haks (DNS spoofing).

9. Now you get a short summary and you can create the zone by clicking “Finish”.

10. If all works fine you should see the new zone in you DNS MMC.

How to configure the first Domain Controller in a Windows Server 2012 Domain incl. DNS

Hello Community,

today I will explain how to configure the first Domain Controller in new Windows Server 2012 forest in Windows Server 2012 pure mode.

1. Open the Server Manager and klick on “Add roles and features”

2. The default page will open, click “Next”.

3. select “Role-based or feature-based installation” and click “Next”.

4. Select “Select a server from the server pool” and than select you local system. In my case FLO-SVR-DC01.

5. Now you can select the roles to install. Befor you go on with selecting roles please check if:

– you configured a static IP, Default Gateway, Subnet and DNS on the Network Interface to you client LAN

– Networkcable is connected to your switch

– you have no other Domaincontroller, DHCP- or DNS Server in your network

6. Please select for the first DC

– Active Directory Domain Services

– DNS Server

For every option Windows will ask you to install the “Remote Server Administration Tools” (RSAT). DO THIS otherwise it will be harder to finish the configuration. With later installations you can try to administrate the systems from remote or PowerShell.

7. Now the menu should look nearly like this. If this is the fact, you can click “Next”.

8. Now you have the “Feature selection”. You don’t need to install more features at the moment. Click “Next”

9. Now the Wizzard to configure ADDS starts.

10. Now you can select which operation the DC will perform. We plan to create a new forrest, so please click on “Add a new forest”.

11. Than typ in the name of your Root domain that you have planed e.g. local.company.com. After this click “Next”.

12. In the next Step you have have to select Forest function and domain level. You have to be carefull by selecting the level because some Active Directory Integrated Software e.g. some LDAP connectors, cannot work with Windows Server 2012 Domain Level. So please contact your software vendors first.

Create and set the Directory Services Restore Mode Password. Please also notice it down because you need it for a DC disaster recovery.

After this you can click next.

13. Normaly you could select in this Wizzard a DNS delegation but currently we have no DNS Server in this domain, so we have no option to delegate.

14. Now the NetBIOS Name will created. You are able to change it but you don’t have to do it.

15. After this you can set the Database folder, Log files path and SYSVOLL folder for ADDS Service. You can change the default path but I wouldn’t do this, you only force problems with this.

16. At next you get a install summary and you are able to view the PowerShell Script the will be executed (I love this option!!)

17. After this the Wizzard runs a validation check and when all is ok you can install ADDS.

18. Service installs.

19. After installation is finished you should see ADDS and DNS in your Server Manager

20. Please also look if the DNS Forward lookup Zone for your domain was created.

For this click on “Tools” in the the upper right Corner and select “DNS”.

21. Under Forward Lookup Zones you should the your Domain and there should be a NS, SOA and two A records for your DC.

22. Go back to Server Manager and select “Active Directory Users and Computers” under “Tools”

There your Domain should be listed and in “Domain Controllers” should be the “Computer Account” for your DC

23. Congratulations you installed your DC. In the next Blogs I will explain you how to install and configure DHCP and how to create a Reverse Lookup Zone in DNS.

 

 

Free “MCSA: Windows Server 2012” preparation materials

For Windows Server 2012 R2 Exam pratice klicke here.

 

Hi Community,

like for the MCSE: Private Cloud, I collected some free learning materials for the MCSA: Windows Server 2012. I will update this blog as soon as new materials are available.

———-

Free Practice Questions for the Exams

http://www.accelerated-ideas.com/aiMExamsChoose.aspx#mcse

———-

Jumpstarts Videos:

Windows Server 2012

Windows Server 2012 Jumpstart 1

Windows Server 2012 Jumpstart 2a

Windows Server 2012 Jumpstart 2b

Windows Server 2012 Jumpstart 3a

Windows Server 2012 Jumpstart 3b

Windows Server 2012 Jumpstart 4

Windows Server 2012 Jumpstart 5a

Windows Server 2012 Jumpstart 5b

Windows Server 2012 Jumpstart 6a

Windows Server 2012 Jumpstart 6b

Windows Server 2012 Jumpstart 7

Windows Server 2012 Jumpstart 8

Windows Server 2012 Jump Start! Upgrade Skills for Exam 70-417

Windows Server 2012 Jump Start! Upgrade Skills for Exam 70-417

———-

free eBooks:

Introducing Windows Server 2012 (RTM Edition)

Windows Server 2012 Compatibility Cookbook

FREE eBook Chapter: Migrating and Upgrading Physical and Virtual Servers to Hyper-V in Windows Server 2012 <- Keith Mayers Blog

Free Ebook :- The Hands-on Guide: Understanding Hyper-V in Windows Server 2012 <- Lai Yoong Seng

Guide To Windows Server 2012 <- The Register

———-

Free Training Videos: 

http://www.trainsignal.com/blog/90-days <- Trainsignal

TechED 2013 Exam Prep: 70-410 and 70-417 – MCSA: Windows Server 2012

TechED 2013 Exam Prep: 70-411 and 70-417 – MCSA: Windows Server 2012

TechED Exam Prep: 70-412 and 70-417 – MCSA: Windows Server 2012

TechED Exam prep: 70-413 and 70-414 – MCSE: Server Infrastructure

———-

Labs:

http://technet.microsoft.com/en-us/windowsserver/hh968267.aspx

Build Your Lab on Windows Server 2012 <- Keith Mayers Blog

———-

Trial Download:

Windows Server 2012

Hyper-V Server 2012

———-

Microsoft Virtual Academy (free courses): 

Windows Server 2012: Technical Overview

Windows Server 2012: Server Virtualization

Windows Server 2012: Management & Automation

Windows Server 2012: Storage

Windows Server 2012: Networking

Windows Server 2012: Identity and Access

Windows Server 2012: Web & Application Platform

Windows Server 2012: Virtual Desktop Infrastructure

———-

IT Camp on Demand

Hyper-V shared nothing Live Migration

———-

Evaluation Guide:

Windows Server 2012 Evaluation Guide

Build your own Windows Server 2012 server lab in the Cloud … for FREE! <- Keith Mayers Blog

———-

Free Study Guide: 

Windows Server 2012 “Early Experts” Challenge – Exam 70-410 – Installing Active Directory <- Keith Mayers Blog

Windows Server 2012 “Early Expert” Challenge – Exam 70-410 – Installing and Configuring <- Keith Mayers Blog

Windows Server 2012 “Early Experts” Challenge – Exam 70-410 – NIC Teaming <- Keith Mayers Blog

Windows Server 2012 “Early Experts” Challenge – Exam 70-410 – Storage Spaces <- Keith Mayers Blog

Windows Server 2012 “Early Experts” Challenge – Exam 70-410 – Managing Server Roles and Features <- Keith Mayers Blog

Windows Server 2012 “Early Experts” Challenge – Exam 70-410 – Create and Manage Group Policy <- Keith Mayers Blog

Windows Server 2012 “Early Experts” Challenge – Exam 70-410 – Managing Servers with PowerShell 3.0 <- Keith Mayers Blog

Windows Server 2012 “Early Experts” Challenge – Explorer Quest <- Keith Mayers Blog

IPv6 Bootcamp – Windows Server 2012 “Early Experts” Challenge – Exam 70-410 <- Keith Mayers Blog

Configuring DHCP in Windows Server 2012 – “Early Experts” Challenge – Exam 70-410 <- Keith Mayers Blog

Configuring Hyper-V Virtual Networking in Windows Server 2012 – “Early Experts” Challenge – Exam 70-410 and 70-417 <- Keith Mayers Blog

Configuring Hyper-V Virtual Machine Storage in Windows Server 2012 – “Early Experts” Challenge – Exam 70-410 and 70-417 <- Keith Mayers Blog

My thoughts on 70-410 <- Michael Benders Blog

 

PowerShell 3.0 (german only):

Windows PowerShell 3.0 für Einsteiger – Teil 1

Windows PowerShell 3.0 für Einsteiger – Teil 2

Windows PowerShell 3.0 für Einsteiger – Teil 3

———-

Other Collections:

Windows Server 2012 Early Experts – 70-417 – Resources for Preparation

———-

Study Groups: 

Windows Server 2012 “Early Experts” Study Group on LinkedIn

———-

Webpages:

90daystoMCSA.com

———-

Twitter Hashtags:

#90days2MCSA

#WinServ

———-

Special offers: 

http://bsf01.com/Microsoft_Vouchers/MCSE_WS2012Upgrades.aspx

Great Blog’s around Windows Server 2012:

English:

Keith Mayer – IT Rocks

Didier van Hoye – Working Hard in IT

Alessandro Cardoso – Virtualisation & Management Blog

Thomas Maurer –Just another private cloud weblog

James van den Berg – Mountainss

Aidan Finn – Aidan Finn, IT Pro

Leandro Carvalho – Virtualisation with Hyper-V, System Center, Cloud and much more

Microsoft – System Center Blog

Microsoft – Hyper-V survival Guide

Blain Barton – Blain Barton’s Blog

Microsoft – Windows Server

German:

Carsten Rachfahl – Hyper-V Server

Microsoft – German Virtualization Blog

———-

Book recommendation:

Cert Prep Pack: MCSA Windows Server 2012 (Exam Ref 70-410, 70-411, 70-412)

Erstellen einer VM mit Windows 8 Client Hyper-V

Hallo Community,

da ich für diesen Eintrag nur deutsche Screenshots habe, gibt es die Anleitung heute auch auf deutsch.

1. startet den Hyper-V Manager auf eurer Windows 8 Maschine

2. Klickt oben rechts auf den Pfeil bei “Neu”

3. Danach auf Virtueller Computer

4. Nun startet der Wizzard, klickt einfach auf “weiter”.

5. Als nächstes legt ihr den Namen und den Speicherpfad der VM fest. Sollte der Standard Pfad für die VM passen, braucht ihr daran nichts zu ändern.

6. Als nächstes legt ihr den Arbeitsspeicher der VM fest und ob Dynamic Memory benutzt wird.

7. Im nächsten Fenster legt ihr für die erste Netzwerkkarte der VM die Verbindung zum virtuellen Switch fest. In meinem Fall sind es externe Netzwerke und nach der Netzwerkschnittstelle benannt die ich verwende (WLAN für WLAN Adapter und LAN für RJ45 Netzwerkport). Ihr könnt später noch beliebig viele weitere NICs hinzufügen.

8. Auf Weiter und nun könnt ihr eine virtuelle Festplatte für die VM erstellen. Standardmässig ist dies unter Client Hyper-V eine dynamische VHDX. Ihr habt aber auch die Möglichkeit vorher erstelle VHDs zuzuordnen oder eine physicalische Festplatte an die VM anzudocken.

9. Im nächsten Teil des Wizzards könnt ihr das Installtionsmedium auswählen. Dieses wird danach ins Virtuelle DVD Laufwerk eurer VM eingelegt. Dies ist aber nicht notwendig und kann auch noch später gemacht werden.

10. Nun bekommt ihr nochmal eine Zusammenfassung über die VM die ihr erstellt habt. Hier einfach auf “Fertig stellen” und eure VM ist erstellt.

11. So sollte es dann aussehen.

 

 

First configuration of a fresh installed Windows Server 2012

Hi Community,

here some configuration steps, that you should perform after you installed a Windows Server 2012.

1. Open the “Server Manager” and “click on Configure this local server”

 

2. Now click on the “computername” or “workgroup” and than on “Change …”

3. In the “Computer Name/Domain Changes” menu you can change the servername and join your domain. In my case I will not join the domain because this system will become my first DC (Domain Controller) for a new domain.

!!! Attention !!! After this changes your server want’s to reboot! 

 

4.  After this we go on “Remote Desktop” to enable RDP (Remote Desktop Protocol”  on this server.

Best Pracitice Tipp: When you don’t need RDP leave it disabled. This could be the case when you use WinRM, RSAT (Remote Server Administration Tools) or Remote PowerShell.

5.  Now you can set the access level for RDP Sessions. When you are using Windows Vista, Windows 7 or Windows 8 or Windows Server 2008 and newer, you can leave the checkbox for Network Level Authentification checked. For all order RDP Clients you have to uncheck this box.

I will only use Windows Server 7/8 and Windows Server 2008 R2 or 2012 to connect, so I leave it checked.

What does authentifciation on network layer mean?

That means that your user credentials will be checked before you will connected to the server. In older versions from RDP you were connected first to the server and than your credentials were checked by the server. This was I high risk because there was a small door that hackers could use to get controll over your system or they could perform denied of service attacks.

It is also possible to configure teaming in the configuration menu but I will explain this seperate in a later blog.

6. If you don’t use DHCP for this server, you have also to set IP, default gateway and DNS. for this click on “Ethernet” and the Network Connection windows will open. Perform a rightklick on the NIC you want to configure and than selecte “Properties”

 

7. Than klick on “Internet Protocol Version 4” to configure static IP on IPv4 and than click on “Properties”. You can also configure IPv6, I only use IPv4 because my router has no IPv6 feature right now.

 

8. After this set static IP adress, Subnet mask, default gateway, preferred and alternated DNS Server. If your server will be one of the DNS servers (e.g. when the server is the first DC in your domain), set his static IP as primary.

!!! Attention !!! If this is not the only or first system in your network. Mark the “Validate settings upon exit” checkbox. This will validate your configuration and warn you when e.g. the default gateway or DNS  server is not reachable.

Klick close both windows by clicking on “OK”.

9. Now we want to configure the Windows Update Service. You should be back in the Local Server configuration Menu.

10. Click on “Windows Update” and in the upcoming window on “Let me choose my settings”.

 

11. Selecte the setting you want. Normaly I set it on “Download updates but let me choose whether to install them”. That gives me the chance to install the updates during a planed downtime. You can set this setting also via Group Policy, e.g. when you are using WSUS or SCCM.

 You can also include recommended update by enabling the checkbox for it. 

12. Click “OK” and the first check for updates will run.

 

13. After update Process is finished you should set the Internet Explorer Enhanced Security Configuration on off for Administrator. That will help you by using e.g. Webinterface for Blockstorages or Switches.

 

14. Last but not least we will activate our Windows Server 2012. For volume license this step could be different. Because most of you will use KMS or Volume Activation Serivce.

 

15. now reboot your server and you have finished the configuration.