Listen to this Post
In this article, we will explore how to set up an Active Directory Domain Controller (AD DC) and manage Organizational Units (OUs), users, and security groups. This is a critical task for IT administrators managing Windows-based networks.
Steps to Set Up Active Directory Domain Controller
1. Install Active Directory Domain Services (AD DS):
- Open Server Manager.
- Click on “Add roles and features.”
- Select “Active Directory Domain Services” and proceed with the installation.
2. Promote the Server to a Domain Controller:
- After installing AD DS, click on the notification flag and select “Promote this server to a domain controller.”
- Choose “Add a new forest” and enter the root domain name (e.g.,
example.com). - Set the DSRM (Directory Services Restore Mode) password and complete the installation.
3. Create Organizational Units (OUs):
- Open “Active Directory Users and Computers” (ADUC).
- Right-click the domain name and select “New > Organizational Unit.”
- Name the OU (e.g., “Sales,” “HR,” “IT”).
4. Add Users to the OUs:
- Right-click the OU and select “New > User.”
- Fill in the user details and set a password.
5. Create Security Groups:
- Right-click the OU and select “New > Group.”
- Name the group and choose the group scope (e.g., Global, Universal).
You Should Know:
- Verify AD DS Installation:
Get-WindowsFeature -Name AD-Domain-Services
This command checks if AD DS is installed.
- Check Domain Controller Status:
Get-ADDomainController -Filter *
This command lists all domain controllers in the domain.
-
Create a User with PowerShell:
New-ADUser -Name "John Doe" -GivenName "John" -Surname "Doe" -SamAccountName "jdoe" -UserPrincipalName "[email protected]" -Path "OU=Sales,DC=example,DC=com" -AccountPassword (ConvertTo-SecureString "P@ssw0rd" -AsPlainText -Force) -Enabled $true
This command creates a new user in the “Sales” OU.
-
Add a User to a Security Group:
Add-ADGroupMember -Identity "SalesGroup" -Members "jdoe"
This command adds the user “jdoe” to the “SalesGroup.”
-
Backup Active Directory:
Backup-ADDirectoryService -Path "C:\ADBackup"
This command backs up the AD database.
What Undercode Say:
Setting up an Active Directory Domain Controller is a foundational task for managing Windows networks. By following the steps above, you can efficiently create OUs, add users, and establish security groups. PowerShell commands like `New-ADUser` and `Add-ADGroupMember` streamline user and group management, while `Backup-ADDirectoryService` ensures data safety. For further reading, refer to Microsoft’s official documentation on Active Directory Domain Services.
This article provides a comprehensive guide to setting up and managing Active Directory, complete with verified commands and steps. If you’re working in a Windows environment, mastering these skills is essential for effective network administration.
References:
Reported By: Prakash Baidhya – Hackers Feeds
Extra Hub: Undercode MoN
Basic Verification: Pass ✅



