Steps to create New Active Directory forest using Azure Portal

Steps to create New Active Directory forest using Azure Portal

In this blog, we will show you the Steps to create New Active Directory forest using Azure Portal.

 

REQUIREMENTS

  • Microsoft Azure Subscription
  • 2 Azure VM’s.

 

OVERVIEW

  • We will be creating two VM’s named DC1 and DC2.
  • DC1 is the primary Domain Controller and DC2 will be the fault tolerance.

 

CREATING RESOURCE GROUP

  • Open the Azure portal and click on resource group link from the service list.

Steps to create New Active Directory forest using Azure Portal

 

  • Click on Add button to add a new resource group.

Steps to create New Active Directory forest using Azure Portal

 

  • Provide the resource group name, subscription and group location. Then click on Create button.

Steps to create New Active Directory forest using Azure Portal

 

  • Now the new resource group will be available on the list.

Steps to create New Active Directory forest using Azure Portal

 

 

CREATING VIRTUAL NETWORK

  • From the Azure portal, click on virtual network link from the service list.

Steps to create New Active Directory forest using Azure Portal

 

  • Click on Add button to create the new virtual network.

Steps to create New Active Directory forest using Azure Portal

 

  • Provide the Virtual network name, address space, resource group and subnet details and click on Create button.

Steps to create New Active Directory forest using Azure Portal

 

  • The new virtual network will be available on the network list.

Steps to create New Active Directory forest using Azure Portal

 

CREATE A NEW AVAILABILITY SET

  • From the Azure portal click on More services link and search for availability set.

Steps to create New Active Directory forest using Azure Portal

 

  • Click on Add button to create a new availability set.

Steps to create New Active Directory forest using Azure Portal

 

  • Provide the required information Name, Subscription, Resource Group and location details. We use the default Fault domains as 2 and Update domains as 5. Also, we are using classic storage type for this demo. Verify the provide details and click on Create button.

Steps to create New Active Directory forest using Azure Portal

 

  • The New availability set is available on the list.

Steps to create New Active Directory forest using Azure Portal

 

CREATING DC1 VM

  • From the Azure portal, click on virtual machines link from the service list.

Steps to create New Active Directory forest using Azure Portal

 

  • Click on Add button to create a new virtual machine.

Steps to create New Active Directory forest using Azure Portal

 

  • Select the Windows 2016 server from the compute list.

Steps to create New Active Directory forest using Azure Portal

 

  • Provide the basic information as the first step and click OK.

Steps to create New Active Directory forest using Azure Portal

 

  • Select the VM Size.

Steps to create New Active Directory forest using Azure Portal

 

  • From the settings screen, select our newly created high availability set.

Steps to create New Active Directory forest using Azure Portal

 

  • Select No for using managed disks. Then provide the storage account Network, Subnet, Public IP address, Network security group details. Verify the details and click OK.

Steps to create New Active Directory forest using Azure Portal

 

  • Verify the selected settings in the summary screen and click on Create button to spin up a new VM in Azure.

Steps to create New Active Directory forest using Azure Portal

 

  • After few minutes, our new VM will be available on the VM list.

Steps to create New Active Directory forest using Azure Portal

 

ASSIGNING STATIC IP ADDRESS

  • From the VM properties page, click on the Virtual Network/subnet option.

Steps to create New Active Directory forest using Azure Portal

 

  • Select the AZ-DC1 network interface under connected devices section.

Steps to create New Active Directory forest using Azure Portal

 

  • Click on the IP configuration link.

Steps to create New Active Directory forest using Azure Portal

 

  • Select the ipconfig1 option.

Steps to create New Active Directory forest using Azure Portal

 

  • Under Private IP address settings, select the assignment as static and click on Save button.

Steps to create New Active Directory forest using Azure Portal

 

ENABLING CUSTOM DNS

  • From the Azure portal, click on the Virtual network link and select our DC-VNET.

Steps to create New Active Directory forest using Azure Portal

 

  • Click on DNS Servers link.

Steps to create New Active Directory forest using Azure Portal

 

  • Select the custom tab and provide the DC1 static private IP address and click on Save button.

Steps to create New Active Directory forest using Azure Portal

 

INSTALLING ACTIVE DIRECTORY SERVICE ON DC1 VM

  • Login into DC1 VM through RDP using public IP address and open the server manager snap-in.

Steps to create New Active Directory forest using Azure Portal

 

  • From the manage option, click on Add Roles and Features option.

Steps to create New Active Directory forest using Azure Portal

 

  • From the welcome wizard, Click Next to continue.

Steps to create New Active Directory forest using Azure Portal

 

  • Select the Role-based installation.

Steps to create New Active Directory forest using Azure Portal

 

  • Click on the server from the pool list and click Next.

Steps to create New Active Directory forest using Azure Portal

 

  • Select the Active Directory Domain Services check box.

Steps to create New Active Directory forest using Azure Portal

 

  • Leave the default in the features section.

Steps to create New Active Directory forest using Azure Portal

 

  • It displays the information about active directory domain services. Click Next to continue.

Steps to create New Active Directory forest using Azure Portal

 

  • Click on Install button to install the service.

Steps to create New Active Directory forest using Azure Portal

 

  • It will take few minutes to complete the installation.

Steps to create New Active Directory forest using Azure Portal

 

  • Click on Close button to close the wizard.

Steps to create New Active Directory forest using Azure Portal

 

 

PROMOTE DC1 TO DOMAIN CONTROLLER

  • Click on the notifications link in the server manager and select the Promote this server to a domain controller option.

Steps to create New Active Directory forest using Azure Portal

 

  • Select the Add a new forest option and provide a domain name then click Next.

Steps to create New Active Directory forest using Azure Portal

 

  • Provide the Directory Service Restore Mode Password.

Steps to create New Active Directory forest using Azure Portal

 

  • Leave the default.

Steps to create New Active Directory forest using Azure Portal

 

  • Verify the NETBIOS name.

Steps to create New Active Directory forest using Azure Portal

 

  • We use the C:\ drive to store the Active Directory related files for this demo.

Steps to create New Active Directory forest using Azure Portal

 

  • Review the selected options and Click Next.

Steps to create New Active Directory forest using Azure Portal

 

  • It will perform the Pre-requisites check before promoting the server to domain controller. Select the Install option to start the installation.

Steps to create New Active Directory forest using Azure Portal

 

  • It will take several minutes to complete the installation.

Steps to create New Active Directory forest using Azure Portal

 

  • The server will be rebooted to complete the operation. We can now log in to the VM using azdomain.local.

Steps to create New Active Directory forest using Azure Portal

 

CREATING AND PREPARING THE DC2 VM

  • Follow the same steps which you perform earlier for DC1 VM. Make sure that you have selected correct virtual network and availability set.

Steps to create New Active Directory forest using Azure Portal

 

  • Also, change the private IP assignment for AZ-DC2 VM as static.

Steps to create New Active Directory forest using Azure Portal

 

  • Also, add the AZ-DC2 VM static IP as secondary DNS in the DC-VNET virtual Network.

Steps to create New Active Directory forest using Azure Portal

 

  • Install the Active Directory Domain Services through server manager snap-in.

Steps to create New Active Directory forest using Azure Portal

 

PROMOTE AZ-DC2 VM AS DOMAIN CONTROLLER

  • From the notification window click on promote this server to a domain controller option.

Steps to create New Active Directory forest using Azure Portal

 

  • Select the Add a domain controller to an existing domain option and provide your existing domain name and click the select button.

Steps to create New Active Directory forest using Azure Portal

 

  • Provide the domain controller login credentials and click ok.

Steps to create New Active Directory forest using Azure Portal

 

  • Select the domain from the pop-up box and click OK.

Steps to create New Active Directory forest using Azure Portal

 

  • Click Next to continue the wizard.

Steps to create New Active Directory forest using Azure Portal

 

  • Leave as default and provide a password for Directory Service Restore Mode.

Steps to create New Active Directory forest using Azure Portal

 

  • Do not change the settings of DNS delegation.

Steps to create New Active Directory forest using Azure Portal

 

  • Select the replicate from any domain controller.

Steps to create New Active Directory forest using Azure Portal

 

  • We stored the Active Directory related files in C:\ drive for this demo.

Steps to create New Active Directory forest using Azure Portal

 

  • Review the selected options.

Steps to create New Active Directory forest using Azure Portal

 

  • It will perform the Pre-requisites check and click Install to start the installation.

Steps to create New Active Directory forest using Azure Portal

 

  • It will take several minutes to complete the installation.

Steps to create New Active Directory forest using Azure Portal

 

  • The server will reboot to complete the installation. Once it’s back to online we can login into AZ-DC2 VM in your domain.

Steps to create New Active Directory forest using Azure Portal

 

  • AZ-DC2 VM has been added to AZDOMAIN.LOCAL domain.

Steps to create New Active Directory forest using Azure Portal

 

Reference Links

 https://www.assistanz.com/microsoft-azure-availability-sets/

https://www.assistanz.com/steps-to-add-existing-vm-into-high-availability-set/

 

VIDEO

Thanks for reading this blog. We hope it was useful for you to learn about creating AD forest using windows 2016 in Azure portal



Author: Loges
Logeswaran holds Microsoft certified engineer & solution architect certifications with over 11+ years of experience in the fields of hosting technologies and IMS/Cloud consulting. At AssistanZ, Logeswaran spearheads the strategic planning and execution of the company’s Microsoft based core technologies to Enterprise clients.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.