Azure VNet – Deploy Domain Controller

Difficulty Level:    

In previous article – Azure VNet – Step-by-Step to create your own Virtual Network – I already created Domain Controller subnet inside my VNet. And in this tutorial, I would like to introduce how to install Active Directory within Azure VNet.

create-vnet-4th-step

Start new Virtual Machine in DC Subnet

First of all, you need to create new Virtual Machine in your DC Subnet, based on your organization’s need you will choose the respective VM’s size. In my case I chose an A1 VM (in Standard Tier).

create-ad-vm-1st-step

Install Active Directory Windows Service

1) Select Add Roles and Features from Server Manager

install-ad-in-azure-1st-step

2) Select Role-based or feature-based installation type

install-ad-in-azure-3rd-step

3) Select server from server pool

install-ad-in-azure-4th-step

4) Choose Active Directory Domain Services as Server Role

install-ad-in-azure-5th-step

5) Check Restart the destination server automatically if required checkbox and start to install

install-ad-in-azure-7th-step

Promote server to a domain controller

1) After VMs restarted, please click on warning icon in Server Manager and start to promote your server to a domain controller

install-ad-in-azure-9th-step

2) Select option Add a new forest and fill the root domain name

install-ad-in-azure-10th-step

3) Make sure you choose Domain Name System (DNS) server and enter password for Make sure you choose Domain Name System (DNS) server and enter password for Directory Services Restore Mode (DSRM) in Domain Controller Options step

install-ad-in-azure-11th-step

4) Ignore the warning in DNS Options step

install-ad-in-azure-12th-step

5) The NetBIOS domain name will be populated automatically

install-ad-in-azure-13th-step

6) Specify the location of AD DS database, log files, and SYSVOL (as the best practice you need to attach new disk to store all items below instead of using default drive)

install-ad-in-azure-14th-step

7) Click on Install button and wait for moment to finish all configuration

install-ad-in-azure-16th-step

Reserve static IP Address for Domain Controller

The IP addresses assigned to both Cloud Services roles and Virtual Machines can change during a repair of cloud infrastructure. So we need to reserve a static IP address for VMs that will run the DC role. To reserve a static IP address we need to run the Set-AzureStaticVNetIP cmdlet.

Reset DNS Server for Azure VNet

1) In Server Manager select Tools > DNS to start resetting DNS Server configuration

install-ad-in-azure-17th-step

2) Open Properties of your DNS Server node

install-ad-in-azure-18th-step

3) Remove unable to resolved IP Address and restart your Domain Controller server

install-ad-in-azure-19th-step

Configure VNet to use new DNS Server

You almost finished every steps to deploy Domain Controller server within your VNet. For now you need to navigate to your VNet, select Configure tab and add server information into DNS Server area to complete the last step

vnet-setup-dns-server

Son Nguyen

Son Nguyen

Son Nguyen is a Cloud Consultant working for FPT Software’s Cloud Innovation team. With deep knowledge in AWS and MS Azure, Son acts as a cloud consultant in various areas, ranging from assessment to architecture design, supporting customers from Japan, EU to US.

You may also like...

Leave a Reply

Your email address will not be published. Required fields are marked *

*