15.1. Creating a New Active Directory Forest

Problem

You want to promote a domain controller into an existing forest or create a new forest.

Solution

Using a graphical user interface

Run dcpromo from a command line or Start Run.

On a Windows 2000:

  1. Select Domain controller for a new domain and click Next.

  2. Select Create a new domain tree and click Next.

  3. Select Create a new forest of domain trees and click Next.

  4. Follow the rest of the configuration steps to complete the wizard.

On a Windows Server 2003:

  1. Select Domain controller for a new domain and click Next.

  2. Select Domain in a new forest and click Next.

  3. Follow the rest of the configuration steps to complete the wizard.

Discussion

To create a new forest you need to create a forest root domain. To do this, you need to use the dcpromo executable to promote a Windows 2000 or Windows Server 2003 server to be a domain controller for the new forest root domain. The dcpromo program has a wizard interface that requires you to answer several questions about the forest and domain you want to promote the server into. After dcpromo finishes, you will be asked to reboot the computer to complete the promotion process.

The two options dcpromo offers to create a new domain are adding the domain to an existing domain tree or starting a new domain tree. If you want to create a new domain that is a subdomain (contained within the same namespace) of a parent domain, you are creating a domain in an existing domain tree. If you are creating the first domain in a ...

Get Windows Server Cookbook now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.