Guide – How To Start – Identity Platform with Microsoft Active Directory® Domain Controller based on Windows Server® 2025 Datacenter Azure Edition

A secure, enterprise-ready domain controller solution powered by Microsoft Active Directory® on Windows Server® 2025 Datacenter Azure Edition.

This is a quick deployment and ready-to-run image.

Simple and rapid installation. Easy to maintain.

Connection and configuring Identity Platform with Microsoft Active Directory® Domain Controller based on Windows Server® 2025 Datacenter Azure Edition

CONNECTION TO THE SERVER

  1. To connect to the virtual machine, run the “Remote Desktop Connection” shortcut using “Win + R”. In the window that appears, enter “mstsc” and click “OK”.
  1. In the new window that appears, enter the IP of the virtual machine and click “Connect”.
  1. Enter your username and password in the window that appears and click “OK”.
  2. Check the box and click “Yes”.
  1. On the first launch, select and accept settings to send diagnostic data.
  1. The Server Manager will open by default. By default, the Server Manager will open. If not, you can launch it from the Start menu

ACTIVE DIRECTORY INSTALLATION STEPS

  1. Open up Server Manager click on the yellow notification and select Promote this server to a domain controller
  1. This will start the Active Directory Configuration Wizard. Select the option to add a new forest and type FQDN for the domain. Then click <next> (The following demo shows how to set up a new forest. But if you add this to an existing domain, you can choose the relevant option)
  1. On the next page, you can select the domain and forest functional levels. Then type a password for DSRM. Then click <next>
  1. Since we are creating the first DNS server in the new forest, it is not necessary to select additional parameters. Click <next> to proceed
  1. For the NETBIOS name, keep the default and click <next>
  1. The next page is to define the NTDS, SYSVOL, and LOG file folders. You can keep the default or define different paths for these. This demo shows how to keep the default paths. Once changes are made, click <next> to continue
  1. The option to review configuration changes will be given on the next page.

If everything looks okay, you can click <next> to proceed, or otherwise, go back and change the settings.

  1. In the next window, the prerequisite check will be done.

If it passes, it will enable the option to install. Click on the <install> button to begin the installation process.

  1. Then the installation process of promoting this server to a Windows domain controller will be started.
  1. After the AD installation, the server will restart automatically. Once it comes back online, log in to the server as domain administrator.

Start managing the domain resources using the shortcut dsac on your desktop to manage Active Directory DC Server. 

  1. Also, you can use Get-ADDomain | fl Name, DomainMode, and Get-ADForest | fl Name,ForestMode from PowerShell to confirm the domain and forest functional levels
  1. Depending on your needs, you can open the following ports in the Azure firewall

53 TCP/UDP – DNS

88 TCP/UDP – Kerberos authentication

123 UDP – W32Time/NTP

135 TCP/UDP – Microsoft RPC Endpoint Mapper

137 UDP – NetBIOS Name Resolution

138 UDP — NetBIOS Datagram Service

389 TCP/UDP – LDAP

139 TCP – NetBIOS Session Service

445 TCP – SMB

464 TCP/UDP – Kerberos Authentication

636 TCP/UDP – LDAP SSL

3268-3269 TCP – Global Catalog

49152-65535 TCP/UDP — Randomly Allocated Ports DFSR RPC ICMP (Ping)

Website Built with WordPress.com.

Up ↑