Location>code7788 >text

Network Topology-Domain Environment Setup

Popularity:172 ℃/2024-10-20 22:06:12

catalogs
  • network topology
  • Domain Control Host Configuration
    • Installation of DNS service
    • Installation of AD Domain Control Service
  • Network Configuration&&Join Domain
    • Windows Server 2008 R2
    • Windows Server 2003
    • Windows7
  • Adding Domain Members
  • Logging in to Domain Users
    • Windows Server 2003
    • Windows7

network topology

Build a simple intranet domain environment

在这里插入图片描述

Root Domain:

kali: 192.168.29.11 #kali attack machine, this as a public server
hacker: 192.168.29.0/24 #This machine ip does not matter, as long as the same network segment can be
Win7: 192.168.29.13, 10.0.0.11 #dual NICs, here Win7 for the role of the router, intranet NICs will also join the domain environment
Win2008: 10.0.0.10 #Domain-controlled hosts in the intranet, can't go out of the network.
Win2003: 10.0.0.12 #Domain host on the intranet, can't go out of the network

Domain Control Host Configuration

Installation of DNS service

在这里插入图片描述

Then select the dns service installation, follow the next step and then install it

在这里插入图片描述

Then just reboot and the dns installation is complete!

Installation of AD Domain Control Service

Other virtual machines will not be configured, after all, the masters have come to get the domain environment, so the other virtual machines will be in accordance with their own way to configure can be, this post focuses on some of the domain environment to configure some of the details.
1.Installation of AD domain services
Quick Install:
cmd +r call-up command
importationdcpromo
在这里插入图片描述

Wait a while and a window will pop up to let you install, the next step to follow can be

在这里插入图片描述

Subsequent to your return to the selection of existing forests and new domains, where it should be well understood, it does not matter if you do not understand, this is the algorithm of the concept of trees and forests, interested in going to Baidu to know a little bit can be, no need to go deeper.

在这里插入图片描述

Here my root domain is set to

在这里插入图片描述
在这里插入图片描述

We chooseWindows Server 2008 R2The corresponding system version

在这里插入图片描述
在这里插入图片描述
在这里插入图片描述

Click Next and he will continue to check the DNS configuration.

在这里插入图片描述

Don't worry about this next one, choosebecan immediately (do sth)

在这里插入图片描述

Modify as needed, I've defaulted the file path here

在这里插入图片描述
Enter the new password herePasswords should be complex. If you want to change your password, you will be asked to enter the old one and change it again after logging in later.I don't know why exactly.Anyway, it's a practice so it's easy to remember if you change the password here and re-changing it later is the same. Otherwise, you do not change a password here to meet the complexity of the password still does not let you next step.
在这里插入图片描述
在这里插入图片描述

在这里插入图片描述

Done, then just reboot

在这里插入图片描述
2. Reboot login to change the password (the password is recommended and the installation of the same password)

Then when you re-login first log in with your old password and change your password again, I'll just enter the password I just entered when I installed it here.

在这里插入图片描述

Network Configuration&&Join Domain

Windows Server 2008 R2

The domain control host's own dns server ip should be set to this machine ip or loopback address, the gateway, depending on whether you want to set, it does not matter, I here the gateway is set to the default gateway in the virtual machine in the network card editing.
(Gateway settings can be ignored)
在这里插入图片描述

在这里插入图片描述

Windows Server 2003

1.NIC Settings
Find the NIC properties
在这里插入图片描述
Set the ip of the DNS domain name to the ip of the domain control host.
在这里插入图片描述

在这里插入图片描述

2. Join the domain environment
Open computer properties
在这里插入图片描述
Find the computer name and change
在这里插入图片描述
Here the computer name of windows server 2003 I set towebThen the domain name must be
在这里插入图片描述

Click OK will let you enter the user password of the domain control host ha, we have not yet created other users in the domain control on the direct use of the domain control host of the administrator user account password.

在这里插入图片描述
在这里插入图片描述

After rebooting, log in with winserver's original password, and then the command view will see that the domain has been joined successfully.
ipconfig /all
在这里插入图片描述

Windows7

1. NIC configuration dns
在这里插入图片描述

在这里插入图片描述
The dns is also set to the ip of the domain control host
在这里插入图片描述

2. Right-click Computer to open Properties
在这里插入图片描述
在这里插入图片描述
3. Setting the computer nameRouterPC domain (math.)The name of the computer can be whatever you want it to be. The computer name can be whatever you want it to be, but the domain name has to be the same as the one you set up in Domain Control.
在这里插入图片描述

Enter your password to join

在这里插入图片描述

Successfully joined

在这里插入图片描述
Same reboot.

在这里插入图片描述

Then win7 originally d logged in with the normal password and saw that the join was successful

在这里插入图片描述

Adding Domain Members

Again, open the Service Manager and find the user
在这里插入图片描述
Right click on the blank space and select New ->User
在这里插入图片描述

Setting the user name

在这里插入图片描述

Set passwords, expiration rules according to their own needs, while passwords need to have a certain degree of complexity

在这里插入图片描述

在这里插入图片描述

在这里插入图片描述

Logging in to Domain Users

Windows Server 2003

After logging out, select the option to set the logon to the GOD domain, and then you can logon to the domain member user you just added
在这里插入图片描述

When you are a domain member you can use thenet time /domain time verification, if not a member of the domain will report an error, here it is clear that has been successful, and then whoami verification is User001 domain member user
在这里插入图片描述

Windows7

Win7 is also logged off, and then logged into the domain environment, here you need to pay attention to win7 logging into the domain operation and server2003 is a little different.
在这里插入图片描述
在这里插入图片描述

Login Successful

在这里插入图片描述