Install Active Directory Windows Server 2022 Core
|
Expanded Library Show
Active Directory and Azure AD form the core of hybrid identity in the Microsoft technology stack. This course teaches you how to install, configure, and maintain AD and prepare for Exam AZ-800. What you'll learnA Windows Server hybrid administrator needs a thorough grasp of Active Directory Domain Services in order to be successful. In this course, Windows Server 2022: Deploy and Manage Active Directory Domain Services, you’ll gain the ability to implement identity in a hybrid cloud environment. First, you’ll explore domain controller deployment and configuration. Next, you’ll discover hybrid identity administration. Finally, you’ll learn how to control your hybrid AD environment with Group Policy. When you’re finished with this course, you’ll have the skills and knowledge of Active Directory Domain Services needed to manage hybrid identity, continue your AZ-800 certification exam preparation, and eventually earn your Windows Server Hybrid Administrator Associate badge. Table of contentsDeploy and Manage Domain Controllers 47mins Configure Active Directory Forest Environments 37mins Create and Manage AD DS Security Principals 42mins Implement and Manage Hybrid Identities 33mins Manage Windows Server with Group Policy 35mins About the authorTimothy Warner is a Microsoft Most Valuable Professional (MVP) in Cloud and Datacenter Management who is based in Nashville, TN. His professional specialties include Microsoft Azure, cross-platform PowerShell, and all things Windows Server-related. You can reach Tim via Twitter (@TechTrainerTim), LinkedIn or his blog, AzureDepot.com. This guide has been updated for the latest Windows versions Windows 11 and Windows Server 2022. You'll learn how to install the Active Directory (AD) module for PowerShell Core 6.0, PowerShell 7 and Windows PowerShell. For Windows PowerShell, the tutorial describes how to install the AD module for Windows 7, Windows 8, Windows 8.1, Windows 10, Windows 11 Windows Server 2008 R2, Windows Server 2012 R2, and Windows Server 2016, Windows Server 2010 and Windows Server 2022. You'll also learn how to work with the AD module on other systems such as macOS or Linux with the help of PowerShell remoting.
Michael Pietroforte is the founder and editor in chief of 4sysops. He has more than 35 years of experience in IT management and
system administration. Contents
Also read: How to install the PowerShell 7 Active Directory module. The installation of the AD module varies significantly for the different Windows and PowerShell versions. At the time of this writing, the AD module that comes
with RAST does not work with PowerShell Core 6.0. However, this guide explains how you can manage Active Directory from PowerShell Core even on macOS and Linux. Windows 7 ^On a Windows 7 computer, you can follow this procedure to install the Active Directory module:
Active Directory Module for Windows PowerShell on Windows 7 If the Windows 7 machine only has PowerShell 2.0 installed, you have to add the Import-Module ActiveDirectory command to your profile because PowerShell doesn't load modules automatically. For instance, you can import the module in %UserProfile%\My Documents\WindowsPowerShell\profile.ps1. Makes sure you've set your execution policy to either RemoteSigned or Unrestricted: Set-ExecutionPolicy RemoteSigned. Another option is to open the module from the Administrative Tools folder in the Control Panel.  Active Directory Module in Administrative Tools Windows Server 2008 R2 ^If your Windows Server 2008 R2 machine is a domain controller, the PowerShell Active Directory Module is already installed. You only have to install the module on member servers. The procedure on Windows Server 2008 R2 is similar to that on Windows 7. (Note that the module is not available for Windows Server 2008.) One difference is that you don't have to download RSAT because the tools are already available on Windows Server 2008 R2.
Alternatively, you can install the module from a PowerShell console: Import-Module ServerManagerAdd-WindowsFeature RSAT-AD-PowerShell After copying the module to your computer, you have to import it: Import-Module ActiveDirectory Or you can right-click the PowerShell icon on the taskbar and select Import system modules. Import system modules As on Windows 7, if you want to make the import permanent, you have to add the above import command to your PowerShell profile. Notice this description assumes you haven't updated PowerShell 2 on your Windows Server 2008 R2 machine (see the description about Windows 7). Windows 8, Windows 8.1 ^Things are a lot easier in Windows 8, Windows 8.1, and Windows 10. All you have to do is download and install RSAT (Windows 8, Windows 8.1, Windows 10). The installation enables all tools by default, and you also don't have to import the module. You can use the AD module right away after you install RSAT. Windows 10 ^Since Windows 10, the RSAT tools were shifted from being a standalone package to being a feature on demand in Windows 10. Click the menu and then search for "features" and then navigate to App and Features > Optional Features > Add a feature. Type RSAT in the search field and select the second option—RSAT: Active Directory Domain Services and Lightweight Directory Services Tools. Install the AD module in Windows 10 Windows 11 ^In Windows 11, click the Start, type "Settings" in the Search field. Apps in Windows 11 Now click Apps > Optional Features > View features. Optinal Features in Windows 11 Add an optional feature in Windows 11 Then type "RSAT" and select RSAT: Active Directory Domain Services and Lightweight Directory Services Tools and click Next and then Install. Install RSAT on Windows 11 To verify that RSAT has been installed launch a PowerShell console with Administrator privileges and then type this command: Get-WindowsCapability -Name RSAT* -Online | Select-Object -Property DisplayName, State Verfiying that RSAT is installed with PowerShell On Windows 11 with PowerShell ^If you don't want to avoid all this clicking you can install all the RSAT tools in one go with this PowerShell command below. Make sure that you are working on an elevated PowerShell console. Get-WindowsCapability -Name RSAT* -Online | Add-WindowsCapability -Online Intstall RSAT with PowerShell Windows Server 2012, Windows Server 2012 R2, Windows Server 2016, Windows Server 2019, Windows Server 2022 ^As on Windows Server 2008 R2, the AD module is already installed on domain controllers on Windows Server 2012, Windows Server 2012 R2, and Windows Server 2016. On member servers, you can add the module as a feature in Server Manager.
Install the AD module on Windows Server 2016 Alternatively, you can install the module from a PowerShell console: Install-WindowsFeature RSAT-AD-PowerShell Installing the AD module on Windows Server 2012 with PowerShell There's no need to import the Server Manager module first, as on Windows Server 2008 R2. You also don't have to import the AD module after the installation. If you want to verify the successful installation of the module, you can just run the Get-ADuser cmdlet. Install the AD module on PowerShell Core 6.x on a Windows computer ^
Use the Active Directory module on Linux and macOS ^On Linux and macOS you can't install Active Directory module. However, you use PowerShell remoting to connect to a Windows server with Active Directory and then work with the AD module in remoting session. Read ahead to learn how to use remoting with the AD module. All versions: Import the ActiveDirectory module remotely ^Create an interactive remote sessionThe simplest option is to create an interactive remote session to your domain controller with the Enter-PSsession cmdlet: Enter-PSsession MyDomainConroller You can then work right away with the AD cmdlets. This option is good if you only occasionally manage AD on a PowerShell console and if you don't have to execute local scripts. Managing Active Directory on PowerShell Core in an interactive remote session Import the AD module from a remote sessionThe second option uses implicit remoting and allows you to run the AD cmdlets from a local session. However, you execute the AD cmdlets remotely on a domain controller. In practice, you won't notice much of difference in locally installed cmdlets. To import the AD module on PowerShell Core 6.0, execute these commands: $S = New-PSSession -ComputerName MyDomainConroller Import-Module -PSsession $S -Name ActiveDirectory Import the AD module on PowerShell Core 6.0 The first command creates a PowerShell session (PSsession) on the domain controller (replace MyDomainController with the name of your DC) and establishes a persistent connection. Next, we import the ActiveDirectory module from this remote PSsession into our local session. You can now use all AD module cmdlets on your local PowerShell Core console. Just keep in mind the commands always execute remotely. If you often work with AD, you can add the above commands to your profile, for instance in Documents\PowerShell\Profile.ps1. Export the remote AD module to a local moduleAlternatively, you can export the AD cmdlets from a remote session to a local module: $S = New-PSSession -ComputerName MyDomainController Export-PSsession -Session $S -Module ActiveDirectory -OutputModule RemoteAD Remove-PSSession -Session $S Import-Module RemoteAD Exporting the Active Directory module to a local module These commands will create a local module in your Documents folder under PowerShell\Modules\RemoteAD. However, like with the above solution, you will be working with implicit remoting, and all cmdlets will execute remotely. The local RemoteAD module only links to the cmdlets on the domain controller. If you want to use the RemoteAD module on other machines with PowerShell Core, simply copy the RemoteAD folder to the PowerShell Core module folder on the second machine. The difference with the "import solution" is that in the "export solution," PowerShell only establishes a connection to the domain controller when you use an AD cmdlet the first time. You also don't have to add the above commands to your profile because PowerShell will load the local RemoteAD module automatically. However, the downside to this option is you might have to repeat the procedure after updating the AD module on the domain controller. PowerShell Core and Windows PowerShell modules ^Note that you can use Windows PowerShell together with PowerShell Core on the same machine and work with the different AD modules in both shells. If you installed RSAT, the AD module for Windows PowerShell will reside in this folder: $env:windir/System32/WindowsPowerShell/v1.0/Modules/ActiveDirectory If you used the export solution, the RemoteAD module will be in this folder: $env:userprofile/Documents/PowerShell/Modules/RemoteAD PowerShell Core and Windows PowerShell use different folders PowerShell Core does not import modules in WindowsPowerShell folders, and Windows PowerShell does not load PowerShell Core modules, which are always in PowerShell folders. Thus, you don't have to worry about conflicts between the different AD modules in PowerShell Core and Windows PowerShell. Conclusion ^Using the Active Directory module has become simpler with each PowerShell version up to Microsoft's release of PowerShell Core 6.0. However, working with implicit remoting and remote sessions has various advantages. One advantage is that you can use disconnected remote sessions. This allows you to start a script, shut down your client computer, and retrieve the results from the remote machine later. If you often work with remote sessions, you should become familiar with the different ways you can use PowerShell remote sessions. Once you get used to working with remoting, you probably won't miss the local AD module for PowerShell Core. Can you Install Active Directory on Server Core?Windows Server Core is a good platform to host the Active Directory domain controller role due to fewer resource requirements, increased stability and security (due to less code and updates).
How do I Install Active Directory on Server 2022?Let us follow the following steps to get AD installed.. Step 1: Open Server Manager. ... . Step 2: Add Roles and Features. ... . Step 3: Installation Type. ... . Step 4: Server Selection. ... . Step 5: Server Roles. ... . Step 6: Add Features. ... . Step 7: Select Features. ... . Step 8: AD DS.. How do I Install Active Directory on Windows Server?To install AD DS by using Server Manager. In Server Manager, click Manage and click Add Roles and Features to start the Add Roles Wizard. On the Before you begin page, click Next. On the Select installation type page, click Role-based or feature-based installation and then click Next.
How do I add a Windows core to a domain?How to Join Windows Server Core to Domain. First of all login to the Windows Server core with local administrator account.. Type SConfig at the command prompt and press Enter.. From the list of options, choose Option 1 (Domain/Workgroup) by typing 1 and press ENTER.. To join the server to the domain, type D and press ENTER.. |
