How to Install and Configure Active Directory on Windows Server 2022 (Step-by-Step)

Active Directory is a core service in Windows Server that allows administrators to centrally manage users, computers, and security policies. In this quick guide, you will found how to set up Active Directory on Windows Server 2022 until the server is ready to function as a Domain Controller.

Before starting, ensure the Windows Server 2022 box is configured with:

• A static IP address
• Hostname has been renamed (for example, DC01)
• Correct date, time and local/region settings

And also, be ready with internal domain name such as kumanlabs.net

Installation 

Go to server Manager > Manage > Add Roles and Feature

click next

Select role-based or featur-based installation

Select the target server, of course only 1 server appear here

checkmark on Active Directory Domain Services, then click Add Feature

Don't change anything on the Select Features window then click next

click next

This is optional, but I will put checkmark on the Restart the destination server automatically if required

Then click install

Wait the proccess until finished

Once installation finished, you will be asked to do some additional setup. Click Close

Configuration

Go to server manager and then click Promote this server to a domain controller

You will be given 3 options:

Add a domain controller to an existing domain
Use this when you want another DC in the same domain for redundancy including read only DC, load balancing, or a new site. Use this options when the domain already exists. ❌ Not for a fresh setup.

Add a new domain to an existing forest
Use this when you need a separate domain (different namespace, admin boundary, or child domain) but still want trust and shared schema within the same forest. ❌ Not for the first DC in a new environment.

Add a new forest
Use this when you need a completely separate AD environment with its own schema and configuration. ✅ This is the correct option for a fresh environment and first Domain Controller setup.

Since this is a new forest setup, I will set the functional level to as highest as possible which is Windows Server 2016. Don't forget to create DSRM password which sometimes can be useful for disaster recovery-related task.

Click next

Configure the NETBIOS name which is in Active Directory is the short domain name (legacy name) used mainly for backward compatibility with older Windows systems and protocols. In this labs, it automatically populated using value KUMANLABS, click next.

Click Next

You can review all the configuration before going further

During prerequisites is normal to have some warning sign, just focus on the last line that mentioning All prerequisite checks passed successsfully.

Click Install and be aware that the server will reboot to complete the setup.

Server will automatically reboot after showing this message

Once reboot done, press CTRL + ALT + DEL and login using administrator account. The administrator account during first instal will automatically coverted into Domain user with administrator privileges.

After login, you will find Server Manager automatically open. As you can see, Active Directory Domain Service also carrying other mandatory services such as DNS and File and Storage Services. 

You can also configure DNS forwarders so the DC can resolve external DNS queries (make sure the DC DNS address pointed to itself).

 

At this point, the Active Directory services are ready to use.