Install-ADDSDomainController
Synopsis
Description
Parameters
-ADPrepCredential
Specifies the user name and password that corresponds to the account to be used for running the Adprep utility (if it is required) to prepare the directory prior to the installation of this domain controller. Specify "(Get-Credential)" to prompt the user to supply a password.
Required? false
Position? named
Default value NULL
Accept pipeline input? false
Accept wildcard characters? false
-AllowDomainControllerReinstall <SwitchParameter>
Specifies whether to continue installing this domain controller, despite the fact that another domain controller account with the same name is detected. By default, the Install-ADDSDomainController cmdlet does not continue installing if another domain controller with the same name is found.
Required? false
Position? named
Default value NULL
Accept pipeline input? false
Accept wildcard characters? false
-AllowPasswordReplicationAccountName <String[]>
Specifies the names of user accounts, group accounts, and computer accounts whose passwords can be replicated to this RODC. Use an empty string ("") if you want to keep the value empty. By default, only the Allowed RODC Password Replication Group is allowed.
Required? false
Position? named
Default value NULL
Accept pipeline input? false
Accept wildcard characters? false
-ApplicationPartitionsToReplicate <String[]>
Specifies the application directory partitions that DCPromo will replicate. Use the following format: "partition1" "partition2" "partitionN". Use * to replicate all application directory partitions.
Required? false
Position? named
Default value NULL
Accept pipeline input? false
Accept wildcard characters? false
-CreateDnsDelegation <SwitchParameter>
Indicates whether to create a DNS delegation that references the new DNS server that you are installing along with the domain controller. Valid for Active Directory-integrated DNS only. If this parameter is specified then the DNS delegation is created. If the value of $false is specified then no DNS delegation is created. By default, the value for this parameter is computed automatically based on the environment.
Required? false
Position? named
Default value NULL
Accept pipeline input? false
Accept wildcard characters? false
-Credential <PSCredential>
Specifies the user name and password that corresponds to the account used to install the domain controller. Specify "(Get-Credential)" to prompt the user to supply a password.
Required? false
Position? named
Default value NULL
Accept pipeline input? false
Accept wildcard characters? false
-CriticalReplicationOnly <SwitchParameter>
Specifies whether the AD DS installation operation performs only critical replication before reboot and then continues, skipping the noncritical (and potentially lengthy) portion of replication. The noncritical replication happens after the installation finishes and the computer reboots. By default, the cmdlet performs both critical and noncritical portions of the replication.
Required? false
Position? named
Default value NULL
Accept pipeline input? false
Accept wildcard characters? false
-DatabasePath <String>
Specifies the fully qualified, non-Universal Naming Convention (UNC) path to a directory on a fixed disk of the local computer that will contain the domain database, for example, C:\Windows\NTDS. The default is %SYSTEMROOT%\NTDS.
Required? false
Position? named
Default value NULL
Accept pipeline input? false
Accept wildcard characters? false
-DelegatedAdministratorAccountName <String>
Specifies the name of the user or group that will be the delegated administrator of this domain controller.
Required? false
Position? named
Default value NULL
Accept pipeline input? false
Accept wildcard characters? false
-DenyPasswordReplicationAccountName <String[]>
Specifies the names of user accounts, group accounts, and computer accounts whose passwords are not to be replicated to this RODC. Use an empty string ("") if you do not want to deny the replication of credentials of any users or computers. By default, Administrators, Server Operators, Backup Operators, Account Operators, and the Denied RODC Password Replication Group are denied. By default, the Denied RODC Password Replication Group includes Cert Publishers, Domain Admins, Enterprise Admins, Enterprise Domain Controllers, Enterprise Read-Only Domain Controllers, Group Policy Creator Owners, the krbtgt account, and Schema Admins.
Required? false
Position? named
Default value NULL
Accept pipeline input? false
Accept wildcard characters? false
-DnsDelegationCredential <PSCredential>
Specifies the user name and password (account credentials) for creating DNS delegation. This parameter is skipped if the value for the -CreateDnsDelegation parameter is either specified or computed to be $false.
Required? false
Position? named
Default value NULL
Accept pipeline input? false
Accept wildcard characters? false
-DomainName <String>
Specifies the fully qualified domain name (FQDN) for the domain where the domain controller will be installed or added.
Required? true
Position? named
Default value <mandatory>
Accept pipeline input? false
Accept wildcard characters? false
-Force <SwitchParameter>
When this parameter is specified any warnings that might normally appear during the installation and addition of the domain controller will be suppressed to allow the cmdlet to complete its operation. This parameter can be useful to include when scripting installation.
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-InstallationMediaPath <String>
Indicates the location of the installation media that will be used to install a new domain controller.
Required? false
Position? named
Default value NULL
Accept pipeline input? false
Accept wildcard characters? false
-InstallDns <SwitchParameter>
Specifies whether the DNS Server service should be installed and configured on the domain controller. For domain controller installation, if this parameter is left unspecified and the current domain already hosts and stores the DNS names for the domain, then the default for this parameter is $true and the DNS server will be installed. Otherwise, if DNS domain names are hosted outside of Active Directory, the default is $false and no DNS server will be installed.
Required? false
Position? named
Default value NULL
Accept pipeline input? false
Accept wildcard characters? false
-LogPath <String>
Specifies the fully qualified, non-UNC path to a directory on a fixed disk of the local computer that will contain the domain log files, for example, C:\Windows\Logs. The default is %SYSTEMROOT%\NTDS.
Required? false
Position? named
Default value NULL
Accept pipeline input? false
Accept wildcard characters? false
-MoveInfrastructureOperationMasterRoleIfNecessary <SwitchParameter>
Use this parameter to transfer the infrastructure master role to the domain controller being installed. To successfully complete the transfer, the -NoGlobalCatalog switch parameter must be included as well. Do not specify this parameter if you want the infrastructure master role to remain where it currently is.
Required? false
Position? named
Default value NULL
Accept pipeline input? false
Accept wildcard characters? false
-NoDnsOnNetwork <SwitchParameter>
Specifies that DNS service is not available on the network. This parameter is used only when the IP setting of the network adapter for this computer is not configured with the name of a DNS server for name resolution. It indicates that a DNS server will be installed on this computer for name resolution. Otherwise, the IP settings of the network adapter must first be configured with the address of a DNS server.
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-NoGlobalCatalog <SwitchParameter>
Specifies that the read-only domain controller (RODC) will not be a global catalog server. By default, the domain controller that you are installing is a global catalog server.
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-NoRebootOnCompletion <SwitchParameter>
If specified, the computer will not restart upon the completion of the operation to install the domain controller. By default, if this parameter is omitted the computer will restart upon the completion of the install operation. As a general rule, Microsoft support recommends that you not use this parameter except for testing or troubleshooting purposes because once configuration has completed the server will not function correctly as either a member server or a DC until it is rebooted.
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-ReadOnlyReplica <SwitchParameter>
Specifies whether to install the domain controller as an RODC for an existing domain.
Required? false
Position? named
Default value FALSE
Accept pipeline input? false
Accept wildcard characters? false
-ReplicationSourceDC <String>
Specifies the name of the domain controller to be used as the source for replicating to this domain controller.
Required? false
Position? named
Default value NULL
Accept pipeline input? false
Accept wildcard characters? false
-SafeModeAdministratorPassword <SecureString>
Supplies the password for the administrator account when the computer is started in Safe Mode or a variant of Safe Mode, such as Directory Services Restore Mode. If no value is specified for this parameter, the cmdlet prompts you to enter and confirm a masked password. If specified with a value, the value must be a secure string.
Required? false
Position? named
Default value <mandatory>
Accept pipeline input? false
Accept wildcard characters? false
-SiteName <String>
Specifies the name of an existing site where you can place the new domain controller. The default value depends on the type of installation. For a new forest, the default is Default-First-Site-Name. For all other installations, the default is the site that is associated with the subnet that includes the IP address of this server. If no such site exists, the default is the site of the replication source domain controller.
Required? false
Position? named
Default value <mandatory>
Accept pipeline input? false
Accept wildcard characters? false
-SkipAutoConfigureDns <SwitchParameter>
Skips automatic configuration of DNS client settings, forwarders, and root hints. This parameter is in effect only if the DNS Server service is already installed.
Required? false
Position? named
Default value NULL
Accept pipeline input? false
Accept wildcard characters? false
-SkipPreChecks <SwitchParameter>
Specifies that only a base set of validations will be performed. This behavior is equivalent to the validations that were performed when using Dcpromo.exe in earlier versions of Windows Server to add a new domain controller. When this switch parameter is set, it specifies that additional preliminary checks should be bypassed. For more information on the scope of these additional preliminary checks that the ADDSDeployment module performs by default when using Windows Server 2012, refer to the table in the section “Prerequisite Checking” in the Understand and Troubleshoot AD DS Simplified Administration in Windows Server 2012 guide (http://go.microsoft.com/fwlink/?LinkID=237244).
Required? false
Position? named
Default value
Accept pipeline input? false
Accept wildcard characters? false
-SystemKey <SecureString>
Specifies the system key for the media from which you replicate the data. The default is none.
Required? false
Position? named
Default value NULL
Accept pipeline input? false
Accept wildcard characters? false
-SysvolPath <String>
Specifies the fully qualified, non-UNC path to a directory on a fixed disk of the local computer that will contain the Sysvol data, for example, C:\Windows\SYSVOL. The default is %SYSTEMROOT%\SYSVOL.
Required? false
Position? named
Default value NULL
Accept pipeline input? false
Accept wildcard characters? false
-UseExistingAccount <SwitchParameter>
Attaches a server to an existing RODC account. If specified, a member of the Domain Admins group or a delegated user can run this cmdlet.
Required? false
Position? named
Default value FALSE
Accept pipeline input? false
Accept wildcard characters? false
-Confirm <SwitchParameter>
Prompts you for confirmation before running the cmdlet.
Required? false
Position? named
Default value false
Accept pipeline input? false
Accept wildcard characters? false
-WhatIf <SwitchParameter>
Shows what would happen if the cmdlet runs. The cmdlet is not run.
Required? false
Position? named
Default value false
Accept pipeline input? false
Accept wildcard characters? falseSyntax
Install-ADDSDomainController [-SkipPreChecks] -DomainName <String> [-SafeModeAdministratorPassword <SecureString>] [-SiteName <String>] [-ADPrepCredential <PSCredential>] [-AllowDomainControllerReinstall] [-ApplicationPartitionsToReplicate <String[]>] [-CreateDnsDelegation] [-Credential <PSCredential>] [-CriticalReplicationOnly] [-DatabasePath <String>] [-DnsDelegationCredential <PSCredential>] [-NoDnsOnNetwork] [-NoGlobalCatalog] [-InstallationMediaPath <String>] [-InstallDns] [-LogPath <String>] [-MoveInfrastructureOperationMasterRoleIfNecessary] [-NoRebootOnCompletion] [-ReplicationSourceDC <String>] [-SkipAutoConfigureDns] [-SystemKey <SecureString>] [-SysvolPath <String>] [-Force] [-WhatIf] [-Confirm] [<CommonParameters>]
Install-ADDSDomainController [-SkipPreChecks] -DomainName <String> [-SafeModeAdministratorPassword <SecureString>] -SiteName <String> [-ADPrepCredential <PSCredential>] [-AllowDomainControllerReinstall] [-AllowPasswordReplicationAccountName <String[]>] [-ApplicationPartitionsToReplicate <String[]>] [-Credential <PSCredential>] [-CriticalReplicationOnly] [-DatabasePath <String>] [-DelegatedAdministratorAccountName <String>] [-DenyPasswordReplicationAccountName <String[]>] [-NoDnsOnNetwork] [-NoGlobalCatalog] [-InstallationMediaPath <String>] [-InstallDns] [-LogPath <String>] [-MoveInfrastructureOperationMasterRoleIfNecessary] [-ReadOnlyReplica] [-NoRebootOnCompletion] [-ReplicationSourceDC <String>] [-SkipAutoConfigureDns] [-SystemKey <SecureString>] [-SysvolPath <String>] [-Force] [-WhatIf] [-Confirm] [<CommonParameters>]
Install-ADDSDomainController [-SkipPreChecks] -DomainName <String> [-SafeModeAdministratorPassword <SecureString>] [-ADPrepCredential <PSCredential>] [-ApplicationPartitionsToReplicate <String[]>] [-Credential <PSCredential>] [-CriticalReplicationOnly] [-DatabasePath <String>] [-NoDnsOnNetwork] [-InstallationMediaPath <String>] [-LogPath <String>] [-NoRebootOnCompletion] [-ReplicationSourceDC <String>] [-SkipAutoConfigureDns] [-SystemKey <SecureString>] [-SysvolPath <String>] [-UseExistingAccount] [-Force] [-WhatIf] [-Confirm] [<CommonParameters>]
By default, this cmdlet always prompts for confirmation. To bypass confirmation, you need to include the -Confirm parameter and specify a value of $false. For example, -Confirm:$false.
C:\PS>Install- ADDSDomainController -InstallDns -Credential (Get-Credential Delhi\Admin) -DomainName “Delhi.TOSSolution.com”
Installs a domain controller and DNS server in the Delhi.TOSSolution.com domain using Delhi\Admin credentials and prompts the user to provide and confirm the Directory Services Restore Mode (DSRM) password.
C:\PS>Install-ADDSDomainController -InstallDns -DomainName “Delhi.TOSSolution.com “
Installs a domain controller and DNS server in the Delhi.TOSSolution.com domain using Administrator credentials and prompts the user to provide and confirm the Directory Services Restore Mode (DSRM) password.
C:\PS>Install-ADDSDomainController -InstallDns -Credential (Get-Credential) -DomainName (Read-Host “Domain to promote into”)
Installs a domain controller and DNS server and prompts for credentials, the name of the domain to use when installing and promoting the domain controller and to provide and confirm the Directory Services Restore Mode (DSRM) password.
Get-Command Install-ADDSDomainController
. Add-ADDSReadOnlyDomainControllerAccount
. Install-ADDSDomain
. Install-ADDSForest
fantastic points altogether, you simply gained a brand new reader. What would you recommend about your post that you made some days ago? Any positive?