Make sure you join the member server to Active directory domain

Similar documents
Domain Restructuring Windows Server 2008

Dell EMC SC Series and Active Directory Integration

Installing Active Directory on a Windows 2008 Server

Install and Manage Windows Nano Server 2016 Step by Step

Active Directory as a Probe and a Provider

Installing Active Directory on a Windows 2012 Server

PAN 802.1x Connector Application Installation Guide

Managing External Identity Sources

Microsoft Exchange Proxy Settings Outlook 2010 Gpo

Agha Mohammad Haidari General ICT Manager in Ministry of Communication & IT Cell#

Documentation. nfront Web Password Change. Version nfront Security. All Rights Reserved.

Extend On-Premises Windows Server 2016 Active Directory to Azure VM Complete Lab (V1.1)

Remote Support Security Provider Integration: RADIUS Server

Learn about the Fundamental building blocks that go into building a Windows Server infrastructure with Windows Server 2012.

Object of this document

INSTALLING LYNC SERVER 2013 EE POOL ON WINDOWS SERVER 2012

Independent DeltaV Domain Controller

How To Remove Failed Domain Controller From Active Directory 2008 R2

Pyramid 2018 Kerberos Guide Guidelines and best practices for how deploy Pyramid 2018 with Kerberos

Step by Step Journey to Migration Exchange 2010 sp3 to Exchange Server 2016 Part-I

Deployment of Unified Communication - Lync Server 2013 Steps: Lync Front End Server in a Domain. Few Screen Shots. Scroll down to start your drill

ISA 2006 and OWA 2003 Implementation Guide

How to Integrate an External Authentication Server

Installation and Setup Guide

Security Provider Integration RADIUS Server

Grant Minimum Permission to an Active Directory User Account Used by the Sourcefire User Agent

NetApp AltaVault Cloud-Integrated Storage Appliances

MS-20410A: Installing and Configuring Windows Server 2012

XIA Configuration Server

Exchange Server Installation on Windows Server 2019 Core Edition

Citrix Cloud Government

App Orchestration 2.6

Pearson System of Courses (PSC) Deploying PSC with System Center Configuration Manager (SCCM) for Windows

Configuring Claims-based Authentication for Microsoft Dynamics CRM Server. Last updated: May 2015

Oracle 10g. Configuration Guide. Copyright 2005 CRYPTOCard Corporation All Rights Reserved

Migrating from Window Server 2003 to Windows Server 2008 on Different Hardware Server. Pre-requisites

Networking with Windows Server 2016

Click Studios. SQL Server Transactional Replication for Passwordstate High Availability

PowerExchange for Facebook: How to Configure Open Authentication using the OAuth Utility

RAP as a Service for Exchange Server: Prerequisites

Table of Contents. Installing the AD FS Running the PowerShell Script 16. Troubleshooting log in issues 19

Quick Start Guide For Ipswitch Failover v9.0.1

VMware Identity Manager Connector Installation and Configuration (Legacy Mode)

Installing and Configuring VMware Identity Manager Connector (Windows) OCT 2018 VMware Identity Manager VMware Identity Manager 3.

AutomaTech Application Note July 2015

SQL Server Course Administering a SQL 2016 Database Infrastructure. Length. Prerequisites. Audience. Course Outline.

nexvortex Setup Template

Tutorial 19 - Remotely Debugging Projects

70-742: Identity in Windows Server Course Overview

Install and Configure Active Directory Domain Services

Privileged Identity App Launcher and Session Recording

Configuration Guide. BlackBerry UEM Cloud

Course: Windows 7 Enterprise Desktop Support Technician Boot Camp (MCITPWIN7)

Networks: Access Management Windows 2000 Server Class Notes # 22 Building an Active Directory February 26, 2004

Overview. Audience Profile. Module Title : 20410DC -Installing and Configuring Windows Server Course Outline :: 20410DC::

RAP as a Service Active Directory Security: Prerequisites

DigitalPersona Altus. Solution Guide

ArcGIS for Server: Administration and Security. Amr Wahba

Joining a workstation to the agnet.tamu.edu Domain and Profile Migration

StoneFax provides the Print To Fax feature to any user who is in the same Windows Domain of the StoneFax server.

COURSE 20741B: NETWORKING WITH WINDOWS SERVER 2016

RED IM Integration with Bomgar Privileged Access

10972: ADMINISTERING THE WEB SERVER (IIS) ROLE OF WINDOWS SERVER

Networking with Windows Server 2016

Manually Create Delegation Dns Server Windows 2008

CMX Connected Experiences- Social, SMS and Custom Portal Registration Configuration Example

Chime for Lync High Availability Setup

SQL AlwaysOn - Skype for Business

Window Server Firewall Configuration

CONFIGURING SQL SERVER 2008 REPORTING SERVICES FOR REDHORSE CRM

itexamdump 최고이자최신인 IT 인증시험덤프 일년무료업데이트서비스제공

Using System Center 2012 Configuration Manager - Part 2. Install the primary server - P01

Deploying F5 with Citrix XenApp or XenDesktop

NETWRIX INACTIVE USER TRACKER

SEVENMENTOR TRAINING PVT.LTD

EZY Intellect Pte. Ltd.,

Windows Server 2008 Training

FULLY QUALIFIED DOMAIN NAMES (FQDNS) IN ACTIVE DIRECTORY CANNOT EXCEED 64 CHARACTERS IN TOTAL LENGTH, INCLUDING HYPHENS AND PERIODS (.).

SMS 2.0 SSO / LDAP Launch Kit

Setting Up Resources in VMware Identity Manager (On Premises) Modified on 30 AUG 2017 VMware AirWatch 9.1.1

Getting Started with VMware View View 3.1

Guide to Deploying VMware Workspace ONE with VMware Identity Manager. SEP 2018 VMware Workspace ONE

Deploying F5 with Citrix XenApp or XenDesktop

Configuring Claims-based Authentication for Microsoft Dynamics CRM Server. Last updated: June 2014

VMware AirWatch Certificate Authentication for Cisco IPSec VPN

Kerberos Constrained Delegation Authentication for SEG V2. VMware Workspace ONE UEM 1810

User Identity Sources

Print Manager Plus 2010 Workgroup Print Tracking and Control

Chapter 4: Managing the Directory 4.1: Overview of Managing the Directory

Course Networking with Windows Server 2016

VMware AirWatch Integration with F5 Guide Enabling secure connections between mobile applications and your backend resources

Configuring ADFS for Academic Works

Sentinet for Microsoft Azure SENTINET

Dell MessageStats for Lync User Guide

VMware Identity Manager Administration

VMware Horizon Cloud Service on Microsoft Azure Administration Guide

INSTALLATION GUIDE Spring 2017

Guide to Deploying VMware Workspace ONE. DEC 2017 VMware AirWatch 9.2 VMware Identity Manager 3.1

10970B: Networking with Windows Server

20741: Networking with Windows Server Course Content. Course ID #: W Hours: 35. Course Description: At Course Completion:

Transcription:

Configure Windows Server 2008 Member Server as Domain Controller Overview: Domain controllers allow local and remote users to leverage on directory service to store the directory data. Most of the System Administrators / System Engineers / Consultants have installed and re-installed domain controllers in various infrastructure. This article shows the first level internals of the threads and call stack involved during promoting the member server, though we do not hook windows debugger to debug dcpromo.exe and corresponding threads, but we get to see most of the call stack at high level. Scenario: Installing new Domain under existing forest. Tools Used: Process explorer Prerequisites: Make sure you join the member server to Active directory domain Make sure you point the primary DNS to active directory domain which can be reachable and secondary DNS server to itself Make sure you provide static IP address to the server Make sure the firewall ports for RPC, Kerberos, netlogon, SMB are opened Below are the steps which includes the steps followed by the call stack Step1 : Launch Dcpromo.exe utility from Start Search bar, to promote member server to domain controller. Below wizard gets opened

Threads Below are the corresponding threads associated with Dcpromo.exe

Call Stack: Below is the call stack for the thread dcpromo.exe at offset 0x1935c, we could get more information about the process with windows debugger ( Windbg.exe ), you need to load the proper symbols for dcpromo.exe and analyze the stack.

Step 2: The next windows explains about the windows compatibility options

Call Stack The call stack for dcpromo.exe contains the below stack. At a very high level we can see that there are 2 major modules dcpromoui.dll and dcpromo.exe and the interesting stack line is dcpromoui.dll!dcpromoentryw which explains that we are still at entry level.

Step 3 : The next step allows administrators to add domain controller to existing domain, to new domain or create new domain in new forest. In our example we select Create a new domain in an existing forest

Call Stack As we are making changes at dcpromoui, there aren t any changes at the call stack level. Step 4: When we click Next from the above wizard, the FQDN would automatically get populated which in our example is corp.test.local I am using my logged on credentials ( login with the credentials which has permission to install domain controller ), the User s SID with the Group SID s attached at the access token will determine whether

the user has relevant permissions. Call Stack There are no changes observed at the call stack or at the Thread activity which means dcpromo.exe has not called any new dynamic link libraries.

Step 5: When we click Next from the previous wizard, an RPC transaction occurs which perform asynchronous client communication along with establishing client stubs. It is important to understand that the user credentials were validated and only then Name the new Domain wizard gets opened. Thread Activity: A new thread gets called msvcrt.dll

Call Stack : msvcrt.dll is called ( write from other article ). Below call stack belongs to Msvcrt.dll, it is interesting to see the stack line from 10 21 which shows the various RPC calls being made and calls DSgetDCNameWithAccount.

Step 9: In my example I have created new domain under the forest corp.test.local as Singapore.corp.test.local Thread Activity You can see that there are 3 threads being created by dcpromo.exe which belongs to msvcrt.dll module

such as msvcrt.dll ( 2 threads of different TID ) mswsock.dll Call Stack of mswsock.dll Call Stack of msvcrt.dll!endthread

Step 10 : We are completing the installation.

Thread Activity

Call Stack of dcpromo.exe ntoskrnl.exe!memset+0x64a ntoskrnl.exe!exfreleasepushlock+0x8ec ntoskrnl.exe!postartnextpowerirp+0x331 ntoskrnl.exe!postartnextpowerirp+0x17e7 ntoskrnl.exe!kewaitformultipleobjects+0xf5d ntoskrnl.exe!kewaitforsingleobject+0x19f win32k.sys!memset+0x7a17 win32k.sys!memset+0x7ab1 win32k.sys!w32pargumenttable+0xa8b6

ntoskrnl.exe!kesynchronizeexecution+0x3a43 USER32.dll!WaitMessage+0xa USER32.dll!GetComboBoxInfo+0x174 USER32.dll!GetComboBoxInfo+0x48d USER32.dll!DialogBoxIndirectParamAorW+0x56 USER32.dll!DialogBoxParamW+0x66 dcpromoui.dll!dcpromofreememory+0x86bba dcpromoui.dll!dcpromofreememory+0x88335 dcpromoui.dll+0x51a23 dcpromoui.dll+0x51cad dcpromoui.dll!dcpromofreememory+0x89700 USER32.dll!CreateDialogParamW+0x49b USER32.dll!CreateDialogParamW+0x276 USER32.dll!UserHandleGrantAccess+0x4e3b USER32.dll!SendMessageW+0x5d Comctl32.dll!Ordinal342+0xd1c Comctl32.dll!Ordinal342+0x80 Comctl32.dll!CreatePropertySheetPage+0x1ad5 Comctl32.dll!CreatePropertySheetPage+0x338d Comctl32.dll!CreatePropertySheetPage+0x353b Comctl32.dll!CreatePropertySheetPage+0x47a9 USER32.dll!CreateDialogParamW+0x49b USER32.dll!CreateDialogParamW+0x276 USER32.dll!UserHandleGrantAccess+0x4e3b USER32.dll!SendMessageW+0x5d Comctl32.dll!TaskDialog+0x3213f Comctl32.dll!TaskDialog+0x35d7e USER32.dll!TranslateMessageEx+0x2a1

USER32.dll!CallWindowProcW+0x9c USER32.dll!CallWindowProcW+0x18 Comctl32.dll!CreateUpDownControl+0x254d Comctl32.dll!DefSubclassProc+0x2b4 Comctl32.dll!DefSubclassProc+0x7c Comctl32.dll!CreatePropertySheetPage+0x5ba Comctl32.dll!DefSubclassProc+0x2b4 Comctl32.dll!DefSubclassProc+0x18b USER32.dll!TranslateMessageEx+0x2a1 USER32.dll!TranslateMessage+0x1ea USER32.dll!IsDialogMessageW+0x102 Comctl32.dll!CreatePropertySheetPage+0x37bc Comctl32.dll!CreatePropertySheetPage+0x5b57 Comctl32.dll!Ordinal165+0x261 dcpromoui.dll!dcpromofreememory+0x868ef dcpromoui.dll!dcpromofreememory+0x8758a dcpromoui.dll+0x556db dcpromoui.dll+0x5645b dcpromoui.dll!dcpromoentryw+0x598 dcpromo.exe+0x89ee dcpromo.exe+0x1920d kernel32.dll!basethreadinitthunk+0xd ntdll.dll!rtluserthreadstart+0x21 Call Stack of msvcrt.dll ntoskrnl.exe!memset+0x64a ntoskrnl.exe!exfreleasepushlock+0x8ec

ntoskrnl.exe!postartnextpowerirp+0x331 ntoskrnl.exe!postartnextpowerirp+0x17e7 ntoskrnl.exe!kewaitformultipleobjects+0xf5d ntoskrnl.exe!kewaitforsingleobject+0x19f win32k.sys!memset+0x7a17 win32k.sys!memset+0x7ab1 win32k.sys!w32pargumenttable+0xa8b6 ntoskrnl.exe!kesynchronizeexecution+0x3a43 USER32.dll!WaitMessage+0xa USER32.dll!GetComboBoxInfo+0x174 USER32.dll!GetComboBoxInfo+0x48d USER32.dll!DialogBoxIndirectParamAorW+0x56 USER32.dll!DialogBoxParamW+0x66 dcpromoui.dll!dcpromofreememory+0x86bba dcpromoui.dll!dcpromofreememory+0x88335 dcpromoui.dll+0x51a23 dcpromoui.dll+0x51cad dcpromoui.dll!dcpromofreememory+0x89700 USER32.dll!CreateDialogParamW+0x49b USER32.dll!CreateDialogParamW+0x276 USER32.dll!UserHandleGrantAccess+0x4e3b USER32.dll!SendMessageW+0x5d Comctl32.dll!Ordinal342+0xd1c Comctl32.dll!Ordinal342+0x80 Comctl32.dll!CreatePropertySheetPage+0x1ad5 Comctl32.dll!CreatePropertySheetPage+0x338d Comctl32.dll!CreatePropertySheetPage+0x353b Comctl32.dll!CreatePropertySheetPage+0x47a9

USER32.dll!CreateDialogParamW+0x49b USER32.dll!CreateDialogParamW+0x276 USER32.dll!UserHandleGrantAccess+0x4e3b USER32.dll!SendMessageW+0x5d Comctl32.dll!TaskDialog+0x3213f Comctl32.dll!TaskDialog+0x35d7e USER32.dll!TranslateMessageEx+0x2a1 USER32.dll!CallWindowProcW+0x9c USER32.dll!CallWindowProcW+0x18 Comctl32.dll!CreateUpDownControl+0x254d Comctl32.dll!DefSubclassProc+0x2b4 Comctl32.dll!DefSubclassProc+0x7c Comctl32.dll!CreatePropertySheetPage+0x5ba Comctl32.dll!DefSubclassProc+0x2b4 Comctl32.dll!DefSubclassProc+0x18b USER32.dll!TranslateMessageEx+0x2a1 USER32.dll!TranslateMessage+0x1ea USER32.dll!IsDialogMessageW+0x102 Comctl32.dll!CreatePropertySheetPage+0x37bc Comctl32.dll!CreatePropertySheetPage+0x5b57 Comctl32.dll!Ordinal165+0x261 dcpromoui.dll!dcpromofreememory+0x868ef dcpromoui.dll!dcpromofreememory+0x8758a dcpromoui.dll+0x556db dcpromoui.dll+0x5645b dcpromoui.dll!dcpromoentryw+0x598 dcpromo.exe+0x89ee dcpromo.exe+0x1920d

kernel32.dll!basethreadinitthunk+0xd ntdll.dll!rtluserthreadstart+0x21 Conclusion: This article would be useful for advance troubleshooting which exposes the various threads and processes when performing Dcpromo activity.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback