How to Setup RODC For Windows Server 2008 R2


In this tutorial How to Setup Read Only Domain Controller For Windows Server 2008 R2 is shown.

  • Firstly you have to install windows server 2008 R2 server

Configure Network Card (provide a static IP address and DNS)

2008 secondary 1.55-2017-09-07-01-33-56

promote to a domain controller using dcpromo command

2008 secondary 1.55-2017-09-07-01-39-40

2008 secondary 1.55-2017-09-07-01-39-45

2008 secondary 1.55-2017-09-07-02-18-18

Click Next to continue

2008 secondary 1.55-2017-09-07-02-18-22

Select the option: Add a domain controller to an existing domain

2008 secondary 1.55-2017-09-07-02-18-33

Provide the user credentials to perform the installation

2008 secondary 1.55-2017-09-07-02-19-02

2008 secondary 1.55-2017-09-07-02-19-06

Select the domain for the additional domain controller

2008 secondary 1.55-2017-09-07-02-19-16

Select a site

2008 secondary 1.55-2017-09-07-02-19-45

Select following options

2008 secondary 1.55-2017-09-07-02-19-51

Keep the locations for AD DS database, log files and SYSVOL as it is

2008 secondary 1.55-2017-09-07-02-21-42

Provide DSRM password and select Read Only Domain Controller (RODC)

Directory Services Restore Mode (DSRM) is a special boot mode for repairing or recovering Active Directory. It is used to log on to the computer when Active Directory has failed or needs to be restored.

2008 secondary 1.55-2017-09-07-02-22-10

2008 secondary 1.55-2017-09-07-02-22-14

2008 secondary 1.55-2017-09-07-02-22-25

Congratulations RODC is installed



How to Install Active Directory in Windows Server 2008


Please note that,

  • Static IP address is configured before AD installation in this guide
  • DNS server is installed with the AD


Open Server manager and select Roles

2008 AA AD [10]-2017-03-12-18-58-55

Select Add Roles

2008 AA AD [10]-2017-03-12-19-01-12


2008 AA AD [10]-2017-03-12-19-01-22

Tick Active Directory Domain Services and Press Add Required Features

2008 AA AD [10]-2017-03-12-19-20-16

2008 AA AD [10]-2017-03-12-19-20-28

Read and Press Next

2008 AA AD [10]-2017-03-12-19-20-36

Press Install to install .Net Framework

2008 AA AD [10]-2017-03-12-19-20-41

Press Close after the “Installation succeeded”

2008 AA AD [10]-2017-03-12-19-32-01.png

Go back to Server Manager and click Active Directory Server Manager to configure AD

2008 AA AD [10]-2017-03-12-19-44-26

Click Run the Active Directory Domain Services Installation Wizard (dcpromo.exe)

2008 AA AD [10]-2017-03-12-19-44-31

Installation wizard will start. Proceed with next

2008 AA AD [10]-2017-03-12-21-19-31

Read the information and move on

2008 AA AD [10]-2017-03-12-21-21-18

Choose Create a new domain in a new forest

2008 AA AD [10]-2017-03-12-21-21-25

Provied the appropriate Domain name

2008 AA AD [10]-2017-03-12-21-21-51

Choose oldest opeating system in your organization

2008 AA AD [10]-2017-03-12-21-37-07
Forest Functional Level
2008 AA AD [10]-2017-03-12-21-37-11
Domain Functional Level
Install DNS server if you dont have any. This will install DNS server on the same server where AD is installed

2008 AA AD [10]-2017-03-12-21-40-10

2008 AA AD [10]-2017-03-12-21-40-22

Provide Restore Mode password

2008 AA AD [10]-2017-03-12-21-40-32

2008 AA AD [10]-2017-03-12-21-40-37

Finish AD installation and restart

2008 AA AD [10]-2017-03-12-21-43-52

2008 AA AD [10]-2017-03-12-21-44-00

Congratualtions !! AD is installed on Windows Server 2008

2008 AA AD [10]-2017-03-12-22-50-01.png