![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/ba1e00a3626e84fc37791fef20da38ad.png)
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/0243ae9feb86e960f8538589388fd4c2.png)
- 只选择Active Directory域服务
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/25a171846bd3b66693621cc2e760432e.png)
- 下一步不选,继续下一步
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/9b519f6b147f81fb3d9d430f0155df7e.png)
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/caacaa1a38717de9b5264f39fa3f7bea.png)
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/69bf3840f82b81866a1d540fac964231.png)
- 完成安装,并将此服务器提升为域控制器
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/116d33404fde748cc1839af6cb2a244c.png)
- 添加新林,并添加要域名,然后下一步
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/428c656b284efc10fb5a156ae57b78c7.png)
- 添加密码,下一步
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/5fffdee2a88dcaf80597a4d958bb417a.png)
- 忽略,继续下一步
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/1d73966a1fa4f702083c4a732c959675.png)
- 忽略,继续下一步
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/29af0b0b0f6a841b275d4f5893f117dc.png)
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/077c72d6662ac2430bea9fd2890d9da0.png)
- 安装
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/7d05117aa6371a9ab20e13ca4fa71cef.png)
- 完成之后会自动重启
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/ed43f9c6bdbdac8fdd49713c9738e89b.png)
- 重新启动之后,已经切换到DEV域了
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/c544e14a6f522a1d0752bb0a6c3d943e.png)
使用win+r, ldp验证
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/c20e741dbca2357412b59bc9f7aa13b6.png)
ld = ldap_open("192.168.22.129", 389);
Established connection to 192.168.22.129.
Retrieving base DSA information...
Getting 1 entries:
Dn: (RootDSE)
configurationNamingContext: CN=Configuration,DC=dev,DC=com;
currentTime: 2019/1/5 11:46:45 中国标准时间;
defaultNamingContext: DC=dev,DC=com;
dnsHostName: WIN-VVMM2D2OC7O.dev.com;
domainControllerFunctionality: 6 = ( WIN2012R2 );
domainFunctionality: 6 = ( WIN2012R2 );
dsServiceName: CN=NTDS Settings,CN=WIN-VVMM2D2OC7O,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=dev,DC=com;
forestFunctionality: 6 = ( WIN2012R2 );
highestCommittedUSN: 12705;
isGlobalCatalogReady: TRUE;
isSynchronized: TRUE;
ldapServiceName: dev.com:win-vvmm2d2oc7o$@DEV.COM;
namingContexts (5): DC=dev,DC=com; CN=Configuration,DC=dev,DC=com; CN=Schema,CN=Configuration,DC=dev,DC=com; DC=DomainDnsZones,DC=dev,DC=com; DC=ForestDnsZones,DC=dev,DC=com;
rootDomainNamingContext: DC=dev,DC=com;
schemaNamingContext: CN=Schema,CN=Configuration,DC=dev,DC=com;
serverName: CN=WIN-VVMM2D2OC7O,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=dev,DC=com;
subschemaSubentry: CN=Aggregate,CN=Schema,CN=Configuration,DC=dev,DC=com;
supportedCapabilities (6): 1.2.840.113556.1.4.800 = ( ACTIVE_DIRECTORY ); 1.2.840.113556.1.4.1670 = ( ACTIVE_DIRECTORY_V51 ); 1.2.840.113556.1.4.1791 = ( ACTIVE_DIRECTORY_LDAP_INTEG ); 1.2.840.113556.1.4.1935 = ( ACTIVE_DIRECTORY_V61 ); 1.2.840.113556.1.4.2080 = ( ACTIVE_DIRECTORY_V61_R2 ); 1.2.840.113556.1.4.2237 = ( ACTIVE_DIRECTORY_W8 );
supportedControl (37): 1.2.840.113556.1.4.319 = ( PAGED_RESULT ); 1.2.840.113556.1.4.801 = ( SD_FLAGS ); 1.2.840.113556.1.4.473 = ( SORT ); 1.2.840.113556.1.4.528 = ( NOTIFICATION ); 1.2.840.113556.1.4.417 = ( SHOW_DELETED ); 1.2.840.113556.1.4.619 = ( LAZY_COMMIT ); 1.2.840.113556.1.4.841 = ( DIRSYNC ); 1.2.840.113556.1.4.529 = ( EXTENDED_DN ); 1.2.840.113556.1.4.805 = ( TREE_DELETE ); 1.2.840.113556.1.4.521 = ( CROSSDOM_MOVE_TARGET ); 1.2.840.113556.1.4.970 = ( GET_STATS ); 1.2.840.113556.1.4.1338 = ( VERIFY_NAME ); 1.2.840.113556.1.4.474 = ( RESP_SORT ); 1.2.840.113556.1.4.1339 = ( DOMAIN_SCOPE ); 1.2.840.113556.1.4.1340 = ( SEARCH_OPTIONS ); 1.2.840.113556.1.4.1413 = ( PERMISSIVE_MODIFY ); 2.16.840.1.113730.3.4.9 = ( VLVREQUEST ); 2.16.840.1.113730.3.4.10 = ( VLVRESPONSE ); 1.2.840.113556.1.4.1504 = ( ASQ ); 1.2.840.113556.1.4.1852 = ( QUOTA_CONTROL ); 1.2.840.113556.1.4.802 = ( RANGE_OPTION ); 1.2.840.113556.1.4.1907 = ( SHUTDOWN_NOTIFY ); 1.2.840.113556.1.4.1948 = ( RANGE_RETRIEVAL_NOERR ); 1.2.840.113556.1.4.1974 = ( FORCE_UPDATE ); 1.2.840.113556.1.4.1341 = ( RODC_DCPROMO ); 1.2.840.113556.1.4.2026 = ( DN_INPUT ); 1.2.840.113556.1.4.2064 = ( SHOW_RECYCLED ); 1.2.840.113556.1.4.2065 = ( SHOW_DEACTIVATED_LINK ); 1.2.840.113556.1.4.2066 = ( POLICY_HINTS_DEPRECATED ); 1.2.840.113556.1.4.2090 = ( DIRSYNC_EX ); 1.2.840.113556.1.4.2205 = ( UPDATE_STATS ); 1.2.840.113556.1.4.2204 = ( TREE_DELETE_EX ); 1.2.840.113556.1.4.2206 = ( SEARCH_HINTS ); 1.2.840.113556.1.4.2211 = ( EXPECTED_ENTRY_COUNT ); 1.2.840.113556.1.4.2239 = ( POLICY_HINTS ); 1.2.840.113556.1.4.2255 = ( SET_OWNER ); 1.2.840.113556.1.4.2256 = ( BYPASS_QUOTA );
supportedLDAPPolicies (19): MaxPoolThreads; MaxPercentDirSyncRequests; MaxDatagramRecv; MaxReceiveBuffer; InitRecvTimeout; MaxConnections; MaxConnIdleTime; MaxPageSize; MaxBatchReturnMessages; MaxQueryDuration; MaxTempTableSize; MaxResultSetSize; MinResultSets; MaxResultSetsPerConn; MaxNotificationPerConn; MaxValRange; MaxValRangeTransitive; ThreadMemoryLimit; SystemMemoryLimitPercent;
supportedLDAPVersion (2): 3; 2;
supportedSASLMechanisms (4): GSSAPI; GSS-SPNEGO; EXTERNAL; DIGEST-MD5;
-----------
0 = ldap_set_option(ld, LDAP_OPT_ENCRYPT, 1)
res = ldap_bind_s(ld, NULL, &NtAuthIdentity, NEGOTIATE (1158)); // v.3
{NtAuthIdentity: User='administrator'; Pwd=<unavailable>; domain = 'dev.com'}
Authenticated as: 'DEV\Administrator'.
-----------
添加用户并设置登录
- 打开
Active Directory用户和计算机
![添加新建](https://i-blog.csdnimg.cn/blog_migrate/3b1c6261ea30027596b32a3f7b7f64d1.png)
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/38426240e1b0f22055093b6585798ae2.png)
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/c7b7ce21899d874dc16d2ab19f7f3756.png)
- 继续,到完成
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/1499d5a017ac1d0982c664a4f59f68f3.png)
- 此时登录,会提示错误:不允许使用你正在尝试的登录方式
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/2e78f9bb33ca2b0996f16fc8b1afdf80.png)
- 配置登录权限
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/b38b99aab455b285a79678091a9cd008.png)
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/b0bafaeadf984fff498d60fa00a42469.png)
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/27fcab5bdb27e5f1897cfe2d7f7364f2.png)
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/d640bafe6d7e096f9c3ef2d0906e0dec.png)
- 成功登录
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/d41c1c7dbaddd0e00fbe7cb80414070e.png)
- ldp登录验证成功
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/64644c1ac794844c166fb32431dd74d5.png)