-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathactive-directory-lab.html
More file actions
214 lines (180 loc) · 10.7 KB
/
active-directory-lab.html
File metadata and controls
214 lines (180 loc) · 10.7 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
<!DOCTYPE HTML>
<html>
<head>
<title>Active Directory Home Lab - Elias Tovar</title>
<meta charset="utf-8" />
<meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no" />
<link rel="stylesheet" href="assets/css/main.css" />
</head>
<body class="is-preload">
<!-- Wrapper -->
<div id="wrapper">
<!-- Main -->
<div id="main">
<div class="inner">
<!-- Header -->
<header id="header">
<a href="index.html" class="logo"><strong>Back to Portfolio</strong></a>
<ul class="icons">
<li><a href="https://www.linkedin.com/in/eliastovar/" class="icon brands fa-linkedin"><span class="label">Twitter</span></a></li>
<li><a href="https://github.com/whyelias" class="icon brands fa-github"><span class="label">Facebook</span></a></li>
<li><a href="https://www.youtube.com/@gravpickle1921" class="icon brands fa-youtube"><span class="label">Snapchat</span></a></li>
<li><a href="https://www.instagram.com/why_eliast/" class="icon brands fa-instagram"><span class="label">Instagram</span></a></li>
</ul>
</header>
<!-- Content -->
<section>
<header class="main">
<h1>Active Directory Home Lab</h1>
</header>
<span class="image main"><img src="images/pic02.jpg" alt="" /></span>
<h2>Project Overview</h2>
<p>Configured two Windows Server 2019 machines, one physical server and one virtual machine, to run Active Directory to host machines and users. This project combines Active Directory, Windows system configuration, and network administration</p>
<hr class="major" />
<h2>Technologies Used</h2>
<ul>
<li>BMAX Mini PC - Windows Server 2019</li>
<li>VirtualBox VM - Windows Server 2019</li>
<li>VirtualBox VM - Windows 10 Pro</li>
<li>Mac Mini - Ubuntu 24.02 LTS</li>
</ul>
<hr class="major" />
<!-- Implementation Details Section - Replace the existing section in active-directory-lab.html -->
<h2>Implementation Details</h2>
<p>
This project involved building two separate Active Directory environments to gain hands-on experience
with enterprise network administration and Windows Server infrastructure. The first implementation was
a fully configured virtual lab using VirtualBox with NAT routing and DHCP services. The second was a
physical homelab using dedicated hardware to manage real devices on my network.
</p>
<h3>Virtual Machine Setup (VirtualBox)</h3>
<p>
The virtual environment simulated a complete enterprise network with a domain controller providing
Active Directory, routing, and DHCP services to client machines.
</p>
<h4>Initial Server Configuration</h4>
<ul>
<li>Installed Windows Server 2019 on a VirtualBox virtual machine.</li>
<li>Renamed the server to "DC" (Domain Controller) for clarity.</li>
<li>Configured dual network adapters: one for external internet connectivity and one for the internal network.</li>
<li>Set up the internal NIC with a static IP address (172.16.0.1/24) and configured DNS to point to loopback (127.0.0.1).</li>
</ul>
<h4>Active Directory Domain Services</h4>
<ul>
<li>Installed Active Directory Domain Services through Server Manager.</li>
<li>Promoted the server to a domain controller and created a new forest.</li>
<li>Created an Organizational Unit named "_ ADMINS" for administrative accounts.</li>
<li>Generated a dedicated domain administrator account and added it to the Domain Admins security group.</li>
<li>Verified administrative access by logging in with the new credentials.</li>
</ul>
<h4>Routing and Remote Access (RAS/NAT)</h4>
<ul>
<li>Installed the Remote Access role with routing capabilities.</li>
<li>Configured Network Address Translation (NAT) to allow internal network clients to access the internet through the domain controller.</li>
<li>Designated the external NIC as the public interface for internet connectivity.</li>
<li>Enabled routing between the internal and external networks.</li>
</ul>
<h4>DHCP Server Configuration</h4>
<ul>
<li>Installed the DHCP Server role through Server Manager.</li>
<li>Created a new DHCP scope with an IP address range of 172.16.0.100 to 172.16.0.200.</li>
<li>Configured the domain controller's IP address (172.16.0.1) as the default gateway for DHCP clients.</li>
<li>Set DNS server options to point to the domain controller for name resolution.</li>
<li>Authorized the DHCP server in Active Directory.</li>
</ul>
<h4>Bulk User Creation</h4>
<ul>
<li>Created an Organizational Unit named "_ EMPLOYEES" to organize user accounts.</li>
<li>Developed a PowerShell script to automate the creation of 10,000 test users with randomly generated names.</li>
<li>Configured all user accounts with a standard password and set passwords to never expire for lab purposes.</li>
<li>Verified user account creation through Active Directory Users and Computers.</li>
</ul>
<h4>Client Machine Setup</h4>
<ul>
<li>Created a Windows 10 Pro virtual machine to act as a domain-joined client.</li>
<li>Configured the VM to use the internal network adapter only.</li>
<li>Verified that the client received an IP address automatically from the DHCP server.</li>
<li>Successfully joined the Windows 10 machine to the domain.</li>
<li>Tested user authentication by logging in with domain user credentials.</li>
</ul>
<h3>Physical Homelab Setup</h3>
<p>
The physical implementation focused on core Active Directory functionality using real hardware to
manage devices on my home network.
</p>
<h4>Hardware Configuration</h4>
<ul>
<li>Deployed Windows Server 2019 on a BMAX Mini PC as the domain controller.</li>
<li>Configured a Mac Mini running Ubuntu 24.02 LTS as a client device.</li>
<li>Connected both machines to the existing network infrastructure without dual NICs.</li>
<li>Assigned static IP addressing to the domain controller for reliable DNS services.</li>
</ul>
<h4>Active Directory Setup</h4>
<ul>
<li>Installed Active Directory Domain Services on the BMAX Mini PC.</li>
<li>Created a new domain and promoted the server to domain controller.</li>
<li>Manually created administrative and standard user accounts without automation scripts.</li>
<li>Organized users into appropriate Organizational Units for better management.</li>
<li>Configured Group Policy settings for basic security and management policies.</li>
</ul>
<h3>Results</h3>
<ul>
<li>Successfully deployed two functional Active Directory environments with different architectures.</li>
<li>Gained practical experience with Windows Server administration, networking, and automation.</li>
<li>Demonstrated understanding of enterprise identity management and network services.</li>
<li>Created a scalable test environment for experimenting with Group Policy, user management, and domain services.</li>
<li>Achieved stable domain controller operation supporting multiple client devices.</li>
</ul>
<h2>Future Improvements</h2>
<ul>
<li>Automate user account creation and management.</li>
<li>Configure Group Policy settings for additional security and management policies.</li>
<li>Add the ML machine to the domain and configure users to be able to access and use it</li>
</ul>
<ul class="actions">
<li><a href="index.html" class="button big">Back to Portfolio</a></li>
</ul>
</section>
</div>
</div>
<!-- Sidebar -->
<div id="sidebar">
<div class="inner">
<!-- Menu -->
<nav id="menu">
<header class="major">
<h2>Menu</h2>
</header>
<ul>
<li><a href="index.html">Homepage</a></li>
<li><a href="raspberry-pi-project.html">Raspberry Pi Project</a></li>
<li><a href="active-directory-lab.html">Active Directory Lab</a></li>
<li><a href="ml-model-project.html">ML Model Project</a></li>
<li><a href="security-lab.html">Azure Security Lab</a></li>
</ul>
</nav>
<!-- Contact -->
<section>
<header class="major">
<h2>Get in touch</h2>
</header>
<ul class="contact">
<li class="icon solid fa-envelope"><a href="mailto::elias@tovarfamily.org">elias@tovarfamily.org</a></li>
<li class="icon solid fa-phone">512-517-1775</li>
</ul>
</section>
<!-- Footer -->
<footer id="footer">
<p class="copyright">© Elias Tovar. Design: <a href="https://html5up.net">HTML5 UP</a>.</p>
</footer>
</div>
</div>
</div>
<!-- Scripts -->
<script src="assets/js/jquery.min.js"></script>
<script src="assets/js/browser.min.js"></script>
<script src="assets/js/breakpoints.min.js"></script>
<script src="assets/js/util.js"></script>
<script src="assets/js/main.js"></script>
</body>
</html>