Cisco Cisco Administrative Workstation Release Note
Enterprise ICM Dedicated Forest/Domain Model
1. Click
Start > Run, enter DCPROMO and click OK. The Active Directory Installation wizard opens.
2. Under the “Domain Controller Type,” select the “Domain Controller for a New Domain.” The “Create
Tree or Child Domain” screen appears.
3. Select “Create a new Domain Tree,” the “Create or Join Forest” screen appears.
4. Select “Create a New Forest of Domain Trees” “New Domain Name” screen opens. Type in the full
DNS name for the new domain.
5. On the “NetBIOS Domain Name” screen, type in the NetBIOS name.
6. Accept Database and Log Location defaults.
7. Accept the Shared System Volume default. A warning appears claiming that the wizard cannot contact
the DNS Server (since you have not configured it yet). Click on OK and you are presented with the
“Configure DNS Screen.” Select “Yes, install and configure DNS on this computer.”
“Configure DNS Screen.” Select “Yes, install and configure DNS on this computer.”
8. On the “Permissions” screen, select “Permissions compatible with pre-Windows 2000 servers.”
9. On the “Directory Services Restore Mode Administrator Password,” input Administrator password as
detailed in the 3
rd
Party Host Form.
10. On the Summary screen, check Settings and click on Next. Insert the Windows 2000 CD and setup
continues to install Active Directory and DNS Server.
11. Restart when the installation completes.
Step 5.
Configure DNS Server on Forest Root Domain Controller
1. Click
Start > Programs > Admin Tools > DNS.
2. Expand Hostname Tree.
3. Expand Forward Lookup Zones.
4. Right-click the root folder (the folder named “.”) and select delete. You receive a warning about the
zone and click Yes.
5. Highlight the machine name, right-click and select Properties.
6. On the Interfaces Tab, select “Listen on Only the following IP addresses” and remove all but the visible
machine address.
7. Complete the configuration of AD Integrated Forward and Reverse Lookup Zones.
o
Highlight the ICM Domain zone name under Forward Lookup Zones, right-click and select
Properties.
Properties.
o
On the General Tab, for “Allow Dynamic Updates,” select “Only Secure Updates” from the
menu.
menu.
o
Only use the Zone Transfers Tab when there is a Trust between this domain and another
domain, in which case you need to Transfer Zone updates from this Active Directory
Integrated Zone to a Standard Secondary Zone on the DNS Servers in the other domain. You
“Allow Zone Transfers” then select “only to the following servers” and enter the IP Addresses
of the DNS Servers in the other domain.
domain, in which case you need to Transfer Zone updates from this Active Directory
Integrated Zone to a Standard Secondary Zone on the DNS Servers in the other domain. You
“Allow Zone Transfers” then select “only to the following servers” and enter the IP Addresses
of the DNS Servers in the other domain.
o
To configure the required Reverse Lookup Zones, repeat the steps below for each ICM
domain level network within the Forward Lookup Zone.
domain level network within the Forward Lookup Zone.
Note: Networks within a Forward Lookup Zone include all visible and private networks utilized
within a DNS Zone. These networks define Reverse Lookup Zones relative to the Forward Lookup
Zone.
within a DNS Zone. These networks define Reverse Lookup Zones relative to the Forward Lookup
Zone.
8. Under the Server Name, right-click on Reverse Lookup Zones and select New Zone.
9. Within the New Zone wizard, select “Active Directory Integrated.”
10. In the Reverse Lookup Zone screen, select the radio button “Network ID” and enter the required
number of octets for the Reverse Lookup Zone. The Reverse Lookup Zone Name automatically enters.
11. Repeat the steps below for each ICM domain Reverse Lookup Zone.
Release 6.0(0) Staging on Windows 2000
17
17