> For the complete documentation index, see [llms.txt](https://paul-gleason.gitbook.io/sec-480-adv-topics-in-cyber-security-devops/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://paul-gleason.gitbook.io/sec-480-adv-topics-in-cyber-security-devops/labs/milestone-2.md). # Milestone 2 ## Creating AD Controller ### Create VM:

Power on machine and follow install **(Once you hit the page asking for password hit ctrl+shift+f3)** #### VM Provisioning Open Admin Powershell 1. `sconfig` 2. \``5`\` “`Windows Update Settings`” * \``M`\` “`Manual`”

4. \``9`\` “`Date and Time`” * Change time zone for EST

5. \`6\` “Download and Install Updates” * \`A\` “All Updates”

Will Prompt with restart 6. Install VMware Tools (This will make D: VMware tools installer)

I did typical install #### Sysprep 1. Get Sysprep file

2. Uncomment top 4 lines and comment bottom 2

3. Run file and set execution policy

4. Put in deployer password 5. Then restart DC1 END OF SYSPREP Change adapter to 480-WAN ### Install ADDS: Set Admin passwd Configure network

Rename Computer (Do this before forest install)

#### SSH from xubuntu to dc1 `Get-WindowsFeature` - Will show all windows features are installed and can be installed

`Install-WindowsFeature -Name AD-Domain-Services -IncludeManagementTools`

#### To view see available module commands you can run `Get-Command -Module ADDSDeployment`

### New Domain Admin User: `$pw = Read-Host -Prompt 'Enter a Password for this user' -AsSecureString` `New-ADUser -Name paul-adm.gleason -AccountPassword $pw -Passwordneverexpires $true -Enabled $true` `Add-ADGroupMember -Identity "Domain Admins" -Members paul-adm.gleason`

### Install Forest: `Install-ADDSForest -DomainName “paul.local”`

\ Forest Made

### DNS Role: `Get-WindowsFeature | where {($_.name -like “DNS”)}` `Install-WindowsFeature DNS -IncludeManagementTools` ![](https://lh3.googleusercontent.com/7QP2srRMJ7oy2w6OyVWD_llOvsMzaCseSlFsdot45Owxmn2JcA20eemTZllRk0INqwwUAx2pwR_8PPJPJZmxKJ3gLiTZCsYcLp5ZLVffm4vZdjOOF1TXn0BVQWuexjcg7Q3heaCnxgFbPF9xRnnsng) #### Reverse Zone Creation: `Add-DnsServerPrimaryZone -NetworkId “10.0.17.0/24” -ReplicationScope “Domain”`

#### Create A type with PTR: `Add-DnsServerResourceRecordA -Name "480-fw" -ZoneName "paul.local" -AllowUpdateAny -IPv4Address "10.0.17.2" -TimeToLive 01:00:00 -CreatePTR`

#### Create PTR alone: `Add-DnsServerResourceRecordPtr -Name "4" -ZoneName "17.0.10.in-addr.arpa" -AllowUpdateAny -TimeToLive 01:00:00 -AgeRecord -PtrDomainName "dc1-paul.paul.local"` Highlighted ones are correct the middle 2 were mistakes

#### DNS Forwarder: Was already set to the firewall. #### Test DNS: `Test-DnsServer -IPAddress 10.0.17.4 -ZoneName “paul.local”` ![](https://lh5.googleusercontent.com/EfgZuXK6kOGYZpvrv-sDDIuAGDJxbT7gEkjWe_79-c3w5RIXko9czdc2lj_WjzQVxuNdgnlUusWWSbUZTYqkO-EDeyO5EL359GHn98_6K5nKC_XX6fBwFz4Po0sfunXOMR_6kzd2-qzuovTwoGd3RD4) ### Install DHCP: `Install-WindowsFeature DHCP -IncludeManagementTools` `Netsh dhcp add securitygroups` `Restart-service dhcpserver`

`Add-DHCPServerv4Scope -Name “Main” -StartRange 10.0.17.101 -EndRange 10.0.17.150 -SubnetMask 255.255.255.0 -State Active` `Set-DhcpServerv4Scope -ScopeId 10.0.17.0 -LeaseDuration 1.00:00:00` `Set-DHCPServerv4OptionValue -ScopeID 10.0.17.0 -DnsDomain paul.local -DnsServer 10.0.17.4 -Router 10.0.17.2` Had to do this part as admin: `Add-DhcpServerInDC -DnsName paul.local -IpAddress 10.0.17.4` `Get-DhcpServerInDC`

Restart-service dhcpserver ### Remote Desktop Setup: On xubuntu: `sudo apt install remmina` On DC1-paul: `Set-ItemProperty -Path 'HKLM:\System\CurrentControlSet\Control\Terminal Server' -name "fDenyTSConnections" -value 0` `Enable-NetFirewallRule -DisplayGroup "Remote Desktop"`
### Proof: Notes: Audit mode: ctrl+shift+f3 (Hit at set password screen) Reference From Devin: ADDS Installer: Remote Desktop: DHCP installer: --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://paul-gleason.gitbook.io/sec-480-adv-topics-in-cyber-security-devops/labs/milestone-2.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.