Back to Projects
01

Active Directory Infrastructure (AD DS)

A virtualised Active Directory environment simulating real enterprise infrastructure. AD DS & DNS role installation, OU hierarchy design, RBAC security groups, and AD Sites & Services.

Active Directory Infrastructure (AD DS)

Technologies

Windows Server 2022
Active Directory (AD DS)
DNS
PowerShell
GitHub

Project Overview

Identity & Access Management: Promoted DC01 (Windows Server 2022) to domain controller for a new forest — helpdesk.lab. Integrated DNS, configured DSRM, verified domain health with Get-ADDomain.

Configuration Management: Designed a department-based OU hierarchy (_STAFF/IT, HR, Finance, Sales; _COMPUTERS; _GROUPS; _DISABLED) mirroring real enterprise CI structure.

Access Control & RBAC: Created department security groups (GRP_IT, GRP_HR, GRP_Finance, GRP_Sales, GRP_AllStaff) under _GROUPS OU for least-privilege access.

Multi-site Topology: Configured London-HQ (192.168.100.0/24) and Manchester-Branch (192.168.1.0/24) AD sites — simulating distributed enterprise environments.

Lab Evidence

Screenshots from the live environment

Server Manager — AD DS & DNS roles confirmed active on DC01

Server Manager — AD DS & DNS roles confirmed active on DC01

Active Directory Users & Computers — OU structure (_STAFF, _COMPUTERS, _GROUPS, _DISABLED)

Active Directory Users & Computers — OU structure (_STAFF, _COMPUTERS, _GROUPS, _DISABLED)

Domain user accounts across department OUs

Domain user accounts across department OUs

Security group creation — PowerShell command alongside ADUC confirmation

Security group creation — PowerShell command alongside ADUC confirmation

AD Sites & Services — Manchester-Branch site and subnet configured

AD Sites & Services — Manchester-Branch site and subnet configured

NextIT Helpdesk Automation Scripts