ASK

I got a clean installation of Windows Server 2008 Enterprise R2 from my hosting provider. When I try to add a Actice Directory Domain Services role to the server I get a message that the installation is not successfull and the server needs to restart in order to revert all changes. Here's what I have in the server log: I was adding an additional domain controller (Win 2008 R2) to the domain in our CRM Hosted environment this weekend, and I ran into this error when installing the AD Domain Services role: Active Directory Domain Services Installer : Failed to install Active Directory Domain Services binaries. Completely useless error message and the log file in \Windows\Debug didn't have anything further. I started scrolling through the System Event Log hoping for clues. Since it was a brand new server the log was pretty clean with one exception: Source: Service Control Manager Event ID: 7001 Level: Error Description: The DFS Namespace service depend

DC to DC and DC to client communications Require Numerous ports There’s no secret to this. That’s the simplest I can put it. And, the list of ports required is long, to the dismay of network infrastructure engineering teams that must bequest ports to allow AD to communicate, replicate, etc., these ports must be opened. There really isn’t much that can be done otherwise. Here’s the list with an explanation of each port: Protocol and Port AD and AD DS Usage Type of traffic   TCP 25 Replication SMTP TCP 42 If using WINS in a domain trust scenario offering NetBIOS resolution WINS TCP 135 Replication RPC, EPM TCP 137 NetBIOS Name resolution NetBIOS Name resolution TCP 139 User and Computer Authentication, Replication DFSN, NetBIOS Session Service, NetLogon TCP and UDP 389 Directory, Replication, User and Computer Authentication, Group Policy, Trusts LDAP TCP 636 Directory, Replication, User and Computer Authentication, Group Policy, Trusts LDAP SSL TCP 3268 Directory, Re