Select Page

Building a SQL Server Virtual Lab in Windows: Creating the Domain Controller (DC) VM

Author: JP Chen | 19 min read | July 1, 2020

A Windows Domain allows administrators to manage computers on the same network. At least one Windows Server called a Domain Controller (DC) with the Active Directory Domain Services (AD DS) server role installed responds to authentication requests across the domain and uses Group Policy to manage all domain users and computer settings remotely.

In this post, I’ll create the DC VM, configure the DC VM, install Windows Server 2019, install Oracle VM VirtualBox Guest Additions, rename the VM, promote the VM as a Domain Controller (DC), assign static IP address for the VM, create domain accounts for the SQL Server services, and create a domain account for the SQL DBA.

If you missed the post on Installing Oracle VM VirtualBox and Creating a Virtual Network you can find it here. Let’s get started!

Creating the DV-DC VM

The DV-DC VM is the first VM we will create and configure as it’s required to authenticate all other VMs joining the domain.

To create the VM for the DV-DC:

  1. Open Oracle VM VirtualBox Manager if you had closed it.
  2. Click the Machine menu.
  3. Click New on the drop-down menu.
  4. Type DV-DC in the Name text box of the Create Virtual Machine dialog box.
  5. Leave the default location in the Machine Folder drop-down box.
  6. Leave the default type as Microsoft Windows in the Type drop-down list box.
  7. Click on Version the drop-down box.
  8. Scroll down and select Windows 2019 (64-bit).
  9. Click Next.
  10. Type 1024 in the Memory size MB box.
  11. Click Next.
  12. Leave the default option button for Create a virtual hard disk now selected.
  13. Click Create.
  14. Leave the default option button for VDI (VirtualBox Disk Image)
  15. Click the Next.
  16. Leave the default option button for Dynamically allocated option selected.
  17. Click Next.
  18. Leave the file location as the default specified in the file location folder text box.
  19. Type 32 in the box for you specify the hard disk space. In the virtual lab, we are creating a 32 GB hard disk for the DV-DC VM.
  20. Click Create.
    Oracle VM VirtualBox Manager will create the VM as per the options you had specified as in Figure 2-13 DV-DC VM Settings.


    Figure 2-13 DV-DC VM Settings

 

Configuring the DC VM

Oracle VM VirtualBox is a feature-rich software. For the virtual lab, we will focus on configuring the Shared Clipboard, Drag’n’Drop, mounting the Windows Server 2019 ISO file, attaching the VM to the NAT Network, and adding a shared folder.

The Shared Clipboard feature after configuring to have the Bidirectional option and installing Oracle VM VirtualBox Guest Additions will enable copy and paste between the host computer and the VM.

The Drag’n’Drop feature after configuring to have the Bidirectional option and installing Oracle VM VirtualBox Guest Additions will enable drag and drop between the host computer and the VM.

The NAT Network once attached will connect the VM to the virtual network specified.

An ISO file is an archive file that contains an image found on an optical disc like CD or DVD. We will mount the Windows Server 2019 ISO file to install it on the VM.

The Shared Folder after creating it and installing Oracle VM VirtualBox Guest Additions will enable file sharing between the host computer and the VM.

To enable bidirectional for both Shared Clipboard and Drag’n’Drop:

  1. Right-click on the DV-DC VM on the left pane of the Oracle VM VirtualBox Manager.
  2. Click Settings… on the pop-up menu.
  3. Click the Advanced tab on the General page.
  4. Click on the drop-down box for Shared Clipboard.
  5. Click Bidirectional to select it.
  6. Click on the drop-down box for Drag’n’Drop.
  7. Click Bidirectional to select it.

 
To mount the Windows Server 2019 Evaluation Edition iso file:

  1. Click Storage on the left pane.
  2. Click the Empty disk icon on the Storage Devices section.
  3. Click the disk drop-down icon next to the Optical Drive drop-down box as shown in Figure 2-14 Mounting an ISO File.

    Figure 2-14 Mounting an ISO File

  4. Click Choose a disk file… from the list.
  5. Browse to the folder where you had put all the software for the virtual lab. In our example, it is D:\Virtual Lab Software.
  6. Click the Windows Server 2019 Evaluation Edition.iso file.
  7. Click Open to mount the iso.

 
To attach to the NAT Network:

  1. Click Network on the left pane.
  2. Click the Attached to drop-down box.
  3. Click NAT Network on the list.
    Notice that the NAT Network, DV-SQLNET, appears automatically in the Name drop-down box.

 
To specify the shared folder:

  1. Click Shared Folders on the left pane.
  2. Click the Add icon on the Shared Folders section as shown in Figure 2-15 Specifying the Shared Folder.
  3. Click the drop-down box for Folder Path.
  4. Click Other… on the drop-down list.
  5. Browse to a location where you wish to create a folder to share between the Host computer and the DV-DC guest VM. In our example, we browse to the D:\ drive.
  6. Create a folder VirtualBox-Share.
  7. Click Select Folder to select the VirtualBox-Share folder.
  8. Click the Auto-mount check box to select it.

    Figure 2-15 Specifying the Shared Folder

  9. Click OK.
  10. Click OK on the DV-DC Settings dialog box to close it.
    Now the DV-DC VM has Shared Clipboard and Drag’n’Drop features enabled to have Bidirectional, Windows Server 2019 ISO file mounted, NAT Network attached, and a share folder created, we are ready install Windows Server 2019 next.

Installing Windows Server 2019

Four Operating system options are available during the setup. Windows Server 2019 Standard Evaluation, Windows Server 2019 Standard Evaluation (Desktop Experience), Windows Server 2019 Datacenter evaluation, and Windows Server 2019 Datacenter Evaluation (Desktop Experience).  For the virtual lab, we will choose the Windows Server 2019 Datacenter Evaluation (Desktop Experience) option and accept all the default options.

Prior to the install, make a note of the password you wish to use for the Administrator account. In the virtual lab, we will keep it simple and use the password Password$ for all users.

Note: For the virtual lab, we are keeping it simple and use the password Password$. Make sure you follow your company’s password policies when configuring the servers for your production or non-production environments.

To install Windows Server 2019 on the DV-DC VM:

  1. Click the DV-DC VM on the left pane to select it.
  2. Click the green start arrow to get started with the installation.
  3. Click the drop-down box to select Windows Server 2019 Evaluation Edition.iso (4.93 GB) on Select start-up disk dialog box.
  4. Accept the default settings in the drop-down boxes for Language to install, Time and currency format, and Keyboard or input method on the Windows Setup dialog box.
  5. Click Next to continue.
  6. Click Install now.
  7. Click Windows Server 2019 Datacenter Evaluation (Desktop Experience).
  8. Click Next.
  9. Click the I accept the license terms check box to select it.
  10. Click Next.
  11. Click the Custom: Install Windows only (advanced) option.
  12. Click Next on the Windows Setup dialog box to specify Where do you want to install Windows?

    Windows Setup will run through the steps of Copying Windows files, getting files ready for installation, Installing features, Installing updates, and Finishing up. During the setup, Oracle VM VirtualBox will reboot the VM.

  13. Type Password$ as the password for the Administrator in the Password text box in the Customize settings page.
  14. Press Tab on the keyboard.
  15. Type Password$.
  16. Click Finish.
  17. Click the Input menu.
  18. Click Keyboard on the drop-down list.
  19. Click Insert Ctrl-Alt-Del Host+Del on the drop-down sub-menu as shown in Figure 2-16 Unlocking Windows.
    Tip: You can also press Ctrl+Delete to unlock the VM.

    Figure 2-16 Unlocking Windows

  20. Type in Password$ in the Password text box for the Administrator.
  21. Press Enter on the keyboard.
  22. Click Yes on the Network confirmation dialog box to confirm you want your PC to be discoverable by other PCs and devices on this network.

 
You are then logged on to Windows Server 2019 and the Server Manager Dashboard loads and shows up. You have successfully installed Windows Server 2019. Next, we will install Oracle VM VirtualBox Guest Additions.

Installing Oracle VM VirtualBox Guest Additions

Oracle VM VirtualBox Guest Additions enables bidirectional for Shared Clipboard and Drag’n’Drop and file sharing between the host computer and the VM using the shared folder of which we had all configured back on Configuring the DC VM. Through the better video support feature, it will auto-adjust to resize the VM window to use the full size of the screen.

To install Oracle VM VirtualBox Guest Additions:

  1. Click the Device menu on Oracle VM VirtualBox.
  2. Click Insert Guest Additions CD image… on the drop-down menu as shown on Figure 2-17 Insert Guest Additions CD Image to mount the Oracle VM VirtualBox Guest Additions CD image to the CD-ROM drive of the VM.

    Figure 2-17 Insert Guest Additions CD Image

  3. Press Win+E on your keyboard.
  4. Click This PC on the left pane.
    You will see the CD Drive (D:) contains the VirtualBox Guest Additions.
  5. Double-click CD Drive (D:) VirtualBox Guest Additions to open it.
  6. Double-click VBoxWindowsAdditions to run it.
  7. Click Next on the Oracle VM VirtualBox Guest Additions 6.1.4 Setup dialog box to continue.
  8. Click Next to accept the default installation folder location.
  9. Click Install to accept the default components options to start the installation.
  10. Click Install on the prompt asking: “Would you like to install this device software?”
  11. Click Finish to accept the option to reboot now to complete the installation.
  12. Logon to the DV-DC VM after the reboot.
  13. Maximize the DV-DC VM window.
    You will then notice the screen is stretched to use the full screen.

Renaming the VM

During the installation of Windows Server 2019, Oracle VM VirtualBox assigns an auto-generated server name to the VM. For the virtual lab, we will rename the DC VM to DV-DC.

To rename the VM to DV-DC:

  1. Open Server Manager.
  2. Click Local Server on the left pane of the Server Manager Dashboard as shown in Figure 2-18 Changing the Computer Name to DV-DC.
  3. Click the existing link for Computer name. In this example, it’s showing WIN-G45N3G5IRLE.
  4. Click Change…
  5. Type DV-DC in the Computer name text box.
  6. Click OK.

    Figure 2-18 Changing the Computer Name to DV-DC

  7. Click OK to accept “You must restart your computer to apply these changes.”
  8. Click Close.
  9. Click Restart Now to restart.
    The VM reboots and ready for you to logon to continue to the next steps where we will promote the server to a domain controller.

Promoting the DV-DC VM to Domain Controller (DC)

Previously, we had mentioned a domain controller is the server with the Active Directory Domain Services (AD DS) server role installed. In this section, we will install AD DS on the DV-DC VM, create the DV-SQLNET.COM domain, and then promote it to a domain controller.

To install the AD DS role to the DV-DC:

  1. Open Server Manager.
  2. Click the Manage menu on the upper right-hand corner.
  3. Click Add Roles and Features on the drop-down list.
  4. Click Next on the Add Roles and Features Wizard.
  5. Leave the Role-based or feature-based installation option button selected for the installation type.
  6. Click Next.
  7. Leave the Select a server from the server pool option button selected.
    By default, the server you had created, DV-DC, is selected.
  8. Click Next >.
  9. Click the Active Directory Domain Services check box.
  10. Click Add Features on the Add Roles and Features Wizard pop-up.
  11. Click Next >.
  12. Click the .NET Framework 3.5 Features check box to select it as one of the features to add.
  13. Click Next >.
  14. Click Next > on the AD DS step to continue.
  15. Click Install on the Confirmation step to continue.
    The installation will run to install the Active Directory Domain Services role and .NET Framework 3.5 features and associated files as show in Figure 2-19 Adding Roles and Features Installation in Progress.

    Figure 2-19 Adding Roles and Features Installation in Progress

    The installation will run to install the features and tools you had selected. The progress status will show you the estimated percentage completed. You will need to wait for the option to Promote this server to a domain controller to come up before continuing.

 

To promote the DV-DC VM to a Domain Controller (DC):

  1. Click on the Promote this server to a domain controller link as shown in Figure 2-20 Promote DV-DC to a Domain Controller to start the process to promote it to a domain controller.

    Figure 2-20 Promote DV-DC to a Domain Controller

  2. Click the Add a new forest option button as this is the option allows us to create a new domain.
  3. Type DV-SQLNET.COM in the Root domain name text box.
  4. Click Next > to continue.
  5. Type Password$ in the Password text box for Directory Services Restore Mode (DSRM) password.
  6. Press Tab on your keyboard.
  7. Type Password$ in the Confirm password text box.
  8. Click Next >.
  9. Click Next > on the DNS Options step.
  10. Leave the default name DV-SQLNET in the NetBIOS domain main text box.
  11. Click Next > to continue.
  12. Leave the default paths for the Database folder, Log file folder, and SYSVOL folder in the Paths step.
  13. Click Next > to continue.
  14. Review your selections in the Review Options step.
  15. Click Next >.
  16. Review results in the Prerequisites Check step.
  17. Scrolling down on the View results text area.
  18. Find the last line of the check as it needs to show “All prerequisite checks passed successfully. Click ‘Install’ to begin installation.”
  19. Click Install to start the installation.

    The installation runs and then completes. It will reboot the DV-DC VM and apply the required computer settings.

  20. Press Ctrl+Delete on your keyboard to unlock the logon screen.

    Notice that Windows Server 2019 now greets you with the domain login prompt

  21. Type Password$ as the password.
  22. Press Enter on your keyboard.
  23. Click Local Server on the left pane of Server Manager.

    Notice the Computer name has been updated to DV-DC and Domain listed as DV-SQLNET.COM as shown in Figure 2-21 Computer Name and Domain.

    Figure 2-21 Computer Name and Domain

 

You have now completed the steps adding the AD DS server role, promoting the server as a domain controller, and you have also created a domain – DV-SQLNET.COM. In the next steps, we will assign a static IP Address to the DV-DC VM.

Assigning Static IP Address to the DV-DC VM

A static IP address is fixed and does not change, while a dynamic IP address does. Static IP addresses are assigned to the servers manually and will not change until modified. They are necessary for servers that need constant access and let you reach the specific servers without the IP addresses change and block you accessing them. Furthermore, they help avoid potential IP address conflicts that may happen for dynamic IP addresses.

Back in IP Properties of the Virtual Lab, we had listed the IP addresses along with the Subnet Mask, Default Gateway, Preferred DNS Server, and Alternate DNS Server for the DV-DC, DV-SQL01, DV-SQL02, and DV-SQL03 VMs. In this section, we will assign the static IP address to the DV-DC VM.

To assign a static IP address to the DV-DC VM:

  1. Open Server Manager.
  2. Click Local Server on the left pane.
  3. Click the link for Ethernet as shown in Figure 2-22 Ethernet Properties.
  4. Right-click Ethernet in the Network Connections folder.
  5. Click Internet Protocol Version 4 (TCP/IPv4).
  6. Click Properties.

    Figure 2-22 Ethernet Properties

  7. Click the Use the following IP address option button to assign a static IP as shown in Figure 2-23 Assigning Static IP to the DV-DC VM.
  8. Type 192.168.0.20 for the IP address field.
  9. Press Tab on your keyboard.
    Notice that the Subnet mask of 255.255.255.0 is filled in automatically for you.
  10. Type 192.168.0.1 in the Default gateway field.
  11. Leave the default IP address 127.0.0.1 as the Preferred DNS server.
  12. Type 8.8.8.8 in the Alternate DNS server field.
    We will use Google’s DNS server as the backup.

    Figure 2-23 Assigning Static IP to the DV-DC VM

  13. Click OK.
  14. Click Close on the Ethernet Properties dialog box to close it.

 

You have now assigned the static IP address to the DV-DV VM. Next, we will go through the steps of creating domain user accounts for the SQL Server and SQL Server services for each of the SQL Server instances.

Creating Domain Accounts for the SQL Server Services

As a security best practice, Microsoft recommends creating individual accounts for all services and follow the Principle of Least Privilege (POLP). In other words, create accounts for each of the required services and grant the bare minimum permissions for the accounts to perform their work. Not more.

In this section, we will create SQL Server service and SQL Server Agent service accounts for each of the three SQL Server instances, set password to not expire, create a security group, and then add all the service accounts to the security group.

In our virtual lab, we will only install the SQL Server Database Engine plus the minimum features. We will create the SQL Server service and the SQL Server Agent service accounts for each SQL Server instances as shown in Table 2-3 SQL Service Accounts for the Virtual Lab. Each of the service account will start with the prefix of svc as the abbreviation for service, underscore (_), server name, underscore (_), and then the function of the account. For example, svc_dv-sql01_sqlde for Database Engine (de) and svc_dv-sql01_sqlagent for the SQL Server Agent (sqlagent) service accounts of DV-SQL01.

Table 2-3 SQL Service Accounts for the Virtual Lab

SQL Server SQL Server Service Account SQL Server Agent Service Account
DV-SQL01 svc_dv-sql01_sqlde svc_dv-sql01_sqlagent
DV-SQL02 svc_dv-sql02_sqlde svc_dv-sql02_sqlagent
DV-SQL03 svc_dv-sql03_sqlde svc_dv-sql03_sqlagent

 

To create the domain users accounts for the SQL Server services:

  1. Logon to the DV-DC VM.
  2. Open Server Manager.
  3. Click the Tools menu on the upper right-hand corner.
  4. Click Active Directory Users and Computers on the dropdown menu.
  5. Right-click the Users folder under the DV-SQLNET.COM domain as shown in Figure 2-24 Creating a User.
  6. Click New on the pop-up menu.
  7. Click User on the pop-up menu.

    Figure 2-24 Creating a User

  8. Type svc_dv-sql01_sqlde in the User logon name text box.
  9. Copy svc_dv-sql01_sqlde in the User logon name text box.
  10. Paste it in the First name text box.
    Notice that the Full name text box is auto filled with what’s on the First name text box.
  11. Click Next >.
  12. Type Password$ in the Password text box.
  13. Press Tab on your keyboard.
  14. Type Password$ in the Confirm password text box.
  15. Click the User change password at next logon check box to uncheck it.
    We don’t need to have the user change password at next logon as this is a service account and we won’t logon to a server with a service account.
  16. Click the Password never expires check box to check it.
    We don’t need the password to expire as it will disable the service account if expired.
  17. Click Next >.
  18. Click Finish.
  19. Repeat steps 5 to 18 to create all the remaining service accounts in Table 2-3 SQL Service Accounts for the Virtual Lab. Once completed, all the users accounts created will show up in the Users folder as shown in Figure 2-25 SQL Server and Agent Service Accounts.

    Figure 2-25 SQL Server and Agent Service Accounts

 
To group the domain users for the service accounts, we will create a domain user group, SQLServiceAccounts, then add the service accounts to the group.

To create the SQLServiceAccounts group:

  1. Right the Users folder under the DV-SQLNET.COM domain.
  2. Click New on the pop-up menu.
  3. Click Group on the pop-up menu.
  4. Type SQLServiceAccounts in the Group name text box.
  5. Click OK.

 

To add all the SQL Server and Agent Service Accounts to the SQLServiceAccounts group:

  1. Double-click the SQLServiceAccounts group you had created.
  2. Click the Members tab.
  3. Click Add.
  4. Type in all the service accounts you had created as shown in the Table 2?3 SQL Service Accounts for the Virtual Lab and separate them by semicolon (;).
  5. Click Check Names.
    As shown in Figure 2-27 Adding the Users to the SQLServiceAccounts Group, all the service accounts are verified and underlined.

    Figure 2-27 Adding the Users to the SQLServiceAccounts Group

  6. Click OK.
  7. Click OK to close the SQLServiceAccounts Properties dialog box.

 
You have now created the domain user accounts for the SQL Server services and added them to the SQLServiceAccounts group. Next, we will create a domain account for the SQL DBA, Jack Bauer.

Creating a Domain Account for the SQL DBA

For the SQL DBA account, a Windows Domain user account is all that is needed. Not a domain administrator account or any account with elevated privileges.

To create a Windows Domain user account for the SQL DBA:

  1. Right-click the Users folder under the DV-SQLNET.COM domain.
  2. Click New on the pop-up menu.
  3. Click User on the pop-up menu.
  4. Type Jack in the First name text box.
  5. Type Bauer in the Last name text box.
  6. Type JBauer in the User logon name text box.
  7. Click Next >.
  8. Type Password$ in the Password text box.
  9. Press Tab on your keyboard.
  10. Type Password$ in the Confirm password text box.
  11. Click the check box to uncheck it for User must change password at next logon.
  12. Click Next > to continue.
  13. Click Finish.

This creates the Windows Domain account for the SQL DBA, Jack Bauer. User name: JBauer.

 

And now you’ve created the Domain Controller VM! Great job. Don’t miss blog post #6 next week: Create VMs for the SQL Servers. If you’ve missed anything in the series, I’ve included the links below.

Virtualization Concepts

Virtual Network for the Virtual Lab

Software & Hardware Requirements

Installing Oracle VM VirtualBox and Creating a Virtual Network

Subscribe to Our Blog

Never miss a post! Stay up to date with the latest database, application and analytics tips and news. Delivered in a handy bi-weekly update straight to your inbox. You can unsubscribe at any time.