Forging the Core: Building OPFORGE's Domain Controller

May 6, 2025 · 1 min · Alfredo Pelaez

Table of Contents

✅ Check
⚙️ Do
🔍 Check

✅ Check

Define static IP plan (e.g., 192.168.77.10/24 for opf-dc01)
Decide on a domain name (e.g., opforge.local)
Draft realistic Organizational Unit (OU) structure
Determine initial user/group and DNS configuration

⚙️ Do

Install Windows Server 2019 (Standard Core)
Set static IP, DNS (self-referential), and hostname
Use Server Manager or sconfig to install AD DS role
Promote to Domain Controller using dcpromo GUI or PowerShell:

Install-WindowsFeature AD-Domain-Services -IncludeManagementTools
Install-ADDSForest -DomainName "opforge.local" -InstallDNS -Force

Create initial OU tree:
- OPFORGE\Computers\Servers
- OPFORGE\Users\RedTeam, BlueTeam, ServiceAccounts

🔍 Check

Log in via domain admin to ensure proper promotion
Validate nslookup returns local DNS
Confirm Active Directory Users and Computers (ADUC) shows correct structure
Document credentials and snapshot before member server joins