Deploy Read-Only domain controller server 2008

1. Log on to the server as a member of the Domain Admins group.
2. Click Start, type dcpromo, and then press ENTER to start the Active Directory Domain Services Installation Wizard. The server can belong to a workgroup. Alternatively, if you are not delegating the installation, the server can already be joined to the domain in which you want it to be an RODC.

Note:

If you select the Useadvanced mode installation check box on the Welcome to the Active Directory Domain Services Installation Wizard page, you can configure the Password Replication Policy for the RODC and other settings during the AD DS installation. In this guide, a procedure for configuring the Password Replication Policy is provided in Steps for Administering an RODC. For a complete list of settings that you can configure when you select the Useadvanced mode installation check box, click the advanced mode installation Help link.

1. On the Choose a Deployment Configuration page, click Existing forest, click Add a domain controller to an existing domain, as shown in the following illustration, and then click Next.
   
2. On the Network Credentials page, type the name of a domain in the forest where you plan to install the RODC. If necessary, also type a user name and password for a member of the Domain Admins group, and then click Next.
3. Select the domain for the RODC, and then click Next.
4. Click the Active Directory site for the RODC, as shown in the following illustration, and then click Next.
   
5. Select the Read-only domain controller check box, as shown in the following illustration. By default, the DNS server check box is also selected.
   

Note:

To run the DNS server on the RODC, another domain controller running Windows Server 2008 must be running in the domain and hosting the DNS domain zone. An Active Directory–integrated zone on an RODC is always a read-only copy of the zone file. Updates are sent to a DNS server in a hub site instead of being made locally on the RODC.

1. To use the default folders that are specified for the Active Directory database, the log files, and SYSVOL, click Next.
2. Type and then confirm a Directory Services Restore Mode password, and then click Next.
3. Confirm the information that appears on the Summary page, and then click Next to start the AD DS installation. You can select the Reboot on completion check box to make the rest of the installation complete automatically.