Steps to deploy a domain controller #183
Comments
|
Right, we need to add some some documentation to @JLBTurtle, very well done, just a tiny bit was missing. When following your steps I get the same error when calling
Please let us know if this works for you. |
|
Thank you @raandree . I got a DC deployed. Now I am hitting issues with FileSystemObjects. I was hitting an error about FileSystemObject was not found in FileSystemDsc (I can't recall the exact error to reproduce) Reviewing the documentation I noticed it refers to FilesAndFolders and not FileSystemObject(s). So I tried updating some of the files with FilesAndFolders in the yml files and i'm getting mixed results. Should I be using FileSystemObject or FilesAndFolders? I can revert the files I changed and run again to get you the exact error. |
|
The configuration / composite resource |
|
I'll have to test things out. I've been trying to build out my DomainController.yml role and added AddsSiteSubnets to rename the default site which worked well. So I thought I would try adding some OUs. I added AddsOrgUnitsAndGroups:
DomainDN: '[x={ $Datum.Global.Domain.DomainDn }=]'
OrgUnits:
- Name: 'Test Lab'
Path: '[x={ $Datum.Global.Domain.DomainDn }=]'
ChildOu:
- Name: 'Exchange Attributes'
- Name: 'Security Groups'
- Name: 'Servers'
- Name: 'Service Accounts'
- Name: 'Users'
- Name: 'Workstations'
Groups:
- GroupName: Administrators
Description: Lab AdministratorsNow i'm getting errors again Transcript started, output file is output\Logs\CompileRootConfiguration.log
Did not find 'RootConfiguration.ps1' and 'CompileRootConfiguration.ps1' in 'source', using the ones in 'Sampler.DscPipeline'
RootConfiguration will import these composite resource modules as defined in 'build.yaml':
- PSDesiredStateConfiguration
- DscConfig.Demo
Preloading available resources
---------------------------------------------------------------------------
DSCDC01 : DSCDC01 : MOF__ NA
DSCDC01 : DomainController ::> FileSystemObjects ...............................................OK
DSCDC01 : DomainController ::> AddsDomain ......................................................OK
DSCDC01 : DomainController ::> AddsDomainController ............................................OK
DSCDC01 : DomainController ::> AddsOrgUnitsAndGroups ...........................................OK
DSCDC01 : DomainController ::> AddsSitesSubnets ................................................OK
DSCDC01 : DomainController ::> SecurityBase ....................................................OK
DSCDC01 : DomainController ::> WindowsFeatures .................................................OK
DSCDC01 : DomainController ::> ComputerSettings ................................................OK
DSCDC01 : DomainController ::> NetworkIpConfiguration ..........................................OK
DSCDC01 : DomainController ::> WindowsEventLogs ................................................OK
DSCDC01 : DomainController ::> DscTagging ......................................................OK
Error occured during compilation of node '' : Compilation errors occurred while processing configuration 'RootConfiguration'. Please review the errors reported in error stream and modify your configuration code appropriately.
Error(s) occured during the compilation. Details will be shown below
Transcript stopped, output file is C:\Software\PowerShell\Dsc\DscWorkshop\output\Logs\CompileRootConfiguration.log
ERROR: Compilation errors occurred while processing configuration 'RootConfiguration'. Please review the errors reported in error stream and modify your configuration code appropriately.
At C:\Software\PowerShell\Dsc\DscWorkshop\output\RequiredModules\Sampler.DscPipeline\0.2.0\tasks\CompileRootConfiguration.build.ps1:44 char:1
+ task CompileRootConfiguration {
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Build FAILED. 14 tasks, 1 errors, 0 warnings 00:00:18.2247682
C:\Software\PowerShell\Dsc\DscWorkshop\output\RequiredModules\InvokeBuild\5.12.1\Invoke-Build.ps1 : Compilation errors occurred while processing configuration
'RootConfiguration'. Please review the errors reported in error stream and modify your configuration code appropriately.
At C:\Software\PowerShell\Dsc\DscWorkshop\build.ps1:540 char:9
+ Invoke-Build @PSBoundParameters -Task $Tasks -File $MyInvocat ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : InvalidOperation: (RootConfiguration:String) [Write-Error], InvalidOperationException
+ FullyQualifiedErrorId : FailToProcessConfiguration,Invoke-Build.ps1I'm not entirely sure why. I figured at first maybe it was syntax in my yml file. But digging through the $Errror variable I found this Test-ConflictingResources : A conflict was detected between resources '[WaitForADDomain]WaitForestAvailability::[AddsDomainController]AddsDomainController (C:\Software\Po
werShell\Dsc\DscWorkshop\output\RequiredModules\DscConfig.Demo\0.8.3\DSCResources\AddsDomainController\AddsDomainController.schema.psm1::60::5::WaitForADDomain)' and
'[WaitForADDomain]Domain::[AddsOrgUnitsAndGroups]AddsOrgUnitsAndGroups (C:\Software\PowerShell\Dsc\DscWorkshop\output\RequiredModules\DscConfig.Demo\0.8.3\DSCResources\Ad
dsOrgUnitsAndGroups\AddsOrgUnitsAndGroups.schema.psm1::25::5::WaitForADDomain)' in node 'DSCDC01'. Resources have identical key properties but there are differences in
the following non-key properties: 'Credential'. Values 'System.Management.Automation.PSCredential' don't match values 'NULL'. Please update these property values so that
they are identical in both cases.
At line:289 char:9
+ Test-ConflictingResources $keywordName $canonicalizedValue $k ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : InvalidOperation: (:) [Write-Error], InvalidOperationException
+ FullyQualifiedErrorId : ConflictingDuplicateResource,Test-ConflictingResourcesShould that have popped up in a Pester test? |
|
Just cleared $Error and ran build.ps1 again. I get 16 errors in the variable.. 13 of them are Get-ItemProperty : Cannot find path 'HKLM:\SOFTWARE\Microsoft\PowerShell\3\DSC' because it does not exist.
At C:\windows\system32\windowspowershell\v1.0\Modules\PSDesiredStateConfiguration\PSDesiredStateConfiguration.psm1:614 char:32
+ ... $reg = Get-ItemProperty -path $key -name "PSDscAllowDomainUser" ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : ObjectNotFound: (HKLM:\SOFTWARE\...owerShell\3\DSC:String) [Get-ItemProperty], ItemNotFoundException
+ FullyQualifiedErrorId : PathNotFound,Microsoft.PowerShell.Commands.GetItemPropertyCommandShould these registry keys exist? I know tis is the PSDesiredStateConfiguraiton module and not the workshop one. Just curious if maybe my computer is not in a good state. |
Uh oh!
There was an error while loading. Please reload this page.
I've tried to add a DC to a build. I haven't had any luck. I always hit some form of errors. So I'm trying to start from scratch with a fresh clone of the repository and doing a build just to make sure everything goes well.
When I run the build.ps1 it gets to COMPILEROOTCONFIGURATION and starts preloading available resources
What I find interesting is it's prompting me for domain information instead of pulling it from datum. The other thing I find interesting it fails and starts erroring out there saying SafeModeAdministratorPassword = $Parameters['SafeModeAdministratorPassword'] ' required by '[WindowsFeature]ADDS::[AddsDomainController]AddsDomainController' does not exist. Please ensure that the required resource exists and the name is properly formed. At C:\windows\system32\windowspowershell\v1.0\Modules\PSDesiredStateConfiguration\PSDesiredStateConfiguration.psm1:1049 char:17
Does anyone have a sample build that works with a basic setup of a domain controller ?
The text was updated successfully, but these errors were encountered: