N
The Daily Insight

How do I create a multiple domain controller in Active Directory?

Author

Ava Bailey

Updated on April 30, 2026

To configure additional domain controllers. On the server that will act as a domain controller, in Server Manager, on the Dashboard, click add roles and features. On the Select Server Roles page, select Active Directory Domain Services. Click Add Features when prompted, and then click Next three times.

In this regard, can Active Directory have multiple domains?

You need to create additional domain controllers. Each domain needs its own Domain Controller, you cannot create multiple domains using the same domain controller.

Also Know, why should there be more than one domain controller in a domain? Still, it is recommended that each domain and each site have more than one domain controller to provide logical and physical structure redundancy and fault tolerance. It is important to protect both key domain information and geographical site connectivity.

Simply so, how do I create a domain controller in Active Directory?

From the Start menu, go to Administrative Tools > Manage Your Server.

  1. On the Manage Your Server wizard, choose Adding Roles to Your Sever.
  2. In the Server Role window, choose Domain Controller (Active Directory).
  3. Accept the default values by clicking Next.

Can you have multiple domain controllers on same network?

There is no problems in creating two domains on the same subnet. But you cannot use DHCP on this network. Because domain members may get different DNS settings which can create name resolution issues. You can only use static IP addresses for those clients on the subnet.

Related Question Answers

Is domain controller same as Active Directory?

Active directory is just like a database that stores information as object of users and computers. But Domain Controller (DC) is a server that runs Active Directory and use data stored on AD for authentication and authorization of users. Domain controller manages security policies of Window NT or Windows Server.

What is the difference between a domain and a forest?

The main difference between Forest and Domain is that the Forest is a collection of domain trees in an active directory while Domain is a logical grouping of multiple objects in an active directory. Forest and Domain are two such objects.

What is multi forest Active Directory?

An Active Directory forest (AD forest) is the top most logical container in an Active Directory configuration that contains domains, users, computers, and group policies. “But wait?” you say.

What is domain and forest in Active Directory?

A domain is defined as a logical group of network objects (computers, users, devices) that share the same Active Directory database. A tree is a collection of one or more domains and domain trees in a contiguous namespace, and is linked in a transitive trust hierarchy. At the top of the structure is the forest.

What are the 5 roles of Active Directory?

The 5 FSMO roles are:
  • Schema Master – one per forest.
  • Domain Naming Master – one per forest.
  • Relative ID (RID) Master – one per domain.
  • Primary Domain Controller (PDC) Emulator – one per domain.
  • Infrastructure Master – one per domain.

How do I promote my domain controller?

How to add a domain controller?
  1. Step 1: Install Active Directory Domain services (ADDS) Log into your Active Directory Server with administrative credentials.
  2. Step 2: Promote the server to a domain controller. Note: The following actions can be performed only if the user belongs to the Domain Admins group.

How many domain controllers should I have?

There should be a minimum of two DCs in a domain. If you only have one domain, all your DCs should also be GCs. How many DCs at each site will depend on what your requirements are. One DC at each site can service thousands of users with regard to authentication.

What is difference between domain and domain controller?

Domains are a hierarchical way of organizing users and computers that work together on the same network. The domain controller keeps all of that data organized and secured. The domain controller (DC) is the box that holds the keys to the kingdom- Active Directory (AD).

Do you need Active Directory?

No! You don't need to continue to leverage Active Directory as you make the move to the cloud. In fact, you don't need to do a lot of the things the same way you've been doing them in the past. That said, we get it.

Does Azure need domain controller?

To guard against an outage of the entire data center or its Internet connection, put a Domain Controller in Azure. This way if anything happened on-premises, the Azure and Office 365 environments would still be fully functional (assuming users have Internet access).

Should I install DNS before Active Directory?

DNS is an important prerequisite of Active Directory. Without it, Active Directory will not function, or should we say, you can't install or promote a server to a domain controller without having a DNS server either locally on that server or somewhere else on your network.

How do I setup two domain controllers?

To configure additional domain controllers. On the server that will act as a domain controller, in Server Manager, on the Dashboard, click add roles and features. On the Select Server Roles page, select Active Directory Domain Services. Click Add Features when prompted, and then click Next three times.

What is domain in Active Directory?

In Active Directory terms, a domain is an area of a network organized by a single authentication database. In other words, an Active Directory domain is essentially a logical grouping of objects on a network. Domains are created so IT teams can establish administrative boundaries between different network entities.

How do multiple domain controllers work?

2 Answers. The primary reason for having multiple domain controllers is for fault tolerance. They will replicate the Active Directory information between them and can provide services if the other is unavailable. Having multiple DC's is a best practice standard.

Do all domain controllers need to talk to each other?

No, DC's don't need to be able to reach every other DC however they should be able to reach all DC's in their AD Site and at least one DC in another site.

What is primary and secondary domain controller?

A PDC is a Primary Domain Controller, and a BDC is a Backup Domain Controller. The Primary Domain Controller maintains the master copy of the directory database and validates users. A Backup Domain Controller contains a copy of the directory database and can validate users.

What are the types of domain controller?

There are two kinds of controllers in a Windows Domain:
  • A Single Primary Domain Controller (PDC) This is the single Windows server designated to store the master directory database which contains the Domain's resources and security information.
  • One or more Backup Domain Controllers (BDC) (optional)

What should I backup on a domain controller?

System State Backups
  1. Sysvol from the domain controller – The sysvol includes group policy objects but I still recommend you backup group policy from the GPMC.
  2. Active Directory database and related files.
  3. DNS zones and records (only for Active Directory integrated DNS)
  4. System registry.
  5. Com+ Class registration database.

What happens when a domain controller goes down?

If the Domain Controller (DC) goes offline, Authentication Services will automatically failover to another available DC. When Authentication Services needs to connect to a new DC, it examines the DCs it knows about, and selects an available DC using the following: Vas. conf realms section after the failed DC.

Can you have a domain controller in the cloud?

If you want to migrate your domain controllers in the cloud to use them for traditional task you could deploy domain controllers in Azure Virtual Machines and replicate via VPN.

How many naming contexts does the entire AD forest have?

There are three predefined naming contexts within Active Directory: A Domain naming context for each domain. The Configuration naming context for the forest.

What are the reasons that can cause an organization to create multiple domains?

There are a number of reasons for registering more than one domain name, mainly focused around future growth, enhancing online identity and allowing more access points to your online presence. Furthermore you will also by protecting your company from competitor hijackings that can restrict your online activity.

Can you have two DNS servers on the same network?

At a minimum, you'll need two DNS servers for each Internet domain you have. You can have more than two for a domain but usually three is tops unless you have multiple server farms where you would want to distribute the DNS lookup load.

How do you create another domain in the same forest?

To create a tree domain within an existing forest, click Add a domain to an existing Forest and choose Tree Domain. Type the name of the forest root domain, and then type the name of the new domain.

How do I add a domain to Active Directory Users and Computers?

How
  1. Log on to your domain controller.
  2. Open “Active Directory Domains and Trusts”
  3. On the left hand side of the new window, right click on “Active Directory Domains and Trusts”, and select “Properties” (as shown below).
  4. Type in your new domain suffix in to the “Alternative UPN suffixes” box, and then click “Add”.

Related Documentation

Is watermelon juice healthy?

How do I remove passwords from Windows Explorer?

How do you make a top post on Instagram?

How do I get notifications on both my iPhone and Apple Watch?