This lab simulates a small enterprise Active Directory environment with DNS, DHCP, and Windows 11 clients.
- Install and configure Windows Server 2022 as a domain controller.
- Create an internal domain:
corp.lab. - Configure DNS and DHCP for a host-only / internal lab network.
- Design an OU structure for users, computers, and service accounts.
- Apply Group Policy Objects (GPOs) for security hardening and UX.
- Join Windows clients to the domain.
- Use PowerShell to automate common AD tasks (OU creation, bulk users, GPO linking).
- DC01 – Windows Server 2022, AD DS, DNS, DHCP
- WIN11-CL01 – Windows 11 client joined to
corp.lab - (Optional) Additional clients / servers
- Network:
192.168.10.0/24 - DC01:
192.168.10.10 - DNS:
192.168.10.10 - DHCP Scope:
192.168.10.50 – 192.168.10.200
- Create an internal / host-only network in your hypervisor.
- Install Windows Server 2022, name it
DC01, assign static IP, set DNS to itself. - Add Active Directory Domain Services + DNS roles.
- Promote to new forest:
corp.lab. - Add DHCP role, create scope, authorize server.
- Design and create OU structure (see below).
- Create and link security baseline GPOs.
- Install Windows 11, join to
corp.lab. - Use PowerShell scripts to:
- Create OUs.
- Bulk-create users from CSV.
- Create/link a baseline GPO.
corp.labOU=ServersOU=WorkstationsOU=DepartmentsOU=ITOU=FinanceOU=HR
OU=ServiceAccounts
Scripts/Create-OUs.ps1– Builds the OU structure.Scripts/Bulk-User-Creation.ps1– Creates users from CSV.Scripts/Configure-GPO.ps1– Creates and links a baseline GPO.
This lab represents the same kind of work I’ve done in real environments:
- Designing OU structures and domain layouts.
- Deploying and supporting AD, DNS, and DHCP.
- Automating provisioning and configuration with PowerShell.
- Applying security baselines via Group Policy.