Active Directory -- Domain root and sub-domain on a single server

Posted on 2005-05-17
Last Modified: 2006-11-18
I need to know how to set up the following Active Directory design on a single Windows Server 2003 Standard Edition server.

1. I need to create an AD root domain ( -- this i know how to do.
2. On the same server, I need to create the AD sub-domain
3. I will then add other AD servers as subdomains office2, office 3, etc. -- this i also know how to do

I cannot seem to figure out, or find out if it's possible, to have both an Active Directory root domain and subdomain on a single server.

Any help will be much appreciated.

Question by:pezzonovante1
    LVL 25

    Expert Comment

    this cannot be done, in order to have a sub-domain you have to add another DC to be the DC of the sub-domain.

    Author Comment

    and there's no way to have 2 DCs on a single machine, correct?

    Author Comment

    So if I was to set up several DCs as, etc, and not have a DC for Where would I have to have the DNS MX record for resolve to (I will be using Exchange Server 2003 for email)? Exchange Server will be running on the DC at each location.

    Basically, how could I set it up so I could send an email from the outside world to and have the email reach the user who logs into the domain as

    LVL 25

    Accepted Solution

    you have to have at least one DC for each domain (by domain i mean both root domains and sub-domains).  So you would have to have a DC for, another DC for and another DC for

    people sending email from the outside is really totally seperate from your internal domain name. for example you could have your windows domain named and your public domain named and your users would get mail that was sent to even though your windows domain was named

    the point is that you have to have the reciepent policy set to "listen" for email being sent to whatever your publically registered DNS domain name is.  You do this in exchange system manager.  And also you have to have your MX record pointing to your mail server. thats really it.

    Author Comment

    thanks for the help. a lot of this is what i expected, but it's good to have confirmation from someone more knowlegable on this than me.

    thanks again,

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Top 6 Sources for Identifying Threat Actor TTPs

    Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

    Organizations create, modify, and maintain huge amounts of data to help their businesses earn money and generally function.  Typically every network user within an organization has a bit of disk space to store in process items and personal files.   …
    ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
    To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
    Access reports are powerful and flexible. Learn how to create a query and then a grouped report using the wizard. Modify the report design after the wizard is done to make it look better. There will be another video to explain how to put the final p…

    759 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    14 Experts available now in Live!

    Get 1:1 Help Now