• Right click on "My Computer" and select "Manage"
• In Computer Management expand the Local Users and Groups Tree.
• Right Click on Users and select "New User"
• In the New User box enter:
  • User name: named
  • Unselect User must change password at next logon
  • Choose a secure password
  • Select User cannot change password.
  • Select Password never expires
• Click "Create"
• Click "Close"

• Right click on the new user "named" and select properties.
• Select the "Member Of" tab.
• Remove any groups that are present.
• Click "OK"
• Close Computer Management

• Open Start -> Programs -> Administrative Tools -> Local Security Policy.
• Open Local Policies -> User Rights Assignment
• Right click Log on as a service and select properties.
• Click Add.
• Locate your newly created named user and double click on it so it appears in the lower pane.
• Click OK.
• In the Local Security Policy Setting window, click OK.
• Close the local security settings window.

• Download the latest version of bind from http://www.isc.org/index.pl?/sw/bind/
• Create a folder on your desktop called bind and extract the downloaded zip to it.
• Open the newly created bind folder and run BINDInstall.exe
• In the Bind 9 Installer window enter:
  • Target Directory: c:\named
  • Service account name: named
  • Enter the secure password you chose earlier.
  • Ensure that Automatic Startup is selected
  • Ensure that Keep Config files after uninstall is selected.
• Click Install.
• When the installer reports "BIND Installation completed successfully", click OK.
• Click Exit to close the installer.

• Create a c:\named\zones folder
• Download named.conf and db.yourdomain.com.txt and save them to:
  • c:\named\etc\named.conf
  • c:\named\zones\db.yourdomain.com.txt
• Open a command prompt and run:
  • cd c:\named\bin
  • rndc-confgen -a
  • rndc-confgen > ..\etc\rndc.conf
• Close the command prompt
• Open c:\named\etc\rndc.conf in notepad
• Cut to the clipboard the section below the line that says:

  # Use with the following in named.conf, adjusting the allow list as needed:

• Save & close rndc.conf
• Open c:\named\etc\named.conf in notepad
• Paste the contents of the clipboard into the bottom of this file
• Remove the hashes (#) from the beginning of the pasted lines.
• Remove the line that says "End of named.conf"
• Save & close named.conf

• Open c:\named\etc\named.conf in notepad.
• In the zone definition for yourdomain.com, modify the zone and file lines to reflect the domain you are configuring.
• Save and close named.conf
• Rename c:\named\zones\db.yourdomain.com.txt to reflect your previous change in named.conf
• Open this zone file in notepad.
• Substitute all references to yourdomain.com for the domain you are configuring.
• Substitute namesever-hostname for the hostname of your nameserver.
• Edit the last line so that the A record reflects the IP address of your server.
• Edit the serial line to reflect today's date. The format for this line is YYYYMMDDRR where:

  YYYY = The year (e.g. 2005)

  MM = The month (e.g. 02)

  DD = The day (e.g. 22)

  RR = Today's revision of this file (e.g. 01)

• Save and close the zone file.

• Start -> Progam Files -> Administrative Tools -> Services
• Locate the "ISC Bind" service, right click on it and select start.
• If it fails to start, errors can be found in the Event Viewer.

• Create a text file called "reload bind.bat" on the desktop, with the following content

  @echo off

  c:\named\bin\rndc reload

  pause

  
  

c:\named\bin\dig NS . @m.root-servers.net > c:\named\zones\db.root.hint.txt

zone "." IN {

type hint;

file "db.root.hint.txt";

};

allow-recursion { 192.168.1.0/24; };