Bison Infosolutions Knowledgebase
Google Workspace - Professional Emails
Protect your Lenovo Server
Contact WhatsApp

Active Directory Setup for Tally Prime Server on Windows Server 2019 (VPS) – Complete Technical Guide

πŸ“… 02 Apr 2026 πŸ“‚ General πŸ‘ 3 views

In a multi-user accounting environment, especially when using Tally Prime Server, managing user access and securing company data is critical.

This guide provides a complete, practical, and production-ready approach to deploying Active Directory (AD) on a Windows Server 2019 VPS, enabling:

  • Centralized user management
  • Secure folder-level access control
  • Seamless integration with Tally Prime Server
  • Improved data security and audit control

?️ System Environment (Sample Setup)

ComponentDetails
OSWindows Server 2019 Standard
Server TypeVPS (Cloud Hosted)
RAM32 GB
ProcessorMulti-core Virtual CPU
Users~20
ApplicationTally Prime Server
Data LocationD:\DataStore

? Objective

To configure:

  • Active Directory Domain Services (AD DS)
  • DNS Server
  • Domain Users & Groups
  • Secure NTFS Folder Permissions
  • Tally Prime Server integration with AD

⚠️ Pre-Requisites

Before starting, ensure:

  • Static IP is configured (example used in this guide):

    IP Address: 10.10.50.10
Subnet Mask: 255.255.255.0
Gateway: 10.10.50.1
DNS: 10.10.50.10
  • Administrator access to server
  • Windows Firewall properly configured
  • No domain already exists (fresh WORKGROUP setup)

? Step 1: Configure Static IP & DNS

  1. Open:

    Control Panel β†’ Network and Sharing Center β†’ Adapter Settings
  2. Edit IPv4 settings:
    • Set static IP
    • Set DNS = Server IP (IMPORTANT)

βœ” This ensures proper domain resolution

? Step 2: Install Active Directory Domain Services

  1. Open Server Manager

  2. Click:

    Add Roles and Features
  3. Select:
    • Active Directory Domain Services
    • DNS Server
  4. Install and wait for completion

? Step 3: Promote Server to Domain Controller

  1. Click:

    Promote this server to a domain controller

  2. Select:

    Add a new forest

  3. Enter domain name:

    corp.local
  4. Set Directory Services Restore Mode (DSRM) password
  5. Proceed β†’ Install

? Server will restart automatically

βœ… Step 4: Verify Domain Setup

After reboot:

  • Login as:

    corp\Administrator

  • Run:

    dsa.msc

βœ” Confirm domain structure is visible

? Step 5: Create Organizational Units (OU)

Create logical structure:

Corp.local
β”‚
β”œβ”€β”€ TallyUsers
β”œβ”€β”€ TallyAdmins

This helps in better user management and policy application.

? Step 6: Create Domain Users

Example users:

user01
user02
accounts01
operator01

Steps:

  • Right-click OU β†’ New β†’ User
  • Assign strong passwords
  • Disable password expiry (optional for controlled environments)

?️ Step 7: Create Security Groups

Create:

Tally_Users
Tally_Admins

Assign:

  • Users β†’ Tally_Users
  • Admin staff β†’ Tally_Admins

βœ” This simplifies permission management

? Step 8: Configure Secure Folder Permissions

Example data folder:

D:\DataStore

Steps:

  1. Right-click β†’ Properties β†’ Security

  2. Remove:

    Everyone

  3. Add:

    corp\Tally_Users
corp\Tally_Admins

Permissions:

GroupPermission
Tally_UsersModify
Tally_AdminsFull Control

βœ” Ensures restricted and secure access

? Step 9: Integrate Active Directory with Tally Server

In Tally Server:

  1. Open:

    F12 β†’ Advanced Configuration

  2. Set:

    Use Active Directory = Yes
  3. Restart Tally Server

βœ” Domain users will now be visible in Tally

? Step 10: Firewall & Port Configuration (VPS)

Ensure following ports are open internally:

PortService
53DNS
88Kerberos
389LDAP
445SMB

? Security Best Practices

  • Remove β€œEveryone” access from all sensitive folders
  • Use groups instead of assigning users directly
  • Regularly backup:
    • System State
    • Tally Data
  • Use strong passwords for all domain users
  • Restrict RDP access

? Common Mistakes to Avoid

  • Using dynamic IP instead of static
  • DNS not pointing to server
  • Skipping group-based permissions
  • Not restarting Tally Server after AD enable
  • Using public domain name (like .com)

? Benefits of This Setup

  • Centralized user control
  • Secure data access
  • Easy scalability
  • Better audit tracking
  • Seamless Tally integration

? Conclusion

Implementing Active Directory for Tally Prime Server in a VPS environment ensures enterprise-level control, security, and scalability, even for small to medium businesses.

With proper planning and structured implementation, you can achieve:

  • Controlled access
  • Reduced risk of data loss
  • Professional IT infrastructure


#ActiveDirectory #TallyPrime #WindowsServer2019 #DomainController #ADSetup #TallyServer #ServerSecurity #NTFSPermissions #UserManagement #DNS #Kerberos #LDAP #SMB #VPS #CloudServer #ITInfrastructure #SystemAdmin #NetworkSecurity #DataSecurity #AccountingSoftware #MultiUser #ServerSetup #DomainUsers #SecurityGroups #FilePermissions #ITGuide #TechTutorial #WindowsAdmin #ServerManagement #EnterpriseIT #AccessControl #DataProtection #ITSupport #ServerConfig #TallyERP #ADIntegration #NetworkAdmin #SecureServer #WindowsDNS #DomainSetup #ITBestPractices #SystemSecurity #FileServer #UserRoles #ITSolutions #CloudInfrastructure #ServerGuide #TechnicalArticle #ITManagement #BusinessIT

Active Directory Tally Prime Server Windows Server 2019 AD DS Domain Controller Tally security NTFS permissions user management domain setup VPS server cloud server static IP configuration DNS server setup domain users domain groups organiz
Was this article helpful?
Sponsored
Web Hosting Affiliate Ad
Insurance Affiliate Ad
Hostinger Hosting Ad