**Installing the Lightwave Server and Configuring It as a Domain Controller on a Photon Image** You can configure Lightwave server as domain controller on a Photon client. You install the Lightwave server first. After the server is installed, you configure a new domain. **Prerequisites** - Prepare a Photon OS client for the Lightwave server installation. - Verify that the hostname of the client can be resolved. - Verify that you have 500 MB free for the Lightwave server installation. **Procedure** 1. Log in to your Photon OS client over SSH as an administrator. 2. Install the Lightwave server by running the following command. `# tdnf install lightwave -y` 3. Configure the Lightwave server as domain controller by selecting a domain name and password for the `administrator` user. The minimum required password complexity is 8 characters, one symbol, one upper case letter, and one lower case letter. Optionally, if you want to access the domain controller over IP, configure the ip under the `--ssl-subject-alt-name` parameter. `# configure-lightwave-server --domain <your-domain> --password '<administrator-user-password>' --ssl-subject-alt-name <machine-ip-address>` 4. Edit `iptables` rules to allow connections to and from the client. The default Photon OS 2.0 firewall settings block all incoming, outgoing, and forwards so that you must reconfigure them. `# iptables -P INPUT ACCEPT` `# iptables -P OUTPUT ACCEPT` `# iptables -P FORWARD ACCEPT` 5. In a browser, go to https://*lightwave-server-FQDN* to verify that you can log in to the newly created domain controller. 1. On the Cascade Identity Services page, enter the domain that you configured and click **Take me to Lightwave Admin**. 2. On the Welcome page, enter administrator@your-domain as user name and the password that you set during the domain controller configuration and click **LOGIN**.