DC VM

Discussion in 'Active Directory' started by skip, Apr 15, 2009.

  1. skip

    skip Guest

    Hello

    Are there any issues or special considerations for running a DC/GC on
    VMware? My current environment is 4 DC's that are all physical boxes, 3 are
    running Windows 2008, and 1 is running windows 2003 sp2. The FFL and DFL are
    2003 native mode. All DC's are DNS servers.

    Thanks
     
    skip, Apr 15, 2009
    #1
    1. Advertising

  2. "skip" <> wrote in message
    news:...
    > Hello
    >
    > Are there any issues or special considerations for running a DC/GC on
    > VMware? My current environment is 4 DC's that are all physical boxes, 3
    > are running Windows 2008, and 1 is running windows 2003 sp2. The FFL and
    > DFL are 2003 native mode. All DC's are DNS servers.
    >
    > Thanks



    No, not really. You can run DCs in a VM. Good way to save on hardware costs.
    One thing, I don't recommend running Exchange or SQL, or any other heavy
    resource hitting application in a VM or expect complaints from users.

    To setup a DC in a VM, it is a little difficult to get a copy of a physical
    DC to a VM and would suggest to install a fresh copy of Windows (whichever
    version) in the VM and promote it into the domain, then transfer FSMOs, make
    it a GC, then demote the physical machines.

    --
    Ace

    This posting is provided "AS-IS" with no warranties or guarantees and
    confers no rights.

    Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSA Messaging, MCT
    Microsoft Certified Trainer


    For urgent issues, you may want to contact Microsoft PSS directly. Please
    check http://support.microsoft.com for regional support phone numbers.
     
    Ace Fekay [Microsoft Certified Trainer], Apr 15, 2009
    #2
    1. Advertising

  3. skip

    skip Guest

    cool, thanks ACE!
    "Ace Fekay [Microsoft Certified Trainer]" <>
    wrote in message news:...
    > "skip" <> wrote in message
    > news:...
    >> Hello
    >>
    >> Are there any issues or special considerations for running a DC/GC on
    >> VMware? My current environment is 4 DC's that are all physical boxes, 3
    >> are running Windows 2008, and 1 is running windows 2003 sp2. The FFL and
    >> DFL are 2003 native mode. All DC's are DNS servers.
    >>
    >> Thanks

    >
    >
    > No, not really. You can run DCs in a VM. Good way to save on hardware
    > costs. One thing, I don't recommend running Exchange or SQL, or any other
    > heavy resource hitting application in a VM or expect complaints from
    > users.
    >
    > To setup a DC in a VM, it is a little difficult to get a copy of a
    > physical DC to a VM and would suggest to install a fresh copy of Windows
    > (whichever version) in the VM and promote it into the domain, then
    > transfer FSMOs, make it a GC, then demote the physical machines.
    >
    > --
    > Ace
    >
    > This posting is provided "AS-IS" with no warranties or guarantees and
    > confers no rights.
    >
    > Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSA Messaging, MCT
    > Microsoft Certified Trainer
    >
    >
    > For urgent issues, you may want to contact Microsoft PSS directly. Please
    > check http://support.microsoft.com for regional support phone numbers.
    >
     
    skip, Apr 15, 2009
    #3
  4. "skip" <> wrote in message
    news:...
    > cool, thanks ACE!


    My pleaasure!!

    Ace
     
    Ace Fekay [Microsoft Certified Trainer], Apr 15, 2009
    #4
  5. Hello skip,

    No you can run DC's in a VM. Keep in mind for backup, that you can not just
    save the virtual dsik file from a DC and use it later on. Then you will run
    in USN rollback. You have to backup AD in the "Microsoft way".
    http://support.microsoft.com/kb/875495

    Additional see here:
    http://support.microsoft.com/kb/888794

    http://www.microsoft.com/downloads/...5D-F7A3-4209-8ED2-E261A117FC6B&displaylang=en

    http://blogs.dirteam.com/blogs/sand...directory-in-hyper-v-environments-part-1.aspx

    http://blogs.dirteam.com/blogs/sand...directory-in-hyper-v-environments-part-2.aspx

    http://blogs.dirteam.com/blogs/sand...directory-in-hyper-v-environments-part-3.aspx

    Best regards

    Meinolf Weber
    Disclaimer: This posting is provided "AS IS" with no warranties, and confers
    no rights.
    ** Please do NOT email, only reply to Newsgroups
    ** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm


    > Hello
    >
    > Are there any issues or special considerations for running a DC/GC on
    > VMware? My current environment is 4 DC's that are all physical boxes,
    > 3 are running Windows 2008, and 1 is running windows 2003 sp2. The FFL
    > and DFL are 2003 native mode. All DC's are DNS servers.
    >
    > Thanks
    >
     
    Meinolf Weber [MVP-DS], Apr 15, 2009
    #5
  6. skip

    Marcin Guest

    As Meinolf and Ace have stated, there are no technical obstacles to running
    DC/GCs on VMware (with exception of potential USN rollbacks) - and there are
    many companies that use this approach.
    However, you should keep in mind supportability implications outlined in the
    http://support.microsoft.com/kb/897615/

    hth
    Marcin

    "skip" <> wrote in message
    news:...
    > Hello
    >
    > Are there any issues or special considerations for running a DC/GC on
    > VMware? My current environment is 4 DC's that are all physical boxes, 3
    > are running Windows 2008, and 1 is running windows 2003 sp2. The FFL and
    > DFL are 2003 native mode. All DC's are DNS servers.
    >
    > Thanks
     
    Marcin, Apr 15, 2009
    #6
  7. Skip,

    skip wrote:
    > Are there any issues or special considerations for running a DC/GC on
    > VMware? My current environment is 4 DC's that are all physical boxes, 3
    > are running Windows 2008, and 1 is running windows 2003 sp2. The FFL and
    > DFL are 2003 native mode. All DC's are DNS servers.


    My fellows here did a great job outlining considerations you should make
    before starting to put a DC into a VM.

    The main topics you should look at are:
    - Backup/Restore (it is a DC, man - so backup and restore it as you
    would with physical machines!)
    - VM-Security (although it's VM, it doesn't mean it's less worth
    protecting than others -- it holds the keys to your castle!)
    - Use a _supported_ method/read Microsoft Best Practices.
    - don't mess with the hardware -- although it's a VM, you might want
    to take a look at performance. Depending on what your environment looks
    and how keen you are on performance/search performance/read+write, you'd
    have to look into putting the virtual HD on a seperate physical HD.
    Memory is also a performance killer - make sure the size of your DIT
    could fit well into the VM's RAM.

    Cheers,
    Florian
    --
    Microsoft MVP - Group Policy
    eMail: prename [at] frickelsoft [dot] net.
    blog: http://www.frickelsoft.net/blog.
    Maillist (german): http://frickelsoft.net/cms/index.php?page=mailingliste
     
    Florian Frommherz [MVP], Apr 16, 2009
    #7
  8. Whoops. Slow down a bit, there are some considerations and things to watch
    for. You can't treat this dc like other vm's and restore a snapshot (For
    example). There are some good specifics in the link below. I would caution
    you to read those and make sure you can live up to them or not virtualize
    any of your dc's.

    http://support.microsoft.com/kb/888794


    --
    Paul Bergson
    MVP - Directory Services
    MCTS, MCT, MCSE, MCSA, Security+, BS CSci
    2008, 2003, 2000 (Early Achiever), NT4

    http://www.pbbergs.com

    Please no e-mails, any questions should be posted in the NewsGroup This
    posting is provided "AS IS" with no warranties, and confers no rights.


    "Ace Fekay [Microsoft Certified Trainer]" <>
    wrote in message news:...
    > "skip" <> wrote in message
    > news:...
    >> Hello
    >>
    >> Are there any issues or special considerations for running a DC/GC on
    >> VMware? My current environment is 4 DC's that are all physical boxes, 3
    >> are running Windows 2008, and 1 is running windows 2003 sp2. The FFL and
    >> DFL are 2003 native mode. All DC's are DNS servers.
    >>
    >> Thanks

    >
    >
    > No, not really. You can run DCs in a VM. Good way to save on hardware
    > costs. One thing, I don't recommend running Exchange or SQL, or any other
    > heavy resource hitting application in a VM or expect complaints from
    > users.
    >
    > To setup a DC in a VM, it is a little difficult to get a copy of a
    > physical DC to a VM and would suggest to install a fresh copy of Windows
    > (whichever version) in the VM and promote it into the domain, then
    > transfer FSMOs, make it a GC, then demote the physical machines.
    >
    > --
    > Ace
    >
    > This posting is provided "AS-IS" with no warranties or guarantees and
    > confers no rights.
    >
    > Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSA Messaging, MCT
    > Microsoft Certified Trainer
    >
    >
    > For urgent issues, you may want to contact Microsoft PSS directly. Please
    > check http://support.microsoft.com for regional support phone numbers.
    >
     
    Paul Bergson [MVP-DS], Apr 16, 2009
    #8
  9. "Paul Bergson [MVP-DS]" <pbbergs@nopspam_msn.com> wrote in message
    news:...
    > Whoops. Slow down a bit, there are some considerations and things to
    > watch for. You can't treat this dc like other vm's and restore a snapshot
    > (For example). There are some good specifics in the link below. I would
    > caution you to read those and make sure you can live up to them or not
    > virtualize any of your dc's.
    >
    > http://support.microsoft.com/kb/888794
    >
    >


    Nice link. I wasn't aware of this link or that Microsoft addressed this
    issue.

    Cheers!

    Ace
     
    Ace Fekay [Microsoft Certified Trainer], Apr 16, 2009
    #9
  10. Ace,

    Ace Fekay [Microsoft Certified Trainer] wrote:
    > Nice link. I wasn't aware of this link or that Microsoft addressed this
    > issue.


    Yeah, this is actually great. I think they changed their policy 180
    degrees. I remember there was a time when they didn't really supported
    third party virtualization technologies. You could get support if you
    were able to reproduce the issue on real hardware, if I remember right.

    Great to see they loosened that a bit.

    Cheerio!
    Florian
    --
    Microsoft MVP - Group Policy
    eMail: prename [at] frickelsoft [dot] net.
    blog: http://www.frickelsoft.net/blog.
    Maillist (german): http://frickelsoft.net/cms/index.php?page=mailingliste
     
    Florian Frommherz [MVP], Apr 16, 2009
    #10
  11. "Florian Frommherz [MVP]" <> wrote in
    message news:...
    > Ace,
    >
    > Ace Fekay [Microsoft Certified Trainer] wrote:
    >> Nice link. I wasn't aware of this link or that Microsoft addressed this
    >> issue.

    >
    > Yeah, this is actually great. I think they changed their policy 180
    > degrees. I remember there was a time when they didn't really supported
    > third party virtualization technologies. You could get support if you were
    > able to reproduce the issue on real hardware, if I remember right.
    >
    > Great to see they loosened that a bit.
    >
    > Cheerio!
    > Florian


    Yes, I remember that. They never did recommend any of their software on a
    VM. Glad to see that they are least addressing public interests in it and
    supporting it.

    Ace
     
    Ace Fekay [Microsoft Certified Trainer], Apr 16, 2009
    #11
  12. make sure to read the following:
    http://www.microsoft.com/downloads/...5D-F7A3-4209-8ED2-E261A117FC6B&displaylang=en
    (and: http://blogs.dirteam.com/blogs/jorge/archive/2006/03/08/597.aspx)

    pay special attention too to the time settings. VMWare also has
    recommendations on this. Check their KB

    --

    Cheers,
    (HOPEFULLY THIS INFORMATION HELPS YOU!)

    # Jorge de Almeida Pinto # MVP Identity & Access - Directory Services #

    BLOG (WEB-BASED)--> http://blogs.dirteam.com/blogs/jorge/default.aspx
    BLOG (RSS-FEEDS)--> http://blogs.dirteam.com/blogs/jorge/rss.aspx
    ------------------------------------------------------------------------------------------
    * This posting is provided "AS IS" with no warranties and confers no rights!
    * Always test ANY suggestion in a test environment before implementing!
    ------------------------------------------------------------------------------------------
    #################################################
    #################################################
    ------------------------------------------------------------------------------------------

    "skip" <> wrote in message
    news:...
    > Hello
    >
    > Are there any issues or special considerations for running a DC/GC on
    > VMware? My current environment is 4 DC's that are all physical boxes, 3
    > are running Windows 2008, and 1 is running windows 2003 sp2. The FFL and
    > DFL are 2003 native mode. All DC's are DNS servers.
    >
    > Thanks
     
    Jorge de Almeida Pinto [MVP - DS], Apr 17, 2009
    #12
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.

Share This Page