×
INTELLIGENT WORK FORUMS
FOR COMPUTER PROFESSIONALS

Log In

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips Forums!
  • Talk With Other Members
  • Be Notified Of Responses
    To Your Posts
  • Keyword Search
  • One-Click Access To Your
    Favorite Forums
  • Automated Signatures
    On Your Posts
  • Best Of All, It's Free!

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

Posting Guidelines

Promoting, selling, recruiting, coursework and thesis posting is forbidden.

Students Click Here

making a VM out of my Windows domain controllers, creating new domain

making a VM out of my Windows domain controllers, creating new domain

making a VM out of my Windows domain controllers, creating new domain

(OP)
All-

If I am in the wrong forum I also posted to Win2k server grp so I hope I'm not imposing on the wrong forum but this (technical connundrum) does require vm answers.

Here's my inquiry

I have a good working AD schema with an empty root and two child domains in NY... we have a separate DR site that has a few  Windows servers, an ESX VC environment with more Windows servers.. right now there is a trust between my AD structure in NY and this separate DR site so that technicians can rdp to certain servers and the ESX V.Center using the VI client and RDP.

Well.... I would like to create a proper domain at the DR and virtualize it. Has anyone here attempting making a VM out of the 2 top FSMO forest role DC and separately the domain wide role DCs also VM's and perhaps redeployed them somewhere else without any issues?

I suppose what I need is to VM my current domain controllers in NY and use the templates to create another domain structure at the other DR site then issuing a one way trust from the new Trusting domain (the DR site) to the trusted site (Our current AD site in NY).

If anyone has done this please let me know of pros and cons.... or would it be easier to create an ISO of a Windows 2003 server CD and just start clean.. I would need to join all the VM's and small amount of physical servers at the DR site to the new Domain regardless..

Any support with this would be greatly appreciated

blade
 

RE: making a VM out of my Windows domain controllers, creating new domain

You won't be able to P2V your existing DC's and rename them (it causes all sorts of issues).

As far as virtualising a DC in a VMware environment then you have nothing to worry about, as long as your Host box has plenty of ram and cpu power in it then you are able to run AD without a problem.

FYI I ran an entire AD \ SCCM infrastructure on VMware without issue and we also had Microsoft onsite building up an environment with much more in it on VMware, again without issue.

Just as long as you sort out your routing between the Host and the rest of the network then you will be able to create the trust relationship.

VM all the way baby.

Simon

The real world is not about exam scores, it's about ability.

 

RE: making a VM out of my Windows domain controllers, creating new domain

You cannot P2V a DC because it has to be turned off.  The reason is, there is no write cache on a DC, so P2V will cause errors when you move a running DC.  Recommend building a new DC and migrating your roles to it.

RE: making a VM out of my Windows domain controllers, creating new domain

I'll differ slightly from TechyMcSe2k's answer in that you could P2V the DC if you have a secondary one available or do it when no one is working. With Windows 2000 you WILL have to reboot the machine before after installing the P2V tools to begin the process. Just know that up front.

If you have the time to do all the set up, starting clean is always a plus, you can clean up any messes on an older domain especially if you took it over from someone else. If not, I'd agree with Simon, P2V your DC's. Just remember if you have more than one DC in the same environment to set up roles to keep them from being on the same hardware at the same time. Just in case the worst case happens.

The old admin for the company I am at now used our domain as his testing grounds when he was trying to get his MCSE, it was a total mess by the time I took it over. So worth building a new domain.

Cheers
Rob

The answer is always "PEBKAC!"

RE: making a VM out of my Windows domain controllers, creating new domain

(OP)
thanks to all!

I think I will start clean, the previous engineer stated there is a template of a window 2k3 dc already created which he stated he tested and looked good.. so no duplicate sid nor any other "gotchas" should persist...

thank you all for your info and if there are any other potential gotchas you'd like to assess before I begin, please let me know

thanks again

blade

RE: making a VM out of my Windows domain controllers, creating new domain

(OP)
ArizonaGeek-

I have decided to start clean, built the vm from win2k3 disk. At this point... run dcpromo? do I need to run adprep since this will be the first DC in the new forest? how can I make this an empty root which is what MS best practice suggests..

any info or url links would be greatly appreciated as I am eager to start the whole thing

Happy Holidays!!
blade

RE: making a VM out of my Windows domain controllers, creating new domain

Just run dcpromo and choose New Domain or something like that...  too early... to rem.   

Red Flag This Post

Please let us know here why this post is inappropriate. Reasons such as off-topic, duplicates, flames, illegal, vulgar, or students posting their homework.

Red Flag Submitted

Thank you for helping keep Tek-Tips Forums free from inappropriate posts.
The Tek-Tips staff will check this out and take appropriate action.

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members! Already a Member? Login

Close Box

Join Tek-Tips® Today!

Join your peers on the Internet's largest technical computer professional community.
It's easy to join and it's free.

Here's Why Members Love Tek-Tips Forums:

Register now while it's still free!

Already a member? Close this window and log in.

Join Us             Close