Key Management Server (Win2k8) Basic Questions
Experts,
I've been given the task of seeing if we can convert our multiple activation keys into KMS.
I'm completely new to KMS, so please bear with me on my basic questions.
Here's what I know:
You obtain a KMS key from MS and enter that into the system, where it will then activate with MS and become a KMS server. At this point, it submits some SRV records to DNS so that other systems can locate the server and send their activations to it. The server won't actually start providing any activations until a minimum of 5 client machines have contacted it for activation. Fairly simple ordeal.
I've been reading the information located here: http://technet.microsoft.com/en-us/library/ff719787.aspx
And have watched the video located here: http://www.microsoft.com/download/en/details.aspx?id=22110
And read the quick instructions here: http://www.windows-noob.com/forums/index.php?/topic/649-how-can-i-setup-a-kms-server/
My questions about this setup, if anybody has had the bennefit of using KMS:
1. Minimum number of clients is 5. What's the Maximum number of clients a KMS can support?
2. In the video, it was mentioned about half way through that this is not supported on Win2k8 DataCenter editions. I wasn't able to find in any of the articles on which clients are supported. Would anybody have a reference on this?
3. Is only one KMS server per domain allowed? With the updates to DNS, I would imagine this is the case - but in our organization, we have a flat DNS FLZ and about 45 sites. It would be in our best interest to be able to implement one of these servers at each site, and have the local clients activate within their area.
4. Any other pertinant references / information that you guys can provide.
Anything you can throw my way is way more than appreciated.
I've been given the task of seeing if we can convert our multiple activation keys into KMS.
I'm completely new to KMS, so please bear with me on my basic questions.
Here's what I know:
You obtain a KMS key from MS and enter that into the system, where it will then activate with MS and become a KMS server. At this point, it submits some SRV records to DNS so that other systems can locate the server and send their activations to it. The server won't actually start providing any activations until a minimum of 5 client machines have contacted it for activation. Fairly simple ordeal.
I've been reading the information located here: http://technet.microsoft.com/en-us/library/ff719787.aspx
And have watched the video located here: http://www.microsoft.com/download/en/details.aspx?id=22110
And read the quick instructions here: http://www.windows-noob.com/forums/index.php?/topic/649-how-can-i-setup-a-kms-server/
My questions about this setup, if anybody has had the bennefit of using KMS:
1. Minimum number of clients is 5. What's the Maximum number of clients a KMS can support?
2. In the video, it was mentioned about half way through that this is not supported on Win2k8 DataCenter editions. I wasn't able to find in any of the articles on which clients are supported. Would anybody have a reference on this?
3. Is only one KMS server per domain allowed? With the updates to DNS, I would imagine this is the case - but in our organization, we have a flat DNS FLZ and about 45 sites. It would be in our best interest to be able to implement one of these servers at each site, and have the local clients activate within their area.
4. Any other pertinant references / information that you guys can provide.
Anything you can throw my way is way more than appreciated.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thank you very much for providing the information. It's much appreciated!
I'm so sorry, but I didn't see your strategic layout query. Thank you for the points, but I will however try to answer your enquiry.
I would advise against too many KMS servers - only because you have a limited amount of KMS Activations you can do. I think it's 5. When you reach this number of activations, you can no longer activate KMS servers, and naturally, this will be a bit of a setback for you.
My suggestion is to have just two primary KMS servers, sitting on Forest Root Domain Controllers, and allowing them to advertise in DNS. A Round robin will automatically be created because there will be two SRV records for the same _VLMCS service.
If you have subdomains or even trusted domains, you will need to create SRV records for _VLMCS, and just create two for your two primary KMS Servers.
KMS Activation is so light, there's really no need to try to place some in geographical locations.
I would advise against too many KMS servers - only because you have a limited amount of KMS Activations you can do. I think it's 5. When you reach this number of activations, you can no longer activate KMS servers, and naturally, this will be a bit of a setback for you.
My suggestion is to have just two primary KMS servers, sitting on Forest Root Domain Controllers, and allowing them to advertise in DNS. A Round robin will automatically be created because there will be two SRV records for the same _VLMCS service.
If you have subdomains or even trusted domains, you will need to create SRV records for _VLMCS, and just create two for your two primary KMS Servers.
KMS Activation is so light, there's really no need to try to place some in geographical locations.
ASKER
Thank you very much for the continued information here. I really do appreciate it.
Two more questions, if you're still monitoring this thread:
Activating office products will be handled automatically by the KMS?
-And what does one of the SRV records look like in DNS, if you don't mind me asking - so I'd be able to verify everything is working correctly. - Or need to add/edit them manually in the future.
Two more questions, if you're still monitoring this thread:
Activating office products will be handled automatically by the KMS?
-And what does one of the SRV records look like in DNS, if you don't mind me asking - so I'd be able to verify everything is working correctly. - Or need to add/edit them manually in the future.
:)
Office KMS Activation can be done, however you have to install a special version of the KMS server on top of your existing KMS Server. You can download the Microsoft Office 2010 KMS Host License Pack from here http://www.microsoft.com/download/en/details.aspx?id=25095
Since I only have 1 KMS server, there is only 1 SRV record, and here is what it looks like:
The SRV record looks the same on all of my domains, naturally in the Forward Lookup Zone of the applicable domain.
Office KMS Activation can be done, however you have to install a special version of the KMS server on top of your existing KMS Server. You can download the Microsoft Office 2010 KMS Host License Pack from here http://www.microsoft.com/download/en/details.aspx?id=25095
Since I only have 1 KMS server, there is only 1 SRV record, and here is what it looks like:
The SRV record looks the same on all of my domains, naturally in the Forward Lookup Zone of the applicable domain.
ASKER
Thank you so much for the additional information!
You have been most helpful. I really do appreciate everything you've assisted me with.
You have been most helpful. I really do appreciate everything you've assisted me with.
Please feel free to read some of my articles - if you find them helpful, please mark them as helpful :)
Testing Network Performance - https://www.experts-exchange.com/A_8010.html
Guide: Creating a Hyper-V Cluster - https://www.experts-exchange.com/A_7910.html
Make your FTP Server support Active and Passive - https://www.experts-exchange.com/A_7833.html
Hyper-V & Licensing - The Good News https://www.experts-exchange.com/A_7831.html
The last one might be of particular interest to you.
Testing Network Performance - https://www.experts-exchange.com/A_8010.html
Guide: Creating a Hyper-V Cluster - https://www.experts-exchange.com/A_7910.html
Make your FTP Server support Active and Passive - https://www.experts-exchange.com/A_7833.html
Hyper-V & Licensing - The Good News https://www.experts-exchange.com/A_7831.html
The last one might be of particular interest to you.
ASKER
So, here's my strategic layout on moving forward in my organization:
I'm planning on converting the local DC in each of the sites to a KMS server. This will update DNS, and I'll have individual SRV records pointing to all the DCs. Clients will then use these as they see fit to activate themselves once they come online - and within 180 days each.
Would you happen to know if there's a way to make the DNS a bit more deterministic? Meaning, force everything to check in locally vice the round-robin availability model? *I'm thinking local DNS weights. Not that activation is rough on bandwidth or anything, but it'd be nice to keep everything as logical as possible, where were not troubleshooting why one server has a billion activations, while another only has a few, etc.