Solved

Hyper-V Replication without domain

Posted on 2014-02-14
4
1,263 Views
Last Modified: 2014-11-12
Hi,

I'm trying to get replication VM-replication working between two Hyper-V hosts that are not in a domain (without success until now).

What is the FQDN nam of a  host that ist not in a domain?
The workgroup name ist WORKGROUP and the primary DNS-Suffix is empty (ipconfig /all).

I created certificates with just the hostname in it (SERVER1/SERVER2) and get error

"the certificate with the fingerprint .... could not be verified by SERVER1
.....................
The CN-name of the certificate does not correspond with the correct value (0x800b010f)"


I tried it also with SERVER1. and SERVER2. as FQDN but that does not work also.

which FQDN do I have to  use for the certificates?


Lennox
0
Comment
Question by:lenn0x
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 58

Expert Comment

by:Cliff Galiher
ID: 39858800
The FQDN can be whatever you want within reason. You just need to have a DNS record with the FQDN pointing to the appropriate IP address and you need to configure certificate-based authentication for Hyper-V replica and use a certificate where the common name or subject alternate name has that same FQDN. Neither the name of the server nor workgroup matters.
0
 
LVL 1

Author Comment

by:lenn0x
ID: 39858941
so the FQDN are just SERVER1 / SERVER2 ?

I create certificates for SERVER1 and SERVER2 ?
0
 
LVL 58

Accepted Solution

by:
Cliff Galiher earned 500 total points
ID: 39859130
Using a single-label name is not a good idea.

You can, for example, have a server named SERVER1 in a workgroup called WORKGROUP.

You can create an A record called Hyper-V in a DNS zone domain.com on your domain server and point it to the IP address of SERVER1. Your FQDN is then hyper-v.domain.com and you'd want that in the certificate as well. Notice how neither the certificate nor the DNS record reference SERVER1 or WORKGROUP. Those are strictly internal identifiers.
0
 
LVL 1

Author Closing Comment

by:lenn0x
ID: 39865185
okay, thank you!
I will do as you proposed.
0

Featured Post

Automating Your MSP Business

The road to profitability.
Delivering superior services is key to ensuring customer satisfaction and the consequent long-term relationships that enable MSPs to lock in predictable, recurring revenue. What's the best way to deliver superior service? One word: automation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Last article we focus in how to VMware: How to create and use VMs TAGs – Part 1 so before follow this article and perform the next tasks, you should read the first article how to create the TAG before using them in Veeam Backup Jobs.
Is your company's data protection keeping pace with virtualization? Here are 7 dynamic ways to adapt to rapid breakthroughs in technology.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
In this video tutorial I show you the main steps to install and configure  a VMware ESXi6.0 server. The video has my comments as text on the screen and you can pause anytime when needed. Hope this will be helpful. Verify that your hardware and BIO…

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question