Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

windows 2008 r2 domain controller on VMWARE

Posted on 2014-03-13
6
Medium Priority
?
922 Views
Last Modified: 2014-03-31
dear gurus

we heard from experts of vmware vendor local in emea

that keeping the master or primary ad dns windows 2008 r2 server on virtual enviornment not advisable as it should be always on physical seperate server to manage it

rest secondary servers can be build on it

your input highly appreciate then you may close this call
0
Comment
Question by:tmsa12
6 Comments
 
LVL 33

Expert Comment

by:Busbar
ID: 39925709
that was 10,000 BC recommendations, now you can run all of your DC virtual unless you are using LDAP auth with your vCenter and using it for services in accounts, then it is advisable to have one physical at least.

Most of my customers are running all of their infrastructure on vmware and nothing physical.
0
 
LVL 96

Expert Comment

by:Lee W, MVP
ID: 39925737
Agreed - Unless your VM Hosts are authenticating against AD, you don't need a physical DC so long as you have no more than one DC per VM Host.
0
 
LVL 38

Expert Comment

by:Mahesh
ID: 39925740
If you can provide sufficient hardware for virtualized DC, I don't see any good reason for not installing most of DCs on VMware
I always noticed that organizations do not provide sufficient resources to virtualized DC servers
OR
If you take one physical DC and virtual DC with same configuration I always seen a better performance with physical DC server (Because physical DC hardware has to tackle only its own load)
Also if your VMware infrastructure is hosted on Blade server, personally I never install virtual DC in blade center because of possible network issues

Only thing you should not take snap shots of virtual DC on VMware as it will create USN roll back issue and resulting replication will stop with that virtual DC and then you need to demote \ promote the same
Also you should avoid time sync between virtual DC and VMware ESX host
As long as you are taking full system state backup of virtual DC, you are safe hopefully

For bigger size organizations having 10,000+ users, computers I'd always prefer to build at least two physical servers with 4 to 8 core cpu and 8 GB of memory from performance point of view as I have noticed some sluggish performance with virtual DC

Also if your VMware is fully loaded with another app servers as well, then I'd prefer physical DCs to separate AD traffic, because virtualization is concept where all virtual servers practically communicate through physical host network cards only

Mahesh
0
Free Backup Tool for VMware and Hyper-V

Restore full virtual machine or individual guest files from 19 common file systems directly from the backup file. Schedule VM backups with PowerShell scripts. Set desired time, lean back and let the script to notify you via email upon completion.  

 
LVL 11

Expert Comment

by:Manjunath Sullad
ID: 39925898
Below Microsoft KB article will clarify your doubts and these are best practices while configuring DC on virtual environment.,

Things to consider when you host Active Directory domain controllers in virtual hosting environments

http://support.microsoft.com/kb/888794/en-us



- Manjunath Sullad
0
 
LVL 10

Accepted Solution

by:
Pramod Ubhe earned 2000 total points
ID: 39925912
indeed, in my current environment all the DCs (70-80) are virtual servers and never got in to any trouble.
0
 

Author Comment

by:tmsa12
ID: 39926431
i am highly appreciate your response put on this
0

Featured Post

Microsoft Certification Exam 74-409

Veeam® is happy to provide the Microsoft community with a study guide prepared by MVP and MCT, Orin Thomas. This guide will take you through each of the exam objectives, helping you to prepare for and pass the examination.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
For anyone that has accidentally used newSID with Server 2008 R2 (like I did) and hasn't been able to get the server running again because you were unlucky (as I was) and had no backups - I was able to get things working by doing a Registry Hive rec…
This video shows you how to use a vSphere client to connect to your ESX host as the root user. Demonstrates the basic connection of bypassing certification set up. Demonstrates how to access the traditional view to begin managing your virtual mac…
This video shows you how easy it is to boot from ISO images for virtual machines with the ISO images stored on a local datastore on the ESXi host.

971 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question