?
Solved

Creating Trial and Development environments for a large Active Directory Domain

Posted on 2014-03-24
2
Medium Priority
?
904 Views
Last Modified: 2014-04-08
Rather than working directly with a production active directory environment, I would like to have an identical setups for trial and development environments.

How would I go about replicating the production AD environment into the dev and trial ones and keep things in sync.

Also how can I be certain that when I try something in the test / dev environments it will perform exactly like performing it in production.

How would I deal with the domain naming convention so apps can work seamlessly in all three environments, but have them co-exist so they would need to use different name-spaces.
0
Comment
Question by:elchermans
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 7

Expert Comment

by:deviprasad_s
ID: 39952491
hi,

the dev and trail environments for the real world active directory can be built using the virtualization .

like vmware or hyper-v or any of the choice of virtualization software hypervisors .

it depends on the complexity of active directory real world and scalabilty to select exactly the correct hypervisors .

many of the trivial and trail experiments can be done on the such a trail and duplicate simulating active directory .

but still some diffence will arise which are quite normal , you can have completely same real world and trail simulating AD environments exactly .


thanks ,
0
 
LVL 37

Accepted Solution

by:
Mahesh earned 2000 total points
ID: 39952636
If you wanted to replicate same Ad environment in DEV \ Trial, the co-existence is not possible between production and them
Because you cannot bring same name spaces online same time

The best way I can see, just take any working AD server from production, take it offline and join it to isolated network and then seize FSMO roles which will provide you working copy of production domain with all users, groups, GPOs and so forth

Otherwise you can build same domain in isolated network from scratch if wanted to, but doing this you would have to create all users, groups, polices from scratch

No matter how you setup your DEV and testing environment please note that it will provide a base for testing, identifying known issues with applications prior to deploy them in production and to build your confidence.
Again, this will not prevents environment specific issues that may arise as every environment has its own parameters

lastly you can use different AD name space between DEV \ UAT \ production, but in that case you need to change your application configuration every time when ever you wanted to change \ switch AD domain (Production \ DEV \ UAT) for that applications
OR you can simply build multiple instances of applications and bind them with each AD

Mahesh.
0

Featured Post

Optimize your web performance

What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
For anyone that has accidentally used newSID with Server 2008 R2 (like I did) and hasn't been able to get the server running again because you were unlucky (as I was) and had no backups - I was able to get things working by doing a Registry Hive rec…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
Suggested Courses

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question