With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.
Course Of The Month
5 days, 10 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Best way to setup an active directory test environment in windows azure from 2008 r2 domain
Posted on 2014-12-10
Experts,
I set up a sandbox in windows azure with a new forest with 4 domains for the purposes of testing a migration plan. None of these domains exist in our live environment yet, so I just created several new 2008 r2 VM's and promoted them to domain controllers as I went.
I would also like to have a copy of our actual live single domain created on the same virtual network which is totally isolated from our live environment. This domain would be in it's own forest and then I would create trusts between it and the new forest I created and use the ADMT tool for testing.
Truth be told, I have never had to do a full restore of active directory before, and with the added challenge of this being through windows azure where I won't actually have access to the console, I am unsure how to proceed.
Suggestions?
I set up a sandbox in windows azure with a new forest with 4 domains for the purposes of testing a migration plan. None of these domains exist in our live environment yet, so I just created several new 2008 r2 VM's and promoted them to domain controllers as I went.
I would also like to have a copy of our actual live single domain created on the same virtual network which is totally isolated from our live environment. This domain would be in it's own forest and then I would create trusts between it and the new forest I created and use the ADMT tool for testing.
Truth be told, I have never had to do a full restore of active directory before, and with the added challenge of this being through windows azure where I won't actually have access to the console, I am unsure how to proceed.
Suggestions?
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
3-
2
5 Comments
Active today
In your scenario, azure doesn't really change things9 from a management perspective. You are working with VMs on hyper-V. Azure just means they sit on servers you don't own in a data center you don't directly control.
The restore process, however, is more problematic. Because you want full isolation, the easiest method of stretching your network into azure and adding a new DC is not available to you. Instead, I think the best path for you is to start with an isolated on-premises hyper-V network. Back up the love machines you want and then restore them to new hyper-V VMs (where you do have access to the console) and then you can either stretch the new isolated network to azure (so they are linked, but isolated from your live network) or upload the VHDs into azure where the VMs can then run directly in azure.
While the process isn't overly difficult, neither is it truly one-click restoring either. Unfortunately an easier path has not come to mind.
The restore process, however, is more problematic. Because you want full isolation, the easiest method of stretching your network into azure and adding a new DC is not available to you. Instead, I think the best path for you is to start with an isolated on-premises hyper-V network. Back up the love machines you want and then restore them to new hyper-V VMs (where you do have access to the console) and then you can either stretch the new isolated network to azure (so they are linked, but isolated from your live network) or upload the VHDs into azure where the VMs can then run directly in azure.
While the process isn't overly difficult, neither is it truly one-click restoring either. Unfortunately an easier path has not come to mind.
Firstly, I should note we are not using hyper-v at all on-premises but a mix of physical and vmware.
If I understand you correctly you are saying that I could use a backup/restore utilizing what, windows server backup on 2008? and then spin up a hyper-v VM on premises but isolated from the other DC's. From that point I would just shut down the VM and upload the VHD file to azure?
Any articles or step by steps for a hyper-v beginner?
If I understand you correctly you are saying that I could use a backup/restore utilizing what, windows server backup on 2008? and then spin up a hyper-v VM on premises but isolated from the other DC's. From that point I would just shut down the VM and upload the VHD file to azure?
Any articles or step by steps for a hyper-v beginner?
Active today
Windows server backup would definitely do the job, and does support backing up AD as part of the system state.
As far as finding an article, I am mobile at the moment so don't have my notes readily available nor search. But I know the azure team has written blog posts on uploading VHDs and custom images. A quick search should churn them up. I'll follow up tomorrow if I get some time and if you haven't found them yet.
As far as finding an article, I am mobile at the moment so don't have my notes readily available nor search. But I know the azure team has written blog posts on uploading VHDs and custom images. A quick search should churn them up. I'll follow up tomorrow if I get some time and if you haven't found them yet.
I have one other idea I thought I would run by you and the other experts. I already have a DC in azure that is in a virtual network which has site-to-site VPN with our physical network. If I were to create a new 2008 r2 VM in that virtual network, wait for replication to occur then shut the machine down, delete the vm using the "keep the attached disk" option, I could create a new VM in the isolated sandbox virtual network but use the image from the deleted VM.
Thoughts?
Thoughts?
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Active Directory security has been a hot topic of late, and for good reason. With
90%
of the world’s organization using this system to manage access to all parts of their IT infrastructure, knowing how to protect against threats and keep vulnerabil…
Group policies can be applied selectively to specific devices with the help of groups. Utilising this, it is possible to phase-in group policies, over a period of time, by randomly adding non-members user or computers at a set interval, to a group f…
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders.
Click on Start and then select Computer to view the available drives on the se…
This Micro Tutorial hows how you can integrate Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease.
The following video show how to bind OSX Mavericks to …
Suggested Courses
Course of the Month5 days, 10 hours left to enroll
705 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.