Best way to setup an active directory test environment in windows azure from 2008 r2 domain
Experts,
I set up a sandbox in windows azure with a new forest with 4 domains for the purposes of testing a migration plan. None of these domains exist in our live environment yet, so I just created several new 2008 r2 VM's and promoted them to domain controllers as I went.
I would also like to have a copy of our actual live single domain created on the same virtual network which is totally isolated from our live environment. This domain would be in it's own forest and then I would create trusts between it and the new forest I created and use the ADMT tool for testing.
Truth be told, I have never had to do a full restore of active directory before, and with the added challenge of this being through windows azure where I won't actually have access to the console, I am unsure how to proceed.
Suggestions?
I set up a sandbox in windows azure with a new forest with 4 domains for the purposes of testing a migration plan. None of these domains exist in our live environment yet, so I just created several new 2008 r2 VM's and promoted them to domain controllers as I went.
I would also like to have a copy of our actual live single domain created on the same virtual network which is totally isolated from our live environment. This domain would be in it's own forest and then I would create trusts between it and the new forest I created and use the ADMT tool for testing.
Truth be told, I have never had to do a full restore of active directory before, and with the added challenge of this being through windows azure where I won't actually have access to the console, I am unsure how to proceed.
Suggestions?
Who is Participating?
Firstly, I should note we are not using hyper-v at all on-premises but a mix of physical and vmware.
If I understand you correctly you are saying that I could use a backup/restore utilizing what, windows server backup on 2008? and then spin up a hyper-v VM on premises but isolated from the other DC's. From that point I would just shut down the VM and upload the VHD file to azure?
Any articles or step by steps for a hyper-v beginner?
If I understand you correctly you are saying that I could use a backup/restore utilizing what, windows server backup on 2008? and then spin up a hyper-v VM on premises but isolated from the other DC's. From that point I would just shut down the VM and upload the VHD file to azure?
Any articles or step by steps for a hyper-v beginner?
Windows server backup would definitely do the job, and does support backing up AD as part of the system state.
As far as finding an article, I am mobile at the moment so don't have my notes readily available nor search. But I know the azure team has written blog posts on uploading VHDs and custom images. A quick search should churn them up. I'll follow up tomorrow if I get some time and if you haven't found them yet.
As far as finding an article, I am mobile at the moment so don't have my notes readily available nor search. But I know the azure team has written blog posts on uploading VHDs and custom images. A quick search should churn them up. I'll follow up tomorrow if I get some time and if you haven't found them yet.
I have one other idea I thought I would run by you and the other experts. I already have a DC in azure that is in a virtual network which has site-to-site VPN with our physical network. If I were to create a new 2008 r2 VM in that virtual network, wait for replication to occur then shut the machine down, delete the vm using the "keep the attached disk" option, I could create a new VM in the isolated sandbox virtual network but use the image from the deleted VM.
Thoughts?
Thoughts?
There'd be some cleanup from the replication and missing DCs. But that is effectively doing the VHD process I already mentioned. It should work.
Question has a verified solution.
Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.
Have a better answer? Share it in a comment.
All Courses
From novice to tech pro — start learning today.
The restore process, however, is more problematic. Because you want full isolation, the easiest method of stretching your network into azure and adding a new DC is not available to you. Instead, I think the best path for you is to start with an isolated on-premises hyper-V network. Back up the love machines you want and then restore them to new hyper-V VMs (where you do have access to the console) and then you can either stretch the new isolated network to azure (so they are linked, but isolated from your live network) or upload the VHDs into azure where the VMs can then run directly in azure.
While the process isn't overly difficult, neither is it truly one-click restoring either. Unfortunately an easier path has not come to mind.