Move AD-DS off of physical Hyper-V Host/remove AD-DS role from Host instead of demoting???

I walked into a situation where a previous individual installed Hyper-V, ADDS, DHCP, DNS, IIS, Network Policy and Access Services and Print and Document Services all on the same machine as well as a RDS VM! The host is running Windows Server 2012 R2 Standard, 8 GB RAM, Intel Xeon CPU E5-2430 v2 @2.50 GHz (6 cores, 12 logical processors).

What I would like to do for the customer is remove ADDS, DHCP, DNS, IIS, Network Policy and Access Services and Print and Document Services from the Hyper-V Host and leave the Hyper-V role enabled. My first thoughts are to:
1) Do a P2V image of the computer (Host).
2) Remove the ADDS, DHCP, DNS, IIS, Network Policy and Access Services and Print and Document Services from the HOST leaving only the Hyper-V role on ther host.
3) Install the image created of the host as a VM on the host (of course removing the Hyper-V role).

***My question is can this be done safely?  It makes sense to me but am I missing something here? Rather than demoting the current DC running on the same box Hyper-V is running, can I just remove the role along with the other roles listed, visualize and run as a VM?

Thank you for your help!
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

AmitIT ArchitectCommented:
Frankly, I haven't tried such scenario, however whatever, I know from my experience image creation is not the correct way to demote it. You just need to run dcpromo to remove DC related services. Then you can remove DHCP and other services. If this is the only DC, then you might need to promote new server separately and then preform the demotion.
Adding to Amit's point, hyper-v host and adds are ....

You can have multiple DHCP servers on the same network provide to break up the ip scope to make sure each issues unique portion.
You can break up the segment through the exclusion rule.
The difficulty you are in is that the credentials on the adds host are domain based and demoting it could lead to trouble as your question implies.

Do you have another physical server that can house/host the VMS from the current host, adding another VM virtualized DC. Do not make the host a domain member.  Once the functionality of the VMS on the intermediary host is functional, you can do what you need on the ...... To set it up right.
Will SzymkowskiSenior Solution ArchitectCommented:
As long as this machine is not the only DC in the environment you will be fine. Demoting a DC when it is NOT the last DC in the domain reverts this server to a member server of the domain. So you should be fine there.

What you do need to take into consideration is DNS and DHCP. You need to make sure that you setup DHCP elsewhere and have the same scopes available after you have un-authoriozed the DHCP role on this server.

Also with that said your DHCP clients and also sevrers need to have DNS updated to remove the IP address of this server where you are removing ADDS.

Based on what i have read those are the biggest concerns that you should be aware of.


Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.