Solved

Server 2012r2 hosts live migration authentication failing

Posted on 2016-09-22
5
29 Views
Last Modified: 2016-09-28
I'm adding a replication host to my current environment.  There are now two servers running Windows Server 2012r2.  I am managing from a Windows 10 workstation.  I have both a physical & virtual AD server at 2012r2, through which I've enabled delegation for both the CIFS & Windows Virtual System Migration Services.  On both computers in Active Directory, I've added both hosts & their FQDN's to enable these services.  

Authentication is still failing when using the 'move' feature in Hyper-V manager.

Thoughts on something I may have missed?
0
Comment
Question by:James Mahoney
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
5 Comments
 
LVL 11

Expert Comment

by:loftyworm
ID: 41810934
What happens when you try to run the commands from the server itself?
As a domain admin?
0
 
LVL 39

Expert Comment

by:Philip Elder
ID: 41811127
Flip both host's delegation properties to Trust this computer for delegation for any service then restart the VMMS on each host.

A reboot _may_ be required.

What AD Domain/Forest level?
0
 
LVL 58

Expert Comment

by:Cliff Galiher
ID: 41811606
Well, I am a bit confused as to what you are trying to do...

If you added a *replication host* to your environment, you'd never "move" a VM or use live migration. Hyper-V Replica already has a full copy of the VM on the replica target. You'd instead use the "failover" set of commands.

If you are *not* configuring a replication host, we'd need to know more about your setup. Is there shared storage involved? Are you trying to perform a shared-nothing live migration?  Is there a cluster?
0
 

Accepted Solution

by:
James Mahoney earned 0 total points
ID: 41812515
I cleared this up...it was quite simple, my configuration of Kerberos authentication within Hyper-V Manager for each of the hosts did not take.  It was still set to CredSSP.

This purpose of this project is both a migration and to setup a replication host.  Having installed Server 2012r2 host in 2014, on an HP ProLiant DL360 G8 server, with 2TB of on board Storage and 64GB RAM...I decided to use the new HP ProLiant DL360 G9 with 8TB on board, and 192GB RAM in production moving forward.

The plan was to setup the new 2012r2 host, migrate all current VM's to that host...then configure replication to the old host after a small RAM upgrade and some maintenance to the older machine.

The replica server will be moved to a remote location once that part has been configured.  I wanted to be sure that the new production server was running properly as my primary, prior to configuring replication to the older hardware.  So, I don't know that "never move a VM or use live migration" is an accurate statement.  I understand I wasn't very clear on that.
0
 

Author Closing Comment

by:James Mahoney
ID: 41819446
Configuration of Authentication on host did not apply...double checked & was successful.
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Did you know that more than 4 billion data records have been recorded as lost or stolen since 2013? It was a staggering number brought to our attention during last week’s ManageEngine webinar, where attendees received a comprehensive look at the ma…
Here's a look at newsworthy articles and community happenings during the last month.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…

630 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question