+ Post New Thread
Results 1 to 11 of 11
Thin Client and Virtual Machines Thread, Virtualising a DC to learn more about AD/tinker/break all of the things? in Technical; Basically, uh, yeah. Where do I start? We have the ISO of 2008 R2 and of course, the license to ...
  1. #1


    Join Date
    Jan 2012
    Posts
    2,753
    Thank Post
    1,008
    Thanked 386 Times in 290 Posts
    Rep Power
    218

    Virtualising a DC to learn more about AD/tinker/break all of the things?

    Basically, uh, yeah. Where do I start?

    We have the ISO of 2008 R2 and of course, the license to use it. I'm looking to build a DC that's detached from our domain and basically tinker around with AD/etc without risking any damage (because I'd have to be dimmer than Mr. Gove to make any alterations to the live AD when I don't know what I'm doing) and see what I can learn.

    Where to begin actually virtualising a server?
    Would anybody recommend any specific software?
    Do I just host it on my machine or do I need a separate box? (In which case, is it worth virtualising at all if I need another physical machine?)

    Blah.
    I've never really handled creating a virtual server before, rather than just logging on and doing things like it were a normal machine.

  2. #2

    CHR1S's Avatar
    Join Date
    Feb 2006
    Location
    Birmingham
    Posts
    4,505
    Thank Post
    1,585
    Thanked 486 Times in 304 Posts
    Rep Power
    217
    Install Hyper-V Server 2012, disktovhd the existing DC, import into Hyper-V (make sure you dont connect to network) and play away!

    Edit - yes you need some hardware to run it on.
    Last edited by CHR1S; 10th October 2013 at 03:03 PM.

  3. #3


    Join Date
    Jan 2012
    Posts
    2,753
    Thank Post
    1,008
    Thanked 386 Times in 290 Posts
    Rep Power
    218
    I'll likely start 'from scratch' rather than importing our current DC, it's more a look at AD in general, not our AD.
    I think learning about our AD before AD as a broader subject would end up with me 'standardising' to what we currently had if I needed to ever build a new AD tree. I'd rather learn 'AD' than 'Our AD' and design my own trees to my own specifications (and fail because I did it wrong, but still, that's how I learn best)

    Question: If I need a separate box to install it on, why bother with virtualisation? Why not just install Win. Server onto the box? What benefits would there be?
    Derp. Reverting to snapshots, of course.
    Last edited by Garacesh; 10th October 2013 at 03:09 PM.

  4. #4

    CHR1S's Avatar
    Join Date
    Feb 2006
    Location
    Birmingham
    Posts
    4,505
    Thank Post
    1,585
    Thanked 486 Times in 304 Posts
    Rep Power
    217
    You can ONLY snapshot a DC in 2012, not earlier.

    Virtualisation is there for many reasons, hardware independence being a major one (If one server fails, have a redundancy on another and carry on working) especially at upgrade time when you can replace the entire server behind it and just keep going.

    Distribution of roles, rebooting a print server but leave everything else running for example.

    With dynamic RAM and CPU sharing its also much more efficient.

  5. #5
    themightymrp's Avatar
    Join Date
    Dec 2009
    Location
    Leeds, West Yorkshire
    Posts
    1,220
    Thank Post
    216
    Thanked 226 Times in 195 Posts
    Rep Power
    73
    Depending on what hardware you have available, this is what I did:

    Installed FREE VMware Player or VirtualBox

    Create 2 virtual machines, 1 to host your virtual AD server, the other to stick on a client OS such as Win 7 etc. For testing purposes, give each machine at least 1Gb of RAM and 1 CPU core (again, depends on the kit you have to play with). It doesn't need to be too flash to play around

    Bung in the CD (or connect to the ISO) of the 2008 R2 disk and install the server. Set the network adapter to connect to a virtual segment/local to the machine network. Whichever the software says. Once its done, run DCPROMO to install the necessary AD services.

    Leave this running, bung in a Windows 7 disk. Boot up your second virtual machine and install 7. Set the network adapter to belong to the same virtual segment. Join it to your test domain.

    Both OS's give you between 30 and 120 days free trial. Just mess around with settings during this time, you can always reinstall when they expire

  6. #6


    Join Date
    Jan 2012
    Posts
    2,753
    Thank Post
    1,008
    Thanked 386 Times in 290 Posts
    Rep Power
    218
    Quote Originally Posted by CHR1S View Post
    You can ONLY snapshot a DC in 2012, not earlier.

    Virtualisation is there for many reasons, hardware independence being a major one (If one server fails, have a redundancy on another and carry on working) especially at upgrade time when you can replace the entire server behind it and just keep going.

    Distribution of roles, rebooting a print server but leave everything else running for example.

    With dynamic RAM and CPU sharing its also much more efficient.
    Really? I thought you could snapshot any virtual machine..? On account that it was virtual?
    And aye, those are some real good reasons to virtualise. I just meant in my specific example (a mock DC just to play around with), were there any benefits to virtualising

    Quote Originally Posted by themightymrp View Post
    Depending on what hardware you have available, this is what I did:
    -snip-
    That's great I'll give it a try. Thanks!

  7. #7


    Join Date
    Feb 2007
    Location
    51.403651, -0.515458
    Posts
    9,058
    Thank Post
    231
    Thanked 2,716 Times in 2,004 Posts
    Rep Power
    794
    Quote Originally Posted by Garacesh View Post
    Really? I thought you could snapshot any virtual machine..? On account that it was virtual?
    You can snapshot any VM, but you should only clone/snapshot DCs that are running Windows Server 2012 or 2012 R2.

    social.technet.microsoft.com/wiki/contents/articles/12149.windows-server-2012-virtualization-safeguards.aspx
    technet.microsoft.com/en-us/library/hh831734.aspx

    Edit. The hypervisor should also support the VM Generation ID feature too.
    Last edited by Arthur; 10th October 2013 at 06:10 PM.

  8. Thanks to Arthur from:

    CHR1S (10th October 2013)

  9. #8

    CHR1S's Avatar
    Join Date
    Feb 2006
    Location
    Birmingham
    Posts
    4,505
    Thank Post
    1,585
    Thanked 486 Times in 304 Posts
    Rep Power
    217
    Quote Originally Posted by Arthur View Post
    You can snapshot any VM, but you should only clone/snapshot DCs that are running Windows Server 2012 or 2012 R2.

    social.technet.microsoft.com/wiki/contents/articles/12149.windows-server-2012-virtualization-safeguards.aspx
    technet.microsoft.com/en-us/library/hh831734.aspx
    Ye thats what I was trying to say, you put it better.

  10. #9
    cpjitservices's Avatar
    Join Date
    Jul 2010
    Location
    Hessle
    Posts
    2,493
    Thank Post
    519
    Thanked 290 Times in 266 Posts
    Rep Power
    82
    Quote Originally Posted by Garacesh View Post
    I'll likely start 'from scratch' rather than importing our current DC, it's more a look at AD in general, not our AD.
    I think learning about our AD before AD as a broader subject would end up with me 'standardising' to what we currently had if I needed to ever build a new AD tree. I'd rather learn 'AD' than 'Our AD' and design my own trees to my own specifications (and fail because I did it wrong, but still, that's how I learn best)

    Question: If I need a separate box to install it on, why bother with virtualisation? Why not just install Win. Server onto the box? What benefits would there be?
    Derp. Reverting to snapshots, of course.
    not to mention... power saving

  11. #10

    Join Date
    Oct 2008
    Posts
    214
    Thank Post
    2
    Thanked 11 Times in 11 Posts
    Rep Power
    22
    whether you CAN and SHOULD snapshot a DC are different though. I suppose if you are only playing about (and have one DC) then snapshot away. If you do ever plan on VMing your DCs then it might be a good idea to have a physical one (with GC at least) just in case.

  12. #11

    Join Date
    Dec 2009
    Posts
    270
    Thank Post
    6
    Thanked 33 Times in 31 Posts
    Rep Power
    15
    Snapshotting a 2008 DC for your particular intention is completely fine.

    You mentioned you don't mind starting again, however if you actually want some "test data" then taking a copy of live would probably be the quickest way to achieve this.

    In our environment, I actually promoted another DC into the live environment, made it a GC with DNS. Then moved it to it's own isolated part of the network and seized the fsmo roles to it. I was left with a fully functional "test environment" that I just needed to remove the other servers\user devices from

SHARE:
+ Post New Thread

Similar Threads

  1. Replies: 18
    Last Post: 9th August 2013, 11:11 PM
  2. Replies: 9
    Last Post: 25th January 2010, 08:44 AM
  3. Replies: 11
    Last Post: 13th October 2008, 09:43 AM
  4. Replies: 1
    Last Post: 15th October 2007, 08:47 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •