Creating Multiple Active Directory Domains Different Networks Using Hyper-V RRAS - TechNet Articles - United States (English) - TechNet Wiki

Creating Multiple Active Directory Domains Different Networks usin... http://social.technet.microsoft.com/wiki/contents/articles/16198.creati...
Creating Multiple Active Directory Domains Different

Networks using Hyper-v RRAS
Congure Child Domain Dierent Subnet Hyper-v
Introduc on:
With the need of virtual infrastructure ge ng high a en on for performing tes ng either in Mid-size or Enterprise organiza on, need for quick
network turnover me is required. There are many scenarios where Engineers have to demonstrate their applica ons with a day in their hand, Hyper-v
saves you from those scenarios. Be it for learning, tes ng or presenta on, the below guide will provide congura on of domains across mul ple
subnets in Hyper-v environment.
This lab is built on the following
Servers Descrip on
Windows server 2012 ( standard / Enterprise) - Server hosted for Ac ve Directory

X2
Windows Sever 2008 R2 / Windows Server ( Server hosted as Router

standard or Enterprise)2012
Note: Licensing should be managed accordingly
Services Descrip on
Hyper-v Install the service on one of the Windows

Server 2012.
DNS infrastructure on both servers DNS service for name resolu on
IP Subnets X 2 192.168.1.x and 10.25.10.x
Rou ng and Remote Access Rou ng between two subnets
Assuming that administrators have successfully installed and congured Windows Servers with latest service packs, below are the detail steps needs to
be followed
Step1: Install and congure Hyper-v role on the Physical server, the role can be installed through Server Manager Manage Add Roles and Features
Step2:
1 of 14 04-08-2015 10:13
Click Next from the above screen.
Select Role base or Feature based installa on and select Next .
Select the server from the Server Pool, as I have only one server congured in the Server pool, I have selected my server for Hyper-v installa on.
2 of 14 04-08-2015 10:13
As you can see from above that Hyper-v role is already installed. Perform the above steps to successfully install the Hyper-v on either windows Server
2012 or Windows Server 2008 R2 opera ng systems.
Once the Hyper-v is installed, it should be congured for Storage and Networking, in an Enterprise Organiza on, there will be dedicated Storage
provisioned for the virtual machines to be hosted, and the VLANs that needs to be congured, Administrators who are performing this lab can
communicate with the respec ve Storage / Networking teams for obtaining the LUN and Network Subnet ( VLAN ) informa on. I have selected
external USB for my lab and hos ng all my VMs on the USB disk which has 1 TB of disk space.
Note: To u lize advance capabili es of Hyper-v features, it is advisable to use Windows Server 2012 Opera ng Systems.
Step3: Conguring Hyper-v networking with mul ple subnets. Hyper-v Virtual Switch Manager provides 3 dierent types of Network that can be
congured on the Virtual machines such as
a) External Enable virtual machines to access Internet
b) Internal Communica on between Virtual machine and Host
c) Private Communica on between virtual machines and not with Host.
Either Internal / private networks are advisable for tes ng purpose which will not introduce any problems when the rou ng and remote access is
introduced between networks, I have congured Internal network switch for this lab. To congure Internal Network / Private Network, launch Hyper-v
Manager ( virtmgmt.msc ) and navigate to Virtual Switch Manager which would open the below window
Click on Create Virtual Switch and enter the required informa on,
3 of 14 04-08-2015 10:13
Step4: On the Hyper-v Host, navigate to Network Connec ons and enter the IPv4 address as shown below
First Adapter:
Second Adapter:
Ever Ac on on Virtual Machines!!
4 of 14 04-08-2015 10:13
Step4: Install the Guest Opera ng Systems and congure the following
a) Windows License
b) Windows Firewall Ports
c) Windows Updates
d) User accounts and add them to respec ve local groups ( if required )
e) IPV4 Network addresses.
The above steps should be performed on the 3 opera ng systems such as
1) First Domain Controller ( wind server 2012 ) 192.x.x.x network
2) Child Domain Controller ( windows server 2012 ) 10.x.x.x network
3) Router ( RRAS ) both adapters
Important: RRAS system / Router should be congured with mul ple NICs and Mul ple NICs should be added through Hyper-v Manager as shown
below
A er installing the RRAS server, right the server name Se ngs which will open the below wizard
From the Add Hardware op ons, select Network Adapter which should add second adapter to the RRAS server.
Step5: Navigate to Network Connec ons ( ncpa.cpl ) and ensure the below se ngs are congured as shown below
First Adapter
Second Adapter:
5 of 14 04-08-2015 10:13
Step6: conguring the Router is the primary step before installing the Domain controllers on the respec ve Networks. Navigate to the Router Virtual
machine and login with the user account which has administrator privileges to install the services.
Note: I have installed Windows Server 2008 R2 as Router.
Navigate to Server Manager Add Role Wizard and click Next
Select Network Policy and Access Services ( installed ) from the Add roles wizard.
Select Rou ng and Remote Access Click Finish to install the role successfully.
Step7: Open Rou ng and Remote Access from Administra ve Tools. Right Click on Server and click Proper es which will open the below wizard.
6 of 14 04-08-2015 10:13
Select Local Area Network ( LAN ) Rou ng only and click OK .
Step8: From the Router, ensure the rou ng is successful between 2 subnets. You can use PING to perform the tests, if ICMP is blocked in the
environment, administrators can quickly connect to windows shares on either network which will ensure the connec vity is successful.
From the above result, successful ping is performed between two subnets successfully.
Default Gateway Congura on

Post congura on of RRAS, there is a need to change the Virtual Machines Default Gateway. The DG should be poin ng to RRAS as shown below
7 of 14 04-08-2015 10:13
Forest Root Domain Installa on

Step9: Navigate to Forest Root Domain (This will be the rst Domain in the Ac ve Directory Forest and the First Domain Controller). Below are the
steps to congure the rst Domain in the Ac ve Directory Forest.
Install Ac ve Directory Domain Services role:
8 of 14 04-08-2015 10:13
9 of 14 04-08-2015 10:13
Note: Some of the snapshots are collected from my previous post, server name might be dierent but steps remains same.
Step10: Promo ng the server to domain controller which can be performed by naviga ng to Server Manager AD DS
10 of 14 04-08-2015 10:13
Click on More which is towards right end of Congura on Required for Ac ve Directory Domain Services , administrators will view the below wizard
From the above wizard click on Promote this server to a domain which would bring the following wizard
Select Add a New Forest from the below wizard
Enter the domain name ( FQDN ) and click next . ( Provide the necessary administrator creden als to perform the ac on)
We have successfully installed and congured Ac ve directory Forest Root Domain on the rst Domain Controller.
Child Domain Congura on
Step11: Before installing Child Domain on dierent subnet, ensure the network connec vity is successful between ( 192.x.x.x and 10.x.x.x Networks )
and proceed by promo ng the member server to domain controller / Add child domain to the exis ng Ac ve Directory Forest.
Perform the above steps outlined under ( Forest Root domain Installa on / Step9 and Step10) , while on below wizard select Add a new domain to an exis ng forest.
11 of 14 04-08-2015 10:13
Enter the Forest Root domain / Parent domain to which child domain is congured, select the valid creden als and nish the congura on. This steps
would ensure that both Root domain and child domains are congured successfully.
Note: if there is no internetworking established between 192.x.x.x and 10.x.x.x Administrators would fail to create child domain.
Crea ng Ac ve Sites, Subnet and Site Link Objects

A er successfully installing the Primary and Child Ac ve directory Domains, it is required to create the necessary Site Object, Subnet object and Site
link Objects to perform the successful replica on of Naming contexts. Below are the steps to congure them accordingly.
Note1: Crea ng Sites is not required unless the site has Dedicated Domain Controller or any services requires site topology informa on ( DFS ).
Note2: To create Subnet / Sites, the user should be member of Enterprise Administrator Group.
a) Create Site Object : Open Ac ve Directory Sites and Services applica on and perform the below ac ons
Under Name: <Enter the name of the site you wish to create>
And select the Site Link Object listed below. The site link provides direct communica on between the domain controllers in dierent Sites.
b) Create Subnet Object: Create the subnet object which represent the physical subnet of the organiza on.
12 of 14 04-08-2015 10:13
Enter the prex Eg: 192.168.1.1/24 , select the Site object and click OK.
c) Create site Link Object: Site link object establishes successful communica on between the domain controllers.
A er crea ng the respec ve objects, its me to move the Domain Controllers from Default First Site Name to respec ve Sites, Administrators can
right click on the server and click Move and select the Site that acts as place holder.
Valida ng Replica on: A er moving the servers to new subnets, administrators should test the Replica on status between the servers, this can be
achieved either through command line u li es (REPADMIN) or through GUI applica on called Ac ve Directory Replica on Status Tool (Downloadable
through TechNet)
The output of the tools is as below.
13 of 14 04-08-2015 10:13
Summary: This ar cle demonstrates End-End process involved in crea ng the Infrastructure to stage Mul ple Ac ve Directory Domains across Subnets.
14 of 14 04-08-2015 10:13

Creating Multiple Active Directory Domains Different Networks Using Hyper-V RRAS - TechNet Articles - United States (English) - TechNet Wiki

Hochgeladen von

Dokumentinformationen

Copyright

Verfügbare Formate

Dieses Dokument teilen

Dokument teilen oder einbetten

Freigabeoptionen

Stufen Sie dieses Dokument als nützlich ein?

Sind diese Inhalte unangemessen?

Copyright:

Verfügbare Formate

Creating Multiple Active Directory Domains Different Networks Using Hyper-V RRAS - TechNet Articles - United States (English) - TechNet Wiki

Hochgeladen von

Copyright:

Verfügbare Formate

Creating Multiple Active Directory Domains Different Networks usin... http://social.technet.microsoft.com/wiki/contents/articles/16198.creati...

Creating Multiple Active Directory Domains Different

This lab is built on the following

Windows server 2012 ( standard / Enterprise) - Server hosted for Ac ve Directory

Windows Sever 2008 R2 / Windows Server ( Server hosted as Router

Note: Licensing should be managed accordingly

Hyper-v Install the service on one of the Windows

DNS infrastructure on both servers DNS service for name resolu on

IP Subnets X 2 192.168.1.x and 10.25.10.x

Rou ng and Remote Access Rou ng between two subnets

Click Next from the above screen.

Select Role base or Feature based installa on and select Next .

Ever Ac on on Virtual Machines!!

Select Local Area Network ( LAN ) Rou ng only and click OK .

Default Gateway Congura on

Forest Root Domain Installa on

Select Add a New Forest from the below wizard

Child Domain Congura on

Crea ng Ac ve Sites, Subnet and Site Link Objects

Das könnte Ihnen auch gefallen