VMware Horizon Community
mmonkman
Enthusiast
Enthusiast
‎12-29-2017 02:51 AM
Jump to solution

Instant Clone computer objects being created on distant domain controllers

Hi.  Does anyone know how to "hard code" the Preferred DC that computer objects are created on during instant clone creation?

We have a very flat global domain with over 200 domain controllers (gc's), and are finding that instant clone computer objects are being created on distant dc's, which not only takes a much longer time, but when the instant clone is completed and ready for use, the DC used at logon is not aware of the newly created computer object due to replication latency so authentication fails.

I believe the mechanics of a domain join are working correctly, ie the specified domain is queried and a list of DC's is returned in a random order (nslookup "domain name") and the DC with the least DNS load is selected for the domain join. AD sites and Services are configured correctly - the instant clone subnet is associated with the same AD site as the rest of the Horizon 7.3 infrastructure and has serviceable DNS integrated DC's, yet the domain join operation always occurs on a distant DC.   I've noticed that an instant clone VM has an advanced parameter set called guestinfo.preferredDC with the name of the DC as the value, but can this be configured prior to instant clone creation?


This is causing major headaches!


Thanks,

Matt

0 Kudos
1 Solution

Accepted Solutions
mmonkman
Enthusiast
Enthusiast
‎01-09-2018 03:13 AM
Jump to solution

Fixed.

An ldap call is made that queries for Global Catalog servers registered in the same site as the Connection server.  The GC's being returned were not local to the Site due to an AD Sites and Services mis-configuration.  Amended and everything is now working as expected.  Browsing the domain for instant clone placement is now much quicker too!

View solution in original post

0 Kudos
2 Replies
mmonkman
Enthusiast
Enthusiast
‎12-29-2017 03:32 AM
Jump to solution

OK - if I can change the guestinfo.preferredDC on the clonepreptemplate (cp-templateXXX) that might resolve the issue, but it's read only;

PowerCLI C:\> get-vm -Name "cp-template-1d1b1228-3ea7-4ee3-b44f-fe9d9bc74fd8" | get-AdvancedSetting -Name "guestinfo.preferredDC" | Set-AdvancedSetting -Value "mylocalDC"

Perform operation?

Modifying advanced setting 'guestinfo.preferredDC'.

[Y] Yes  [A] Yes to All  [N] No  [L] No to All  [S] Suspend  [?] Help (default is "Y"): y

Set-AdvancedSetting : 29/12/2017 11:27:20       Set-AdvancedSetting             The method is disabled by 'horizon.daas'

At line:1 char:119

+ ... fo.preferredDC" | Set-AdvancedSetting -Value "mylocalDC"

+                       ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

    + CategoryInfo          : NotSpecified: (:) [Set-AdvancedSetting], MethodDisabled

    + FullyQualifiedErrorId : Client20_SystemManagementServiceImpl_UpdateVMAdvancedOption_VIError,VMware.VimAutomation.ViCore.Cmdlets.Commands.SetAdvancedSetting

Any ideas how I can make the change?

0 Kudos
mmonkman
Enthusiast
Enthusiast
‎01-09-2018 03:13 AM
Jump to solution

Fixed.

An ldap call is made that queries for Global Catalog servers registered in the same site as the Connection server.  The GC's being returned were not local to the Site due to an AD Sites and Services mis-configuration.  Amended and everything is now working as expected.  Browsing the domain for instant clone placement is now much quicker too!

0 Kudos