kopper27
Hot Shot
Hot Shot

Replicating Windows Active Directory yes or not

Jump to solution

hi guys

Any recommendation when replicating Windows Active Directory?

Do you recommend using Vmware Replication to do this?

or is it much better to deploy a second AD in the Secondary site instead of going through all the work when restoring a replica in this case a AD VM?

If replicating is the way to go do you recommend Guest OS Quiescing (VSS)? or normal replication no VSS support?

thanks a lot

someone knows when to use VSS or not in general?

thanks a lot

Tags (2)
0 Kudos
1 Solution

Accepted Solutions
memaad
Commander
Commander

Hi,

Here is statement from Vmware document  link  VMware vCenter Site Recovery Manager 5.1 Documentation Library

Do not use SRM to protect Active Directory domain controllers. Active Directory provides its own replication technology and restore mode. Use the Active Directory replication technology and restore mode technologies to handle disaster recovery situations.

Regards

Mohammed Emaad

Mohammed Emaad |VCP 3, 4,5 |VCP -NV 6 | VCP-DT 51 | vCAP4-DCA | VCAP5DCA | | Mark it as helpful or correct if my suggestion is useful.

View solution in original post

0 Kudos
5 Replies
memaad
Commander
Commander

Hi,

Here is statement from Vmware document  link  VMware vCenter Site Recovery Manager 5.1 Documentation Library

Do not use SRM to protect Active Directory domain controllers. Active Directory provides its own replication technology and restore mode. Use the Active Directory replication technology and restore mode technologies to handle disaster recovery situations.

Regards

Mohammed Emaad

Mohammed Emaad |VCP 3, 4,5 |VCP -NV 6 | VCP-DT 51 | vCAP4-DCA | VCAP5DCA | | Mark it as helpful or correct if my suggestion is useful.

View solution in original post

0 Kudos
kopper27
Hot Shot
Hot Shot

Thanks a lot

I suppose that applies to Replication 5.5

memaad
Commander
Commander

Hi ,

Yes, it applies for 5.5  too

Site Recovery Manager 5.5 Documentation Center

Regards

Mohammed EMaad

Mohammed Emaad |VCP 3, 4,5 |VCP -NV 6 | VCP-DT 51 | vCAP4-DCA | VCAP5DCA | | Mark it as helpful or correct if my suggestion is useful.
jjohnsonclt
Contributor
Contributor

And this includes replicating a domain controller for a Test Failover on a private network correct?

0 Kudos
cfsullivan
Contributor
Contributor

I have done two things in the past to test AD in a private network.  We used to use the VMware Converter to do P2Vs, which actually worked quite well.  Our DCs at the time were Windows 2003 and later 2008 R2 VMs.  We later began to do a straight clone of a 2008 R2 DC, but that required shutting down the DC.  That particular DC didn't get much traffic, so we could afford to shut it down for an hour or two.  We now are at Windows 2012 R2 DCs and I have so far shut down a DC once for cloning.

I don't know why a P2V would be clean for copying a running DC, where cloning sets off a lot of VSS errors, etc.  There's probably an easily explained, known reason for it, but I'm not aware myself.  I haven't tried cloning a live 2012 R2 DC, but I assume it would react the same way.  2012 R2 DCs are much more VM friendly and they are even clonable for production, if done correctly, but the MS instructions for it do say to shut down the source DC.

0 Kudos