I\u2019ve seen this one a few times on forums and I\u2019ve been asked it at sessions I\u2019ve presented at. People are deploying Hyper-V in medium and large businesses and they are wondering if they should virtualise absolutely everything in their data centre.<\/p>\n
The answer is no. <\/p>\n
Let\u2019s start with the obvious. Some applications or operating systems may not have vendor support for virtualisation. If that\u2019s the case then you shouldn\u2019t virtualise them. However, many still do and they get by with no negative impacts. Okey dokey.<\/p>\n
Some servers just require too many resources to consider for virtualisation. Consider a data warehouse application. If you virtualise it, it might require a 1 VM per host deployment. For the vast majority of us that\u2019s a bad idea. However some might like it because it means the machine is abstracted from the hardware. But remember that you can only have a maximum of 4 virtual processors in a Windows Server VM on Hyper-V. That likely won\u2019t be enough for any machine that needs 32GB or 64GB RAM.<\/p>\n
Then there\u2019s domain controllers. You can virtualise domain controllers but you have to be very careful. Basically you have to treat them as you would physical domain controllers. Checkpoints\/saved states and host level backup is a bad idea for domain controllers because of the risks of AD corruption, e.g. USN rollback. Microsoft takes the idea of virtual domain controllers very seriously and has a very long support article<\/a> on it.<\/p>\n Should you virtualise all of your domain controllers? Typically I will say no to this. There\u2019s a few exceptions, e.g. virtualised SBS running on a workgroup member Hyper-V host. But take a Hyper-V cluster. The presence of AD is a requirement of a Hyper-V cluster. What happens if you need to power down your entire cluster for maintenance or power suddenly cuts out. These things happen. Electricians might need to work on power board or a UPS\/generator might fail to kick in. I\u2019ve seen both take place in the past. What happens to that cluster if all of the DC\u2019s are virtualised on the cluster? The cluster relies on AD for authentication\/authorization. Things will fail. It\u2019s a chicken and egg scenario.<\/p>\n Microsoft recently blogged<\/a> about this. The workaround solution is to find the LUN where the VHD(s) for a DC with DNS role installed and configured is located, copy that to a temporary workgroup Hyper-V server and set it up to boot up. Now you can power up the cluster. But you have to be really careful and make sure that original DC VM doesn\u2019t start up and cause a mess.<\/p>\n The advice is to have at least one physical DC. When I did my ESX 3.X training a few years ago the advice was the same when running Virtual Center. I recommend having 2: Murphy tends to like to mess up plans and wouldn\u2019t it be a bad day if both the cluster powered down and your lone physical DC wouldn\u2019t start up? Alternatively you can run those DC\u2019s on a separate workgroup host but that just complicates things in terms of virtualisation management. I like to keep things simple so I\u2019d go the 2 physical DC route. Then you can safely virtualise other DC\u2019s while sticking to Microsoft\u2019s advice<\/a> on the subject.<\/p>\n I\u2019ve seen this one a few times on forums and I\u2019ve been asked it at sessions I\u2019ve presented at. People are deploying Hyper-V in medium and large businesses and they are wondering if they should virtualise absolutely everything in their data centre. The answer is no. Let\u2019s start with the obvious. Some applications or operating … Continue reading “Hyper-V: Can I Virtualise Everything: Domain Controllers?”<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_uf_show_specific_survey":0,"_uf_disable_surveys":false,"footnotes":""},"categories":[20],"tags":[169,181,116,117],"class_list":["post-10263","post","type-post","status-publish","format-standard","hentry","category-hyper-v","tag-active-directory","tag-hyper-v","tag-windows-server-2008","tag-windows-server-2008-r2"],"aioseo_notices":[],"jetpack_featured_media_url":"","amp_enabled":true,"_links":{"self":[{"href":"https:\/\/aidanfinn.com\/index.php?rest_route=\/wp\/v2\/posts\/10263","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/aidanfinn.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/aidanfinn.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/aidanfinn.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/aidanfinn.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=10263"}],"version-history":[{"count":0,"href":"https:\/\/aidanfinn.com\/index.php?rest_route=\/wp\/v2\/posts\/10263\/revisions"}],"wp:attachment":[{"href":"https:\/\/aidanfinn.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=10263"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/aidanfinn.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=10263"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/aidanfinn.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=10263"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}