This is what one of my colleges has found out so far:
Time Synchronisation
Accurate Time synchronisation between domain controllers should be implemented to avoid issues.
See http://www.vmware.com/support/kb/enduser/std_adp.php?p_faqid=1318
Microsoft Stance
Whilst running Active Directory in a 'live' i.e . non test environment, the use of the following Virtualisation features should be avoided.
See http://support.microsoft.com/kb/888794/en-us
1) Avoid suspending an Active Directory controller in 'live' environment.
2) Avoid undoable disks in a 'live' environment
There are also some 'critical' server roles that Microsoft recommend keeping physical. Though, it does not insist upon
• Global catalog servers
• Domain Name System (DNS) servers
• Operations master roles (also known as flexible single master operations or FSMO)
Quoting MS KB888794 Article..
<quote>
Support for Active Directory domain controllers in virtual hosting environments
We do not test the functionality of Active Directory domain controllers in virtual hosting environments. However, we will help troubleshoot domain controllers that run in virtual hosting environments, whether the virtual hosting environment comes from Microsoft or from a third party.....
</quote>
Support policy for Microsoft software running in non-Microsoft hardware virtualisation software
See http://support.microsoft.com/kb/897615/en-us
Accurate Time synchronisation between domain controllers should be implemented to avoid issues.
See http://www.vmware.com/support/kb/enduser/std_adp.php?p_faqid=1318
Microsoft Stance
Whilst running Active Directory in a 'live' i.e . non test environment, the use of the following Virtualisation features should be avoided.
See http://support.microsoft.com/kb/888794/en-us
1) Avoid suspending an Active Directory controller in 'live' environment.
2) Avoid undoable disks in a 'live' environment
There are also some 'critical' server roles that Microsoft recommend keeping physical. Though, it does not insist upon
• Global catalog servers
• Domain Name System (DNS) servers
• Operations master roles (also known as flexible single master operations or FSMO)
Quoting MS KB888794 Article..
<quote>
Support for Active Directory domain controllers in virtual hosting environments
We do not test the functionality of Active Directory domain controllers in virtual hosting environments. However, we will help troubleshoot domain controllers that run in virtual hosting environments, whether the virtual hosting environment comes from Microsoft or from a third party.....
</quote>
Support policy for Microsoft software running in non-Microsoft hardware virtualisation software
See http://support.microsoft.com/kb/897615/en-us
Regards, Max
On 2/21/06, Sem 3 <[EMAIL PROTECTED]> wrote:
Hi Guys
We are considering vertualising our production Active directory infrastructure. About 40 DC's 2003 sp1 spread across 5 sites 60k+ users. VMware ESX server is the intended platform.
Has anyone any experience doing this? Any stories to share? Gotchas?Ill feed back any conclusions to the list for info :)
Cheers
Max
