{"id":4045,"date":"2015-08-07T08:49:31","date_gmt":"2015-08-07T13:49:31","guid":{"rendered":"http:\/\/www.poweradmin.com\/blog\/?p=4045"},"modified":"2015-08-14T09:14:56","modified_gmt":"2015-08-14T14:14:56","slug":"cloning-a-windows-server-2012-dc","status":"publish","type":"post","link":"https:\/\/www.poweradmin.com\/blog\/cloning-a-windows-server-2012-dc\/","title":{"rendered":"Cloning a Windows Server 2012 DC"},"content":{"rendered":"

With the release of Windows Server 2012 Edition, Microsoft featured a new way in which Domain Controllers can be deployed in an Active Directory infrastructure. This new method offers the possibility of cloning an active DC from your environment, but several requirements must be fulfilled before you can successfully clone a DC: A server that\u2019s running Hyper-V which hosts a VM. A second Domain Controller that\u2019s running within the same AD domain with PDC Emulator operations master role. The Domain Controller that will be cloned must not run the PDC Emulator operations master role.<\/span><\/p>\n

We\u2019ll need to add the source Domain Controller to the Cloneable Domain Controllers <\/i>security group in Active Directory. To achieve this result you can use either Active Directory Users and Computers<\/i> or Active Directory Administrative Center<\/i> consoles:<\/span><\/p>\n

\"active<\/a><\/p>\n

Once the DC has been successfully added to the required security group, we have to run Get-ADDCCloningExcludedApplicationList<\/i> cmdlet to review the software that can potentially interact with our cloning operation. Note that not all applications can be used in this mechanism so the cmdlet will display a list with those must be excluded:<\/span><\/p>\n

\"powershell<\/a><\/p>\n

To add these programs and services to the exclusion list, execute Get-ADDCCloningExcludedApplicationList<\/i> with the \u2013GenerateXml<\/i> option. Note that the following command will create the XML file in C:\\Windows\\NTDS<\/i>:<\/span><\/p>\n

Get-ADDCCloningExcludedApplicationList -GenerateXml -Path C:\\Windows\\NTDS \u2013Force<\/i><\/span><\/p>\n

After you\u2019ve executed this command, simply run Get-ADDCCloningExcludedApplicationList<\/i> again and view its output. You should see something similar to the following screenshot:<\/span><\/p>\n

\"ADDCCloningExcludedApplicationList\"<\/a><\/p>\n

You can navigate to the XML path and view its content. Remember that if applications that were displayed when executing Get-ADDCCloningExcludedApplicationList <\/i>are not added to the exclusion list, the whole cloning operation will fail so make sure to generate the XML file:<\/span><\/p>\n

\"xml-config-file\"<\/a><\/p>\n

Next thing we\u2019ll have to do is create the DC configuration file by using the New-ADDCCloneConfigFile<\/i> cmdlet. This command supports multiple parameters so you can use the Get-Help New-ADDCCloneConfigFile -full<\/i> cmdletto view each of them. Note that you can specify the IPv4Address<\/i>, IPv4DNSResolver<\/i>, IPv4SubnetMask<\/i>, IPv4DefaultGateway<\/i>, PreferredWINSServer<\/i>, CloneComputerName<\/i> and many others:<\/span><\/p>\n

\"New-ADDCCloneConfigFile\"<\/a><\/p>\n

New-ADDCCloneConfigFile -Static -IPv4Address \u201c192.168.10.10\u201d \u2013 IPv4DefaultGateway \u201c192.168.10.11\u201d -IPv4DNSResolver \u201c192.168.10.10\u201d -IPv4SubnetMask \u201c255.255.255.0\u201d -Static -CloneComputerName \u201cSrv-DC02\u201d \u201c192.168.10.10\u201d<\/i><\/span><\/p>\n

The cloned machine will automatically detect this file and configure the settings added here. The cmdlet will verify if the PDC Emulator role is hosted on the source DC, if the computer is member of the Cloneable Domain Controllers security group and if all programs and services that do not support this cloning operation have been placed in the CustomDCCloneAllowList<\/i> XML file:<\/span><\/p>\n

\"CustomDCCloneAllowList\"<\/a><\/p>\n

All that\u2019s left to do is to export the Virtual Machine using Hyper-V Manager<\/i> console or Powershell<\/i> and then import the cloned Domain Controller. You can use the Export-VM \u2013Name Srv-DC02 \u2013Path D:\\VMs<\/i> command to export the virtual machine using Powershell. It\u2019s easier to use the Export button from Hyper-V Manager console if you prefer the GUI. The import<\/i> command in Hyper-V Manger<\/i> can be used with the Create a New Unique ID<\/i> option to import the cloned machine. Alternately you can use the Import-VM \u2013Path \u2018path_to_VM.XML\u2019 \u2013Copy \u2013GenerateNewId<\/i> cmdlet from Powershell to perform the same operation. Once the import procedure is completed, you can start both machines and see the results.<\/span><\/p>\n

That\u2019s about it for this cloning procedure folks, as you can see, the new Domain Controller cloning feature added with Windows Server 2012 is pretty intuitive and easy to understand. If you have any misunderstandings feel free to pot a comment and I\u2019ll respond as soon as possible. Wish you a wonderful day and stay tuned for the following articles.<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"

With the release of Windows Server 2012 Edition, Microsoft featured a new way in which Domain Controllers can be deployed in an Active Directory infrastructure. This new method offers the possibility of cloning an active DC from your environment, but several requirements must be fulfilled before you can successfully clone a DC: A server that\u2019s […]<\/p>\n","protected":false},"author":4,"featured_media":4051,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[5,9,8],"tags":[],"class_list":["post-4045","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-how-to","category-technical","category-windows"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/posts\/4045","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/comments?post=4045"}],"version-history":[{"count":1,"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/posts\/4045\/revisions"}],"predecessor-version":[{"id":4052,"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/posts\/4045\/revisions\/4052"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/media\/4051"}],"wp:attachment":[{"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/media?parent=4045"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/categories?post=4045"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.poweradmin.com\/blog\/wp-json\/wp\/v2\/tags?post=4045"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}