1

I recently started an internship in System Administration and I am currently tasked with researching and potentially setting up an on Premise Active Directory in our company. Lets say, I am running Windows Server 2019 or 2022 on a single DC and using AD, ADDS etc. services. Using the Standard Edition with 16 Core licensing and 40 User CALs.

My first question is, what happens when the only DC fails/becomes unavailable. Which services would still function, if any.

If I understood correctly, if I want to add a second DC, I need another 16 Core License, because you need 16 Core License minimum per server, correct?

Which brings me to my second question. Can I run a second DC on a VM? Either on one of the 2 VMs included in a Standard 16 Core License or entirely on a different VM.

I am still fairly new to this, so any help is greatly appreciated!

Borkhuu Enkhjargal
  • 21
  • 1
  • License questions are off topic on this forum. We also are unable to predict what impact turning off the only DC would have in your environment, although this is fairly easy for you to test. – Greg Askew Nov 22 '22 at 20:23
  • Does this answer your question? [Can you help me with my software licensing issue?](https://serverfault.com/questions/215405/can-you-help-me-with-my-software-licensing-issue) – djdomi Jun 19 '23 at 05:57

3 Answers3

1

Can I run a second DC on a VM?

In cluster environments, people run both DCs on VMs but store them locally on different hosts. So, it is fine to run DC on a VM.

fopsik
  • 606
  • 3
  • 9
1

It's standard practice since maybe Windows Server 2012 to have a) virtualized domain controllers (DCs), and b) have them configured in highly available (HA) mode. DCs have their own replication mechanism built-in, so this comes at no extra management cost.

Microsoft's recommendations on virtual domain controllers:

https://learn.microsoft.com/en-us/windows-server/identity/ad-ds/get-started/virtual-dc/virtualized-domain-controllers-hyper-v

AD HA (incl. Domain Controllers):

https://learn.microsoft.com/en-us/windows-server/identity/ad-ds/get-started/replication/active-directory-replication-concepts

Hope this helped :)

BaronSamedi1958
  • 13,676
  • 1
  • 21
  • 53
-1

This is more than one question and a bit out of scope of sf. But here is quick answer anyway.

what happens when the only DC fails/becomes unavailable. Which services would still function, if any.

All services depending on th AD will fail, everything else will work. As you did not post any services nor their configuration, we cannot answer this.

But it is strongly recommended to have at least a second DC. Usually the first thing that you will notice in a fail case is that your users are not able to login.

if I want to add a second DC, I need another 16 Core License, because you need 16 Core License minimum per server, correct?

Windows Server Standard, as of today, can be installed two times (on the same hardware). The standard license comes with two instances, which is why virtualization makes eveything easier.

Can I run a second DC on a VM?

Sure - and you definately should.

bjoster
  • 4,805
  • 5
  • 25
  • 33
  • Im sorry for the out of scope question (New here), thanks for your answer anyways. "Windows Server Standard, as of today, can be installed two times (on the same hardware). The standard license comes with two instances, which is why virtualization makes eveything easier." Are you referring to the 2 provided VMs? – Borkhuu Enkhjargal Dec 01 '22 at 15:08
  • Yes, I am referring to one license which provides you with two (virtual) instances. – bjoster Dec 06 '22 at 19:35