Jump to content


  • 0
AdinE

How to Add Hyper-V Hosts in a Perimeter Network in VMM 2012 R2

Question

In my home lab environment, I have a single host, which is NOT a member of my lab’s domain. This is due to the fact that I am constantly re-building my lab environment, which includes my Active Directory Domain Controllers. Therefore, I don’t want to add my host to the domain, and then potentially loose access to it when rebuilding (although I could still use the Local Administrator account).

 

With that being said, I want to add my Host to SCVMM (which is running in a VM on the Host itself). Therefore, I need to be able to add a Host that is not a domain member (aka. a Workgroup host). So, I will be following this TechNet article (http://technet.microsoft.com/en-ca/library/gg610642.aspx), which walks through the process. I will add screenshots to make it easier to follow.

 

You can use the following procedure to add Hyper-V hosts that are in a perimeter network (also known as DMZ, demilitarized zone, and screened subnet) as managed Hyper-V hosts in Virtual Machine Manager. You can only add stand-alone hosts that are in a perimeter network. VMM does not support managing a host cluster in a perimeter network.

 

NOTE: You can also use this procedure to add a stand-alone Hyper-V host that is in a workgroup and not part of a domain.

 

Before you can add a host that is on a perimeter network to VMM, you must install an agent locally on the server that you want to add.

 

TO INSTALL THE VMM AGENT ON THE TARGET HOST

On the VMM product media or network share, right-click Setup.exe, and then click Run as administrator.

 

scvmm-workgroup-host-01-setupexe.png

 

On the Setup menu, under Optional Installations, click Local Agent.

 

scvmm-workgroup-host-02-optional-installations-local-agent.png

 

On the Welcome page, click Next.

 

scvmm-workgroup-host-03-welcome-screen.png

 

Review and accept the software license terms, and then click Next.

 

scvmm-workgroup-host-04-license-terms.png

 

On the Destination Folder page, accept the default location or click Change to specify a different location, and then click Next.

 

scvmm-workgroup-host-05-destination-folder.png

 

On the Security File Folder page, do the following:

Select the This host is on a perimeter network check box.

 

scvmm-workgroup-host-06-security-file-folder.png

 

In the Security file encryption key box, enter an encryption key, and then enter it again in the Confirm encryption key box.

 

Security Note: The encryption key is a value that you choose. We recommend that you enter an encryption key that contains a mix of uppercase and lowercase letters, numbers and symbols.

 

Important: Make note of the encryption key that you use to create the security file. You must enter this same key again when you add the host in the VMM console.

 

Either accept the default location where the encrypted security file will be stored, or click Change to specify a different location to store the encrypted security file.

 

Important: Make note of the location where you stored the security file. In the “To ensure that the Security.txt file is available to VMM” procedure, you must transfer the security file to a location that is accessible to the computer on which a VMM console is installed.

 

To use a certificate to encrypt communications between the VMM management server and the host, select the Use a CA signed certificate for encrypting communications with this host check box. In the Thumbprint of the certificate box, enter the thumbprint of the certificate.

 

Note: To obtain the thumbprint of a certificate, open the Certificates snap-in, and then select Computer account. In the Certificates snap-in, locate and then double-click the certificate that you want to use. On the Details tab, select theThumbprint field. In the lower pane, highlight the thumbprint value, and then press Ctrl+C to copy the value to the clipboard.

 

When you are finished, click Next.

 

On the Host network name page, specify how the VMM management server will contact the host, and then click Next. You can select either of the following options:

  • Use local computer name
  • Use IP address

If you select Use IP address, click an IP address in the list.

 

Important: Make note of the computer name or IP address of the host. You must enter this same information again when you add the host in the VMM console.

 

scvmm-workgroup-host-07-host-network-name.png

 

On the Configuration settings page, accept the default port settings, or specify different ports, and then click Next.

 

scvmm-workgroup-host-08-configuration-settings.png

 

Important: We recommend that you do not change the default port 5986 for agent communication. The port settings that you assign for the agent must identically match the port setting that the VMM management server uses. By default, the VMM management server uses port 5986 for agent communication with hosts in a perimeter network, and port 443 for file transfers.

 

On the Ready to install page, click Install.

 

scvmm-workgroup-host-09-ready-to-install.png

 

TO ENSURE THAT THE SECURITYFILE.TXT FILE IS AVAILABLE TO VMM

On the target host, navigate to the folder where the security file is stored. By default, the location is C:\Program Files\Microsoft System Center 2012\Virtual Machine Manager. The name of the security file is SecurityFile.txt.

 

scvmm-workgroup-host-10-securityfile-location.png

 

Transfer the security file to a location that is accessible to the computer on which a VMM console is installed. For example, transfer the file to the computer where the VMM console is installed, to an internal file share, or to a USB flash drive.

 

TO ADD THE HYPER-V HOST IN THE PERIMETER NETWORK

In the VMM console, open the Fabric workspace.

 

scvmm-workgroup-host-11-fabric-workspace.png

 

In the Fabric pane, click Servers.

 

scvmm-workgroup-host-12-fabric-servers.png

 

On the Home tab, in the Add group, click Add Resources, and then clickHyper-V Hosts and Clusters.The Add Resource Wizard starts.

 

scvmm-workgroup-host-13-add-resources-hyper-v-hosts-and-clusters.png

 

On the Resource location page, click Windows Server computers in a perimeter network, and then click Next.

 

scvmm-workgroup-host-14-add-resources-wizard-resource-location.png

 

On the Target resources page, do the following:

 

In the Computer name box, enter the NetBIOS name or the IP address of the host in the perimeter network.

 

In the Encryption key box, enter the encryption key that you created when you installed the agent on the target host.

 

In the Security file path box, enter the path of the SecurityFile.txt file, or clickBrowse to locate the file.

 

In the Host group list, click the host group where you want to add the host.For example, click the Seattle\Tier2_SEA host group.

 

Click Add.The computer is listed under Computer Name in the lower pane.

 

Repeat this step to add other hosts in the perimeter network. When you are finished, click Next.

 

scvmm-workgroup-host-15-add-resources-wizard-target-resources.png

 

On the Host settings page, in the Add the following path box, enter the path on the host where you want to store the files for virtual machines that are deployed on hosts, and then click Add. If you leave the box empty, the default path of %SystemDrive%\ProgramData\Microsoft\Windows\Hyper-V is used. Be aware that it is a best practice not to add default paths that are on the same drive as the operating system files.

 

Repeat this step if you want to add more than one path. When you are finished, click Next.

 

Note: You can ignore the Reassociate this host with this Virtual Machine Manager environment check box. This setting does not apply to hosts in a perimeter network.

 

scvmm-workgroup-host-16-add-resources-wizard-host-settings.png

 

On the Summary page, confirm the settings, and then click Finish.

 

scvmm-workgroup-host-17-add-resources-wizard-summary.png

 

The Jobs dialog box appears to show the job status. Make sure that the job has a status of Completed, and then close the dialog box.

 

scvmm-workgroup-host-18-jobs-completed.png

 

To verify that the host was successfully added, in the Fabric pane, expandServers, expand All Hosts, expand the host group where you added the host, and then click the host. In the Hosts pane, verify that the host status is OK.

 

scvmm-workgroup-host-19-all-hosts.png

 

Tip: To view detailed information about host status, right-click the host in the VMM console, and then click Properties. On the Status tab you can view the health status for different areas such as overall health, host agent health, and Hyper-V role health. If there is an issue, you can click Repair all. VMM will to try to automatically fix the issue.

Share this post


Link to post
Share on other sites

0 answers to this question

Recommended Posts

There have been no answers to this question yet

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Answer this question...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...


×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.