The following forum(s) have migrated to Microsoft Q&A: All English Windows Server forums!
Visit Microsoft Q&A to post new questions.

Learn More

Remove From My Forums

Active Directory User and Password Sync

Question
0

Sign in to vote

Hi,

We have virtualised development labs that are direct clones of our production environment, including names, IP addresses and Active Directory. These labs are ring fenced using virtual network appliances with firewall rules that allow access to specific ports. The issue we have is that when passwords expire either in the labs or in production AD, it causes issues for our developers. Also, when new users are created in production, the process has to be repeated in multiple labs which is a bit of a time sink, even with scripts.

Currently we sporadically do system state restores to AD controllers in the labs to get them in sync with prod but this also requires us re-adding all the servers back onto the domain and again is tedious process. Is there any way to sync from production AD to the labs AD?

Thanks in advanced.

Mark

Wednesday, October 29, 2014 8:54 AM

Answers

0

Sign in to vote
Hi Mark,

Is there any way to sync from production AD to the labs AD?

We can only synchronize AD data between Domain Controllers within the same forest/domain.

Although I am not sure that why you need a production environment and a cloned lab environment, since we can easily achieve fault tolerance by setting up multiple Domain Controllers.

Best Regards,

Amy
- Marked as answer by Amy Wang_ Sunday, November 9, 2014 10:04 AM
Thursday, October 30, 2014 6:37 AM
0

Sign in to vote
If it is an isolated environment, you won't be able to synchronize the data.

Export/Import, Backup/restore, P2V, D2VHD etc are the only option.

Santhosh Sivarajan | Houston, TX | www.sivarajan.com
ITIL,MCITP,MCTS,MCSE (W2K3/W2K/NT4),MCSA(W2K3/W2K/MSG),Network+,CCNA

Windows Server 2012 Book - Migrating from 2008 to Windows Server 2012

Blogs: Blogs
Twitter: Twitter
LinkedIn: LinkedIn
Facebook: Facebook

Microsoft Virtual Academy: Microsoft Virtual Academy

This posting is provided AS IS with no warranties, and confers no rights.
- Marked as answer by Amy Wang_ Sunday, November 9, 2014 10:04 AM
Thursday, October 30, 2014 6:08 PM

All replies

0

Sign in to vote
Hi Mark,

Is there any way to sync from production AD to the labs AD?

We can only synchronize AD data between Domain Controllers within the same forest/domain.

Although I am not sure that why you need a production environment and a cloned lab environment, since we can easily achieve fault tolerance by setting up multiple Domain Controllers.

Best Regards,

Amy
- Marked as answer by Amy Wang_ Sunday, November 9, 2014 10:04 AM
Thursday, October 30, 2014 6:37 AM
0

Sign in to vote
If it is an isolated environment, you won't be able to synchronize the data.

Export/Import, Backup/restore, P2V, D2VHD etc are the only option.

Santhosh Sivarajan | Houston, TX | www.sivarajan.com
ITIL,MCITP,MCTS,MCSE (W2K3/W2K/NT4),MCSA(W2K3/W2K/MSG),Network+,CCNA

Windows Server 2012 Book - Migrating from 2008 to Windows Server 2012

Blogs: Blogs
Twitter: Twitter
LinkedIn: LinkedIn
Facebook: Facebook

Microsoft Virtual Academy: Microsoft Virtual Academy

This posting is provided AS IS with no warranties, and confers no rights.
- Marked as answer by Amy Wang_ Sunday, November 9, 2014 10:04 AM
Thursday, October 30, 2014 6:08 PM