Freigeben über


How I Setup Lab Domain Using VPC 2007

To quickly set lab environment I use VPC 2007 (free download). It really saves me lots of time. For example, in order to set up environment to test impersonation, delegation, and protocol transition as described in Authentication Hub post I needed one machine for Active Directory domain (Windows Server 2003), one machine for development desktop (Windows XP), two machines as web servers (Windows Server 2003), I also set another Windows Server 2003 as Certificate Authority to issue certificates which I used in SOA, Strong Authentication, Standard Authorization - Cool Solution.

Here are the steps I have taken:

  1. Create 4 folders: AD,"Web Service 1","Web Service 2","CA", "Base Image".
  2. Create new virtual machine based on Windows Server 2003 while storing its vmc and vhd files in AD folder
  3. Copy the resulted virtual hard disk (VHD) into “Base Image” folder – this will serve as base image for another cloned machines.
  4. Run dcpromo to convert the virtual machine into domain controller.
  5. In VPC setting configure networking “Local only” for all machines – this enable them to communicate each with other without connecting to actual network. Good when one needs to comply with corp network policy.
  6. Copy VHD file from “Base Image” folder into “Web Service1” folder.
  7. Create another virtual machine telling the wizard to use existing VHD in “Web Service1” folder.
  8. Now run inside “Web Service1” virtual machine NewSID (free download) utility to generate new seed for the newly created machine. This is needed to successfully add the machine to Domain.
  9. Configure “Web Service1” virtual machine networking – give it static IP and configure its Preferred DNS Server for Domain’s controller IP:
  10. Join the “Web Service1” machine to domain.

Now I have, Active Directory domain with two machine and similar procedure is needed to add more machines.

One thing that made me work hard while troubleshooting networking between the virtual machines is to make sure that VM’s have different MAC addresses.

Inside every machine run ipconfig /all and make sure Physical Address value is different for each machine:

cid:image001.jpg@01C741D7.5D4D7580

If it is the same – change it opening VMC file which is simple XML file and change the value of <ethernet_card_address type="bytes">0003FF44337E</ethernet_card_address>. Your value may be other than 0003FF44337E.

After doing this I was able to set my environment and make my machines talk to each other.

Be aware of licensing and supportability issues described in NewSID v4.10 regarding copying images while utilizing NewSID.

Enjoy

Comments

  • Anonymous
    May 29, 2007
    Thanks for this information. I was looking exactly for this for sometime. One question - How do I go about configuring the machines inside the network to access the internet? For instance I need to install Orcas Express Editions the set up utility connects to microsoft site to download the required files.  I would appreciate if you could provide some info on this.Thanks.
  • Anonymous
    May 31, 2007
    I did not try to install Orcas so far. But i do not think you should experience any problem. Configure networking of the VM to use your actual network card and configure TCP/IP to obtain dynamic IP through DHCP. You should connect to Internet. I suggeest to take a look at http://blogs.msdn.com/virtual_pc_guy/, it is VPC dedicated blog. Do you have specific problems or anticipate some?
  • Anonymous
    July 09, 2007
    I have my lab network, my playground Active Directory Domain( more on it here - How I Setup Lab Domain
  • Anonymous
    July 26, 2007
    I am researching on best practices with WCF security in terms of "YOU SHOUD" vs "YOU CAN". While it is
  • Anonymous
    August 01, 2007
    My answer is "no" . I am working on solution where there is no Windows Active Directory Domain so we
  • Anonymous
    August 14, 2007
    My lab domain has MS CA installed in it so I am able to issue certificates to the left and to the right.