Archive for the ‘Kerberos’ Tag

A short note about AD detached clusters in Windows Server 2012 R2   Leave a comment


Yesterday Microsoft posted an article about a new way to deploy clusters in Windows Server 2012 R2 called Active Directory Detached Clusters. As the name implies this type of cluster do not rely on your AD in order to operate, instead using DNS for the Computer Name Objects and the Virtual Computer Objects.

This is great news as I’ve had several clusters acting up due to the domain controller not being reachable but there is one important caveat with this mode:

The intra-cluster communication would continue to use Kerberos for authentication, however, the authentication of the CNO would be done using NT LM authentication. Thus, you need to remember that for all Cluster roles that need Kerberos Authentication use of AD-detached cluster is not recommended.

This means that Live Migration isn’t supported for a Hyper-V cluster, only Quick Migration.

More information here.

Advertisements

Posted 25 March, 2014 by martinnr5 in Documentation, Operating system, Technical

Tagged with , ,

%d bloggers like this: