Administrator Guide
Table Of Contents
- Dell Hybrid Cloud System for Microsoft Cloud Platform System Standard Version 1.5 Administrators Guide based on release 1803
- Overview
- Administration
- What to do first
- Next steps
- Managing Dell Hybrid Cloud System for Microsoft
- Creating tenant VM networks
- Adding tenant VM networks to the cloud
- Flagging the operating system VHD in the VM templates
- Enabling guest-specified IP addresses in VMM
- Creating additional tenant storage shares
- Using Windows Azure Pack
- Default Windows Azure Pack configuration
- Before you go into production
- Setting up tenant portal access on an isolated network
- Replacing self-signed certificates
- Disabling the tenant AuthSite and the admin Windows AuthSite websites
- Updating to a Security Token Service and re-establishing trust
- How to open the management portal for administrators
- How to open the management portal for tenants
- Offering services to tenants
- Optional configuration
- Automating tasks for efficiency
- Windows Azure Pack API reference content for developers
- Configuring disaster recovery protection
- Operations
- Monitoring
- Backup and recovery
- Onboard to Azure Backup
- Default backup schedule and retention policy
- DPM protection groups
- Disable machine account password rotation on management VMs
- Protecting tenant VMs
- Recovering VMs and databases—high level
- Recovering from management component failures
- Recovering a tenant VM
- Recovering DPM from DPM failures
- Adding extra disks to DPM
- Monitoring DPM
- Using the Dell Hybrid Cloud System for Microsoft data consistency runbooks
- Updating the Dell Hybrid Cloud System for Microsoft
- Shutting down and starting up the stamp
- Security
- Appendix A Expanding the stamp
- Appendix B Performing a factory reset
- Appendix C Retrieving cluster names, host names, and IP addresses
- Appendix D Ports and protocols
• Create a Key Distribution Services (KDS) root key that is used to generate group Managed Service Accounts (gMSA)
• Block inheritance.
To run the
ADPreCreationTool.ps1 script, you must have domain administrator credentials.
NOTE
: Dell strongly recommends that you use the ADPreCreationTool.ps1 script. If you choose to skip running the script and do
not have a KDS enabled, manually create a KDS root key and block inheritance before deployment. Create the KDS root key at
least 10 hours before deployment. For more information, see
Create the Key Distribution Services KDS Root Key in Microsoft
T
echNet.
IMPORTANT
: The recommendations and guidelines in this document are based on industry best practices, CPS Standard
architecture requirements, and Dell EMC lab testing. If not followed, the functionality and or management of the solution may
not work as designed or expected, and problem resolution may be limited, delayed, or not viable.
You can obtain the script from either of the following locations:
• Microsoft
download, or
• Deployment VM (DVM)
Connecting to DVM
You can connect to a Deployment VM (DVM) on any of the physical hosts in the Dell Hybrid Cloud System for Microsoft stamp. To connect
to a DVM:
1 Make sure that the stamp is powered on.
2 Connect a Windows laptop directly to a 1 Gb port of one of the servers. Make sure that it is the only active connection. IPv6 must be
enabled with autoconguration. No IPv4 conguration is required.
3 Open a Remote Desktop Connection, and connect to DVM by name, using the credentials:
• .\Administrator
• <
Password provided by Dell Deployment Services>
4 Locate the
ADPreCreationTool script in the following folder:
C:\Program Files\Microsoft Cloud Solutions\Tools\
Running the script
You must run the ADPreCreationTool script from a domain-joined computer, logged on as a domain administrator. (You cannot run the
scrip
t from the DVM.) To run the script:
1 Open a Windows PowerShell session.
2 Change to the directory in which the script is stored.
3 Run the script. The script has only one required parameter — the name of the parent OU to create for Dell Hybrid Cloud System for
Micr
osoft.
For example:
PS C:\>.\ADPreCreationTool -OU "<OU_Name>"
NOTE:
OU_Name
is the name of the parent OU. When you deploy the stamp, a child OU for that particular stamp is created
under the parent OU.
When the script runs, it prompts you for a new domain user account credential that is given delegated permissions to the parent OU. (The
accoun
t is created in the parent OU.) The new domain user account credential is the credential that you use when you deploy Dell Hybrid
Cloud System for Microsoft.
Overview 15