ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    Managing Hyper-V

    Scheduled Pinned Locked Moved IT Discussion
    328 Posts 24 Posters 88.3k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • scottalanmillerS
      scottalanmiller
      last edited by scottalanmiller

      So let me ask it this way... with a datacenter hosted Hyper-V cluster, and no legacy LAN security, how would you manage a Hyper-V system?

      Because this is what we have and want and what works beautifully with other products.

      ObsolesceO 1 Reply Last reply Reply Quote 0
      • ObsolesceO
        Obsolesce @scottalanmiller
        last edited by

        @scottalanmiller said in Managing Hyper-V:

        So let me ask it this way... with a datacenter hosted Hyper-V cluster, and no legacy LAN security, how would you manage a Hyper-V system?

        Because this is what we have and want and what works beautifully with other products.

        If the hosts are running Server GUI (hopefully not), then TeamViewer. But yeah, you got me.

        scottalanmillerS 1 Reply Last reply Reply Quote 0
        • matteo nunziatiM
          matteo nunziati
          last edited by matteo nunziati

          Does hyper-v has any restful api as first? Otherwise you have to wrap its api into a rest one for https.

          Multi-site multi-company centralized management doesn't seems main concern at MS. It is more of an in-company vlaned netscalered env.

          1 Reply Last reply Reply Quote 0
          • scottalanmillerS
            scottalanmiller @Obsolesce
            last edited by

            @Tim_G said in Managing Hyper-V:

            @scottalanmiller said in Managing Hyper-V:

            So let me ask it this way... with a datacenter hosted Hyper-V cluster, and no legacy LAN security, how would you manage a Hyper-V system?

            Because this is what we have and want and what works beautifully with other products.

            If the hosts are running Server GUI (hopefully not), then TeamViewer. But yeah, you got me.

            Okay, I think that there is going to be an answer here, we just need to dig for it. It's just a hunch, but I feel like it must be true. I totally can see MS not making this obvious or talking about it much, but not providing that functionality at all is not like them. This is a pretty huge "how do we replace what we have with Xen or KVM with Hyper-V" kind of question. Things that we easily build with other products seem to be a challenge with Hyper-V. Now 5Nine solves that in a really expensive, really crappy way with their product that really, you could solve just as easily using Hyper-V manager I think. So if you have a separate device to manage the cluster sitting local to it, and you can RDP safely into that remotely, that works. But that's a lot of infrastructure and if you don't want a SPOF, it's even more.

            I know that this is a big selling point of the Scales, that you get triple redundant, or more, secure web remote management plus no open port remote assistance all automatic and out of the box and that almost no one else offers that. So I totally understand that I'm coming from a unique starting point as that is what we use today. I don't expect Hyper-V to compete with the Scale at that level, it's just not the same level of system. But I'm pretty sure it's not falling as far short of it as we are seeing. My guess is that there is a good PowerShell method to do this that just has to be figured out. Once ours is up, I'll be playing with it.

            ObsolesceO 1 Reply Last reply Reply Quote 0
            • scottalanmillerS
              scottalanmiller
              last edited by

              Maybe this is just me having too much faith in MS, but I have to say, I never do that and not have it come true. Sometimes it's just being able to overcome the doubt and believe in them and ta da, an answer gets found because they really do think these things through 🙂 There is a lot at MS I don't like, but they tend to be pretty good at this kind of stuff.

              1 Reply Last reply Reply Quote 1
              • ObsolesceO
                Obsolesce @scottalanmiller
                last edited by

                @scottalanmiller said in Managing Hyper-V:

                @Tim_G said in Managing Hyper-V:

                @scottalanmiller said in Managing Hyper-V:

                So let me ask it this way... with a datacenter hosted Hyper-V cluster, and no legacy LAN security, how would you manage a Hyper-V system?

                Because this is what we have and want and what works beautifully with other products.

                If the hosts are running Server GUI (hopefully not), then TeamViewer. But yeah, you got me.

                Okay, I think that there is going to be an answer here, we just need to dig for it. It's just a hunch, but I feel like it must be true. I totally can see MS not making this obvious or talking about it much, but not providing that functionality at all is not like them. This is a pretty huge "how do we replace what we have with Xen or KVM with Hyper-V" kind of question. Things that we easily build with other products seem to be a challenge with Hyper-V. Now 5Nine solves that in a really expensive, really crappy way with their product that really, you could solve just as easily using Hyper-V manager I think. So if you have a separate device to manage the cluster sitting local to it, and you can RDP safely into that remotely, that works. But that's a lot of infrastructure and if you don't want a SPOF, it's even more.

                I know that this is a big selling point of the Scales, that you get triple redundant, or more, secure web remote management plus no open port remote assistance all automatic and out of the box and that almost no one else offers that. So I totally understand that I'm coming from a unique starting point as that is what we use today. I don't expect Hyper-V to compete with the Scale at that level, it's just not the same level of system. But I'm pretty sure it's not falling as far short of it as we are seeing. My guess is that there is a good PowerShell method to do this that just has to be figured out. Once ours is up, I'll be playing with it.

                I've not come across a need to do it in that way. But I agree there's got to be a way.

                What about via IPv6? Just a shot from the hip.

                Or, what about SolarWinds? I haven't looked at that part of it.

                scottalanmillerS S 2 Replies Last reply Reply Quote 0
                • scottalanmillerS
                  scottalanmiller @Obsolesce
                  last edited by

                  @Tim_G said in Managing Hyper-V:

                  @scottalanmiller said in Managing Hyper-V:

                  @Tim_G said in Managing Hyper-V:

                  @scottalanmiller said in Managing Hyper-V:

                  So let me ask it this way... with a datacenter hosted Hyper-V cluster, and no legacy LAN security, how would you manage a Hyper-V system?

                  Because this is what we have and want and what works beautifully with other products.

                  If the hosts are running Server GUI (hopefully not), then TeamViewer. But yeah, you got me.

                  Okay, I think that there is going to be an answer here, we just need to dig for it. It's just a hunch, but I feel like it must be true. I totally can see MS not making this obvious or talking about it much, but not providing that functionality at all is not like them. This is a pretty huge "how do we replace what we have with Xen or KVM with Hyper-V" kind of question. Things that we easily build with other products seem to be a challenge with Hyper-V. Now 5Nine solves that in a really expensive, really crappy way with their product that really, you could solve just as easily using Hyper-V manager I think. So if you have a separate device to manage the cluster sitting local to it, and you can RDP safely into that remotely, that works. But that's a lot of infrastructure and if you don't want a SPOF, it's even more.

                  I know that this is a big selling point of the Scales, that you get triple redundant, or more, secure web remote management plus no open port remote assistance all automatic and out of the box and that almost no one else offers that. So I totally understand that I'm coming from a unique starting point as that is what we use today. I don't expect Hyper-V to compete with the Scale at that level, it's just not the same level of system. But I'm pretty sure it's not falling as far short of it as we are seeing. My guess is that there is a good PowerShell method to do this that just has to be figured out. Once ours is up, I'll be playing with it.

                  I've not come across a need to do it in that way. But I agree there's got to be a way.

                  What about via IPv6? Just a shot from the hip.

                  Or, what about SolarWinds? I haven't looked at that part of it.

                  I'm sure someone makes a third party tool to do this. I'm really hopeful that there is a native one. I'm 100% cool with CLI only management, but that doesn't work for the VM install step, though. Not that I know of, anyway.

                  1 Reply Last reply Reply Quote 0
                  • JaredBuschJ
                    JaredBusch
                    last edited by

                    @scottalanmiller you already posted along to this answer.l back in the beginning of the thread.

                    At lileast that is how that link read to me.

                    scottalanmillerS 1 Reply Last reply Reply Quote 0
                    • JaredBuschJ
                      JaredBusch @scottalanmiller
                      last edited by

                      @scottalanmiller said in Managing Hyper-V:

                      https://powertoe.wordpress.com/2012/03/13/powerbits-8-opening-a-hyper-v-console-from-powershell/

                      This power shell while remotely connected with ScreenConnect or native RDP.

                      scottalanmillerS 1 Reply Last reply Reply Quote 0
                      • scottalanmillerS
                        scottalanmiller @JaredBusch
                        last edited by

                        @JaredBusch said in Managing Hyper-V:

                        @scottalanmiller you already posted along to this answer.l back in the beginning of the thread.

                        At lileast that is how that link read to me.

                        That's my hope, I need to try it out. Fingers crossed.

                        1 Reply Last reply Reply Quote 0
                        • scottalanmillerS
                          scottalanmiller @JaredBusch
                          last edited by

                          @JaredBusch said in Managing Hyper-V:

                          @scottalanmiller said in Managing Hyper-V:

                          https://powertoe.wordpress.com/2012/03/13/powerbits-8-opening-a-hyper-v-console-from-powershell/

                          This power shell while remotely connected with ScreenConnect or native RDP.

                          😞

                          dbeatoD 1 Reply Last reply Reply Quote 0
                          • dbeatoD
                            dbeato @scottalanmiller
                            last edited by

                            @scottalanmiller How about SVCMM?
                            https://technet.microsoft.com/en-us/library/gg610646(v=sc.12).aspx
                            https://technet.microsoft.com/en-us/library/jj863389(v=ws.11).aspx

                            scottalanmillerS 1 Reply Last reply Reply Quote 0
                            • scottalanmillerS
                              scottalanmiller @dbeato
                              last edited by

                              @dbeato said in Managing Hyper-V:

                              @scottalanmiller How about SVCMM?
                              https://technet.microsoft.com/en-us/library/gg610646(v=sc.12).aspx
                              https://technet.microsoft.com/en-us/library/jj863389(v=ws.11).aspx

                              Right, for the big money, that's there. That I knew. And you could argue that Scale isn't cheap like Hyper-V, which is free, so it's a valid point.

                              1 Reply Last reply Reply Quote 1
                              • scottalanmillerS
                                scottalanmiller
                                last edited by

                                This shows some promise.

                                https://cloudbase.it/using-freerdp-to-connect-to-the-hyper-v-console/

                                dbeatoD dafyreD 2 Replies Last reply Reply Quote 1
                                • dbeatoD
                                  dbeato @scottalanmiller
                                  last edited by

                                  @scottalanmiller This is almost like doing RDP to it. FreeRDP is like Rdesktop at best but I guess it has Powershell so that is an upside.

                                  scottalanmillerS 1 Reply Last reply Reply Quote 0
                                  • stacksofplatesS
                                    stacksofplates @scottalanmiller
                                    last edited by

                                    @scottalanmiller said in Managing Hyper-V:

                                    @brianlittlejohn said in Managing Hyper-V:

                                    @scottalanmiller said in Managing Hyper-V:

                                    @Tim_G said in Managing Hyper-V:

                                    If it's off domain, you have to perform a couple quick extra steps that can be put into a script.

                                    I've never tried to use RSAT over a WAN, seems like a bad idea 🙂

                                    I use it over a vpn to our office in OKC... it works a little slow, but it works.

                                    VPN is just another term for the LAN, just a slow portion of it. That's still LAN security as a model, which we don't do here.

                                    So how do you do it with SCALE? You leave the web interface public facing?

                                    scottalanmillerS 1 Reply Last reply Reply Quote 0
                                    • scottalanmillerS
                                      scottalanmiller @dbeato
                                      last edited by

                                      @dbeato said in Managing Hyper-V:

                                      @scottalanmiller This is almost like doing RDP to it. FreeRDP is like Rdesktop at best but I guess it has Powershell so that is an upside.

                                      It IS RDP to it, which is a perfect solution in my mind, if it works.

                                      1 Reply Last reply Reply Quote 0
                                      • scottalanmillerS
                                        scottalanmiller @stacksofplates
                                        last edited by

                                        @stacksofplates said in Managing Hyper-V:

                                        @scottalanmiller said in Managing Hyper-V:

                                        @brianlittlejohn said in Managing Hyper-V:

                                        @scottalanmiller said in Managing Hyper-V:

                                        @Tim_G said in Managing Hyper-V:

                                        If it's off domain, you have to perform a couple quick extra steps that can be put into a script.

                                        I've never tried to use RSAT over a WAN, seems like a bad idea 🙂

                                        I use it over a vpn to our office in OKC... it works a little slow, but it works.

                                        VPN is just another term for the LAN, just a slow portion of it. That's still LAN security as a model, which we don't do here.

                                        So how do you do it with SCALE? You leave the web interface public facing?

                                        Yes, that's the idea. Properly secured web is the same as a VPN, but limited to a single task. So equal or more secure. Scaling, now that requires some kind of automation to handle it, but can be done.

                                        stacksofplatesS 1 Reply Last reply Reply Quote 0
                                        • stacksofplatesS
                                          stacksofplates @scottalanmiller
                                          last edited by

                                          @scottalanmiller said in Managing Hyper-V:

                                          @stacksofplates said in Managing Hyper-V:

                                          @scottalanmiller said in Managing Hyper-V:

                                          @brianlittlejohn said in Managing Hyper-V:

                                          @scottalanmiller said in Managing Hyper-V:

                                          @Tim_G said in Managing Hyper-V:

                                          If it's off domain, you have to perform a couple quick extra steps that can be put into a script.

                                          I've never tried to use RSAT over a WAN, seems like a bad idea 🙂

                                          I use it over a vpn to our office in OKC... it works a little slow, but it works.

                                          VPN is just another term for the LAN, just a slow portion of it. That's still LAN security as a model, which we don't do here.

                                          So how do you do it with SCALE? You leave the web interface public facing?

                                          Yes, that's the idea. Properly secured web is the same as a VPN, but limited to a single task. So equal or more secure. Scaling, now that requires some kind of automation to handle it, but can be done.

                                          True but now your only barrier is the login page. So any vulnerabilities in whatever language it's in (e.g. PHP) is the only barrier.

                                          scottalanmillerS 1 Reply Last reply Reply Quote 0
                                          • scottalanmillerS
                                            scottalanmiller @stacksofplates
                                            last edited by

                                            @stacksofplates said in Managing Hyper-V:

                                            @scottalanmiller said in Managing Hyper-V:

                                            @stacksofplates said in Managing Hyper-V:

                                            @scottalanmiller said in Managing Hyper-V:

                                            @brianlittlejohn said in Managing Hyper-V:

                                            @scottalanmiller said in Managing Hyper-V:

                                            @Tim_G said in Managing Hyper-V:

                                            If it's off domain, you have to perform a couple quick extra steps that can be put into a script.

                                            I've never tried to use RSAT over a WAN, seems like a bad idea 🙂

                                            I use it over a vpn to our office in OKC... it works a little slow, but it works.

                                            VPN is just another term for the LAN, just a slow portion of it. That's still LAN security as a model, which we don't do here.

                                            So how do you do it with SCALE? You leave the web interface public facing?

                                            Yes, that's the idea. Properly secured web is the same as a VPN, but limited to a single task. So equal or more secure. Scaling, now that requires some kind of automation to handle it, but can be done.

                                            True but now your only barrier is the login page. So any vulnerabilities in whatever language it's in (e.g. PHP) is the only barrier.

                                            That can be done at the server level, too. But not ideal. Or can be done with keys and not a login. All the same limitations as any VPN.

                                            1 Reply Last reply Reply Quote 0
                                            • 1
                                            • 2
                                            • 3
                                            • 4
                                            • 5
                                            • 16
                                            • 17
                                            • 3 / 17
                                            • First post
                                              Last post