What to Expect

This solution deployment lab teaches you how to extend an on-prem Active Directory to Microsoft Azure via a site-to-site VPN and an Azure-hosted virtual machine.

With the race to Microsoft Azure in full sprint mode, you need to know how to PROPERLY extend an on-prem Active Directory forest into Microsoft Azure. Otherwise, you risk getting left behind.

This 30+ lesson deployment lab first walks you through the process of connecting an on-prem network to Azure with a site-to-site VPN. It then shows you how to properly configure the Azure virtual network and Azure VM to support an on-prem Active Directory.

Lastly, this lab walks you through the process of actually extending an on-prem Active Directory forest into Microsoft Azure. The smallest minute details are covered, as are the steps to PROTECT your Azure virtual network and Azure-based domain controller.

Lab Details

This deployment lab teaches you how to extend an on-prem network to Azure via a site-to-site VPN, which you will then leverage to deploy an Azure-based domain controller that extends an on-prem Active Directory into Azure. You'll learn how to properly extend a traditional AD into Azure.

  • LAB COMPLETION TIME: 8 HOURS

    Students should expect to complete this deployment lab in approximately 8 hours. Some students will finish sooner, others will need more time to complete the lab.

  • WRITTEN INSTRUCTION: 17 TUTORIALS

    This deployment lab includes nearly 20 written tutorials that explain how to perform each step in the deployment and AD extension process.

  • VIDEO CONTENT: 13 VIDEO TUTORIALS

    This deployment lab includes over a dozen video tutorials that show the student how, exactly, to prepare the environment and how to extend Active Directory to Azure.

What You'll Learn

Students completing this lab will learn how to deploy the necessary Azure resources for an AD extension into Azure and how to perform the extension of Active Directory into Azure.

  • We'll kick off the lab by deploying and securing the Azure virtual network that will host the Azure-based domain controller.

  • With the Azure network provisioned and properly secured with a Network Security Group, we'll walk through the process of establishing VPN connectivity between the on-prem network and the Azure virtual network.

  • Later in the lab, you'll learn how to properly configure custom DNS on the Azure virtual network so that it properly supports the on-prem Active Directory.

  • With the Azure infrastructure deployed and configured, you'll learn how to deploy and configure a virtual machine in Azure. This VM will become the Azure-based domain controller for the on-prem AD.

  • Wrapping up the lab, you'll learn how to correctly promote the Azure-based virtual machine to a domain controller for the on-prem AD. You'll also learn how to configure AD Sites and Services to properly reflect your new Azure site.

Lab Details

This Lab Consists of 7 SECTIONS and 30 INSTRUCTIONS / VIDEOS

  • 1

    Getting Started

    • What to Expect

    • About the Lab

  • 2

    Deploy and Secure Azure Virtual Network

    • Deploy Azure vNet

    • PROD-Deploy Azure vNet

    • Deploy a Network Security Group

    • PROD-Deploy Network Security Group

    • YOUR TURN! Deploy a Resource Group and vNet

  • 3

    Establish VPN Connectivity

    • Provision a Gateway Subnet

    • PROD-Deploy Gateway Subnet

    • YOUR TURN! Define and Deploy a Gateway Subnet

    • Deploy a Virtual Network Gateway

    • PROD-Deploy the Virtual Network Gateway

    • YOUR TURN! Deploy a Virtual Network Gateway

    • Deploy a Local Network Gateway

    • PROD-Deploy Local Network Gateway

    • Configure the On-Prem VPN Device

    • YOUR TURN! Deploy a Local Network Gateway

    • PROD-Deploy VPN Connection in Azure

    • YOUR TURN! Create a VPN Connection

  • 4

    Configure Custom DNS on Azure Virtual Network

    • PROD-Point vNet DNS to On-Prem DNS

    • YOUR TURN! Configure Custom DNS on the Azure vNet

  • 5

    Deploy and Configure Azure Virtual Machine

    • PROD-Deploy a Virtual Machine in Azure

    • PROD-Verify Connectivity

    • YOUR TURN! Deploy a VM in Azure

  • 6

    Promoting the VM to a Domain Controller

    • PROD-Join VM to On-Prem AD

    • PROD-Install Domain Services and Promote VM to DC

    • PROD-Configure Sites and Services

    • YOUR TURN! Configure Active Directory Site and Services

  • 7

    Wrap-Up

    • PROD-Reconfigure DNS on Azure vNet

    • YOUR TURN! Reconfigure Custom DNS

90-Day Access

Get access to this deployment lab for a full 90 days for a single, one-time payment.

Unlimited Access

Get UNLIMITED ACCESS to this deployment lab and every other deployment lab on our site.

  • $29.00 first payment, $19.00 / month onwards

    Monthly Subscription
    *Cancel Anytime

    Get started now