Extending Active Directory to Azure
Learn how to properly, and securely, extend an on-premises Active Directory into Microsoft Azure by deploying a site-to-site VPN and an Azure-hosted virtual machine.
This solution deployment lab teaches you how to extend an on-prem Active Directory to Microsoft Azure via a site-to-site VPN and an Azure-hosted virtual machine.
With the race to Microsoft Azure in full sprint mode, you need to know how to PROPERLY extend an on-prem Active Directory forest into Microsoft Azure. Otherwise, you risk getting left behind.
This 30+ lesson deployment lab first walks you through the process of connecting an on-prem network to Azure with a site-to-site VPN. It then shows you how to properly configure the Azure virtual network and Azure VM to support an on-prem Active Directory.
Lastly, this lab walks you through the process of actually extending an on-prem Active Directory forest into Microsoft Azure. The smallest minute details are covered, as are the steps to PROTECT your Azure virtual network and Azure-based domain controller.
Students completing this lab will learn how to deploy the necessary Azure resources for an AD extension into Azure and how to perform the extension of Active Directory into Azure.
We'll kick off the lab by deploying and securing the Azure virtual network that will host the Azure-based domain controller.
With the Azure network provisioned and properly secured with a Network Security Group, we'll walk through the process of establishing VPN connectivity between the on-prem network and the Azure virtual network.
Later in the lab, you'll learn how to properly configure custom DNS on the Azure virtual network so that it properly supports the on-prem Active Directory.
With the Azure infrastructure deployed and configured, you'll learn how to deploy and configure a virtual machine in Azure. This VM will become the Azure-based domain controller for the on-prem AD.
Wrapping up the lab, you'll learn how to correctly promote the Azure-based virtual machine to a domain controller for the on-prem AD. You'll also learn how to configure AD Sites and Services to properly reflect your new Azure site.
This Lab Consists of 7 SECTIONS and 30 INSTRUCTIONS / VIDEOS
What to Expect
About the Lab
Deploy Azure vNet
PROD-Deploy Azure vNet
Deploy a Network Security Group
PROD-Deploy Network Security Group
YOUR TURN! Deploy a Resource Group and vNet
Provision a Gateway Subnet
PROD-Deploy Gateway Subnet
YOUR TURN! Define and Deploy a Gateway Subnet
Deploy a Virtual Network Gateway
PROD-Deploy the Virtual Network Gateway
YOUR TURN! Deploy a Virtual Network Gateway
Deploy a Local Network Gateway
PROD-Deploy Local Network Gateway
Configure the On-Prem VPN Device
YOUR TURN! Deploy a Local Network Gateway
PROD-Deploy VPN Connection in Azure
YOUR TURN! Create a VPN Connection
PROD-Point vNet DNS to On-Prem DNS
YOUR TURN! Configure Custom DNS on the Azure vNet
PROD-Deploy a Virtual Machine in Azure
PROD-Verify Connectivity
YOUR TURN! Deploy a VM in Azure
PROD-Join VM to On-Prem AD
PROD-Install Domain Services and Promote VM to DC
PROD-Configure Sites and Services
YOUR TURN! Configure Active Directory Site and Services
PROD-Reconfigure DNS on Azure vNet
YOUR TURN! Reconfigure Custom DNS