I'm sorry for your loss. I've done administration of both, and I loathe working with Windows.
Sysadmin
A community dedicated to the profession of IT Systems Administration
No generic Lemmy issue posts please! Posts about Lemmy belong in one of these communities:
[email protected]
[email protected]
[email protected]
[email protected]
Would you ever date a Linux user ?
Do they use snaps?
Lol
Funny how the so called "off brand" solution is so much simpler.
Why did you need a bare metal anything?
I realise that with the enshitification of VMware, there's one less viable option for virtualisation, but it's not the only one around.
If you are using LDAP auth for your hypervisor (vsphere as an example) how do you auth after a kaboom event and your AD server VMs have not auto started.
I remember reading somewhere (prob /r/Sysadmin) that having one bare metal AD server just incase everything goes offline.
You connect directly to the ESXi host with root. Because you're going to have to boot up vCenter in addition to the DC anyway when you're using SSO. I would use DRS rules to prefer host1 for vCenter and the PDCe for that reason.
Only in the very early days of virtualization (2008-2012) did I recommend keeping a physical server around. I know a lot more now than I did then.
But anymore, I don't recommend using SSO for hypervisors or backup infrastructure. It's better to add another wall in front of an attacker trying to laterally move onto these critical platforms for ransom, data exfiltration, etc.
And in reality, these "kaboom events" aren't terribly common unless you've neglected some other part of your infrastructure.
In the same way as if your Windows Server on bare metal doesn't start after an update, via the console.
I recall that ESXi doesn't let you do crap from the console. Just configure management. Be interesting to hear what options Prox and Hyper-V may have.
You use console to turn on embedded shell then Ctrl+Alt+Fn over to it (I forget whether it's on f1 or f2), then you can use esxcli
and all the rest of that to fix it up.
Once you get enough networking/storage pieces sorted out you can get back into the management HTML UI and SSH
Then when you're done fixing, turn shell and SSH back off.
Simplicity, at the end of the day it was to complex to manage
It wasn't exactly running that many services anyway
Why not OpenLDAP? I’ve refused to run a Windows server at home for years and I’ve OpenLDAP running nicely in a lightweight container.
That's not Windows Server. We needed more simplicity and having everything on one system was the simplest.
I don't like it as much but at the end of the day it was easier