This post covers managing untrusted hosts in System Center 2012 R2 Virtual Machine Manager (VMM 2012 R2). Adding Hyper-V hosts or Hyper-V host clusters in an untrusted Active Directory domain as managed Hyper-V hosts in Virtual Machine Manager (VMM) is documented here:
Be aware that during the agent installation, VMM generates a certificate that is used to secure communications with the host. When VMM adds the host, the certificate is automatically imported into the VMM server’s trusted certificate store.
How to update the Untrusted VMM agents
When an Update Rollup (UR) is installed on VMM server, all managed hosts will show a
, however when you try to update the agents on any untrusted host, the below error message is displayed:
Virtual Machine Manager does not support updating or re-associating an agent on a host that is in a non-trusted domain or on a perimeter network.
If the host is in a non-trusted domain, remove the host (RINKU.Contoso.com) from VMM in the VMs and Hosts workspace of the VMM console. Then, use the Add Hosts Wizard to add the host and automatically install a new agent.
If the host is on a perimeter network, after you remove the host from VMM, you must manually uninstall the VMM agent from the host computer, install a new agent locally on the host, and then add the host to VMM.
As stated in the error message, the host or cluster can be removed and re-added, however this approach will cause an issue if service templates are deployed on these untrusted
The following procedure should be used when updating
VMM agent on untrusted hosts:
1. Take a full backup of the System Center 2012 R2 Virtual Machine Manager database.
2. Log in to the untrusted host and uninstall the VMM agent using
3. Copy the latest VMM agent installation files from
C:\Program Files\Microsoft System Center 2012 R2\Virtual Machine Manager\agents\amd64
on the VMM server to a temporary location on the host. In my case I am upgrading to Update Rollup 6 so I copied the
version to the
4. Open an elevated Command Prompt (Run as Administrator) on the host.
5. From the Command Prompt, change the path to the location where you copied the installation files (e.g.
6. From the Command Prompt, run the command below: