Deploying domain controller with Sysprep confusion

Question

In this document https://learn.microsoft.com/en-us/windows-server/identity/ad-ds/get-started/virtual-dc/virtualized-domain-controllers-hyper-v

In section "Virtualization deployment practices to avoid", point 3 says:

Do NOT deploy new Active Directory domains and forests on a copy of a Windows Server operating system that was NOT first prepared using System Preparation tool (Sysprep)

This is followed by a warning which says:

Running Sysprep on a domain controller is not supported.

The double negative in the first quote seems to imply that using Sysprep is acceptable whereas the warning indicates that it is not.

Can someone please clarify?

Answer 1

Do NOT deploy new Active Directory domains and forests on a copy of a Windows Server operating system that was NOT first prepared using System Preparation tool (Sysprep)

This one just states to not install active directory domain services on a copied instance without firstly sysprepping it.

Running Sysprep on a domain controller is not supported.

This one states that sysprepping an already promo'd domain controller is not supported.

--please don't forget to upvote and Accept as answer if the reply is helpful--

Answer 2

Hi @Ingrid Henkel •

---

Do NOT deploy new Active Directory domains and forests on a copy of a Windows Server operating system that was NOT first prepared using System Preparation tool (Sysprep)

---

If you want to deploy new domain controller on virtual machine based on a copy of another virtual machine ( WORKGROUP), you have to launch sysprep before joining it to domain and promote it as domain controllers. Sysprep must be launched before DCpromotion.

Running Sysprep on a domain controller is not supported.
This command is used to create new virtual machines based on reference machine which cannot be a domain controller.

---

Please don't forget o mark helpful answer as accepted

---