Hyper-V host: offline vs. domain joined

Chad _ 21 Reputation points
2021-03-22T19:13:09.203+00:00

Good day everyone,

I'm looking for thoughts around having Hyper-V hosts that are not connected to any network and how much of a security enhancement (if any) this is versus joining the host to our domain. Please note that I am aware of the drawbacks of having hosts not joined to the domain (maintenance, administration, etc.); I am only interested in one question: strictly from a security point-of-view, is it better to have Hyper-V hosts attached to no network at all versus domain-joined. Any feedback is appreciated.

Cheers,

Chad

Hyper-V
Hyper-V
A Windows technology providing a hypervisor-based virtualization solution enabling customers to consolidate workloads onto a single server.
2,787 questions
0 comments No comments
{count} votes

Accepted answer
  1. Xiaowei He 9,916 Reputation points
    2021-03-23T02:11:30.08+00:00

    Hi,

    If the Hyper V host doesn't need to interactive with other Hyper V hosts or other servers, the answer is Yes, it's more secure to connect the Host to no network.

    When the host joins the domain, we may have secure connection when we use Live migration, replication, and have more convenience when management.

    If we just need to do some tests for the VMs in the host, and the VMs don't need the external network connection, it's safe that we don't connect the Hyper V host to any network.

    Thanks for your time!
    Best Regards,
    Anne

    -----------------------------

    If the Answer is helpful, please click "Accept Answer" and upvote it.
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.


0 additional answers

Sort by: Most helpful

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.