Previous Post in Series: Part 4: Deploy and Configure a 3 Node 2016 Hyper-V Cluster
Welcome to Part 5 of the Server 2016 Features Series. In this section we’re going to work through an entire end-to-end deployment of the Host Guardian Service, including Hyper-V, SCVMM and in Part 6, VM template configuration and deployment of Virtual Machines using SCVMM.
You can jump to any of the sections covered in this post using the links below:
- Prerequisites
- Configure the First HGS Node
- Install the HGS Into its Own New Forest
- Initialize the HGS Server Using TPM Trusted Attestation
- Installing a Root Certification Authority
- Create HGS Certificate Template
- Create Signing and Encryption Certificates
- Initialize the HGS Server Using TPM Trusted Attestation (Continued)
- Import HGS Certificates and Apply Service Account Permissions
- Configure DNS for the Guarded Host Fabric
- Check Hyper-V Host TPM State
- Capture and Apply the TPM Identifier for Each Host
- Create and Apply a Code Integrity Policy
- Create and Apply a TPM Baseline
- Confirm Host Can Attest Successfully
- Configure Hyper-V Host Guarded Status Within SCVMM
- Configure Additional HGS Nodes
