I’m new to DSC and trying to figure out how can I implement it to mimic server settings we currently do through GPO. While I understand how to do that for single machine with single huge MOF file, I can not understand how to do that for hundreds of machines it’s eventually will be rolled out to. Namely what confuses me is how to retain similar hierarchical structure which GPO has which worked very well for us.
In nutshell I want
- One encompassing DSC which will cover all machines in my environment (kind of GPO bound on Domain Level
- Two or there level deep hierarchical configuration for servers separated into “OU” type leaves.
My plan is to create one big DSC config which applies to all servers via PULL and configure it’s as a first partial config.
Create separate partial config for first branch level and configure it’s as second partial config through PULL.
Create third partial config for leaf level of computers. All servers on third level will share the same GUID.
Is it going to work? How do I configure pull server that all servers regardless of GUID will receive first partial config and second partial config? Do I have to create exact copy GUID.mof for each branchy?