Is there any significant downside to using Windows 11 pro as the OS for the BR server roles instead of windows server OS? I ask because I’ve been evaluating how to migrate our BR infrastructure away from our domain joined servers and one path I'm looking at appears to require using a client OS. The BR documentation appears to show all roles as supported to be running on the client OS.
We have a pretty small deployment. I would like to avoid using a workgroup for the BR infrastructure if possible, so my thoughts are either (1) use another AD domain in the AD forest. (2) use Azure Managed Domain Services (3) Use the Free Entra ID and device management. Option (1) seemed like a nice option at first, but looking at the actual support requirements, it seems like it will add a lot of overhead and I’m not even sure I can reasonably avoid any chicken/egg situation where I’m starting from no running infrastructure and just repository backup data. Option (2) appears to be way too expensive for us. Which leaves option (3) being to join the BR infrastructure to our MS365 accounts using Entra ID to join the devices and use MDE or intune to manage device security, but I’m not that versed in using Entra and from what I understand, this will require us to only use windows client OSes. (4) Just deal with it and stick to the independent workgroup option and call it a day even if that causes issues with complying with certain NIST guidelines.