I always wondered about that warning (see image below) that you got when adding what I always thought was a valid VL key to a server was. Now I finally get it, and all the servers I've built over the years with a CVLK key that were never intended to be licensing servers. Thankfully almost all of those were development servers that would be deleted by now.
I've included links to Microsoft docs that refer to where I got the information. Its a bit spotty in that it references a lot of different versions of Windows but it all works the same.
Here is the kindergarten version of how it all works:
Computers that are running volume licensing editions of
Windows 8.1, Windows Server 2012 R2, Windows 8, Windows Server 2012,
Windows 7, Windows Server 2008 R2, Windows Vista, and Windows
Server 2008 are, by default, KMS clients with no additional
configuration needed.
If you are converting a computer from a KMS host, MAK, or retail
edition of Windows to a KMS client, install the applicable setup key (GVLK)
from the tables at http://technet.microsoft.com/library/jj612867.aspx. All GVLK keys
are blocked on the Internet based Microsoft clearinghouse and therefore cannot
be used to activate any systems except in a KMS environment.
To use the keys listed there (which are GVLKs), you must have a KMS
host running in your deployment first.
By default, Windows and Office volume license editions install a Generic
Volume License Key (GVLK). The GVLK enables Windows and Office to automatically
discover and activate against your KMS host or Active Directory infrastructure.
What this tells me is that when installing Windows via Volume Licensed DVD media the installation should by default (automatically) include the GVLK license that is used within a Volume Licensed environment. In theory you should not need to push these out to client machines, it should occur automatically. The GVLK key must be explicitly pushed to the client if it is being converted from MAK or Retail to VL.
By default you shouldn’t need
to do anything assuming you have a properly licensed and function KMS server in your environment. New clients should
automatically register and activate as long as they can detect the DNS record
of a KMS server. At the same time
pushing the GVLK out to volume clients causes no issues since that's they key they "should" have anyway.
Proof here:
By default, the Windows 7 and Windows Server 2008 R2
and later operating systems use KMS for activation. In volume installations,
the setup key is installed by default, which makes the system a KMS client. If
you are converting a computer from a KMS host, MAK, or retail edition of
Windows to a KMS client, install the applicable setup key (GVLK) from Appendix A: KMS
Client Setup Keys by using slmgr /ipk <setup key>.
Volume Licensing Overview:
Volume Activation is
a product activation technology used to activate Windows Vista, Windows Server
2008, Windows Server 2008 R2, Windows 7, Office 2010, Windows 8.1, Windows
Server 2012 R2, Windows Server 2012 R2 for Embedded Systems, and Office 2013.
It enables Volume Licensing customers to automate the activation process in a
way that is transparent to end users. Volume Activation applies to systems that
are covered under a Volume Licensing program and is used strictly as a tool for
activation; it is in no way tied to license invoicing or billing.
Volume Activation
provides two different models for completing volume activations: Key Management
Service (KMS) and Multiple Activation Key (MAK). KMS allows organizations to
activate systems within their own network. MAK activates systems on a one-time
basis, using Microsoft’s hosted activation services. Customers can use either
or both activation methods in their environment. The type of key entered in the
product determines the activation method. There is a third model for completing
volume activation called Active Directory-Based activation.
Volume License Keys
(VLK), including MAK and KMS, are issued to you under a specific license
agreement and enable your organization to use the software that you have
licensed.
VLKs can be used
only with Volume Licensing products; they cannot be used with retail software
or software that is preinstalled on a new computer (original equipment
manufacturer, or OEM, products).
If your organization has fewer than 50 PCs, the best option is to
use Multiple Activation Keys (MAK) with Volume Activation Management Tool
(VAMT).
KMS activation requires TCP/IP connectivity. By default, KMS hosts
and clients use DNS to publish and find the KMS service.
KMS activations are valid for 180 days. This is called the
activation validity interval. To remain activated, KMS clients must renew their
activation by connecting to the KMS host at least once every 180 days. By
default, KMS client computers attempt to renew their activation every seven
days
The KMS service uses service (SRV) resource records (RR) in DNS to
store and communicate the locations of KMS hosts. KMS hosts use DNS dynamic
update protocol, if available, to publish the KMS SRV RRs.
By default, KMS clients
query DNS for KMS service information. The first time a KMS client
queries DNS for KMS service information, it randomly chooses a KMS host from
the list of SRV RRs that DNS returns.
By default, client computers connect to the KMS host for activation
by using anonymous RPCs through TCP port 1688
KMS hosts on the network need to install a KMS key, and then be
activated with Microsoft. Installation of a KMS key enables the Key Management
Service on the KMS host. After installing the KMS key, complete the activation
of the KMS host by telephone or online. Beyond this initial activation, a KMS
host does not communicate any information to Microsoft.
KMS keys are only installed
on KMS hosts, never on individual KMS clients. Windows 7 and
Windows Server 2008 R2 have safeguards to help prevent inadvertently
installing KMS keys on KMS client computers. Any time users try to install a
KMS key, they see the warning shown in Figure 1.
Each KMS key can be installed on up to six KMS hosts, which can be
physical computers or virtual machines. After activating a KMS host, the same
host can be reactivated up to nine more times with the same key.
KMS hosts that are running Windows Server 2003, Windows Vista,
or Windows Server 2008 can be configured to support KMS clients that are
running Windows 7 and Windows Server 2008 R2. For Windows Vista
and Windows Server 2008, it is necessary to update the KMS host with a
package with files that support the expanded KMS client. Once the package is installed on the KMS
host, a KMS key that is designed to support Windows 7 and Windows
Server 2008 R2 can be installed and activated as described earlier in
this guide.
By default, computers that are running Volume License editions of
Windows Vista, Windows 7, Windows Server 2008, and Windows
Server 2008 R2 are KMS clients, and no additional configuration is
needed. KMS clients can locate a KMS host automatically by querying DNS for SRV
RRs that publish the KMS service.
A MAK is used for one-time activation with Microsoft’s hosted
activation services. Each MAK has a predetermined number of allowed
activations; this number is based on Volume Licensing agreements and does not
match the organization’s exact license count. Each activation using a MAK with
Microsoft’s hosted activation service counts toward the activation limit.
Included in the Windows Automated Installation Kit
(Windows AIK), VAMT is a stand-alone application that collects activation
requests from several computers, and then sends them to Microsoft in bulk. VAMT
allows IT pros to specify a group of computers to activate using AD DS,
workgroup names, IP addresses, or computer names. After receiving the
activation confirmation codes, VAMT distributes them to the computers that
requested activation. Because VAMT also stores these confirmation codes
locally, it can reactivate a previously activated computer after it is reimaged
without contacting Microsoft. Additionally, VAMT can be used to easily
transition computers between MAK and KMS activation methods.
Slmgr.vbs can use Wscript.exe or Cscript.exe, and administrators can specify which script engine to use. If no script engine is specified, Slmgr.vbs runs using the default script engine, wscript.exe.
slmgr.vbs /dli Retrieves the current KMS activation count from the KMS host.
If no arguments are included the script will display 5 pages of available options.Hopefully that explanation is pretty clear. If not let me know and I can try to edit it some more.
