Light

hello, appreciate guidance on certificates necessary in our rds farm scenario. in process of setting 5 server session host farm single connection broker server. farm accessible both nondomain , domain joined computers users connect through our ssl vpn before accessing farm thus no gateway required. im getting prompted various certificate warnings , better understanding of typer of certs needed where. im assuming connection broker needs ssl cert rdweb? each session host server? each session host server require ssl cert farm name? would appreciate hearing works best others. thanks help cwalstib, you need: an ssl contains name of farm (farm.domain.local example) - go on each of 5 farm servers rd web access needs ssl cert: (rdweb.domain.com example) if sign remoteapps, need ssl cert (note: can use a san cert signing , rd web access parts) another note: make sure certs come ca part of microsoft root certificate program windows clients trust ca certs oh yeah, did b

when migrate chinese window xp (sp3) through admt v3.2 domain b, encoutner below error message err2:7666 unable access server service on machine 'xxx.domain.com'.  make sure netlogon , workstation services running , can authenticate machine.  hr=0x800706ba. rpc server unavailable. if migrate eng window xp (sp3), not happen above error. netlogon , workstation started in migrating window xp admt v3.2 tools run on eng window 2008 r2 server. domain window 2003 r2 ad, domain b window 2008 r2 ad i wonder admt whether can't support on chinese version window os migration ? validate items listed in the following blog: http://www.sivarajan.com/cm.html santhosh sivarajan | houston, tx http://www.sivarajan.com/ posting provided no warranties,and confers no rights. Windows Server  > 

hi, i trying information (preferably ms) whether or not sharepoint 2013 supported on windows server 2016. in our case, sharepoint foundation 2013, if matters. fred hi, i sorry there no formal statement this, watching closely requirement, if there update, let know. thanks understanding. best regards, alvin wang please remember mark replies answers if , un-mark them if provide no help. if have feedback technet subscriber support, contact tnmff@microsoft.com. Windows Server  >  Windows Server Technical Preview

escenario de producción 1 - windows server 2003 ent sp2 dc gc dns fsmo 1 - windows server 2003 ent sp2 dc gc dns 100 - clientes windows xp pro sp3 la hora de migrar windows 7 pro sp1, como puedo hacer para configurar las gpo desde la gpmc desde 2003 ? deberías editarlas desde un windows 7 al que hayas instalados las rsat. un saludo fernando reyes mcsa 2000/2003/2012 mcse 2000/2003 mcitp enterprise administrator web: http://freyes.svetlian.com blog: http://urpiano.wordpress.com rss: http://urpiano.wordpress.com/feed/ Windows Server  >  Administración de servidor

have hp pro liant ml 370 hyper-v host hp nc375i integrated quad port multifunction gigabit server adapter, running on x64 windows server 2008 sp2 core installation, enterprise edition. have created new virtual machine , installed x64 windows server 2008 standard integrated sp2 (volume licence, msdn download dvd). installation worked fine, virtual machine gets ip address, ip v4  connectivity limited: can ping vm , hyper-v host vm running on, no other machines. - have reinstalled integration services, same problem. - have created new vm windows xp sp3. machine has no connectivity problems @ standard hyper-v nic. - have removed network adapter w2008 vm, added "legacy network adapter", , connectivity problem solved! - have removed "legacy network adapter", added standard network adapter. after starting w2008 vm, machined detected "microsoft virtuakl machine bus network adapter #2", , connectivity problem here again! - have verified eventlogs of hyper-v host ,

from understand when install enterprise ca, oids default levels of assurance (low, medium , high) automatically set oids may partially include forest guid. if want assign these oids registered , uniquely assign oids each of levels of assurance, have specify them in "capolicy.inf" file. if so, there specific section under have specify these. please suggest. 1. not use default oids, microsoft owned oids. (1.3.1.6.4.1.311 microsoft arc). 2. oid arc iana (they free) 3. need add following sections @ top of capolicy.inf file.     if running windows server 2008 r2,     - 2 tiered: apply @ each issuing ca     - 3 tiered or more: apply @ policy ca , subordinate issuing cas.     can define subset @ each issuing ca, cannot introduce new oids. 4. deploy capolicy.inf shown below: [version] signature="$windows nt$" [policystatementextension] policies=basic,medium,high critical=false [basic] oid=1.3.6.1.4.1.#####.509.1.1.2 [medium] oid=1.3.6.1.

hi therer, i have windows 2008 enterprise server acting dc , dns server. it's ip address 192.168.0.1 , it's default gateway 192.168.0.254. my problem can't ping gateway. other machines on same network segment can. from server if ping machine using it's name reply ipv6 address not ipv4 address. if turn off ipv6 , ping server again machine reply ::1: not sort of ip address me. :-) i can ping server clients correctly. any appreciated. regards, christian   hello christian,   you may want try pinging following command forces ipv4 ping -4 machinename.  run following command turn off firewall test.   netsh advfirewall set allprofiles state off   test turn firewall on     netsh advfirewall set allprofiles state on   ::1: localhost address in ipv6.   i havent tested setting below in windows 2008.   929852 how disable internet protocol version 6 (ipv6) components in windows vista http://support.microsoft.com/default.aspx?scid=kb;en-us;929852  

hi technet, i'm experiencing weird scenario user getting denied files , folders even though effective permission showing access allowed. 2003 single domain forest. folder on 2008 server. user joined "domain admins" group. folder b set give full access "domain admins". user tries access folder b >> access denied. check effective permission of user on folder b >> full control (all checkbox are checked) am missing out here?     check permissions in both "security" tap and "sharing permission" tap kesav Windows Server  >  Directory Services

hi, i have 2 file server dfs ( namespace , replication), i want create access users files via internet, how can it? can use server namespace role , publish internet? hi, we cannot directly publish shared folder internet. can build site publishing shares. iis on purpose. please refer to: how create virtual directory in internet information services (iis) https://support.microsoft.com/en-us/kb/172138 iis 7 virtual directory share path web & file server hosted on different domain  http://forums.iis.net/t/1177603.aspx if interested in iis configuration, question can post thread iis forum (second link): please remember mark replies answers if , un-mark them if provide no help. if have feedback technet support, contact tnmff@microsoft.com. Windows Server  >  File Servi

say wanted find computer names specific user logged into.  however, want @ computers online, not computers in ad.  so this, combining get-adcomputer , foreach-object along get-ciminstance however, error get-ciminstance... see below $computers = get-adcomputer -filter {(enabled -eq "true") -and (operatingsystem -like "*xp*")} | select-object -expandproperty name $computers | foreach-object { $user = get-ciminstance win32_computersystem -computername $psitem | select-object -expandproperty username $obj = new-object -typename psobject -property @{ "computer" = $psitem "user" = $user } write-output $obj } error: get-ciminstance : winrm client cannot process request because server name cannot resolved. suggestions? hi shiftbit, sorry delay. please try script below , feedback: $computers = get-adcomputer -filter {(enabled -eq "true") -and (operatingsyst

i tried update 2016 months security updates. when scans finds 2 updates. download server takes 4.2g of space. after install looking @ more 8g of space. keep in mind install security updates april. microsoft please tell me how supposed update servers? servers not have spare 10g on c: shoot matter desktops don't have 10g free space. not finding documentation on this. changing of not me servers patched. supposed updates weekend dev domain. please advise asap. thanks help hi jthomas777, >to download server takes 4.2g of space. could provide kb number of 2 updates take large space? best regards, anne please remember mark replies answers if help. if have feedback technet subscriber support, contact tnmff@microsoft.com . Windows Server  >  Windows Server General Forum

one windows server throwing " no logon server available service logon request " error message , didn't allow me login domain account- resolved (temporarily) rebooting server. could please recommend fixed solution , reason type of issue. affected server - windows 2012 r2 , standard edition - virtual machine. domain controllers , dns servers - windows 2008 r2 domain , forest functional level - windows 2003 its able contact primary , secondary dns servers. dhcp providing ip server. firewall os end in disabled status. let me know if disabling ‘ipv6’ , ‘allow computer turn off device save power’ network card end stop occurring issue next time. i can see event logs 8015(source :dns client events) , 5719 (source:netlogon) ____________________________________________________________________________________________ event log: 8015(source :dns client events)  the system failed register host (a or aaaa) resource records (rrs) network adapter settings:

  hi,   in windows server 2008 ad, there option limit each ad user 1 session.   that no single username can logged on mulitple machines @ same time.   thanks. something try - going give tremendous administration overhead mentioned...   during logon script, move user's user account object to ou has gpo setting denies ability log on machine.  long user stayed logged desktop, pretty sure user retain full functionality, next time tried logon machine denied.  during logoff, have logoff script moved user original ou, allow user logon again.   in script, use dsmove:   http://technet2.microsoft.com/windowsserver2008/en/library/9af7dc97-4f13-4cfc-ab49-a34eea48a55c1033.mspx?mfr=true   as footnote, think going create ton of work you, curious see how works out!  keep posted   Windows Server  > 

dear all, i want apply gpo no 1 except desktop support / helpdesk can reset local administrator password 1. have created gpo 2. computer configuration - preferences - control panel settings  - local users & groups 3. have updated rename administrator account,   administrator account password never expires , user cannot change password option i have enabled , moved computer in test ou on gpo applied. when ask user try change local administrator password able change successfully. user local administrator on machine.  number 1 works 2 , 3 doesn't applied. someone please me why policy not getting applied. i don't think can prevent member of local administrators from resetting password of local account gleb. Windows Server  >  Group Policy

hello, i test nlb clustering on hyper-v first before rolling out environment.  have test on both windows 2003 32bit , 64bit.  configured 2 machines each 1 synthetic network card.  followed guide on how create nlb cluster , configured adapters accordingly.  once nlb setup lost network connectivity machines.  removing nlb bring network connectivity.  based on previous post decided remove synthetic network adapter , install legacy network adapter.  time nlb worked. i proceeded same thing on windows 2003 64bit virtual machines.  @ point realized there no windows 2003 64bit drivers legacy network adapter.  1)why nlb fail using native network adapter? 2)will there drivers legacy network adapter on windows 2003 64bit? thx farah if remember correctly - issue fixed in next publically available build. this posting provided "as is" no warranties, , confers no rights. Windows Server

setting new hyper-v cluster , question nics on host (i have 2) using vm's use dhcp or assign static ip? plan keep them seperate have vm1 & vm2 nic when setting vm's. thank in advance, john it not matter. most folks use dhcp. the cluster little magic of own , create cluster network (yet ip) , use ipv6 address. i thinking not understanding question though. brian ehlert (hopefully have found useful) http://itproctology.blogspot.com learn. apply. repeat. disclaimer: backup, test backup, try new things. attempting change of own free will. Windows Server  >  Hyper-V

i work k-12 school district.  have migrated windows server 2008 r2 , implementing windows 7 client computers.   have been using xp clients.    xp documents redirect fine users h:\ drive, windows 7 giving me fits.   not want use offline files.  want see users names on folders on file server holds home directories.   please me configure gpo work us.    not want pictures, movies, , music move. hi,   please follows:   1.        create share folder on h:\ drive, 2.        under user configuration, expand policies , windows settings, there policy “folder redirection”. 3.        right click documents, choose properties. 4.        in target tab, choose setting ”basic-redirect everyone’s folder same location” 5.        target folder location: create folder each user under root path. root path should be share folder ’ s location. 6.        in setting tab, check third checkbox ”also apply redirection policy …”     for mor

hey guys, is there way recover files in shared folder deleted? doesn't go recycle bin.  thanks!   hi sisco22,   if have enabled volume shadow copies of shared folder before files under folder deleted, may use previous version view , restore files , folders existed @ points of time in past. because shadow copy previous version of file or folder @ specific point in time, shadow copies of shared folders helps alleviate data loss creating shadow copies of files or folders stored on network file shares @ predetermined time intervals.   for more detailed steps, please refer to:   restore previous version of file http://technet.microsoft.com/en-us/library/cc778220.aspx   shadow copies shared folders: asked questions http://www.microsoft.com/windowsserver2003/techinfo/overview/scrfaq.mspx   if have not enabled volume shadow copies on shared folder before, think may consider using winternals administrator pak make use of filerestore system tool recover deleted file

 hello, have been banging our heads past day, hoping can shed light. have dpm 2007, , 1 64-bit windows server 2008 standard box. have applied pre-installation steps server 08 box. have clean install of 64-bit server 03 clean install of sql 2005 plus updates. have done pre-install steps box too, iis6 installed, reporting services installed default. problem arises when on server 08 box. during dpm install there choice sql type. choose "use existing instance of sql server 2005" for the instance of sql server enter fqdn of sql server, , user name , password , domain. (all servers on in same domain) error this: dpm setup unable connect specified instance of sql server. (id: 4307) verify specified computer , instance of sql server meets following requirements: 1) computer accessible on network. 2) firewall not blocking requests dpm computer. steps configure firewall on sql server, follow steps descriped here://// 3)the specified user administrator on computer running instance of sq

we've enabled offline files of our laptop users home drives sync'd , available offline. home drive have several other mapped network drives map different shares on same server home drives on (these other drives not set available offline) and prior enabling offline files users access of these drives without problem when working out of office via vpn. however, network drives appear empty when use vpn, apart home drive because shows offline files. have seen problem before , have got user manually sync clicking offline files icon in system tray. brings laptop 'online mode' , of network drives have files in them again. some of our users not happy solution though , not work of them. tried setting silentforcedautoreconnect registry key , seems take while bring me online automatically when connect vpn - other users though still reporting not work , network drives still empty. so i'm wondering if there kind of definitive solution , know if problem fixed in windows 7 (or wi

have issue on small 2008 r2 rds farm. server1 = session broker server2 , 3 = rd session hosts sitting behind simple dnsrr i have gpo option enabled allowing 1 session user. what happening user disconnect , reconnect when see original disconnected session on server, , new active 1 on other server. reason not being reconnected disconnected sessions. i saw there issue on 2008r1 fix not apply r2. any ideas? i think found possible cause. i had login script in gpo terminal servers in. since users have logon script specified in ad account removed gpo , hasn't happened since then. Windows Server  >  Remote Desktop Services (Terminal Services)

i know can run powercfg -waketimers list of current timers.  there way in powershell same list?  possible change time on timer?  have program that generates timer wake system @ random times.  have no way that i know of change how program wakes up.  program wake every night at around 7:30pm rather 3:00am or 8:00am. and there's nothing in task scheduler related this? http://social.technet.microsoft.com/forums/en-us/itprovistahardware/thread/92208bc6-5613-485d-a4ec-a02336629708/ Windows Server  >  Windows PowerShell

i have wcf service hosted in secured mode on https. when use transport without client-side certificate, https call successful; however, need example of server side , client side web.config make secured call certificates on both sides  <system.servicemodel>     <bindings>       <wshttpbinding>         <binding name="wshttpendpointbinding">           <security mode="transport">             <transport clientcredentialtype="none" />           </security>         </binding>       </wshttpbinding> here server web.config not work  <system.servicemodel>     <bindings>        <wshttpbinding>           <binding name="wshttpendpointbinding">              <security mode="transport">                 <transport clientcredentialtype="certificate" />                 <message clientcredentialtype="none" /

hey, we have terminal server on windows server 2003 having trouble sharing usb printer on 1 of machine used connect terminal server when logged in comes microsoft xps document writier on s924 (the pc name). printer trying share samsung ml1915 , has drivers server 2003 , xp installed on machine. also printer sharing allowed on rdc session. any appreciated. thanks :) hi, 1. driver name (as view in  printer properties--advanced) match on client pc , server? 2. have tried using different versions of samsung driver? 3. please in server's event log warnings/errors @ time user logs on relate printing/drivers , post event id, source, description, etc. here. thanks. -tp Windows Server  >  Remote Desktop Services (Terminal Services)

built 2012 r2 standard server dns, ad ds , wsus roles. user's workstations on windows 7 pro. i'd bind workstations ad can take advantage of wsus service. i'd users continue use local profile instead of ad profile (migration not planned yet). so, possible have computer bound server user logged in local profile, , computer able catch software updates server wsus? possible? if so, there in particular check on server, wsus, gpo? or on workstations? thanks  the users can continue using local profiles on workstations when workstation is joined domain. wsus not require workstations joined domain, domain membership makes easier configure clients to use wsus server. gleb. Windows Server  >  WSUS

i all, question related update minimum certificate key length ( kb2661254) we have self sign certificate in system (monitioring system) has 1024 bit lenth. do need apply on system on whichever have self sign certificate ? if not patch on system impact ? thanks amit yes, should apply update. note update affects not certificates, certificates using. consider following: accessing web site on ssl (https) , remote server uses ssl certificate 512bit key , issued trusted ca. in case, web browser show warning page presented certificate invalid (even if issued trusted ca). also, if using certificates partners, should check, whether certificates conform requirements. if not, should consider replace certificates stronger keys. my weblog: http://en-us.sysadmins.lv powershell pki module: http://pspki.codeplex.com windows pki reference: on technet wiki Windows Server

we have large corporate intranet multidomain forest can call the green forest. in segregated network have single domain forest can call red forest. we have full ip connectivity between top/root domain controllers in 2 forests (fully meshed, cisco acl permitting traffic flows based on source , destination ip-addresses) , have managed implement one-way cross-forest, red trust on green. we want red computer gpos applied on red windows 7 clients enabled loopback , set replace. when red user logon red windows 7 client both authentication , computer gpo applied expected. now issue, when green user logon red windows 7 client authentication cross forest working computer gpo never applied. we have been told 1 microsoft support engineer must permit ip connectivity between red clients , green domain controllers user accounts defined in. can true clients must have ip connectivity user account dcs? here link describing   how gpo should work in cross-forest setup there no s

when try install server 2008 beta 3 x86 32-bit, following error message:   "windows not load required file winsetup.dll. file may corrupt. install windows, restart installation. error code: 0x3e7"   the dvd-rom i'm using original media got technet. tried downloading , burning iso microsoft.com. didn't help. tried replacing dvd-rom drive in server (twice!), didn't either.   the system i'm installing on:   two (2) piii 600 mhz cpus 2048 mb ram 700 gb total hd space in various raid arrays   any ideas? thanks! according pre-reqs cpu needs @ least 1 ghz. don't believe 2 x 600 = 1.2 in case Windows Server  >  Setup Deployment

hi everyone: i using windows 7 pro,  my company have server , version windows server 2003, shadow copy function enable @ server. however, when map network drive share folder server 2003 in pc. i want check previous version on network drive pc, but show no previous version available. when using victual pc, windows xp version check map drive,  yup, previous version show all. i wondering why windows 7 cannot see previous version? we try one " disabledownleveltimewarp  is set disabled under hklm\system\currentcontrolset\services\lanmanserver\parameters " but no work. kindly me, lot! hi, it known issue should b resolved step mentioned in original post "disable disabledownleveltimewarp ": you may receive incorrect "previous versions" list , unable restore snapshots "previous versions" dialog box on computer running windows 7 if file server running windows server 2003 http://support.microsoft.com/kb/9

i' ve installed windows server 2008 r2 rolefileservices , role service windows search (the server configured remotedesktop server). i've configured folders wich should indexed , defined files should searched in specified locations. i've installed add-in search inside pdf-files. think have perform full text search on server 2008 r2. it not work! when logon server rdp-session open explorer and  search specific text string search results displays only filenames textstring , no files contain string. i need solution problem, because have find files contain specific strings! thanks <o:p></o:p> hth regards milos Windows Server  >  Windows Server General Forum

hi all! i've discovered i'm missing events in secirity log on med dc's. it's 2008r2 domain/forest on 2008r2 domain controllers. i've been tracking ad-account lock-outs before (some months back) , need again, can't find events on dc's relating users getting locked out. example: no audit failure events id 4768 or 4771 in of logs on dc's, if users try log on computers wrong credentials, , locked out. first thing checked default dc policy , it's got auditing enabled - i'm not using adv. audit pol. conf. - regular audit policy settings:   audit account logon events: success, failure   audit account management: success, failure   audit logon events: success, failure   - rest set failure only. gp results wizard shows expected, , there no warnings in system log related applying gpos. so start looking next?? cheers ullethebulle hi, we run below command admin right audit settings on computer: auditpol /get /category:* pl

we have 4 node 2012 r2 hyper-v cluster using csvs storage want upgrade server 2016.  i know when upgrading 2012 2012 r2 had build new cluster , not introduce new cluster nodes , live migrate vms new nodes because using csvs.  i looked through documentation here https://technet.microsoft.com/windows-server-docs/failover-clustering/cluster-operating-system-rolling-upgrade rolling upgrades did not see issues csvs.  can rolling upgrade using csvs without issues then? " can rolling upgrade using csvs without issues then? " though engineers have done great job on new capability, there no way can guarantee there no issues.  many have performed upgrade successfully.  have had issues.  safe, backup environment before starting.  way, whether perform in-place upgrade or new cluster, have environment backed used recover. . : | : . : | : . tim Windows Server

all, we have wireless network uses peap-tls authentication , our pki infrastructure authenticate computers , users onto network. our cisco 1252 aps set ssid uses radius authentication, ias server running on 1 of our domain controllers. our pki policies enable auto-enrolment for user (client authentication) certificates, , use credential roaming. group policy adds profile our wireless lan client machines. on newly-installed xp machine, things work fine. machine authenticates onto wireless @ boot using computer certificate. user logs on first time , machine remains connected using computer certificate whilst roams client authentication certificate onto machine, reauthenticates user certificate. on newly-installed windows 7 machine, things less good. machine again authenticates onto wireless @ boot using computer certificate. when log on first time, whilst machine 'preparing desktop', machine disappears wireless. after logon, balloon stating certificate required connect network ,

hi i have dell power edge 1600sc server. showing 1 problem after power fluctuations. showing 1 message " drive 1 on adapter 0 predcting future faifure .the sense quakifier 41h. press key continue " after  press key windoes loading. can 1 me in pls samad hi,   it indicates hard drive damaged or damaged.   please unplug , replug hard drive or install onto slot test result. if issue persists, afraid may have replace hard drive new one.   as using dell computer, suggest contacting dell detailed information.   tim quan - msft Windows Server  >  Windows Server General Forum

hello guys, please need help. have script works ok but is  sluggish. in $cc have different department our company , want create report of users in these departments but 1 report takes 5-10 min though 2-3 users. there possibility how fast script?   many help    $cc = get-content 'c:\temp\cc.txt' $cc | foreach-object { $excel = new-object -comobject excel.application $excel.visible=$false   $sesit= $excel.workbooks.add() $list = $sesit.worksheets.item(1) $workbook = $list.rows $workbook.interior.colorindex =40 $workbook.font.colorindex = 11 $workbook.font.bold = $true $department_query = "*$_*" $query = get-qaduser -department $department_query $row1 = 1 $query | foreach-object {  if ($_.accountisdisabled -like "false") { #define items of users $list.cells.item($row1,1).font.bold = $true $list.cells.item($row1,1).font.colorindex = 23 $list.cells.item($row1,1)= "name:"