Light

hi , i have dfs namespace created in cluster mode across windows server 2008 r2 in environment. some users have problem shared folder (dfs root folder "\\abc-intranet.net\mydfsroot" empty or sometime shows shared folders (in thousands) within dfs root , while can access shared folders have been given access using unc paths without issues. could suggest why mapping of dfs root doesnot show folders users have access? might bug? generally mapping of dfs root folder should contain shared folders users have access to. any bright ideas or suggestions highly appreciated. thanks. hi, when client accessing dfs namespace , goes access dfs root, if no domain-based root referral exists in referral cache, client connects  active domain controller , requests domain-based root referral.  in case seems dc fail provide referral list stopped in accessing folder \\abc-intranet.net\mydfsroot. please understand \\abc-intranet.net\mydfsroot real-existing shared folder, on

i'm in middle of doing on premise exchange migration 2003 2013 using 2010 intermididate server. there 3 dc's.  one 2003 dc (sbs 2003) primary dc before 2 other 2012r2 dc installed.  i had no issues promoting dcs , initial sysvol replication took place.  the 2003 decommissioned. what happening group policy files not consistent between 2003 , 2012 dcs.  the logs on 2012 dc show event id 1791. replication of application directory partition dc=abc,dc=local source 257088c5-3493-4b40-b79b-00f06d35d3ed (abc-sbs.abc.local) has been aborted. replication requires consistent schema last attempt synchronize schema had failed. crucial schema replication functions properly. see previous errors more diagnostics. if issue persists, please contact microsoft product support services assistance. error 8418: replication operation failed because of schema mismatch between servers involved.. i have verified schema id's same, exchange.  repadmin shows clean replication on servers.  i&

good morning, we have multiple domains & single forest , single domain without having adds trust. having certificate server (certsrv001) in 1 domain & rest domains servers having certificates & signed certificate server (certsrv001). process manual (create csr using certreq & on). how handled certificate revocation in others domain certificate server not present ? don't want disable revocation. it implemented in 1 env. getting below output revocation enabled & working fine same thing when have tried implemented in test env. getting revocation error (tried configure winrm https & getting revocation error).  don't want disable revocation & here current conf. netsh http show sslcert verify client certificate revocation : enabled here error. ps c:\users\administrator> test-wsman -computername dcsrv001.coolchul.com -usessl test-wsman : <f:wsmanfault xmlns:f="http://schemas.microsoft.com/wbem/wsman/1/wsmanfault" code=&

i trying output of wmiobject , analyse network adapter based on ip address assigned , if ip address matches criterai, need rename network connection managemt or production. i able capture out put of get-wmiobject in variable. $computer = "localhost" $namespace = "root\cimv2" $i=get-wmiobject -class win32_networkadapterconfiguration -computername $computer -namespace $namespace  | format-list ipaddress $i the output of code is   ipaddress : ipaddress : {144.***.***.53} ipaddress : ipaddress : {192.168.***.***, fe8a::4ca3:bbdf:4a9d:c539} ipaddress : i need filter ip address satrts 144 "production " , 192 "management" based on need mac address of nic card. i getting confused while searching string.     try this:   $mac = @{} gwmi win32_networkadapter |% {$mac.add($_.deviceid,$_.macaddress)} gwmi win32_networkadapterconfiguration |%{  if ($_.ipaddress -like "144*"){write-host "production i

i have installed latest wsus on member server.  followed directions installation , have made gp changes on dc , clients still can't connect.  shouldn't able go browser , type http://<servername> , able log in make sure can connect?  have server 2003 iis 6 , did not custom install, on port 80.  don't know else do. please help!!!! thanks greg greg smith hi greg, you should able use browser download http://<servername>/selfupdate/wuident.cab maybe helps find problem: troubleshooting wsus clients benedikt Windows Server  >  WSUS

hello, i have 1 windows server 2003 r2 working standalone ca. provides certificate 1 of our internal iis website. i have decreased crl publish interval 1 week -> 1 day , published new crl. however, our webserver propably not aware of new crl publishing interval changed on ca, because suppose webserver has cached crl locally. my question is, how check cached crl validity time our webserver? running windows server 2003 r2. i attempted run following command on webserver 0 results: certutil -urlcache crl you have wait out when running 11 year old operating system the certutil -urlcache crl command introduced in windows server 2008/vista. the deletion/inspection of cached crl data not option in server 2003 brian Windows Server  >  Security

hello. i'm running windows server 2012 r2 in small company since 2 years. server used application-server, file-server, backup-server clients , has ad enabled. now wanted install remote-acess-role use vpn, i'm uable install server-role. first tried activate vpn , remote-acess via wizard in dashboard. wizard able configure remoteacess, failed vpn-configuration. tried install vpn-role manualy in server-manager, server-manager givig me error in image below. so tried install other server-role giving me same error. then tried following things: cmd --> dism /online /cleanup-image /restorehealth cmd ->  sfc /scannow install optional updates in cbs.log there mention of pl-language missing. installed , didn't helped uninstalled again. a lot of reboots here  a cbs.log 1 try install remote-acess-role. if want download log, click here , on small arrow in front of "cbs.log". click "download" in bottom left corner. please me:)

hi we have around 30 domain controller , windows 2008 r2 , dfl , ffl windows 2003. when run command 'repadmin/ replsummary' getting following error, please guide me how resolve this; destination dsa             largetst delta          fails    total     %%        error  ---------------                     --------------              -----    -----       ----          ----   testdc                          04d.11h:47m:32s         5        35       14         <1722 rpc server unavailable> mahesh you getting error " the rpc server unavailable " relates port being blocked or network connectivity issue or due dns misconfig .i suggest contact network/security team verify whether related ad ports being configured , allowed on firewall communication. portquery free tool ms can downloaded , installed verify necessary ports opened or not. also, disable local windows firewall service , default enabled in vista/windows 2008 , above. check network connec

hi we have 2 node hyper v 2012 r2 failover cluster . going add third node on cluster. want know there configuration changes required in cluster or add . quorum configuration default . quick response awaited.. hello nothing change/new, quorum. prereq:the cluster validation wizard check new node, if list  problem  repair that. same os patch level, vswitch name, nework config, csv config sorry english Windows Server  >  High Availability (Clustering)

bitlocker windows server 2016 what hardware/software requirements? what caveats bitlocker? what downsides bitlocker? performance impact , other downsides? what happens if tpm chip , usb bitlocker startup keys not working? able use password method unlock system? if server housed in secured server location, still necessary use bitlocker? still benefit bitlocker if server in secure location? thanks might read through faq here. https://docs.microsoft.com/en-us/windows/device-security/bitlocker/bitlocker-frequently-asked-questions     regards, dave patrick .... microsoft certified professional microsoft mvp [windows server] datacenter management disclaimer: posting provided "as is" no warranties or guarantees, , confers no rights. Windows Server  >  Windows Server 201

hi, need kind support resolved below mention issue (permanently) have facing last couple of months. windows server 2003 enterprise sp2 got rebooted every , given error "operating system failure (windows bug check, stop: 0x0000007c (0x00000005, 0x8e654658, 0x8bfe27f0, 0xf78a2e28)).  (4 times server got rebooted same error i.e 0x0000007c , 1 time 0x000000d1 1> let assume have 2 node (node 1 application server, node 2 database server) mscs cluster configured between 2 servers/nodes  (application active in node 1 & database active in node 2). 2> server configuration details:- server model:- bl460c g7 (hp), ram:- 12 gb, cpu:- intel[r]xeon[r]cpu e5640 (quad core cpu, 2.67 ghz) 3> database oracle 10g enterprise. fail safe software there oracle clustering.  4> network teaming (nft) (hp tool) available between 2 lan cards (hp nc553i dual port flexfabric 10gb converged network adapter & hp nc364m quad port 1gbe bl-c adapter). hi, thanks posting in

for few days my vpn down . so, now branch adc  not replicating updates . any friends.        \\igi-wak-dc.indiragroup.edu , when trying reach          igi-ins-adc.          server not responding or not considered suitable.          ......................... igi-ins-adc failed test advertising       starting test: frsevent          there warning or error events within last 24 hours after the          sysvol has been shared.  failing sysvol replication problems may cause          group policy problems.          ......................... igi-ins-adc passed test frsevent       starting test: dfsrevent          ......................... igi-ins-adc passed test dfsrevent       starting test: sysvolcheck          ......................... igi-ins-adc passed test sysvolcheck       starting test: kccevent          warning event occurred.  eventid: 0x80000785             time generated: 10/12/2010   15:44:44             event string:             attempt esta

one of networks came in , has 1 2008r2 dc , 2003 dc fsmo roles.   2003 1 above error.   planning retire 2003 dc , promote new 2008r2 server dc.   rather not go thru steps fix above error if not neccesary.   would error prevent moving fsmo roles , demoting member server or need metadata cleanup with ntdsutil  ?    regards craig   craig the above error due problem in disk or abrupt shutdown of dc or corruption in sysvol. if want know more why journal wrap error occurs or how troubleshoot or fix it, refer below link. http://blogs.technet.com/b/instan/archive/2009/07/14/what-happens-in-a-journal-wrap.aspx this error should not prevent in transferring fsmo role dc. demoting dc can graceful, if doesn't can use dcpromo /forceremoval followed metadata cleanup. metadata cleanup doesn't remove references of removed dc, might require verify other places  esp in dns, take @ below site, might you. http://awinish.wordpress.com/2011/05/08/metadata-cleanup-of-a-domain-control

hello, have module checks datetime of backup files make sure written within past 3 days, if finds it, execute lot of sql stored procs within powershell.  this works fine when manually execute it, doesn't execute past import-module command when call task scheduler. task scheduler action: start program program/script: c:\windows\system32\windowspowershell\v1.0\powershell.exe arguments: -noexit c:\scriptsfolder\dbrefresh.ps1 #leaving noexit testing. fails or without. when finishes, see imported modules none of actions taken.  here script i'm using call module. param( $si = "localhost\qainstance", $bupath = "\\backuppath\backupssubfolder\env\blah", $dbn = ("database1","database2") ) #import-module dbrestore -verbose -force dbrestoreexecutor -backuppath $bupath -serverinstance $si -dbname $dbn have tried commenting out import-module , still has same effect. what user account under scheduled task running ? t

log name:      application source:        application error date:          4/04/2011 7:49:47 am event id:      1000 task category: (100) level:         error keywords:      classic user:          n/a computer:      pwin2pdb22 description: faulting application name: svchost.exe_remoteregistry, version: 6.1.7600.16385, time stamp: 0x4a5bc3c1 faulting module name: perf-mssqlserver-sqlctr10.50.16_unloaded, version: 0.0.0.0, time stamp: 0x4bb679a4 exception code: 0xc0000005 fault offset: 0x0000000073859aef faulting process id: 0x12d4 faulting application start time: 0x01cbf248a8c06d54 faulting application path: c:\windows\system32\svchost.exe faulting module path: perf-mssqlserver-sqlctr10.50.16 report id: 4a666432-5e3c-11e0-8dd4-001e689aa82f event xml: <event xmlns=" http://schemas.microsoft.com/win/2004/08/events/event ">   <system>     <provider name="application error" />     <eventid qualifiers="

we have couple of windows uefi platforms trying rollout bitlocker on. before doing testing bitlocker using tpm. bitlocker seems work fine if have legacy installation of windows server. on other hand if test bitlocker uefi boot using windows server 2008 r2 seems fail. aware if bitlocker tpm supported in windows server r2? thanks   ps: on windows vista ultimate error's out without reason hi,   the answer yes.   for more information, can refer to:   bitlocker drive encryption in windows 7: asked questions http://technet.microsoft.com/en-us/library/ee449438%28ws.10%29.aspx#bkmk_efi   installing windows server 2008 , windows vista sp1 on uefi systems http://download.microsoft.com/download/0/0/b/00bba048-35e6-4e5b-a3dc-36da83cbb0d1/uefiguide.docx     best regards, vincent hu   Windows Server  > 

hi all, good day all.  have quick questions file sharing services on microsoft windows server 2008 r2.  i've setup , installed windows server 2008 r2 act file server serve local office usage office running on workgroup based i've noticed i've setup lot of users (app. 100++ users) , assign different users different accessibility.  due fact users workgroup based, having trouble of providing them change respective account accordingly. i appreciate if can show me how able allow users change individual account password without login through rdp (remote desktop protocal) providing them administrator password exposed unnecessary security threats. thank , looking forward reply soon!   thanks & regards, vins dear vins, please bare in mind that, not running in domain environment, users can change local workstation password. in order change user account password on server, must have access server itself. even if give them remote access server, still need gi

i've got script send email, , know how copy files, don't seem able email on failure.  failure example might network share isn't available.  know i'm missing fundamental here, first real shot @ using powershell i'm struggling bit. currently i'm using try { copy-item source destination } catch { there problem copy job: $_ $emailfrom = "" $emailto = "" $subject = "" $body = "" $smtpserver = "" $smtp = new-object net.mail.smtpclient($smtpserver) $smtp.send($emailfrom, $emailto, $subject, $body) } try/catch triggers catch block if encounters terminating error.  can use -ea parameter force errors terminating, catch block invoked. try { copy-item source destination -ea stop } catch { there problem copy job: $_ $emailfrom = "" $emailto = "" $subject = "" $body = "" $smtpserver = "" $smtp = new-object net.mail.smtpclient(

i support 2012 r2 server has instance of master file table corruption associated 1 file. no disk, controller or other hardware issues exist @ the server.  this corruption noted in system log , operating system identifies corruption when running chkdsk /f. however, while the chkdsk operation on boot volume completes after required server restart, it not able correct mft corruption associated specific file. corruption identified , acknowledged in informational output chkdsk, , attempt made to repair it. a resulting generic message of not being able repair corruption logged. of course, 256 mb referenced file cannot moved or deleted operating system cannot access due mft issue. microsoft knowledge base resources state fix running chkdsk /f. has worked in past without issue @ other servers. as side note, 2012 server self healing feature is enable default on server well. there no functional or operational issues system. have read references open source or other disk utility resources

when move user account source ad target ad presumably have identify global groups user member of , migrate those global groups in the same migration job retain access resources in source domain this not affect user member of global group in source ad, not part of migration job the ad's have trusts sid filtering disabled cheers james >>>> will userb lose access resources in source domain?, if not deleting users , groups source domain, users won’t lose access.   “technically” in inter-forest migration, “coping” objects.   in intra-forest migration “move” operation. santhosh sivarajan | houston, tx http://www.sivarajan.com/ posting provided no warranties,and confers no rights. Windows Server  >  Migration

hallo, assumed have definded storage pool on windows storage server 2012. example sorage pool created local disks. can storage pool mirrored onto local disks of windows storage server? i think not possible. might be, failover cluster can that, don't think so. i asking that, because office searching fpr simple mirrored storage device transparaent failover of our virtual machines in vmware esx 5 , microsoft hyper-v 2012. please me! bye bye, max hi, the "mirror" here means mount storage pool server cluster shared volume, or copy files storage pool? i assume mount data onto storage pool, said, not supported. need create virtual disks in storage pool , these vds work local disk. Windows Server  >  Windows Server 2012 General

hopefully can me.  i have 2 servers on small home network.  both running windows server 2012 std. the original pdc (queenie) on domain crashed after update , unrecoverable, had second server (harry) promoted pdc , have setup dc server (queenie) replace crashed one. i keep getting error events regarding dfs replication cannot resolve / don't have experience yet resolve, all other tests dcdiag /a /v /c passed. repadmin on both harry & queenie shows successful see error results dcdiag below, grateful helpful hints :)       starting test: dfsrevent          the dfs replication event log.          there warning or error events within last 24 hours after sysvol has been shared.  failing sysvol          replication problems may cause group policy problems.          a warning event occurred.  eventid: 0x80001396             time generated: 08/28/2016   06:00:26             event string:             dfs replication service stopping communication partner harry

hi all what the  difference when deploying printers gpp when chosing configure tcp/ip printer item or configure shared printer item ? tha printers installed  in print server 2008 the domain environment server 2008 r2 dc. what is the better choise deploy printers gpp ? hi, it kind of speaks itself, when deploying printer using a gpp , selecting shared printer assumed printer deploying made available on printerserver (i.e. win 2008 server) can supply machinename , printersharename. when choosing tcp/ip printer deploying doesn’t have shared on printerserver, can networkprinter that's been made available on specific ip , port. since have printerserver in place on win 2008 server suggest choose configure shares printer. advantage can make use of features printserver role in win 2008 (specially r2) supplies. kind regards, freek berson http://microsoftplatform.blogspot.com/ Windows Server

hi all we manually have migrate users settings old machines new machines , looks me job powershell. i want export data file share on server import there onto new machine i need to: gather installed programs , product keys on system text file export mapped drives unc path & import them there export pst files user has tethered outlook export printers in print que , drivers same & import destination is there else useful?  succeed of above, got pointers? im thinking of starting printbrm.exe   export printers thanks reading confuseis confuseis hi, look usmt before trying script something: https://technet.microsoft.com/en-us/library/hh825256.aspx don't retire technet! - (don't give yet - 13,085+ strong , growing) Windows Server  >  Windows Pow

looking @ environment new customer features of server 2012 essentials perfect (desktop backups, remote desktop, etc), they're @ 24 users in office now, , anticipate growth. i've been told there upgrade path server 2012 standard maintain features of essentials... how go this? how client licensing work (would need cals original 25 users, or ones above that?) thanks, gene o'brien technology service of long island you purchase server standard license + 25 cals + cals additional users. it in place 'upgrade' removes 25 user limit. tap in key , reboot. robert pearman sbs mvp | www.titlerequired.com | www.itauthority.co.uk Windows Server  >  Windows Server 2012 Essentials

i have windows 2008 r2 sp1 domain controller on windows time service goes missing after reboot. physical server , not able trace how service being deleted or unregistered server. i saw similar post on guest vms running hyper-v host https://social.technet.microsoft.com/forums/windowsserver/en-us/cd10a6f2-4274-4f17-af3d-75dc6004a92e/windows-time-service-and-hyperv-integration-services-problem?forum=winserverhyperv however post not having solution issue. is ms aware of issue , knows why service gets deleted? sincerely, asifkhan -- please mark post helpful if helpful you. consider tracing computer's bootup using procmon tool (http://technet.microsoft.com/en-us/sysinternals/bb896645.aspx).  once program running, can select "options" , "enable boot logging".  at point, restart computer.  upon reboot should able find removing service. g. samuel hays, mct, mcse 2012, mcitp: enterprise admin blog: gsamuelhays.blogspot.com twitter: twitter.com/gsamuelhay

hi, i got 2 node cluster connected iscsi storage. work well. i cloned csv volumes , presented 1 of nodes, windows os not allow me mount volume ? after reading, attain if first remove csv volume cluster using cluster manager. question: 1. plan purchase second storage , replicate volumes containing csv volumes second site. on second site, have different servers, servers not part of cluster. stand alone servers. can mount csv volume on servers on dr site. in simple terms, can replicate csv volumes via san replication hardware technology , mount volumes on standalone server. thanks, paul not really, not without having jump through lot of hoops.  the problem replicating csv volumes @ san level end csvfs volumes instead of ntfs volumes need remote non-clustered environment.  possible solutions include: find tool or command line or ps cmdlet re-label volume ntfs instead of csvfs on original cluster remove csvfs volume cluster, labels ntfs, san clone it,

hi, we have wsus 3.0 server running on windows server 2003.  for past few months have noticed new computers have joined on domain not reporting status wsus , therefore not receiving updates.  all existing pcs continue report , continue receive updates. i have been working on issue time , feel have tried internet has suggested. i have tried obvious things on client machines such re-registering windows update dlls, removed client id key in registry etc.  there have been no changes server , have reviewed settings on here , nothing seems amiss. finally, updated server 2003 , applied hotfixes wsus 3.0 has not made difference either! can please assist this?  what relevance of soap errors seeing? here excerpt windowsupdate.log 2016-03-09 16:33:01:142 964 1408 au triggering au detection through detectnow api 2016-03-09 16:33:01:142 964 1408 au triggering online detection (non-interactive) 2016-03-09 16:33:01:142 964 16c8 au ############# 2016-03-0