Light

hi, how can find next vpn port number in tunnel mode. (what next vpn port number). want allow access port in network firewall. future mine! ^_^ hi sadegh, as far know, next vpn not product of microsoft. about port number uses, ask technical support. best regards, leo please remember mark replies answers if , unmark them if provide no help. if have feedback technet support, contact tnmff@microsoft.com. Windows Server  >  Network Access Protection

hello, i have dns records keeps disappearing. when checked adsiedit found tombstoned. even if change false, changed true. in event viewer have : event type:    success audit event source:    security event category:    directory service access event id:    566 date:        3/05/2012 time:        11:11:48 user:        nt authority\system computer:    ad1-holding description: object operation:      object server:    ds      operation type:    object access      object type:    dnsnode      object name:    dc=pcxw94cr1.retail,dc=holding.local,cn=microsoftdns,dc=domaindnszones,dc=holding,dc=local      handle id:    -      primary user name:    ad1-holding$      primary domain:    holding      primary logon id:    (0x0,0x3e7)      client user name:    ad1-holding$      client domain:    holding      client logon id:    (0x0,0x63dcf)      accesses:    write property                   properties:     write property         default

this intended task scheduler question, not networking question, welcome on either side of issue: i believe core question how set trigger activates on local login not on remote desktop login? had thought difference between "on workstation unlock" (local only) and "on connect user session" (local or remote), appears not case, "on workstation unlock" triggered remote desktop login. details follow. i have computer dual nics, each pointing different unrelated internet connection. operating on assumption can have 1 functional gateway @ time (if bad assumption, need know how route traffic nic based on application or port #, not ip#, far can tell not possible in windows). both relatively slow internet connections, 1 faster download connection (slower upload) via randomly-assigned dynamic ip#. other a faster upload (but slower download) , has static ip. when i'm sitting @ computer, want use faster download better internet performance. when i'm r

hello forum!   hope can me troubleshoot or let me know if not possible. but, used powershell import distribution groups , set primary emails in office 365. worked great, have 2 domains , add email alias dgs other domain.   this best attempt , not going well:   import-csv "c:\distributionlists.csv" | foreach {set-distributiongroup "$_.name" -emailaddresses smtp:$_.primarysmtpaddress,$secondarysmtpaddress}   $_.name column name dgs. ie: dl-it $_.primarysmtpaddress column name primary email. ie: it@domain01.com $_.secondarysmtpaddress column name email alias. ie: it@domain02.com hi, based on understanding, below code should work when manually run it: set - distributiongroup "dl-accounting" - emailaddresses smtp :< primary email >,< alias email > if distribution groups have been created, use set-distributiongroup command should work. how first new distribution group, , run foreach block loop. regards, yan li

hy guys! i have following question regarding anywhere acces/remote web acces. i used run login.mycompany.eu (worked fine!) company added website in iis prgram run. but whatever try cannot run login.mycompany.eu next new website, rederect new site , give certificate error) anyone has solution? on site moved own site make sure binding 'require server name indication' checked. see screenshot mariëtte knap www.server-essentials.com | linkedin | twitter | facebook | migrations done easy way please remember to  mark replies answers  if and  unmark  them if provide no help. Windows Server  >  Windows Server 2012 Essentials

hello experts i trying install vpn in cisco router. need radius server that. when tried install radius server getting  some errors **remote access logging  **remote access policies both of them marked in red.  may know why error is coming? have done almost configuration in router. want perfect.  please reply if knows thanks in advance.  regards hi vasco-qa, mean configure cisco router vpn server instead of setup rras role of windows server? if so, suggest contact cisco support first. also, please check if article you. cisco ios-fu #7 - cisco + radius + windows server 2008 nps hope helps. jeremy wu technet community support Windows Server  >  Network Infrastructure Servers

h, trying domain renaming. not able finalize domain renaming. when executed rendom /end got error message failed delete rename script on dn: cn=partitions,cn=configuration,dc=winn t,dc=com on host winnttest.winnt. 00002077: svcerr: dsid-030f0b0e, problem 5003 (will_not_perform), data 0 : cannot complete function. :1003 have cross verified steps , can see entries in dns.....any thoughts ion this...?   thanks , regards apu pavithran   hi,   the dcs set replicate current dc cannot resolve name of dc new ip address.   this issue can caused due dns entries have not been updated.   based on current situation, suggest run following commands:   net stop netlogon net stop dns cd %systemroot%\system32\config ren netlogon.dnb netlogonold.dnb ren netlogon.dns netlogonold.dns net start netlogon net start dns ipconfig /flushdns ipconfig /registerdns   after that, please check result. if not work, please check dns server , remove invalid

we have deploying server 2008 r2 since october 2009, where servers are "hibernated" during day (and weekends) , in evening either wake via scheduled task (or wake on lan), job , when finshed during middle of night re-hibernate. been working fine since october 2009. server 2008 r2 handles power control fine. however have started deploy server 2008 r2 foundation (and instead) , having issues getting server 2008 r2 foundation stay hibernated. it appears server 2008 r2 foundation server continually wakes 1/2 hour after has been hibernated, which means spends day power cycling. wakes up, finds nothing goes hibernate. the output of powercfg -waketimers gives: timer set [service] \device\harddiskvolume2 windows\system32\silsvc.exe (silsvc) expires @ 16:34:40 on 19/05/2011. i assume service continually waking server. wake timer task not present on server 2008 r2 (standard) systems. so far have been unable stop scheduled task or find work around stop server waking af

everything started when changed account password. point on keep getting locked out many times daily. have no service running credentials neither task. domain administrator account has same issue well. strange think appears locked , unlocked again automatically.  i have read other posts in here although tried several things couldn't find solution. if has found solution, please me. thank you. these may help. http://www.microsoft.com/en-us/download/details.aspx?displaylang=en&id=18465 http://technet.microsoft.com/en-us/library/cc738772(ws.10).aspx       regards, dave patrick .... microsoft certified professional microsoft mvp [windows] disclaimer: posting provided "as is" no warranties or guarantees , , confers no rights. Windows Server  >  Management

could kindly check permissions on cluster servers folders , files under c:\clusterstorage\volumex? i'm still having same problems had before cluster setup after destroying cluster , re-create it. it's 2 node cluster both servers windows 2008 r2 sp1 server core. if owner of csv disk server1, server1 can create , delete files , folders no problem. server2 can create folders , files can't delete or rename them. i checked ntfs permissions on both servers: on server1, under security tab volume1, has everyone,creator owner,authenticated users,system,mycluster$(mydomain\mycluster$),administrators(server1\administrators),users(server1\users).  folders created under volume1 folder, under security tab has creator owner,system,administrators(server1\administrators),users(server1\users). files created under volume1 folder, under security tab has system,administrators(server1\administrators),users(server1\users) on server2, has pretty same list except administrators , users

the prerequisites check fails. here content of log file. please me fix it. [2012/12/27:16:27:25.535] adprep created log file 'c:\windows\debug\adprep\logs\20121227162725-test\adprep.log' [2012/12/27:16:27:25.535] adprep initialized global variables. [status/consequence] adprep continuing. [2012/12/27:16:27:25.545] adprep call following ldap api. ldap_search_s(). base entry start search cn=schema,cn=configuration,dc=nj01,dc=imstransport,dc=com. [2012/12/27:16:27:25.545] ldap api ldap_search_s() finished, return code 0x0  [2012/12/27:16:27:25.545] adprep call following ldap api. ldap_search_s(). base entry start search cn=ad01,cn=servers,cn=default-first-site-name,cn=sites,cn=configuration,dc=nj01,dc=imstransport,dc=com. [2012/12/27:16:27:25.546] ldap api ldap_search_s() finished, return code 0x0  [2012/12/27:16:27:25.546] adprep call following ldap api. ldap_search_s(). base entry start search cn=schema,cn=configuration,dc=nj01,dc=imstransport

hello respected expert, actually sir  have window server 2008 r2 .and have 50 clients under ..now when logon server server administrator recieve error " to log on remote computer, must granted allow log on through terminal services right. default, members of remote desktop users group have this right. if not member of remote desktop users group or group that has right, or if remote desktop user group not have right, must be granted right manually " please me solve this thanks hi,  pls try steps described at:  http://www.99technuts.com/others/terminal-services/common-issues/to-log-on-this-remote-computer-you-must-be-granted-the-allow-logon-through-terminal-services-right/ thx pranav Windows Server  >  Group Policy

how can expire or disable ad account 30 days 1st login? jason i planning on  running every 4 hours , change days 29 said. jason if testing lastlogon on yesterday, there no need run script more once per day. second time runs re-process of last logged on yesterday. but note this. if logs on again before expiry, prevent script extending expiry? if want based on first logon, script need check user's logon count (from dc's). then, if logs on twice in 1 day... al dunbar -- remember 'mark or propose answer' or 'vote helpful' appropriate. Windows Server  >  Windows PowerShell

i have sever 2008 . want formart server totaly  & reinstall server 2012 same edition & bit . request how backup server 2008 & after install 2012 how restore backup ? ans :after install server 2012 active directory domain services role install promote dc after restore backup      or  install server 2012 restore backup ?            please explain step step backup server 2008 & restore backup in server 2012  (note :i have 1 dc dont have anu adc )   i'm not clear question exact configuration , plan do. it sounds have windows server 2008 domain controller , want end 2012 domain controller.  if case, , have single physical server, can upgrade in place.  recommended perform new installation of domain controller whenever possible, if have single system, makes little more difficult. what install hyper-v on 2008 domain controller , create virtual machine 2012.  join vm 2008 domain , promote domain controller.  once process completes, demote 2008 server 201

i did setup ad fs in dashboard under services says adfssrv "start pending". looking @ local server services have 5 failing: user access logging service, ualsvc, stopped diagnostic policy service, dps, stopped active directory federation services, adfssrv, start pending windows server essentials media streaming service, wsemediasvc, stopped distributed transaction coordinator, msdtc, stopped if got event viewer see bunch of entries including warning, event 2947, attempt fetch password of group managed service account failed...cn=adfsservice. new service account created. please note uninstalled , reinstalled ad fs few times. after uninstalling removed service account remove-adserviceaccount -identity adfsservice. warning, event 94, active directory certificate services [domain]-[computername]-ca can not open certificate store @ cn=ntauthcertificates.... checked permissions on public key services , appear correct me. error, event 91, not connect active direct

hi, i have 2 servers in wsfc. i have add third server in cluster. when go validate configuration option or direct add node cluster option. getting: failed access remote registry on <servername>. ensure remote registry service running, , have remote registration enabled. please don't share me technet blogs, have gone through each of them. services running. file , printer service running. remote registry running.  what can issue. third server same existing 2 servers. one of network admin suggested me due ports being blocked firewall. please let me know ports being used wizard can ask him open ports. best regards, vaibhav antriwale hello , the issue got resolved. network team had blocked ports. the below blog post helped me: http://dsfnet.blogspot.sg/2013/04/windows-server-clustering-sql-server.html best regards, vaibhav antriwale Windows Server

i new @ powershell, , intern, i'm not best @ powershell right now. i importing .csv list of servers vulnerabilities. getting name of servers, not other information. want count how many times each server shows in list. reason why same server show multiple times in list because has multiple vulnerabilities.  so, how can script in powershell? so far have: $vulnservers= import-csv c:\users\logsdmp\desktop\vuln_top_10\windows_critical_list.csv $servers = foreach($server in $vulnservers){ $server = $server.netbios_name.tostring() $server = $server.substring($server.length - 8, 8) write-host $server } i have taken substrings because part of name in csv file domain name, , need server name (last 8 characters). need script applied too. i feel group-object , get-unique cmdlets used, , possibly hashtable. i've been searching , searching , cannot quite information need. once again, have been using powershell 2 weeks now.  thank you! import-csv c:\

i have been given old hp proliant ml350 g3 server has multiple 8gb scsi hard drives in it. want create 16gb boot spanned volume first 2 8gb scsi drives install windows server 2003 r2 on , create spanned volume on other drives in order use deployment server other pc's , laptops. best way this? you can boot smartstart disk configure striped set , prepare machine operating system. you're aware striped set have no fault tolerance. http://h20000.www2.hp.com/bizsupport/techsupport/softwaredescription.jsp?lang=en&cc=us&prodtypeid=15351&prodseriesid=316537&switem=mtx-597d7cb6b45d493285e27c1412&prodnameid=3279705&swenvoid=181&swlang=8&taskid=135&mode=3         regards, dave patrick .... microsoft certified professional -microsoft mvp [windows] Windows Server  > 

hello, i have 2 separate windows failover clusters running on current class c subnet , have ran out of ip address space , need move subnetted class a. question how proceed changing each of nodes, re-adding iscsi storage disk (as san's ip changing new class subnet) each of nodes. here planned change: current ip subnet wfc nodes , services live on - 192.168.2.x new ip subnet wfc nodes , services live on - 10.10.1.x i have read bit of information steps required perform, changing on network, including domain controllers, sans, etc, etc, - order of steps need follow? assume need change cluster's ip information first before changing our domain controllers, need verify permission make changes. correct in thinking way? if has information or steps follow, appreciate much. thank all,     pretty easy do, particularly if can in maintenance period when don't have guarantee access cluster resources. first, not recommended practices put onto single subnet.  recommended

hello all, i've got following setup: - windows 2012 running dpm server 2012 sp1 - several windows 2012 servers running hyper-v (2012 + 2008sp1 vm servers) for majority of vm's on hyper-v hosts i'm able using child partition snapshot - have single vm server refuses backed using child partition snapshot (even though server identical - build vmm image other servers) , allows saved state. the problematic vm server windows 2008r2 - hyper-v intergration agents installed , services running, disk not dynamic, host running, vhd fixed size , ntfs. i've tried rebooting vm, moving different protection groups without change saved state backup - have ideas? regards simon hi please see below details regarding backup using saved state may assist troubleshooting issue face. http://social.technet.microsoft.com/forums/en-us/home?forum=dpmhypervbackup&announcementid=e80a3581-6afa-4ed7-a015-602eb21e7c04 please remember click “mark answer” on post helps

greetings, we have interesting setup @ our school. trying setup brand new dell server our department , having troubles. wonder if i'm not configuring incorrectly. the situation school has active directory domain controller called "school" @ location "labs.school.edu". of computers in our department speak domain controller dns , dhcp, , have option have them authenticate users against whole school's user list well. however, run imacs want different setup accounts.  i trying setup new domain controller login authentication within other domain. mean want our domain accessible our macs join , use authentication, while automatically dhcp , dns information systems. i've tried setting domain new domain in new forest, doesn't seem work, , i've tried adding current forest, don't have authentication rights parent server. is i'm trying unheard of? able apple xserve. realize macs don't play nicely server 2008 i'd like, can done, r

hello everyone! i'm having little problem msg.exe tool is, when send message user on terminal server (2008 r2, precise) own user (affected 'mine' gpo's), runs well, when trying use same command-line tool user affected other gpo's, outputs following error: z:\>msg.exe myownuser hello {errorprintf(): loadstring failed, error 15105, (0x00003b01)} error [15105]:the resource loader cache doesn't have loaded mui entry. error [0]:the operation completed successfully. had use z: , put msg.exe there, instead of c:, because believe gpo blocking user access c: drive (which comprehensive). do know if there gpo rule making happening? if case, one? glad hear you, guys. thanks! best regards, bruno martins i bet home directory mapping (which can done gpo)... hope helps, kristin l. griffin co-author of windows server 2008 terminal services resource kit (and super big fan of microsoft rdv team!!!)  rds blog: blog.kristinlgriffin.com

i´m building lab enviroment of single hyper-v stand-alone hypervisor, run 10 vm servers, part of them converted vmware esxi , reinstalled 2012 servers. because lab, have limited amount of budged, , don´t have physical raid card, has affected i/o performance in vmware. hyper-v, i´m thinking set raid os´s disk management, stand-alone´s hyper-v controll disks it´s own raid functions. i have: 1. 1 sata disk hyper-v standalone installed on. 2. 2 large sata ii disks mirrored run light vm servers. 3. 2 smaller sata disks mirrored run sccm server it´s own database. how sound , disk type should use? hi yannara, if wanting make use of storage spaces clusters in test environment, need make sure disks sas.  otherwise free use type of disk want.  here useful article on storage spaces in server 2012:  http://blogs.technet.com/b/askpfeplat/archive/2012/10/10/windows-server-2012-storage-spaces-is-it-for-you-could-be.aspx . hope helps out. robert milner | website: http://www.remil

is possible configure server 2003 r2 vpn , ntp server? if so, can find documentation? have configured vpn need use ntp server well. thanks hi, is vpn/ntp server dc? please note it’s not recommended use multihomed nic on dc server. in windows time hierarchy, clients/dcs sync time pdc. can set pdc sync time vpn/ntp server. for more information, please take time check following article: how configure authoritative time server in windows server http://support.microsoft.com/kb/816042 configuring windows time service windows server http://msmvps.com/blogs/acefekay/archive/2009/09/18/configuring-the-windows-time-service-for-windows-server.aspx configure windows 2003 pdc connect ntp server http://social.technet.microsoft.com/forums/en-us/winservernis/thread/399ab75b-109e-4ef6-a64b-f8d75e21afed best regards, aiden aiden cao technet community support Windows Server

hello all, have test enviroment installed virtual machine win svr 08r2 made domain controller active directory. me brief on view or link on how setup dns in d/c. register domain name. kind of understand how works not fully. know u need register domain name outside world , provide dns servers use on network right? anyway do, setup dns on domain controller (dc) register domain name , ever guys think make real small test network.   hello, here talking 2 different things: ad domain names used internal clients computers external dns names used allow access public resources of enterprise having ad domain not require having external dns name. also, can have external dns name without having ad domain. to see how dns support active directory works: http://technet.microsoft.com/en-us/library/cc759550%28v=ws.10%29.aspx you can use external dns name publish ressources (web servers, ftp servers ...). more if ask isp technical support assistance. since have dc, recom

i purchased new laptop running win7 home.  have attempted join domain hosted windows server 2003.  point have been unsuccessful in joining domain.  possible , if so, steps must take.   if redundant apologize.  thank help. sorry say, home edition computers not able join domains.  1 big difference microsoft makes between there products home , business users. home edition allowed homegroup not domain, same idea not same thing.  are, how ever, still able files off network connected to, can not join domain.. Windows Server  >  Platform Networking

if have gpo have windows clients sync time external sources instead of domain hierarchy (dcs, pdc emulator role server, etc.), clients still (by virtual of being joined domain) want communicate domain controller time source? testing gpo remote users have them sync time externally, noticed when in vpn still trying talk dcs via udp 123. possibly related crosssitesyncflags value being 2? thanks, jefrodhusker p.s. forest functional level 2003 domain functional level 2008 hi, with manually-specified synchronization, can designate single peer or list of peers computer obtains time. if computer not member of domain, computer must manually configured synchronize specified time source. default, computer member of domain configured synchronize domain hierarchy. manually-specified synchronization useful forest root of domain or computers not joined domain. manually specifying external ntp server synchronize authoritative computer domain provides reliable time. however, co

hi, i've built hyper-v cluster. looks good, 1 question had: if want have granular control on nic  (and ip) used communicate iscsi target, how this? in target settings, chose dns name initiators connect target, initiators (i.e. hyper-v nodes) have more 1 ip address. also, nodes have 8 nics see 2 network connections in hyper-v manager? thanks you can configure source (iscsi initiator ip) through iscsi gui. once, when configure connection target (portal discover). have used 'advanced' settings when connect target. if don't configure source ip address (iscsi initiator) use 0.0.0.0. of course first use interface matches subnet directly. if doesn't find one, use default gateway (e.g. management) interface. shouldn't have routed iscsi network, asume have iscsi interface directly connected. about nics in hyper-v manager. should see nics unless configure nic teaming on top of them. boudewijn plomp | bpmi infrastructure & security this posting

i moved printers \\printer1 new server 2k3 \\printer2 new drivers support 2k3, , both servers identical - whats next step? shall rename \\printer2 \\printer1 , shutdown old server users can connect same server using it? or not going work please advice   hello, yes, can change name of printer2 printer1. before that, may want run test make sure unc path same printer1 , users not affected. then, remove printer1 domain , rename else, rename rinter2 printer1 , dns flush , clear dns cache andmake sure registering in dns isaac oben mcitp:ea, mcse Windows Server  >  Print/Fax

hi, i working @ school , been asked solve problem has been hwere long time. when run group policy modeling wizard under group policy management ui error component status both user , computer shown below: component name status group policy infrastructure failed group policy infrastructure failed due error listed below. more data available. note: due gp core failure, none of other group policy components processed policy. consequently, status information other components not available. additional information may have been logged. review application event log on domain controller on simulation run events between 05/11/2012 13:49:10 , 05/11/2012 13:49:11. looking in event viewer see errors event id 1080 , 1030 errors event type: error event source: userenv event category: none event id: 1080 date:  05/11/2012 time:  13:49:10 user:  nt authority\system computer: bdc description: windows cannot search organizational un

hi i trying install windows backup feature on servers running windows server 2012 using gpo i know can install feature using powershell   (add-windowsfeature windows-server-backup ) but means have log allot of servers. within group policy management editor navigate policies – administrative templates – windows components – backup my question what, see allot of rules on allowed , isn’t not force feature install my question what, see allot of rules on allowed , isn’t not force feature install group policy-admin templates, not provide ability change installation-state of windows features. may need consider different method, maybe scripting? don (please take moment "vote helpful" and/or "mark answer", applicable. helps community, keeps forums tidy, , recognises useful contributions. thanks!) Windows Server  > 

i setting home lab, using vmware workstation 12 pro. trying install windows server 2016 ( evaluation copy)  vm , going through setup , copying files , after finishing installation, takes reboot , goes blue screen- pc ran problem. need make work.  i think better ask on vmware forum. btw, installs fine on instance of version 12. mariëtte knap www.server-essentials.com | migrations done easy way, migrate sbs 2003, 2008 or 2011 windows server 2016 , office 365 please remember to  mark replies answers  if and  unmark  them if provide no help. Windows Server  >  Windows Server 2016 General

hi,   i have 3 hyper v nodes setup in csv failover cluster. two of these sync time pdc master dc uses external time source. the other host gets time normal dc. after restarts etc doesn't change. is there reason this? i have no gp on time it's recommended default settings take effect have configured pdc use external ntp time source should filter down domain h ierarchy ps- pdc dc physical server , not vm.     hi according ben armstrong ( microsoft virtualization program manager  ) question #6 – wait minute!  virtual machine should synchronizing domain (or external server) – when run command tells me hyper-v time synchronization provider being used!  how fix this! i not know why happens – happens.  first thing should check domain have correctly configured authoritative time source.  there have been small number of times when have seen problem being caused lack of authoritative time source. so, fix this, can “partially disable” hyper-v time synchr