Light

using terminal services 2003 server r2; remote clients automatically logged off after 12 minutes of idle time. have attempted change policy concerning via gpedit.msc/security. did not fix problem. have identical server not log off clients prematurely, in spite of having disconnect policy still set 15 minites. dale hi,   can confirm using resultant set of policy tool correct policies being applied?   -- mike burr Windows Server  >  Windows Server General Forum

if have 3 domain controllers, , 1 of them doesn't have fsmo , want use system state of domain controller backup purposes, able perform authoritative restore? if have bakup of dc3 system state 6:00pm , 8:pm user has been deleted. please verify steps if correct, i reboot directory services restore mode on dc3. perform system state restoration after restoration go command prompt ntdsutil "authoritative restore" "whatever object" reboot dc3.   after reboot, after replication, object appear in both dc1 , 2?   hi,   read steps : _______________________________ authoritative restore of deleted active directory objects   authoritative restore provides method of recovering objects , containers have been deleted ad ds. authoritative restore four-step process : start domain controller in dsrm. restore desired backup, typically recent backup. use ntdsutil.exe mark desired objects, containers, or partitions authoritative. restart in norma

i running windows server 2008 r2 host hyper-v vms.   have tree blade servers connected same san using iscsi.   each vm has separate san volume each vhd.   i move vm on blade another, leaving storage in same volumes on san.   what best practice move vm blade? assuming you're running hyper-v cluster , luns configured csv need use live migration: http://technet.microsoft.com/en-us/library/dd446679(v=ws.10).aspx if don't run cluster , / or luns not configured csvs need export vm vmm: http://www.petri.co.il/importing-and-exporting-your-virtual-machines.htm hope helped :) -nismo Windows Server  >  Hyper-V

want able stop sql server service , restart via script. far have: net stop "sql server (instance)" which works since have 2 instances comes saying "would stop second instance" "yes" im not sure how add script override question or pass in parameter "yes". overall want stop , restart later. does have clues? thanks try this net stop "sql server (instance)" <c:\yes.txt and file c:\yes.txt contains "y" something below yyyyyyyyyy yyyyyyyyyy (only 1 'y' work) Windows Server  >  Windows Server General Forum

hello we using wsus version 3.2.7600 on windows 2003 r2 enterprise edition server. have been deploying windows 2003 , windows 2008 updates server past number of years want push out windows 2012 updates. windows 2012 updates being downloaded wsus microsoft update server our windows 2012 servers not showing in wsus console.  same ad group policy wsus applying 2003, 2008 , 2012 servers don't know why 2012 servers aren't showing in wsus. any assistance appreciated. <v:shapetype coordsize="21600,21600" filled="f" id="_x0000_t75" o:preferrelative="t" o:spt="75" path="m@4@5l@4@11@9@11@9@5xe" stroked="f">  <v:stroke joinstyle="miter"> <v:formulas>  <v:f eqn="if linedrawn pixellinewidth 0">   <v:f eqn="sum @0 1 0">   <v:f eqn="sum 0 0 @1">   <v:f eqn="prod @2 1 2">   <v:f eqn="prod @3 21600 pixelwi

so i've followed steps enable object access auditing.  on new windows server 2008 standard machine acting ad / dns / file server / dhcp.  went default domain policy , enabled success , failures object access auditing.  went main share file server , selected directory contains autocad projects i'd monitor.  went in auditing tab , added user group parameters checked except 'full control'.  i've waited standard gp refresh interval of 90 minutes.  nothing appears in event logs though can plainly see there many open files share , storage management snap-in.  before this, tried auditing user group 'engineers' , nothing appeared in logs.  think security log flooded events no auditing seems happening.  note, i'm still able see things logon successes , active directory audits in security log.  maybe point out of workstations accessing server still running xp pro sp3.  ideas why happening , how can fix great. best, scott daniel ok, figured out. forgot file

error code (0x704) appears when try configure remote desktop windows 10 mobile pc operation system windows 10 home. please advice hi, firstly, please ensure remote windows 10 system reachable, on windows 10 mobile, please enable company (wifi) network , both devices should under same network or routable network such vpn. secondly, please ensure ip address correct when trying connect. in addition, account used remote desktop connection should added in remote desktop users group on windows 10 system , remote connections should allowed. best regards, amy please remember mark replies answers if , un-mark them if provide no help. if have feedback technet subscriber support, contact tnmff@microsoft.com . Windows Server  >  Remote Desktop clients

i had win 2008 std server running hyper-v, running win 2003, sp2 guest. host upgraded 2008 r2. guest network cannot connect lan, either via dhcp or static ip. i have removed integration services drivers, removed virtual nic, removed virtual network,re-added virtual network, nic detected, installs, but cannot dhcp address, nor function static ip. i seem stuck....     you covered basic things (the first being upgrade integration components in vm). frequently find necessary delete , re-create virtual network on hyper-v server. then change configuration of vm select new virtual network. you can try vm emulated virtual network adapter, if fails need move stack virtual network. this can happen number of reasons. i find when export vm hyper-v v1 , import hyper-v r2 informative message related network stack.  have open settings of hte vm , select virtual network , well.   brian ehlert (hopefully have found useful) http://itproctology.blogspot.com

hi all, we have 2 dc in 2 sites dc running windows server 2008 r2 having gc out of 1 dc in 1 sites holds pdc emulator role , due 2 harddisk failure raid 5 broke , dc lost after created new adc on fresh server when run netdom query fsmo dead server role still been shown and password changes , time sync happening have not seize pdc emulator role is design works or in future need seize pdc emulator role in 1 of dc as per information of dc holds fsmo roles dies need seize fsmo roles here can still see role assigned server after run command netdom query fsmo also here new dc have created has same server dead server had had pdc emulator role so question need seize fsmo role of pdc in other server or let run as not facing issue right now please assist thank you viraj please remember click “mark answer” on post helps you, , click “unmark answer” if marked post not answer question. can beneficial other community members reading thread. hiya, you should seize

hi folks, well, i'm linux server administrator , within last 6 months have been adding windows 2008 standard servers our lineup. know basics behind setting , managing windows 2008 server remotely. i've come across issue can't quite solve. issue routing & remote access , creating dynamically issued public ip vpn service. bear in mind can setup standard pptp vpn issues servers default ip address vpn client , can issue dedicated ip vpn account. now, i'd create vpn service issues public dynamic ip addresses. automatically issue vpn user different public ip address range each time vpn network. have entire range of public ip addresses issued server in question can't quite grasp how tell server pull dynamic public ip's pool. help/advice or pointing me guide awfully appreciated. p.s. i've googled, yahooed, , msn'd until blue in face. hi, if understand scenario: you running rras 2008 server. have multiple public ip addresses wish issue vpn users. to n

hi all. i'm involved in discussions relating dfs deployment within organisation i'm working for. in looking @ configuration of dfs, appears have happened number of dfs namespaces have been created, these have then been replicated, , data has been stored within these folders , replicated (the replication desired). my view "sub-optimal" configuration , have found plenty of documentation stating that, once you've created dfs namespace, should populate folders/targets desired, pointing data on various servers. these folders, in turn, replicated (or not) required. to illustrate: assuming domain name of "mydomain.co.uk", following four namespaces have been configured far: \\mydomain.co.uk\distributed_apps \\mydomain.co.uk\user_mydocs$ \\mydomain.co.uk\user_profiles$ \\mydomain.co.uk\user_home$ each of these namespaces configured physical folder on namespace server, , folder contains relevant data. re-iterate, joe bloggs' home drive mapped \\mydomain.co.u

hey, you have time me fix cert error? i’ve installed anywhere access on windows server 2012 essentials.  requires forwarding 80 & 443 server , setting root cert , domain cert.  have done.  goal access stuff via browser , vpn.  haven’t tested vpn access yet, basic browser works expected.  two problems have related keep cropping use brain power on.  first, when browse http://remote.myfancydomain.com outside, error : if continue, accessing files fine, attempting rdp server returns error. my assumption related. happy presidents day. . . thanks the problems may due certificate got cacert.org.  ws2012e not support self-signed certificates.  may need purchase trusted cert or select free vanity domain form remotewebaccess.com during anywhere access setup.   cacert.org http://en.wikipedia.org/wiki/cacert.org   ... of october 2011, certificates issued cacert not useful in web browsers certificates issued commercial cas such verisign, because installed

hi i've implemented 2008 r2 2 tier pki testing. i opted single http url aia & cdp in issued certificates. used standard parctice build online enterprise ca's & configured post installation script. aia & cdp config follows: certutil -setreg ca\crlpublicationurls "65:%windir%\system32\certsrv\certenroll\%%3%%8%%9.crl\n6:http://mycompany/crl/%%3%%8%%9.crl" certutil -setreg ca\cacertpublicationurls  "1:%windir%\system32\certsrv\certenroll\%%3%%4.crt\n2:http://mycompany/aia/%%3%%4.crt" scheduled script copies actual files web server when new crl published. so far good... when use enterprise pki view manage ad containers notice cdp container contains base & delta crl's issuing ca's. closer examination shows these first base & delta crl's issued ca's. expired / expiring & have couple of questions clarification: 1. think these exist because ca published them default when service started first time, before pos

i seeing wmiprvse.exe using 44 % cpu constantly. server 2008 r2 using role hyper-v host 2 virtual servers. have not re-booted server since noticing issue. there fix this i rebooted server last night and cpu utilization has returned normal. management system there hp system management software installed. role hyper-v  - features remote server administartion tools , snmp without snmp wmi provider services.  steve wagoner Windows Server  >  Hyper-V

hi , i need install w2k8 r2.but unfortunatly error popup rise says windows cannot update boot configuration. any help?   regards mcitp enterprise messaging administrator, mcitp enterprise administrator, mcse, mcdba i set partition on w2k8 r2 should installed, active. it seems problem related mbr or bcd. and goes fine. mcitp enterprise messaging administrator, mcitp enterprise administrator, mcse, mcdba Windows Server  >  Setup Deployment

i've formated windows 2008 r2 server , when tried activated windows again got message : the activation server reported multiple activation key has exceeded limit could me please hi  did change on hardware?maks design have limited number of activations.contact microsoft activation call center; check on link; https://www.microsoft.com/en-us/licensing/products-licensing/products.aspx Windows Server  >  Windows Server General Forum

i trying use this command windows server 2008 client machines(windows xp) msg /server:server_name machine_name message it throwing me machine not exist or disconnected error. i have checked on google , found regisrty entry allowremoterpc should 1. it expected on server didnt find registry key on of xp machine. could please suggest something? it expected on server didnt find registry key on of xp machine. hi, please note windows xp no longer supported, suggest upgrade operating systems more efficient support. more information you: msg http://www.microsoft.com/resources/documentation/windows/xp/all/proddocs/en-us/ts_cmd_msg.mspx?mfr=true msg https://technet.microsoft.com/en-us/library/bb490796.aspx?f=255&mspperror=-2147217396 best regards, amy please remember mark replies answers if , un-mark them if provide no help. if have feedback technet subscriber support, contact tnmff@microsoft.com.

hi, time indentifiquei strange symptom windows vpn. still wearing windows server 2008 r2 vpn server , migrated windows 2012 r2 short time. - connection vpn occurs; - if working in remote access server or workstation, perfect; - when connected, not using remote desktop connection ended. when try connect again desktop remote, not connect. vpn remains connected normally. need disconnect vpn, reconnect , connect remote desktop. using windows 2012 r2 nps default settings. server in 10.10.0.0 network , has network card in network 10.0.0.0 network access workstations. happening? thank you hi sandro,            1 .>> when try connect again desktop remote, not connect.              what phenomenon have got?event,error,anything else?more information analyze.          2 .>> not using remote desktop connection ended.             it seems when connect remote desktop again, disconnect session remains active on server.          

my server 2008 r2 + hyper-v hardware: acer r720 m2 cpu xeon e5530 x2 ram 48g adata 4g x12 bccode: 20001   bcp1: 0000000000000011 i install update  http://support.microsoft.com/kb/2550569 .  it's still happen . and that's crash memory.dmp  below    microsoft (r) windows debugger version 6.11.0001.404 amd64 copyright (c) microsoft corporation. rights reserved. loading dump file [c:\windows\memory.dmp] kernel summary dump file: kernel address space available symbol search path is: *** invalid *** **************************************************************************** * symbol loading may unreliable without symbol search path.           * * use .symfix have debugger choose symbol path.                   * * after setting symbol path, use .reload refresh symbol locations. * **************************************************************************** executable search path is:  ************************************

windows sbs 2003.  server crashed , has message "missing or corrupt config.sys". fix this, matter of using recovery console , copying config.sys original cd? thanks. hi,   you can try copy config.sys windows sbs 2003 computer or original cd test. if issue continues, may need repair it.   best regards, vincent hu   Windows Server  >  Windows Server General Forum

i having issue user setting folder redirection. here event log of error. ------------------------------------------------------------------------------------------------------------------------------------------------ log name:      application source:        microsoft-windows-folder redirection date:          12/3/2012 5:10:34 pm event id:      502 task category: none level:         error keywords:       user:          squeaky\allison computer:      allison-pc.squeaky.local description: failed apply policy , redirect folder "documents" "\\server\users$\allison\documents".  redirection options=0x1231.  the following error occurred: "can not create folder "\\server\users$\allison\documents"".  error details: "access denied. ". event xml: <event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">   <system>     <provider name="microsoft-windows-folder redir

hi,    looking implement da , on our current poc platform have da working remote clients, have issue couple of web based applications. have access them via public ip address, however, configured respond our public ip address source! however, when connected via da, external classed traffic passed out internet. have tried configuring local hosts entry , sends traffic us, comes ip not fqdn , responses after go via web. there way of configuring da class addresses internal , forcing them down pipe? advice appreciated. hi, >> is there way of configuring da class addresses internal , forcing them down pipe? do mean want da client use public ip @ first time access web site,and use internal ip?i don't find official document talking behavior.but think write script to them workaround,three actions,first add hosts entry,second open web site,third delete hosts entry. best regards cartman please remember mark replies answers if help. if have feedback technet subs

hi, windows 2008 foundation r2. started have issues printing local printer on rdp. the problems started on friday 11th april. possible issue can identify around time logmein updated on server, including lmiprinter dll's.  have contacted logmein instructions on how uninstall lmi , followed these still experiencing problem. when attempting test page print confirmation test print has been sent displayed , print appears disappears in print queue nothing appears on local pc print queue or event logs. on server event log shows following error; the document test page, owned admin, failed print on printer canon mg7100 series printer (redirected 2/copy 1). try print document again, or restart print spooler. data type: raw. size of spool file in bytes: 142691. number of bytes printed: 0. total number of pages in document: 1. number of pages printed: 0. client computer: \\onestage-ts01. win32 error code returned print processor: 2147500037. unspecified error i have search

hello all, trying bulk import users script wrote imports properties .csv file, when run it, error -enabled property, requires boolean input. still learning powershell, open suggestions regarding script. thanks! :) this .csv looks like: "name","samaccountname","givenname","surname","description","departement","enabled" testuser01,testuser01,test,user,test account,it,$true this script: import-csv .\adusers.csv | foreach-object { new-aduser -name $_.name -samaccountname $_.samaccountname -givenname $_.givenname -surname $_.surname -description $_.description -department $_.departement ` -accountpassword (get-content .\password.txt | convertto-securestring) -enabled:$_.enabled -changepasswordatlogon $true -passthru } , error get: new-aduser : cannot convert 'system.string' type 'system.nullable`1[system.boolean]' required parameter 'enabled'. a

i have new client web dev used ms-sql , .net create site...works fine. but need add blog same - , web dev asking whole bunch of $ - plus they've stated wp not run on ms server...which know of course untrue run more dozen other clients on 1 of our w2k3 servers fine (php & mysql installed too). so question should "move" client on own server , host on own - tho i'm not adept @ .net builds....being classic asp guy still? , if that's way go - need ask web dev "for" make move? help/counsel here great.... jim acer win7 - 4 gb ram, dvd, cd-rw & love win7!!! potentially tricky one, i'd depends on how annoying existing dev has been coding. example .net code it's quite possible stored server , login details within compiled code makes moving site elsewhere. if you're able access current site code , db might worth getting setup on server and seeing if it'll work before getting dns etc moved, , if doesn't work can re

the system center 2012 service pack 1 service provider foundation installation package performs prerequisites check ensure system has dependent software installed prior installation of package.  1 of requirements management odata iis extension.  supposed wcf feature can install via rolls , features wizard.  system 2012 (non r2).  option not available part of of iis/.net 4.5 options.  have tried using stand alone installation package via kp updates, update won't install finds it's not required server.  can me out how feature of wcf installed on 2012 server? thanks i found it.  never mind. Windows Server  >  Windows Server General Forum

i got tired of typing long commands test function developing, added test function switch statement select available tests. able use this:     test 3 a while later went make changes couldn't find function called test. remembered that, out of habit, i had used verb-noun-compliant name "get-test" , forgotten doing that. never gave second thought, after being able invoke function name "test". i theorized perhaps unrecognized command might cause powershell try prefixing "get-" name rather throwing error. seems work cmdlets, these example: acl = get-acl alias = get-alias childitem = get-childitem although "history" seems resolve "get-history", because defined alias cmdlet. if "feature" intended, appears not have been trusted. tried deleting "history" alias , found seemed resolve "get-history" according "feature". "command" resolves "command.com" rather get-comma

in domain rename la 'rendom', set windows server (in case windows server 2003 r2 domain 2003 r2 dcs) member computer act control station, rendom run. before joining control station domain, added computer member of domain (via active directory users , computers), joined member computer in domain. simple enough. control station (named control) member of domain, have option, when logging onto control, either log on locally control (this computer) or log onto domain. i have assumed in order run rendom , perform domain rename procedure control, should log onto control in domain (rather logging on locally). documentation never says so, never talks choice, , maybe that's because "any fool should know". i'm trying careful here. thing step-by-step documentation says rendom , other domain rename tools "contact each of domain controllers in forest remotely" in order perform work. no 1 (apparently) ever thought document simple how log onto control stat

dear whom read problem good evening , thank @ first i want appear users programs want make them able use  so want appear these programs on dasktop shortcut sorry nothing appear  by using shortcut policy used on user configuration made 1 in file system object ,  other url sorry nothing happen  so may there policy work againest policy or must in order make shortcuts appear  and note make every thing in right manner , making gp update boot , logoff no new please me in problem in faster time thank again regards hi, since these deployed shortcuts not appear on desktop, @ time, suggest we try collect following information narrow down cause of issue. gpmc.log ================== a. on domain controller, click start ->run, type gpmc.msc, load gpmc console. b. right click on "group policy result" , choose wizard generate report problematic computer , user account (please place appropriately). (choose computer and select proper user in wizard)

1 windows 2008 x64 standard server (ts01) with:  ts licensing role  ts session broker role  ts web access role  ts gateway role 2 windows 2008 x64 standard server (ts02, ts03) with:  ts terminal server role dns: record of ts.domain.com assigned ts01. users both internally , externally accessing ts. the ts session broker / nlb documentation doesn't seem go enough detail understand requirements.  resource kit glosses on topic.  link better step-by-step similar design helpful. question 1 : read either dns or nlb can used load balancing.  since using session broker requirement use dns rr and/or nlb? question 2 : if 1 of options required prefer nlb.  nlb installed? question 3 : can gateway run without certificate while test?  know can issue self-signed cert can done without cert during initial testing? question 4 : issues way roles distributed? question 5 : have cert named ts.domain.com, should farm name same of different? thanks hi, question 1 : read either dns or

hello, im trying set ftp site on server works domain controller , nameserver.  have website working through same server ftp believe should functional ftp having trouble getting response when ping it.  "ping request not find host ......" i set ftp site in iis 7 , guess problem in dns (sorta newbie @ web stuff) my current records in dns site soa primary server pointing @ server.domain.local, nameservers pointing @ server.domain.local on 192.168.0.2, nameserver pointing @ ns.domain.com , ns2.domain.com both @ same ip address (i know these nameservers working, being used domain well, not sure if need them in dns).  have hast (a) set same ip nameserver , host (a) host ftp , ip @ same ip nameserver.  im not sure other info need diagnose issue appreciated. did check nslookup, "set querytype=ns" resolving dns , check port 21 through telnet ftp. Windows Server

hi i configured wired , computer  802.1x authentications on switch , client on network  ,it works without problem . i have user logon script change local administrator password each time log on ,i find out boot light cd , change administrator password , unplug lan cable boot system , login new administrator password after plug lan cable , computer account valid in active directory authorized , access lan . they bypass group policy way, how can i force 802.1x wired client computer plug lan cable during boot , login process in order prevent bypass user login group policy  ? i want force lan cable plugin during login process on 802.1x computer only weird client? rigards hello, you can disable cd/usb gpo settings prevent use it. and change local admin password should consider ceo of company should make clear policies users can legally punished if don't work company rules. you can manage lot of settings scripts etc. there time ceo responsible rules. best regards

hi team, how granularly can delegate admin reset password of user accounts in domain without giving them domain admin rights ? domain fl 2000 here. thanks in advance, noufal please refer explained article elaborate same concern appropriate solution : http://community.spiceworks.com/how_to/show/1464-how-to-delegate-password-reset-permissions-for-your-it-staff by way, may consider on our active directory self-service tool ( http://www.lepide.com/active-directory-self-service/ )that equipped several comprehensive features , empower end-users take control of ad account performing self password reset , self account unlock directly login screen without assistance administrator/help desk personnel. there no need assign admin privileges users. tool free up-to 50 users. lepide - simplifying management Windows Server  > 

hi all, i have system custom software not know how install or run. performed ntbackup of files and a systemstate. system went down on me few days ago went standby machine , installed win03 r2 sp2 scratch , blew backup on systemstate with don't overright existing files ( recommended) option , , right world. went production machine , performed same steps after ntbackup job completed indicated unrecognized version of file in servicepacks directory , asks service pack cd. upon putting disk in, error boxes go away , rebooted thinking normal. after booting login screen indicates 1 service failed start cannot use usb keyboard , mouse server not have ps2 connectors. have hooked multiple keyboard , mice same problem in safe mode. have reloaded 2 times scratch same result. same media and backup that used on standby machine. please information appreciated or possible starting point. remember saying in log 2 files locked , access denied since cannot in @ loss how fix this.  is ther