Posts

Showing posts from September, 2011

Management trust to the tenants.

been thinking bit.. is valid solution: lets i'm working @ cloud provider hosts , manage company's active directory's. tenant have own forest. have each domain admin account in forest. valid/good solution have "management trust"; administrators have accounts, instead of accounts in domain.  or there better way manage it? "technically", can create domain/forest trust , provide domain permission. acceptable tenants? though, domain trust doesn't provide permission default, don't want see company's trust in ad domain.   santhosh sivarajan | houston, tx | www.sivarajan.com itil,mcitp,mcts,mcse (w2k3/w2k/nt4),mcsa(w2k3/w2k/msg),network+,ccna my books: | windows server security | windows server 2012 blogs | twitter | linkedin | facebook | posting provided no warranties, , confers no rights. Windows Server

2 Terminal Services on one domain

hi,  is possible have 2 windows servers each running own terminal services both connected 3rd server domain controller ? clients connect through domain controller server , depending on ip or server name provided in rdp session directed right server running terminal services  .. possible ? thanks lee you can many ts servers joined domain controller want. long client machine able resolve ts server name through dc , dns, client can connect desired ts server. thanks vikash Windows Server  >  Remote Desktop Services (Terminal Services)

Failed to assign scsi shared storage to windows cluster 2012 standard edition

i new server 2012 and  trying create cluster sql 2008 enterprise on windows server 2012. in order achieve have configured dc , 2 cluster nodes. servers running server 2012 standard edition. windows vms running on kvm hypervisor. have created iscsi virtual disks on dc in order share storage cluster. have created separate virtual disks sqllogs , data etc. had mounted shared storage same drive letters on both cluster nodes. cluster node on m running cluster manager can see , mount shared storage mounted partitions on second node disappear reasons. can see partitions in disk management , tried online disks error appears" specified disk or volume managed microsoft failover clustering component. disk must in cluster maintenance mode , cluster resource status must b e online perform operation". there 3 consecutive event id's saw in events (10, 70, 1) source : iscisprt : login request failed. "the login response packet given in dump data".  "error occured w

Replace wsh 5.8 with 5.7 on windows 7 ?

hi, does know if break if install wsh 5.7 on windows 5.8 machine? (assuming can around wfp). i need sendkeys function, , not need os protecting me function. thanks, ed is forum dead seems? eventually perform experiment, , when do the results not posted here. to wilson souza (who moved question powershell area on 03-01-13) this not powershell issue. perhaps not realize this. it little wonder why have received no reply in 3 months. the question has produced 1 result, it convinces me forum dead forum. Windows Server  >  Windows PowerShell

Hyper-V 3 Node Cluster unable to start virtual machines.

hi guys i need clarity on following issue have experienced 3 node hyper-v cluster. some info before jump issue. 3 hp proliant dl380 gen 8 hosts running server 2012 r2 latest firmware patches , updates. 1 dell md 3200i san 3 luns shared cluster shared volume each host respectively. the following happened: 2 of hosts placed maintenance mode , vm's gracefully shutdown maintenance. 1 host remained active few critical vm's running in production. after 1 remaining host went down due ups failing started 2 mins later. none of virtual machines able start stating the configuration file missing not edit vm's. after testing migrations, san connectivity, cluster connectivity , csv access seemed 100%. the cluster nodes visible , vm's showing on failover cluster manager not on local hyper-v manager. i proceeded technet had article regarding .xml files being corrupt , in string has changed. i restored .xml files 2 week no joy in starting vm on environment not

Connection Reset by Peer

once again latest update remote desktop client program fails "connection reset peer" error message. working fine prior update. there fix or location can pickup older version? hi, are using remote desktop mac version 8.0.32? if yes, please try install remote desktop mac beta application below see whether works: http://aka.ms/rdmac-preview best regards, amy please remember mark replies answers if , un-mark them if provide no help. if have feedback technet subscriber support, contact tnmff@microsoft.com. Windows Server  >  Remote Desktop clients

Applocker cmdlet - Set Enforcement

using applocker on windows server 2012 r2, , know if there cmdlets allow set enforcement rules (audit only, enforce rules)?  if not, there way via command line? thanks. dj hi, yes, value enforcement rules defined in xml config file can pass set-applockerpolicy cmdlet. may have page example. Windows Server  >  Windows PowerShell

gpedit error

hi, using windows server 2008 r2. had install terminal services in & want add 1 user in "allow log on through remote desktop services" user can take remote access. not allowing mi add user..... while adding user getting following errors. this setting not compatible computers running windows 2000 service pack 1 or earlier. apply group policy objects contains settings computers running later version of operating system. if using windows 2008 why error occured? the add user & group options disable. can tell me how should enable policy can add users in policy. thank you, hi, the message not error, it's warning. >>the add user & group options disable. based on title notice configured policy in local group policy, correct? if there must group policy pushed in domain. security settings in local policy disabled if security policy pushed domain side. use gpresult /h report.html command check , edit security policy on domain controller t

Active Directory Federation services certificate expiring

hi, we have had adfs deployment in place year , have started certificate warning messages.  i have checked process link in email , seems pretty straight forward, before attempted runt update thought check couple of things out first: manually update trust properties, follow these steps. note: if need support multiple top-level domains, such contoso.com , fabrikam.com, must use the  supportmultipledomain  switch cmdlets. more information, see  support multiple top level domains . open microsoft online services module windows powershell. run  $cred=get-credential . when cmdlet prompts credentials, type office 365 administration account credentials. run  connect-msolservice -credential $cred . cmdlet connects office 365. creating context connects office 365 required before running of additional cmdlets installed tool. run  set-msoladfscontext -computer <ad fs 2.0 primary server> , <ad fs 2.0 primary server> interna

Failed:the provisioned virtual machine could not connect to its primary domain

hello all. have server 2012 hyper-v installed , rds services. trying create collection of pooled or personal virtual machines. both choices give me same error : failed:the provisioned virtual machine not connect primary domain only first virtual machine created error. communication domain fine because tried tests pinging etc, , during setup of collection domain found without issues. the virtual machine acting template has windows 8 installed , "syspreped". open suggestions. thank in advance. i solved problem i'm not sure solved it. think related 2 things: 1) dhcp  2) virtual switches. i had setup sandbox static ips went , setup integrated dhcp server. it's serving ipv6 addresses. i had correct problem virtual switches. did first allow remote desktop service install wizard install first virtual switch. did.. should have virtual switch named rds after wizard. apparently different breed of virtual switch. had create 2 more virtual switches. 1 switch int

Newbie wants to do funky network admin things

i spent easter weekend learning powershell , regular expressions, , began it, thought, hey, can use this! here's want do: 1. query ad computers in ou 2. parse information obtain computer names (using regex hopefully). 3. use resulting list powershell wmi queries against computers in list (-computername) is ambitious newbie?  can point me resources regarding want do? so top half of basic ad query, returns list of directoryentries $colresults... so, foreach de (directoryentry) in colresults array, dig in properties, , grab name... basic view of this.. $colresults | %{write-host $_.properties.name}  you'll see there no cn there , host name. last line of code how you'd use get-wmiobject pull info $osresults = $colresults | % { gwmi win32_operatingsystem -computername $_.properties.name -erroraction silentlycontinue}  foreach (%) object in colresults wmi call (gwmi) win32_operatingsystem each computer (-computername $_.properties.name) , store in $osresults

WINDOWS SERVER 2008 R2 DOES NOT START ANYMORE && CLASSPNP.SYS PROBLEM DURING SAFE MODE START UP

hi, i've serious problem windows server 2008 r2. doesn't boot os , it's return following error:  stop: 0x0000007b (0xfffff880009a9928, 0xffffffffc0000034, 0x0000000000000000, 0x0000000000000000) it stop start of safe mode @ loading of classpnp.sys driver. i've searched on 24 hours i've tried i've found on net there's nothing do. problem persist. could tell me can think resolution of problem? thank you!!! 0x7b indicates disk controller or driver problem. 1 might help. http://blogs.technet.com/b/askcore/archive/2013/08/05/troubleshooting-a-stop-0x7b-in-windows.aspx       regards, dave patrick .... microsoft certified professional microsoft mvp [windows] disclaimer: posting provided "as is" no warranties or guarantees , , confers no rights. Windows Server  > 

Can't access .co.uk sites sometimes

hey guys. were expiriancing small problem @ work. when browsing google.co.uk can't access it. (happens .co.uk sites btw) after 1 hour, able access again. thing our server not expiriancing problem, there must wrong in our network. think dns blame i'm not sure. our network specialist out of country atm me (c# programmer) to find problem. our network contains of following. there 2 adsl lines comming in 2 zyxel routers. both go our zyxel zywall vpn router. goes 1gb switch. on swich our 2 servers , gb switch. switch sends connection rest of our network. i don't know info need, if need more please ask. just 2 cents. hello, the used os version, sp , patch level, is essential can find in forum. without isn't easy. starting see: http://support.microsoft.com/kb/968372 as can be dns related, problem, pleas epost unedited ipconfig /all dc/dns server , problem computer. best regards meinolf weber disclaimer: posting provided "as is" no wa

MSDTC and SQL cluster

msdtc , sql cluster i’m going set first sql fail on cluster 2 nodes , iscsi storage using windows server 2008ee , sql server 2008. i’m not quite sure should msdtc. have install or not? found lot of documents related windows server 2003 nothing related windows server 2008. if have use msdtc how should configure it? could me please? answered in newsgroups, here http://www.microsoft.com/communities/newsgroups/en-us/default.aspx?dg=microsoft.public.windows.server.clustering&cat=en_us_a07f36d5-b4c0-4d51-bb7b-2b4491488855&lang=en&cr=us answer summary (by ryan s): yes, you'll want cluster msdtc purposes of clustered sql.  don't be intimidated because documentation says windows server 2003 or sql 2005 or whatever.  concepts same , haven't changed radically can't set , working properly.  in fact, in windows server 2008, it's considerably easier accomplish. in cluster, right-click services , applications, , choose "configure service or applicat

RemoteFX USB Redirection with AIO printer/scanner

hi guys,   i using dell aio v105 printer scanner, problem cannot use scanner when printer redirected using rdp 7.1 a  windows 7 ultimate sp1 rfx enabled virtual machine( managed hyperv on server 2008r2 sp1). printer works 100% when use "windows fax , scan" scan image error " 0x00000015" operation not completed, device not ready. scanning software can see scanner selected default scanner still not scan. have correct/latest driver installed dell webiste also.i have tried using other scanning applications same result too.   anyone have same issue?   brian     i'm pretty sure scenario not supported.  there nothing ts team did type of scenario work, provided printer redirection.   alan morris windows printing team Windows Server  >  Print/Fax

Removing "User's Files" desktop icon for all users in Windows 2008 R2

hello, i know how remove "user's files" icon desktop users connecting our windows 2008 r2 terminal server. please note not documents icon know can done via gpo setting.  not want disable icons, gpo setting aware of. i've removed control panel , libraries icons using registry hacks there no info on removing last icon. thanks hi,   as issue more related shell api, suggest initiate new thread in 1 of msdn forum better , accurate answer question. community members , support professionals there more familiar coding , can in more efficient way.   user interface development windows http://social.msdn.microsoft.com/forums/en-us/windowsuidevelopment/threads   for information, have included simiar thread reference.   http://social.answers.microsoft.com/forums/en-us/w7files/thread/f829c097-4703-469e-b7b0-77324c9bd6e6   sincerely, wilson jia this posting provided "as is" no warranties, , confers no rights. please remember click “mar

Task Manager vs Resource Monitor

Image
good morning, here messed 1 me - why task manager reports receiving 33 mbps when resource monitor reports none ? : cheers ps: there bug when copy / paste image in text box apparently :) hi, the issue "multicast" traffic. picked task manager not resource monitor. resource monitor shows "multicast" traffic if 'server' treating it. it fine taskmgr shows multicast traffic part of hitting interface. not normal there not seem option in resource monitor see traffic hits interface 'dumped' it easy enough reproduce believe. setup 2 servers nlb in multicast mode, push traffic nlb ip , check both server in taskmgr , resource monitor. regards Windows Server  >  Windows Server 2012 General

Deploying Multiple Microsoft Certificate Services

hi,  have existing microsoft ca installed in forest.  best way migrate , upgrade 1 server another?  intention move windows server 2003 standard windows server 2003 enterprise enjoy auto-enrollment of both user , machine certificates. can install microsoft ca on windows enterprise new service while exisiting ca on windows standard still running not affect existing users connected existing ca, , once new ca ready, migrate users on new ca before decomissioning old ca? thanks. - gilbert considering recommended approach involves using same server name, running both in parallel not option (more @ http://support.microsoft.com/kb/298138 ) if decide use different host name (in case, can run both servers in parallel), keep in mind factors described in http://technet.microsoft.com/en-us/library/cc742388(ws.10).aspx  (migrate ca new host section) hth marcin Windows Server

Group Policy folder redirection and quotas

hello, company has thought trying centralise security , logins. @ moment have test server , test client i'm having problems regards assigned file quotas. management thought necessary restrict amount of data people can store 1gb of data. have set file quotas in group policy management setting quota limit 1gb , warning level @ 900mb. test such gpo have set them 20kb each small file trigger warning level. however, isn't working. have feeling down folder redirection. i have made folder on server's c: drive entitled "user folders" every single employee able store data in centralised location. these locations linked employee's documents folder. however, when log in client machine, appears location of these folders on c: drive of local client machine, , not on server. there tips or suggestions can try these 2 things work? thanks. hi, please check following articles. assigning profile , disk quotas http://technet.microsoft.com/en-us/library/cc7

Server 2012 Won't Boot after RAID card replacement

Image
i have ibm x3850 running server 2012 node in hyper-v failover cluster. server config: 2 qlogic hbas shared storage  1 lsi serverraid 5015 (mirrored drived attached raid card) roles installed (running gui): failover clustering hyper-v initial problem: lsi serverraid card died current state: lsi serverraid card replace identical card , drives/raid config were immediately recognized. @ point server tried boot windows , stated trying automatic recovery , proceeded boot goes black screen mouse pointer. after short time loads boot manager recovery options. what have tried: 1. recovery command prompt, fails stating no administrator account available (i have never seen before , know there valid local administrator account not named administrator though). plan @ bcd config , run couple of fixboot commands. 2. boot windows disk , go recovery select automatic recovery, said fixing errors on drive , restarted , failed boot (same issue). if has insight great. d

Exchange 2010 Recover Deleted Items Tasks Calendars etc

hi, is there way outlook 2010 user exchange 2010 recover deleted items task, calendars notes etc, see option available mail message folders only. if click on recover deleted items while in mail message folder, allow recover deleted items folders including calendar, tasks, etc. however, can customize ribbon add recover deleted items button folders. http://blogs.appriver.com/blog/bid/91039/recover-deleted-items-for-all-folders-with-microsoft-outlook-2010 has general instructions on doing that. more of outlook thing well, have been better ask in forum instead of windows 2012. Windows Server  >  Windows Server 2012 General

Server 2008 R2 Remote Desktop Issue - Folder Redirection

Image
hi guys, i'm having strange problem here; first time i've posted in these forums please let me know if can clarify or post elsewhere... here's setup: * windows server 2008 r2 - let's call server "server1" * remote desktop services installed , licensed * under file server i've added "windows search" service allow folder indexing. what happens is, have users connect server via remote desktop session (they presented full desktop, use documents / microsoft office etc). using agpm i've configured documents path redirect unc path. path is: \\server1\user_docs$\%username% i've used group policy prevent users seeing c: , d: drives on server. the "user_docs$" share located on d: drive of server. now, redirect works fine - , have complete access directory if browse via start > run > "docs path"... can fine, , read/write data there. can not see d: drive intend, can see unc share on drive, , read/writ

Disk management

Image
hi after expanding lun , allocate server volumn actual size not showing in computer. size showing in disk management screen. hi, would please peform following steps , see if issue can resolved? ================================= 1. open elevated command prompt , start diskpart 2. list volumes of server running command.    diskpart> list volume 3. select volume has wrong file system size. x id of effected volume.    diskpart> select volume [x] 4.  extend file system    diskpart> extend filesystem for detailed steps, please see: http://blog.mrpol.nl/2013/08/16/after-partition-extend-file-system-displays-wrong-disk-size-in-windows/ please remember click “mark answer” on post helps you, , click “unmark answer” if marked post not answer question. can beneficial other community members reading thread. Windows Server  > 

Windows 10 Floods Network During Hard Lock

greetings, i'm running rather unexpected issue. windows 10 insider preview (build 10074) being tested gaming pc. part of test, utilizing steam's in-home streaming feature stream games machine laptop. transmitting data wired wireless. build of windows 10, have started running issues system locks up. when lock occurs, both of monitors on windows 10 machine act if no longer receiving information gpu. lock up, although inconvenience, produces more serious issue. windows 10 machine apparently flooding network traffic while it's in locked state. no systems on network capable of communicating each other. communication can occur individual machine directly router. impacts wired , wireless nodes. the first time occurred, did not relate windows 10 machine. instead, thought fault router. after being able replicate problem on multiple occasions, put wireshark on 1 of machines on network , decided monitor traffic. while windows 10 machine locked , ethernet cable unpl

W2008R2 trial period lasts 10 days instead of 60!?

according to  http://support.microsoft.com/kb/948472, can install windows server 2008 60-day evaluation period.  then, when period expires, can extend twice total of 180 days. this sounded perfect short-term project have.  installed w2008 10 days ago -- , today informed me evaluation period had expired!  furthermore when extended slmgr.vbs -rearm, extended 10 days! what's deal? gary hello gary, the 10 days grace period prior activating, 180 days after activate machine http://support.microsoft.com/default.aspx?scid=kb;en-us;2021579 the reset resets 10 grace period not evaluation period.  behavior windows server 2008 r2 different behavior windows server 2008. thanks, darrell gorter posting provided "as is" no warranties, , confers no rights. vamt - volume activation management tool - download link http://www.microsoft.com/downloads/details.aspx?familyid=ec7156d2-2864-49ee-bfcb-777b898ad582&displaylang=en

Hyper-v: Need a WMI API to get changed blocks given a reference point and a backup checkpoint

windows 10 hyper-v has introduced new backup , restore apis backup , restore virtual machines. presently per documentation backups exported unc path or local folder in hyper-v host.  we interested know whether there wmi api gives list of changed blocks given reference point , backup checkpoint.  if such facility not present there no way directly backup tape devices. hence backup vendors have wmi api lists change blocks given reference point , backup checkpoint.  the list either of form such offset,length or start sector , number of sectors etc.  list in xml form. backup vendors have capacity read blocks vhdx image files.  Windows 10 Insider Preview  >  Windows 10 Insider Preview Feedback

promote this server to a domain controller still appears

hi all, i've change 1 dc 2003 new dc 2012 in forest (i've 4 dc e 3 sites) following these steps: 1 - demote dc 2003 2 - remove dns 2003 role 3 - rename e change ip on server 2003 4 - waiting , verify replica 5 - give same hostname , ip of server 2003 new dc 2012 5 - add role ad directory service , when finished use notification "promote server domain controller" promote member domain controller. 6 - after reboot notification still appears, result dc , work fine. any me? thanks gopi i'dont know why problem solved itself. wonderful. thank all Windows Server  >  Directory Services

Track Changes in Groups

there way track created sharepoint groups or last modify them? atemple, this forums "group policy", feature active directory capable of forcing settings on client computers and users in domain. not sure if know that. as of knowledge, there's no method of tracking sharepoint group changes group policy - nor there in active directory far know. could, turn on ad auditing , track changes made ad groups. sharepoint related question, might want @ 1 of sharepoint forums , see if can answer sharepoint folks on there: http://social.technet.microsoft.com/forums/en-us/category/sharepoint good luck! florian microsoft mvp - group policy -- blog: http://www.frickelsoft.net/blog Windows Server  >  Group Policy

Word document inspection error

Image
i attempting remove metadata before sending document outside office. run document inspection , half of inspections cannot completed successfully. in fact, message "this inspection cannot completed." suggestions? hi, how many documents affected? try create new document, see if problem still occur. try choose document properties , personal information when run inspection, see if problem still occur. max meng technet community support Microsoft Office  >  Word IT Pro Discussions

AD Auditing Logs

dear all, i'm using windows server 2008 r2. i've enabled following 2 policies of default domain controllers gpo. audit account management   audit directory service access but doesn't generate ad related logs in event viewer if changed in ad mmc. i've connfigured sacl on domain root. please 1 me sort this. thanks , regards, bharath s.   audit account management:     this security setting determines whether audit each event of account management on computer. examples of account management events include: a user account or group created, changed, or deleted. a user account renamed, disabled, or enabled. a password set or changed. if define policy setting, can specify whether audit successes, audit failures, or not audit event type @ all. success audits generate audit entry when account management event succeeds. failure audits generate audit entry when account management event fails. set value to  no auditing , in the pr

Adding Active Directory Domain Services role fails

hello everyone, i trying install active directory domain services role on server 2012 r2 vm it's failing no reason failure. shows red x feature installation. i've browsed through event viewer don't see messages related failure. i've reimaged vm , started scratch seeing same failure after reimage. before reimaged, tried installing role through powershell , seemed work. stumped why won't work through server manager gui. any appreciated. thanks! sorry couldn't provide screenshot earlier because account wasn't verified. i ended getting resolved. found forum https://www.windows-noob.com/forums/topic/13344-add-rolesfeatures-through-wizard-always-fails/ after removing kb3098779 update, installation completed. i'll have try updating .net 4.6.1. thanks help! Windows Server  > 

Creating CNAME in DNS results in adding subdomain

hi, we testing subdomains specific application concluded not going use way intended. have strange dns behaviour, did in same sequence: 1. created subdomain under our tld: application.domain.local cname (same parent) pointing application server.  2. created subapplication in subdomain: sub.application.domain.local. everything working fine there issue san names of certificate. did rollback 3. deleted application subdomain , created cname in tld domain.local what happened then, still don't understand. recreates subdomain instead of creating cname expected !! after waiting while sure replication finished. now i'm stuck subdomain won't normal cname anymore. anybody idea ? kind regards, rené hi, we testing subdomains specific application concluded not going use way intended. have strange dns behaviour, did in same sequence: 1. created subdomain under our tld: application.domain.local cname (same parent) pointing application server.  2. create

Scope of Group Policy according to group membership

hello, here description of problem (in ad 2008 r2 environment): - create gpo (enabling : computer configuration/policies/windows settings/security settings/local policies/security options/"interactive logon: require smartcard") - when add domain group "authenticated users" in scope/security filetring : have expected behaviour (for users) right after runing "gpupdate /force" on local computer - if add "mygroup" (a global security group - containing "myuser" member) instead : don't have expected behaviour "myuser" (after runing "gpupdate /force" on local computer, or after more 90 minutes , restarting computer) p.s. : tried both settings : enforced , non enforced, , link order before or after default domain policy can me please ? thanks ! howdie! am 02.04.2010 13:38, schrieb slikevin: > - create gpo (enabling : computer > configuration/policies/windows settings/security settings/local > pol

DNS SOA Settings

windows 2008 r2 i have 60 locations integrated dns, dns servers located on domain controllers. servers connected on highly available wan. i'm wondering think soa refresh, retry, expire , ttl settings should , if there way change server soa settings @ once or if have on each , every dns server , configure each zone i ndividually ? thank you. hello, if have no specific reason change, suggest leave default is. also, if dns ad integrated, once change made replicated other dns servers. isaac oben mcitp:ea, mcse,mcc view mcp certifications Windows Server  >  Network Infrastructure Servers

iis for Server 2003 will not download

Image
i trying mirror 1 of our servers upgrade 2008.  roles on server @ moment print services , file services.  trying put on application server role iis. tried add components through control panal through administrative tools.  application server console , iis manager along 2 asp .net frameworks (v1.1 , v2.0.5).  gets download screen , starts setup.  prompted insert windows server 2003 disc cannot find iisback.vbs file needs.   thankyou help. hi,   for iis issues, please discuss them in our iis forum. best resource troubleshoot issue.   http://forums.iis.net/   tim quan Windows Server  >  Windows Server General Forum

Event logs Error upon Opening - The specified Channel could not be found. Check channel configuration (15007)

currently experiencing problem 1 of our server 2008 sp1 boxes (not r2) when opening setup eventlog through event viewer error of "event viewer cannot open event log or custom view.  verify event log service running.  the specified channel not found.  check channel configuration (15007)" this same error presented other logs (ie event logs associated task manager).  when checking properties of log, log path cannot enter , lists not available cannot pointed assocaited evtx file.  the evtx files can still opened manually fine.  logs unable cleared.   has seen behavour before?    anyone? Windows Server  >  Windows Server General Forum

Policy ayarı

arkadaÅŸlar merhabalar, arkadaÅŸlar sizlerin yardımlarına ihtiyacım var bana yardımcı olursanız çok çok mutlu olurum :) sorun ÅŸu ; medware adında bir programımız var direk server üzerinden çalışıyor ( server 2008 r2 kullanıyoruz ) , tüm pc ler etki alanına dahil tabiki yetkiler kısıtlı denetim masası - kullanıcılar - kullanıcı hesabının denetimi ayarını 3. seviyede çalıştırmak istiyorum ( zaman uyarın bir altında ki ) bu mümkün oluyor fakat , medware programını açarken yönetici olarak çalıştırmamız lazım bizden yönetici olarak çalıştırmamızı istiyor ve yönetici olmadıqımız için sefil kullanıcılar programa giriÅŸ yapamıyorum , yani nasıl bi policy yazmalıyım ki kullanıcı denetimi medware programımıza takılmasın onu hangi kullanıcı olursa olsun sefilde olsa yönetici gibi çalıştırsın ne yapmam gerekiyor acil yardımlarınızı bekliyorumm , kendinize iyi bakın muratcan yİĞİt    hi muratcan, thanks posting in microsoft technet forums. since forum in english language, suggest

Virtual Directory for NDES server missing on IIS

i installed ndes server on windows 2008 r2 enterprise server. able connect website via url http://<severname>certsrv/mscep , http://<servername>certsrv/mscep_admin . can successfuly issue certs following urls also. but if in iis managment console unable view certsrv directory if logged on enterprise admin. know how make directories appea? the way have been able make certsrv directory viewable install webenrollment service also. i dont need webenrollment service need enable https on directories. does know might going on? run 'certutil -vroot' command create virtual roots Windows Server  >  Security

Moving the cluster to another network segment

hi there, we need move our 2 cluster nodes new network segment. cluster physical nics gets new ip address , network address , network mark. virtual ips need new ip addresses. what recommended process changing ip addresses? should disable cluster resources , cluster service after restart in new network segment cluster not start incorrect ips? any knows what's correct process this? thanks hi, here correct steps (as confirmed ms support) 1.     take cluster resources offline a.     in failover cluster management, right click each of 4 resources , select take service or application offline b.     wait resources being offline.   2.     shut down cluster service on both nodes a.     in failover cluster management, right click cluster node , select more actions . click on shutdown cluster. b.     wait cluster services being shut down.   3.     shut down windows on both physical nodes 4.     physically move cluster , storage new data center

AD Replication Issue

hi, we have total of 3 dc's @ our head office, 3 dc's in each of our state offices , 2 rodc's in our international remote offices. we experiencing issue replication. have our main dc bridgehead in our head office, replicating fine our rodc's , 1 of our state offices (qld dc) however, reason other 2 state offices replicating (qld dc) , not head office in melbourne. try manually specify connections overriden. any object created on syd dc (problem dc) isn't being replicated anywhere... can start troubleshooting. far know there isn't network issue across of our site links... i thought in topology star configuration best, each dc replicating , our main office (besides rodc's replicating from). regards, terry terry http://www.sucked-in.com terry, start http://technet.microsoft.com/en-us/library/cc731170.aspx  and http://technet.microsoft.com/en-us/library/cc755349(ws.10).aspx   let know find out... hth marcin

Event ID 4662 Audit Failure Direcory Service Access

hi, can give me suggestion should avoid kind on errors? i'v done dc migration 2003r2 2008r2. everyting seems working witout problems. don't want disable direcory service access auditing want find out what's going on , why that? i'm seeing similar erros user accounts too, don't want @ moment fill first post errors regarding users.. later.. an operation performed on object. subject :             security id: kopli\laptop-006$             account name: laptop-006$             account domain: kopli             logon id: 0x20de7a object:            object server: ds            object type: computer            object name: cn=laptop-006,ou=laptop saf w7,dc=contoso,dc=com            handle id: 0x0 operation:            operation type: object access            accesses: write property            access mask: 0x20 properties: --- {e48d0154-bcf8-11d1-8702-00c04fb96050} {f3a64788-5306-11d1-a9c5-0000f80367c1} {bf967a86-0de6-11d0

Workstation not able to ping one server but able to ping other at same site.

hi all, i have 2 servers( windows 2003 sp2 standard) at same site. the workstation(windows xp sp3) able ping to 1 server , viceversa. can acess shares. if try ping other server,it gives request timed out. not sure what's issue. user requires access share on server. not sure do? suggestions: hello, given workstation able reach other computers in same subnet server in question, can assume problem server, not workstation. have tried connecting other way, ie server workstation? also, server have local firewall, should try disabling in order verify there not local firewall issue causing connection fail. happen regardless of workstations ability connect other computers. best of luck :) Windows Server  >  Windows Server General Forum

Windows 2008 R2 DFS - How to specify root servers?

i understand dfs works in clients use dhcp subnet's determine server access first when using low-cost methods.  however, since functionality requires use of ms dhcp (which don't use), have clients randomly accessing servers either in building or on our vpn can slow. so, question is, how can tell clients on subnet target server , use others servers if 1 becomes available? everything seems working great now!  i'm not impressed dfs whole due lack of gui (or command-line) can see is, or isn't happening, in real-time on each server or whole.  perhaps create better product compete there isn't , working. for looking forum in future resolution, here results: basically, had created 3 servers throughout our worldwide vpn act dfs servers.  while "working" problem clients seemed slow @ random times.  because active directory site seen default site.  created sites in sites & services ad tools each actual site, moved dc(s) site relevant site created

ADAM Service on this Server

i new company.  i have found server running adam service , curious on how can determine if using adam service on server.  as no longer using server you check inbound connection on adam ports (default 50000/50001) via netstat. thanks, brian please remember click “mark answer” on post helps you, , click “unmark answer” if marked post not answer question. can beneficial other community members reading thread. Windows Server  >  Directory Services

No "Compatibility View" Options

i'm working on setting gpo push out compatibility view settings ie. in group policy editor there no "compatibility view" settings. i'm looking in administrative templates > windows components > internet explorer under both user , computer settings. i'm working windows 7 machine, i've tried working server 2008r2 machine well. ideas? dave hi david bell2, according description, set gpo push out compatibility view settings ie. right? for information, please refer following article learn how add web site compatibility view list via gpo: how add web site compatibility view list via gpo http://blogs.msdn.com/b/asiatech/archive/2013/10/23/how-to-add-web-site-to-compatibility-view-list-via-gpo.aspx if have other question, please let free let know. regards, lany zhang Windows Server  > 

Windows 2012 R2 VPN Log file format.

i've found log files on vpn server.  i'd parse them , pull data out of them.  exported them excel unlike dhcp server, log file doesn't have format (or header).  know of reference log file format?  files in folder called logfiles on vpn server, can't remember off top of head, , names of form inyymmdd, in 2 letters , n, , yymm year , month of log file entries contained within. didn't think hard find file format, i've been looking couple of hours.  found ias format, it's not same format.  thanks. spud hi spud, about issues, there no official documents describe format of vpn log file. you refer vpn configuration meaning of value. best regards john Windows Server  >  Windows Server 2012 General

Track Changes/Mark up on by default

hello,   i pushed out office 2003 pro 80 or machines , out of 80 machines, 1 user opens word , every time starts mark view on.   there anyway turn off perminatly.  every time try reopen documents (any document) , starts again. can disable through registry or something, pretty annoying.   thank you. hi, to rid of tracked changes , comments, need accept or reject changes , delete comments. here's how: on view menu, point toolbars , , click reviewing . on reviewing toolbar, click show , , make sure check mark appears next each of following items: comments ink annotations (word 2003 only) insertions , deletions formatting reviewers (point reviewers , make sure all reviewers selected.) if check mark not appear next item, click item select it. on reviewing toolbar, click next advance 1 revision or comment next. on reviewing toolbar, click accept change or reject change/delete comment each revision or comment. repeat steps 3 , 4 until revis