Posts

Showing posts from June, 2012

Renew Machine Certificate for VPN clients

is possible remote user connect vpn after machine certificate expired. if renewal not possble after expiery, how request , renew machine certificate vpn user in remote location? no longer able connect vpn unless login corporate network , new certificate. mahesh hi mahesh, no can't login. anyway exact type of vpn have? one workaround allow user vpn in on alternative vpn access, e.g. temporary password or otp, , force autoenrollment. good luck! lutz Windows Server  >  Security

Seeing client time drift within domain

i manage network of 700 pos win xp machines, located across state.  these machines joined domain, 2 dc's located @ corporate hq.   this domain child domain of our production, corporate domain.   i know default, client machines sync time dc holds pdc emulator role, , have set this. recently, have been noticing multiple pos terminals seeing time drift. 8, 10, 13 minutes off.  what cause of this? thanks in advance! sb hello, for time sync in domain please see http://msmvps.com/blogs/mweber/archive/2010/06/27/time-configuration-in-a-windows-domain.aspx  it not pdcemulator clients sync with, available dc in domain, 1 used during authentication process chosen dclocator process. the pdcemulator time source domain, correct , should configured if possible external time source. please post output client , both dcs domain problems: w32tm /query /source  best regards meinolf weber mvp, mcp, mcts microsoft mvp - directory services my blog : http://msmvps.

Group Policy Event Error 1085

hi there, windows failed apply group policy registry settings. group policy registry settings might have own log file. please click on "more information" link. error: code 2147942403 errordescription the system cannot find path specified. dcname \\xxxxxxxxxxxxxxxxxxxxx extensionname group policy registry extensionid {b087be9d-ed37-454f-af9c-04291e351182} i have gone onto reespective dc check history , extensionid not exist kind regards, mao hello mao, it id of group policy preferences registry client side extension. please enable tracing gpp registry cse , see why extension fails. http://blogs.technet.com/b/askds/archive/2008/07/18/enabling-group-policy-preferences-debug-logging-using-the-rsat.aspx mvp group policy - mythen, insiderinfos und troubleshooting zum thema gpos: let's go, use gpo!

multiline command parsing

what's explanation keeps [system.enum]::getvalues([` system.serviceprocess.servicecontrollerstatus` ]) from parsing same as [system.enum]::getvalues(` [system.serviceprocess.servicecontrollerstatus]` ) in second example not actualy need escape newlines. ;) re: why ps not understand first one: guess need have complete tokens e.g.: g` wmi won't work either - backtick not cure linebreak. same with: [system.enum]:` :getvalues( while: [system.enum]::` getvalues( works. can use tokenizer see parts can't broken linebreaks , glued backtick: [management.automation.psparser] :: tokenize ( '[system.enum]::getvalues([microsoft.powershell.executionpolicy])' , [ref] $null ) Windows Server  >  Windows PowerShell

The server is using another port or another Secure Socket Layer Setting.

hello,  i install wsus & choose use internal database in windows server 2008 r2 & also configure on port 8530 & custom website in iis 7.0 when wanna try connect server  i recieve message: the server using port or secure socket layer setting. please help, shokoufeh hi, pls try connect wsus on local server manager see whether ok. if wsus newly-built,pls confirm whether wsus functioning, whether wid,wsus,iis installed or not. pls using port 8530 if port 80 used.don't use other not recommended port.if persists,uninstall wsus, , reinstall wsus scratch under step-by-step user guide in technet library. best regards, clarence please remember click “mark answer” on post helps you, , click “unmark answer” if marked post not answer question. can beneficial other community members reading thread. Windows Server  > 

RPC Server is unavailable

while remotely log on member server domain user, got following error message, system cannot log on due following error rpc server unavailable. dc: windows 2003 64 bit std; member server: windows 2003 32 bit std i tried following different methods , method1: reboot member server; method2: member server removed domain , again added under domain; method3: flush dns using command: ipconfig /flushdns above steps solved issue temporarily. after few days, same issue occurred again. it great help, me solve issue. advance thanks.   hello tam315, can please check if kb article helpful? the system cannot log on due following error: rpc server unavailable http://support.microsoft.com/kb/555839 thanks , regards scorpio_milo mcts: windows vista | exchange server 2007 mcitp: enterprise support technician mcitp: server & enterprise administrator microsoft infrastructure consultant enterprise service: solution architect microsoft storage team - file cabinet blo

Word 2010: Shortcut for short VBA script

hi all. i'd automate vba script have in word 2010. i've been given short vba script lock numbering in document (so other users cannot change numbering in lists). method use carry out code is: press alt+f11 activate visual basic editor. press ctrl+g activate immediate window. type or copy/paste following line: activedocument.convertnumberstotext is there way automate process single keyboard shortcut? possibly via macro? tried record macro carry out above tasks, met unexpected results. clicked 'record macro,' carried out above steps usual, clicked 'stop recording.' numbering did not end locked. or perhaps can save vba code word documents can access it, assign keyboard shortcut? thanks in advance. bear me i've never used visual basic before. to create macro, click alt-f8 open macros dialog. type 'locknumbers' name box, click create. when vbe opens, paste in: activedocument.convertnumberstotext (the destination selected) press alt-f11

Change word to Html in windows2008r2 Word.Application.SaveAs() show error

Image
hi all i change word html in windows2008 ok ,but publish windows2008r2 can't run.the word.application.saveas() show error. who encountered problem please ? thanks lot hi, according description, issue more word developer related. in order answer effectively, recommended post new thread in microsoft word developer forum further discussion. http://social.msdn.microsoft.com/forums/en/worddev/threads the reason why recommend posting appropriately qualified pool of respondents, , other partners read forums regularly can either share knowledge or learn interaction us. note: helpful provide word version , simple code in thread.  best regards. william zhou technet community support Microsoft Office  >  Word IT Pro Discussions

how to relocate Pagefile.sys to another drive letter

i have sql 2008 r2 , sharepoint 2010 installed on separate server having low disk space issue related windows 2008r2. i can see pagefiles.sys causing this. best option move pagefile.sys drive letter. can please let me? 1. there risks involve, if want move pagefiles.sys c driver letter? 2. how can relocate pagefile.sys from c drive driver? i have found technet link, saying memory dump file, instead of pagefile.sys. are these same? http://technet.microsoft.com/en-us/library/ee424384(ws.10,printer).aspx i know expert, please tell me simplest , easiest step-by-step.   i not think there risk associated this, need reboot server afterwards. 1. right click computer | choose properties 2. click advanced system settings 3. performance tab | click settings 4. advanced settings tab | virtual memory | click change 5. uncheck automaticaly manage page file 6. clicking on disk allow set paging file want i recommend have page file on c drive in size @ least 500mb sho

GUI to delete a printer

hello, having trouble this.  trying display list of printers , delete them using winforms.  failing. appreciated. [system.reflection.assembly]::loadwithpartialname("system.windows.forms") function remove-printer($printobject, [string]$printerpath) { $dp = $printobject | where-object { $_.deviceid -match $printerpath} $dp.psbase.delete() } $winform = new-object windows.forms.form $winform.text = "delete printer" $winform.size = new-object drawing.size(400,150) $deletebutton = new-object windows.forms.button $deletebutton.location = new-object drawing.size(220,10) $deletebutton.text = "delete" $winform.controls.add($deletebutton) $listbox = new-object windows.forms.listbox $listbox.location = new-object drawing.size(10,10) $listbox.size = new-object drawing.size(200,100) $winform.controls.add($listbox) $printers = (get-wmiobject -class win32_printer) $printersfile = $printers | ft name -hidetableheaders remove-item c:\_tmp\prin

Powershell get variable from vb.net textbox

hello guys, link shows how call ps vb.net (http://blogs.msdn.com/b/zainnab/archive/2008/07/26/calling-a-powershell-script-from-your-net-code.aspx) how run powershell script , data vb.net textbox? for example: vb.net has textbox called "name". and if call powershell script vb.net data textbox called name, , data use powershell script. thanks, help. every second counts..make use of it. disclaimer: posting provided no warranties or guarantees , confers no rights. it stuff quick bytes vbscript cannot call vb.net.  not same thing vbscript has no textboxes. you can use vb interactive powershell. add-type -assemblyname microsoft.visualbasic [microsoft.visualbasic.interaction]::inputbox('enter secret message') \_(ツ)_/ Windows Server  >  Windows PowerShell

would windows 2003 supports .net framework 4

hi, i wanted upgrade windows server 2000 windows server 2003. upgrading website using asp.net 4. wanted know whether . net 4 framework supported windows 2003 server? thanks n regards, tenny mathew hello, see here supported os version .net 4 framework: http://www.microsoft.com/downloads/details.aspx?familyid=9cfb2d51-5ff4-4491-b0e5-b386f32c0992&displaylang=en best regards meinolf weber disclaimer: posting provided "as is" no warranties or guarantees , , confers no rights. Windows Server  >  Migration

Client is unable to perform scan with error WARNING: GetConfig failure, error=0x80244022, soap client error = 10, soap error code = 0, HTTP status code = 503

i've browsed forum (and net) extensively i'll include things attempted not receive suggestions mentioned in other posts.  i'm attempting switch clients separate wsus environment integrated environment of sccm 2012 , wsus.  new wsus server server 2008 r2.  wsus website on port 8530.  after removing group policies clients , enabling software updates feature of sccm clients clients reporting in windowsupdate.log file following items pt++++++++++++++++++++++ pt:synchronizing server updates +++++++++++++++++++ pt +serviceid={ guid }, server url=http:// fqdnofnewwsusserver :8530/clientwebservice/client.asmx ptwarning:getconfig failure, error=0x80244022, soap client error = 10, soap error code = 0, http status code = 503 ptwarning:pterror: 0x80244022 ptwarning:getconfig_withrecovery failed: 0x80244022 ptwarning:refreshconfig failed: 0x80244022 ptwarning:refreshptstate failed: 0x80244022 ptwarning:sync of updates: 0x80244022 ptwarning:syncserverupdatesintern

HyperV 2012 Core - External Virtual Switch Not Working

Image
setup new hyperv 2012 core installation on dell r720.  when setup first 'external' virtual switch, virtual host nic creates gets 169.xxx ip address , none of guest vms can access internet.  worked fine in test environment i'm frustrated trying figure out changed. i tried verify nic driver or extended network settings etc since apparently can't use device manager anymore have no idea how check/update beyond vague references 'do in powershell'. any ideas?  i tried assigning secondary nic external switch instead of sharing primary , still no luck.  arg! looks same issues (w/out resolution) here: http://social.technet.microsoft.com/forums/en-us/winserverhyperv/thread/cd2a11b2-90e9-4861-a7cf-34f4aba7c425 i love silly ones.  :) frustration , matter of mistaken network adapters. though in own defense, if ms had better management tools in place, i'm betting (the 3 people had troubleshooting, including hyperv consultant missed - assumed more complex i

Failover Cluster Creation Issue.

    i trying create 2 node failover cluster using windows 2008 (64 bit) sp1. i've 2 dell poweredge 2950 when run validation tool validates (both nodes) successfully. but, when start creating cluster , run validation tool  (part of cluster creation) fails @ following level. validate scsi-3 persistent reservation  and error is:-   "failed read drive layout of cluster disk 0 node i<node name>, status 21 cluster disk 0 not support persistent reservation" i have hp eva 8000 , 2 luns presented these nodes. i using fibre channel attached storage. fibre channel cards made qlogic kindly help. thanks dear mr.elden kindly ignore it, symantec endpoint creating issue. :-) Windows Server  >  High Availability (Clustering)

Server Installing

hello everyone, i need install crm server 2016 on windows server 2012. want know hardware requirement , vendor , server edition should use. should use hardware? please show me right way.                                           thank you,                                            aungkoko. hi, here's list of hardware requirements: https://technet.microsoft.com/en-us/library/hh699840.aspx the general system requirements described here: https://technet.microsoft.com/en-us/library/hh699831.aspx check in section for more information on page. kind regards, matthijs Windows Server  >  Windows Server 2012 General

How to get lost login date and time logs of a user in Domain/active directory for last 6 years?

how lost login date , time logs of user in domain/active directory last 6 years? you cannot until , unless save security events in event viewer  still can use lastlogontimestamp attribute find out when user logged on last time http://msdn.microsoft.com/en-us/library/windows/desktop/ms676824(v=vs.85).aspx http://www.arabitpro.com Windows Server  >  Windows Server General Forum

Missing 8.3 GB free space on Windows 2003 SP2 server

hello, i have been investigating loss of free space on windows 2003 sp2 server. here's i've found far: c:\>fsutil fsinfo ntfsinfo c: ntfs volume serial number :       0x7e0009d700099775 version :                         3.1 number sectors :                  0x0000000002800a68 total clusters :                  0x000000000050014d free clusters  :                  0x000000000023ea00 total reserved :                  0x0000000000213300 bytes per sector  :               512 bytes per cluster :               4096 bytes per filerecord segment    : 1024 clusters per filerecord segment : 0 mft valid data length :           0x0000000002a94000 mft start lcn  :                  0x00000000000c0000 mft2 start lcn :                  0x000000000033bbda mft zone start :                  0x00000000000c2a80 mft zone end   :                  0x00000000000cc820 the "total reserved" clusters coincides amount of disk space missing. however, cannot figu

Become our FIRST Microsoft TechNet Windows Server Guru of 2014!!

Image
happy new year! time fresh start! we're looking first gurus of 2014!! this chance make mark on microsoft developer community. all have add article technet wiki own specialist field. fits 1 of categories listed on submissions page. copy in own blog posts, forum solution, white paper, or had solve own day's work today. drop nifty knowledge, or superb snippets, , become microsoft technology guru of month! this official microsoft technet recognition, people such yourselves can noticed! how win 1) please copy on microsoft technical solutions , revelations technet wiki . 2) add link on wiki competition page (so know you've contributed) 3) every month, highlight contributions, , select "guru of month" in each technology. if win, sing praises in blogs , forums, similar weekly contributor awards . once "on our radar" , making mark, interviewed greatness , , maybe invited other inner technet/msdn circles! winning aw

Ad Authentication issues

Image
hi guy's small issue have here, every 7days domain controllers (server 2008r2) give on me , not authenticate users on domain. when opening aduc following error: "naming information cannot loacted following reason: server not operational if trying connect domain controller running windows 200, verify windows 2000 server service pack 3 or later installed on dc, or use windows 2000 administration tools.  more information connecting dc's running 2000, see , support " when try run dcdiag on faulty server following: "directory server diagnosis performing inital setup: trying find home server... home server = <servername> ldap search capability attribute search failed on server <servername>, return value = 81" the server can ping other dc , can pinged other dc.  can resolve ip name. i have checked numerous site , of issues have seen point 2003 server.  have disabled of av on servers , when have ran dnslint following:

vdi deployment

hi we're implemneting vdi in our environment , have based images now, when deployed images, let 5 vdi client client . got error when log-in domain regarding "trust" error. didn't run sysprep is there way can deploy based images without running traditional sysprep. because when run sysprep  during deployment it's take lot of time is there way can exepdite deployment of vdi  based image? please advise robert hi robert, per research, there 2 preprerequisites using new "remote desktop services installation" type of role installation in windows server 2012: (quoted article) 1.  all rds servers must joined same active directory domain. 2.  before can create vdi collection, template (gold image) virtual machine must sys-prepped. apart this, there 2 types of virtual machine-based deployment; personal & pooled . in pooled virtual desktop collection there 2 types: pooled managed & pooled unmanaged . if have deploy t

Event logs filling up with event IDs 5157, 5152, 5156

what needs adjusted event ids 5157, 5152 , 5156 do not continue flood logs?  hi, what needs adjusted event ids 5157, 5152 , 5156 do not continue flood logs?  to prevent these event ids above being logged, on machine logged, please run these commands below administrator: auditpol /set /subcategory:"filtering platform packet drop" /success: disable /failure: disable auditpol /set /subcategory:"filtering platform connection" /success: disable /failure: disable more information you: audit filtering platform connection https://technet.microsoft.com/en-us/library/dd772749(v=ws.10).aspx the windows filtering platform has blocked bind local port http://blogs.technet.com/b/instan/archive/2009/01/08/the-windows-filtering-platform-has-blocked-a-bind-to-a-local-port.aspx best regards, amy please remember mark replies answers if , un-mark them if provide no help. if have feedback technet subscriber support, contact tnmff@microsoft.com.

WSUS & ADFS(SQL)

i have "event 13042 self-update not working" error. i found following kb http://support.microsoft.com/kb/2000598 , verified selfupdate virtual directory has "anonymous authentication" enabled , "require ssl" disabled. on default website "anonymous authentication" enabled ssl. ssl enabled because adfs 2.0 running on site (it installs on default website changed bindings 444). there way work having ssl on default website (due adfs)? have following: default web site *80(http), *444(https) sbs client deployment connect on *:80(http),sbsconnectcomputer on *.80(http) sbs sharepoint companyweb on *:80(http), *:987(https) sbs web application sites on *:80(http),remote.[domain].com on *:80(http),*:443(https) sharepoint central admin v3 :4721(http) wsus adminstration :8530(http),:8531(https) hi, if enable ssl wsus, can use port 443 or 8531.pls check article secure wsus deployment: http://technet.microsoft.com/en-us/library/cc708550(v

What is the minimum privilege to join client PC to AD Domain?

hi, in ad user groups, group has minimum privilege and can join client pc ad domain?  possible a user that not in group of administrator/enterprise admin still can perform add winxp ad domain?  help. jason   as others have pointed out, default, authenticated user can join computers domain (the number of computers added in manner, limited value of ms-ds-machineaccountquota attribute, set default 10 (more on @ http://support.microsoft.com/kb/243327 ) the recommended approach limit user rights add workstations domain user right assignment (default domain controllers gpo) removing authenticated users , adding designated group of support staff handling computer provisioning tasks hth marcin Windows Server  >  Directory Services

add server 2008 to 2003 domain

i had 7 locations running 2003 ad servers in same forest , domain.  i had upgrade on dc 2008 , not able complete dcpromo. every time try wants me select site.  it says there not site corresponds ip address of computer.  i have dns installed on dc servers , 1 2008 server.  the 2008 server running domain site secondary.  any ideas of  i can do, have searched net not found answer. hi, it seems there 7 different sites in ad , subnet not created , associated site. please configure subnet object , associate site object in active directory sites , services mmc. can promote dc in default/local site , move respective site later. check article (skip routing section, site configuration starts step 25) configuring windows 2008 r2 ad multi site routing , route access configuration lab http://smtpport25.wordpress.com/2010/08/21/configuring-windows-2008-r2-ad-multi-site-with-routing-and-route-access-configuration-for-the-lab/ best regards, abhijit waikar. mcsa | mcsa:messaging

Disk taking long time to come online when 1 node going down

we have 2 node cluster. use vmware esxi virtualization. clustering in 2 virtual machine. when 1 node fails/restarts takes around 10 min cluster disks available on other node. => while  fail over  to passive node application services take ~15 min start on passive node. =>application services needs configured such starts after disks available on other node. mithun dey web: http://cloudmithun.wordpress.com if give necessary resolution please mark answre. you need ensure have followed vmware's best practices clustering.  have limitations on can in regards clustering virtual machines compared can done hyper-v. more information versions fo software running helpful.  , if seeing in cluster event log raises questions. .:|:.:|:. tim Windows Server  >  High Availability (Clust

When using repadmin, a callback message is returned for a non-existent server

hi guys, i've been racking brains on 1 few days now. news works, sticking in craw point of housekeeping. when run repadmin /syncall, following error message: error contacting server 0535b348-c081-44ba-932d-90bb19a958ca._msdcs.wcgworld.com (network error): 1722 (0x6ba):     rpc server unavailable. i recognize hostname referring cname record, investigations, referred server name not exist. i'd able remove record somewhere, can't seem find anywhere in ad (except when comes in error message.) does have ideas? thank you! if think orphan object see metadata cleanup! http://awinish.wordpress.com/2011/05/08/metadata-cleanup-of-a-domain-controller/ regards biswajit biswas my blogs | technetwiki ninja best regards biswajit biswas disclaimer: posting provided "as is" no warranties or guarantees , , confers no rights. mcp 2003,mcsa 2003, mcsa:m 2003, ccna, mcts, enterprise admin

DFS Setup

Image
hi, i'm researching rolling out dfs in our company ha , backup purposes.  all our dc's , member servers minimum 2003 r2 sp2.  i'm wondering if below sounds plan or not? site hq, b , c secondary sites. site , b connected 1gb private link. site , c connected 10 mb internet vpn site has several remote offices connected internet vpn i plan to  amalgamate file servers in site , b 1 file server based in site hq. then setup replication shared folders file server in site b. if file server goes down in either site users able access file server same shares on other site without downtime. i plan setup replication between site , site c/ remote sites. all backing can done site a. plan create 1 namespace format: \\domainname\rootname\siteaname\shared folders \\domainname\rootname\sitebname\shared folders \\domainname\rootname\sitecname\shared folders \\domainname\rootname\remotesitename\shared folders i don't have previous experience of dfs can t

Files and folders sharing over internet behind router firewall and windows firewall issue.

hello all, i have peculiar problem, asked company share files , folders on internet (windows 2003 server). issue facing port 445 not able communicate, seems isp or wan router blocking of ports 139, 445 , on. checked other ports forwarding port 80 using pinhole facility , other ports able forward , results. if use 445 port forward port 80 not able access web site.   it seems isp blocked port 445. checked port scanner , got results 445 filtered. can me causing? is there possibility customize file , folder listening port 445 in windows 2003 server, if yes how please me thanks , regard's, arun thimmappa hello arun, have @ link possible solution http://www.petri.co.il/whats_port_445_in_w2k_xp_2003.htm isaac oben mcitp:ea, mcse Windows Server  >  File Services and Storage

is there a way to set the order or timing of vm's for shutdown ?

i'm running server 2008 r2 hyper-v and have 6 vm servers.  one vm running server 2003 r2 x86, 3 running server 2008 r2 x64 , 1 running server 2008 x86 , 1 running server 2008 x64.  vm's have latest r2 ic's installed. all vm's set shut down on "automatic stop action".  want vm's shutdown when host rebooted.  vm's set restart if running on "automatic start action" boot after host has restarted.  there value called "automatic start delay" allows me sequence machines boot first.  in case, 2 of vm's dc's, boot them first, putting in delay on others dc's running when other vm's boot.  (i have 3rd dc in separate physical box) the problem having when reboot host, vm's attempt shutdown @ same time.  2 vm dc's running 2008 r2 shut down quickly, causing exchange server vm running 2008 hang, 5 minutes, longer. is there way to delay on shutdown like "automatic start delay" on startup?  i'd shutdown exchange

how to check Group policy applied all computers ?

hi, i have applied group policy wallpaper desktop. how check in domain computers applied proberly or not applied. there tool script find out. team leader and second approach, works pulling method, "gpinventory": http://www.microsoft.com/downloads/details.aspx?familyid=1d24563d-cac9-4017-af14-8dd686a96540&displaylang=en it supports command line usage , therefore should adequate query 500 pcs or more... patrick Windows Server  >  Group Policy

Disable Event ID 4373 — Package Installations or Removals

all, most windows 2008 r2 servers having event log "system" node spammed useless event id event id 4373 — package installations or removals - see ms article: http://technet.microsoft.com/en-us/library/cc756293(ws.10).aspx i think extremely dangerous purges lot of useful events.. can comsume system event log.. is there way disable event log showing on windows 2008 r2 servers.... thanks you can check windows 2008 system event log to see if normal ? please. Windows Server  >  Windows Server General Forum

Security Issue, automatically changing account type

Image
after initial installation of windows 10 prompts create account , 1 of options create local account.  this first account becomes administrator , can used access computer.  after updating build 9841 account somehow got linked old hotmail account had been disabled due several failed attempts reset password.  in case not give me access computer.  therefore there should not way administrator account on windows 10 computer linked disabled windows live account. edit: booted wrong drive how got locked out.  the problem current system still stands.  it possible locked out of computer because log in hotmail new location. hi, you meant attached hotmail account local account mistake, forget password, isn't it? if is, there no way access account, if can access system using administrator account, please try test. if not, need reinstall syste, have no way access system without password. roger lu technet community support

Event 4098 Group Policy Printers Strange behavior

so trying deploy printers lab of win7 machines in 2003 domain.  machines in same ou , have same image deployed wds. i having mixed results.  pushing 3 printers, , having 1 being default.  seem default printer has problem installing error in application log. "group policy object did not apply because failed error code '0x80070709 printer name invalid.' error suppressed."   here weird.  have been working on days.  school calls me , had class log lab.  expected 1/3 of lab had default printer show in devices , printers panel.  opened document print , default printer showed up!  huh??   so after playing around found.  printer installed , show if refresh devices , printers or close down , open again?  if gpupdate default printer show up.   any ideas???? hi, can refer following thread. event 4098 group policy printers, printers intermittently don't deploy http://social.technet.microsoft.com/forums/en-us/winservergp/thread/3e413556-5db6-4f26-

Security alert Event ID:4625 Logon type: 3 from IP 89.248.167.x

hi, having lot (thousands) of failed logon attempts daily 6 or 7 ip addresses 89.248.167.x or 58.247.6.x etc. most of source ips appear originate in china or amsterdam , in north america. usernames tried , failed today (these not in our ad): administrator guest rallogon rdssupport t1 administrator aloha bms brink brinkpos celerant celerant01 celerant1 ecwsupport eeepciuser eeeposuser eeeuser ibs ics kayne120 ken kipm mbm mbm2 polling pos pos22 post1 post2 qubica rbms rds rdspos shlomo sysdba example system log (items in<> have changed protect potentially sensitive information): - system    - provider     [ name]  microsoft-windows-security-auditing     [ guid]  {54849625-5478-4994-a5ba-<changed>}     eventid 4625     version 0     level 0     task 12544     opcode 0     keywords 0x8010000000000000    - timecreated     [ systemtime]  2016-01-20t03:36:06.246855200z     eventr

Stupid restored a vmware snapshot for AD 2003 how to resolve

i have done stupid, made snapshot single domain controller , restored it, ad not working anymore. there way resolve this? my environment looks this: root.company.com sub.root.company.com i have 2 domain controllers (1 root , 1 sub). development environment has lot of accounts , references set other services (dev contains 7 other machines in total rely on sub.root.company.com). is there option restore ad? can usn rollback reverted somehow? hopefully not need reinstall entire domain...     need realtime fim synchronization? check out new http://www.traxionsolutions.com/imsequencer supports fim 2010 , omada identity manager real time synchronization! i have blog on how recover on snapshot usage ad. http://blogs.dirteam.com/blogs/paulbergson/archive/2011/01/14/restoring-a-dc-from-a-snapshot.aspx -- paul bergson mvp - directory services mcitp: enterprise administrator mcts, mct, mcse, mcsa, security+, bs csci 2008, vista, 2003, 2000 (early achiever), nt4

Aviso Para Backup diario

hola todos. es una pregunta tal vez muy sencilla. quería saber si es posible mediante windows server 2008 r2 standar enviar un mensaje o pantallazo los usuarios del dominio, para que cierren algunas aplicaciones, ya que utilizo un software de backup automatizado en cada equipo y esto es necesario para que el respaldo sea optimo. y bueno seria muy interesante como administrador, para advertencias sobre labores de mantenimiento. gracias.   prueba con el comando msg.exe está en w2008 lo que no creo es que lo reciban si tienen xps. para estos la única posibilitar es poner en automático el servicio messenger (mensajero), y usar el viejo "net send ..."   guillermo delprato - buenos aires, argentina mvp-mct-mcse-mcsa mcitp: enterprise/server administrator mcts: active directory/network/applications configuration este mensaje se proporciona "como está" sin garantías de ninguna clase. usted asume todos los riesgos.

DHCP Failover Behavior Windows Server 2012

hi all, i've question you: we have implemented dhcp failover load balanced (50%-50%) scope; 2 dhcp server located on different site. in site (different ones below) we have implemented subnet in load balance on dhcp servers. have configured a dhcp relay agent scope send dhcp packet 2 dhcp server (like explained in following link http://technet.microsoft.com/en-us/library/dn338979.aspx the question is: what's happen if lose communication dhcp server issued ip scope in load balance but communication 2 dhcp server works fine (normal status). i think not receive ip address, right? many thanks, davide hi, i got answer , apparently 'other' dhcp server respond client , give ip address if client keeps transmitting. verbatim response below. the second server not own hash client respond when client keeps retransmitting. dhcp server looks @ seconds filed in client message , if value equal or greater 6 seconds, conclude client retransmitting , respond cl

Delegating a user to perform Group Policy Modeling Analyses...

hi all;   as know, can delegate user perform group policy modeling analysis within gpmc nodes (except site node). right?   suppose create delegation user-1 perform group policy modeling analysis on ou. now, user right-clicks on ou in gpmc perform delegated task selects group policy modeling wizard option. after clicking next @ welcome screen, domain controller selection page appears. in page when user clicks on next button error message appears says:   you not have permission perform operation. access denied.   any idea?   thanks hi,   is dc running windows server 2003 sp1? please refer following kb article , check if com security setting configured correctly:   914047   error message if select windows server 2003 service pack 1-based domain controller when use group policy modeling wizard: "access denied" http://support.microsoft.com/default.aspx?scid=kb;en-us;914047   thanks. this posting provided "as is" no warranties, , c