Posts

Showing posts from July, 2012

windows server 2012 re-installation error

i trying install windows 2012 server on vmware test rdc/tdc & cdc trusts. i had failed in creating shortcut trust.so revert snapshot fresh os rdc/cdc/tdc , clinet machine , try re-install & configure said domains.rdc/cdc ok while trying install tdc, getting cryptograhic error , dns delegation error.and tdc not install , existing cdc/rdc functionality fails. how resolve this. regards balki  hi balki, according description, suppose issue related tdc, not os. >> i had failed in creating shortcut trust.so revert snapshot fresh os rdc/cdc/tdc i'm not sure if reverting vmware snapshot make fresh, may consult vmware see if there potential issues. if possible, build new vm test. best regards, leo please remember mark replies answers if , unmark them if provide no help. if have feedback technet subscriber support, contact tnmff@microsoft.com . Windows Server ...

When will Windows Management Framework 3.0 be available in WSUS

hi folks, need install windows management framework 3.0 on bunch of servers (windows 2008 r2.) can't see yet option in wsus update list. know when windows management framework 3.0, powershell 3.0 , win rm available in wsus update catalog? regards andrew does know when windows management framework 3.0, powershell 3.0 , win rm available in wsus update catalog? nope. lawrence garvin, m.s., mcitp:ea, mcdba, mcsa solarwinds head geek microsoft mvp - software distribution (2005-2012) mvp profile: http://mvp.support.microsoft.com/profile/lawrence.garvin Windows Server  >  WSUS

Shared Folder Activity Windows 2003

hi gurus, have file server  shared folders , users read, write , modify files on it. i want monitor log activity on shared folder. is audit policy right thing this? thank inputs :) every second counts..make use of it. hi, if mean monitor access on shared folder, audit correct option. apply or modify auditing policy settings local file or folder http://technet.microsoft.com/en-us/library/cc771070(ws.10).aspx advanced security auditing faq http://technet.microsoft.com/en-us/library/ff182311(ws.10).aspx technet subscriber support in forum |if have feedback on our support, please contact tnmff@microsoft.com. Windows Server  >  File Services and Storage

Diskpart ONLINE DISK operation doesn't work properly.

hi, to online san disk( disk# 2 hpeva lun) using diskpart have followed the steps mentioned below.   c:\>diskpart microsoft diskpart version 6.0.6001 copyright (c) 1999-2007 microsoft corporation. on computer: oigtwin20 diskpart> select disk 2 disk 2 selected disk. diskpart> online disk diskpart onlined selected disk. diskpart> exit leaving diskpart...   after these steps statusof disk (in disk management console)  is changed "offline" "not intialized" . i tried format disk using  ioctl " ioctl_disk_create_disk" gets failed error " the media write protected. " fyi from disk manangment console disk initiazile option disk disabled @ point.   things(ioctl_disk_create_disk) work fine  if changed the status of disk form "offline" "online" using disk management console.   is there command need fire in case of online using diskpart or bug fix?   thanks in advance prashant ...

Leaking DNS Records on Windows 2008 R2

Image
we using windows 2003 & 2008r2 environment. our dc, dfs, dns, print server , other business app servers on 2008 r2. many times dns server leak records in results particular service goes down , retrieve records on dns server need access server , run ipconfig /flushdns , registerdns commands respectively. seeking advice amyn zariwala infrastructure administrator hi, thank post. you mean dns server static dns record deleted many times? mean "those records"? please try track dns records deletion follow articles below: http://blogs.technet.com/b/networking/archive/2011/08/17/tracking-dns-record-deletion.aspx http://social.technet.microsoft.com/forums/en/winserverds/thread/832497f6-91d8-4ce4-af74-1cde6e9fc776 if there more inquiries on issue, please feel free let know.   regards rick tan technet community support Windows Server ...

ADCS Policy Web Service - Access was denied by the remote endpoint. 0x803d0005 (-2143485947)

 hi there fellow colleagues, facing problem adcs policy web service on windows server 2008 r2 enterprise (sp1). • hotfix installed http://support.microsoft.com/default.aspx?scid=kb;en-us;2545850 • application pool identity: applicationpoolidentity (also tested custom service account) • testing local machine , machine • ca , cep on same system • getting kerberos ticket service , can see successful logon event user. • kerberos authentication working - directly calling url 403.14 (directory listing denied) logon method negotiate the following message shown in certificate services client - certifi cate enrollment policy server the remote endpoint not process request. 0x803d000f (-2143485937) the following ws-errors in webservices analytic log •wscall api failed 0x803d0005 •error occurred: 0x0 - there error communicating endpoint @ 'https://cep.example.com/adpolicyprovider_cep_kerberos/service.svc/cep'. •error occurred: 0x0 - server returned http status ...

Ping to local domain works but ping to server name dont work from local network PC

Image
hi i have done fresh install of windows server 2012 r2 , installed essentials experience role it. my problem cannot ping server name pc in local network. can ping local domain name (domain.local). when try ping local domain in server, resolutes ok , gives server ipv4 ip when ping server name in server, gives me ipv6 ip ::1: understand ipv6 loopback ip. dont know if has pinging problem pc. i had earlier same server configuration , earlier server gives ipv4 ip when server name pinged server itself. how pc ping server name use http://servername/connect?? thanks in advance! hi, have set firewall allow incoming icmp echo messages ? by default, windows firewall not allow incoming icmp echo messages, , therefore computer cannot send icmp echo reply in response. you may refer article below check if worked: nobody can ping computer http://technet.microsoft.com/en-us/library/cc749323(ws.10).aspx in addition, please provide output of ipconfig /all on each s...

return DHCP Option 60 to the client

hi guys, as part of aruba access point dhcp deployment seems need return option 60 client. honest, doesn´t make sense me, because it´s static value "arubaap". anyway... can give ma hint how configure on ms windows dhcp? also check out: https://community.arubanetworks.com/t5/wireless-access/aps-not-finding-controller-dhcp-option-43/m-p/271243/highlight/false#m62182 thanks guys... hi  check 1 "configuring dhcp remote boot services " (add for option 60) https://msdn.microsoft.com/en-us/library/dd128762%28v=winembedded.51%29.aspx?f=255&mspperror=-2147217396 this posting provided no warranties or guarantees,and confers no rights. best regards burak uğur Windows Server  >  IPAM, DHCP, DNS ...

Cannot access 2003 trusted domain.

i have 2 windows 2003 servers forest trust relationship between domains. while trying add user trusted domain trusting domain accessing trusting domain, "the server not operational" message. have ideas how fix this? make sure that: 1) have cross forest dns name resolution - 1 way accomplish query srv records other domain server on 2) relevant ports open between both ad environments hth marcin Windows Server  >  Directory Services

win 2012r2 as ntp server

hi,i setting win2012r2 ntp server. i followed post: https://social.technet.microsoft.com/forums/windowsserver/en-us/959d0bbe-96fa-4a07-a555-860596a5b1f5/windows-server-2012-as-a-ntp-server?forum=winserver8setup and https://www.interfacett.com/blogs/creating-standalone-ntp-server-windows/ and have following: ntpserver (local) dllname: c:\windows\system32\w32time.dll (local) enabled: 1 (local) inputprovider: 0 (local) allownonstandardmodecombinations: 1 (local) vmictimeprovider (local) dllname: c:\windows\system32\vmictimeprovider.dll (local) enabled: 0 (local) inputprovider: 1 (local) i edited registry vmictimeprovider remains 0 anyone has idea on this? server not dc has adds enabled. disabled firewall. restarted server , works.... Windows Server  >  ...

I get an error from Cluster IP Address won't come back online

i using failover clustering , service won't come because it's reporting following in event log: the cluster service failed bring clustered service or application 'cluster group' online or offline. 1 or more resources may in failed state. may impact availability of clustered service or application. and cluster resource 'cluster ip address' in clustered service or application 'cluster group' failed. checked nics on nodes 'cluster network' uses , show status , operational , yet bringing resource fails.  on same subnet , plugged same physical switch even.  suggestions on locate problem appreciated. yes, still should not happen, in such cases need further troubleshoot the ip address should not bound nic if ipaddress resource not on line on node. while describing known workaround, op should still find out causing , fix it. rgds, edwin. Windows Server ...

The account is not authorized to login from this station windows XP/W7 Clients on 2008 R2 domain

Image
windows server 2008 r2 exchange server 2010 sp1 - patched. clients mix of xp pro sp3 , w7 pro sp1 patched the server has been working pretty 14 months. recently clients intermittent problems either @ login: "the account not authorized login station windows" or network drives disappear randomly , re-appear randomly. a server reboot seems fix temporarily. i have swapped out switch, reset router, disabled more advanced av bits , reverted windows firewall, can see no errors in event log pertaining kind of issue. note there have been issues when attempting connect windows 2000 server 2008 server! can suggest next step? ben schneider hi, node type "peer-peer", more appropriately called "point-point", problem on small lans.  means mycomputer requires wins server resolve names.  no wins server means no name resolution, no access shared resources, , dreaded "name not found" error (among various symptoms). ...

Login failed for user 'NT AUTHORITY\NETWORK SERVICE'. Reason: Failed to open the explicitly specified database 'SUSDB'

hello, attempting build new wsus server , after rebooting receiving following message , wsus server stops: login failed user 'nt authority\network service'. reason: failed open explicitly specified database 'susdb' i see past artricles issue not have kb3148812 installed , have kb3159706 installed.  any ideas appreciated.  please disregard...  i able service started again following steps: manual steps open elevated command prompt window, , run following command (case sensitive, assume “c” system volume): "c:\program files\update services\tools\wsusutil.exe" postinstall /servicing activate  http activation  under  .net framework 4.5 features (via powershell) import-module servermanager add-windowsfeature net-wcf-http-activation45 get-windowsfeature net-wcf* display name name install state ------------ ---- ------------- [x] wcf services net-wcf-services45 installed [x] http activation net-wcf-http-activat....

Service hung- mail alert

is there anyway find out service hung status. since service shows as running though hung at backend. however, able find script service status(stopped , started) unable find source find , automate service hung status. required suggestion. hi, script mentioned in below link might helpful. check hung or stopped services: https://gallery.technet.microsoft.com/scriptcenter/check-for-hung-or-stopped-67bc718d best regards, eve wang please remember mark replies answers if , unmark them if provide no help. if have feedback technet support, contact tnmff@microsoft.com. Windows Server  >  Windows Server 2012 General

Does PowerShell_ISE 3.0 CTP2 support Register-EngineEvent?

i have job saves current command history when type 'exit' powershell session. works under standard powershell console , powershell_ise v2.0. no longer works under powershell_ise v3.0... register-engineevent -sourceidentifier powershell.exiting -action { get-history -count $maximumhistorycount | export-clixml "$env:userprofile\$((get-process -id $pid).starttime.tostring('yyyymmdd-hhmm'))-$pid.xml" } | out-null is there changed , missed in documentation? --greg sadly, not bug... i've complained how works , im told that’s how is. cant safely use , expect to catch types of exits.   if in habit of doing exit, i'd suggest making quit function handles you, , @ least have exit event call quit, way cover couple basis..     justin rich http://jrich523.wordpress.com powershell v3 guide (technet) please remember mark replies answers if , unmark them if provide no help. ...

Importing Settings from a Report

hello, does ayone know if there way of importing settings report taken gpo have report of? so while ago created report contained settings no need. gpo long gone can see report , teh xml file settings dont exist must have been put in extension required... does know how can done? if can appreciated. many thanks james hello, i have found there settings puts in registry found machine had settings exported them out , used gpp :) many thanks james Windows Server  >  Group Policy

How to block access to Intranet Site from workstation logged in via RDP?

here issue here. have users make vpn connection , rdp office workstations. once remote in office workstations, can work if in office. want prevent them accessing intranet site if they rdp workstation remotely. if in office , logged in locally a console session, allowed access intranet site. there anyway can achieve this? intranet site hosted on windows 2008 server , clients win7.  domain environment. is vpn solution through external firewall or internal service? is scripting vpn login available? script disallow domain access local servers host file sharing/intranet sites/your discretion. set-aduser http://technet.microsoft.com/en-us/library/ee617215.aspx example: set-aduser -identity % username% -logonworkstations "officeworkstation" (to limit access workstation while vpned in.) on vpn disconnect: set-aduser -identity % username% -logonworkstations null (to allow access computers while user in office, null should default...

Spooler Service is stopping automatically

hello all, i facing printer issue on our printer server, know becasue of faulty printer driver, could please let me know how find faulty print driver details. regards shyam hendre mcp, mcts in application log server 2008 r2 , server 2012 http://social.technet.microsoft.com/forums/en-us/winserverprint/thread/c6cb3204-81fb-4c5d-81a1-375a6551fc80 alan morris windows printing team Windows Server  >  Print/Fax

What is the difference between replication of Sysvol and NTDS.dit database

hi, what difference between sysvol replication , ntds.dit replication?  assume sysvol uses frs/dfs replicate gp, logon scripts etc between dc's , can see ntds replication occurs per pre-defined schedule (through sites , services) use dfs/frs services? for example, if update user object on dc holding pdc emulator role - 1 - update ntds.dit file gets replicated other dc's per schedule? 2 - if so, if change not visible in gal, default period before gets updated?  link in ntds replication? 3 - exchange cached mode users, rather forcing gal update , downloading oab outlook, default period occur automatically , how can change this? if update gpo or introduce script, i'm assuming replicated sysvol using frs/dfs? i appreciate guidance! :-) thanks all 1. ntds.dit database dosen't replicated, in fact ntds.dit database unique on each dc. information stored/updated within database replicates (some information dose not replicate however) using metadata i...

Network Administrator

windows server 2012 not booting desktop after login password i added remote desktop roles , after restarting server system, login password , shows blank screen , can see mouse cursor entire screen blank. how see desktop screen or revert normal because cannot see desktop screen again. thank you. hi, have configure rdsh role , restart server properly? suspect drivers not installed properly. may boot last known configuration. if not help, try restore system. in addition, providing thread link can try suggested steps. cannot boot windows 2008 server std 64bit after rebooting if issue persists, please let know exact wording of error message received. hope helps! thanks, dharmesh Windows Server  >  Remote Desktop Services (Terminal Services) ...

Can I boot my PC through a "Bootable ISO image" stored on my Local hard drive ?

can boot pc through "bootable iso image" stored on local hard drive? need not burn cd/dvd bootable media. just in vmware machine, acronics bootable iso image stored on local hard drive. selecting option "connect/disconnect cd/dvd device of virtual machine -> connect iso image on local disc, when boot machine, system automatically load acronics. need not insert bootable media pc. is possible technique implemented in non-virtualized environment without installing additionla software ? copy bootable iso image local machine , needful settings in cmos setup or anywhere applicable. i working system test enginer. can't take change load other 3rd party software make work on test system. want know possible. using windows 2008 r2 standard sp1 & windows 7 professional sp1 os. thanks. hi,  if want boot "bootable iso image" file without burning cd/dvd, need use third-party tools or "mount" iso file virtual drive.  more de...

How to Use Windows 8.1 and 10 Together

hello , recent install windows 10 preview , (and previous windows 8.1) , after install windows 10 preview first time after restart pc i  option select windows want open   8.1 or 10 , 2nd restart don't more , it's directly load windows 10 , how select option windows want load ? thanks , sufian khan , bangladesh hello , recent install windows 10 preview , (and previous windows 8.1) , after install windows 10 preview first time after restart pc i  option select windows want open   8.1 or 10 , 2nd restart don't more , it's directly load windows 10 , how select option windows want load ? thanks , sufian khan , bangladesh did shut machine down , cold boot? should return selection screen. not see if hibernated os. bill Windows 10 Insider Preview  >  ...

Storange Server 2008 R2: use group other than "Domain Users"

we have nas powered windows storage server 2008 r2.  the dashboard easy use , happy it. however, thing set go after "domain users" group on our ad.  being small lab on large campus, inconvenient.  is there way go in setting someplace , change group of "domain users" other group?  we have group in our ad specific our lab use instead of "domain users." however, able continue use dashboard.  we show list of users in our lab instead of "domain users." please advise.  thank you!! hi. could explain mean go after "domain users"? is home build or purchased solution? please remember click “mark answer” on post helps you, , click “unmark answer” if marked post not answer question. if not author of thread can others voting helpful. can beneficial other community members reading thread. oscar virot Windows Server ...

We are using Windows 2003 R2 server. I keep getting Map Network drive popup errors during workstation bootup

we using windows 2003 r2 server. keep getting map network drive popup errors during workstation bootup. error message on workstations run xp, vista , 7. here things have tried or looked into: 1.  thought correct have enter ip address of server in preferred dns server entry under network connections - tcpip properties, on workstations. when tried this, workstation not connect internet when booted up. 2. also, server not have dedicated ip address under network connections - tcpip properties. setting says 'obtain ip address automatically'. server has same ip address though, think 192.168.0.120, after re-booting server. 3. have linksys rv082 router. looked @ range of ip addresses on router , seen our 2003 server , workstations fall within range. server need have lowest ip address in network workstations (and printers) having higher number? 4. have not tried maybe need delete network drive mappings on each pc, re-boot pc, map network drives ag...

GPP file copy not working.

i haven't got error messages i'm trying basic copy user's home drive. created gpp file policy following settings: - source  \\server1\mail signatures\word\* - destination \\server2\users\%username%\office\startup - checked supress errors on individual file actions - item-level targeting, set security group users use gpo. i run group policy modeling , shows policy being used action doesn't happen.  applied gpos, , componenet status, group policy files successful. any ideas i've done wrong??? running windows 2008 r2 and testing on terminal server sessions 2008 r2, , windows 7 pro client chris %username% not variable recognized gpp. use %logonuser% instead. (use f3 , choose list or write down mentioned). " never panic before reboot ! " Windows Server  >  ...

Account Getting locked out frequently

the user reset password last week , since has been locked out daily. has no smart phones or authenticating system or email. has rebooted computer several times. first thing aside eventvwr since tells me nothing. james please download "microsoft account lockout tools" http://www.microsoft.com/download/en/details.aspx?displaylang=en&id=18465 and try figure out on dc user locked out using " lockoutstatus.exe".  then can use " eventcombmt.exe " check event logs on dc causes problem (which server/workstation). maybe service running on user or workstation not logged off ? edit: may wish read article tools also http://technet.microsoft.com/en-us/library/cc738772(ws.10).aspx regards, krzysztof ---- visit blog @ http://kpytko.wordpress.com Windows Server  >  ...

Event log 36887

i receive following event..... a fatal alert received remote endpoint. tls protocol defined fatal alert code 42. cannot find information on this. have insight? thank you hi, did there run iis on server? error message indicates computer received ssl fatal alert message server. may caused accessing web site or the installation of third party web browsers or others. did remember specific operation had been done before issue occurred? examples, install third-party application or others? please refer following thread , check if can you. event id: 36887 source: schannel, error: following fatal alert received: 0. in addition, please refer following kb , enable schannel event logging, check if more clues. how enable schannel event logging in iis if update, please feel free let me know. hope helps. best regards, justin gu please remember mark replies answers if , unmark them if provide no help. if have feedback technet support, contact tnmff@microsoft.com. ...

How do I safely change the service account used on the WSUS server?

we've had change our service accounts used @ our facility due staff migrations. wondering safest method of changing service account on wsus server? we've had change our service accounts used @ our facility due staff migrations. wondering safest method of changing service account on wsus server? there no service accounts can changed on wsus server. the update services service runs in context of network service account. the bits service runs in context of local system account. the windows internal database service runs in context of network service account. the world wide web publishing service runs in context of the local system account. the windows update service runs in context of local system account. none of services can run under other accounts. lawrence garvin, m.s., mcitp:ea, mcdba, mcsa principal/cto, onsite technology solutions, houston, texas microsoft mvp - software distribution (2005-2011) mvp profile: http://mvp.support.microsoft.com/profi...

Memory limitations of 32 bit apps on 64 bit Terminal Server 2008 Standard

we have 32 bit line of business application on 32 bit server 2008 standard installation being used multiple users via remoteapps. overcome memory limits of 32 bits moving 64 bit server 24gb of memory. when each user running 32 bit program separate instance of program exe shows in taskmanager each user. combined memory usage of instances of 1 program exe subject memory limits of 32 bit program or limitation amount of memory available 64 bit os? put way, if program uses 100 mb/instance possible run 100 instances of 32 bit program combined memory usage of 10 gb? guess program limited available memory of server i'd hate find out hard way i'm wrong. in advance. sorry bad. scalability of 64bit great that. allow @ least twice amount of application threads running under 64bit os 32bit. 32bit apps work in wow64 , compared 32bit system each instance receives instead of 2gb like in 32bit os receives 4gb virtual address space http://msdn.microsoft.com/en-us/library/aa384219(v...

Can ping a server by fqdn but not by host.

hello team, we have server can connect using \\ or rdp using fqdn not host name. earlier used work not. can please provide basic checks start see might problem kits remove public ip address form dns , add internal dns setting ip address meinolf suggest.refer below link dc/member server/client dns setting recommendation. -->> dns configuration on domain controller: ------------------------------------------ 1. each dc / dns server points private ip address primary dns server , other internal/remote dns servers secondary dns in tcp/ip property. 2. each dc has 1 ip address , 1 network adapter enabled (disable unused nics). 3. if multiple nics (enabled , disabled) present on server, make sure active nic should on top in nic binding. 4. contact isp , valid dns ips them , add in forwarders, not set public dns server in tcp/ip setting of dc. -->> dns configuration on clients , member servers: ----------------------------------- 1. each workstatio...

Got about 800 of these errors in a row - WARNING: Failed to evaluate Installed rule, updateId = {}.1, hr = 8004100E

wsus getting stuck on 1 patch (outlook social connector). however, have these 8004100e on working/updated wsus i'm not sure problem is. 2011-10-02 08:48:44:719 1160 1f78 agent ********* 2011-10-02 08:48:44:719 1160 1f78 agent   * online = yes; ignore download priority = no 2011-10-02 08:48:44:719 1160 1f78 agent   * criteria = "isinstalled=0 , deploymentaction='installation' or ispresent=1 , deploymentaction='uninstallation' or isinstalled=1 , deploymentaction='installation' , rebootrequired=1 or isinstalled=0 , deploymentaction='uninstallation' , rebootrequired=1" 2011-10-02 08:48:44:719 1160 1f78 agent   * serviceid = {3da21691-e39d-4da6-8a4b-b43877bcb1b7} managed 2011-10-02 08:48:44:719 1160 1f78 agent   * search scope = {machine} 2011-10-02 08:48:44:797 1160 1f78 setup checking agent selfup...

Certificate revocation check from external network - Fails

i having issue non-domain client computer connecting remote desktop web apps. upon connecting receive error message: " a revocation check not performed certificate " issue similar posting: http://social.technet.microsoft.com/forums/en-us/winserversecurity/thread/91c05025-f18a-4839-973f-42fceaf66a77/ non-domain computer has root ca installed. crl distribution points follows: [1]crl distribution point      distribution point name:           full name:                url=ldap:///cn=chaseit-win2k8r2dc-ca,cn=win2k8r2dc,cn=cdp,cn=public%20key%20services,cn=services,cn=configuration,dc=chaseit,dc=local?certificaterevocationlist?base?objectclass=crldistributionpoint                url=http://win2k8r2dc.chaseit.local/external/chaseit-win2k8r2dc-ca.crl can see have traditional ldap location first, have http location. upon using certutil -url certification.cer gives: (null). ideas? thanks, c > once again root ca installed in root store of non-domain machine. ...

Message (error?) while demoting domain controller using DCPROMO

hi we have 2008 domain controller tried demote using dcpromo last night. server no longer pdc fsmo roles were  transferred new server , has been running little more week. i logged on account has schema-, domain- & enterprise-admins permissions set. during active directory domain services installation wizard, on delete domain window, did not select delete domain because server last domain controller in domain option. later in same wizard on remove dns delegations window, ensured option delete dns delegations pointing server. may prompted additional credentials delete delegation was selected. i did authenticate when prompted , clicked the finish button. process took while , completed following message (error?): " dcpromo unable remove dns delegations parent zone: .. because not have permissions so, or because zone hosted server not run windows. should delete dns delegations in parent zone domain. so, contact administrator responsi...

Updates

i have tried update computer  windows updates nothing works update 4% , thats how can updates update? takes computer 2 hours shut down , when start configures 35%. , goes on boot up. have gone windows updates , tried everything. hi kathy, i suggest use windows update troubleshooter see if can resolve issue. you can use tool on windows server operating systems, since example, windows server 2008 r2 server equivalent of windows 7. more information you: description of windows update troubleshooter http://support.microsoft.com/kb/2714434 best regards, amy Windows Server  >  Security

Windows Server 2008 Audit Failure Event 4625

hello have many of events, 10 per seconds , 15 minutes. an account failed log on. subject: security id: system account name: win-ml7a3vskkvu$ account domain: workgroup logon id: 0x3e7 logon type: 8 account logon failed: security id: null sid account name: root account domain: failure information: failure reason: unknown user name or bad password. status: 0xc000006d sub status: 0xc0000064 process information: caller process id: 0x444 caller process name: c:\windows\system32\svchost.exe network information: workstation name: win-ml7a3vskkvu source network address: - source port: - detailed authentication information: logon process: advapi authentication package: microsoft_authentication_package_v1_0 transited services: - package name (ntlm only): - key length: 0 i'm try identify source of problem, have checked services didn't find strange, compared running services other severs , same. thing hav...

Images becoming corrupt through shared areas

hello, i'm experiencing strange problem images become corrupt when accessing shared area server. file server (w2k12) on *.*.2.0/24 subnet , on int.domain.co.uk domain (child) other server (w2k12) accessing shared folder on *.*.1.0/24 subnet , on domain.co.uk domain (parent) i have set permissions can access shared folder other server, , files far seem corrupted image files. can still 'view' them, images distorted. jpeg images become discolored , skewed bmp images have can described 'dead pixels' gif images become skewed this first time i've ever seen this, appreciated :d many thanks, chris  hello, wasn't happening on same domain, between child , parent domains. rebuilt domain single domain now, , i'm not having problems. think it's issue way had set (both domains , subnets on same host) might give go setting 2 hosts, individual domains on them ... Window...

Last logon active directory

best, i want see last logon of users in our ad (win2k8). im such noob in scripting etc. found script on here do? want have script lets see username, last logon time , has saved .csv file or it. users in ad in different user ou's possible them @ once? the users settled in icl-ips (local) > zicl ip hd > ipt > users below ou 7/8  containers users. can pls thank you, regards, kevin ps. script found $user = $args[0] $domain = $args[1]   $domain = $domain.tolower()   #suppress errors dc's have computer accounts not connected domain $erroractionpreference = [system.management.automation.actionpreference]::silentlycontinue $warningpreference = [system.management.automation.actionpreference]::silentlycontinue   switch($domain) {     domain1 {$dom = "icl-ips.com"} }   connect-qadservice -service $dom   get-qadcomputer -computerrole domaincontroller -activity "compiling...

nslookup returns wrong adapter

i asked question , i'm puzzled. two servers, replication partners for vmware.  both have 2 adapters configured, 1 172.x.x.x address , 1 10.x.x.x address. (the 10.x.x.x adapters not cabled)  replication failing @ 6 pm work after tech manually ran , continue regularly scheduled throughout night. doing nslookup 1 server other server returns 172 address , 10 address.  co-worker said when failed, nslookup returned 10. address. is possibly because both adapters set dynamically update dns?  replaced 2003 ad dc's 2008 dc's.  2008 dns work little differently 2003 did?  there random bind order changes if dns lookup?  thanks clarifying not domain controllers. when first said "replication," assumed meant dcs. fyi, if servers not dcs, don't have rras or dns installed, can safely disable registration in nic don't want register. can delete forward , reverse entries in dns. you'll want set binding order of interfaces 1 wan...

Windows 8 / IE11 forget proxy settings applied by GPO on reboot

i've run out of ideas here on may causing this. i've toyed policies quite often, never ran problem before. windows 8 ie11. while there gpo's active on system, settings kept free alter user if need be. use proxy, i'm required provide proxy , exceptions in policy pc's make sure work under normal conditions. added couple of settings in gpp (group policy preferences) correct settings, enabled these settings (green lines) , tested these on test system. work fine, proxy settings pushed through. then rollout on systems affected (not many, 10 accounts total, in nearby rooms). can run gpupdate /force reload settings, , can confirm proxy settings applied properly. policy seems sound on workplaces needs active on. users still have option change proxy settings on own discretion, that's want happen. now run problem when part of these pc's rebooted, pc somehow seems decide proxy isn't worth time anymore, , kills settings proxy default. either that, o...

One specific redirected folder not working for a user

hello everyone, one of our users experiencing issue in of redirected folders (and roaming profile, suppose that's forum) cannot accessed, while others can.  when logs in, has access items on desktop, cannot whatever reason access them.  user, of others, has directory @ \\[profileserver]\usv\[username]\, , profile mapped windows 7-specific additions available @ \\[profileserver]\usv\[username]\.v2 (presume paths relative user's main directory herein). the 1 folder i'm aware user can access of \desktop.  \my documents inaccessible, reason. i've made sure user owner of main profile folder , sub-folders, , tried throwing full control on subfolders make sure.  system still doesn't allow access documents, telling me access denied.  else might overlooking? hi, as specific user cannot access files in documents folder, seems permission issue. specific folder <a href="file://\\profileserver\usv\\documents">\\profileserver\usv\<username...

Queries on Print Queue.

how know whether printer\print queue installed locally on system or connected print server. after upgrade print driver in print server particular queue name, clients receives upgrade drivers or use existing print queue drivers process prints. how list print queues installed client systems, there script help. ravi ch hi ravi, in devices , printers, printers installed locally labelled name only, installed through server connection labelled "printername on servername". if upgrade driver on print server clients pull down updated driver server.  this happens next time perform print task. to list print queues installed on client system remotely use powershell command below. if printers installed locally on client servername field blank.  if printer installed through server connection servername field reflect name of print server.  this 1 line command fashioned script read in list of client names, cycle through list , output results each.  alte...

RDP session is refused by TMG

Image
we access azure host(public) through tmg. 1. source subnet ok; 2. all outbound enabled. 3. azure host ip address correct. 4. installed tmg client application on laptop. 5. when try access azure host ip address, error message present. 6. based on above information, captured netmon trace on laptop , found clue. there can let know why connection refused by tmg? thanks.  16 10:18:39 9/3/2015 8.8922839 mstsc.exe client tmg tcp tcp:flags=......s., srcport=56750, dstport=1745, payloadlen=0, seq=2367321505, ack=0, win=8192 ( negotiating scale factor 0x8 ) = 8192 {tcp:5, ipv4:4} 17 10:18:39 9/3/2015 8.8933019 mstsc.exe tmg client tcp tcp:flags=...a..s., srcport=1745, dstport=56750, payloadlen=0, seq=1323644357, ack=2367321506, win=8192 ( negotiated scale factor 0x8 ) = 2097152 {tcp:5, ipv4:4} 18 10:18:39 9/3/2015 8.8935506 mstsc.exe client tmg tcp tcp:flags=...a...., srcport=56750, dstport=1745, payloadlen=0, seq=2367321506, ack=132...