I keep getting the following error when I attempt to install WSUS (with WID) on Server 2012 configured as a domain controller:

"The request to add or remove features on the specified server failed.  The operation cannot be completed, because the server that you specified requires a restart."

I have found a few articles discussing this.  The following service and accounts are the issue:

Service: MSSQL$MICROSOFT##WID 
Domain and account: NT SERVICE\MSSQL$MICROSOFT##WID

The problem that I'm having is that I cannot give the "NT SERVICE\MSSQL$MICROSOFT##WID" user "log on as a service" because it does not exist.

Any help would be greatly appreciated.

-Nick

I have a Dell Tower Windows Server 2012 installation for a client. Our first production venture into WS 2012.  It is the only server on site. It is a PDC, DNS, DHCP, File and Application Server.  RAID 5 across 4 500GB HDs. 32 GB RAM.  Has one 300 GB OS partition and the rest a separate partition for files storage. Users connect back to it as store for Quickbooks company files. The QB Database Manager is running on it.  All QB updates, patches and revisions have been applied. It is backed up by Appassure to a NAS and is the core server.  Otherwise the users (15) access it for obvious Directory Services and a file store from time to time. User profiles are local to their workstations. 

THE ISSUE:

The server will freeze roughly every 30 minutes.  It becomes unresponsive to local access and the end user workstations (not all, everytime > but most of them, most of the time) will go "Not Responding" in most apps they are working with...Quickbooks in particular.  We disabled appassure as it was on a 30 minute schedule, but no help.

Vendor blamed it on the RAID card so we upgraded the RAID card from a PERC H310 (no cache) to an H710 (500MB cache). Updated BIOS and Chipset firmware.  Applied all MS updates. Manually set the page file to minimum 42GB max 52GB.

*Oddly with the page file managed automatically by Windows it would never create a page file larger than 4.5 GB. Also, noticed in event viewer, the DFSR and DFS Namespace services would fail on a regular basis. No clue why either of these services were running.  The DFS role is not installed and there are no other servers on the network to replicate to. I disabled the services with no obvious repercussions, although it did not stop the issue we are having.

We swapped the card this weekend and I put it back in place yesterday. I remoted into the box via RDP within a few hours and it is happening still. 

Any thoughts or help is appreciated.

Hi,

I'm busy setting up a Server 2012 DFS-R solution for a client who has quite a bit of data to be replicated (I haven't done this for many many years :\ )

They have 4 main shares with all their data in

Folder 1 - 2 800 000 files and 650GB

Folder 2 - 350 000 files and 550GB

Folder 3 - 1 300 000 files and 1000GB

Folder 4 - 550 000 fiels and 1200GB

I have supplied them two identical servers for this, would it be better to create a separate Replication Group for each folder or create one Replication Group with 4 Replication Folders?

Will it go quicker to prestage using Windows Server Backup and wait for all the files to compare or just setup the replication, dump the files in the folders and wait out the initial replication?

Transfer speed between the servers is 180MB/s with two NIC's teamed (tested copying some data) but I don't get anything close to that when using DFS-R for the initial sync.

If I do take the prestage route, can I backup and restore one folder at a time?

Thanks in advance :)

Hello everyone,

We just introduced our first two windows server 2012 DCs in our AD and we have an unexpected issue: the group policy editor MMC snapin keeps crashing. This happens on both server in the same location.

We can open the MMC just fine, drill down at all level and select a GPO, OU or forest item in the left pane but as soon as we select a domain item in that left pane, the MMC crashes with the following error:

Problem signature:
  Problem Event Name:APPCRASH
  Application Name:mmc.exe
  Application Version:6.2.9200.16384
  Application Timestamp:50109efd
  Fault Module Name:gpmgmt.dll
  Fault Module Version:6.2.9200.16384
  Fault Module Timestamp:50108e49
  Exception Code:c0000005
  Exception Offset:0000000000154f4f
  OS Version:6.2.9200.2.0.0.272.7
  Locale ID:1033
  Additional Information 1:f5d5
  Additional Information 2:f5d5f2edea5447000260123656b930b4
  Additional Information 3:adbd
  Additional Information 4:adbdb72451b6a101f0fc7e2a70d6f765

It doesn't have a huge impact on our operation since there isn't to many things to be done at the domain level but it's still annoying.

Is anyone experiencing similar issues ? Have you found a fix ?

Thanks

Dear all,

I am having serious issues with AD and DNS. I am unable to open AD administrative center nor DNS snap in. I have copied results from:

1. dcdiag 

2. ipconfig

3. nltest /test:dns

Please see the results down here. Grateful for your help.

Windows IP Configuration

   Host Name . . . . . . . . . . . . : DOMAIN-AD1
   Primary Dns Suffix  . . . . . . . : domain.local
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : domain.local

Ethernet adapter Ethernet 2:

   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Broadcom BCM5709C NetXtreme II GigE (NDIS VBD Client) #38
   Physical Address. . . . . . . . . : 00-10-18-EC-98-94
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv4 Address. . . . . . . . . . . : 10.102.148.3(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.254.0
   Default Gateway . . . . . . . . . : 10.102.148.1
   DNS Servers . . . . . . . . . . . : 10.102.148.3
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{35892B4B-2B34-4F3B-BB90-402FF05A2070}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

---------------------------

dcdiag test
------------


Directory Server Diagnosis 

Performing initial setup: 
   Trying to find home server... 
   Home Server = DOMAIN-AD1 
   * Identified AD Forest. 
   Done gathering initial info. 

Doing initial required tests 
   
   Testing server: Default-First-Site-Name\DOMAIN-AD1 
      Starting test: Connectivity 
         ......................... DOMAIN-AD1 passed test Connectivity 
 
Doing primary tests 
   
   Testing server: Default-First-Site-Name\DOMAIN-AD1 
      Starting test: Advertising 
         ......................... DOMAIN-AD1 passed test Advertising 
      Starting test: FrsEvent 
         There are warning or error events within the last 24 hours after the 
         SYSVOL has been shared.  Failing SYSVOL replication problems may cause 
         Group Policy problems. 
         ......................... DOMAIN-AD1 passed test FrsEvent 
      Starting test: DFSREvent 
         ......................... DOMAIN-AD1 passed test DFSREvent 
      Starting test: SysVolCheck 
         ......................... DOMAIN-AD1 passed test SysVolCheck 
      Starting test: KccEvent 
         ......................... DOMAIN-AD1 passed test KccEvent 
      Starting test: KnowsOfRoleHolders 
         ......................... DOMAIN-AD1 passed test KnowsOfRoleHolders 
      Starting test: MachineAccount 
         ......................... DOMAIN-AD1 passed test MachineAccount 
      Starting test: NCSecDesc 
         ......................... DOMAIN-AD1 passed test NCSecDesc 
      Starting test: NetLogons 
         ......................... DOMAIN-AD1 passed test NetLogons 
      Starting test: ObjectsReplicated 
         ......................... DOMAIN-AD1 passed test ObjectsReplicated 
      Starting test: Replications 
         ......................... DOMAIN-AD1 passed test Replications 
      Starting test: RidManager 
         ......................... DOMAIN-AD1 passed test RidManager 
      Starting test: Services 
         ......................... DOMAIN-AD1 passed test Services 
      Starting test: SystemLog 
         An error event occurred.  EventID: 0x0000041F 
            Time Generated: 02/26/2013   16:47:29 
            Event String: 
            The processing of Group Policy failed. Windows could not resolve the computer name. This could be caused by one of more of the following:   
         An error event occurred.  EventID: 0x0000041F 
            Time Generated: 02/26/2013   16:52:31 
            Event String: 
            The processing of Group Policy failed. Windows could not resolve the computer name. This could be caused by one of more of the following:   
         A warning event occurred.  EventID: 0x000003F6 
            Time Generated: 02/26/2013   16:54:16 
            Event String: 
            Name resolution for the name isatap timed out after none of the configured DNS servers responded. 
         A warning event occurred.  EventID: 0x00001695 
            Time Generated: 02/26/2013   16:54:43 
            Event String: 
            Dynamic registration or deletion of one or more DNS records associated with DNS domain 'domain.local.' failed.  These records are used by other computers to locate this server as a domain controller (if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).    
         A warning event occurred.  EventID: 0x00001695 
            Time Generated: 02/26/2013   16:55:34 
            Event String: 
            Dynamic registration or deletion of one or more DNS records associated with DNS domain 'domain.local.' failed.  These records are used by other computers to locate this server as a domain controller (if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).    
         A warning event occurred.  EventID: 0x00001695 
            Time Generated: 02/26/2013   16:55:36 
            Event String: 
            Dynamic registration or deletion of one or more DNS records associated with DNS domain 'DomainDnsZones.domain.local.' failed.  These records are used by other computers to locate this server as a domain controller (if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).    
         A warning event occurred.  EventID: 0x00001695 
            Time Generated: 02/26/2013   16:55:37 
            Event String: 
            Dynamic registration or deletion of one or more DNS records associated with DNS domain 'ForestDnsZones.domain.local.' failed.  These records are used by other computers to locate this server as a domain controller (if the specified domain is an Active Directory domain) or as an LDAP server (if the specified domain is an application partition).    
         An error event occurred.  EventID: 0x0000041F 
            Time Generated: 02/26/2013   16:57:32 
            Event String: 
            The processing of Group Policy failed. Windows could not resolve the computer name. This could be caused by one of more of the following:   
         An error event occurred.  EventID: 0x0000041F 
            Time Generated: 02/26/2013   17:02:34 
            Event String: 
            The processing of Group Policy failed. Windows could not resolve the computer name. This could be caused by one of more of the following:   
         A warning event occurred.  EventID: 0x0000A000 
            Time Generated: 02/26/2013   17:06:22 
            Event String: 
            The Security System detected an authentication error for the server ldap/DOMAIN-AD1.domain.local. The failure code from authentication protocol Kerberos was "  (0x80080341)". 
         An error event occurred.  EventID: 0x0000041F 
            Time Generated: 02/26/2013   17:07:35 
            Event String: 
            The processing of Group Policy failed. Windows could not resolve the computer name. This could be caused by one of more of the following:   
         An error event occurred.  EventID: 0x0000041F 
            Time Generated: 02/26/2013   17:12:37 
            Event String: 
            The processing of Group Policy failed. Windows could not resolve the computer name. This could be caused by one of more of the following:   
         A warning event occurred.  EventID: 0x0000A000 
            Time Generated: 02/26/2013   17:15:38 
            Event String: 
            The Security System detected an authentication error for the server cifs/DOMAIN-AD1.domain.local. The failure code from authentication protocol Kerberos was "  (0x80080341)". 
         A warning event occurred.  EventID: 0x0000A000 
            Time Generated: 02/26/2013   17:17:37 
            Event String: 
            The Security System detected an authentication error for the server LDAP/DOMAIN-AD1.domain.local/domain.local@DOMAIN.LOCAL. The failure code from authentication protocol Kerberos was "  (0x80080341)". 
         An error event occurred.  EventID: 0x0000041F 
            Time Generated: 02/26/2013   17:17:38 
            Event String: 
            The processing of Group Policy failed. Windows could not resolve the computer name. This could be caused by one of more of the following:   
         An error event occurred.  EventID: 0x0000041F 
            Time Generated: 02/26/2013   17:22:40 
            Event String: 
            The processing of Group Policy failed. Windows could not resolve the computer name. This could be caused by one of more of the following:   
         An error event occurred.  EventID: 0x0000041F 
            Time Generated: 02/26/2013   17:27:41 
            Event String: 
            The processing of Group Policy failed. Windows could not resolve the computer name. This could be caused by one of more of the following:   
         An error event occurred.  EventID: 0xC000001A 
            Time Generated: 02/26/2013   17:28:39 
            Event String: 
            While processing an AS request for target service krbtgt/domain, the account amwa did not have a suitable key for generating a Kerberos ticket (the missing key has an ID of 3). The requested etypes were 18  17 23  24  -135  3. The accounts available etypes were 23  -133  -128  18  17  3  -140. 
         A warning event occurred.  EventID: 0x0000A000 
            Time Generated: 02/26/2013   17:29:49 
            Event String: 
            The Security System detected an authentication error for the server LDAP/DOMAIN-AD1. The failure code from authentication protocol Kerberos was "  (0x80080341)". 
         An error event occurred.  EventID: 0x0000041F 
            Time Generated: 02/26/2013   17:32:43 
            Event String: 
            The processing of Group Policy failed. Windows could not resolve the computer name. This could be caused by one of more of the following:   
         An error event occurred.  EventID: 0x0000041F 
            Time Generated: 02/26/2013   17:37:45 
            Event String: 
            The processing of Group Policy failed. Windows could not resolve the computer name. This could be caused by one of more of the following:   
         A warning event occurred.  EventID: 0x0000A000 
            Time Generated: 02/26/2013   17:39:02 
            Event String: 
            The Security System detected an authentication error for the server DNS/prisoner.iana.org. The failure code from authentication protocol Kerberos was "  (0x80080341)". 
         A warning event occurred.  EventID: 0x0000A000 
            Time Generated: 02/26/2013   17:39:32 
            Event String: 
            The Security System detected an authentication error for the server ldap/DOMAIN-AD1.domain.local/domain.local@DOMAIN.LOCAL. The failure code from authentication protocol Kerberos was "  (0x80080341)". 
         An error event occurred.  EventID: 0xC000001A 
            Time Generated: 02/26/2013   17:40:25 
            Event String: 
            While processing an AS request for target service krbtgt/DOMAIN, the account mofat did not have a suitable key for generating a Kerberos ticket (the missing key has an ID of 3). The requested etypes were 18  17 23  24  -135  3. The accounts available etypes were 23  -133  -128  18  17  3  -140. 
         An error event occurred.  EventID: 0x0000041F 
            Time Generated: 02/26/2013   17:42:46 
            Event String: 
            The processing of Group Policy failed. Windows could not resolve the computer name. This could be caused by one of more of the following:   
         An error event occurred.  EventID: 0xC000001A 
            Time Generated: 02/26/2013   17:44:38 
            Event String: 
            While processing an AS request for target service krbtgt/DOMAIN, the account bmna did not have a suitable key for generating a Kerberos ticket (the missing key has an ID of 3). The requested etypes were 18  17 23  24  -135  3. The accounts available etypes were 23  -133  -128  18  17  3  -140. 
         ......................... DOMAIN-AD1 failed test SystemLog 
      Starting test: VerifyReferences 
         ......................... DOMAIN-AD1 passed test VerifyReferences 
   
   
   Running partition tests on : ForestDnsZones 
      Starting test: CheckSDRefDom 
         ......................... ForestDnsZones passed test CheckSDRefDom 
      Starting test: CrossRefValidation 
         ......................... ForestDnsZones passed test 
         CrossRefValidation 
   
   Running partition tests on : DomainDnsZones 
      Starting test: CheckSDRefDom 
         ......................... DomainDnsZones passed test CheckSDRefDom 
      Starting test: CrossRefValidation 
         ......................... DomainDnsZones passed test 
         CrossRefValidation 
   
   Running partition tests on : Schema 
      Starting test: CheckSDRefDom 
         ......................... Schema passed test CheckSDRefDom 
      Starting test: CrossRefValidation 
         ......................... Schema passed test CrossRefValidation 
   
   Running partition tests on : Configuration 
      Starting test: CheckSDRefDom 
         ......................... Configuration passed test CheckSDRefDom 
      Starting test: CrossRefValidation 
         ......................... Configuration passed test CrossRefValidation 
   
   Running partition tests on : domain 
      Starting test: CheckSDRefDom 
         ......................... domain passed test CheckSDRefDom 
      Starting test: CrossRefValidation 
         ......................... domain passed test CrossRefValidation 
   
   Running enterprise tests on : domain.local 
      Starting test: LocatorCheck 
         ......................... domain.local passed test LocatorCheck 
      Starting test: Intersite 
         ......................... domain.local passed test Intersite 


-------------------------

nltest /test:dns
----------------


Directory Server Diagnosis 

Performing initial setup: 
   Trying to find home server... 
   Home Server = DOMAIN-AD1 
   * Identified AD Forest. 
   Done gathering initial info. 

Doing initial required tests 
   
   Testing server: Default-First-Site-Name\DOMAIN-AD1 
      Starting test: Connectivity 
         The host a5faff4d-b533-410d-bd67-f39184eaa30a._msdcs.domain.local could 
         not be resolved to an IP address. Check the DNS server, DHCP, server 
         name, etc. 
         Got error while checking LDAP and RPC connectivity. Please check your 
         firewall settings. 
         ......................... DOMAIN-AD1 failed test Connectivity 
 
Doing primary tests 
   
   Testing server: Default-First-Site-Name\DOMAIN-AD1 
   
      Starting test: DNS 
          
         DNS Tests are running and not hung. Please wait a few minutes... 
         ......................... DOMAIN-AD1 failed test DNS 
   
   Running partition tests on : ForestDnsZones 
   
   Running partition tests on : DomainDnsZones 
   
   Running partition tests on : Schema 
   
   Running partition tests on : Configuration 
   
   Running partition tests on : domain 
   
   Running enterprise tests on : domain.local 
      Starting test: DNS 
         Test results for domain controllers: 
            
            DC: DOMAIN-AD1.domain.local 
            Domain: domain.local 
             
                  
               TEST: Basic (Basc)
                  Error: No LDAP connectivity
                  Warning: adapter 
                  [00000011] Broadcom BCM5709C NetXtreme II GigE (NDIS VBD Client) 
                  has invalid DNS server: 10.102.148.3 (DOMAIN-AD1) 
                  Error: all DNS servers are invalid 
                  No host records (A or AAAA) were found for this DC 
                  Warning: no DNS RPC connectivity (error or non Microsoft DNS server is running)
         
         Summary of test results for DNS servers used by the above domain 
         controllers: 
          
            DNS server: 10.102.148.3 (DOMAIN-AD1) 
               1 test failure on this DNS server 
               Name resolution is not functional. _ldap._tcp.domain.local. failed on the DNS server 10.102.148.3
               
         Summary of DNS test results: 
         
                                            Auth Basc Forw Del  Dyn  RReg Ext
            _________________________________________________________________
            Domain: domain.local 
               DOMAIN-AD1                       PASS FAIL n/a  n/a  n/a  n/a  n/a  
         
         ......................... domain.local failed test DNS 

hi,

i want to ask how to configure server backup to create several backup copies (for example, I want to keep 3 versions of full backup).

it looks, that i can not configure a backup to network share - it keeps only 1 version.

and, if backup makes incrementioal backup, when it makes a full one? how long time it makes incremential. is there a documentation about this?

My client has a 2003 server with a few hundred gb of use data. I need to migrate this to a server 2012 file server while retaining all the ntfs security and permissions. I tried robocopy but all the security was stripped and the file inherited permissions from the parent folder. What tool can I use to move all their data? Thanks to all who reply.

Hi,

I have a problem with IIS on a 2012 server running OWA. I installed one of our products on the server and tried to create a new website but left the port number as 80 (specified a hostname). Now the OWA admin and web access has stopped working. I've removed the website I created but this has made no difference. Anyone got any ideas on this one as I'm totally stuck as to what to try next? Is there a config file hidden away somewhere which still has my new site settings held?

Thanks in advance.

Mick

Server 2012 Standard,

New install, and we are unable to surf the internet. We can see the entire Lan, we can resolve dns name both locally and internet websites. We have disabled the enhanced security configuration.  Each website just times out doesn't matter were we go. This is a fresh install with nothing configure except for the network.

Any ideas?

Dear experts,

Suddenly, my Windows Server 2012 shutdown by itself. The eventviewer shows:

The process C:\Windows\Explorer.EXE (computername) has initiated the power off of computer <name> on behalf of user <domain\admin> for the following reason: Other (Unplanned)
 Reason Code: 0x5000000
 Shutdown Type: power off
 Comment:

Any suggestion as to where I can check why this happens?

Thank you.

Hi,

I have just got my Windows Server 2012 Enterprise and I want to have an endpoint anti virus for it so I can manage all clients from the server.

I am not interested to go for Microsoft Security Solution.

I checked the market and following solutions available:

1. EST
2. Mcafee
3. Symantec
4. Kaspersky

if you had to choose from above, which one you'll decide?

Thanks,

Jassim

I have two virtualized Windows 2012 domain controllers, DC1 and DC2. DC1 holds all FSMO roles. When I revert DC2 to a snapshot everything works as advertised. The new generation id is detected and active directory syncs new changes to DC2.  However, when I try the same process with DC1, the new generation id is detected, event log shows a warning that the server is the owner of a FSMO role that it does not consider valid, but that error seems to clear and active directory says it is resuming normal operation in the event log. Changes that were made do not sync back to DC1. The test groups I created before reverting DC1 do no sync back over from DC2.  I can see the groups in active directory on DC2, but not on DC1.  repadmin doesn't show any synchronization issues.  All replications are successful.  My question is: Do the new 2012 active directory virtulization snapshot safegaurds work correctly when reverting to a snapshot of a server which holds all FSMO roles?

I did notice that repadmin /showutdvec was showing duplicate entries. DC2 had a  (retired) and 1 "active" However, DC1 had two "active" entries with different USN numbers. I am not sure if that is normal. 

I've got a server running server 2012 enterprise, one internal IP that is a NAT'd to a public IP address.

I've installed the Remote Access Direct Access roles and configured it and it was working. I am not using IPv6 internally, only IPv4. According to the server all services are up and running normally.

On my Windows 8 client - the GPO has been applied, and when connected directly to the LAN, the GET-DAConnectionStatus =ConnectedLocally.

From the DA server, I cannot ping the DNS server address that is resolved in the configuration. fd6f:2e82:f50:3333::1, which is my DA server.

When I put in my actual DNS server of 192.168.100.1 in the configuration, the client goes to connected, but I cannot get to anything still.

I get a DNS error in the Operation Status of the server. I then put the IPv6 address of fd6f:2e82:f50:7777::c0a8:6401 on my DNS server and I can ping it from the client, but nothing else.

I cannot put IPv6 address on all my servers I need access to.

I had this all working correctly before I moved to a different server hardware.

Any ideas?

Hi, what are the workstation requirements to join a pc to the windows server 2012 active directory?

Thanks

Hi, what are the forest and domain functional levels required for windows server 2012 to be a domain controller?

Thanks

Applies to Windows 2012

I have 4 DC, all single NIC, DNS setting should be correct (primary is self referencing, seoncdary others in a round robin).  All machines on the same subnet.

Only one machine (PDC) has a shared sysvol and netlogon folder.

Reading  suggests using adsiedit to do an authoritative restore.

However, I am missing the msdfrs-options parameter in the cy=sysvol subsrciption...

So what to do?

I will try the non authoritative procedure first and see if that works...

Note, dcdiag on the PDC work normally, where DCDIAG on all the other machines pass all tests except advertizing since the two shares are absent.

---

> Kamal

I have 2 brand new HP DL 380 G8 servers running Server 2012 Standard.  They have been operational for about 2-3 months and about 2 weeks ago one of them started to spontaneously and randomly crash.  It has done it 5 times now in the last 2 weeks.  I analyzed the dump file with Debug Tools for Windows, and all 5 crashes are the result of the Microsoft driver vhdmp.sys.  The version of the driver on the crashing server is the same version as the non-crashing server.

I contact HP technical support and we ran all the usual server diags and everything came up clean, so from a hardware perspective there are no apparent issues with the server.  HP told me to find an updated vhdmp.sys driver from Microsoft or contact their tech support about the issue, so that is where I am at.

I searched for any KB updates for Server 2012 regarding this driver and/or known issues, but have come up empty for anything pertaining to Server 2012.  It appears there may have been some issues surrounding this driver as it pertains to running Hyper-V role and/or VSS based backups on Server 2008R2, but again nothing specific on Server 2012.  I run both the Hyper-V role and VSS based backups on this server.  I have since removed the Hyper-V VMs on this machine, but need to continue to run backups.

If anyone has any ideas or suggestions on where to go with this, I would welcome your help!  I am at a loss for ideas at the moment.

Thanks,

Jeff

There is a bug in Task Scheduler for Windows Server 2012 when scheduling per minute.
This bug does not occur in earlier version of Windows. Only 2012.
When scheduling a task like the following, it should run the task every minute in a 24 hour period (when using /SC MINUTE /MO 1...NOTE: /DU 24:00 is not needed because it defaults to 24 hours and does not help if you specify it):
  schtasks.exe /Create /RU "" /SC MINUTE /MO 1 /TN "Testing Per Minute Task" /TR "cmd.exe /C echo Test" /F
However, it simply stops running after a few hours (It is random. It could be 2 hours. It could be 8 hours).
It tried it on several 2012 servers, and some stopped (meaning no longer starts each minute) around 6 hours, but the time it stops varies by quite a bit and 6 hours is only an example.
It may start running again several hours after that so it does not permanently stop.
When it no longer starts each minute, it will show the next run time to be the next minute from the current time, but does not actually start.
This is the XML related to the trigger of the schedule task (it is using TimeTrigger):
                       <Triggers>
                         <TimeTrigger>
                           <Repetition>
                             <Interval>PT1M</Interval>
                             <StopAtDurationEnd>false</StopAtDurationEnd>
                           </Repetition>
                           <StartBoundary>2013-02-24T19:07:00</StartBoundary>
                           <Enabled>true</Enabled>
                         </TimeTrigger>
                       </Triggers>
An easy way to repro the issue is to append to a file every minute for a few days and see when it stop writing to the file.
Example:
  schtasks.exe /Create /RU "" /SC MINUTE /MO 1 /TN "Testing Per Minute Task" /TR "c:\windows\system32\cmd.exe /v:on /C echo !date! !time! >>c:\testschtasks.txt" /F

A workaround is to schedule it a different way, but still runs every minute.
Scheduling it like this works where it runs every minute in a 24 hour period (using /SC DAILY /RI 1 /DU 24:00):
  schtasks.exe /Create /RU "" /SC DAILY /RI 1 /DU 24:00 /TN "Testing Per Minute Task" /TR "cmd.exe /C echo Test" /F
This is the XML related to the trigger of the scheduled task where it works (it is using CalendarTrigger):
                       <Triggers>
                         <CalendarTrigger>
                           <Repetition>
                             <Interval>PT1M</Interval>
                             <Duration>PT24H0M</Duration>
                             <StopAtDurationEnd>false</StopAtDurationEnd>
                           </Repetition>
                           <StartBoundary>2013-02-24T20:54:00</StartBoundary>
                           <Enabled>true</Enabled>
                           <ScheduleByDay>
                             <DaysInterval>1</DaysInterval>
                           </ScheduleByDay>
                         </CalendarTrigger>
                       </Triggers>

The workaround works for me, but could someone report the bug?

I am setting up direct access on Windows 2012 as in the document "Deploy a Singe Remote Access Server with Advance Settings". The server has two adapters, on one on the perimeter network and one on the internal network. After setting up a Windows 7 client on our internal network and verifying that the group policy had been applied, I tried connecting from an external network. After the client is up and before logging in, I see this in the security event log on the server:

IPsec main mode and extended mode security associations were established.

Local Endpoint:
Principal Name:DIRECTACCESS.ad.milwaukee.gov
Network Address:2002:c7c4:5439::c7c4:5439
Keying Module Port:500

Local Certificate:
SHA Thumbprint:c674214a148c74576ceb61046f7c9773504592a5
Issuing CA: ITMD-CA
Root CA: DC=gov, DC=milwaukee, DC=ad, CN=ITMD-CA

Remote Endpoint:
Principal Name:DATEST.ad.milwaukee.gov
Network Address:2002:c7c4:5439:1000:bc1a:45f3:d663:59e2
Keying Module Port:500

Remote Certificate:
SHA Thumbprint:455e0b35e809f8ff36239f7f8f5f2bbef9ff085f
Issuing CA: ITMD-CA
Root CA: DC=gov, DC=milwaukee, DC=ad, CN=ITMD-CA

Cryptographic Information:
Cipher Algorithm:AES-128
Integrity Algorithm:SHA 256
Diffie-Hellman Group:None

Security Association Information:
Lifetime (minutes):480
Quick Mode Limit:0
Main Mode SA ID:29

Additional Information:
Keying Module Name:AuthIP
Authentication Method:SSL
Role:Responder
Impersonation State:Not enabled
Main Mode Filter ID:119396

Extended Mode Information:
Local Principal Name:host/DIRECTACCESS.ad.milwaukee.gov
Remote Principal Name:AD\DATEST$
Authentication Method:NTLM V2
Impersonation State:Enabled
Quick Mode Filter ID:119425

After logging in I cannot connect to any internal servers. I see this in the server log:

An IPsec extended mode negotiation failed. The corresponding main mode security association has been deleted.

Local Endpoint:
Principal Name:host/DIRECTACCESS.ad.milwaukee.gov
Network Address:2002:c7c4:5439:5::1
Keying Module Port:500

Remote Endpoint:
Principal Name:-
Network Address:2002:c7c4:5439:1000:bc1a:45f3:d663:59e2
Keying Module Port:500

Additional Information:
Keying Module Name:AuthIP
Authentication Method:Kerberos
Role:Responder
Impersonation State:Enabled
Quick Mode Filter ID:119519

Failure Information:
Failure Point:Local computer
Failure Reason:IKE authentication credentials are unacceptable

State: Sent second (SSPI) payload

We recently installed Server 2012 standard on one of our servers and were trying to keep a graph of DHCP lease use. Anyway the OIDs for DHCP in Server 2008 R2 started with "1.3.6.1.4.1.311.1.3.2.1.1". If I try to snmpwalk these same OIDs on the new Server 2012 (We the DHCP server configured and active), I get:

Error in packet.
Reason: (genError) A general failure occured
Failed object: SNMPv2-SMI::enterprises.311.1.3.2.1.1

I'm using SNMPwalk and I've never had a problem with this before. Any idea what would cause this? Thanks!

Thanks!