Quantcast
Channel: Windows Server 2012 General Forum
Viewing all 2702 articles
Browse latest View live

Server 2012 Failover Cluster (Hyper-V) NIC question

February 26, 2013, 10:29 am
$
0
0

I have what should be a simple question for most people.

I have a 2 node hyper-v failover cluster. On each physical server I grouped two NICs together for host management only. I called this team "Host Management". I then assigned a static IP address to this team since our environment is setup using static addresses. I then created a NIC team for the virtual machine network. I called this team ".110 Network" because that's what the VM's will be connecting to. I created an external network connection in Hyper-V and connected it to the newly created Mulitplexor adapter that was created when I created my NIC team. My question is... Do I need to assign a static address to this NIC team?

When I used Server 2008 R2 and created an external network adapter which I pointed my VM to I never had to assign a static IP address to the new adapter. I would only assign an IP address to the VM itself. Any help is much appreciated.

Pat

Pat

Search

Windows 2012 RDS and Windows Store

March 5, 2013, 1:31 am
$
0
0

Hi,

I am experimenting with the new Windows 2010 RDS (shared sessions eg good old terminal services) and so far so good and I especially like the idea of user profile disks, however I have come accross and interesting problem or maybe this is intended. I have enabled the desktop experience so that users get Access to Windows Store and Media player etc, and all this Works very well. However as soon as I enable user profile disks the users can no longer use the Windows Store, it starts but does nothing else that that. As soon as I disable user profile disks and login again, the Windows Store works just fine.

Are there any extra settings I have to make for Windows Store to work with user profile disks enabled?

Many Thanks

Clive

Failover Clustering with Hyper-V

March 5, 2013, 1:58 am
$
0
0

Hello!

Please tell me if I'm right that there's a substantial difference between a normal cluster (non-HyperV) and the cluster with Hyper-V. For example, when we configure a four-node cluster for MS SQL Server we install the same MS SQL server software on all four nodes and place DB files on a corresponding LUN.  At any given moment only one active node owns the SQL Server clustered resourse AND its LUN and services client requests. Should one node fail one of the other three nodes becomes the active node. If this "newly-active" node fails too SQL Server would failover to the one of the remaining nodes. In this configuration the active node's load DOES NOT change when the cluster nodes fails one by one because all of them are just mirrors of one another.

In case of Hyper-V cluster each cluster node can have its own set of virtual machines, and should nodes, for instance, 2,3 and 4 fail (as in the before-mentioned example) the node 1 (the current active node) must have the capacity to run the total of all VMs from all the nodes. This configuration is only  possible with virtual machines or do I miss anything?

Thank you in advance,

Michael


Restore compressed file in compressed folder resulted with uncompressed file.

March 5, 2013, 1:59 am
$
0
0
Can some confirm if restoring a compressed file and compressed folder works properly with the Azure Online Backup? According to our testing, both the compressed file and compressed folder became uncompressed after restored from Online Backup.

Issue: Schedule defrag does not work on volumes of system disk in virtual machines Windows 7, Windows Server 2008R2 after import in Hyper-V Server 2012-based

March 5, 2013, 2:02 am
$
0
0

Issue: Schedule defrag does not work on volumes of system disk in virtual machines Windows 7, Windows Server 2008R2 after import in Hyper-V Server 2012-based from Server 2008R2-based.

There is no way to setup schedule defrag on volumes of  system drive with Windows 7 or Windows Server 2008R2 on the new server Hyper-V in Windows Server 2012-based after the export / import from the old server Hyper-V on Windows Server 2008R2. Volumes from system vhd-disk  is not displayed in the volume list for setup scheduled defrag in window "Disk Defragmenter: Advanced Options" when i click "Configure schedule" in Disk Defragmenter window. Converting disk to VHDX format  the problem is not affected. Base non-schedule defrag continues work on these volumes, but if i try to set a schedule defragmentation, volumes from system disk is not displayed in the window "Schedule Defrag", but volumes from other disks still display, and i can setup schedule defrag for non system disk volumes.
Update the integration components not solve the problem.

Can youcheck it out,pleasetry to import theVM with OS 2008R2from Hyper-V based on server 2008R2 to Hyper-V based on server2012.Is there such aproblemfor you?

Tell me: how to fix this issue: schedule defrag on volumes of  system vhd-disk?


Problems accessing local admin shares from xp_cmdshell

March 5, 2013, 2:45 am
$
0
0

Hi

When I execute xp_cmdshell 'dir \\myserver\l$' I get an access denied response.

I checked the account that the xp_cmdshell executes under using xp_cmdshell 'whoami' and this returns the domain service account that I expected.  This domain service account is a member of the local administrators group.

Not sure what additional permissions I need.

Thanks

Stuart

Windows Server 2012 CA will not allow Windows XP to autoenroll

November 7, 2012, 1:45 pm
$
0
0

I have a Windows Server 2012 Domain Controller with an Enterprise root CA installed.  I have created a client authentication certificate template (2003 compatible).  Domain Computers have Read, Enroll and Autoenroll permissions.  I modified the Domain Policy to enable Certificate autoenrollment.  I have two clients on the same subnet with the domain controller, one Windows 7 Ent SP1 and one Windows XP SP3.  The problem:  Windows 7 reboots, has client auth cert installed in computer's personal cert store.  The Windows XP machine cannot acquire the certificate.  Event ID 13, source is AutoEnrollment, 0x80094011,The permissions on this certification authority do not allow the current user to enroll for certificates.  Both machines belong to the domain.  Running gpudate /force on the XP machine generates an info event stating that the computer security policy has be applied successfully, then the autoenrollment error.  I've setup autoenrollment dozens of times without any problems.  The only thing different in this environment is that the CA is installed on Server 2012.  I could be something else, but the only real difference is Server 2012.  There are no errors on the server.  It is like the client just cannot talk to the server at all, but it's getting its policy from that server.

Any ideas? 

Group Policies don't apply (Reason Denied Empty)

March 6, 2013, 6:05 am
$
0
0

Hello everybody.

I would like to create group policy "Set Home Page."

When I create and apply the policy, policy doesn't work.

When I executed gpupdate /h gpresult.hmtl, the output of this file says:.

Set Home Page

 Link Location domain/Servers
 Extensions Configured   
 Enforced No
 Disabled None
 Security Filters NT AUTHORITY\Authenticated Users
                  domain\Servers
 Revision AD (0), SYSVOL (0)
 WMI Filter   
 Reason Denied Empty


Where is the problem please? I read tons of articles and without result.

I have to remind that every policies I've created don't work.

Eventlog seems to be ok.

What does It mean Reason Denied Empty?

Thanks for your help.

Search

Can DirectAccess work as a NAT to access the Internet

October 29, 2012, 4:27 pm
$
0
0

This is a basic question, but I can't find the answer anywhere:

In my old WS2008 R1 Installation, I had one machine on the edge that acted as both my VPN and NAT.  No problem.

Now I'm trying to replace that with a DirectAccess server.  After configuring my machine with DirectAccess I noticed two things.  First, it wiped out the NAT and VPN configurations that had been there, and second, once I got DirectAccess working, I wasn't able to access the Internet from my CORP network.

What is the recommended way to handle Internet Access when employing DirectAccess as your Edge computer?  It seems a waste to spin up a new machine just to provide the NAT functionality. The Microsoft Lab Setup for DirectAccess sets the Default Gateway to be the EDGE computer (the one running DirectAccess), but I have no idea why since it doens't appear to have any plumbing for acting as a gateway (to the Internet, anyway).

Sincerely,

Donald Roy Airey

Donald Roy Airey

Server 2012 additional drivers for Shared Printer greyed out

February 7, 2013, 2:26 pm
$
0
0
Having installed both the x64 and x86 HP Universal Printer drivers, I now want to ensure that a created shared printer uses both of these driver types so that I can share this out to both types of Clients in the network.  I've opened up Printers and Devices in Windows Server 2012 with a domain administrator account (the same used to build and configure the roles on the server), and in the properties of the Printer that I've created for a network share the 'additional drivers' box is entirely greyed out. There seems to be no means to make it active.  What gives?  Google has not been of any help on this one.

Dale Unroe



Remoteapp "mstsc.exe" problem Windows Server 2012

February 4, 2013, 10:06 pm
$
0
0

Hi,

I am running Remote Desktop Services on Windows 2012 and am experiencing issues with RemoteApp. A user is able to connect fine to a remote application via Work Resources. The problem occurs when the user closes the application and wants to open it again at later time. If the application is reopened straight away, there are no issues as the connection is still active (the server doesn't disconnect right away). But, if a user waits a bit longer and then reopens the application it fails to launch. This doesn't happen all the time, but it is quite frequent. The only solution is to kill the mstsc.exe process. On the other hand remote desktop works fine and doesn't exhibit this problem. The only quirk with remote desktop is that when a user logs off the window goes black and doesn't close itself, so the user needs to manually close the remote desktop window (occasionally they need to click the "x" button twice for it to close). Anyone experiencing these problems? 

Thanks,

Zoran

Block URLS with GPO in Windows Server 2012

March 6, 2013, 10:10 am
$
0
0

I cant find "Security Zones and Content Ratings" section in Windows Server 2012, in order to block urls in internet explorer clients...

Where can I do this with GPOs in Windows Server 2012?

Thanks

RDP Admin not listening on 3389

February 28, 2013, 8:08 am
$
0
0

I have just installed 2012 standard onto a Dell R420 server (Broadcom NetExtreme NICs) and cannot get it to listen on 3389 for remote administration.  So far:

  • A netstat -a shows that the server doesn't appear to be listening on 3389.
  • Remote Desktop is enabled by group policy but even if I remove the GPO and disable then re-enable remote desktop it still doesn't make any difference.
  • Windows firewall is configured off for domain networks by group policy.
  • I can ping and open the c$ share with full privs.
  • I can browse the IIS holding page on the server.

  • I cannot connect with the RDP client on Windows 7.
  • I cannot telnet to 3389 on the server (Could not open connection to the host, on port 3389).
  • The port configured in the registry is definitely 3389.

I've searched high and low for an answer but all the ones pertaining to Server 2008/R2 aren't applicable to 2012.  I have other 2012 servers (Hyper-V guests) which do not exhibit this issue.  I also managed to get this server responding once by reinstalling, connecting RDP, joining domain, connecting RDP again however this then stopped working after applying the available Windows Updates.  Strangely, I have re-installed (including formatting the drive) and the issue has manifested straight out of the box.

Could anyone help with advice specifically for 2012.  As much info as needed can be supplied.

Thanks

D

How disable the Win 8 Start Menu style? and Any way to set back to basic desktop environment?

March 5, 2013, 6:59 pm
$
0
0

I don't see any benefit of New Win8 Start Menu for developer, I have 3 screen run different appls; just move things around and add 1-2 new functions to claim a major change, it is not a significant values since Bill Gate not involve in development. Those UI engineers copy "apple look",  similar to tablet menu which is an inappropriate for desktop users. Everything take two steps or more to run a program, those UI engineers should get fire.

70x7

server 2012 standard as dc to a sbs2011

March 6, 2013, 11:59 am
$
0
0

hi form

I'm looking for a whitepaper for prepairing a sbs2011 (server 2008 r2) dc that I can add a server 2012 standard as second dc

thx
ronny

Ronald Kopecky CEO KOMDAT - IT Kompetenzzentrum Marchtrenk/Österreich http://www.komdat.at

Search

Long boot time

February 22, 2013, 6:56 am
$
0
0

two DC's with DNS services pointing on each other as primary DNS and on self as alternative DNS

Problem: DC takes like 5+ min to apply settings on starts if second DC is down

tried to set primary DNS on itself and alternative on DC which is turned off - still takes long time to boot.


event logs at the time of admission

ID 1014

Name resolution for the name _ldap._tcp.dc._msdcs.mydomain.com timed out after none of the configured DNS servers responded.


ID 4012

The DNS server is waiting for Active Directory Domain Services (AD DS) to signal that the initial synchronization of the directory has been completed .......


ID 1202

This computer is now hosting the specified directory instance, but Active Directory Web Services could not service it. Active Directory Web Services will retry this operation periodically.


ID 14550

The DFS Namespace service could not initialize cross forest trust information on this domain controller, but it will periodically retry the operation. The return code is in the record data.


ID 6005

The winlogon notification subscriber <GPClient> is taking long time to handle the notification event (CreateSession).


ID 1012

Name resolution for the name mydomain.com timed out after none of the configured DNS servers responded.


ID 2092

This server is the owner of the following FSMO role, but does not consider it valid. For the partition which contains the FSMO, this server has not replicated successfully with any of its partners since this server has been restarted. Replication errors are preventing validation of this role. 

Operations which require contacting a FSMO operation master will fail until this condition is corrected.


ID 14550
Цитата:
The DFS Namespace service could not initialize cross forest trust information on this domain controller, but it will periodically retry the operation. The return code is in the record data.


ID 14550

The DFS Namespace service could not initialize cross forest trust information on this domain controller, but it will periodically retry the operation. The return code is in the record data.


ID 10

Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected. 

ID1202

The DFS Replication service failed to contact domain controller to access configuration information. Replication is stopped. The service will try again during the next configuration polling cycle, which will occur in 60 minutes. This event can be caused by TCP/IP connectivity, firewall, Active Directory Domain Services, or DNS issues. 

ID 2087

Active Directory Domain Services could not resolve the following DNS host name of the source domain controller to an IP address. This error prevents additions, deletions and changes in Active Directory Domain Services from replicating between one or more domain controllers in the forest ....... 

on 2 running DC's there  only few logs and about 30 sec boot

High CPU usage for WMI and svchost

March 6, 2013, 2:46 pm
$
0
0

Hello, I have a brand new server with Windows 2012 pre-installed. I setup the HyperV role and there are a couple virtual machines running on it. I noticed that the CPU usage is constantly at about 30% with the main culprits being svchost and WMI.

Restarting the WMI service makes the CPU usage go to normal, but starts up again in about 10 to 15 minutes. Even if the HyperV services are stopped and no VM's are running this is still the case. It's also the case with all non MS services stopped.

All the latest Server 2012 updates have been applied.

Here is a sample of the xperf data for about 30 seconds while this is happening. Can anyone tell me what is happening? I am having a hard time interpreting the data.

http://sdrv.ms/108p7zn

Thankyou



How to recover domain when the primary domain controller failed and there are no other domain controllers

February 6, 2013, 9:33 am
$
0
0
we are testing a disaster recovery idea simulating complete loss of all our servers and other hardware. we are testing by taking a backup of the PDC and restoring it onto a computer and isolating it from the rest of the computers simulating that nothing else exists. my problem is that i can not open any active directory consoles without errors. how can i recreate the entire domain using only a restored backup of the PDC system state?????

Direct Access SChannel error

March 6, 2013, 6:05 pm
$
0
0

Hi all,

        Windows server 2012, Direct Access installed.

When a windows 8 client attempts to connect, the DA logs on the client show a pass for each of the addresses in the DTE list, but a fail for the entry in the probe list.

After a bunch of pulling my hair out as to why - had a look on the server and noticed the following 2 events occur whenever my test DA client tries to connect:

An TLS 1.0 connection request was received from a remote client application, but none of the cipher suites supported by the client application are supported by the server. The SSL connection request has failed.

and

A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 40. The Windows SChannel error state is 1205.

There seems to be another technet forum post on this - but with no resolution... one suggestion was there was a policy set to enable FIPS - but this is not the case on my server.
Does anyone have a suggestion on how to troubleshoot this further ?

a two NIC server

March 6, 2013, 6:10 pm
$
0
0

If we have an domain joined server running an application that people need to access from Internet, is it better to NAT directly to a single internal IP address, or have IPs ( two NICs ), one in our DMZ ( our DMZ is firewalled, but less restrictive ) and one internal, and then NAT to the IP in our DMZ instead? I can give more details but I am hoping someone has used a product "like" MobilEcho ( not going to use reverse proxy, long story ). Really what I want to know is which scenerio is more secure... or does it not matter?

Viewing all 2702 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>