Combine

hello all, how identify group policy applied client systems or not domain controller. want report. please me. mnyash hello all, thanks giving information , suggestion. i had resolved issue running group policy inventory (gpinventory.exe) tool. http://www.microsoft.com/download/en/details.aspx?displaylang=en&id=14126           mnyash Windows Server  >  Group Policy

hi since starter, home basic , home premium editions of windows 7 not have local group policy console, can not use "default indexed paths" , "default excluded paths" policies add other default directories local users. so, there command in powershell allows this? if so, can me examples i'm inexperienced on powershell? thanks bye balubeto hi, you may try translate following vbscript powershell script test.   indexing service scripts http://www.activexperts.com/activmonitor/windowsmanagement/adminscripts/disk/indexing/ thanks. this posting provided "as is" no warranties, , confers no rights. Windows Server  >  Windows PowerShell

i have folowed below steps there nothing in outlook. added outlook 2003 , 2007 adm templetes. http://support.microsoft.com/kb/2252421 reg value that: junkmailimportlists      value=1  type=reg_dword junkmailimportappend     value=1     type=reg_dword junkmailsafesenderfile    value= \\rocky.com\sysvol\rocky.com\policies\{8e2eb35f-84f5-4f40-ab33-801cff81d5db}\user\safesenders.txt          type=reg_sz where missed something, pls help aliahmurfy hi,   please describe symptom in detail. have checked kb2252421, suggestion following issue:   when configure junk email list settings in group policy management console, these policy settings correctly deployed client workstations (which determined examining windows registry ). however, when start microsoft office outlook, these policy values not used outlook.   ...

our attribute list seems missing msds-lastsuccessfulinteractivelogontime , associated? showing non writeable attribute. whatever reason never being set. running in windows 2008 r2 native mode any ideas? hoping use attribute measure login times thanks robbie i had enable it http://blog.robbiefoust.com/?p=172 http://support.microsoft.com/kb/951020?wa=wsignin1.0 Windows Server  >  Directory Services

hi, i have collection of psobjects which contains several values. goal produce list of unique apptoken objects kicker is if duplicate object exists, need keep newest 1 (which can determined dtcreateddate) here's have tried (unsuccessfully) $tokentable = $tokentable|sort-object -property @{expression="dtcreateddate";descending=$true} $tokentable = $tokentable|sort-object -property @{expression="apptoken";descending=$true} |get-unique -asstring i can commands work individually, not together. i tried 1 liner: $tokentable = $tokentable|sort-object -property@{expression="apptoken";descending=$true},@{expression="dtcreateddate";descending=$false}|get-unique -asstring here's object looks like: typename: selected.system.management.automation.pscustomobject name                   membertype   definition    ...

hi colleague, is there guideline consider security  in joining server domain.? e.g. public facing web server should not joined domain. regards, jhun hi jhun, there no documentation un-security of joining specific machines domain know of. on contrary, joining machines domain provides many secure enhancements. i believe web servers can joined domain, requires network configurations work (being accessed through internet). in addition, don’t install web services on dc security considerations. more information you: dmz, join web servers lan domain? http://social.technet.microsoft.com/forums/forefront/en-us/ae6a228c-46fa-4de8-b0d6-93a055347e93/dmz-join-web-servers-to-lan-domain?forum=forefrontedgegeneral application servers on domain controller help http://social.technet.microsoft.com/forums/windowsserver/en-us/64bf978e-9f17-4298-8122-456ac53c0e1d/application-servers-on-domain-controller-help?forum=winservernis best regards, amy wang ...

“ an influential teacher, or popular expert “ oh mighty reader, need enlightenment! only can show us… true way code! win dedication , adoration of generations come, giving less awesome. show technical prowess, , divine knowledge of craft. teach code bad. show way (or work-around) can offer best platform need preach these words. join , lead technical community in whole new way, brighter future! become technet guru , may find own life enriched! win awards, interviews, invites, reviews, medals, friends, recognition points, high fives, hugs, smiles, , more! all have add article technet wiki own specialist field. fits 1 of categories listed on submissions page. copy in own blog posts, forum solution, white paper, or had solve own day’s work today. drop nifty knowledge, or superb snippets, , become microsoft technology guru of month! official microsoft technet recognition, people such yourselves can noticed! how win 1) pl...

hello, i've installed win server 2008 , bios update downloaded hp web site. after reboot system, fans 100%...how can adjust issue??? regard hi,   according description, hp hardware issue.   for fan speed issue, please enter cmos settings check if there option control it. if not, please contact local hp support familiar own produce further assistance.   regards, please remember click “mark answer” on post helps you, , click “unmark answer” if marked post not answer question. can beneficial other community members reading thread. Windows Server  >  Windows Server General Forum

howdy,   have several programs bugzilla, confluence, jira etc in past relied on third party ldap authentication.   use ad authentication now.   when query ad using command line can display data when use domain admin account.   when try using other account, 1 has domain admin rights or enterprise admin rights fails. so question is:    there permission have give account able view ad ldap? if it? we able use single account these programs can query ad , check authentication.  (one minimal amount of permissions) thanks always. moe create user just read access directory: create user in aduc, name ldapreader or something like that. assign strong password. doesn't have in any special groups. follow guide below instead of selecting "anonymous logon" you'll select your newly created user.   you allow anonymous access dc through ldap, not recommended it's done way: on domain controller, run active directory users , groups administration tool. select top level of dire...

hello guys, i have hp proliant bl465c g7 physical servers, there have installed hyper v 2012 , vm running fine, lately got in trouble 1 of host has failed , have lost 1 of important vm along it. came point should hyper v clustering such situation. my hyper v server's not part of domain , want make replication work.as far understood need put hyper in domain , can use replication function? when try enable replication on vm error message. is there other way can make work or need put hyper v in domain. thank time. sj04 without domain, need use https replication you need certificates enable authentication between 2 servers  check this  https://blogs.technet.microsoft.com/virtualization/2013/04/13/hyper-v-replica-certificate-based-authentication-makecert/ and this  https://www.petri.com/use-hyper-v-replica-over-https-ssl-configure-certificates Windows Server ...

hello, i have question about  " powershell tools visual studio 2013"  . i want debug individual powershell  files not included in powershell solution. when load powershell  file , see "attach" ,but don't see debug run . need attach process?   thanks, peter i figured out answer. first , open ps1 script in ise, , set breakpoint. then , in visual studio 2013, attached process powershell ise. back in ise , hit run. you see breakpoint in vs. Windows Server  >  Windows PowerShell

hello, i'm having trouble windows server 2008 r2. as domain admin, want manually add new driver. i open device manager, choose "add legacy hardware" , choose driver. install process starts got message "access denied".  i got same issue when try update existing hardware or install new hardware. i did check gpo, folder permission, registry permission, don't weird. any idea? thanks, b. fontaine that's correct there no local account on dc else may broken if no conflicting policy. can try repair install i'm not big fan of on dc i'd suggest standing new one, patch fully, join existing domain, add active directory domain services, promote it, , try installing hardware again.       regards, dave patrick .... microsoft certified professional microsoft mvp [windows server] datacenter management disclaimer: posting provided "as is" no warranties or guarantees, , confers no rights. ...

we have small network , don't use certificates - outlook web access , firewall communication.  installed new servers , upgraded win 2003 2008r2.  moved certifiacte server following microsoft recommendations , have been having problems.  error messages when trying log onto firewall device, telling me certificate isn't correct.  can ignore error message , continue.  when looked @ certificate role i found aia location #2 unable download cdp location #2 unable download.  have little experience certificate servers , not sure means, if related problem, or how correct it.   called microsoft support , fixed this. Windows Server  >  Windows Server General Forum

we have 1 2012 r2 essentials primary dc.  added 2012 r2 essentials secondary dc message: "the fsmo role check detected condition in environment out of compliance licensing policy. management server must hold primary domain controller , domain naming master active directory roles. pleas e move active directory roles management server now. resolution: ensure fsmo roles located on server prevent server shutting down" is not possible have two 2012 r2 essentials dcs (one primary , 1 backup)?  if yes, how can fix warning message above? thank you! edited: don't want transfer fsmo roles secondary server.  purpose backup dc.  please help! if cannot use second server backup dc, i'm guess can demote , use member of domain, correct?  thank you! Windows Server  >  ...

i have distributed wsus structure "master" wsus 3 + win2008r2 (200 pcs, first level) , "replica" wsus 3 + win2008r2 (100 pcs, second level) , beneath replica 4 other wsus3 + win2008 (30 pcs in each, third level) in 4 remote locations (it 6 in near future. when see "master" managemente console, second level replica shown 0% updates/applicable , third level being shown =~ 50% of updates/applicable. remote locations equally updated average os 99% of updates being ditributed several oss in company. in second level replica, tried "reconfigure" wizard, tried force sync and.. nothing. wsus servers updates theirselves, via gpos servers, divided locations (site level gpos)   i have distributed wsus structure "master" wsus 3 + win2008r2 (200 pcs, first level) , "replica" wsus 3 + win2008r2 (100 pcs, second level) , beneath replica 4 other wsus3 + win2008 (30 pcs in each, third level) in 4 remo...

hello everyone, i have tried generate toc in word 2010. problem want use own custom styles instead of those  toc1, toc2, ....... etc. i noticed if go to: reference tab >> table of contents >> insert table of contents >> modify button a new dialog title of: style opens up, in there 2 disabled buttons: new and delete, i guessing these buttons allow me want, except 2 buttons disable d . does know why these buttons disabled , better yet, need in order enable them? any appreciated best regards, word always uses styles toc1, toc2, etc. table of contents. can modify these styles suit purpose (that's modify... button for), can't use other styles toc1, toc2, ... in table of contents. regards, hans vogelaar Microsoft Office  >  Word IT Pro Discussi...

recently, implemented ipam on our infrastructure. seems fine, except cannot manage rst tools our workstation. ipam server has been added server manager, when click on ipam, comes install ipam client manage ipam server. cannot seems figure out, why ipam client via server manager installed using rst is not recognizing ipam server? vinnie grack administrator/consultant, london,uk hi, want confirm if rst tools mentioned remote server administration tools client system. in order computer function ipam client, must running windows server 2012, windows 8, or later operating system. reference link below details install ipam client ： https://technet.microsoft.com/en-us/library/jj878334.aspx best regards, eve wang please remember mark replies answers if , unmark them if provide no help. if have feedback technet support, contact tnmff@microsoft.com. Windows Server ...

hi all, i wondering whether , give suggestions on how go designing ad structure. thinking of separating computers , users separate ous each department, , placing department groups , users computers under each ou. regards group policies, thinking of blocking inheritance on domain controllers ou there domain controllers policy underneath ou , place standalone servers underneath ou too. lastly regards creating , amending group policies, thinking of trying condense settings under default domain policy domain controller policy apart software installations feel should done once under separate group policies temporarily unless lock down policies , drive mappings can applied once? appreciated. kind regards, rocknrolltim ad design more of managment preference. separating computers , users practice group policy management reduces many policies being linked each ou. if enforce policies @ domain level, overide blocked inheritance. ...

hello, i have problem 2node cluster networks. have 3 nic's in both of nodes ip's different subnets. under failover cluster manager are three networks "cluster network 1", "cluster network 2" , "cluster network 3". under "cluster network 1" there 3 network connections - 1 one node , 2 second node. "cluster network 3" contains 1 network connection 1 node. "cluster network 1" subnet 192.168.0.0 contains 1 connection 192.168.201.0 subnet - should under "cluster network 3". how can move 1 connection from "cluster network 1" to "cluster network 3"? check network settings, subnet mask, on both nodes.  clustering decides on networks based on physical nic settings.  fix settings , networks line correctly. geoff n. hiten principal consultant microsoft sql server mvp Windows Server ...

hi all, i know max # of gpos processed 999 / pc / user. maximum amount of configured settings in single gpo ? (i.e. possible (even though not feasible) set 5000+ settings in single gpo) ? or there filesize limiti single gpo file representation in sysvol ? i need information w2k8r2 / win7 environment. best regards, jan sturm there no limit (that know of) of number of setting in 1 group policy object... best have sperate gpo depending on targeting requirements of policy or better management/version control. suck have restore 1 gpo week ago , lose changes since then...  yes gpo large having 5000 gpo's 1 setting larger. hope helps. alan burchill (mvp) http://www.grouppolicy.biz Windows Server  >  Group Policy ...

we using hyper-v implementation host virtual servers.  long story short, snapshots set go c:\ partition , filled os disk.  we not login nor manage hyper-v server went in through c$ share , deleted snapshots.  now can't move vhd's or move change setting move snapshots more appropriate partition.  does have way @ least let able move vhd's , clean snapshot trees?   thanks   hi,   the issue encountered of people encountered hyper-v. snapshots test environment, such test new developed applications or hot fix before install product server. however, may performance issue snapshots. or snapshots eat disk space.   after take snapshot on vm, change save in snapshot instead of original vhd file. if delete snapshots files manually before, lost data in snapshots. delete snapshots in hyper-v manager, power off vm , let merge disk, or merge snapshots original vhd manually.   if delete snapshots(the .avhd files), can use original vhd create ne...

windows server 2008 standard installed on hp dl380 g7 server.  had differnet ipv4 address.   ipv6 disabled.  using ipv4 tcp/ip ip address propertes entry entered new ip address, netmask, gateway, , 3 dns server addresses.  close out ip address properties box.  return ipv4 tcp/ip properties dialog box , see original address newly entered netmask, gateway, , dns server addreses.  open cmd window, run ipconfig /all , see preferred ip address correct.  search registry erroneous ip address , not find.   can not determine incorrect ip address coming from.  appreciated. hi customer,     please try reinstall network adapter following kb937056. http://support.microsoft.com/kb/937056 regards, rick tan Windows Server  >  ...

hi. can activated windows server 2016 kms server 2012 r2? hi alyushin, there evaluation version of server 2016 currently, activation information not announced yet. well, win10 supported. guess server 2016 supported. maybe later updates enable it. wait later official documents. best regards, leo please remember mark replies answers if , unmark them if provide no help. if have feedback technet subscriber support, contact tnmff@microsoft.com . Windows Server  >  Setup Deployment

well tried host of things, perused various solutions on internet, no matter do, cannot virtual machine see network adapter... installed virtualized windows xp professional sp2 on windows server 2008. have 1 physical network adapter. missing quality resources explains all... i'm finding setting networking on virtual machines isn't turn key should be. thanks feeback. did take these steps. however, minutes after posting question (and murphy's law dictate) answered own question , managed setup network adapter in guest os. anyway , take care! abbey Windows Server  >  Hyper-V

team, due space issue on wsus server , have cleared wsuscontent folder , run wsusutil.exe reset command. not able updates in wsuscontent folder. server running 2008 enterprise server.need valuable inputs hi, when run reset, windows checks every update metadata row in database has corresponding update files stored in file system. if update files missing or have been corrupted, wsus downloads update files again. i’m not quite sure former updates missing or wsus server no longer download updates. whatever, softwaredistribution.log should contain information need. path: c:\program files\update services\logfiles in console, server in downloading status? if so, should wait more time. hope helps. Windows Server  >  WSUS ...

hi all, i have windows 2003 ee terminal services enabled (80 users). server has ie7 , i'm upgrading ie8. used ieak8 create custom installation package. on package, selected disable accelarators, enable google search provider , remove bars. nothing elavorated. i create package , run using add/remove programs feature , restart server. once login normal user, first pop-up shows asking accelarators, search providers , customizations settings have selected on package. is there way solve this. mean, applying customization on package users log in on server? thank you anibal   anibalr hi,   please try remove internet explorer enhanced security configuration.   windows server 2003 installed internet explorer enhanced security configuration enabled. configuration decreases exposure of server attacks can occur through web content , application scripts. result, web sites might not display or perform expected. better user experience terminal server,...

hi. my query can apply screen saver policy on client machines vista, xp instead of users. if yes how can apply? hi, screen saver policy user-based policy personalization , must run under user account. can use loopback policy force users logon computer apply screen saver policy. if loopback processing has enabled on computer, users not apply own gpos user configuration settings defined computer. detais , how enable loopback processing, please refer to: http://support.microsoft.com/kb/231287 regards, cicely   Windows Server  >  Group Policy

hello everybody , i'm trying replicate data one volume f: \ of 700gb and is busy with space 690gb , data is replicated a volume on server, also f: \ of 1.5tb . the replication does not happen , although there no errors in the event viewer , the report generated in dfsr , brought me the information below. warnings (there 2 warnings report)          this member waiting initial replication replicated folder f.     affected replicated folders: f   description: member waiting initial replication replicated folder f , not participating in replication. delay can occur because member waiting dfs replication service retrieve replication settings active directory domain services. after member detects part of replication group, member begin initial replication.     last occurred: monday, september 28, 2015 @ 10:14:10 (gmt-3:00)   suggested action: replication begin afte...

wanting remove old pdc thats still physical box (thats on 15yr old hardware), was  hoping build virtualbox 2008 r2 , make pdc (it 1st 2008 r2 dc, other dc's 2003, updated server 2000. domain has trust 2 other domains thats windows server 2008 r2 , domain has exchange server 2003. the other 2 domains 2008 r2 , have exchange 2007 , 2010. these domains not in same forrest, 3 diffeerent domains , 3 different forrest. for domain want upgrade, approching without trust involved normally 1. dc new server 2. make pdc 3. wait 24hrs (for replication) 4. dc promo down old server 5. clean active directory (this has been manual process before, there tool avalable clean ad, adsi, , dns, after removing server) 6. watch logs error 7. done does change because of trust? te trust stay in place? need break trust , redo it... once upgrade , migration complete bring ad 2008 r2 funtional level... thanks feedback... twitter: @dguilloryjr linkedin: http://www.linkedin.com/in/danny...

hello folks, i have been having annoying issue trying join windows 8.1 desktop pc company domain, whenever run through connector software (windows server 2012 essentials) fails "an unexpected error has occured" after put in domain credentials. i've removed connector updates , software installed on pc , tried fresh...still no joy. any advice appreciated! thanks, jordan works skip domain join reg key!  reg add "hklm\software\microsoft\windows server\clientdeployment" /v skipdomainjoin /t reg_dword /d 1 weird! Windows Server  >  Windows Server 2012 Essentials

server 2012 r2 domain. i want users able uac admins , access admins shares. to clear: want type \\svr1.horse.local\c$ user account without admin rights, able access share. i have added l ocalaccounttokenfilterpolicy, , set 1. no difference, , yes have restarted. :) hi, way access administrative shares disable uac admin approval mode administrator accounts. checkout below link article on access denied admin shares, disabling uac restrictions , disabling uac admin approval mode, http://4sysops.com/archives/access-denied-to-administrative-admin-shares-in-windows-8/  regards, gopi jiji technologies Windows Server  >  Directory Services

i discovered weird events in security logs of 1 of our servers , need help. we noticed number of sucessful logon (540) , logoff (538) codes, instead of user account computer name "$" @ end. found anonymous logons user well. the security log looks this: type                 date                  time         source      category       event         user                 computer success audit    01/24/2012    9:35:10 am    security    logon/logoff    540    companypc005$      dataserver0...

updates downloaded , installed, status not reported wsus. http://lsvsms001:8530/simpleauthwebservice/simpleauth.asmx  is accessible, test control not appear client.  when browsing server itself. windows 7 , xp behave same. group policy targeting working correctly.  clients placed correct computer group. log file win 7 x64 client: 2010-08-09 13:16:21:672  108 fb8 au ############# 2010-08-09 13:16:21:672  108 fb8 au featured notifications disabled. 2010-08-09 13:16:21:672  108 fb8 au setting au scheduled install time 2010-08-10 08:00:00 2010-08-09 13:16:21:673  108 fb8 au successfully wrote event au health state:0 2010-08-09 13:16:21:673  108 fb8 au successfully wrote event au health state:0 2010-08-09 13:16:22:736  108 10ac report report event: {fc3eefad-1375-4ef2-aec1-3bbfe6b60a59} 2010-08-09 13:16:1...

hello, we using hosted active directory in have configured our active directory no users can see each other in different ou's. this works fine, have configured users aren't able see other default ou's , objects. this works fine except when deny list object rights on top domain, when user unable logon. does know how can solve behavior? if need more information, please let me know. regards, remco create taskpad see whatever need see   http://jorgequestforknowledge.wordpress.com/2006/01/05/creating-a-taskpad-and-delegating-several-admin-tasks/   <o:p></o:p> cheers,<o:p></o:p> (hopefully information helps you!) jorge de almeida pinto | mvp identity & access - directory services ------------------------------------------------------------------------------------------------------- * posting provided "as is" no warranties , confers no rights! * evaluate/test before using/implem...