Combine

hi ,  we have requirement host rdp on http/https. i.e rdp hosting in rds , rdp should available via web client .  i have configured rdp in rds ie connect pc option , use rdp client connect server. any info / procedure helpful. thanks in advance !! shashi hi shashi, comment. can understand description provided seems want have rdp server or workstation(with web page) instead of using .rdp file\mstsc.  if want such solution sorry disappoint still there no such feature available in server 2012 r2 can rdp server , workstation simple web browser.  have solution provide me in earlier comment. understanding , support! regards. dharmesh solanki Windows Server  >  Remote Desktop Services (Terminal Services) ...

i have vm saved direct-attached disk.  i'm in process of moving vm's iscsi san.  part of process exported first vm csv located @ c:\clusterstorage\volume1 iscsi disk i exported , imported vm new location , started no problems.  however, restarted host computer , hyper-v unable save state of vm before shutting down.  seems windows disconnected iscsi csv before had chance save the vm state.  when host computer came able start vm if power had been pulled.  noticed following error raised eyebrow: "status 0x00001069 determining device interface \\?\{8e7bd593-6e6c-4c52-86a6-77175494dd8e}#msvhdhba#1&3030e83&0&01#{2accfe60-c130-11d2-b082-00a0c91efb8b} not support iscsi wmi interfaces. if device not iscsi hba error can ignored.  " so there setting somewhere ensure windows not shutdown or disconnect san before saving vm virtual machine states?  changed automatic start action delay few minutes ensure server has moment connect ...

hi, working windows server 2008 terminal server , able see maximum amount of users log in @ same time during given part of day. information company considerably in deciding how many licenses purchase other software. in advance help! you can enable user logon auditing policy. see details here: what's new in windows security auditing http://technet.microsoft.com/en-us/library/dd560628(v=ws.10).aspx tracking user logon activity using logon events http://blogs.msdn.com/b/ericfitz/archive/2008/08/20/tracking-user-logon-activity-using-logon-events.aspx regards, miya miya yao technet community support Windows Server  >  Management

i wondering if on forum running mission critical applications on hyper-v vms. if so, i'd interested in learning type of applications or workloads have had success in running on hyper-v. it'd great understand type of applications/workloads have not been able run on hyper-v , reasons those. i'm looking information can make call on workloads better fit hyper-v , may better run on vmware or xen. i'm in process of setting hyper-v @ of client sites , not want recommend running application/workload has known pitfalls when run on hyper-v. hi! we running whole networks on hyper-v without problems. way design networks hyper-v same physical machines. take @ workload of planned solution, design machine , "buy" it. in case of hyper-v "buying" can understood "have @ resources hosts have left , if new machine fits in there". applications not candidates virtualization ones must not lag in way (eg ocs). if need special hardware cannot virtualize (eg usb...

so in education setting. use windows 10 pro , google cloud print. today, large majority of not able print using google cloud print. found this: https://productforums.google.com/forum/#!topic/chrome/omdllyypcu0;context-place=forum/chrome where users state google cloud print installation errors out. leads of uninstalling google cloud print , trying reinstall , encounter error. after install windows update (i never able find specified update), install succeeds , printing resumes. however, use wsus , windows 10 updates happen automatically reinstalls update removed. know can stop update install issue is, update stop on wsus server not appear same across systems. so, wanted check here , see if has reported issue , if not, see if has ideas going on? hi forgiven, 1. kb3172985 cumulative update win10 1511, it's not recommended uninstall update; 2. haven't seen others report issue. 3. it's better invite engineer find out root cause why google cloud print not work. si...

i'm looking understanding networking of rd farm. farm has connection broker, session host, web access server , gateway server. understanding (right or wrong?) external clients connect via browser wa server on 443. open apps , traffic goes client via 443. not understand traffic from. wa or gw? i've heard different explanations: the traffic proxied through wa. client -> wa -> gw -> wa -> client (all on 443) the wa hands on gw. client -> wa -> gw -> client. reason can firewall configured. need fw opened (443) wa or both wa , gw? hi, you need tcp port 443 forwarded rd web access server.  optionally, if set redirect need tcp port 80.  example, if want end users able enter rds.domain.com in browser , have automatically redirect https://rds.domain.com/rdweb/pages/<language code>/login.aspx need port 80. you need tcp port 443 , udp port 3391 forwarded rd gateway server. if want may have both rdweb , rd gateway on...

hi, currently have single sbs 2003 domain in 1 site.  @ start of next year moving offices , installing new server room, current site left intact dr purposes.  small site around 15 users. i want take opportunity upgrade/migrate sbs2003 standard 2008. ive read through steps @ http://social.technet.microsoft.com/forums/en-us/winservermigration/thread/d874300d-04fe-4c5a-aed1-65720c1019f5/ my question is, how apply if install new dc @ second site?  2 sites linked vpn, have same domain. should install new server @ new site, run dcpromo on vpn?  decommission old sbs server @ end of process. will having dc in seperate site affect transfering fsmo roles? has done migration using configuration before? thanks dean hello, for sbs better use sbs forums/newsgroups, there sbs experts: http://www.sbs2008.com/ i install in same site , move machine new site. don't on wan, work way, in case of problems have run around. fsmo move on wan ok, make backup before starting. best regards meinolf weber ...

hi all, i want remove access(permissions e,g, read/write etc) of users in 1 time, can possible using c#? able using system . security . principal . identityreference newowner = new system . security . principal . ntaccount ( "testdomain" , "testuser" ). translate ( typeof ( system . security . principal . securityidentifier ));   activedirectoryaccessrule newrule = new activedirectoryaccessrule ( newowner , activedirectoryrights . genericall , system . security . accesscontrol . accesscontroltype . allow );   myou . objectsecurity . setaccessrule ( newrule );   but in above case want looping users. there api abailable users in active directory? please help. thanks ajit hi,   as question more related development/coding, suggest create new thread in 1 of msdn forum better , accurate answer question. community members , support professionals there more familiar coding , can in more efficient way.   ...

i setup external web site users can on server.  running windows server 2008 r2 enterprise sp2 sql 2012 enterprise, sharepoint 2010 enterprise , exchange 2010 enterprise.  not know if should use sharepoint or windows server.  1 point me in direction of documentation this. thank you ladydee darlene murphy well, can either use iis or sharepoint (based on iis) create web portals. publish them, can forward http / https traffic them directly or use reverse proxy (like forefront tmg). for iis questions, ask them here: https://forums.iis.net/ for sharepoint questions, ask them here: http://social.technet.microsoft.com/forums/en-us/category/sharepoint this posting provided "as is" no warranties or guarantees , , confers no rights.       microsoft student partner 2010 / 2011 microsoft certified professional microsoft certified systems administrator: security microsoft certified systems engineer: security microsoft certifi...

hello, we've installed key management services (kms) windows , office 14 on 2 2003 r2 servers. application eventlog gets flooded information event 1003 software licensing service check of licensingstate has finished. its doable check events errors filtering informantion events filters others aswell. history of events not reach far used to. increase size log thats workaround. there way reduce loglevel or other way reduce event 1003 flood? thanks in advance Windows Server  >  Windows Server General Forum

for reason no longer have tiles on start menu. i had them in prior builds. had started first build available publicly installed in vm. went through first couple of build upgrades, still working fine. upgraded 10122 , had lots of problems wiped vm , created new 1 using 10122. first time logged in ms account tiles there. since when login, no tiles. menu items there on left side; snipping took, sticky notes, file explorer, settings, etc. no tiles @ on right side. any ideas why they're gone , how them back? don't think system reset trick since have been gone since second time logged in. jonathan hi, generally speaking, user profile problem, can try create new account test if problem persists. on other hand, windows 10 new build 10130 released, can try upgrade system latest edition test. please remember mark replies answers if help, , unmark answers if provide no help. if have feedback technet support, contact tnmff@microsoft.com. ...

hi ive upgraded users xp w7 , previously, users adding printer (via wizard) search defaulted users local site. w7, add printer wizard seems go off , find every printer on domain ! is there policy control default printer search finds printers local site default ? steve hi, thanks post. first of all, please check if location tracking feature has been enabled. http://technet.microsoft.com/en-us/library/cc960771.aspx you find more visiting http://technet.microsoft.com/en-us/library/bb727034.aspx thanks, miles please remember click “mark answer” on post helps you, , click “unmark answer” if marked post not answer question. can beneficial other community members reading thread. Windows Server  >  Group Policy ...

i have ssl cert own unique ip address on a 2008 r2 server. created sharepoint 2010 application thru central admin. logged onto server , attempted add cert , select correct ip new site. getting error: "this binding being used product other iis. if continue you might overwrite existing certificate ip address:port combnation. want use binding anyway?" this server new new install of sharepoint 2010.  know how find out causing error ? it sounds sharepoint has taken ownership of certificate (as does) check sharepoint configuration brian Windows Server  >  Security

hi; suppose have folder contains 50 other folders. there way exclude 1 folder inclusion of expiration task? thanks please vote helpful if post helps , remember click “mark answer” on post helps you, , click “unmark answer” if marked post not answer question. can beneficial other community members reading thread. hi r.alikhani， thanks post. based on understanding want create folder expiration task, want exclude 1 folder. if so, far know, ui configuration, there's no such settings. but since file mangement task achieved powershell commands, might try operation powershell scripts. may need confirm in powershell forum. https://technet.microsoft.com/en-us/library/jj900651%28v=wps.630%29.aspx?f=255&mspperror=-2147217396 https://blogs.technet.microsoft.com/filecab/2009/05/11/customizing-file-management-tasks/ and if want move files older day , exclude folder, try use robocopy. for example: robocopy /minage:n /xd dirsc /minage: <n>   ...

hi experts, i trying deploy mozilla , xml notepad through group policy. have created test ou on ad , moved few require users group. created policy assign software when try login domain machine specific user apply policy software doesn't install @ same time when run rsop.msc can see policy has been pushed why didn't work have no clue reference attaching few snapshot better understanding. client machine snapshot shows been implemented , tried changing value of start policy processing wait time saw somewhere in forum no luck interestingly whenever run command of gpupdate /force client system shows below message. many times choose yes , tried login again no luck. pls advice accordingly. using server 2008 r2 , client machine on windows 7 32/64 bit. pls let me know if other information required. output of client machine- updating policy... user policy update has completed successfully. following warnings encountered during user policy processing: group polic...

hello everyone, we have situation remote desktop services virtual desktops limited in our possibilities. have multi forest domain structure trusts between forests, trusts 2 way trusts, trusts 1 way trusts , forests have no trust @ all. we trying implement rds solution virtual desktops, servers in domain 1 , client vdi vm’s in domain 2. our question in trust configuration supported , there documentation? our consideration not flexible , need a hardware cluster for every forest , it’s getting expensive. thank in forward i hope trustful answer. kind regards, jasper sybrandy hi, sorry late response. seems there no document regarding case, can refer beneath article. test lab guide: virtual desktop infrastructure quick start https://technet.microsoft.com/en-in/library/hh831585.aspx thanks. dharmesh solanki please remember mark replies answers if , unmark them if provide no help. if have feedback technet support, contact tnmff@microsoft.com. ...

hi, my name jacques. trying create image of server 2008 r2 ask me add roles , features correct when acces server manager panel cannot add roles features. replies " error: cannot display data until computer restarted." tried restart several times still doesn't work tried several other solutions still not work.  can me solve please? error similar when install role or feature user, server reboot not start same user installed role or feature. after installing role or feature, server performs post manager restart same user. please sign in user server install feature or role before, sure , finish server manager configure. after can install new features. regards el éxito nunca llega solo; hay que trabajar arduamente para conseguirlo. Windows Server  >  ...

hi - i tried follow steps here-  http://technet.microsoft.com/en-us/library/dn486787.aspx exported text files , configuration via powershell. after upgrade 2012r2 trying configure adfs , when selecting service account not allow me choose network service (which run account in 2012) becuase of this, adfs won't import because doesnt recognize otehr user having spn adfs.. any appreciated. hi, according description, cannot select network service account service account on windows server 2012 r2, mind posting out screenshot of problematic page? are there related error messages logged? best regards, amy please remember mark replies answers if , un-mark them if provide no help. if have feedback technet subscriber support, contact tnmff@microsoft.com. Windows Server  >  W...

i'm trying implement gate or throttle on batch queue. want scheduled tasks block , let 1 task proceed @ time. presently i'm using python call kernel32.openprocess convert pid (process id) handle , using kernel32.waitforsingleobject wait process exit. timeout every 15 minutes print debug statement indicating i'm still waiting on process , try waiting again. if pid not exist because process exited, error , print out in debug statement , stop waiting , start executing desired task. if pid existed , start waiting on , go past midnight , process i'm waiting (apparently) gets new pid, erroneously continue waiting forever. so, can do? perhaps translate python powershell , list of processes , pids , if pid no longer exists, should no longer hang. new pid (assuming windows indeed replacing pids @ midnight) , wait on that. can that? how? can me started powershell script waits on process exit , times out every 15 minutes , checks see if pid still exists every 15 ...

my test system windows server 2008 beta 3. when try go server manager, gives me popup saying "configuration took place on machine required reboot complete. please reboot system before doing further configuration". can not enything. blocks possible add or remove roles. rebooting not give me expected effect, , popup message comes again.   did have simmilar issue? the logic determine if dialog shown takes current system time , subtracts system uptime find time system last rebooted.  time compared last modified time of file contains server manager configuration state.  if saved state file newer last reboot time, dialog shown.  if system time has changed during middle of installation/configuration, can incorrect behavior.   can compare timestamps of files in %windir%\system32\servermanager\savedstate current system time?  having servermanager.log file useful.  file either in %temp% or %windir%\logs depending on build number.  can use determine if system time has change...

1 domain on single site 2003 native mode 3 dcs 1 - 2003 , 2 - 2008 highly secured environment situation: i have inherited role ad admin quite unexpectedly , have lot of clean do.  right pressing issues dcs take in excess of 30 minutes shutdown , during process domain computers authenticating rebooting dc fail "switch" available dc unless rebooted well.  one item appeared clear virtual memory on shutdown enabled via gp.  shutdown still taking long time.  there not appear critical errors in event logs on dcs , on clients/servers see that an error domain unavailable.  i can afford 0 down time.  what things check causing this?  if tools or cmd recommended, output red flags should for?      hi there, thank posting in winodws server forums, i guess there mulitiple issues involved in setup . "right pressing issues dcs take in excess of 30 minutes shutdown " need check root cause of issue. check following a) logoff scripts if b) how dns servers configured ? c) might cause...

i attempting mass import of user attributes (phone number, address, city, state, zip code, title, company). goes until hit blank value in csv. here powershell script trying use. import-csv ia-test2.csv | foreach-object { $record = $_ get-aduser -ldapfilter "(samaccountname=$($record.samaccountname))" | set-aduser -city $record.l -postalcode $record.postalcode -officephone $record.officephone -company $record.company -streetaddress $record.streetaddress -title $record.title } how can modify skip blank values? typo.  i missing  last $ in  { $params.$property = $_.property } updated script: $properties = @( 'city', 'postalcode', 'officephone', 'company', 'streeaddress', 'title' ) import-csv ia-test2.csv | foreach-object { $params = @{} foreach ($property in $properties) { if ($_.$property) { $params.$property = $_.$property } } ge...

hi, a customer server administer carries out credit card transactions , has asked carry out necessary changes on server ensure pci dss compliant. have reached point there few vulnerabilities left , hoping advice other users may have dealt similar scenarios. client has single server running windows server 2012 r2 essentials, may factor affecting of changes? the client has engaged 2 difference pci scanning companies, first has identified port vulnerabilities when address example tls 1.0 issue disables remote access several other critical services. the other identifies port 80 traffic , port 443 , suggests forwarding port 80 traffic through port 443. although i have read through numerous articles cannot find step-by-step instructional how implement this. any pointers have had experience in dealing pci compliance appreciated. thanks in advance, hi, >a tls 1.0 issue disables remote access several other critical services. far know, rdp suppor...

hi, i having setup of windows 2003 ent {holding dns ,dc,gc,fsmo} dns ip follows 192.168.1.30, 192.168.1.31 now i've added new windows 2008 ent {ad dc} dns , gc configured during installation after completing installation of server i am not able to see resource records in windows 2008 dns   pls. me on this regards sushant sushant.gharpure@hotmail.com      hi, thanx reply we using  ad integrated dns zones . . . replication not issue. . . . my m/c not automatically updating own host records in dns i have added 4 m/c in member domain , after 2 days host records not updated automatically , ve added manually in dns when ran ipconfig / flushdns . . . i received error called rpc server unavailable . . . .               how long has been since introduced new domain controller/dns server. if talking many hours or days start checking event logs , use tools dcdiag , repadmin try , more info....

i'm troubleshooting issue following alert popping when emails containing embedded https content opened - when certificates have been viewed , certificate revocation list (crl) paths have been copied , opened in browser there have been no issues reviewing revoked sites information. once 'yes' clicked acknowledge want proceed there no problem viewing content of emails. i don't think therefore problem crl location not being available then, although issue may isn't accessible outlook. has come across issue before? additionally know on client acknowledgement cached when click 'yes'. many thanks dee p i'd start network monitor rule out network issues. Windows Server  >  Security ...

  event id:4096  "failed start radius server. radius port may used process" hi gulico just check, running symantec network access control functionality? can check going 'policies' page within console , seeing if 'host integrity' listed policy type.   typically, radius related msgs should relevant symantec network access control functionality.   also, try start > run > cmd, @ dos prompt, type in netstat -a -b, review results , port 1812 or relevant line may mention radius instead. if see either of these, -b switch should confirm exact executable currently tied  open socket. also url:- http://service1.symantec.com/support/ent-security.nsf/docid/2007121415002348 deva dont others - listen them, feel doing. Windows Server  >  Windows Server General Forum ...

hi, i following tutorial https://technet.microsoft.com/itpro/powershell/windows/remotedesktop/set-rdsessioncollectionconfiguration example 4 explained how configure loadbalancing settings. in ps can read values after being set in example ps c:\users\appmirror.appmirror> get-rdsessioncollectionconfiguration -collectionname "guillem" -loadbalancing collectionname                 sessionhost                              relativeweig sessionlimit                                                                         ht --------------                 -----------                    ...

i have vpn server 2 nic, sstp tunnel enabled on windows server 2008 r2 , works prefectly. since 1 nic faced internet site then applied server hardening scw default detection , configuration. no longer function. sstp client connecting vpn server passes connection establishment , sending username , password receive error 812. ras/vpn denial of authentication method defference server , client. after investegation scw cannot thing since scw not provide option change resulting policy file. after change manually xml file not since not know vpn , dc authentication traffic carry protocol/port. not supposed blocked why scw blocks not know? appreciated. Windows Server  >  Windows Server General Forum ...

i have installed above printer , when try use it gives me options remove or application. directs me microsoft app store 2 days has come problems @ end. pleasehelp hi， please share system printer installed on , make sure driver printer correctly loaded newest version on computer. in addition, post us the detail screenshot or error message of problem, helpful further troubleshooting. regards, wendy please remember mark replies answers if , un-mark them if provide no help. if have feedback technet subscriber support, contact tnmff@microsoft.com. Windows Server  >  Print/Fax

hello, i have problem, configured ftp server port 2121. when connect ( ftp://domain:2121 ) user , password message error exhibit: 200 type set a 227 enter passive mode (192,168,0...) when conect ip internal problem same. if change port 21 ftp ok. but i need use port 2121. i used link (   http://support.microsoft.com/kb/555022/en-us  ) can help??thanks lot. hi,   when wrote,  > have problem, configured ftp server port 2121.   does mean ftp site binding set 2121? setting passive port range controls ports clients connect to retrieve data, not browse ftp site.   creating ftp site , binding: http://learn.iis.net/page.aspx/301/creating-a-new-ftp-site/   setting ftp passive port range http://learn.iis.net/page.aspx/309/configuring-ftp-firewall-settings/   -- mike burr Windows Server ...

hi, i have interesting problem.  have setup small business internal domain of internal.abc.com.  have external site abc.com hosted external company.  they have lotus notes installlation has address of notes.abc.com coded it.  doing befor going external , network in order go mail server.  trying make pointer directly ip address of notes server 172.19.87.x.  created record works fine, fqdn notes.internal.abc.com.  i tried createt cname notes.abc.com, comes notes.abc.com.internal.abc.com.  there way create record point abc.com domain without creating primary zone abc.com?  worried if create zone abc.com, have maintain dns records internall, externally.  if there quick way have forward requests not have explicite record internet work well.  thanks you don't need create cname. create zone name of fqdn , create blank hostname entry, such as: create zone called notes.internal.abc.com, right-click, new host (a) record, keep...

all of sudden cannot browse our domain using network places, when click on domain name get the list of servers workgroup not available. we're using windows 2003 domain can help? thanks     hi,   this issue may occur if network services stopped accidently or netbios settings not correct. click start, choose run, type services.msc, check if following services stopped.   computer browser, server, workstation   if of them stopped, try start them , test. if there error or issue continues, please try steps below.   1.            disable firewalls(including windows firewall).   2.            check netbios: ========================= 1. open control panel , double click network connections 2. right click connection , click properties 3. make sure these items selected   "clients microsoft networks", "file , printer sharing microsoft networks" "internet protocol (tcp/ip)   4. click internet protocol (tcp/ip) , click propertie...

i have created ou specific users , applied gpp block network volumes. works expected in windows 7 sp1 not xp pro sp3. the xp pro system sp3 ie7 (xmllite) , gpe ( g roup p olicy preferences client side e xtetensions) was installed (twice) so gpp requirements met. in app log there message 'access denied'. in gpp, 'general', set use current user..... i searched other forums cannot find solution. hi, thanks posting. we suggest check event log make sure group policy preference client side extensions has been installed successfully. , refer description got “access denied” error xp client, please check computer account or user client xp client has enough permission apply gpp. for “access denied” error, may use troubleshooting suggestions link below provides. group policies , access denied http://blogs.technet.com/b/matthewms/archive/2005/10/29/413275.aspx if above troubleshooting not work please describe how configured gpp, p...

hi foks, i hava problem ad rms enable on sharepoint 2013. in windows logs have event  5823 error , 5144 error. enviroment description: - domain name: ad.medcore.pl - dca.ad.medcore.pl - dc - w12s2.ad.medcore.pl - sql server - w12s3.ad.medcore.pl - office web apps - w12s9.ad.medcore.pl - sharepoint server - w12s10.ad.medcore.pl - ad rms follow steps: http://technet.microsoft.com/en-us/library/cc561052(v=office.12).aspx doesnt work. -  servercertification.asmx configured (added w12s9 read&execute)   - ping w12s10 response w12s9   - on w12s9 can open  https://w12s10.ad.medcore.pl/_wmcs/licensing/license.asmx &  https://w12s10.ad.medcore.pl/_wmcs/certification/certification.asmx (i had error ca not valid can ignore , working) -  %allusersprofile%\application data\microsoft\drm\server\ empty on w12s9 , w12s10 p lease help! shoud do? should check? need other information? let me known.  best r...

hello, have 2 node failover cluster 2 nodes, hyperv 2012, multipath sas storage msa2000. hardware problem 1 node (node2). shutdown unexpectly. when hapens node1 restar vms normal? configured cluster validation tool. there no witness. don't understand happens if 1 node crash. kr. as eric has said start vm's in crash consistent state on non crashed host. but example take seeing guests on non crashed host restart. if case yes! have seen happen before. can happen if not using quorum because 1 node has vote. recommend create witness, on msa 2000 carve out 1 gb , disk witness. or if have server not in vm cluster file share witness, file share preferred. once have witness in play see of hosts having vote. in cluster manager @ nodes section. should see vote column. 1/0, once witness created show 1/1. Windows Server  >  ...

i having intermittent problem adding c# types powershell.  (if isn't right forum, please advise me on post question). i encountered issue using built-in add-type cmdlet, in order @ root of issue have written own variation of cmdlet: function new-type { param( [parameter(mandatory=$true,position=1)][string]$typedefinition=$(throw "mandatory parameter -typedefinition missing.") ) $params = new-object system.codedom.compiler.compilerparameters $params.referencedassemblies.addrange($(@("system.dll", $([psobject].assembly.location)))) $params.generateinmemory = $true $temp = $(get-item env:temp).value $params.tempfiles = new-object system.codedom.compiler.tempfilecollection $temp, $false $provider = new-object microsoft.csharp.csharpcodeprovider try { $compilerresults = $provider.compileassemblyfromsource($params, $typedefinition) if ($compilerresults.errors.count -gt 0) { $codelines = $typedefinition -split ...

hi, i'm planning implement nap & radius server existing infrastructure don't have ca authority necessary implement ca radius implementation thanks     hi, according description, understanding want deploy nap , want know if ca authority necessary. it depends on nap enforcement method , authentication method use. dhcp nap, or vpn nap peap, ca not necessary. vpn nap peap-ms-chapv2, ca necessary. it recommended deploy strong enforcement methods, such ipsec, 802.1x, , vpn enforcement methods. strong enforcement methods use certificate-based authentication methods , secure channel between clients , servers through statement of health (soh) , statement of health response (sohr) sent. the article below lists methods of nap, , each method has link simple description deploying  requirement: https://technet.microsoft.com/en-us/library/cc753389(v=ws.10).aspx best regards, eve wang please remember mark replies answers if , unmark them if provide no help. i...

we having issue cannot authenticate our java app proxy accounts sync'd our parent ad domain. [our environment]  we have ou within ad environment, have limited rights. in order maintain security, stood adam environment our internet-facing java(jboss) web application. local accounts in adam our vendor. perform adamsync grab proxy accounts our ad ou. [how have designed on paper work] we have had success local adam accounts. however, have failed @ each login attempt while attempting use proxy accounts. did notice java app coded use cn attribute. furthermore, noticed cn=login id our local adam accounts, per our setting...which differed sync'd proxy accounts cn=first name, last name....obviously wouldn't work(character limits in login field of app)...so changed java(jboss) code use samaccountname attribute, matched login id on both sides(adam/ad). still failed. attempted bind using samaccountname attribute during our adamsync not. lastly, attempted use userprincipalname attr...

we have windows dhcp server , tablet pc with unix os  does not obtain ip dhcp server. there configuration changes needs done support unix /linux dhcp clients or troubleshooting steps in solving issue. hi,   base on experience, if set network adapter on linux computer, ip address dhcp server. please check whether windows system computer in environment can ip address dhcp server.   by way, if possible, may connect unix/linux computer directly home used router check whether can ip address it.     best regards, vincent hu   Windows Server  >  Server Core

hello, i scratching head on following problem , after couple of days decided ask help. my source domain 2003 , has 3 dcs, target 2008 r2 with 1 dc. set auditing in default domain controllers policy as required in admt 3.2 guide: computer configuration | policies | windows settings | security settings | local policies | audit policy   audit account management - success , failure   audit directory service access - success applied with  gpupdate /force , computer reset. but when run account migration wizard throws error: auditing not enabled on target domain.  enable auditing? if not, sid migration disabled. yes /  no /   cancel   i go yes , wizard works fine times. not every time - noticed if in moment i keep window open (eg while doing else) for more ~5 minutes migration fails , logfile shows error auditing not enabled. when continue without pause works fine. when ...