DNG

hope can me determine why there difference in data between v2 , v3 of powershell. development on laptop has version 3 installed, script executed on server has version 2 installed. #create directory searcher object , set it's porperties $searcher = new-object directoryservices.directorysearcher # (!useraccountcontrol:1.2.840.113556.1.4.803:=2) - filters out disabled accounts $searcher.filter = '(&(objectcategory=person)(objectclass=user)(!samaccountname=its-*)(!useraccountcontrol:1.2.840.113556.1.4.803:=2))' $searcher.pagesize = 5 $searcher.searchroot = "ldap://ou=district offices,dc=mydomain,dc=com" #load following properties $params = @("samaccountname","sn","givenname","mail","physicaldeliveryofficename","department","title","manager","distinguishedname") foreach($param in $params) { $searcher.propertiestoload.add($param) | out-

hi there! i have windows 2012r2 server. there 2 luns has been exported server, 1 of them working fine , other one not able detected disk management tool. showing on device manager 3par vv multipath disk, but showing error "volume information disk can not found" while clicking on its properties>volume information. please help. hi, where did export these luns from? windows system too? frenchitguy.com Windows Server  >  Windows Server 2012 General

so connect lan, , works fine. connect vpn , can surf intranet, connect mail server etc., when start windows explorer ad account gets locked instantly i tried remove mapped drives, , reconetct, works @ first, after restart pc , connect vpn, same thing- account locks after start explorer sorry no, did not resolve issue. it not smartphen or pc, see in loggs on dc that failure was comming current pc. i tried suggestions, no luck. i've reinstalled pc @ end. ok Windows Server  >  Remote Desktop Services (Terminal Services)

hello, i setup gpo install office 2010 in win7 using server 2008 r2 massage. can do. hello, are logged on administrator on system? if so, did run rsop.msc evalated command prompt? starting windows vista, there differences when execute regular user. (if have not granted authentificated users "read group policy results data" permissions in gpmc) mvp group policy - mythen, insiderinfos und troubleshooting zum thema gpos: let's go, use gpo! Windows Server  >  Group Policy

there are some replication error between 2 of our offices as per below:- c:\documents and settings\administrator>repadmin /showrepl repadmin running command /showrepl against server localhost dsa options: is_gc site options: (none) dsa object guid: eaec0ce1-838f-4ad2-a21c-f77ca90921cf dsa invocationid: eaec0ce1-838f-4ad2-a21c-f77ca90921cf ==== inbound neighbors ====================================== dc=abc     third-site-name\dc03 via rpc         dsa object guid: 9f8821d6-45df-4cf1-aca6-7d853f431aa8         last attempt @ 2015-06-02 16:53:51 successful.     second-site-name\dc02 via rpc         dsa object guid: 5015718c-ae03-4605-8364-a3ff7f01bf3c         last attempt @ 2015-06-02 18:23:50 failed, result 1396 (0x574):             logon failure: target account name incorrect.         236 consecutive failure(s).         last success @ 2015-05-31 07:38:48. cn=configuration,dc=abc     third-site-name\dc03 via rpc         dsa object

sir: 1.  attempting create dos bootable dvd windows 98 se troubleshoot disk. 2.  3 files not copy dvd:  1.  autoexec.bat; 2.  command.com; 3.  config.sys. 3.  using roxio creator 2011 create iso file.  however, 3 files not on dvd. 4.  please advise or tell me forum join. thank you. createbackup here go. http://www.nu2.nu/bootdisk/cdrom/ http://www.bootdisk.com/         regards, dave patrick .... microsoft certified professional microsoft mvp [windows] Windows Server  >  Windows Server General Forum

i using admt 3.2 migrate new domain.  files , shares going stay on there respective servers.  migrating users , groups sid history.   how ensure file , share level permissions migrated on new domain.  old domain disappear right after migration complete. hello, unjoin , join file server new domain. permissions still assigned sids. so, using sid history there no problem when accessing shares / documents after joining file server new domain , using migrated accounts.   this posting provided "as is" no warranties or guarantees , , confers no rights. microsoft student partner 2010 / 2011 microsoft certified professional microsoft certified systems administrator: security microsoft certified systems engineer: security microsoft certified technology specialist: windows server 2008 active directory, configuration microsoft certified technology specialist: windows server 2008 network infrastructure, configuration microsoft certified tech

is possible redirect office 2010 buliding blocks folder c:\documents , settings\username\application data\microsoft to users home folder or network share.     great question, discussed of colleagues and we found blog may answer question: http://blogs.msdn.com/b/microsoft_office_word/archive/2009/02/03/managing-and-administrating-building-blocks.aspx please let me know if helps. Microsoft Office  >  Word IT Pro Discussions

hi we setup subdomain/child domain , have developers trying authenticate using parent ad service account they're getting error - see below: "the principalcontext, is:  000004dc: ldaperr: dsid-0c090752, comment: in order perform operation successful bind must completed on connection., data 0, v2580" source sample used: using system.directoryservices.accountmanagement; namespace consoleapplication1 {     class program     {         static void main(string[] args)         {             var domain = "parent.ad.dev.local:389";             using (var pc = new principalcontext(contexttype.domain, domain, "dc=child,dc=parent,dc=local", contextoptions.simplebind, "svc account", "password svc acct"))             {                 var user = userprincipal.findbyidentity(pc, "test.user1");             }         }     } } service account on parent domain , test.user1 account on child. works i

hey how l cluster dhcp on 2 virtuell machines? kasteosiv   that depends on virtualization software using hyper-v have work iscsi san. it supported microsoft run failover clustering in virtualized environment windows server 2008 r2 hyper-v; support policy varies different guest os versions. windows nt server 4.0 / windows 2000 server / windows server 2003: it not supported microsoft run guest cluster microsoft cluster service (mscs) on windows nt server 4.0, windows 2000 server, or windows server 2003. please check these links guest failover clustering hyper-v http://blogs.technet.com/b/schadinio/archive/2010/08/02/virtualization-guest-failover-clustering-with-hyper-v.aspx hyper-v guest clustering step-by-step guide http://blogs.technet.com/b/mghazai/archive/2009/12/12/hyper-v-guest-clustering-step-by-step-guide.aspx   Windows Server  >

customer has old windows 2003 sbs server has novatime time clock plugged via comm port. they have new server running 2012 (not r2) in hyper-v role only with 4 2012 vms (all licensing correct). want rid of old server (need to) time clock prevents that. i know can serial 2 usb adapter cable time clock can plugged hyper-v server. there way pass through usb comm 1 of vms have novatime software on it? require comm card added hyper-v server? jonathan i think best bet product (haven't tested it):  http://www.serial-server.net/port-redirector/  afaik com redirection isn't supported on hyper-v. some people seem have tested , shared findings on matter in thread:  http://social.technet.microsoft.com/forums/windowsserver/en-us/a7b09e73-3491-405e-889e-06bb991a2b0e/com-port-redirection-physical-to-virtual kind regards, philipp - solid solutions Windows Server

i've installed xp , 2003 guest machines host either: 1) using host , no problem working console session 2) remotely via rdp xp box , suffering without mouse control before install integration services. afterwards, because rdp directly vm. however, i've done p2v conversion using hack method (acronis backup converted vhd) , vm isn't booting.  away vm host , have use rdp it.   i'm running annoying "can't use mouse in guest" problem because of course integration services aren't installed on failed p2v guest yet. i think have fix p2v guest maybe change hal.dll or @ repair install , running that's hard without mouse. what can remotely access vm guest mouse control? from talking someone, believe have use vista os rdp host before mouse work; right?   i'm not in position use vista office pc xp pro.  is there solution other go server room , work on host? how installing vista on vm, rdping , vista vm, rdp to own host , running console?  not sounds huge kl

hi all, i looking script can list out node, attributename, attrib value , nodevalue in tabular format out of sample xml below. real xml file more complex below, dont want use xpath result parsing specific xml doc. need parse each node of xml file , pull out nodes either has attrib , attrib values or node having text. in below case out like. empty nodes should skipped 1 have data should output. staff , branch=hanover ,standalone=yes employee, id=1 name ,tobias weltner ..... $xmldata = @' <?xml version="1.0" standalone="yes"?> <staff branch="hanover" type="sales">      <employee eid="1">        <name>tobias weltner</name>        <function>management</function>        <age>39</age>      </employee>      <employee eid="2">        <name>cofi heidecke</name>        <function>security</function>        &

hi, i not sure if right forum. i have finished test lab deployment of direct access, , have noticed 1 interesting issue trying confirm. in lab deployed pki part of infrastructure quite while ago, typical deployment, offline root , online issuing authority. configured use sha512 signature , signature hash algorithms. selection might seem paranoid, has never been issue clients have been windows 7 or higher , have full support. i deployed direct access, , using default settings, appears working correctly, clients connect. i switched requiring computer certificates, issued certificate da server , test clients based upon "computer" template. clients no longer connect. looking @ diagnostic logs direct access appeared tunnels not being established correctly. looking @ get-daconnectivitystatus, there issue present, sub status error referring errors remote network authentication. nothing appeared out of ordinary in client diagnostic logs or event viewer. i went looki

we have been using quota management software third party last serveral years on server 2003.  in process of retiring server , have moved 2008, software won't send broadcast messages users when reach thresholds since 2008 can't send popups anymore.  vendors solution use msg.exe, have been screwing around last week , still won't seem send messages.   can test , send popup console, , can send user's desktop when done manually, script ensure me works doesn't.  keep getting messages user disconnected or doesn't exist.  script using quota-warning.cmd has: msg.exe %1 /server:%2 warning: directory %3 reaching it's quota.  have %4 left. it called software using command: c:\quota-warning.cmd %user_name% %computername% %quota_limit_size% %quota_remaining% when it's broadcast @ console (i added test sending user), doesn't pass of paramaeters , leaves part blank (ie. 'the directory reaching' instead of 'the directory <whatever> rea

what’s best way restrict internet access on group of computers?   i know can go through mmc , disable internet access altogether on local machine – there way through group policy?   also there way restrict machines time frame access specific sites, facebook , youtube, before work hours, lunchtime , on?    we’re running windows server 2003 standard edition.   thanks much, d i set using firewall or preferably proxy server. most firewalls can restrict access sites if wan't control access using active directory groups/users suggest take @ microsoft isa server. http://www.microsoft.com/forefront/edgesecurity/isaserver/en/us/default.aspx mcts: windows server 2008 active directory configuration blog: http://www.nixadmins.net Windows Server  >  Group Policy

so put computer windows 10 after installing programs , needing restart multiple times every time computer shuts down starts screen enter bios shuts down again , repeats until switch off @ wall start again , fine.  also want make start menu smaller mouse doesn't change near edge of box , right clicking doesn't bring anything. prossessor: intel i7 5930k mobo: ga-x99-ud4 the problem isn't major annoying hi firenyth, regarding restart part, mean when installed programs wanted, windows want restart, , windows can't seems loaded correctly after restart? could windows restart when click restart button? for start menu in windows 10 build 9926, there no option customize size of it, other button on right top of it. best regards please remember mark replies answers if help, , unmark answers if provide no help. if have feedback technet support, contact tnmff@microsoft.com. Windows 10 Insid

any ideas cause, , how correct this? hi, there's known bug. while vm running, hit stop service button (or net stop vmms command line) , restart (or net start vmms command line). please check following articles: https://social.technet.microsoft.com/forums/windowsserver/en-us/d2679da3-dd59-424c-b8b7-03ce6325c8b8/hyperv-2012-r2-virtual-machine-creation-date-resets-to-01011601-after-host-reboot?forum=winserverhyperv https://www.experts-exchange.com/questions/28548028/my-hyper-v-2012-virtual-machine-creation-data-is-being-reset-to-01-01-1601-on-reboot.html regards, -tomi tomi pietilä please remember mark replies answers if , unmark them if provide no help. blog twitter linkedin Windows Server  >  Hyper-V

hi ,   i need assistance know why error triggering , how fix this   log name:      system source:        microsoft-windows-fcregsvc event id:      2 task category: none level:         warning keywords:      classic user:          n/a computer:      xxxxxx description: the fibre channel platform registration service not register platform fabric .......................   i cannot see error in mpio or sansurfer 1.- here enviroment. i have same error. proliant dl380 g7 , hp storageworks 82e 8gb pci-e dual port fc hba. for hba model there firmware revision. first, analyze. 2.- be. well not know services do. have various cluster hyper-v. install cluster exactly. 1 of have event registered , other not register evet. ¿what diference?. the cluster register event have applied policy proposed microsoft security compliance. service, microsoft security compliance put services authomatic. in cluser default setting services manual. both clusters connected

i inherited windows server 2003 r2 standard edition x86. after doing bit of checking on it, see has not been backed time. drive c handled adaptec controller card , has 2 drives in raid 1 configuration total space of 68.2gb 33gb free , fragmentation of 1%. drive d handled 3ware controller card , has 9 drives in raid 5 configuration (8 active, 1 spare) total space of 7.27tb 4.65tb free , fragmentation of 1%. when looking @ either drive thru windows explorer, properties, shadow copies tab shows "failed retrieve volumes eligible shadow copies. error 0x8004230f: shadow copy provider had unexpected error while trying process specified operation." if check thru command prompt , run vssadmin commands following. c:\documents , settings\administrator>vssadmin list providers vssadmin 1.1 - volume shadow copy service administrative command-line tool (c) copyright 2001 microsoft corp. provider name: 'symantec software vss provider'    provider type: software

hi i able issue cert 2 weeks ago. wrong ca i have error in title everytime click on "submit certificate request using base-64-encoded cmc or pkcs #10 file, or submit renewal request using base-64-encoded pkcs #7 file." i've made several searches on web before posting here. i've made sure apppool has process model "networkservice", anonymous authentication disabled. anything else verify? thanks in advance, martin finally, i've restarted server , normal. thanks martin Windows Server  >  Security

i trying setup automated idle lockout of computers in office.  i have security group called staff pc-30minlock , gpo named staffpc-30minlockout i asked set in way regular staff effected management , technicians not.  added test account security group.  set security filtering on gpo apply group created. in gpo, went user config > admin templates > control panel > personalization , set following enabled screen saver = enabled password protect screen saver = enabled screen saver timeout = enabled (set 60 testing) force specific screen saver = enabled (set rundll32 user32.dll,lockworkstation workstation locks) the issue i'm having with the test account created, works on 1 machine , not other.  checked memberships of both machines , identical.  gpresult /r on 1 shows policy in "applied group policy objects" on other, shows user member of staffpc-30minlock security group doesn't have gpo applied. feel i'm missing should obvious i'

hi.. can ou hiriechy topolgy tool or script can see parent ou , sub ou , child ou structure in domain ad topology generator domain. if possible can ous, subous, childous permission details script, tool.. hi use below given free active directory security, permission , acl analysis tool http://social.technet.microsoft.com/wiki/contents/articles/5036.free-active-directory-security-permission-and-acl-analysis-tool.aspx hope helps __________________________ best regards sarang tinguria mcp, mcsa, mcts disclaimer: posting provided no warranties or guarantees , confers no rights. Windows Server  >  Directory Services

i curious if there change in how windows 2008 r2 dns or dhcp systems handled dns registration of workstations have multiple active interfaces?  i've noticed change in behavior causing issues, , trying narrow down needs attention, dns or dhcp. for example, laptop 2 active interfaces - 1 wifi, 1 wired.  previously, 2003 dhcp server provide 2 addresses, , turn around , register 2003 dns 2 separate ip addresses particular hostname.  thus, workstation1.domain.com listed twice in dns, 2 separate records , ip address entries...to create round-robin configuration.  if round robin wasn't working quite right, ip addresses in there querying when needed. with 2008 r2 dhcp , dns server in place, dhcp servers still provides 2 addresses properly, , in dhcp logs, shows registration success dns, however, it's treating 'dns update'.  thus, last ip provided workstation, ip registered particular hostname.   in dns , see multiple entries laptop devices, see one..never two.

hi, i unable give folder permissions in <g class="gr_ gr_8 gr-alert gr_gramm gr_disable_anim_appear grammar only-ins doublereplace replacewithoutsep" data-gr-id="8" id="8">file</g> server. while searching <g class="gr_ gr_10 gr-alert gr_gramm gr_disable_anim_appear grammar multireplace" data-gr-id="10" id="10">a existing</g> sam id says sam id not <g class="gr_ gr_11 gr-alert gr_gramm gr_disable_anim_appear grammar multireplace" data-gr-id="11" id="11">exists</g>. there  ping dc. os used windows server 2012 r2 in both systems (dc , fs). following errors generated in event log. in application file server resource manager finished syncing claims active directory , encountered errors during sync (0x8007203a, server not operational. ).  please check previous event logs details. file server resource manager failed enumerate share paths or dfs paths.  ma

when opening word 2008 mac, blank document. document 8.5 x 6. go format page size , says 8.5 x 11. try change tabloid , not change page size. when go print document shows 8.5 x 6 type in, wants print whole 8.5 x 11, , page cuts off @ 8.5 x 6. i've uninstalled software , printer. still can't document open correct size says is. see pictures details. i'm running os x 10.8.5.   hi, please try this: 1. make sure paper size correct or user defined in ms application (file>page setup -or- page layout>size). 2. while in office application, open "printer selection" window (file>print -or- ctrl-p).  3. make sure your printer selected. 4. click on "properties". 5. click on "advanced".  6. click on "paper size" , either choose paper size, or select "postscript custom page size".  if select custom page size, new window open define paper size, units of measure, paper feed direction, , print offsets relat

hello, have small network, , plan install proxy server. have 1 line coming in wan, , internal lan. tried setup dhcp, network card not have static ip. beacause there no other dhcp server in network. should configure can server clients. hi, posting here.   we not recommend host tmg/isa , dhcp role on same server , can refer workaround in article below configure system:   configuring isa server computer dhcp server http://technet.microsoft.com/en-us/library/cc302605.aspx   you may post isa/tmg forum more accurate responses on how set tmg/ias in scenario:   http://social.technet.microsoft.com/forums/en-us/forefrontedgegeneral/threads   thanks.   tiger li please remember click “mark answer” on post helps you, , click “unmark answer” if marked post not answer question. can beneficial other community members reading thread. Windows Server

how create custom groups in windows 7 advanced firewall? hi, thanks post. based on test, cannot create custom groups in windows firewall advanced security on windows 7. as windows 7 related issue, please post new thread our windows 7 security forum further assistance: http://social.technet.microsoft.com/forums/en/w7itprosecurity/threads thanks, miles please remember click “mark answer” on post helps you, , click “unmark answer” if marked post not answer question. can beneficial other community members reading thread. Windows Server  >  Server Core

what occasions when writing powershell script have pay strict attention case sensitivity? i know powershell case insensitive.  for example, get-childitem same get-childitem, , can use case sensitive forms of comparison operators, -ceq example. this thread prompted me continue research wanted after similar thread brought subject of case sensitivity. in earlier thread: http://social.technet.microsoft.com/forums/en-us/winserverpowershell/thread/b95eb187-16fe-41d0-bd8e-2f22b1e5f140 kazun stated properties in code similar below must specified in lower case:   $filter = "(&(objectcategory=person)(objectclass=user))" $domain = new-object system.directoryservices.directoryentry $searcher = new-object system.directoryservices.directorysearcher $searcher .searchroot = $domain $searcher .pagesize = 200 $searcher .filter = $filter $searcher .searchscope = "subtree" $searcher .propertiestoload.add( "userprincipalname&quo

we have gpo applies wallpaper.   of course user setting applies wallpaper , gpo applied user ou.    is possible, using item level targeting, exclude 1 or 2 users getting wallpaper?  and these 2 users of course in user ou receives policy.   mqh7 yes possible. 1. open policy applies wallpaper. click on "delegations" tab , "advanced" button. 2. click "add" , select user or group want exclude policy. 3. select "deny" option "apply group policy" permission. i recommend using security group on users because makes easier control excluded form policy; you'd need modify groups membership. -alex Windows Server  >  Group Policy

hi all! does know how add windows server 2012 , windows 8 (all rtm) our corporate wsus server (windows server 2008 r2 - wsus 3 sp2 with  kb2720211 installed) ? in windowsupdalelog on client (windows 8) ... client version: core: 7.8 .9200.16384 aux: 7.8.9200.16384 warning: selfupdate check failed download package information, error = 0x800b0001 ... on wsus server update version 7.6 , wirks fine prior windows version (windows 2008 r2--) warning: skipping scan, self-update check returned 0x800b0001 fixed installing update similar thread  http://social.technet.microsoft.com/forums/en-us/winserverwsus/thread/9f6e3665-6b72-4cd3-abdd-b9f551280acc Windows Server  >  WSUS

hi all, i carry out migration. is there needs done licensing wise? cals? (i know nothing ad licensing) we using 2003 cals these work 2008 r2? thanks mac hello, for licensing best solution contact microsoft support, there rethe licensing experts. the server of course requries new license , if use ts/rd servers new rd cals required. ad not license aware way. server requires installation key. normal user/device cals not controlled on servers, have assure have correct amount of them. for upgrade please see http://msmvps.com/blogs/mweber/archive/2010/02/10/upgrading-an-active-directory-domain-from-windows-server-2003-to-windows-server-2008-or-windows-server-2008-r2.aspx best regards meinolf weber mvp, mcp, mcts microsoft mvp - directory services my blog : http://msmvps.com/blogs/mweber/ disclaimer: posting provided no warranties or guarantees , confers no rights. Windows Server

if setting nics hyper-v 2012 in cluster understand following best practices should be adhered to:- 1x hearbeat 1x csv 1x live migration 1x dedicated management port (set via check box in virtual switch manager?) 1x dedicated nic vm traffic the internal production lan runs on 10.0.1.x , 10.0.2.x, gateway 10.0.1.254. now if configure virtual switch for lan using address 10.0.1.10, new virtual switch created "allow management operating system share network adapter" setting set. if configure dedicated nic management on either 10.0.1.11 or 10.0.2.12 gateway of 10.0.1.254 multi-home problem - don't want virtual switch dedicated management port  but if don't create virtual switch how can ensure dedicated nic management isn't used hyper-v , how can avoid multi-home issue there 2 network adapters on same sub-net or same gateway? if want dedicated nic host management, not create virtual switch on nic.  without virtual switch, no vms have access nic

windows 2003 server, wsus 3 sp2 1 corporate wsus server 65 replica servers i created single group 1 pc each replica server, 60 anyway, don't require. these systems need updates other systems cannot have. when checking corporate server, target group lists 50 systems. checking individual servers, list 1 (1) pc in proper group. comparing list corporate wsus server lists of systems identified missing systems. i deleted system(s) replica server, ran wuauclt /resetauthorization /detectnow force system register again. it did, sync'd replica corporate server , checked target group on corporate server. it still listed 50 systems. and 1 worked on present, 1 system listed gone. i have other target groups more 50 systems, local (not replicas). any useful comments? and 1 worked on present, 1 system listed gone. classic symptom. see kb903262 . lawrence garvin, m.s., mcitp:ea, mcdba principal/cto, onsite technology solutions, houston, texas microsoft mvp - software distribution (20

a windows cluster employs "quorum" disk log file used record changes made active node (so can pushed passive node if required).  read "quorum" can cast vote determine if cluster remains running. log file casting vote? can please clarify this? tia, edm2 a windows cluster employs "quorum" disk log file used record changes made active node (so can pushed passive node if required).  read "quorum" can cast vote determine if cluster remains running. log file casting vote? can please clarify this? tia, edm2 quorum disk used voting make sure alive part of cluster has majority. avoid brain split issues when 2 parts of cluster continue working on same content (shared storage can have paths preserved , ethernet links between cluster nodes may down) , damage it. see: understanding quorum in failover cluster http://blogs.msdn.com/b/clustering/archive/2011/05/27/10169261.aspx quorum configurations in failover cluster http:

mark a. davis do have specific questions migration?   you can use admt active directory migration.  http://www.microsoft.com/downloads/en/details.aspx?familyid=20c0db45-db16-4d10-99f2-539b7277ccdb&displaylang=en   here notes on admt migration process: http://www.sivarajan.com/admt..html   for exchange, can use cross-org migration scenario: http://portal.sivarajan.com/2010/06/gui-interface-for-cross-forest-mailbox.html   also, @ following thread.  talking similar topic: http://social.technet.microsoft.com/forums/en/winserverds/thread/bdd9bdd4-ad8b-4c53-83f0-a07f2099c0c8         santhosh sivarajan | mcts, mcse (w2k3/w2k/nt4), mcsa (w2k3/w2k/msg), ccna, network+ houston, tx blogs - http://blogs.sivarajan.com/ articles - http://www.sivarajan.com/publications.html twitter: @santhosh_sivara - http://twitter.com/santhosh_sivara posting provided no warranties, , confers no rights.