DNG

hi all i have win 2008 r2 sp1 , i've installed hyper-v role , deployed 30 virtual machines have different configurations . is possible backup virtual machines list , configuration ( not vhds ) if later  cleared windows , installed new win 2008 r2 sp1 , able redeploy virtual machines via command line ( powershell ) , not manually configure them ?  ( don't want backup .vhd files in procedure , because vhd files in different volume , not lost during windows format , installing ) thanks in advance hi,   you may try export configuration only.   performing “configuration only” export / import on hyper-v http://blogs.msdn.com/b/virtual_pc_guy/archive/2010/03/24/performing-a-configuration-only-export-import-on-hyper-v.aspx     best regards, vincent hu     Windows Server  > 

hi folks i having 6 domain controllers site wide , few domain admin each location. want delegate local admin rights other admin access same desktop local admin rights. i delegated group list of members , added them respective ou have access in each sites. if these members login domain controller local admin rights reflect gaining access dc. any idea how can restrict this? or missed configurations control windows 7 admins not have access dc? cheers mohamed ibrahim nowshad hi, please follow below steps denying logon dc members of group, for example deny dc logon members of group "dc deny logon group", - create group policy object (gpo) linked @ "domain controllers" ou  called "dc deny interactive logon". - right click , edit gpo "dc deny interactive logon" , navigate node "computer configuration\windows settings\security settings\local policies\user rights assignment". - in "user rights assignment"

i have need report metrics ad fs successful , failed authentications per relying party in ad fs. however, cannot seem locate information on how perform this. have explored ad fs db not seem record authentications. have looked @ event viewer don't think reliable. can information perfmon thing records information since last reboot or restart of adfs. is there a way log , report number of authentications per relying party in ad fs? brian b. hi brian, based on description, adfs questions, in order better help, it's recommended ask suggestions in following forum. claims based access platform (cba), code-named geneva https://social.msdn.microsoft.com/forums/vstudio/en-us/home?forum=geneva best regards, frank shen please remember mark replies answers if , unmark them if provide no help. if have feedback technet subscriber support, contact tnmff@microsoft.com. Windows Server

i going crazy here, i have 3 nodes. node 1 , 3 joined domain without issues. but node number 2 reason gives me error: nodes identical eachother in settings, updates, nic config binding order , lmhost file updates name , ip of dc\dns box.....help! reformatted server twice! same issue. note: information intended network administrator.  if not network's administrator, notify administrator received information, has been recorded in file c:\windows\debug\dcdiag.txt. dns queried service location (srv) resource record used locate domain controller domain "cluster.local": the query srv record _ldap._tcp.dc._msdcs.cluster.local the following domain controllers identified query: host6.cluster.local no domain controllers contacted. common causes of error include: - host (a) or (aaaa) records map names of domain controllers ip addresses missing or contain incorrect addresses. - domain controllers registered in dns not connected network or not runnin

i have small cluster in lab, , try keep them installed same updates, don't want install sp1 on nodes @ same time or on same day, in case problems happen don't want whole cluster down. i thinking upgrading nodes 1 @ time, day or 2 in between.  has seen guide or best ractices upgrading 2008 r2 cluster nodes service pack 1? here ya go: http://workinghardinit.wordpress.com/2011/02/17/upgrading-a-hyper-v-r2-cluster-to-windows-2008-r2-sp1/ just remember can't live migrate sp1 rtm when you've upgraded integration components of guests hyper-v r2 sp1 version. Windows Server  >  High Availability (Clustering)

recently have installed windows server 2008 r2. have installed hyper-v , configured 4 vms & installed 2008 r2 in of them. now, unable communicate or take action on 1 of servers , heartbeat status  : lost communication.  please advice needful contact server. thank you. first of all, how configure heartbeat? have related errors in event viewer? quoted: to eliminate possible communication issues, remove unnecessary network traffic network adapter set internal cluster communications (this adapter known heartbeat or private network adapter). clustering communicates using remote procedure call (rpc) calls on ip sockets user datagram protocol (udp) packets. process described in article: •removes netbios interconnect. •sets proper cluster communication priority order. •sets proper adapter binding order. •defines proper network adapter speed , mode. •configures tcp/ip correctly. •disable media sense feature (in windows 2000 only). bob lin, mvp, mcse & cne network

we have rack containing 6 servers (including our dc) running server 2008 r2 connected apc ups. have issue there emergency shutoff switch in 1 of classrooms gets "accidentally bumped into" on occasions, once month. shutoff switch on same circuit breaker our servers ups connected (no can not moved). when breaker trips, ups switches on battery power, , servers have hour until ups looses battery power , shut down. phone calls saying network down. have go electrical room, switch breaker on, go server room , power on servers again.  i need resolution problem let me know when servers go down, can run on , them , running in time before flooded phone calls. there 200 computers on network it's pretty big deal when our file shares, , dc go down. found software "powerchute business edition" can download apc free. reading documentation looks if connect serial cable 1 of servers ups, , install software on admin workstation and receive an alert when ups switches batt

hello, i have domain joined windows 2012 xenserver guest, inherited, receiving "there no logon servers available service logon request error" error since performing latest windows updates.  i locked out of local administrators due lack of documentation. have no backups or snapshots of server either (this missed). would reinstalling windows on current os possible fix , still retain profile information? thank you, joe i've had success tool (on various workstation/servers os) on years, regain access local admin accounts: http://pogostick.net/~pnh/ntpasswd/ don [doesn't work msft, , they're glad ;] Windows Server  >  Windows Server 2012 General

hallo! i have set remote dexktop service using "quick" deployment method in server manager , working greate internally, cannot start app published in remote web access outside our network. the problem wants start the using internal url, example, server.domain.local, instead of external one, example remote.server.com. i therefore want know how can change default url remote web access server , remote web apps in windows server 2012? i have allready looked in server manager , can change of deployment settings in server manager, there no way alter url of remote web access server. see below images: pressing internal url results in opening internal url. this simple in windows server 2008 r2 using tsconfig tool, not seam way of solving in server manager. a possible sollution alter registry someware in hklm->software->microsoft->windows nt->terminal services. can easaly lead problems due wrong format, etc. , not supported. is there simpler , sup

i running window 7 ultimate 64 bit machine, 12 gb ram, 4 screens.  all genuine ms , other software, no torrents or p2p. a while back, backup stopped running , ms security essentials reports virus backup fails.  i have ms software on of machines. trojandownloader:java/openconnection.n http://www.microsoft.com/security/portal/threat/encyclopedia/entry.aspx?name=trojandownloader%3ajava%2fopenconnection.nl&threatid=2147645971   i removed java js2e runtime directed , downloaded latest.  problem persists.   any appreciated :)   hi, generally speaking, recommend have reinstallation or restore computer previous backup if have virus on computer. by way, virus issue, please visit microsoft  virus solution , security center   for resources , tools keep pc safe , healthy. if having issues installing update itself, visit  support microsoft update  for resources , tools keep pc updated latest updates.  also, can check microsoft security , pr

i installed updates microsoft , went far installation went. after updates installed system restarted usual. however, after first restart, system finalizes updates , gets #269 of 116147 files installed , hangs telling me there error trying install file , after brief period switches fatal error , won't else. have reboot system. have tried normal things "reboot safe mode, tried repair, on , forth", no avail. run hp ml350 g6 dual intel zeon 2.13's 24gig of ram. have not had problems system until installed these updates. know can roll update pack? or how repair registry entry? have on 150 accounts setup in ad ds not mention other os settings specific particular install. can me please....thnak in advance! this error code recieve when windows hangs installing updates "fatal error (c0000043) applying updates operation 269 of 116147" update, got our rig , running. had write script take care of the pending.xml file. far can tell update service attempts 2 tii

using delegate control wizard, i've delegated "reset user password , force change @ next logon" group called support-staff users under people container. they able reset passwords on users, box force password changed @ next logon grayed out. i have checked effective permissions of user password being reset , can confirm "reset password", "read pwdlastset" , "write pwdlastset" aces ticked group support-staff (and user trying reset password member of support-staff). the user password being reset not member of adminsdholder. if user resetting password tries reset own password through same means, box forcing user reset password on next logon no longer grayed out. the domain windows 2008 r2 , members of support-staff use windows xp machine administration tool pack 2003 sp1 installed.   cheers, john have checked if members of support-staff able set value of pwdlastset attribute via script ( http://technet.microsoft.com/en-us/librar

hi, i have windows 2003 r2 server installation on hp ml110 g6 machine. server physically located on different company whom visit once week. perform administrative task server remotely via remote desktop. every time visit company , log on locally same server, log in prompt not appear , shows blank gray screen. can still log in server using remote desktop instead. problem resolved whenever perform system restart remotely. i have found similar problems in internet none of has direct solution. point hardware driver, malware and/or virus issues. said server domain controller, , file server. hi alden,   can use switch "/console" remotely connect physical console session on server (also known session 0)?   if it's result same login locally, suggest perform clean-boot of system isolate malware , virus or 3rd party software influence.   to manually perform clean boot of computer in windows 2000, windows xp, or windows server 2003, follow these steps: click start , c

hello everyone. the normal behavior of word 2016 that expect when save or open document in sharepoint library, can see custom columns of library custom properties in document. behavior works libraries i've tried particular onedrive "/documents". in other words, when open document special library, can see no custom property in document and can see them in library web page. is known/expected/designed 'feature' of word 2016 , sharepoint? i tried sharepoint 2016 on premise , sharepoint online same result. to reproduce issue: 1. create column in onedrive (/documents) library. example, in https://<tenantname>-my.sharepoint.com/personal/<username>/documents 2. save docx file in library 3. open file in word 2016 4. check info backstage in word 2016 in normal library, able see custom column: but if save unique library, doesn't work me. does link help? https://technet.microsoft.com/en-us/library/dn948289.aspx franklinj

i found code on site.         $comparedate=get-date    $numberdays=90    $csvfilelocation='c:\temp\oldcomps.csv'    get-qadcomputer -sizelimit 0 -includedproperties lastlogontimestamp | { ($comparedate-$_.lastlogontimestamp).days -gt $numberdays } | select-object name, lastlogontimestamp, osname, parentcontainerdn | sort-object modificationdate, name | export-csv $csvfilelocation    not point ou.  how point ou?  and 2)  once have list of machines inactive how archive (or move them) ou?   , should effect workstations, not servers. mqh7 use searchroot option set search specific ou. get-qadcomputer -searchroot "full path of ou" .... regards sivakarthi Windows Server  >  Windows PowerShell

remote desktop programs...how can i: 1.) first determine window size in rdp , msi prior deployment. 2.) make published program seamless 3.) examples of command line arguments   steve 1) remote program desktop size = local desktop size, application opens uses same logic on normal desktop - either choosing previous co-ordinates of last launch or default coordinates.  applications specific , not function of remote programs. 2) remote programs seamless. 3) not have complete command line refrence @ time.  should use remote programs ui creating rdp , msi files - allow see relevant settings. however key lines remote program follows (note requires lh server host , new vista rdp client) remoteapplicationmode:i:1 remoteapplicationname:s:remote microsoft office communicator 2005 alternate shell:s:<application path> application path path on ts, example on x64 box path office communicator follows. alternate shell:s:c:\program files (x86)\microsoft office communicat

i tried installing 64bit sp2 windows 2008 , said not correct version.  there different sp 2008 r2 enterprise? there no service pack out 2008 r2 of yet , cannot apply sp2 meant 2008 on r2 system. frequently asked questions: windows server 2008 service pack 2 , windows vista service pack 2 http://technet.microsoft.com/en-us/library/dd335038(ws.10).aspx from summary... " can windows server 2008 sp2 applied windows server 2008 r2 machine ? no ." visit: anitkb.com , knowledge base. Windows Server  >  Windows Server General Forum

i m trying set policy if user make 5 failed attempts login profile or account locked , domain controlr admin can unlock it. tried set policy in gpo , after testing it wasnt locking profile or idea appreciated. ammar barya i believe can find answer here: http://technet.microsoft.com/en-us/library/cc781491(ws.10).aspx just... not domain admins able unlock account, believe, account operators able that Windows Server  >  Windows Server General Forum

hi all; in our environment have 23 dcs, 2 of rodc. when run dcdiag /v /c /d /s:corpmdcp04 >c:\dcdiag.txt test results ok except "verifyenterprisereference s" test fails. what's more; please note conflicting ntdsconnection in frs test. all dcs running winsrv2k8r2 sp1 standard x64. dcs gcs. dfl windows server 2008 r2 & ffl windows server 2008 r2 all mentioned dcs in dcdiag output active dcs, , non of them has been deleted. the current dfsr global state is: start should initiate migration using following commands, if not, how fix this? dfsrmig /setglobalstate = 1 dfsrmig /setglobalstate = 2 dfsrmig /setglobalstate = 3 fsmo roles distributed follows: c:\>netdom query fsmo schema master corpmdcp05.contoso.com domain naming master corpmdcp04.contoso.com pdc corpmdcp04.contoso.com rid pool manager corpmdcp04.contoso.com infrastructure master corpmdcp05.contoso.com command completed successfully. dcdiag & ntfsresult files

hello. is possible update powershell on hyper-v server 2012r? i thought kb3134759 me, "the update not applicable". maybe there other way?.. hi, did checked discussion? https://social.technet.microsoft.com/forums/azure/en-us/3b13b6a0-ecb2-429d-ad8d-533b7322c7ee/installation-of-powershell-50-on-windows-2012-r2?forum=winserverpowershell ------------------------------------------------------------------------------------------------------------ if found post helpful, please give "helpful" vote.  please remember mark replies answers if help. (nedimmehic.org) Windows Server  >  Windows PowerShell

i'm having server crashes on few citrix app servers , while trouble shooting, 1 consistent thing see in event viewer.  example, @ 12:00pm there event says "the previous system shutdown @ 1:24:51 pm on 11/12/2008 unexpected."  the problem is, not 1:04pm yet.  if you're looking @ clock of server, show correct time.  debugging points cause win32k.sys.  any insight chance?  appears randomly happening, happening more frequently.  can go 3 weeks nothing, , twice in 1 day.  nothing out of ordinary , no new software has been installed.  i'm not sure if win32k.sys have system time...and why in world event viewer showing incorrect time.  getting time anyway?  think not serious if hour off or something.  conclude has ut or dst or something. i'm going crazy here.   hi,   base on current information, cannot provide effective fixes. please collect following information research.   1.        does incorrect time issue occur when server crashed? 2.        does iss

hey everyone! i'm new community , have basic ps experience. i'm looking create script can grab license key information snagit of our enterprise machines. have bunch of licenses out there, no 1 before me kept record of belonged , were. trying see if there easier way going through 300 or users have installed , grabbing manually. hi, have asked vendor if have license management capabilities? we're not going able tell how should this, don't have access software. Windows Server  >  Windows PowerShell

hello, am in confusion, can tel me difference between 1 .domain controllers>default domain controller policy  and 2. group policy object> default domain controller policy   in group policy management console  and know define these categories. use second option. i have attached screenshot information.  regards, dharanesh, this first/upper item link gpo, second/lower item actual gpo. (notice link, has shortcut arrow showing) by default, when double-click on link, message display says "you have clicked on link....." , messagbox offers checkbox "do not display message again..." effectively equivalent shortcut-to-a-file vs. actual file. don (please take moment "vote helpful" and/or "mark answer", applicable. helps community, keeps forums tidy, , recognises useful contributions. thanks!) Windows Server

hi, we're looking deploy wsus in enterprise environment central datacentre (which hosts internet connection), , around 20 remote sites. plan have upstream wsus on virtual 2012 r2 server @ datacentre, , remote wsus servers (running in replica mode) @ each site. although have 2012 r2 host servers @ datacentre, don't (as yet) have them @ each of remote sites (they're still on 2008 r2). question is... possible have wsus 2012 r2 upstream server wsus 2008 r2 (wsus 3.2?) servers replicas? understand need change port used between upstream , replica, there compatibility issues approach? thanks tony hi tony, we can use wsus 3.0 sp2 downstream server. when configure upstream of wsus 3.0 sp2 server, need specify port used upstream sever. here screenshot of lab server. best regards. steven lee technet community support Windows Server

hello, can windows server 2008 r2 foundation edition used domain controller hyper-v failover cluster? the cluster hosts 2 microsoft hyper-v servers (free version).  trying set failover cluster as inexpensively possible. domain controller separate machine , hope can foundation instead of the full 2008r2. there 7 users accesing domain which falls under foundations 15 user limit. zendecat   as understand want use windows 2008 r2 foundation server http://www.microsoft.com/windowsserver2008/en/us/foundation.aspx  in provided link says server can used ad see snipit below.  looks go.   windows server 2008 r2 foundation recommended uses   windows server 2008 r2 foundation ideal first server , can deployed create single-server network. windows server foundation can deployed in variety of ways meet needs.     core infrastructure     windows server foundation excellent option use single or multiple workloads, such file sharing, print sha

hi, i have written below script user based on conditions, move user different ou, remove multiple groups user. not sure how write code below requirement. the requirement , once user, need find associated admin account if exist (for eg., if found user (samaccountname - abc001) below script, related admin account "admabc001", means "adm" prefix user's account) , same activity move ou , remove groups. logprogress seperate function.  please me write code requirement. $groups= get-content "c:\scripts\moveadgroups\groups.txt" $activedirectoryserver = "test.ia" $office = "test" $date = (get-date).adddays(-2) try {     $users = get-aduser -filter{(office -eq $office) -and (whenchanged -ge $date)} -properties samaccountname -erroraction stop -server $activedirectoryserver } catch {     logprogress -logtype "error" -logline "failed load the list of users. error was: $($error[0])." } lo

ispublic isserial name basetype -------- -------- ---- -------- true false pscustomobject system.object ispublic isserial name basetype -------- -------- ---- --------

users unable connect wifi, when verificated in radius server (domain controller well) found below logs; authentication details:                 connection request policy name:  use windows authentication users                 network policy name:                   corpwifi                 authentication server:                  dcwifi101.corporateroot.net                 authentication type:                     peap                 eap type:                                    microsoft: smart card or other certificate                 account session identifier:             -                 logging results:                           accounting information written local log file.                 reason code:                               259                 reason:                                       the revocation function unable check revocation because revocation server offline. if problem certificates please solving same , how check validity of crl , ma

i installed , activated new windows server 2008 r2 had problem disk , want format , again install on same hard disk, wondering if there problem once format disk , try activate software. way uninstall key , reinstall again on same pc. thanks do mean windows product key? if so, oem , retail channel productkeys, there no need uninstall key, if reinstalling upon same hardware , key has ever been used on hardware. classic reinstall scenario , activation not issue. if using volume licensing product key (e.g. mak or kmshost or kmsclient): - mak, cannot reclaim mak pkey, each , every mak activation causes mak activation permanently consumed. cannot reclaim mak pkey activations. - kmshost, works same way oem/retail, i.e., if re-installing same pkey upon same hardware, can quite few times (i think 10) no issue - kmsclient, there no maximum/upper limit on activations @ all, unlimited. don (please take moment "vote helpful" and/or "mark answer", applicable.

i working on providing disk space capacity on our servers.  thought had figured out calculations not correct. i able find totalcapacity , totalfreespace have step remove 80 totalcapacity give final capacity per server. so have list of servers in csv import-csv $infile | foreach-object { $computer = $_.computername $adjustment = 80 later in script: $volumes = get-wmiobject -computer $computer -credential -class 'win32_volume' -filter 'drivetype=3' $volumes | foreach-object { $volume = $_ $volumename = $volume.name write-debug "`$volumename:,$volumename" #$size = 0 #$volumecapacity = $volume.capacity $totalcapacity += $volume.capacity #$freesize = 0 #$volumefreespace = $volume.freespace $totalfreespace += $volume.freespace } $adjustedcapacity = $totalcapacity - $adjustment inputobject: add-member -inputobject $properties -name 'total allocation (gb)' -value ($totalcapacity / 1gb).tostring("n2") -memb

on 1 of machines server 2012 rc, after each reboot storage pool created disappears. the fsrm logs following: file server resource manager service error: unexpected error.  error-specific details:    error: getvolumenameforvolumemountpoint, 0x80070001, incorrect function. and disks remain locked , inaccessible - not visible in primordial pool nor can delete "storage spaces protection partition" them. initially, worked around creating empty 100mb partition @ begin of each disk, temporarily stopped happening, after time started disappear again. is known issue? can't find related on web( hi oleksandr, first started attempting reproduce behavior seeing , trying steps had sent me, , unable reproduce issue, proceeded collecting memory.dmp. we have finished reviewing updated memory.dmp submitted, , i’m sorry indicating hardware failure. causes either faulty ram, or issue processor. or if overclocking cpu, setting default best first step. let me ex

ok  here how goes a simple scriptlet ask selection drop down.  the 1 can see here: script: #################################################################### [void] [system.reflection.assembly]::loadwithpartialname("system.windows.forms") [void] [system.reflection.assembly]::loadwithpartialname("system.drawing") $objform = new-object system.windows.forms.form $objform.text = "select computer" $objform.size = new-object system.drawing.size(300,200) $objform.startposition = "centerscreen" $objform.keypreview = $true $objform.add_keydown({if ($_.keycode -eq "enter") {$x=$objlistbox.selecteditem;$objform.close()}}) $objform.add_keydown({if ($_.keycode -eq "escape") {$objform.close()}}) $okbutton = new-object system.windows.forms.button $okbutton.location = new-object system.drawing.size(75,120) $okbutton.size = new-object system.drawing.size(75,23) $okbutton.text = "ok" $

the following code: $x = $host.ui.rawui.readkey("noecho,includekeydown") ...works in version 2 session, gives following error in version 3: exception calling "readkey" "1" argument(s): "the method or operation not implemented." @ line:1 char:1 + $key = $host.ui.rawui.readkey("noecho,includekeydown") + ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~     + categoryinfo          : notspecified: (:) [], methodinvocationexception     + fullyqualifiederrorid : notimplementedexception   can else verify 'issue'? ([string](0..9|%{[char][int](32+("39826578846355658268").substring(($_*2),2))})).replace(' ','') i receive same error on v3 ctp2.  suggest posting connect.microsoft.com new bug. rich prescott | infrastructure architect, windows engineer , powershell blogger | mcitp, mcts, mcp engineering efficiency @rich_prescott client system administration tool ad user cr

hi all, so have got rds environment running rd web, broker , couple of session hosts using collection provides domain users access. works well. however make accessible remote users, understand need add rd gateway this? i think hyper-v host best server add this, hyper-v server domain joined , public facing / has public ip forwarded router. therefore figure make sense point @ incoming external connections. i not sure how go adding rd gateway role. need paid ssl cert or can use self signed? do need create record on internet domain point public ip of hyper-v server / rd gateway? any on setting appreciated. thanks hi, i not sure how go adding rd gateway role. need paid ssl cert or can use self signed? there isn’t enforcement regarding certificate, may choose kind of certificate used. using self-signed certificate lead security warning message since clients don’t trust certificate; may deploy enterprise ca , add root ca certificate trusted root certification authoritie

we have multiple users in different ou's. when users edits permissions on local machine he's able see users other ou's. is there way prevent users checking these names. user must stil able check names own ou. any suggestion welcome hi remco8888  ,   thanks posting here.   according mentioned , think going to disallow users not included in ou to see or list object of ou . if misunderstand ,please let me know.   base on knowledge , can achieved set ou security permission ,here workaround reference: i assume ou’s name is “people” , “hide”   1.        create security group called “visible”(can name) , make users of “people” ou member of group(this can done selecting users under “people” ou , right click “add group”) 2.        right click on “hide” ou go properties->security->advanced , click on add. add “visible” group , click ok open "permission entry” box. make sure “apply onto” been selected “ object , child objects”. check box of

hi we in process of ordering 2 new servers, both same spec 4 processors.  use vmware create 4 virtual machines on each server.  the question relates licencing microsoft stipulates products based on number of processors.  each virtual machine access 1 processor ... want ensure covered under ms licencing in scenario.  as far can see, each server see it's virtualised environment , 1 processor.  or wrong, , somehow can work out hardware has 4 processors , therefore need pay more, though not being used.   i hope makes sense!  in advance kevin http://www.microsoft.com/download/en/details.aspx?id=15113 this document should of help, check chapter ii.e. – per processor products licensed virtual processor when used in virtual oses Windows Server  >  Windows Server General Forum

basically want able setup windows live family safety 2011 using powershell setting powershell @ possible? thanks, brendan i'm going point fs portal: http://windowslivehelp.com/product.aspx?productid=4 i'm going take guess , propose such client technology wasn't built automation in mind.  whether com interface or customizable xml, don't think there's going interface powershell can use. Windows Server  >  Windows PowerShell

 my company has 1 dc dns, dhcp server included. primary dc.  now, have 1 more branch office , have build 1 addtional dc.  the addtional dc dc global catalog, doesn't has dhcp server role.  so, when workstation join domain branch office, didn't have dns record on ad.  how resolve , config automatic update between 2 dc ???  thanks !!! first of all, there no primary , secondary dc. dcs rw except rodcs. please install dns role on new additional dc , ad-integrated zones replicated including domain zones (if still ad-integrated). once done, check zone accepting dns updates. for client computers in second site, please make them point dns server in site primary dns server , 1 in other site secondary one. this posting provided "as is" no warranties or guarantees , , confers no rights.       microsoft student partner 2010 / 2011 microsoft certified professional microsoft certified systems administrator: security microsoft certified syst