Add standalone webserver in 2012 r2 domain with essentials experience

Hi all,
I'm struggling to configure a standalone web server to run in a server 2012 r2 essentials experience domain.  The goal is to leave the essentials hosted anywhere access features managed by iis on the server, and also serve a public website on a separate
win 7/8 machine.
The essentials experience access anywhere features use ports 80 and 443, and the current configuration works.  The standalone server can use ports 8080/8443.  The anywhere access wizard configured the router to forward ports 80 and 443 to the 2012
server.  I added forwarding rules to the router for 8080 and 8443 to the standalone.
How do I indicate that www.standalone-site.com is a) on port 8080 and b) on a different domain computer?  I attempted to do so with iis bindings, and Get-WebBinding shows:
http          192.168.192.12:8080:www.standalone-site.com
However, internal browsing to www.standalone-site.com results in an ERR_CONNECTION_TIMED_OUT error.
Internal browsing to www.standalone-site.com:8080 works as expected.
I'd appreciate any help.
Thanks,
Steve

Hi Larry,
Thanks for the suggestions.  I left out some details -- using the DMZ along with a second router -- but I think the original question still stands.  All queries for domain.com will still want resolution from the Exxentials Experience AD DS
(with DNS).  Some queries will be sourced by remote staff looking for Access Anywhere (a key reason we're using Essentials Exp).  Other queries will be looking for www.domain.com, regardless of where it is hosted.  I don't know how to configure
that.  Should I be looking at IIS's Application Request Routing to route traffic based on the fqdn?
I'd like to avoid the easy solution of acquiring a different domain name for web site vs. the staff's Anywhere Access portal.  I do this as a favor for a few non profits.  I've been handling their domain reg and ddns bills and it starts to add
up.
I do appreciate the reply.  Any follow up based on what I've written here?
Thanks again,
Steve

Similar Messages

  • Existing DFS namespace with Essentials Experience Role

    I am testing a deployment of the Essentials Experience Role in an existing AD domain.  I do not see a way to publish folders using the DFS namespace from the Essentials COnsole.  The goal is to bring these folders into the Remote Web page.  The
    add new folder tool will let you browse the network but you cannot type in the \\domain.com\namespace.

    Hi,
    Do you mean that you click Add a folder task on the STORAGE page and publish folders using the DFS namespace? If you, it seems that we cannot use DFS namespace to publish folders.
    Please see the screenshot below, when I browse the dfs namespace folder in c:\DFSRoots:
    Best Regards,
    Mandy
    Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected]

  • SCCM 2012 Multiple Domains with a single SCCM instance

    Hello:
    Can SCCM 2012 be deployed to multiple untrusted domains within a single install?
    I work for a company that maintains multiple client networks all Windows Domain and non are trusted / or are even aware of the other sites.
    I would like to setup a SCCM 2012 (and also a Virtual Machine Manager for HyperV) at my office and manage all my different client sites from the single SCCM server.
    The connection would be from my office over the Internet in through their on prem firewall
    Currently we use Centra Stage and have used Kaseya in the past. I am looking to move from them and focus on SCCM to do this for me.
    Is this even possible to do with the product?
    Thanks in Advance!
    -David

    Yes, ConfigMgr can manage (un)trusted forests, but what exactly do you mean with "not aware of the other sites"? A requirement is that name resolution and a connection is possible.
    For some good scenario's see also this series:
    http://blogs.technet.com/b/neilp/archive/2012/08/20/cross-forest-support-in-system-center-2012-configuration-manager-part-1.aspx
    My Blog: http://www.petervanderwoude.nl/
    Follow me on twitter: pvanderwoude

  • Impossible to connect to Remote Web Access (Win Server 2012 Standard R2 with Essential Experience)

    Hi everyone,
    I've got a little problem and maybe someone here could help me a little.
    I've installed the essential experience role on my 2012 R2 standard server and I configured all the stuff to connect my server via remote web access. Unfotunatly, I the connection doesn't work and i've got an error message like "Impossible to connect
    with RWA. Please contact the person in charge of the server".
    I spend a long time looking about my problem on google but didn't find how to solve it.
    Thanks for any help
    Julien
    + Here is a part of my log file :
    [11464] 141225.214952.6462: RemoteAccess: [Website] RequestedLogOnPage: Previously in this browser session it went to the DefaultWithoutDetection, so now serving the same page
    [8248] 141225.215001.2419: RemoteAccess: [Website] RequestedLogOnPage: Previously in this browser session it went to the DefaultWithoutDetection, so now serving the same page
    [8248] 141225.215001.2775: RemoteAccess: [Website] A logon attempt detected
    [8248] 141225.215001.4185: RemoteAccess: [Identity] A new LogOn starts.
    [8248] 141225.215001.5005: IDENTITY: Looking for Microsoft.WindowsServerSolutions.Users.IUserLogonProvider
    [8248] 141225.215002.9182: RemoteAccess: [HSBSMembershipProvider] OnLogin took 1448 milliseconds
    [8248] 141225.215002.9292: RemoteAccess: [Identity] DOMAIN\User logged on.
    [8248] 141225.215003.0032: RemoteAccess: [Extensibility] Cannot load AddInfoProvider; Provider not specified in the config file.
    [8248] 141225.215003.0032: RemoteAccess: [Extensibility] Try to load addins
    [8248] 141225.215005.6781: RemoteAccess: [Extensibility] Loading built in Addins succeeds
    [8248] 141225.215005.6781: RemoteAccess: [Extensibility] The folder for third party add-ins are missing or broken.
    [8248] 141225.215005.6781: RemoteAccess: [Extensibility] Loading third party Addins succeeds
    [8248] 141225.215005.9428: RemoteAccess: [Customization] Start loading customization settings (4401b62c-fcb6-49dd-869d-d54cb0e3fa3c): Culture fr-FR
    [8248] 141225.215005.9468: RemoteAccess: [Customization] Folder of Customization Level Partner doesn't exist.
    [8248] 141225.215005.9498: RemoteAccess: [Customization] Start loading customization settings (54511254-bb20-4e95-91d9-e7553716099b): Culture fr-FR
    [8248] 141225.215005.9538: RemoteAccess: [Customization] Folder of Customization Level Partner doesn't exist.
    [13152] 141225.215014.8345: RemoteAccess: [Website] RequestedLogOnPage: Previously in this browser session it went to the DefaultWithoutDetection, so now serving the same page
    [8248] 141225.215015.7706: RemoteAccess: [Website] Try to clear sessoin state at ClearSessionHandler
    [864] 141225.215118.9208: RemoteAccess: [Website] RequestedLogOnPage: This is a Desktop browser, UserAgent: RaMgmtSvc
    [864] 141225.215118.9218: RemoteAccess: [Website] +++++ Session fdzxgm01ny0qzphn4garzpym is starting +++++
    [864] 141225.215118.9218: CultureSetting: None of browser languages can be exactly matched to supported list.
    [864] 141225.215118.9218: RemoteAccess: [Website] Session fdzxgm01ny0qzphn4garzpym finished initializing.
    [864] 141225.215118.9218: CultureSetting: None of browser languages can be exactly matched to supported list.
    [864] 141225.215118.9228: RemoteAccess: [Customization] Start loading customization settings (308a562a-fd70-4815-a154-4a3d6ac4b053): Culture fr-FR
    [864] 141225.215118.9258: RemoteAccess: [Customization] Folder of Customization Level Partner doesn't exist.
    [864] 141225.215118.9278: RemoteAccess: [Customization] Start loading customization settings (d4404e0f-1d72-4c10-8e42-7dddb1c429b6): Culture fr-FR
    [864] 141225.215118.9298: RemoteAccess: [Customization] Folder of Customization Level Partner doesn't exist.
    [864] 141225.215118.9328: CultureSetting: None of browser languages can be exactly matched to supported list.
    [8248] 141225.215132.4461: RemoteAccess: [Website] Session l3swbcif1hdbhpsw4g22j5fr is about to end.
    [8248] 141225.215132.4461: RemoteAccess: [Framework] SessionStateBase attaches to l3swbcif1hdbhpsw4g22j5fr in thread 81
    [8248] 141225.215132.4571: RemoteAccess: [Framework] SessionStateBase detaches from System.Web.SessionState.HttpSessionState in thread 81
    [8248] 141225.215132.4581: RemoteAccess: [TaskManagement] No Task Manager instance found in SessionEnd
    [8248] 141225.215132.4581: RemoteAccess: [Extensibility] Cannot load AddInfoProvider; Provider not specified in the config file.
    [8248] 141225.215132.4581: RemoteAccess: [Extensibility] Try to load addins
    [8248] 141225.215132.4711: RemoteAccess: [Extensibility] Loading built in Addins succeeds
    [8248] 141225.215132.4721: RemoteAccess: [Extensibility] The folder for third party add-ins are missing or broken.
    [8248] 141225.215132.4721: RemoteAccess: [Extensibility] Loading third party Addins succeeds
    [8248] 141225.215132.4721: RemoteAccess: [Framework] SessionStateBase attaches to l3swbcif1hdbhpsw4g22j5fr in thread 81
    [8248] 141225.215132.4721: RemoteAccess: [Framework] SessionStateBase detaches from System.Web.SessionState.HttpSessionState in thread 81
    [864] 141225.215618.9753: RemoteAccess: [Website] RequestedLogOnPage: This is a Desktop browser, UserAgent: RaMgmtSvc
    [864] 141225.215618.9753: RemoteAccess: [Website] +++++ Session g0zk1xuahs2rabpfzliofwr3 is starting +++++
    [864] 141225.215618.9753: CultureSetting: None of browser languages can be exactly matched to supported list.
    [864] 141225.215618.9763: RemoteAccess: [Website] Session g0zk1xuahs2rabpfzliofwr3 finished initializing.
    [864] 141225.215618.9763: CultureSetting: None of browser languages can be exactly matched to supported list.
    [864] 141225.215618.9783: RemoteAccess: [Customization] Start loading customization settings (cef3ea82-5347-4ce6-b125-a6180787c50b): Culture fr-FR
    [864] 141225.215619.0203: RemoteAccess: [Customization] Folder of Customization Level Partner doesn't exist.
    [864] 141225.215619.0874: RemoteAccess: [Customization] Start loading customization settings (a4e28700-1ea1-4253-8bb6-fdb279a69d8c): Culture fr-FR
    [864] 141225.215619.0904: RemoteAccess: [Customization] Folder of Customization Level Partner doesn't exist.
    [864] 141225.215619.0934: CultureSetting: None of browser languages can be exactly matched to supported list.
    [8248] 141225.215632.5660: RemoteAccess: [Website] Session v2z1axfm1qglfloipkpkmgsy is about to end.
    [8248] 141225.215632.5660: RemoteAccess: [Framework] SessionStateBase attaches to v2z1axfm1qglfloipkpkmgsy in thread 81
    [8248] 141225.215632.5660: RemoteAccess: [Framework] SessionStateBase detaches from System.Web.SessionState.HttpSessionState in thread 81
    [8248] 141225.215632.5660: RemoteAccess: [TaskManagement] No Task Manager instance found in SessionEnd
    [8248] 141225.215632.5670: RemoteAccess: [Extensibility] Cannot load AddInfoProvider; Provider not specified in the config file.
    [8248] 141225.215632.5670: RemoteAccess: [Extensibility] Try to load addins
    [8248] 141225.215632.7479: RemoteAccess: [Extensibility] Loading built in Addins succeeds
    [8248] 141225.215632.7479: RemoteAccess: [Extensibility] The folder for third party add-ins are missing or broken.
    [8248] 141225.215632.7479: RemoteAccess: [Extensibility] Loading third party Addins succeeds
    [8248] 141225.215632.7489: RemoteAccess: [Framework] SessionStateBase attaches to v2z1axfm1qglfloipkpkmgsy in thread 81
    [8248] 141225.215632.7489: RemoteAccess: [Framework] SessionStateBase detaches from System.Web.SessionState.HttpSessionState in thread 81
    [13152] 141225.220118.8912: RemoteAccess: [Website] RequestedLogOnPage: This is a Desktop browser, UserAgent: RaMgmtSvc
    [13152] 141225.220118.8912: RemoteAccess: [Website] +++++ Session 3v0qgg52o3sj52nw0mmseeva is starting +++++
    [13152] 141225.220118.8922: CultureSetting: None of browser languages can be exactly matched to supported list.
    [13152] 141225.220118.8922: RemoteAccess: [Website] Session 3v0qgg52o3sj52nw0mmseeva finished initializing.
    [13152] 141225.220118.8922: CultureSetting: None of browser languages can be exactly matched to supported list.
    [13152] 141225.220118.8932: RemoteAccess: [Customization] Start loading customization settings (f320d814-acfe-44dd-953b-4516b1010621): Culture fr-FR
    [13152] 141225.220118.9162: RemoteAccess: [Customization] Folder of Customization Level Partner doesn't exist.
    [13152] 141225.220118.9402: RemoteAccess: [Customization] Start loading customization settings (9f646469-b201-475c-9876-bdd6fa100c26): Culture fr-FR
    [13152] 141225.220118.9432: RemoteAccess: [Customization] Folder of Customization Level Partner doesn't exist.
    [13152] 141225.220118.9462: CultureSetting: None of browser languages can be exactly matched to supported list.
    [12488] 141225.220132.6698: RemoteAccess: [Website] Session 1isri15oy2gyonwhqmcwnu2h is about to end.
    [12488] 141225.220132.6698: RemoteAccess: [Framework] SessionStateBase attaches to 1isri15oy2gyonwhqmcwnu2h in thread 83
    [12488] 141225.220132.6698: RemoteAccess: [Framework] SessionStateBase detaches from System.Web.SessionState.HttpSessionState in thread 83
    [12488] 141225.220132.6698: RemoteAccess: [TaskManagement] No Task Manager instance found in SessionEnd
    [12488] 141225.220132.6707: RemoteAccess: [Extensibility] Cannot load AddInfoProvider; Provider not specified in the config file.
    [12488] 141225.220132.6707: RemoteAccess: [Extensibility] Try to load addins
    [12488] 141225.220132.8510: RemoteAccess: [Extensibility] Loading built in Addins succeeds
    [12488] 141225.220132.8519: RemoteAccess: [Extensibility] The folder for third party add-ins are missing or broken.
    [12488] 141225.220132.8519: RemoteAccess: [Extensibility] Loading third party Addins succeeds
    [12488] 141225.220132.8519: RemoteAccess: [Framework] SessionStateBase attaches to 1isri15oy2gyonwhqmcwnu2h in thread 83
    [12488] 141225.220132.8519: RemoteAccess: [Framework] SessionStateBase detaches from System.Web.SessionState.HttpSessionState in thread 83
    [11464] 141225.220618.8676: RemoteAccess: [Website] RequestedLogOnPage: This is a Desktop browser, UserAgent: RaMgmtSvc
    [11464] 141225.220618.8676: RemoteAccess: [Website] +++++ Session u1yks4s2vu5nnwmgimxpdxsa is starting +++++
    [11464] 141225.220618.8676: CultureSetting: None of browser languages can be exactly matched to supported list.
    [11464] 141225.220618.8676: RemoteAccess: [Website] Session u1yks4s2vu5nnwmgimxpdxsa finished initializing.
    [11464] 141225.220618.8676: CultureSetting: None of browser languages can be exactly matched to supported list.
    [11464] 141225.220618.8676: RemoteAccess: [Customization] Start loading customization settings (11683447-399a-4db1-aec5-346ceac75046): Culture fr-FR
    [11464] 141225.220618.8676: RemoteAccess: [Customization] Folder of Customization Level Partner doesn't exist.
    [11464] 141225.220618.8676: RemoteAccess: [Customization] Start loading customization settings (4d1c7c3e-80ec-4526-af9e-e42639e7aefe): Culture fr-FR
    [11464] 141225.220618.8676: RemoteAccess: [Customization] Folder of Customization Level Partner doesn't exist.
    [11464] 141225.220618.8676: CultureSetting: None of browser languages can be exactly matched to supported list.
    [12488] 141225.220632.8011: RemoteAccess: [Website] Session xq2ztj3nzkyuio4gpvrenzkv is about to end.
    [12488] 141225.220632.8011: RemoteAccess: [Framework] SessionStateBase attaches to xq2ztj3nzkyuio4gpvrenzkv in thread 83
    [12488] 141225.220632.8011: RemoteAccess: [Framework] SessionStateBase detaches from System.Web.SessionState.HttpSessionState in thread 83
    [12488] 141225.220632.8011: RemoteAccess: [TaskManagement] No Task Manager instance found in SessionEnd
    [12488] 141225.220632.8011: RemoteAccess: [Extensibility] Cannot load AddInfoProvider; Provider not specified in the config file.
    [12488] 141225.220632.8011: RemoteAccess: [Extensibility] Try to load addins
    [12488] 141225.220632.8011: RemoteAccess: [Extensibility] Loading built in Addins succeeds
    [12488] 141225.220632.8011: RemoteAccess: [Extensibility] The folder for third party add-ins are missing or broken.
    [12488] 141225.220632.8011: RemoteAccess: [Extensibility] Loading third party Addins succeeds
    [12488] 141225.220632.8011: RemoteAccess: [Framework] SessionStateBase attaches to xq2ztj3nzkyuio4gpvrenzkv in thread 83
    [12488] 141225.220632.8011: RemoteAccess: [Framework] SessionStateBase detaches from System.Web.SessionState.HttpSessionState in thread 83

    Hi,
    à
    "Impossible to connect with RWA. Please contact the person in charge of the server"
    Did you type RWA URL in IE (or any third-party Browser) and then get below error? Did you access the RWA website
    internally? In addition, would you please let me know complete error message that you can get?
    Would you please let me know what kind of domain name you use via
    Set Up Your Domain Name wizard? When complete Set up Anywhere Access wizard, did you find any error message?
    Please refer to following article to check if configure RWA correctly and troubleshoot RWA.
    Manage Remote Web Access in Windows Server
    Essentials
    Please also use the following Configuration Troubleshooter tool that Robert created and check if can find some
    issues. This tool will check IIS and Certificates.
    Windows Server Essentials
    - Configuration Troubleshooter
    If any update, please feel free to let me know.
    Hope this helps.
    Best regards,
    Justin Gu
    Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]

  • [Forum FAQ] How to install and configure Windows Server Essentials Experience role on Windows Server 2012 R2 Standard via PowerShell locally and remotely

    As we all know,
    the Windows Server Essentials Experience role is available in Windows Server 2012 R2 Standard and Windows Server 2012 R2 Datacenter. We can add the Windows Server
    Essentials Experience role in Server Manager or via Windows PowerShell.
    In this article, we introduce the steps to install and configure Windows
    Server Essentials Experience role on Windows Server 2012 R2 Standard via PowerShell locally and remotely. For better analyze, we divide this article into two parts.
    Before installing the Windows Server Essentials Experience Role, please use
    Get-WindowsFeature
    PowerShell cmdlet to ensure the Windows Server Essentials Experience (ServerEssentialsRole) is available. (Figure 1)
    Figure 1.
    Part 1: Install Windows Server Essentials Experience role locally
    Add Windows Server Essentials Experience role
    Run Windows PowerShell as administrator, then type
    Add-WindowsFeature ServerEssentialsRole cmdlet to install Windows Server Essentials Experience role. (Figure 2)
    Figure 2.
    Note: It is necessary to configure Windows Server Essentials Experience (Post-deployment Configuration). Otherwise, you will encounter following issue when opening Dashboard.
    (Figure 3)
    Figure 3.
      2. Configure Windows Server Essentials Experience role
    (1)  In an existing domain environment
    Firstly, please join the Windows Server 2012 R2 Standard computer to the existing domain through the path:
    Control Panel\System\Change Settings\”Change…”\Member of. (Figure 4)
    Figure 4.
    After that, please install Windows Server Essentials Experience role as original description. After installation completed, please use the following command to configure Windows
    Server Essentials:
    Start-WssConfigurationService –Credential <Your Credential>
    Note: The type of
    Your Credential should be as: Domain-Name\Domain-User-Account.
    You must be a member of the Enterprise Admin group and Domain Admin group in Active Directory when using the command above to configure Windows Server Essentials. (Figure 5)
    Figure 5.
    Next, you can type the password for the domain account. (Figure 6)
    Figure 6.
    After setting the credential, please type “Y” to continue to configure Windows Server Essentials. (Figure 7)
    Figure 7.
    By the way, you can use
    Get-WssConfigurationStatus
    PowerShell cmdlet to
    get the status of the configuration of Windows Server Essentials. Specify the
    ShowProgress parameter to view a progress indicator. (Figure 8)
    Figure 8.
    (2) In a non-domain environment
    Open PowerShell (Run as Administrator) on the Windows Server 2012 R2 Standard and type following PowerShell cmdlets: (Figure 9)
    Start-WssConfigurationService -CompanyName "xxx" -DNSName "xxx" -NetBiosName "xxx" -ComputerName "xxx” –NewAdminCredential $cred
    Figure 9.
    After you type the commands above and click Enter, you can create a new administrator credential. (Figure 10)
    After creating the new administrator credential, please type “Y” to continue to configure Windows Server Essentials. (Figure 11)
    After a reboot, all the configurations will be completed and you can open the Windows Server Essentials Dashboard without any errors. (Figure 12)
    Figure 12.
    Please click to vote if the post helps you. This can be beneficial to other community members reading the thread.

    Part 2: Install and configure Windows Server Essentials Experience role remotely
    In an existing domain environment
    In an existing domain environment, please use following command to provide credential and then add Server Essentials Role: (Figure 13)
    Add-WindowsFeature -Name ServerEssentialsRole
    -ComputerName xxx -Credential DomainName\DomainAccount
    Figure 13.
    After you enter the credential, it will start install Windows Server Essentials role on your computer. (Figure 14)
    Figure 14.
    After the installation completes, it will return the result as below:
    Figure 15.
    Next, please use the
    Enter-PSSession
    cmdlet and provide the correct credential to start an interactive session with a remote computer. You can use the commands below:
    Enter-PSSession –ComputerName
    xxx –Credential DomainName\DomainAccount (Figure 16)
    Figure 16.
    Then, please configure Server Essentials Role via
    Add-WssConfigurationService cmdlet and it also needs to provide correct credential. (Figure 17)
    Figure 17.
    After your credential is accepted, it will update and prepare your server. (Figure 18)
    Figure 18.
    After that, please type “Y” to continue to configure Windows Server Essentials. (Figure 19)
    Figure 19.
    2. In a non-domain environment
    In my test environment, I set up two computers running Windows Server 2012 R2 Standard and use Server1 as a target computer. The IP addresses for the two computers are as
    below:
    Sevrer1: 192.168.1.54
    Server2: 192.168.1.53
    Run
    Enable-PSRemoting –Force on Server1. (Figure 20)
    Figure 20.
    Since there is no existing domain, it is necessary to add the target computer (Server1) to a TrustedHosts list (maintained by WinRM) on Server 2. We can use following command
    to
    add the TrustedHosts entry:
    Set-Item WSMan:\localhost\Client\TrustedHosts IP-Address
    (Figure 21)
    Figure 21.
    Next, we can use
    Enter-PSSession
    cmdlet and provide the correct credential to start an interactive session with the remote computer. (Figure 22)
    Figure 22.
    After that, you can install Windows Server Essentials Experience Role remotely via Add-WindowsFeature ServerEssentialsRole cmdlet. (Figure 23)
    Figure 23.
    From figure 24, we can see that the installation is completed.
    Figure 24.
    Then you can use
    Start-WssConfigurationService cmdlet to configure Essentials Role and follow the steps in the first part (configure Windows Server Essentials Experience in a non-domain environment) as the steps would be the same.
    The figure below shows the status of Windows Server Essentials.
    Figure
    25.
    Finally, we have successfully configured Windows Server Essentials on Server1. (Figure 26)
    Figure 26.
    More information:
    [Forum
    FAQ] Introduce Windows Powershell Remoting
    Windows Server Essentials Setup Cmdlets
    Please click to vote if the post helps you. This can be beneficial to other community members reading the thread.

  • Can I add a WinServer 2012 into a mix child Domain with 2008 and 2003?

    The founctionall level is 2003 and the main domain is mix with 2008 and 2003. The user need the templete of Server 2012 and use the "new" group policy so that they are able to use the "new" feature in windows 8 (which I totally
    do Not think is much useful). I've a plan that join the 2012 server into a child domain as a DC but I don't know if that will cause any problems. Can I do so?
    Thanks all.
    Gary

    @Darren: http://technet.microsoft.com/en-us/library/jj592683.aspx
    For Windows 8 a change to how the TPM owner authorization value is stored in AD DS was implemented in the AD DS schema. The TPM owner authorization value is now stored in a separate object which is linked to the Computer object. This value was stored as
    a property in the Computer object itself for the default Windows Server 2008 R2 schemas.
    To take advantage of this integration, you must upgrade your domain controllers to Windows Server 2012 or extend the Active Directory schema and configure BitLocker-specific Group Policy objects.
    Windows Server 2012 domain controllers have the default schema to backup TPM owner authorization information in the separate object. If you are not upgrading your domain controller to Windows Server 2012 you need to extend the schema to support this change.
    To support Windows 8 computers that are managed by a Windows Server 2003 or Windows 2008 domain controller
    There are two schema extensions that you can copy down and add to your AD DS schema:
    TpmSchemaExtension.ldf 
    This schema extension brings parity with the Windows Server 2012 schema. With this change, the TPM owner authorization information is stored in a separate TPM object linked to the corresponding computer object. Only the Computer object that has created
    the TPM object can update it. This means that any subsequent updates to the TPM objects will not succeed in dual boot scenarios or scenarios where the computer is reimaged resulting in a new AD computer object being created. To support such scenarios, an update
    to the schema was created.
    TpmSchemaExtensionACLChanges.ldf 
    This schema update modifies the ACLs on the TPM object to be less restrictive so that any subsequent operating system which takes ownership of the computer object can update the owner authorization value in AD DS. However, this is less secure as any computer
    in the domain can now update the OwnerAuth of the TPM object (although it cannot read the OwnerAuth) and DOS attacks can be made from within the enterprise. The recommended mitigation in such a scenario is to do regular backup of TPM objects and enable auditing
    to track changes for these objects. 
    To download the schema extensions, see Schema Extensions for Windows Server 2008 R2 to support AD DS backup of TPM information from
    Windows 8 clients.
    If you have a Windows Server 2012 domain controller in your environment, the schema extensions are already in place and do not need to be updated.
    Also, if you check the GPO's in 2012, there are specific templates for Windows8/2012 and specific (legacy) templates for Windows 7.
    MCITP:SA:EA:EMA2010:VA2008R2

  • Adding a new FFL 2012 trusted domain to a Exchange 2007 domain with a FFL 2003 domain

    My organization has decided to create a new forrest and domain.  We will be creating a two way trust between the current 2003 forrest & domain and the new 2012 forrest & domain.  For now, only a few of our users will
    log into the new domain, but we still want them to be able to access their email in the 2003 domain and have their emails come from the 2003 domain.   There are no Exchange servers in the new domain, users will just authenticate to the
    new domain.
    Besides creating the accepted domain policy and new email policy, is there anything else that will be required?
    Thanks in advance
    MikeV
    Thanks, MikeV MCSE 2012

    In Exchange 2003 there is no "accepted domain policy" or "email policy", just recipient policy.  And you only need to do that if you're adding a new e-mail domain.  Further, in many cases you can probably just modify the existing policy.
    A one-way trust with the server domain trusting the account domain is all that should be necessary.  You will have to grant full mailbox rights and send as rights on each mailbox to the corresponding user account.
    Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
    We added the trust, but Exchange doesn't see the new domain.  I've tried both the EMC and powershell (add-mailboxpermission useralias -user"newdomain\alias" accessrights-fullaccess)  error says "user or group not found please make sure you
    have typed it correctly"
    What else needs to be done for Exchange to see the new domain and users?
    Thanks, MikeV MCSE 2012

  • Cannot have multiple domain controllers with Essentials role in 2012 R2 Standard/Datacenter

    Microsoft's Technet post on deploying Essentials Role in an existing AD environment states the following:
    "The online service integration features only work when the server is a domain controller. Also, integration cannot be initiated if there are multiple domain controllers in the environment. The product team is investigating possible solutions."
    http://blogs.technet.com/b/sbs/archive/2013/10/28/enabling-multiple-instances-of-windows-server-essentials-experience-in-your-environment.aspx
    Microsoft Essentials Role product team, can you let us know when this will be fixed? I will not be installing Essentials as a Role if I cannot have multiple domain controllers.
    As soon as I add another domain controller the Essentials role no longer functions as designed.
    This is quite an oversight by your team. Can we have an ETA for a fix to this please?
    Here are more with the same issue:
    http://social.technet.microsoft.com/Forums/en-US/ed34abe9-6412-415d-950a-50c9675deb2e/unable-to-register-essentials-experience-role-with-microsoft-online-services?forum=2012R2EssentialsPreview

    Hi. We can't give ETA. Most user there that help does not work for Microsoft. (and if a Microsoft's employee help, then it's on it's free time at home or during break)
    Thus, for that reason, please call the support to get a good answer on the ETA is it's planned or not. Be advised that the essential's version replaced the SBS, thus it target small office, such limitation can stay for a long time IMO.
    Regards, Philippe

  • Exchange 2007 with windows 2012 R2 domain controllers environment.

    Hello,
    I am planning to upgrade to AD windows 2012 R2 from 2008 in 2003 on funtional level for domain and forrest, my question is, is 2007 exchange (Version build: 08.03.0245.001) supported on 2012 R2 domain environment on 2008 funtional level?
    I am planning to upgrade exchange later in december to exchange 2013 but not now.
    Thanks in advance

    Hello,
    At present, there is no official article to verify whether exchange 2007 is supported on windows server 2012 R2 domain.
    But I agree with damird's suggestion.
    And you don't install exchange 2007 on windows server 2012 r2.
    If you have any feedback on our support, please click
    here
    We
    are trying to better understand customer views on social support experience, so your participation in this
    interview project would be greatly appreciated if you have time.
    Thanks for helping make community forums a great place.

  • Exchange 2007 RTM support with Windows Server 2012 R2 Domain Controller

    Hi All,
    I have not found any TechNet Article which states about the Windows Server 2012 R2 Active Directory domain controller operating system support with Exchange 2007 RTM, can some one please let me know that does Exchange 2007 RTM supports Windows Server 2012
    R2 domain controller operating system, we are in the process of upgrading the domain controllers to 2012 R2 but not the forest and domain functional level to 2012 R2.
    thanks
    If answer is helpful, please hit the green arrow on the left, or mark as answer. Salahuddin | Blogs:http://salahuddinkhatri.wordpress.com | MCITP Microsoft Lync

    There are several likely reasons for this.  The most significant is that Exchange 2007 RTM is no longer supported (outside ot extended support, which is not going to include adding support for new operating systems): 
    http://support2.microsoft.com/lifecycle/default.aspx?LN=en-us&p1=10926
    You'll note from the following -
    http://technet.microsoft.com/library/ff728623(v=exchg.150).aspx - that only Exchange 2007 SP3 is currently supported in any environment.
    HTH ...

  • Can i rejoin ny SCVMM 2012 server to domain with same name & IP address?

    Dear all..
    I am in situation where i have to rejoin my scvmm server to  domain with same name & ip address.one of the fool admin has deleted my SCVMM's computer object from AD. I have recreated the object & tried to log on but no luck.. i have to rejoin
    the server.
    Does it have any risks involved or its just fine?

    Hi,
    First the behavior is normal. If an computer accounts is deleted, you cannot continue using the server without rejoining.
    SCVMM it's not depending (integration) on active directory in such way as Exchange.
    So, if the computer accounts has been deleted, there is no issue in creating a new one and rejoin the server. As long as the application on the server is able to look up any required directory services, it should be happy again.
    Best Regards,
    Jesper Vindum, Denmark
    Systems Administrator
    Help the forum: Monitor(alert) your threads and vote helpful replies or mark them as answer, if it helps solving your problem.

  • Question about adding Windows 2012 R2 Domain Controller, into a native Windows 2008 R2 single forest domain

    I current have a two server domain, both Windows 2008 R2 and fully updated.   The two servers are on subnet 10.0.1.0 /24
    - Windows 2008 R2 Server A: 10.0.1.1 (DC, GC, FSMO, DNS)
    - Windows 2008 R2 Server B: 10.0.1.2 (DC, GC)
    AD Domain: COMPANY.LOCAL
    I have a second connected subnet, 192.168.1.0 /24) which is routed to the 10.0.1.0/24 subnet and I would like to install a Windows 2012 R2 server onto a server on that subnet and make it a domain controller with AD-Integrated DNS and DHCP for the 192.168.1.0
    /24 subnet.
    - Windows 2012 R2 Server C: 192.168.1.1
    What are the proper progression steps, in order to bring up the Windows 2012 R2 server and then add it to my COMPANY.LOCAL domain and then promote it do a DC/GC/AD-Integrated DNS server?   Are they anything like the following:
    1. Install Windows 2012 R2 server (Server C)
    2. Point Windows 2012 R2 server DNS servers at Server's A and B
    3. Perform AD prep to extend AD schema to support Windows 2012 R2 domain controllers
    4. Promote Windows 2012 R2 server to domain controller (install local DNS service on Server C, during this step)
    * Question:  Will Windows automatically create a DNS zone for the Windows 2012 R2 subnet (192.168.1.0/24) AND also include the DNS zone from the previous Windows 2008 R2 domain (10.0.1.0 /24)?  Or will I need to add the 10.0.1.0 /24 zone to the DNS
    server on Server C, even though the DNS from the Windows 2008 R2 domain is AD integrated?

    Hi,
    Regarding the issue here, please take a look into below articles:
    System Requirements and Installation Information for Windows Server 2012 R2
    http://technet.microsoft.com/en-us/library/dn303418.aspx
    Release Notes: Important Issues in Windows Server 2012 R2
    http://technet.microsoft.com/en-us/library/dn387077.aspx
    Install a Replica Windows Server 2012 Domain Controller in an Existing Domain (Level 200)
    http://technet.microsoft.com/en-us/library/jj574134.aspx
    Here is an example for promoting Windows Server 2012 to a DC, see:
    Step-by-Step Guide for Setting Up A Windows Server 2012 Domain Controller
    http://social.technet.microsoft.com/wiki/contents/articles/12370.step-by-step-guide-for-setting-up-a-windows-server-2012-domain-controller.aspx
    As the server is promoted to a DC, DNS Zones will be replicated and synchronized to it automatically whenever the new one is added to an AD DS domain,  bascially there is no special need to add zones,  for more information, please see:
    Understanding Active Directory Domain Services Integration
    http://technet.microsoft.com/en-us/library/cc726034.aspx
    Hope this may help
    Best regards
    Michael
    If you have any feedback on our support, please click
    here.
    Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

  • Questions About Adding First 2012 R2 domain controller to an existing 2008 Domain

    Our current domain controllers are all running Server 2008 and are VMs in our local office.  We plan to add a new domain controller and also create a new AD site.  This new domain controller will be the only domain controller in the new remote
    site.  It will also be a VM on a new 2012 R2 Hyper-V server at the new remote site.
    There is currently only one site (the default first site).
    The steps planned are to create a new site to represent the remote location in AD configured with the subnets that apply to the remote site.  (Computers in our local office should continue to use the domain controllers in our office and remote PCs should
    start using the new domain controller.)
    Then build the new domain controller VM, join to the domain as a member server and then promote it to domain controller of the new site.
    Are any steps missing?
    Do we need to do anything special with time sync settings on Hyper-V or will both the Hyper-V host and the domain controller guest just automatically sync time with the PDC domain controller across a WAN connection at the main site?
    Is there a way to prepare the domain/schema for the new 2012 R2 domain controller in advance so that the new domain controller can be installed later without needing Schema Admin or Enterprise admin permissions during the installation?

    > Where can I find what is correct for 2012 R2 domain controllers running
    > on Hyper-V 2012 R2 hosts?
    There's no "one fits all" advice on this topic, but I agree with Ahmed:
    Within a domain, the DCs provide a hierarchical time source, and since
    clients are required to be in sync with DCs, this is a "must be".
    If your HV hosts are member of the domain they are hosting, things can
    easily go crazy if you do not disable host time sync.
    Greetings/Grüße,
    Martin
    Mal ein
    gutes Buch über GPOs lesen?
    Good or bad GPOs? - my blog…
    And if IT bothers me -
    coke bottle design refreshment (-:

  • Upgrade to Server 2012 R2 domain controllers from 2003

    I am at a loss as to what I did wrong here. Everything seems to be working fine except for one subnet (which is behind a hardware firewall).
    We had two Server 2003 domain controllers and one of them was failing.  I raised the forest functional level of our old primary domain controllers to 2003.  I built the first replacement Server 2012 R2 domain controller.  Added the AD DS roles
    and promoted it as a domain controller.  I let it sit for a couple days.  The FSMO roles were currently being handled by our other 2003 domain controller.  Once this had been sitting for a while (don't recall how long) I ran dcpromo on the failing
    server and demoted it.  Once demoted I shut it down and pulled it out of the rack.  I then built our second 2012 R2 server and gave it the same IP as the failing one.  Installed the AD DS roles and integrated DNS as prompted by the wizard. 
    I then made it the operations master for Schema master, Domain naming master, PDC, RID pool manager, and Infrastructure master.  Then I ran dcpromo on the second 2003 domain controller to demote it and removed it from the network.  I then demoted
    the first new controller (DC03) changed the hostname and IP to the name and IP of the second 2003 controller and promoted it again.  I'm not sure at what point things broke, but everything works from the same subnet that the domain controllers are in,
    just not a second subnet that is through a hardware firewall.  I don't see anything getting blocked while watching firewall logs so I don't think the firewall is the issue.
    Here is the dcdiag and ipconfig from the first controller (which has all 5 FSMO roles).
    Microsoft Windows [Version 6.3.9600]
    (c) 2013 Microsoft Corporation. All rights reserved.
    C:\Users\username>dcdiag /v /test:dns
    Directory Server Diagnosis
    Performing initial setup:
       Trying to find home server...
       * Verifying that the local machine WGDDC01, is a Directory Server.
       Home Server = WGDDC01
       * Connecting to directory service on server WGDDC01.
       * Identified AD Forest.
       Collecting AD specific global data
       * Collecting site info.
       Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=wgd,DC=inet,LD
    AP_SCOPE_SUBTREE,(objectCategory=ntDSSiteSettings),.......
       The previous call succeeded
       Iterating through the sites
       Looking at base site object: CN=NTDS Site Settings,CN=Default-First-Site-Name
    ,CN=Sites,CN=Configuration,DC=wgd,DC=inet
       Getting ISTG and options for the site
       * Identifying all servers.
       Calling ldap_search_init_page(hld,CN=Sites,CN=Configuration,DC=wgd,DC=inet,LD
    AP_SCOPE_SUBTREE,(objectClass=ntDSDsa),.......
       The previous call succeeded....
       The previous call succeeded
       Iterating through the list of servers
       Getting information for the server CN=NTDS Settings,CN=WGDDC01,CN=Servers,CN=
    Default-First-Site-Name,CN=Sites,CN=Configuration,DC=wgd,DC=inet
       objectGuid obtained
       InvocationID obtained
       dnsHostname obtained
       site info obtained
       All the info for the server collected
       Getting information for the server CN=NTDS Settings,CN=WGDDC02,CN=Servers,CN=
    Default-First-Site-Name,CN=Sites,CN=Configuration,DC=wgd,DC=inet
       objectGuid obtained
       InvocationID obtained
       dnsHostname obtained
       site info obtained
       All the info for the server collected
       * Identifying all NC cross-refs.
       * Found 2 DC(s). Testing 1 of them.
       Done gathering initial info.
    Doing initial required tests
       Testing server: Default-First-Site-Name\WGDDC01
          Starting test: Connectivity
             * Active Directory LDAP Services Check
             Determining IP4 connectivity
             * Active Directory RPC Services Check
             ......................... WGDDC01 passed test Connectivity
    Doing primary tests
       Testing server: Default-First-Site-Name\WGDDC01
          Test omitted by user request: Advertising
          Test omitted by user request: CheckSecurityError
          Test omitted by user request: CutoffServers
          Test omitted by user request: FrsEvent
          Test omitted by user request: DFSREvent
          Test omitted by user request: SysVolCheck
          Test omitted by user request: KccEvent
          Test omitted by user request: KnowsOfRoleHolders
          Test omitted by user request: MachineAccount
          Test omitted by user request: NCSecDesc
          Test omitted by user request: NetLogons
          Test omitted by user request: ObjectsReplicated
          Test omitted by user request: OutboundSecureChannels
          Test omitted by user request: Replications
          Test omitted by user request: RidManager
          Test omitted by user request: Services
          Test omitted by user request: SystemLog
          Test omitted by user request: Topology
          Test omitted by user request: VerifyEnterpriseReferences
          Test omitted by user request: VerifyReferences
          Test omitted by user request: VerifyReplicas
          Starting test: DNS
             DNS Tests are running and not hung. Please wait a few minutes...
             See DNS test in enterprise tests section for results
             ......................... WGDDC01 failed test DNS
       Running partition tests on : DomainDnsZones
          Test omitted by user request: CheckSDRefDom
          Test omitted by user request: CrossRefValidation
       Running partition tests on : ForestDnsZones
          Test omitted by user request: CheckSDRefDom
          Test omitted by user request: CrossRefValidation
       Running partition tests on : Schema
          Test omitted by user request: CheckSDRefDom
          Test omitted by user request: CrossRefValidation
       Running partition tests on : Configuration
          Test omitted by user request: CheckSDRefDom
          Test omitted by user request: CrossRefValidation
       Running partition tests on : wgd
          Test omitted by user request: CheckSDRefDom
          Test omitted by user request: CrossRefValidation
       Running enterprise tests on : wgd.inet
          Starting test: DNS
             Test results for domain controllers:
                DC: WGDDC01.wgd.inet
                Domain: wgd.inet
                   TEST: Authentication (Auth)
                      Authentication test: Successfully completed
                   TEST: Basic (Basc)
                      The OS
                      Microsoft Windows Server 2012 R2 Standard (Service Pack level:
     0.0)
                      is supported.
                      NETLOGON service is running
                      kdc service is running
                      DNSCACHE service is running
                      DNS service is running
                      DC is a DNS server
                      Network adapters information:
                      Adapter [00000010] Broadcom NetXtreme Gigabit Ethernet:
                         MAC address is B0:83:FE:C1:98:07
                         IP Address is static
                         IP address: 10.240.1.23
                         DNS servers:
                            10.240.1.23 (WGDDC01) [Valid]
                            10.240.1.24 (WGDDC02) [Valid]
                            127.0.0.1 (WGDDC01) [Valid]
                      The A host record(s) for this DC was found
                      The SOA record for the Active Directory zone was found
                      Warning: no DNS RPC connectivity (error or non Microsoft DNS s
    erver is running)
                      [Error details: 5 (Type: Win32 - Description: Access is denied
             Summary of test results for DNS servers used by the above domain
             controllers:
                DNS server: 10.240.1.23 (WGDDC01)
                   All tests passed on this DNS server
                   Name resolution is functional._ldap._tcp SRV record for the fores
    t root domain is registered
                DNS server: 10.240.1.24 (WGDDC02)
                   All tests passed on this DNS server
                   Name resolution is functional._ldap._tcp SRV record for the fores
    t root domain is registered
             Summary of DNS test results:
    Auth Basc Forw Del  Dyn  RReg Ext
                Domain: wgd.inet
                   WGDDC01                      PASS WARN n/a  n/a  n/a 
    n/a  n/a
             ......................... wgd.inet passed test DNS
          Test omitted by user request: LocatorCheck
          Test omitted by user request: Intersite
    C:\Users\dsmythe>ipconfig /all
    Windows IP Configuration
       Host Name . . . . . . . . . . . . : WGDDC01
       Primary Dns Suffix  . . . . . . . : wgd.inet
       Node Type . . . . . . . . . . . . : Hybrid
       IP Routing Enabled. . . . . . . . : No
       WINS Proxy Enabled. . . . . . . . : No
       DNS Suffix Search List. . . . . . : wgd.inet
    Ethernet adapter WGD_INET:
       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
       Physical Address. . . . . . . . . : B0-83-FE-C1-98-07
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes
       IPv4 Address. . . . . . . . . . . : 10.240.1.23(Preferred)
       Subnet Mask . . . . . . . . . . . : 255.255.255.0
       Default Gateway . . . . . . . . . : 10.240.1.1
       DNS Servers . . . . . . . . . . . : 10.240.1.23
                                           10.240.1.24
                                           127.0.0.1
       NetBIOS over Tcpip. . . . . . . . : Enabled
    Tunnel adapter isatap.{2C28B0FA-6BF8-4201-A6DA-081AED63B496}:
       Media State . . . . . . . . . . . : Media disconnected
       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
       Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes
    When I try to bind a machine to the domain I get an error message that says "
    The following error occurred when DNS was queried for the service location (SRV) resource record used to locate an Active Directory Domain Controller (AD DC) for domain "wgd.inet":
    The error was: "This operation returned because the timeout period expired."
    (error code 0x000005B4 ERROR_TIMEOUT)
    The query was for the SRV record for _ldap._tcp.dc._msdcs.wgd.inet
    The DNS servers used by this computer for name resolution are not responding. This computer is configured to use DNS servers with the following IP addresses:
    10.240.1.24
    10.240.1.23
    Verify that this computer is connected to the network, that these are the correct DNS server IP addresses, and that at least one of the DNS servers is running.
    Please let me know if I'm missing something or if there are other things I can check.
    Thanks!
    I forgot to mention that after the 2003 domain controllers were out of the environment, I raised the domain and forest functional level to 2012 R2.  All clients in the environment are Windows XP Pro or above.  The XP Pro boxes will be going away as
    soon as our vendor supports their software to run on Windows 7.

    We now have 2 2012 R2 DCs. The 2003 DCs are gone. Metadata from the old DCs is all cleaned up. DNS seems to be working fine in 3 out of 4 subnets. The 4th is behind a hardware firewall and I can see the IP address of the machine I am trying to bind to the
    domain connecting to the two new domain controllers but the client machine that is trying to bind gives an error.  An Active Directory Domain Controller for the domain wgd.inet could not be contacted.  It seems that this is just a DNS issue for one
    particular subnet (10.240.2.0/24).  This subnet is setup in AD Sites and Services\Sites\Subnets\10.240.2.0/24 (Site: Default-First-Site-Name).
    When trying to do anything with nslookup from the 10.240.2.0/24 subnet it times out.  The route is there and I can watch it connect through our hardware firewall over port 53.
    DC01
    Microsoft Windows [Version 6.3.9600]
    (c) 2013 Microsoft Corporation. All rights reserved.
    C:\Users\dsmythe>netdom query fsmo
    Schema master               WGDDC01.wgd.inet
    Domain naming master        WGDDC01.wgd.inet
    PDC                         WGDDC01.wgd.inet
    RID pool manager            WGDDC01.wgd.inet
    Infrastructure master       WGDDC01.wgd.inet
    The command completed successfully.
    C:\Users\dsmythe>ipconfig /all
    Windows IP Configuration
       Host Name . . . . . . . . . . . . : WGDDC01
       Primary Dns Suffix  . . . . . . . : wgd.inet
       Node Type . . . . . . . . . . . . : Hybrid
       IP Routing Enabled. . . . . . . . : No
       WINS Proxy Enabled. . . . . . . . : No
       DNS Suffix Search List. . . . . . : wgd.inet
    Ethernet adapter WGD_INET:
       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
       Physical Address. . . . . . . . . : B0-83-FE-C1-98-07
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes
       IPv4 Address. . . . . . . . . . . : 10.240.1.23(Preferred)
       Subnet Mask . . . . . . . . . . . : 255.255.255.0
       Default Gateway . . . . . . . . . : 10.240.1.1
       DNS Servers . . . . . . . . . . . : 10.240.1.23
                                           10.240.1.24
       NetBIOS over Tcpip. . . . . . . . : Enabled
    Tunnel adapter isatap.{2C28B0FA-6BF8-4201-A6DA-081AED63B496}:
       Media State . . . . . . . . . . . : Media disconnected
       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
       Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes
    C:\Users\dsmythe>
    DC02
    Microsoft Windows [Version 6.3.9600]
    (c) 2013 Microsoft Corporation. All rights reserved.
    C:\Users\dsmythe>netdom query fsmo
    Schema master               WGDDC01.wgd.inet
    Domain naming master        WGDDC01.wgd.inet
    PDC                         WGDDC01.wgd.inet
    RID pool manager            WGDDC01.wgd.inet
    Infrastructure master       WGDDC01.wgd.inet
    The command completed successfully.
    C:\Users\dsmythe>ipconfig /all
    Windows IP Configuration
       Host Name . . . . . . . . . . . . : WGDDC02
       Primary Dns Suffix  . . . . . . . : wgd.inet
       Node Type . . . . . . . . . . . . : Hybrid
       IP Routing Enabled. . . . . . . . : No
       WINS Proxy Enabled. . . . . . . . : No
       DNS Suffix Search List. . . . . . : wgd.inet
    Ethernet adapter NIC1:
       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
       Physical Address. . . . . . . . . : B0-83-FE-C1-9F-74
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes
       IPv4 Address. . . . . . . . . . . : 10.240.1.24(Preferred)
       Subnet Mask . . . . . . . . . . . : 255.255.255.0
       Default Gateway . . . . . . . . . : 10.240.1.1
       DNS Servers . . . . . . . . . . . : 10.240.1.24
                                           10.240.1.23
       NetBIOS over Tcpip. . . . . . . . : Enabled
    Tunnel adapter isatap.{4F45E51E-FC2F-49ED-85CF-0750A9EEECF5}:
       Media State . . . . . . . . . . . : Media disconnected
       Connection-specific DNS Suffix  . :
       Description . . . . . . . . . . . : Microsoft ISATAP Adapter
       Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
       DHCP Enabled. . . . . . . . . . . : No
       Autoconfiguration Enabled . . . . : Yes
    C:\Users\dsmythe>

  • Changing a DC in Domain, with Same name and IP

    hey we have a domain with 3DC (srv1, DC Operation Master and GC ; srv2 DC and GC ; and srv3 only DC)
    srv3 is a file server with many shares like //srv3/folder/myfiles 
    so i really want to keep the name and IP!!
    my plan is to degrade the srv3 to normal server and add to a workgroup. 
    Delete it from ad under domain controllers. So my domain only works with my two domain controllers.
    Wait 1 or 2 Days. perhaps do a manuel replication ... so be clear tat the srv3 is really removed from the domain.
    And after all i would take my brand new Server give him same name and ip an add him to the domain. level him up to a dc and i hope all would be fine :)

    Greetings!
    Just demote the DC successfully (No Force Removal!)and check the replication between two domain controllers. If everything were in good condition you can use the same IP and Name in a new server. No need to wait for couple of days.
    Regards.
    Mahdi Tehrani   |  
      |  
    www.mahditehrani.ir
    Please click on Propose As Answer or to mark this post as
    and helpful for other people.
    This posting is provided AS-IS with no warranties, and confers no rights.
    How to query members of 'Local Administrators' group in all computers?

Maybe you are looking for

  • Can i set up wifi printer

    Can I set up ip address protected wifi printer to my iphone 4G

  • There was a Problem Downlaoding.. unknown Error -42018

    I'm constantly getting an unknown error -42018 when I try to download any purchased music from iTunes Store. I've re-installed multiple times. No help. This started around the time I upgraded to the latest version of iTunes....

  • JDOM beta 8 installation - compilation errors

    Can someone give me some suggestions? I am spinning my wheels on what to do. This should be fairly simple... I installed and extracted jdom beta 8, added the location to xerces.jar to my classpath, and I still receive the following errors: FibonacciJ

  • Picture quality in safari

    i'm sure iphone display allows better quality than it shows to me when surfing safari when i'm watching pictures in any websites (jpgs) the quality of the images is just hideous whether that be a specially designed version of flickr (m.flickr.com) or

  • Internal Job Server error

    Hi All, Have you ever come across the error in Event Logs? Source:BusinessObjects_JobServerFullClient Event Id: 45385 Category : Scheduling Type:Error Description:Internal Job Server error. Could any one please let me know the reason for the error an