SCCM client deployment on windows server 2012 R2

Similar Messages

• Windows 8.1 pro client on a Windows server 2012 R2 Essentials domain, how to change lock when idle?

  Hi,
  I need to find out how to do something?
  I have Windows 8.1 pro running on my PC and its part of a domain which is Windows Server 2012 R2 Essentials, it all runs perfectly except for a little niggle where my Win 8.1 PC locks after its not used for a short time.  What I want to find out is
  how to change this so it no longer locks when idle?  I know this is a security feature but as its just my home pc it can be very annoying to log in again after walking away from the PC for a few min's.
  I've had a look through the default domain policy but there are so many settings that I can't find it, that's even if there is a setting there?
  Anyway can anyone help?
  Thanks
  JK
  JK MCP

  Hi,
  We can try to implement by use High performance power plan or GPO to prevent computer from locking down:
  Refer to the solution here:
  http://social.technet.microsoft.com/Forums/en-US/0863112d-ee54-4808-9d27-0380d7bf04b0/gpo-to-disable-lock-computer-?forum=winserverGP
  Also, you can check if there is any task scheduled for idle:
  Task Conditions
  http://technet.microsoft.com/en-us/library/cc721902.aspx
  Hope these could be helpful.
  Kate Li
  TechNet Community Support

• App-V Client on Windows Server 2012

  Hi all,
  Could you please tell me if Microsoft support running the APP-V Client on a Windows Server 2012 image bundled as Windows 8 in a VDI solution?
  Regards,
  Mark

  Bundled as Windows 8?? I'm assuming you mean RDSH?
  If so, yes. You need to download and use the RDS version of the App-V Client.
  If for some reason you actually mean a Windows 8 machine then also yes, you just use the Desktop version of the client. Both Windows 8 and Windows Server 2012 are supported in App-V, so you shouldn't have a problem.
  PLEASE MARK ANY ANSWERS TO HELP OTHERS Blog:
  rorymon.com Twitter: @Rorymon

• Task Sequence Windows Server 2012 format and partition issue when using MDT2012

  Hi all,
  Currently I'm working on a task sequence to deploy a Windows Server 2012 image. We've integrated MDT2012 Update 1 in SCCM2012 SP1 and created a default 'Server Task Sequence'. This task sequence deploys the install.wim to a server which has multiple disks
  attached.
  We've configured multiple format and partition disk steps to create the following partition layout:
  Disk 0: 499MB BDEDrive (do not assign drive letter) + 40GB OSDisk
  Disk 1: 40GB Programs
  Disk 2: 40GB Data
  Disk 3: 25GB User
  When the task sequence is finished I've noticed the drive letters assigned to the disk are not correct. In some cases the BDEdrive gets drive letter D assigned, sometimes drive letters are assigned starting with E, thus skipping drive
  letter D. 
  The smsts.log files show an error when it's re-assigning drive letters after booting into Windows. Looks like an error in the DiskPartScript.txt.
  <![LOG[==============================[ OSDSetupHook.exe ]==============================]LOG]!><time="16:59:40.889-120" date="05-10-2013" component="OSDSetupHook" context="" type="1" thread="776"
  file="osdsetuphook.cpp:186">
  <![LOG[Executing task sequence]LOG]!><time="16:59:40.905-120" date="05-10-2013" component="OSDSetupHook" context="" type="1" thread="776" file="osdsetuphook.cpp:279">
  <![LOG[Loading the Task Sequencing Environment from "C:\_SMSTaskSequence\TSEnv.dat".]LOG]!><time="16:59:40.920-120" date="05-10-2013" component="OSDSetupHook" context="" type="1" thread="776"
  file="basesetuphook.cpp:366">
  <![LOG[Environment scope successfully created: Global\{51A016B6-F0DE-4752-B97C-54E6F386A912}]LOG]!><time="16:59:40.936-120" date="05-10-2013" component="OSDSetupHook" context="" type="1" thread="776"
  file="environmentscope.cpp:659">
  <![LOG[Environment scope successfully created: Global\{BA3A3900-CA6D-4ac1-8C28-5073AFC22B03}]LOG]!><time="16:59:40.936-120" date="05-10-2013" component="OSDSetupHook" context="" type="1" thread="776"
  file="environmentscope.cpp:659">
  <![LOG[Debug shell is enabled]LOG]!><time="16:59:43.806-120" date="05-10-2013" component="OSDSetupHook" context="" type="1" thread="776" file="basesetuphook.cpp:1440">
  <![LOG[Successfully enabled debug command shell support.]LOG]!><time="16:59:43.884-120" date="05-10-2013" component="OSDSetupHook" context="" type="1" thread="776" file="debugwindow.cpp:156">
  <![LOG[Configuring local administrator account]LOG]!><time="16:59:43.884-120" date="05-10-2013" component="OSDSetupHook" context="" type="1" thread="776" file="basesetuphook.cpp:1462">
  <![LOG[Re-assign all drive letters...]LOG]!><time="16:59:43.884-120" date="05-10-2013" component="OSDSetupHook" context="" type="1" thread="776" file="diskutils.cpp:1941">
  <![LOG[Executing command line: "C:\WINDOWS\system32\diskpart.exe" /s "C:\WINDOWS\TEMP\DiskPartScript.txt"]LOG]!><time="16:59:43.900-120" date="05-10-2013" component="OSDSetupHook" context=""
  type="1" thread="776" file="commandline.cpp:827">
  <![LOG[Process completed with exit code 2147942487]LOG]!><time="16:59:50.249-120" date="05-10-2013" component="OSDSetupHook" context="" type="1" thread="776" file="commandline.cpp:1123">
  <![LOG[Diskpart.exe STDOUT:
  Microsoft DiskPart version 6.1.7601
  Copyright (C) 1999-2008 Microsoft Corporation.
  On computer: SRV03
  Volume 1 is the selected volume.
  DiskPart successfully removed the drive letter or mount point.
  The volume you selected is not valid or does not exist.
  There is no volume selected.
  ]LOG]!><time="16:59:50.249-120" date="05-10-2013" component="OSDSetupHook" context="" type="3" thread="776" file="diskutils.cpp:1807">
  When I take a look at the generated diskpart_script.log file the volume D gets selected twice, which fails the second time because of the first remove drive letter command.
  This is the output in the diskpart_script.log file:
  select volume D
  remove letter=D
  select volume D
  remove letter=D
  select volume E
  remove letter=E
  select volume F
  remove letter=F
  select volume H
  remove letter=H
  select disk 0
  select partition 1
  assign
  select disk 1
  select partition 1
  assign
  select disk 2
  select partition 1
  assign
  select disk 3
  select partition 1
  assign
  It seems this error is caused by the first 'Format and Partition Disk' step before the 'Use Toolkit Package' step which is part of the default Server Task sequence. When I disable this Format and Partition step and create the partition manually
  all looks ok showing no errors in the smsts.log file.
  I've solved this by replacing the first 'Format and Partition Disk' step by an Powershell command which formats and partitions the disk. 
  Anyone seen this behavior?

  I have a similar problem when I install windows on some clients. Have you found any explanation for the behavior?

• Project Server 2013 on Windows Server 2012 R2

  Can we install Project Server 2013 on Windows Server 2012 R2? Is it supported? I searched a bit but couldn't find any concrete information if it is supported or not.

  From the article:
  http://blogs.technet.com/b/office_sustained_engineering/archive/2014/03/03/announcing-availability-of-slipstreamed-office-2013-and-sharepoint-server-2013-with-sp1.aspx
  Today, aligned with the SharePoint Conference, we’re announcing availability
  of a slipstreamed SharePoint Server 2013 with SP1. SharePoint administrators
  will be able to use this updated installer to deploy on Windows Server 2012 R2.
  which I got linked from the following
  http://blogs.technet.com/b/projectsupport/archive/2014/02/25/project-2013-and-project-server-2013-service-pack-1.aspx

• Ricoh Aficio MP C2051 Scan to Folder - Windows Server 2012 Error: Authentication with the destination has failed check settings

  I have recently upgraded a clients servers to Windows Server 2012 & since doing so have lost the ability to scan to folder.
  Both servers are domain controllers and previously on a 2008 domain controller I would have had to make the following change to allow scan to folder:
   Administrative Tools
   Server Manager
   Features
   Group Policy Manager
   Forest: ...
   Default Domain Policy
  Computer configuration
   Policies
   Windows Settings
   Security Settings
   Local Policies
   Security Options
   Microsoft Network Server: Digitally Sign Communications (Always)
   - Define This Policy
   - Disabled
  However I have applied this to the Windows 2012 server but am still unable to scan, possibly due to added layers of security in server 2012. The error on the scanner is Authentication with the destination has failed check settings.
  I have also tried the following at the server:
  Policies -> Security Policies
  Change Network Security: LAN Manager authentication level to: Send LM & NTLM - Use NTLMv2 session security if negotiated.
  Network security: Minimum session security for NTLM SSP based (including secure RPC) clients and uncheck the require 128 bit.
  Network security: Minimum session security for NTLM SSP based (including secure RPC) servers and uncheck the require 128 bit
  I have created a user account on the server for the ricoh and set this in the settiings of the Ricoh and verified everything is correct.
  Are there any other things I have missed?

  I can email anybody the firmware module if interested and how to...
  Tell me your model and email
  If your offer still stands we have an Aficio MP C3300
  Firmwareversion
  Modulnavn Version Delnummer 
  System/Copy  1.13  D0255562H  
  Network Support  8.16.1  D0255563D  
  Font EXP  1.03  D0255588  
  OptionPCLFont  1.02  D0255589  
  animation  1.3.1  D0255568A  
  Fax  01.10.00  D0255569B  
  RemoteFax  01.10.00  D0255564B  
  Printer  1.11  D0255572A  
  RPCS  3.7.5.4.1  D0255574A  
  Option PCL  1.00  D0255580A  
  Scanner  01.17  D0255570C  
  Network DocBox  1.00  D0255567B  
  Web Support  1.06  D0255565B  
  Web Uapl  1.07  D0255566C  
  libcvm(v4)  4.13  D4135765B  
  GWFCU3-13(WW)  03.00.00  D3935570C  
  PowerSaving Sys  1.10  D0255560C  
  Engine 1.51:09 D0255117E 
  OpePanel 1.03 D0251492A 
  LANG0 1.03 D0251496 
  LANG1 1.03 D0251496 
  ADF 03.420:02 D3665604 
  Finisher 01.090:03 D3725112
  Best Regards/
  Henrik Plougstad
  henrik(a)pieroth.dk

• Windows Server 2012/2012R2 NIC Teaming Mode

  Hi,
  Question 1:
  In Windows Server 2012 the following teaming mode was recommended for Hyper-V NIC teams:
  Teaming mode: Switch Independent
  Load balancing mode: Hyper-V Port
  All Adapers Active
  In a session at TechEd 2014 it was stated that Dynamic is the new recommendation for Windows Server 2012 R2. However, a Microsoft PFE stated a few weeks ago that he would still recommend Hyper-V Port for Windows Server 2012 R2. What is your opinions around
  this?
  Question 2:
  We have a Hyper-V Failover Cluster which isn`t migrated to 2012 R2 yet, it`s running 2012. In this cluster we use Switch Independent/Hyper-V Port for the team. We also use converged networking, having 2 physical adapters bound to the NIC team, as well as
  3 virtual adapters in the management OS for management, CSV and Live Migration. Recently one of the team NICs failed, and this incident also caused the cluster membership on the affected node to go offline even though the other team NIC was
  connected. Is this expected behaviour? Would the behaviour be different if 2012 R2 with Dynamic mode was being used?

  Hello,
  As for question number 1:
  For Hyper-V workload it's recommended to use Dynamic with
  Switch Independent mode. Why?
  This configuration will distribute the load based on the TCP Ports address hash as modified by the Dynamic load balancing algorithm. The Dynamic load balancing algorithm will redistribute flows to optimize team member bandwidth utilization so individual
  flow transmissions may move from one active team member to another.  The algorithm takes into account the small possibility that redistributing traffic could cause out-of-order delivery of packets so it takes steps to minimize that possibility.
  The receive side, however, will look identical to Hyper-V Port distribution.  Each Hyper-V switch port’s traffic, whether bound for a virtual NIC in a VM (vmNIC) or a virtual NIC in the host (vNIC), will see all its inbound traffic arriving on a single
  NIC.
  This mode is best used for teaming in both native and Hyper-V environments except when:
  1) Teaming is being performed in a VM,
  2) Switch dependent teaming (e.g., LACP) is required by policy, or
  3) Operation of a two-member Active/Standby team is required by policy. 
  As for question number 2:
  The Switch Independent/Hyper-V Port will send packets using all active team members distributing the load based on the Hyper-V switch port number.  Each Hyper-V port will be bandwidth limited to not more than one team member’s bandwidth because the port
  is affinitized to exactly one team member at any point in time. 
  In all cases where this configuration was recommended back in Windows Server 2012 the new configuration in 2012 R2, Switch Independent/Dynamic, will provide better performance.
  Microsoft recommend for a clustered Hyper-V deployment
  in Windows server 2012 to use Switch Independent/Hyper-V Port as you mentioned and to configure
  Hyper-V QoS that applies to the virtual switch. (Configure minimum bandwidth in
  weight mode instead of in bits per second and Enable and configure QoS
  for all virtual network adapters 
  Did you apply QoS on the Converged vSwitch after you
  created the team?? However Nodes are considered down if they do not respond to 5 heartbeats. The Switch Independent/Hyper-V Port does not cause the cluster to goes down if one NIC failed. The issue is somewhere else and not in the teaming mode
  that you choose.
  Hope this help.
  Regards,
  Charbel Nemnom
  MCSA, MCSE, MCS, MCITP
  Blog: www.charbelnemnom.com
  Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if
  a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

• Windows Server 2012 R2 KMS - STATUS_SUCCESS

  We are in the process of setting up a Windows Server 2012 R2 KMS server to replace our Windows Server 2008 R2 machine.
  After installing the Volume Activation role and going through the volume activation tools 'wizard' i'm running into a problem.
  When i try to commit the settings (like firewall exceptions, custom dns zones) i get an error stating the following:
  The following error has occurred. Please resolve the error and try again.
  Description:
  STATUS_SUCCESS
  And none of the settings have been aplied, and there are no eventlog entries stating whats wrong.
  When i deploy a Windows Server 2012 (non R2) machine and go through the same process commiting the same settings works fine.
  Anybody know what might be wrong here?

  Man, i've been checking things for days, and THIS is the solution? :)
  Thanks for the help man, this fixed it for me too! 
  ... why something like this doesn't generate a real error code or something is beyond me.....

• Windows Server 2012 Standard Evalution activation

  Hi Guys.
  I have deployed a Windows Server 2012 Standard Evaluation and have installed AD, DNS and DHCP roles on the server, and it is now my production server, i have a Volume Licence Key and now needs to activate it to Windows Standard 2012 Standard and not Evaluation,
  kindly assist i am only left with 3 days.
  Regards
  NicWaks 

  You might have a problem here. This is an extract from that TechNet article
  If the server is a domain controller, you cannot convert it to a retail version. In this case, install an additional domain controller on a server that runs a retail version and remove AD DS from the domain controller that runs on the evaluation version
  Gerry Hampson | Blog:
  www.gerryhampsoncm.blogspot.ie | LinkedIn:
  Gerry Hampson | Twitter:
  @gerryhampson

• Cannot publish Flash Updates Verification of file signature failed for file SCUP 2011, SCCM 2012 R2 and WSUS all on same Windows Server 2012 machine

  I am attempting to distribute Adobe Flash updates using SCUP 2011, SCCM 2012 R2, WSUS ver4 and Windows Server 2012.  Everything installs without error.  I have acquired a certificate for SCUP signing from the internal Enterprise CA.  I have
  verified the signing certificate has a 1024 bit key.  I have imported the certificate into the server's Trusted Publishers and Trusted Root CA stores for the computer.  When I attempt to publish a Flash update with Full content I receive the following
  error:
  2015-02-13 23:00:48.724 UTC Error Scup2011.21 Publisher.PublishPackage PublishPackage(): Operation Failed with Error: Verification of file signature failed for file:
  \\SCCM\UpdateServicesPackages\a2aa8ca4-3b96-4ad2-a508-67a6acbd78a4\3f82680a-9028-4048-ba53-85a4b4acfa12_1.cab
  I have redone the certificates three times with no luck.  I can import metadata, but any attempt to download content results in the verification error.
  TIA

  Hi Joyce,
  This is embarrassing, I used that very post as my guide when deploying my certificate templates, but failed to change the bit length to 2048.  Thank you for being my second set of eyes.
  I changed my certificate key bit length to 2048, deleted the old cert from all certificate stores, acquired the a new signing cert, verified the key length was 2048, exported the new cert to pfx and cer files, imported into my Trusted publishers
  and Trusted Root Authorities stores, reconfigured SCUP to use the new pfx file, rebooted the server and attempted to re-publish the updates with the following results:
  2015-02-16 13:35:44.006 UTC Error Scup2011.4 Publisher.PublishPackage PublishPackage(): Operation Failed with Error: Verification of file signature failed for file:
  \\SCCM\UpdateServicesPackages\a2aa8ca4-3b96-4ad2-a508-67a6acbd78a4\3f82680a-9028-4048-ba53-85a4b4acfa12_1.cab.
  Is there a chance this content was already created and signed with the old cert, so installing the new cert has no effect?  In ConfigMgr software updates I see 4 Flash updates, all marked Metadata Only (because they were originally published as "Automatic." 
  No Flash updates in the ConfigMgr console are marked as downloaded.  I can't find any documentation on how the process of using SCUP for downloading content for an update marked Metadata Only actually works. 
  Comments and suggestions welcome.

• Unable to add network printers from Windows Server 2012 R2 to client running Windows 7 Pro x64

  New Windows Server 2012 R2 Standard in the environment.  Added print services to it and added five HP printers to it and shared them.  Also deployed the printers via group policy.
  Clients are running Windows 7 Pro x64.  The group policy fails to install the printers (error 0x00000002).  We get the same error when trying to manually add the printer from the client side.
  From Event Viewer: Group Policy was unable to add per computer connection <<printer share>>. Error code 0x2. This can occur if the name of the printer connection is incorrect, or if the print spooler cannot contact the print server.
  Any ideas on troubleshooting this?
  Thanks.
  -John

  John,
  You might try playing with the HP universal driver, that might help you.  Try installing a new shared printer on the server using the universal print driver, then try and connect to it to see if it is any better.
  Check these GPO settings to ensure local machines can install the drivers.
  1. Configure the following two Group Policy settings:
  Computer Configuration\Policies\Administrative Templates\System\Driver Installation\Allow non-administrators to install drivers for these devices setup classesEnabled
  2. Device class GUID of printers: {4d36e979-e325-11ce-bfc1-08002be10318}
  Computer Configuration/Policies/Administrative Templates/Printers/Point and Print RestrictionsEnabled
  Security Prompts: When Installing Drivers for a new connection = Do not show warning or elevation prompt
  This article might help you out also:
  http://www.eversity.nl/blog/2012/09/windows-cannot-connect-to-the-printer-operation-failed-with-error-0x00000002/
  Cheers,
  Curt Winter
  Certified Microsoft Professional
  Note: Posts are provided “AS IS” without warranty of any kind, either expressed or implied. If you found my post helpful, please mark it as the answer.

• Just FYI, Windows Server 2012 R2 and Windows Server 2012 BranchCache Deployment Guide in Word format in the TechNet Gallery

  The Windows Server 2012 R2 and Windows Server 2012 BranchCache Deployment Guide is now available for download in Word format in the TechNet Gallery at
  http://bit.ly/1pYZT3F
  Thanks -
  James McIllece

  hello again,
  meanwhile I was lucky to find this article about Idenity Mapping in TechNet in the Storage Team Blog:
  http://blogs.technet.com/b/filecab/archive/2012/10/09/nfs-identity-mapping-in-windows-server-2012.aspx
  Likely to be overseen at the end of one paragraph it says:
  "Client for NFS does not support NFS V4.1 in Windows 8 or Windows Server 2012"
  Question : Is this an official statement and is it still valid with most recent
  Windows Server 2012 R2 that NFS client does NOT support NFSv4.x  ??
  thanks - Rainer

• Oracle client 32/64 bit on Crystal Server 2013 and Windows Server 2012

  I'm getting the error "Unknown Database Connector Error" when I run report on the server and it works OK on crystal designer 2013.
  Been reading this thread 32&64 bit Oracle Client but not much help there.
  Here are the  details
  System
  Windows Server 2012
  Crystal Server 2013 SP5
  Crystal Server has been installed and appears to work fine. I was able to develop a brand new report locally and saved it to the server and it displays ok. Of course when I click on refresh on the report, it will error out due to database connection it looks like.
  We have installed both oracle client drivers 64 and 32. 64 was installed first and then 32.The path has been modified so that the 32 shows up first.
  I even ensure oracle_home and oracle_home32 are specified and restarted the server. I still get the same error.
  The tns entries are also located in both installs of oracle client...
  What might be the issue?

  Oracle Database Client 12.1.0.2.0 (32-bit and 64-bit installed)
  Installation Type: Custom
  COMPONENTS INSTALLED:
  SQLPLUS
  ORACLE NET
  We are currently not using an ODBC connection.
  We installed Crystal 2013 Server SP05. This is the sole package installed (believe it's the latest version) without any extra patch package installed (believe no patch needed as it's the latest version).

• Windows Server 2012 Essentials (not R2) - all client computers offline

  The server is Windows Server 2012 Essentials (not R2). I have had this problem ever since I first installed the Windows Server 2012 Essentials server in the summer of 2013 (before R2 was released). The Windows Server 2012 Essentials server shows offline
  for all Devices under Dashboard. (Allow me to add that I just installed another site with Windows Server 2012 Essentials R2, and it was a breeze - all of the computers at the second install site are online.) I have one Windows 8.1 Pro client and the rest
  are Windows 7 Pro clients. The problem occurs on ALL client computers.
  I have removed computers from Devices in Dashboard on the server, rebooted the server, changed the client computer to a workgroup, rebooted the client computer, and reinstalled the connector software on the client computer. Same result. I
  have tried this on a Windows 7 Pro client and a Windows 8.1 Pro client with the same results.
  After running the connector on a client computer and waiting for the server to update its Devices status, if I look under Devices on the server Dashboard, the Windows 8.1 client computer will say online but within 24 hours it goes offline again. The
  Windows 7 client computers never show online. Both computers stay offline - they NEVER show an online status (referring to the status under Devices in Dashboard).
  I should make it clear that the clients can access the server shares with no problem. File synchronization works great. The clients can ping the server and the server can ping the clients. But client backups on the server fail.
  One of the most troublesome things about this problem is that it prevents the client computers from being accessed remotely using the website setup by Anywhere Access. I can login to get remote access to the shared files on the server, but
  the only computer that says "online" is the server. All of the other computers are "offline".
  The server and clients are only using Windows firewall. The clients all use Microsoft Security Essentials for their anti-virus.
  I used a troubleshooting tool that tells me that there are problems with port 6602 on the server, but the clients are all fine with port 6602. I know port 6602 is important for using Anywhere Access but I am still trying to find out more details on that.
  I have checked all of the firewall settings related to port 6602 on the server, and the firewall settings look like the standard Windows settings for this port. I used netstat to find the PID associated with the port, and I looked up the PID to find the service.
  That all looked standard, too.
  I have been working on this problem since the summer of 2013!! Does anyone have ANY suggestions?!!
  HELP!

  Hi,
  Just addition, please check if all necessary Windows updates are installed on those
  “Offline” client computer.
  When connect client computers to the Windows Server 2012 Essentials server by using the Connector software, there
  will be LAUNCHPAD on the client computer. Was this LAUNCHPAD grayed out? Please check if can access Shared Folders via this LAUNCHPAD. Meanwhile, please ping the Windows Server 2012 Essentials via IP address and server name when client computers show as
  Offline. Any find?
  Get Connected in Windows Server Essentials
  In addition, please follow the path on Server and client computer:
  %programdata%\Microsoft\Windows Server\Logs. Did you check any relevant Server-side logs and
  Client-side Logs if find more clues?
  Windows
  Server Essentials 2012/2012 R2 Log Files
  If any update, please feel free to let us know.
  Hope this helps.
  Best regards,
  Justin Gu
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]

• DirectAccess Client not connecting without error code on Windows Server 2012 R2 and Windows 8.1

  Hello,
  we are currently migrating from Windows Server 2012 to 2012 R2 and are not able to get the new Direct Access Service up and running. Our goal is to establish DirectAccess connection for a handful of clients using the IPHTTPS-adapter on the default port 443.
  Errors:
  There is actually no error showing up. It seems the infrastructure tunnel cannot be created but none of the IPv6-transition adapters is connecting (teredo and 6-to-4 are down) and the IPHTTPs adapter gives no informations about a problem:
  >Get-DAConnectionStatus
  Status    : Error
  Substatus : CouldNotContactDirectAccessServer
  >Get-NetIPHttpsState
  LastErrorCode   : 0x0
  InterfaceStatus : Failed to connect to the IPHTTPS server; waiting to reconnect
  Setup:
  Our setup is a virtualized Windows Server 2012 R2 Standard running on Hyper-V. It is located behind a NAT having the Port 443 mapped to the server. The only role installed after the basic install is RRAS including DirectAccess and VPN. The assistants completed
  successfully (running the configuration for DirectAccess and VPN). Operation Status says everything is green und working (for multiple days in the meanwhile). A previous direct access installation (on a different machine running Windows Server 2012) has
  been removed before installing the new server. The new installation is using a different router, so this might also be the cause of a problem.
  The client is a Windows 8.1 notebook located outside the company network accessing the internet through another NAT-device. The client has been able to connect to the previous DirectAccess setup but has never been able to establish a connection after the
  setup of the new Direct Access server. The device has no outbound constraints concerning the NAT-device and is only running the integrated Windows Firewall.
  Diagnosis:
  So far I've done some basic DNS and connectivity checks. The DNS-name can be resolved correctly and the router even responds to pings. The port forward is working and HTTPs connections are generally possible (temporarily routed the port to
  access the NLS-Website located on the server, which worked fine).
  Network monitor shows that both computers are communicating, traffic on the expected Port 443 is incoming on the server and responses from the server reach the client.
  Opening the IPHTTPs-url and in an endless page load. Sometime the browser page closes but I've never seen any result. Using telnet on the port shows that the server is accepting connections. I've even build a small test application that does a GET-Request
  on the URL returning HTTP-200 and no content.
  I'm currently running out of ideas what to do and since no error occurs this is kind of a bit frustrating. Any help appreciated.
  Regards
  Matthias

  Hi,
  In addition, have you disabled the DA client components on the DA client? If no, please also check
  the settings on the Name Resolution Policy Table.
  More information:
  DirectAccess
  Client Location Awareness – NRPT Name Resolution
  In addition, error 0x4C9 means the remote computer refused the network connection. It may be due to the invalid
  registry or corrupt drivers. For more detailed information, please refer to the link below:
  Error 1225 - Error Code 0x4C9
  Note:
  Microsoft is providing this information as a convenience to you. Please make sure that you completely understand the risk before retrieving any suggestions from the above link.
  Best regards,
  Susie