Server 2012 DNS Configuration without using Active Directory

Similar Messages

• Windows Server 2012 R2 - Join Domain fails (Active Directory)

  Well guys - I don't know what to do about this problem anymore...
  I set up a DC for my home network - Windows Server 2012 R2 Foundation. Everything is set up fine - DNS, AD - I suceeded joining the domain with other PCs in the network.
  Problem:
  When I want to join the domain "lionnet.at" it tells me that it cannot find the network address after I typed in the domain admin password.
  The dns entries are fine - checked it with nslookup. The DC name is lionhead.
  nslookup:
  set q=srv
  > set q=srv
  > _ldap._tcp.dc._msdcs.lionnet.at
  Server:  lionhead.lionnet.at
  Address:  10.0.0.150
  _ldap._tcp.dc._msdcs.lionnet.at SRV service location:
            priority       = 0
            weight         = 100
            port           = 389
            svr hostname   = lionhead.lionnet.at
  lionhead.lionnet.at     internet address = 10.0.0.150
  I tried several solutions: editing the lmhosts/hosts file, deactivating IPv6, setting a static IPv4
  Any ideas on this?

  what the hell...it was an external soundcard preventing the join...i installed it a week ago - unplugged it - "Welcome to the domain lionnet.at!"
  Hi CloneBraveB,
  Glad to hear that you have solved this issue and thanks for sharing in the forum. Your time and efforts are highly appreciated.
  Would you please let me know the complete error message that you get when failed to join the problematic client computer to the domain?
  In addition, for a test, please select another computer and install the external soundcard again, then attempt to join the computer to domain. Did you reproduce this issue?
  By the way, would you please let me know more details of that soundcard?
  If any update, please feel free to let me know.
  Best regards,
  Justin Gu
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]

• Server 2012 adfs configuration with o365

  Hello Support,
  Currently we have using o365 email account and ad server 2012. how we can start configuration adfs with server 2012 step by step.  

  Hi,
  Here is a walkthrough article below, most of the contents also apply to ADFS on Windows Server 2012:
  Office 365 and ADFS…Active Directory Federation Service Installation
  http://social.technet.microsoft.com/wiki/contents/articles/9082.office-365-and-adfs-active-directory-federation-service-installation.aspx
  For more detailed questions about ADFS, I suggest you refer to this dedicated ADFS forum below:
  Claims based access platform (CBA), code-named Geneva Forum
  http://social.msdn.microsoft.com/Forums/vstudio/en-US/home?forum=Geneva
  Best Regards,
  Amy

• Activating Windows 7 by using KMS Without the Active Directory Domain environment

  Dear,
               Can we able to activate the Windows 7 O/S Machines by using KMS without the Active Directory Domain environment,As our some of the Computers will not connect with AD domain, we need to setup the speprate KMS
  server for this.
  Thanks
  Balaji K 

  You can point the KMS clients to the KMS host machine by opening an Elevated CMD prompt:
  and running slmgr /skms to point directly to the KMS host.
  You do not need a Domain controller.
  Volume Licensing: Key Management Service (KMS) Client Options:
  /skms <Name[:Port] | : port> [Activation ID] [Activation ID]                                                                                                          
  Set the name and/or the port for the KMS computer this machine will use. IPv6 address must be specified in
  the format [hostname]:port                          /ckms [Activation ID]                  
  Arnav Sharma | http://arnavsharma.net/ Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading
  the thread.

• Using Active-Directory PW at SAP logon procedure

  Hello,
  I have the requirement no to use single sign on for some systems with sensitive data, but  would like to check during sap logon procedure the  from our central active directory password.
  is there any best practice configuration or SAP / AD Win Addon solution available to connect SAP NW abap 7.40 at Win2012 sever with our active directory. Nearly all win based applications can handle a PW check from application to AD. Is there any SAP or Partner implementation helpful to expand the SAP client internal User-PW check?
  Thanks in advanced for alternatives to the standard client SSO or any idea in the direction using active directory password within sap-logon.
  Please give me a short feedback if you need more details.
  regards,
  Bernhard Mair
  Goethe-Institut München

  The SAP NetWeaver ABAP app server only accepts SAP user id and password or it can use SNC to authenticate the user when SAP GUI is used on workstation. So, if you want the user to be prompted to enter their Active Directory credentials during a logon using SAP GUI, and you don't want SSO, then you need to purchase a third party product.
  Please note, that SAP is not JUST a Windows based application, as it can also be installed on Unix and Linux, so SAP have made it work in same way on all platforms without any 'special' windows authentication capabilities.
  Thanks
  Tim

• ThinkVantage Technology Deployment using Active Directory

  I am attempting to automate the deployment of Rescue and Recovery using Active Directory for about 50 laptops. So far, I've read through all of the Lenovo documentation for RnR deployments, none of which is useful. The deployment guide has broken links, the section "Corporate Active Directory Rollout" is incomplete, the command line options aren't clearly written, and the AD instructions end with 'then deply settings using a registry edit'.
  My goal is to configure the laptops to automatically backup to a network share once a week, in the background, without any user intervention. So far, almost everything that I've tried in my test environment has led to failure.
  First step, install the software. I can't deploy via Group Policy, as the installation doesn't seem to end up working. I did the administrative install to a network location, then published the program via AD. After the reboot, I'll click the RnR shortcut in the start menu, and nothing happens. I've also tried creating a batch file that runs rrcmd.exe to create a backup, but that fails too "Service not found". So I resort to installing manually.
  Next, I try to configure the network location via Group Policy and the supplied ADM file. I set the destination path for MND to \\server\%computername%\, but that fails, as MND tries to connect to a share called %computername% instead of what the system variable says. To get around this, I had to create an MND batch file that edits the MND info right before the backup, which doesn't seem to always work.
  Now, if mid-backup the user disconnects from the network, there is a series of Delayed Write errors. That's not acceptable.
  Also, if I set the backup location to local via GP, then change it to network, the backup command still reads "L", even after a reinstall of the software with the "local" location set to 0 in group policy.
  Are there any tips to help ease this deployment?
  Thank You

  I think I figured it out! You can do exactly what I was doing.
  The solution seemed to be I was missing:
  orcluserprincipalname=<ADUser>@<domain>
  orclsamaccountname=<name>
  objectclass=orclADUser
  You need at least the first and third one in order for it to work ( adding them is another story - you are on your own for that :-) ).
  FYI I found this in the document that I have been using all day (but I didn't pay close enough attention as I missed that part) Doc ID: Note:277382.1
  which can be found on metalink.

• Client Certificate Mapping authentication using Active Directory across trusted forests

  Hi,
  We currently have a setup where the on-premises environment and the cloud environment are based on two separate forests linked by a 1-way trust, i.e., the exist in the on-premises AD and the 1-way trust allows them to use their
  credentials to login to a cloud domain joined server. This works fine with the Windows authentication.
  We are now looking at implementing a 2-Factor authentication using Certificate. The PKI infrastructure exists in the On-Premises Forest. The users are able to successfully login to on-premise servers configured with "AD CLient Certificate
  Mapping".
  However, we are unable to achieve the same functionality on the cloud domain joined servers. I would like to know
  1. Is this possible?
  2. If yes, what do we need to do to make this work.
  Just to clarify, we are able to authenticate using certificates by enabling anonymous authentication. However, we are unable to do the same after turning on "Client Certificate Mapping authentication using Active Directory"

  1. Yes!
  2. Before answering this I need to know if your are trying to perform a smart card logon on a desktop/console or if you just want to use certificate based authentication in an application like using a web application with client certificate requirements
  and mapping?
  /Hasain
  We will eventually need it for smartcard logon on to desktop/console. However, at present, I am trying to use this for certificate based authentication on a web application.
  To simulate the scenario, I setup up two separate forests and established a trust between them.
  I then setup a Windows PKI in one of the forests and issued a client certificate to a user.
  I then setup a web server in both the forests and configured them for anonymous authentication with Client SSL requirement configured.
  I setup a test ASP page to capture the Login Info on both the servers.
  With the client and the server in the same forest, I got the following results
  Login Info
  LOGON_USER: CORP\ASmith
  AUTH_USER: CORP\ASmith
  AUTH_TYPE: SSL/PCT
  With the client in the domain with the PKI and the server in the other Forest, I got the following response
  Login Info
  LOGON_USER:
  AUTH_USER:
  AUTH_TYPE: 
  I tried the configuration with the Anonymous Authentication turned off and the AD CLient Certificate mapping turned on.
  With the client and the server in the same forest, I am able to login to the default page. However, with the server in a trusted forest, I get the following error.
  401 - Unauthorized: Access is denied due to invalid credentials.
  You do not have permission to view this directory or page using the credentials that you supplied

• Connected to Domain but can't log in using Actived Directory Credentials

  Hey everyone.  I've been working on this issue for two weeks now, and I don't know what else to try.  I'm connected to my domain but cannot get my Macbooks to log in using Active Directory credenitals both through our wireless network, and hard wired with an ethernet cable.  The weird part about it is that it is not uniform all across our network.  This only happens to certain Macbooks and as of right now there doesn't seem to be a pattern.  I can say that it has happened to all new Macbook Pros that we have ordered lately though.
  We use Jamf to manage our Macs on our network, and ever since upgrading to a new version (9.01 and now 9.1) we have had this issue.  However I can't connect after manually adding the domain either, so for now it makes me think it is not a Jamf issue.  Has anyone dealt with this issue before, that might know of a fix?  Thanks!

  Hi Burnettb1,
  I have come across a similar issue as yours.  I have included the instructions that I use to bind the Mac at my institution.  In regards to wifi, I have not tried binding the Mac over wifi. Should you need to log in to a Mac with domain user credentials I would suggest to bind the Mac over ethernet.  Once you get to the:
  *Click on triangle to the left of Show Advanced Options to expand"
  portion of the instructions click on the Mappings tab and select the checkbox for creating a mobile account at login.  This will create a domain user profile on the machine that you can log into when not connected to the domain.
  Hope this helps.
  BIND iMac:
            Login into iMac using administrative credentials
            Open System Preferences
                      *Goto Users & Groups
                      *Click on lock in lower left-hand corner
                      *Use same password used to log into iMac
                      *Click on Login Options
    *Click on ‘Join...’ button right of "Network Account Server: "
                      *Click on ‘Open Directory Utility…’ button
                      *Click on lock in lower left-hand corner
                      *use same password used to log into iMac and click on Modify Configuration
                      *Double-click on Active Directory
    Active Directory Domain = domain
                                Computer ID = name of Mac
                      *Click on triangle to the left of Show Advanced Options to expand
                                *Click on Administrative tab
                                *Check  Prefer this domain server
  Type  domainserver_ipaddr -or- servername.domain in this field
                                *Click on ‘Bind…’ button
                                *When prompted for network administrator login
                                          username = [domain admin user]
                                          pwd = [domain user password]
                                *Click OK (Note: search path will be updating. Until completed the ‘OK’
  button will be greyed out
    *Click OK
    *Click lock to lock and close window
                      *Click lock to lock and close window
  BIND CHECK:
            *Search AD for added mac host - it should be there.
            Open Terminal app by either:
                      1)
                                *Press command+spacebar
                                *Type Terminal and select app
                      2)
                                *Click on desktop
                                *Press shift+command+A
                                *Goto Utilities folder located within Application folder (which you should
    be in) and open Terminal
            *Once Terminal is opened type in id [domain username] and press return key.  The output should be
  some some network account information
            *Close app by pressing command+Q and any other opened windows
            *Restart iMac
            *Log in

• Oracle 9i/10G DB authentication using Active Directory (with out OID)

  Hello All,
  We want to use a Single-Password authentication scheme using the Active
  Directory as the primary source for userId/Password.
  We don't want to use the Active Directory and OID bridge.
  As we have many databases and would like to configure all Databases to use Active
  Directory for Authentication. Our goal is to have single id/password across all
  the databases and any user should be able to login from any computer using their
  windows id/password, note that we don't want to use the OSAuthentication.
  We have read the documents provided by oracle for authentication using Active
  Directory, we were able to create Oracle Schema in Active Directory and were
  also able to register a DB with Active Directory and then created user as global
  user in Oracle Database and provided the DN of the user. When we tried
  authenticate with all this setup it comes back and says invalid ID/Password !!!
  And with 10G database we get the Oracle Error ORA-03113: end-of-file on communication channel !!
  Has any one tried or have information on Integrating Oracle to Auth against Active Directory?
  Envoirnment:
  Oracle DB Version: 9.2.0 and also tried on 10.0.1 with same results
  Operating System: Windows 2000/ Windows 2000 Server
  Constraint: We don't want to user OID ( as we don't have license for this
  product ! )

  I have a thread started similar to your request.
  OS Authenication on Windows
  Somewhere I read this. It works on Oracle 9i on Linux, but I have not tried it with Oracle 9i on Windows.
  SHOW PARAMETER OS_AUTHENT_PREFIX;
  SHOW PARAMETER REMOTE_OS_AUTHENT;
  CREATE USER OPS$SOMEUSER IDENTIFIED EXTERNALLY;
  GRANT CREATE SESSION TO OPS$SOMEUSER;
  For the username, I wonder if we are supposed to put the Windows Domain name as part of the username? Such as, for a Windows domain user MyDomain\SomeUser
  CREATE USER OPS$MYDOMAIN\SOMEUSER IDENTIFIED EXTERNALLY;
  I really wish Oracle or somebody created a guide or book on how to do this.

• LDAP Using Active Directory failed in BAM

  I tried to configure the LDAP Using Active Directory as described in the BAM installation guide 10.1.3.1.0.
  In appsetting, i gave the server name, username and password used by us. Then i restarted the active data cache and IIS. Then i tried to access the http:\\server\oraclebam. But it is throwing the following error. What shall i do.
  Exception Message The directory service is unavailable
  Stack Trace at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail) at
  System.DirectoryServices.DirectoryEntry.Bind() at System.DirectoryServices.DirectoryEntry.get_AdsObject() at
  System.DirectoryServices.DirectorySearcher.FindAll(Boolean findMoreThanOne) at
  System.DirectoryServices.DirectorySearcher.FindOne() at
  Oracle.BAM.Common.Security.Ldap.LdapAuthenticationTicket.Authenticate(String strName, String strPassword) at
  Oracle.BAM.Common.Security.Authentication.LDAPAuthenticationModule.GetPrincipal(ICredentials oCredentials) at
  Oracle.BAM.Web.Authentication.WebAuthentication.Authenticate(ICredentials oCredentials) at
  Oracle.BAM.Web.Authentication.WebAuthentication.Authenticate() at Oracle.BAM.Web.WebPage.ProcessRequest(Page oPage, String
  strAssembly, String strApp, String strType, String strMethod, String strParam)
  Debugging Information The directory service is unavailable [ErrorSource="System.DirectoryServices"] Debugging information:
  System.Runtime.InteropServices.COMException (0x8007200F): The directory service is unavailable at
  System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail) at System.DirectoryServices.DirectoryEntry.Bind() at
  System.DirectoryServices.DirectoryEntry.get_AdsObject() at System.DirectoryServices.DirectorySearcher.FindAll(Boolean
  findMoreThanOne) at System.DirectoryServices.DirectorySearcher.FindOne() at
  Oracle.BAM.Common.Security.Ldap.LdapAuthenticationTicket.Authenticate(String strName, String strPassword) at
  Oracle.BAM.Common.Security.Authentication.LDAPAuthenticationModule.GetPrincipal(ICredentials oCredentials) at
  Oracle.BAM.Web.Authentication.WebAuthentication.Authenticate(ICredentials oCredentials) at
  Oracle.BAM.Web.Authentication.WebAuthentication.Authenticate() at Oracle.BAM.Web.WebPage.ProcessRequest(Page oPage, String
  strAssembly, String strApp, String strType, String strMethod, String strParam)

  Hi,
  We are also facing the issue stated in the first thread. We followed everything specified in the LDAP PDF under TechNotes and still not able to access the BAM console successfully.
  The error we get is pasted at the end of this post. The request doesn't even seem to reach our LDAP server (configured in a remote system).
  A couple of clarifications required:
  1. Does our windows logon need to be the same as BAM console logon?
  2. I do not know the LDAP setting for my actual windows logon. But i have retained my same usrId and have configured a user in LDAP with my own organization and other hierarchies. I have configured this userId with the complete hierarchy in BAM login management and have given admin access also to this user. Is this correct?
  An error occurred while processing your request
  Details...
  Exception Message The server is not operational
  Stack Trace at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail) at System.DirectoryServices.DirectoryEntry.Bind() at System.DirectoryServices.DirectoryEntry.get_AdsObject() at System.DirectoryServices.DirectorySearcher.FindAll(Boolean findMoreThanOne) at System.DirectoryServices.DirectorySearcher.FindOne() at Oracle.BAM.Common.Security.Ldap.LdapAuthenticationTicket.Authenticate(String strName, String strPassword) at Oracle.BAM.Common.Security.Authentication.LDAPAuthenticationModule.GetPrincipal(ICredentials oCredentials) at Oracle.BAM.Web.Authentication.WebAuthentication.Authenticate(ICredentials oCredentials) at Oracle.BAM.Web.Authentication.WebAuthentication.Authenticate() at Oracle.BAM.Web.WebPage.ProcessRequest(Page oPage, String strAssembly, String strApp, String strType, String strMethod, String strParam) ...
  Debugging Information The server is not operational [ErrorSource="System.DirectoryServices"] Debugging information: System.Runtime.InteropServices.COMException (0x8007203A): The server is not operational at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail) at System.DirectoryServices.DirectoryEntry.Bind() at System.DirectoryServices.DirectoryEntry.get_AdsObject() at System.DirectoryServices.DirectorySearcher.FindAll(Boolean findMoreThanOne) at System.DirectoryServices.DirectorySearcher.FindOne() at Oracle.BAM.Common.Security.Ldap.LdapAuthenticationTicket.Authenticate(String strName, String strPassword) at Oracle.BAM.Common.Security.Authentication.LDAPAuthenticationModule.GetPrincipal(ICredentials oCredentials) at Oracle.BAM.Web.Authentication.WebAuthentication.Authenticate(ICredentials oCredentials) at Oracle.BAM.Web.Authentication.WebAuthentication.Authenticate() at Oracle.BAM.Web.WebPage.ProcessRequest(Page oPage, String strAssembly, String strApp, String strType, String strMethod, String strParam) ...
  Assembly StartPage
  State Oracle.BAM.StartPage.StartUp
  Event Initialize
  Thanks,
  KM

• Using Active Directory to connect to OS X VPN

  I have 2 servers in my infrastructure that handle my entire small business.  I have a MacMini with Mountain Lion and Server running along with Windows SBS.  The Mountain Lion server has a lot of resources that we use, namely the VPN.  When my users authenticate, they have to use an account created onto the Mac server as opposed to Active Directory.  I have opened up the account settings and selected the services that the Active Directory user has access to but, it still does not authenticate. 
  Has anyone used a Mac server service like this and allowed Active Directory to be the authentication piece to access the services?
  Any help will be greatly appreciated.
  Thanks
  Dan

  Yes, assuming you are using windows for your web server.  And I'll assume server 2003 since your using IIS6.
  You ColdFusion service needs to run as the domain user/password.
  So, start menu -> run -> services.msc
  Open the advance properties of the cold fusion service and set the user as domain\user and the password for the user.
  The sql server will then need to allow this user the appropriate access, your DBA should be able to add this without issue.
  Then your DSN is setup WITHOUT a user or password.  The credentials will be what the service is running under.
  To take this to the next level, with windows 2008 server you can run the CF service as the "Network Service" user of the local machine. That account is actually domain\computername$ on the AD domain.  Then the sql server would need only need permissions for domain\computername$ and there is no need for a password.  When setting the service user/pass using services.msc you can specify "1"  as the password  and "Network Service" as the suer and things should start up OK.  (You'll need to add the "Network Service" permissions to the CF folder though). I don't think there are any security implications with this, but we have all our app servers firewalled, so it's not a huge concern for us, so that might take a little more investigation.  Plus we don't actually do this in production, we just tried it out in our lab.
  Byron Mann
  [email protected]
  [email protected]
  Software Architect
  hosting.com | hostmysite.com
  http://www.hostmysite.com/?utm_source=bb

• How to find the SQL Server Instances running across the given activer directory domain?

  How to find the SQL Server Instances running across the given activer directory domain?
  I have though of OSQL -L , Microsoft Assessment and Planning ( MAP ) tool and SQLPing3 (SQLSecurity) might help me.
  I would appreciate if there any other way of finding the SQL Servers / Instances running across the given active directory domain.
  Sivaprasad S
  http://sivasql.blogspot.com
  Please click the Mark as Answer button if a post solves your problem!

  Dear ,
  Very simple u find all instances through the customized sp which is get all details about inventory. Like i put the sp bellow. This is without any tool. 
  USE [master]
  GO
  /****** Object:  StoredProcedure [dbo].[DBStatus]    Script Date: 08-01-2015 19:46:11 By Damodar Patle Sr. DBA Mumbai India ******/
  SET ANSI_NULLS ON
  GO
  SET QUOTED_IDENTIFIER ON
  GO
  ALTER PROCEDURE [dbo].[DBStatus] 
  AS
  SELECT 
  SERVERPROPERTY('servername') AS ServerName,
  ConnectionProperty('local_net_address') AS 'local_net_address',
  ConnectionProperty('local_tcp_port') AS 'local_tcp_port',
  CONVERT(VARCHAR(25), @@VERSION) as  VERSIONSQL,
  SERVERPROPERTY('ErrorLogFileName') AS ErrorLogFilePath,
  database_id,
  CONVERT(VARCHAR(25), DB.name) AS DBName,
  CONVERT(VARCHAR(10), DATABASEPROPERTYEX(name, 'status')) AS [Status],
  CONVERT(VARCHAR(10), DATABASEPROPERTYEX(name, 'Recovery')) AS [Recovery_Model],
  create_date as DBCreate_Date, --physical_device_name,
   (SELECT COUNT(1) FROM sys.master_files WHERE DB_NAME(database_id) = DB.name AND type_desc = 'rows') AS DataFiles,
   (SELECT SUM((size*8)/1024) FROM sys.master_files WHERE DB_NAME(database_id) = DB.name AND type_desc = 'rows') AS [Data MB],
   (SELECT COUNT(1) FROM sys.master_files WHERE DB_NAME(database_id) = DB.name AND type_desc = 'log') AS LogFiles,
   (SELECT SUM((size*8)/1024) FROM sys.master_files WHERE DB_NAME(database_id) = DB.name AND type_desc = 'log') AS [Log MB],
   (SELECT physical_name FROM sys.master_files WHERE DB_NAME(database_id) = DB.name AND type_desc = 'rows') AS MDF_File_Location,
   (SELECT physical_name FROM sys.master_files WHERE DB_NAME(database_id) = DB.name AND type_desc = 'log') AS  LDF_File_Location,
     user_access_desc
     FROM sys.databases DB
     ORDER BY dbName, [Log MB] DESC, NAME

• Portal Authentication using Active Directory

  I am trying to set up authentication using Active Directory. Can anyone provide me with instructions on what to do ? I know that I have to go to System Admin - > System Configuration - > UM configuration and change the Data Source. What else do I need to do...How do specify which domain to authenticate against. Do I have to change the XML file. Please help.

  It depends on what you wanna do with the AD server. If you want to read/write on the AD then you have to first setup SSL connection between the two boxes.Else if you just want to read from AD server you don't require a SSL connection. Then you have to select the hierarchy type in the System Admin - > System Configuration - > UM configuration. Save.
  Next thing you do is to open the config tool and modify your xml file accordingly.
  And restsart the server.
  Hope this helps.
  Regards,
  Hassan

• Installing SQL Server 2012 remotely via Powershell using Invoke-Command

  I am trying to perform a SQL Server 2012 command line installation using Powershell Invoke-Command on Windows 2012 Datacenter.
  The code I am using is as follows:
   $ret = Invoke-Command -ComputerName $COMPUTER -ArgumentList $MEDIA,$ACTION,$FEATURES,$INSTALLDIR,$INSTANCEID,$INSTANCENAME,$SQLDATADRIVE,$SQLLOGDRIVE,$DOMAIN,$SQLSERVERSERVICEUSER,$SQLSERVICEPASSWORD,$PRODUCTKEY,$SQLSERVERSA,$username,$ADMINPASSWD
  -Credential $cred -ScriptBlock {
    param($MEDIA,
       $ACTION,
       $FEATURES,
       $INSTALLDIR,
       $INSTANCEID,
       $INSTANCENAME,
       $SQLDATADRIVE,
       $SQLLOGDRIVE,
       $DOMAIN,
       $SQLSERVERSERVICEUSER,
       $SQLSERVICEPASSWORD,
       $PRODUCTKEY,
       $SQLSERVERSA,
       $USERNAME,
       $PASSWD)
    Set-Location $MEDIA
    Import-Module ServerManager
    if (-not [IO.Directory]::Exists($MEDIA)){
     $hn = hostname
     return 0,"Failed to find SQL Server Installer at $MEDIA on $hn"
    $tran = ""
    Try{
     & $MEDIA\setup.exe /ACTION=$ACTION /Q /FEATURES=$FEATURES /IACCEPTSQLSERVERLICENSETERMS /UPDATEENABLED=False /INSTALLSHAREDDIR="$INSTALLDIR\Program Files\Microsoft SQL Server" /INSTALLSHAREDWOWDIR="$INSTALLDIR\Program Files
  (x86)\Microsoft SQL Server" /RSINSTALLMODE="FilesOnlyMode" /INSTANCEID="$INSTANCEID" /INSTANCENAME="$INSTANCENAME" /INSTANCEDIR="$INSTALLDIR\Program Files\Microsoft SQL Server" /ENU="True" /AGTSVCSTARTUPTYPE="Automatic"
  /SQLSVCSTARTUPTYPE="Automatic" /NPENABLED=1 /TCPENABLED=1 /RSSVCStartupType="Automatic" /ERRORREPORTING=0 /SQMREPORTING=0 /INDICATEPROGRESS /INSTALLSQLDATADIR="$SQLDATADRIVE\DATA" /SQLUSERDBDIR="$SQLDATADRIVE\DATA" /SQLUSERDBLOGDIR="$SQLLOGDRIVE\LOG"
  /ASDATADIR="$SQLDATADRIVE\OLAP\DATA" /ASLOGDIR="$SQLLOGDRIVE\OLAP\Log" \ASBACKUPDIR="$SQLDATADRIVE\OLAP\Backup" \ASTEMPDIR="$SQLDATADRIVE\OLAP\Temp" /ASCONFIGDIR="$SQLDATADRIVE\OLAP\Config" /ASCOLLATION="Latin1_General_CI_AS"
  /SQLCOLLATION="SQL_Latin1_General_CP1_CS_AS" /SQLSVCACCOUNT="$DOMAIN\$SQLSERVERSERVICEUSER" /SQLSVCPASSWORD="$SQLSERVICEPASSWORD" /AGTSVCACCOUNT="$DOMAIN\$SQLSERVERSERVICEUSER" /AGTSVCPASSWORD="$SQLSERVICEPASSWORD"
  /ASSVCACCOUNT="$DOMAIN\$SQLSERVERSERVICEUSER" /ASSVCPASSWORD="$SQLSERVICEPASSWORD" /RSSVCACCOUNT="$DOMAIN\$SQLSERVERSERVICEUSER" /RSSVCPASSWORD="$SQLSERVICEPASSWORD" /FTSVCACCOUNT="NT AUTHORITY\LOCAL SERVICE"
  /INDICATEPROGRESS > $out
    } Catch [System.Exception] {
     return 0,$_.Exception.ToString()
    if ($tran -ne ""){
     $out += $tran
    return 1,$out
  The media resides on the server that I am remoting to in powershell and the server is on the same domain. The credentials I pass are for a Domain Admin, but SQL Server fails to validate the credentials for the passed parameter for the sql service user with
  a Access Denied.
  If I run the same command with the same user directly on the server it works fine.
  My guess is that the elavated privs for Administrator are not being set when using Invoke-Command? Is there a way to utilize powershell to install SQL Server 2012 with command line option using the invoke-command and passing credentials? Or is this a limitation
  to the SQL Server installer. If there is can a example be provided?

  Ok, so with the help of some friends, we found a fix that works!
  Prior to running the Invoke-Command I now run:
  # enable CredSSP on a client computer; this command allows the client credentials to be delegated to the server01 computer.:
  Enable-WsManCredSSP -Role Client -DelefateComputer server.some.domain.com
  Then I add the -Authentication option to my Invoke-Command with option Credssp.
  The install the works fine. Hope this helpes all.

• Advice needed for WAP4410n to authenticate using active directory ?

  Hello,
  We have a couple of Cisco WAP4410n newly purchased for our organisation.
  1)We already have a windows 2003 active directory with domain and users.
  2)We have installed a machine with ubunto linux.It has freeradius configured
  in it.we have also installed the certificate server in this machine.
  3)we have given the linux machine's ip to the freeradius settings in  wap4410n.
  4)Our logic is that when a wireless users tries to connect to wap4410n the linux
     free radius server will communicate with the windows active directory and grant
     access to the wireless user.
  However when we try to connect a wireless user we are getting certificate related
  errors.
  Can someone advice us on the settings (PEAP and certificate issues) with respect to freeradius and wap4410n
  so that the active directory users can be authenticated.
  Thanks & regards.....

  Hi Sabeesh,
  if you get a certificate warning, then you should check what it is complaining about.
  -If you go for PEAP, you're supposed to install a certificate on the radius server and to have the clients to trust it.
  -Usually people configure the windows peap client to NOT validate the server certificate, which bypass this problem. However a certificate still has to be installed on the Radius server but it can be invalid.
  Hope this helps
  ===
  Don't forget to rate answers that you find useful