Website hosted in particular windows server prompting continuous domain authentication

Similar Messages

• Add Windows Server 2012 R2 domain controller to Windows 2008 R2 domain

  Hi,
  Have today 2 x Windows Server 2008 R2 domain controllers, and domain and functional level 2008 R2.
  We now want to replace these DC`s with Windows Server 2012 R2.
  My plan is as follow
  - Install and promote a Windows Server 2012 R2 as a 3 DC`s with a temporary hostname and IP as DC3
  - Install and promote a second Windows Server 2012 R2 as a 4 DC`s with a temporary hostname and IP as DC4
  - Decomiss DC1 and remove this host. Change the IP and hostname of the new DC3 to DC1
  - Move FSMO roles from DC2 to DC1 and decomiss DC2
  - Change the IP and hostname of the new DC4 to DC2
  Will this be a ok progress ? I will offcours to have the DC`s replicate information between them before doing each task.
  /Regards Andreas

  Hi,
  Only error i got running dcdiag was the following
   Starting test: NCSecDesc
      Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
         Replicating Directory Changes In Filtered Set
      access rights for the naming context:
      DC=ForestDnsZones,DC=domain,DC=local
      Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn't have
         Replicating Directory Changes In Filtered Set
      access rights for the naming context:
      DC=DomainDnsZones,DC=domain,DC=local
      ......................... DC1 failed test NCSecDesc
  Is this a problem ?
  I would guess not since im not implementing a RODC ? Ref:
  https://support.microsoft.com/en-us/kb/967482?wa=wsignin1.0
  You can ignore it.
  This posting is provided AS IS with no warranties or guarantees , and confers no rights.
  Ahmed MALEK
  My Website Link
  My Linkedin Profile
  My MVP Profile

• Windows 7 or Windows Server 2008 R2 domain join displays error "Changing the Primary Domain DNS name of this computer to "" failed...."

  Hi,
  Windows 7 or Windows Server 2008 R2 domain join displays error "Changing the Primary Domain DNS name of this computer to "" failed...."
  DC:windows Server 2008 R2
  Domain functional level:Windows Server 2003
  When Winxp join domain, have no this error message.
  I checked http://support.microsoft.com/kb/2018583?wa=wsignin1.0 does't work.
  There have 3 suggestion in this article:
  1.The "Disable NetBIOS over TCP/IP" checkbox has been disabled in the IPv4 properties of the computer being joined.
  Doesnt's work.
  2.Connectivity over UDP port 137 is blocked between client and the helper DC servicing the join operation in the target domain.
  On my DC, I run netstat -an, reslut as below:
   UDP    192.168.20.3:137       *:*
  3.The TCP/IPv4 protocol has been disabled so that the client being joined or the DC in the destination domain targeted by the LDAP BIND is running TCP/IPv6 only.
  We are not using IPV6.
  This server recently updated from Windows Server 2003 to Windows Server 2008 R2. Before upgrade, when Win7 and Win2008 join this domain, also have the same error message.
  Please help to check this issue.
  Thank you very much.
  BR
  Guo YingHui 

  Hi Guo Ying,
  I have faced this critical error which makes over-writes the host names in the domain when you join.
  For example: Already you had a host name called as PC.domain.com in the domain.com Domain.
  When you try to add the another host name called as PC in the domain.com Domain, it doesn't give you the duplicate name error on the network it does over-write the existing host name called as PC.domain.com & it will add the new host name into the domain.
  Host name which got over-written will get removed from the domain. I faced this issue in my project. My DPM host name got removed from the Domain & new host name got joined into the domain which halted my backups for one day.
  Final Resolution is as follows:
  You need to start the dns console on the DC & drop down the domain name.
  Select the _msdcs when you click on _msdcs it will show the Name Server's list on the right hand side.
  You need to add the Domain Naming Master under the _msdcs or add all the domain controllers which you had.
  After you add the Name server's try joining the PC OR Laptop to the domain which is successfully joins it.
  Regards
  Anand S
  Thanks & Regards Anand Sunka MCSA+CCNA+MCTS

• Configuring group policy for user profiles in Windows Server 2012 R2 Domain

  Requesting some experts advise on configuring group policy for user profiles.
  We will be building new Windows Server 2012 R2 Domain Controllers (Domain of 400 users).
  The settings which I am concerned:
  1. Folder Redirection: Desktop, Documents, Favorites.
  2. Quota for Folder Redirection - 1 GB per user.
  3. Map a networked drive - 1 GB per user.
  4. Roaming profile - (Will ignore if it does not suit our requirement). 
  The question is how outlook profile will be retained / automatically moved if the users move from once computer to other?
  FYI, E-mails hosted on MS Office365 and OST file size of few users more than 25GB. So, in case the user moves from one computer to other, the entire mailbox will be downloaded via internet. This consumes high bandwidth if more than 3-4 users shift per day.
  Thanks a lot for your valuable time and efforts.

  Hi,
  >>The question is how outlook profile will be retained / automatically moved if the users move from once computer to other?
  This depends on where our outlook data files are stored. If these data files are stored under
  drive:\Users\<username>\AppData\Local, then these files can’t be redirected, for folder redirection can’t redirect appdata local or locallow.
  However, regarding your question, we can refer to the following thread to find the solution.
  Roam outlook profiles without roaming profiles
  http://social.technet.microsoft.com/Forums/office/en-US/3908b8e0-8f44-4a34-8eb5-5a024df3463e/roam-outlook-profiles-without-roaming-profiles
  In addition, regarding how to configure folder redirection, the following article can be referred to for more information.
  Configuring Folder Redirection
  http://technet.microsoft.com/library/cc786749.aspx
  Hope it helps.
  Best regards,
  Frank Shen

• Group Chat feature in Office Communications Server 2007 R2 does not work in Windows Server 2008 R2 domains

     Hello to all, there are two confliting articles about this topic:
     1-
  http://technet.microsoft.com/en-us/library/upgrade-domain-controllers-to-windows-server-2008-r2(v=ws.10).aspx#BKMK_Whatsnew : this one says that it does not work "The Group Chat feature in Office Communications Server 2007 R2 does not work in Windows
  Server 2008 R2 domains". This article was updated in 2013.
     2-
  http://technet.microsoft.com/en-us/library/ee692314(office.13).aspx: this other article says that it will function "Office Communications Server 2007 R2 Group Chat will function in a Windows Server 2008 R2 forest". This article was updated in
  2010 and was refered by the first one.
     What is the correct support position for Group Chat feature in Office Communications Server 2007 R2 and Windows Server 2008 R2 domains?
     Regards, EEOC.

  Hi,
  I notice the following sentence in the link below “Office Communications Server 2007 R2, Group Chat will not function in a Windows Server 2008 R2 forest or when Group Chat member servers are joined to a Windows Server 2008 R2 domain.
  We know of an issue with changes in Windows 2008 R2 that requires a Group Chat Client and Group Chat Admin Tools hotfix. The Group Chat Client and Group Chat Admin Tools hotfixes are currently scheduled for mid-April 2010.”
  http://blogs.technet.com/b/nexthop/archive/2010/11/06/supportability-for-office-communications-server-2007-r2-and-windows-server-2008-r2.aspx
  So in my opinion, if you update to the latest version of Windows Server 2008 R2, OCS Server 2007 R2 and Group Chat Client, Group Chat Admin Tools to the latest version, it should work.
  However, the best method for you is make a lab to test the problem firstly.
  Best Regards,
  Eason Huang
  Eason Huang
  TechNet Community Support

• Biztalk 2013 R2 with Windows Server 2003 R2 Domain Controller

  Hello, I have a client right who has a Windows Server 2003 R2 domain controller with active directory installed. Is there any reason why I can't install Biztalk 2013 on a Windows Server 2012 R2 box and add it to that farm to use active directory?
  Thanks in advance,
  -Adam

  BizTalk Server is only going to use the User Groups created in Domain Controller so ideally i don't think there will be any compatibility issue. Also there isn't any microsoft article which talks about BizTalk compatibility with respect to domain controller.
  You will have to create all the Windows Groups and User Accounts in AD, before BizTalk Server configuration.
  Windows Groups and User Accounts in BizTalk Server
  Thanks,
  Prashant
  Please mark this post accordingly if it answers your query or is helpful.

• Windows Server 2008 R2 Domain Controller NOT logging EventID 4740

  EventID 4740 (account lockout) is not being logged to the event viewer. When searching through the security log there are none to be found. Having accounts locked out and no logging is driving me nuts. Hope someone has run into this before. This is what
  i have checked thus far.
  >Windows Server 2008 R2 Domain Controller
  >Verified the following GPO settings are set and correct:
  >Computer Configuration\Windows Settings\Security Settings\Local Policies\Audit Policy\ all are set for Success & Failure
  >Computer Configuration\Windows Settings\Security Settings\Advanced Audit Configuration\Logon/Logoff) is set for Success and Failure
  >Powershell command Get-Eventlog -log Security -InstanceId 4740 returns no results which makes sense since there are no entries in the security log file.
  >No 4740 entries in the netlogon.log debug file
  AD and the LockoutStatus tool show the account is locked out but i still have nothing in the logs.
  Anyone have any ideas? From everything i can find online , it appears i have everything set properly.
  Thanks, Chico

  Hi Chico,
  I suggest you try to enable this group policy below:
  Computer Configuration\Windows Settings\Security Settings\Local Policies\Audit Policy\Audit account management
  More information for you:
  Missing 4740 EventID's
  http://social.technet.microsoft.com/Forums/windowsserver/en-US/c9871d72-7439-46b5-98e6-a7fadfa6ff28/missing-4740-eventids?forum=winserversecurity
  If you have multiple Domain Controllers, check this event on other DCs, too.
  Please feel free to let us know if there are any further requirements.
  Best Regards,
  Amy Wang

• Exchange 2007 RTM support with Windows Server 2012 R2 Domain Controller

  Hi All,
  I have not found any TechNet Article which states about the Windows Server 2012 R2 Active Directory domain controller operating system support with Exchange 2007 RTM, can some one please let me know that does Exchange 2007 RTM supports Windows Server 2012
  R2 domain controller operating system, we are in the process of upgrading the domain controllers to 2012 R2 but not the forest and domain functional level to 2012 R2.
  thanks
  If answer is helpful, please hit the green arrow on the left, or mark as answer. Salahuddin | Blogs:http://salahuddinkhatri.wordpress.com | MCITP Microsoft Lync

  There are several likely reasons for this.  The most significant is that Exchange 2007 RTM is no longer supported (outside ot extended support, which is not going to include adding support for new operating systems): 
  http://support2.microsoft.com/lifecycle/default.aspx?LN=en-us&p1=10926
  You'll note from the following -
  http://technet.microsoft.com/library/ff728623(v=exchg.150).aspx - that only Exchange 2007 SP3 is currently supported in any environment.
  HTH ...

• Fetch websites hosted on Remote IIS server using C#

  Hi,
  I want to get all the websites that are hosted on a remote server. I have the Server IP, username and password of the remote server and I need to retrieve all the sites that are hosted on the server. How can I achieve this in C# ?
  Regards,
  Pradeep R

  The easy way is to use WMI to talk with IIS.  Alternatively you can use the IIS API but WMI is easier.  Refer to MSDN for documentation on the IIS WMI Provider.
  Here's some starter
  code in VBScript.  Here's the equivalent via WMI Code Creator.
  using System;
  using System.Management;
  using System.Windows.Forms;
  namespace WMISample
  public class MyWMIQuery
  public static void Main()
  try
  ManagementObjectSearcher searcher =
  new ManagementObjectSearcher("root\\WebAdministration",
  "SELECT * FROM Site");
  foreach (ManagementObject queryObj in searcher.Get())
  Console.WriteLine("-----------------------------------");
  Console.WriteLine("Site instance");
  Console.WriteLine("-----------------------------------");
  Console.WriteLine("Name: {0}", queryObj["Name"]);
  catch (ManagementException e)
  MessageBox.Show("An error occurred while querying for WMI data: " + e.Message);
  Note that WMI must be turned on for the IIS server and the user needs appropriate rights.
  Michael Taylor
  http://blogs.msmvps.com/p3net

• Bind Mavericks to Windows Server 2012 R2 domain

  I have a Windows 2012 R2 domain controller (only one in the domain) with the forest and domain in native (not mixed) mode.
  I am trying to bind a Mavericks Macbook Pro to the domain.
  I have checked that I can ping the domain and domain controller by name and IP address.
  I have set the NTP on the Macbook to use the domain controller as the time source.
  I even set the "Prefer this domain server" to the domain controller.
  When I attempt bind the Macbook, the time tested message of "Authentication server could not be contacted."
  Any suggestions?  Something about Windows Server 2012 R2 that I am missing?  I admit that I am just learning Windows
  Server 2012 R2, so it is possible my lack of knowledge of it is the adding to the problem.
  Thank you in advance!

  I have 3 Server 2012 DC's here on my network.  No issues binding Macs to the DC.  I haven't had the time to roll out R2 DCs yet, but will be doing so shortly as I am now done with some other upgrades.  I would roll out one right now so I can test this for you, but don't have the time...sorry man.
  One of the most important thing with AD is DNS.  1 of my 3 AD's is my DNS and DHCP server.  I have not had to mess with any special settings, just let my Mac get it's IP from the DC and then bind away.  Are your windows machines (if you have any) on the same LAN able to bind?  Also make sure the account you are logged into the mac with is an Admin on the local mac. 
  Remove all the custom info you put in, keep it simple, I have never had to fill in any of those details, and make sure you use the FQDN of your DC (host.domain.com).  Once you put in the FQDN, does the utility recognize the Domain and then ask for the AD admin credentials?  If yes, then thats a good sign. 
  Let me know if it's still not working.  Also make sure you are using the correct login and password, the admin of your DC. 
  Is your DC virtual or Physical?  Do you have the firewall enabled on your DC?  Are you using wireless or wired? 
  I'm sure you will get this... S12R2 is really sweet, all my Hyper-V hosts are S12R2. 

• Deploy Windows Server 2012 R2 domain controller in 2008 domain

  Hi,
  We have three physical windows 2008 enterprise with SP1 32 bit domain controllers, we need to deploy two additional windows 2012 R2 standard as virtual machines on this domain. Do we need to install SP2 on the existing Windows 2008 sp1 DCs or we are fine?
  What are other requirements?  

  It is not required.
  Just your Forest/Domain Functional level should be Windows Server 2003 or higher to be able to add Windows Server 2012 R2 DCs.
  Please note that it is always recommended to have your Windows Operating Systems up-to-date to avoid known security attacks and known bugs.
  This posting is provided AS IS with no warranties or guarantees , and confers no rights.
  Ahmed MALEK
  My Website Link
  My Linkedin Profile
  My MVP Profile

• Windows Server - Run multiple domains under different accounts

  Hi,
  I have multiple domains on a Windows Server. I'd like to run these under separate accounts for security reasons.
  My options I have so far:
  1) Install all Admin servers and managed servers as windows services and set logon appropriately
  2) If possible, use multiple node manager instances, one for each domain and set the log on for each node manager windows service
  I like the idea of multiple node managers but I can't find any reference in the documentation about this. I'd rather not use option 1 as I won't be able to restart servers from the WebLogic Console
  Has anyone had to do this before?

  First option might be the cleanest .
  For second option make sure that there are separate Node_Manager home directory for different node manager instances.
  Edited by: atheek1 on Jun 19, 2010 4:55 AM

• Windows server 2008 R2 x64 Authentication failure while try to access Windows server 2003 R2

  Hello,
  I try to access Windows Server 2003 R2 Standard from Windows Server 2008 R2 x64 standard using integrated windows authentication . And because my application tries to read SQL server i'm getting and error that user is not trusted. Then I tried to open a
  simple shared folder on  2003 and none of the users is able to do it. Both servers are part of common workgroup in the same IP range. Using domain is not an option. Migrating 2003 to 2008 is not an option either. The specific DB provider I have to use
  supports only windows authentication, so creating user into SQL server is not an option too. I have tested many applications and cases which requires/uses windows authentication and non of the manage to connect.
  Any help is very welcome because things are urgent!
  Authentication failure

  That method in workgroup mode may be a problem.
  Authentication in SQL Server
  Might ask them over here.
  SQL Server forums on
  MSDN
  Regards, Dave Patrick ....
  Microsoft Certified Professional
  Microsoft MVP [Windows]
  Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.

• Windows Server Primary & Secondary Domain Controller Question

  lulzchicken wrote:
  Right now the DHCP is assigning 192.168.200.1 (DNS server) and 8.8.8.8 (Google's DNS) as DNS servers for each client. I don't necessarilly want to change these assignment settings,Yes, you do. This is absolutely the worst thing you can ever do with DNS. More details why here -> Ramblings of a Sysadmin: How to do DNS correctly
  Primary and secondary DNS should ALWAYS be internal.
  Your DNS Servers should use FORWARDERS go go out to google. That's the only place that should see google DNS servers in your environment.

  Hi everyone, thank you for taking the time to listen.
  I have successfully implemented an Active Directory setup using a Primary DC and a Secondary DC with Windows Server 2012 R2.
  EL1 is my PDC and EL2 is my BDC.
  Active Directory is in sync among the two Domain Controllers. Here is my question:
  If I were to have a policy (Group Policy) that sets the wallpaper of each client machine to whatever is in the "\\EL1\Wallpaper\wp.jpg" - what would happen if I were to have that Domain Controller fail? That directory is no longer available due to the outage - even though the Backup Domain Controller will still be pushing out the policy (pointing to the down server).
  My idea was to have that directory replicated on the Backup Domain Controller, "\\EL2\Wallpaper\wp.jpg" however - the policy will still be looking for the file in the Primary Domain...
  This topic first appeared in the Spiceworks Community

• Can't connect windows server 2003 with domain account

  I have installed an agent on windows 2003 server successfully but I cannot add domain account as a preferred credential to connect to windows. My OMS is 11g running on RHEL 5 and I am trying to deploy sql server plugin to windows 2003 server. I could deploy the plugin with the same domain account to windows 2008 without any error but for some reason, but I cannot use the same domain account on windows 2003. This domain account is part of administrator group on both 2003 & 2008 servers so I don't know what I need to do different for 2003. Please help me. Thank you.

  Can you provide some more details and/or screenshots?
  I'm not sure exactly what you mean here: "I cannot add domain account as a preferred credential to connect to windows"
  Are you in the Agent preferred credentials page? What is the error?