Windows Server 2008 - How to remotely manage account passwords?

Similar Messages

• Enabling Windows Server 2008 R2 Built-In Administrator Account

  The properties box for my Windows Server 2008 R2 built-in administrator program says the account is disabled.  Even the primary user account has virtually no priveliges.  How can I, with a mere primary user account available at logon, enable
  the built-in administrator account, or otherwise grant my primary user account administrator priveliges?  Windows Server 2008 R2 denies my primary user account access/permission for nearly all changes to accounts, programs and OS features. 
  Stephen W Plunkett

  The properties box for my Windows Server 2008 R2 built-in administrator program says the account is disabled.  Even the primary user account has virtually no priveliges.  How can I, with a mere primary user account available at logon,
  enable the built-in administrator account, or otherwise grant my primary user account administrator priveliges?  Windows Server 2008 R2 denies my primary user account access/permission for nearly all changes to accounts, programs and OS features. 
  Stephen W Plunkett
  In some of the organisations, default admin accounts on member servers are purposefully locked/disabled through group policy for security reasons.
  If you know the password for locked out/disabled admin account then there is a possibility of unlocking/re-enabling the account without using any third party tools.
  To do that,
  Restart the server
  Press F8 and select Safe Mode Without
  Networking
  Log on to the server with locked out/disabled admin account with its password.
  If you could successfully log on to the server then you will have option to unlock and enable the built-in admin account !
  Most of the downtime's are caused because of SysAdmin's curiosity ! - Santosh

• HP OfficeJet 6700 throught Remote Desktop in Windows Server 2008

  i access a windows server 2008 machine via remote desktop i want to print to my local hp officejet 6700 printer i have my printer resources shared i have downloaded the OJ6700_Basicx64_1315.exe which says its for win server 2008 yet when trying to install it says my OS is not supported. is there any other driver i can use? any way to use a generic driver?

  Yes, you can try to download the 990c driver and it should work. (Shane_R) has a post that gives you directions on how to download the alternate drivers. Here is a link that may assist you. 
  http://h30434.www3.hp.com/t5/Printer-All-in-One-Software-Drivers-e-g-Windows-8/How-to-Assign-Alterna...
  Let me know if this helps, thanks.
  **Click the KUDOS star on the left to say 'Thanks'**
  Please mark a reply "ACCEPTED AS SOLUTION" if it solved your problem, so others can find it.

• What is the easiest way to replicate(backup) a VM whose host is Windows Server 2008 R2?

  I have a Windows Server 2008 R2 Hyper-V Manager and I have a Domain Controller as VM (which is running Server 2012 R2) and I would like to enable replicationfor this VM(I want to back up the Domain Controlloer).
  Could you please tell me the easiest way of doing this?
  Thanks,
  Radu

  Hi, Radu,
  From my perspective, in this case the backup/replication solution should:
  Perform image-level backup, as it’s always preferable to use such method for backing up/replicating virtual machines.
  Guarantee application consistency. That’s being said, not only should it backup VMs running special application in consistent (VSS-aware) mode, but also it should apply
  application-specific settings to prepare each application to perform
  VSS-aware restore on the next VM startup.
  Support 2012 R2 platform.
  We’re using Veeam for the same purposes, as it does have abovementioned functionality. Though, you can stick to whatever solution that can boast with the listed options.
  Kind regards, Leonardo.

• Programmatic webdav/unc access requires user logon to windows server 2008 R2

  I have an automated process (a .net windows service) that connects to sharepoint document library via a UNC (\\mysharepointsite\doclib).  When the machine is rebooted,
  accessing this folder results in a  System.IO.IOException: The network name cannot be found exception.
  However, if we log into the windows server 2008 r2 machine under the account that the service is running on, it starts working, and continues to work even when we log out.  It continues to work until we reboot the computer.
  I've already run into and solved other user-centric fixes for 2008.  For example, the "Desktop Experience" feature is required to browse the path and all, and unchecking "automatically detect settings" significantly speeds up browsing of these paths. 
  However, I'm not sure what user logon initializes that would be fixing this problem.

  I can further simplify this.  The following command will fail initially:
  dir \\myspserver\mypath
  However, running the same command after browsing to the same path in windows explorer succeeds.  At this point I've eliminated the programming as an issue so i will try to post a similar question on technet.  However, please let me know if anybody
  has any further info.

• Setup 2-Node RAC 11.2.0.1.0 on Windows Server 2008

  I have been setting up RAC environments in VirtualBox and VMWare in my local machine and in our test server. I have done the following setup:
  1. RAC 10g on RHEL 5.4 (VMWare / VBox)
  2. RAC 11g on RHEL 5.4 (VBox)
  3. RAC 11g on Windows Server 2008 (VBox)
  Now, our management wants me to setup a 2-node RAC in real world. Cost is not an issue here as this will be financed by a big private group.
  I am excited to do the project as I am really enthusiastic in database clustering. Of course, there is a little nervous feeling since this is
  my first time doing it in real world (as the best RAC expert started from his first deployment :) ).
  I am going to build RAC 11.2.0.1.0 in Windows Server 2008
  I would like to seek advise on:
  - the best practices, what are the things that I have to consider?
  - any straight forward real world deployment guide or technical papers that can serve as my reference
  - any issues that I might encounter
  - any help and feedback
  I know I can be successful in this first time project if ill seek advise to the experts.
  I hope you can help me and I will be glad to read and review your contributions.
  Thanks a lot.....

  Hi,
  Few months ago I had a project to setup RAC on Windows 2008 R2. For six months now there are no problems and it's working fine, but I have to say that installation wasn't easy and took me a lot of time. Another thing is the troubleshooting, I feel completely helpless when (if) something screws up. It takes between 10 to 15 mins to have database running in case of reboot of the servers.
  So here are few things to consider:
  - Disable write cache on shared disks.
  - Disable User Access Control!
  - Disable firewall (really important)!
  - Use diskpart command to create extended and logical partition on all disks.
  - There is also nasty bug we hit, I've blogged about it:
  http://sve.to/2011/09/29/exhaust-of-windows-2008-heap-memory-with-oracle-database-11-2-0-2/
  - I had a terrible problems with user equivalence. Verify Privileges for copying files in the cluster:
  net use \\nodeX\c$
  - Once installation is completed apply latest Bundle Patch - currently this is BP6 (Patch 13965211):
  DB 11.2.0.3 Patch 6 includes all bugs fixed in 11.2.0.3 Patch 1 to Patch 5 and also includes CPU2012. It must be applied on top of the 11.2.0.3.
  Useful MOS notes:
  RAC and Oracle Clusterware Best Practices and Starter Kit (Windows) [ID 811271.1]
  Windows: CLUVFY Fails with TCP Check PRVF-7617 Due to Case of Node Names [ID 1286394.1]
  Finally if you have a choice then go with Linux, it's robust, easy to install and maintain. You have better control on the system and user processes, it's more flexible and easy to troubleshoot.
  Regards,
  Sve

• Window server 2008 r2 error show "stop :- c00002e3 security account manager initialization failed because of the for A DIVICE ATTACHED to the system is not funcation"

  Hi All
  Please help
  my server not working showing display error window server 2008 r2  error show "stop :- c00002e3 security account manager initialization failed because of the for A DIVICE ATTACHED to the system is not funcation"
  Please help me how to resolve this issue ???
  thnaks !!!

  Hi,
  If there is any external device plug into your computer, please unplug it and restart the Server.
  You can also test the issue in Safe mode.
  If it can boot into Safe mode, please update any driver has yellow warning on it, also check if the dump file is existing under %SystemRoot%\, if so, please help to post back for our research.
  Kate Li
  TechNet Community Support

• How uninstall WSUS server role from Windows Server 2008 R2 with database hosted on remote SQL server?

  Hello, 
  I'm looking to uninstall the WSUS server role 3.0 from Windows Server 2008 R2 SP1. The thing is the database is hosted on a remote MS SQL server. I want to remove the database as well. I would like help for figuring out what I need to do to completely remove
  WSUS and its database.
  Any kind of help is appreciated! Thanks  

  Hi,
  WSUS offers limited support for running database software on a computer that is separate from the computer where the rest of WSUS is installed. This section offers step-by-step
  instructions for how to install WSUS in this configuration.
  If you meet the uninstall issue with the normal uninstall, please post the detail information for us but if you just want to manage the WSUS related SQL data, you can refer
  the following KB then delete corresponding database.
  In the general procedure, you will create the related WSUS database as below::
  Run WSUS Setup from the command line, using the SQLINSTANCE_NAME=servername\instancename command-line option, where servername is the name of the remote computer, and instancename
  is the name of the SQL Server instance that you will use for WSUS.
  More information:
  Choose the Database Used for WSUS 3.0
  http://technet.microsoft.com/en-us/library/cc708452(v=ws.10).aspx
  Appendix B: Configure Remote SQL
  http://technet.microsoft.com/en-us/library/cc708595(v=ws.10).aspx
  Hope this helps.
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• How to up Windows Server 2008 R2 SP1 created VM with Windows 8.1 hyper-v manager

  Hi
  I have VM that created with Windows Server
  2008 R2 SP1. This was up without a problem with the windows 8 hyper-v manager. I have recently upgraded my OS with 8.1. Now I have tried to import this VM but it
  throwme following message.
  This is a real pain when there is no way of doing this. Any help greatly appreciated.
  Regards
  Radika

  Hi,
  Brian is right, for mange the Server 2008r2 sp1 we recommend use the Windows 7 or 7.1 platform.
  More information:
  Remote Server Administration Tools for Windows 7 with Service Pack 1 (SP1)
  http://www.microsoft.com/en-us/download/details.aspx?id=7887
  Hope this helps.
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• How to recognize if application is installed using "Install Application on Remote Desktop" option on Windows Server 2008 R2

  How to recognize if application is installed using "Install application on remote desktop..." option in Control Panel in Windows Server 2008 R2?
  Basically, as administrator, I can't say if the user installed application using "Install application on remote desktop..." in Control Panel or he just installed it by clicking the .msi executable. I can't find anything that makes any difference.
  I could not find anything in the registry. I am quite confused.
  Thanks,
  Aleksandar9

  Hi,
  Thank you for your posting in Windows Server Forum.
  Please make sure that you are using category view of control panel-programs to check the application. And in addition to “install application on Remote Desktop server” user can also use command line also.
  change user /install
  change user /execute
  change user /query
  “The first time you run the application, it searches the home directory for its .ini files. If the .ini files are not found in the home directory, but are found in the system directory, Terminal Services copies the .ini files to the home directory, ensuring
  that each user has a unique copy of the application .ini files. Each user should have a unique copy of the .ini files for an application. This prevents instances where different users might have incompatible application configurations.” (Quoted formthis
  article).
  Hope it helps!
  Thanks,
  Dharmesh

• To install Remote Desktop Services User CAL on Windows Server 2008 R2 Enterprise Edition with SP1

  Dear Sir,
  Presently we have installed Windows Server 2008 R2 Enterprise Edition with SP 1. And now i would like to install Remote Desktop Services User CAL on this server. I have 25 digit product key of Windows Server
  2008 R2 Remote Desktop Services User CAL (20). Downloaded this product key from our MSDN Subscriptions.
  Kindly suggest me how to install (CAL server with product key that i have) and configure remote desktop services on my above existing server also how to point other server with my CAL server.
  Thanks

  Hi,
  1. Install Remote Desktop Session Host and Remote Desktop Licensing Role Services using Server Manager.
  2. Open RD Licensing Manager (licmgr.exe), Activate your server, then install your license
  3. In RD Session Host Configuration (tsconfig.msc), set the Licensing mode to Per User and Specify your RD Licensing server name (itself).  If you want you may configure these two settings via group policy setting instead.  The path of the
  group policy settings is Computer Configuration\ Administrative Templates\ Windows Components\ Remote Desktop Services\ Remote Desktop Session Host\ Licensing
  4. You may point other RDSH servers to your RD Licensing server using RD Session Host Configuration or via group policy as mentioned above.
  5. Optionally you may consider installing other Remote Desktop Role Services such as RD Gateway, RD Web Access, RD Connection Broker, etc.
  -TP

• How to restrict users working on Windows 7 clients from accessing Windows Explorer and other systems in the network through Group Policy with a domain controller running on Windows Server 2008 r2

  Dear All,
  We are having an infrastructure setup of around 500 client computers managed through group policy.
  Recently the domain controllers have been migrated from Windows Server 2003 to Server 2008 R2.
  Since this account requires extremely strict environment, we need to figure the solution for restricting the users from access anything locally.
  It would be great if you can assist me with the following query.
  How to restrict users logged on Windows 7 clients from accessing Windows Explorer and browsing other systems in the network through Group Policy with a domain controller running on Windows Server 2008 r2 ?
  Can we disable Network Tab on the left hand pane ?
  explorer.exe is blocked already, but users are able to enter the Windows Explorer by clicking on the name which is visible on the Start Menu.

  >   * explorer.exe is blocked already, but users are able to enter the
  >     Windows Explorer by clicking on the name which is visible on the
  >     Start Menu.
  You cannot block explorer.exe when you do not replace the shell - the
  desktop you see effectively IS explorer.exe...
  Your requirement sounds like you need a custom shell:
  http://gpsearch.azurewebsites.net/#2812
  Martin
  Mal ein
  GUTES Buch über GPOs lesen?
  NO THEY ARE NOT EVIL, if you know what you are doing:
  Good or bad GPOs?
  And if IT bothers me - coke bottle design refreshment :))

• Windows Server 2008 R2 Remote Desktop - The requested session access is denied

  Hi, I have been using Windows Server 2008 R2 since it was released, and have 100 servers up and running. I configured Allow Remote Desktop on all of them and have been able to connect to them and manage them via RDP since then. I also have two servers configured as Remote Desktop Services.
  That was up until yesterday. Yesterday afternoon I started getting the The requested session access is denied. I managed all Terminal services via Group Policy and have three users entered.
  I am connecting to the servers via Windows XP SP3 and Windows 7. Both clients have been updated to the latest Remote Desktop Services client.
  I have been searching for the answer, and I am not finding it.
  I have also tried KB954369 without any success. 
  Thanks,
  Brian

  Ok, from my trials and tribulations and discussions with Microsoft I have identified the following;
  Assumptions;
  A. My terminal server is in domain widget
  B. All the users are in domain contoso
  1. I had the Terminal Server configurured with a specific Login, which would launch a specific application only and not give them any desktop functions. Wiht this configured this way, I get the error I wrote about.
  2. If I turn the specific login off, then I can login normally and perform the functions as Administrator that I need/want to do.
  3. Microsoft said to configure the Terminal Server with Single Sign-on. I did as instructed and went thru all the steps, however because my terminal server is in domain widget, the users get prompted twice each time for login. Once on the website, and then again as the application launches. Microsoft said that the users needed to Remote Desktop Client 7.x or the self-signed certificate that I have has to be included in the domain contoso certificate authority so that they will not be prompted for the second sign-on.
  4. Conclusions - I need to have a chat with our enterprise security team about including the self-signed certificate in the contoso certificate authority. I need to also work on my RDWeb website so that it meets our company standard look.
  Here are the links that Microsoft provided;
  http://technet.microsoft.com/en-us/library/cc772108(WS.10).aspx
  Enable RDC Client Single Sign-On for Remote Desktop Services
  http://technet.microsoft.com/en-us/library/cc742808.aspx
  Blogs -
  http://blogs.msdn.com/rds/archive/2007/04/19/how-to-enable-single-sign-on-for-my-terminal-server-connections.aspx
  http://blogs.msdn.com/rds/archive/2009/08/11/introducing-web-single-sign-on-for-remoteapp-and-desktop-connections.aspx
  http://blogs.msdn.com/rds/archive/2009/06/05/publishing-in-windows-server-2008-r2.aspx
  http://blogs.technet.com/pfe-ireland/archive/2008/09/05/windows-server-2008-terminal-services-presentation-virtualisation-and-windows-xp-clients.aspx
  I hope this help you in your troubleshooting.
  Brian

• Some Hostname is not seen in DNS Manager ( Windows Server 2008 )

  Hi All,
  DC Server OS - Windows Server 2008 R2 ( Active Directory Integrated DNS Zone ) Client OS - Windows 7
  I am unable to understand, why some hostname are not dynamically registered in DNS Manager. For example -My windows7 which is added to corp.abc.com domain. Don't show in DNS manager.
  I don't want to create this hostname statically on DNS manager.
  I have tried couple of resolution i.e ipconfig /registerdns, restarted DNS Client / DHCP Client server, restarted computer still unable to see hostname name entry in DNS manager. 2 days has passed, still it has not come-up in DNS manager. I have also check
  Advanced TCP/IP settings. Please see print-screen of nslookup & Advanced TCP/IP Settings.
  Kindly suggest, what should i do, to resolve this problem.
  Thanks & Regards,
  Param
  Thanks & Regards,
  Param
  www.paramgupta.blogspot.com

  I would first recommend checking that Dynamic DNS updates are configured (I would recommend having it set to Secure only).
  I started yesterday a Wiki article describing that: http://social.technet.microsoft.com/wiki/contents/articles/21984.how-to-secure-dns-updates-on-microsoft-dns-servers.aspx
  Please also check that your primary DNS suffix using ipconfig /all. It should be matching the computer domain name. If anything is wrong, you can change it by using the following: http://social.technet.microsoft.com/Forums/windowsserver/en-US/3720415a-6a9a-4bca-aa2a-6df58a1a47d7/change-primary-dns-suffix?forum=winservercore
  If this do not help, you can try to temporary disable your security software installed on your computer, check the network filtering and use Wireshark to see what happens when you run
  ipconfig /registerdns.
  This posting is provided "AS IS" with no warranties or guarantees , and confers no rights.
  Get Active Directory User Last Logon
  Create an Active Directory test domain similar to the production one
  Management of test accounts in an Active Directory production domain - Part I
  Management of test accounts in an Active Directory production domain - Part II
  Management of test accounts in an Active Directory production domain - Part III
  Reset Active Directory user password

• Windows Server 2008 Server Manager - The WinRM Client Cannot Process the Request.

  Hello,
  I have recently purchased a Dedicated Server, and I have installed Windows Server 2008 R2. I want to use Server Manager because I don't really have that much experience with command line commands, so I wanted to use server manager, I can remotely connect
  to my server but when I use Server Manager I get the error "The WinRM Client Cannot Process the Request, if the authentication scheme is different from Kerberos..." I haven't set up a domain between my PC and the Dedi, as I do not know how/or know
  if this is applicable in this situation.
  Thanks for your time!
  Bill Gates Mate

  Hi,
  If you are using the non-domain management method, please refer the following article to add the trust host.
  The related article:
  Remoting Week: Non-Domain Remoting
  http://blogs.technet.com/b/heyscriptingguy/archive/2013/11/29/remoting-week-non-domain-remoting.aspx
  More third party article:
  The WinRM client cannot process the request. If the authentication scheme is different
  http://technico.qnownow.com/the-winrm-client-cannot-process-the-request-if-the-authentication-scheme-is-different/
  I’m glad to be of help to you!
  *** This response contains a reference to a third party World Wide Web site. Microsoft is providing this information as a convenience to you. Microsoft does not control these sites and has not tested any software or information found on these sites;
  therefore, Microsoft cannot make any representations regarding the quality, safety, or suitability of any software or information found there. There are inherent dangers in the use of any software found on the Internet, and Microsoft cautions you to make sure
  that you completely understand the risk before retrieving any software from the Internet. ***
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.