Windows Server 2012 R2 non-default domain admin limitations

Similar Messages

• Windows server 2012 RDP Session - Default Start Menu Layout Downloaded Apps Not Displayed

  Hi,
  Hopefully someone can help me to resolve a problem that's holding me back a little regarding the start menu for all users that connect to remote desktop sessions on Windows Server 2012.
  I would like all users to have the same default application set upon login. Using a temporary user called 'Start Menu' I created the exact layout that I require all users to have. I installed the tile apps from the store with the 'Start Menu' user.
  I then used the PowerShell command:
  PS C:\> Export-StartLayout -Path "C:\Layouts\Marketing.xml"-As XML
  This then gave me the following XML file:
  <launcher version="2"><view name="Start"><group><tile AppID="AccuWeather.AccuWeatherforWindows8_8zz2pj9h1h1d8!App" size="wide310x150" FencePost="0"/><tile AppID="Microsoft.BingNews_8wekyb3d8bbwe!AppexNews"
  size="wide310x150" FencePost="0"/><tile AppID="Microsoft.Windows.Desktop" size="wide310x150" FencePost="0"/><tile AppID="{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\logoff.exe" size="square150x150"
  FencePost="0"/></group><group name="Office Apps &amp; Storage"><tile AppID="{6D809377-6AF0-444B-8957-A3773F02200E}\Microsoft Office\Office15\WINWORD.EXE" size="square150x150" FencePost="0"/><tile
  AppID="Microsoft.SkyDrive.Desktop" size="square150x150" FencePost="0"/><tile AppID="{6D809377-6AF0-444B-8957-A3773F02200E}\Microsoft Office\Office15\EXCEL.EXE" size="square150x150" FencePost="0"/><tile
  AppID="C27EB4BA.Dropbox_xbfy0k16fey96!App" size="square150x150" FencePost="0"/><tile AppID="{6D809377-6AF0-444B-8957-A3773F02200E}\Microsoft Office\Office15\POWERPNT.EXE" size="square150x150" FencePost="0"/><tile
  AppID="F:\" size="square150x150" FencePost="0"/><tile AppID="{6D809377-6AF0-444B-8957-A3773F02200E}\Microsoft Office\Office15\MSPUB.EXE" size="square150x150" FencePost="0"/><tile AppID="{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\calc.exe"
  size="square70x70" FencePost="1"/><tile AppID="{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}\notepad.exe" size="square70x70" FencePost="0"/></group><group name="Mail &amp; Calendar"><tile
  AppID="microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Mail" size="square150x150" FencePost="0"/><tile AppID="microsoft.windowscommunicationsapps_8wekyb3d8bbwe!Microsoft.WindowsLive.Calendar"
  size="square150x150" FencePost="0"/><tile AppID="10631PaolosAdventures.559711D6C5976_ntpp077zx3tm0!App" size="square150x150" FencePost="0"/><tile AppID="BRICKMAKERS.gmailcalendar_wps5hyj3streg!App"
  size="square150x150" FencePost="0"/></group><group name="Internet &amp; Social Media"><tile AppID="Facebook.Facebook_8xx8rvfyw5nnt!App" size="square70x70" FencePost="1"/><tile
  AppID="9E2F88E3.Twitter_wgeqdkkx372wm!App" size="square70x70" FencePost="0"/><tile AppID="Microsoft.SkypeApp_kzf8qxf38zg5c!App" size="square70x70" FencePost="0"/><tile AppID="1168WindowsDexter.LinkedInHD_b3sam9s7hsbar!App"
  size="square70x70" FencePost="0"/><tile AppID="19120CensoredUser.HyperforYouTube_c0tqyanwsgfn6!App" size="square150x150" FencePost="0"/><tile AppID="Microsoft.InternetExplorer.Default"
  size="square150x150" FencePost="0"/><tile AppID="eBayInc.eBay_1618n3s9xq8tw!App" size="square150x150" FencePost="0"/></group></view></launcher>
  Using GPO I then applied this layout to all users. However when I login as any other users I only actually get the OneDrive app and none of the others.
  Can someone please point me in the right direction. The store can not be run as administrator and the 'Start Menu' user had administrator rights when the apps were added from the store.

  Hi,
  Thank you for posting in Windows Server Forum.
  You can check the GPO setting “pin Apps to Start when installed” which will pin the new program to start and other setting “Start Screen Layout” which will lets you specify the Start screen layout for users and prevents them from changing
  its configuration. You can find this setting under below mention path.
  <Computer Configuration> | <User Configuration> \Administrative Templates\Start Menu and Taskbar
  In addition please check beneath article.
  Customize the Start Screen
  http://technet.microsoft.com/en-us/library/jj134269.aspx
  Hope it helps!
  Thanks.
  Dharmesh Solanki

• RemoteFX Windows Server 2012 RC - None of the GPUs on this computer support RemoteFX

  No matter what I've tried, I cannot enable RemoteFX on Server 2012. When I open Hyper-V Manager, right-click on Hyper-V Settings, and click on Physical GPUs, I see the message:
  "None of the physical graphics processing units (GPUs) on this computer support RemoteFX. Use of RemoteFX 3D adapter requires at lease one physical GPU that supports RemoteFX."
  I'm using a computer with an i7 processor, 6GB RAM, and a Nvidia Quadro FX 4800. Also, I have an ASUS motherboard with
  no on-board video. Here are some of the things I've done:
  Installed RDS using Quick Start, Virtual-desktop install
  Installed the latest Windows 8 drivers of Quadro 4800. (Also tried the Server 2008 drivers at one point.)
  Installed the Remote Desktop Session Host (which for some reason doesn't install when you use the RDS wizard)
  I've tried reinstalling the OS numerous times.
  Tried a different graphic card (Nvidia GeForce 260). The card is ~4 years old, but I got it working with RemoteFX on Server 2008. Once I tried it with Server 2012, it didn't work.
  One more observation:
  An article I read says that server must support VM Monitor Mode Extensions, SLAT extensions, virtualization enabled and
  DEP which can be found in the System Information app. When I first install the OS, these fields are marked as
  Yes, but once I install Hyper-V (separately or using the RDS install wizard), these fields disappear and are replaced by the text: A hypervisor has been detected. Features required for Hyper-V will not be displayed. In
  the article, it says this text is usually an indication that the machine that the OS is installed on is virtual. Not sure if this is actually an issue.
  I feel like I'm missing something really simple. Like I said, I've gotten RemoteFX working on Server 2008.
  Thanks.

  the card is dx11 compatible and has been for the last 6-7 months
  Driver for NVidia Quadro FX 4800
  * Support for newly announced Quadro 6000, Quadro 5000 and Quadro 4000. 
  * Adds support for CUDA 3.1 for improved performance in GPU Computing applications. See www.nvidia.co.uk/cuda for more details. 
  * Adds support for OpenGL 4.0 
  * Adds support for DirectX 11 
  * ECC State 
  o New page for GPUs that support ECC (error correction code). The page lets you 
  1. Change the Error Correction Code (ECC) state for GPUs. 
  2. View GPU memory details. 

• Exchange 2007 RTM support with Windows Server 2012 R2 Domain Controller

  Hi All,
  I have not found any TechNet Article which states about the Windows Server 2012 R2 Active Directory domain controller operating system support with Exchange 2007 RTM, can some one please let me know that does Exchange 2007 RTM supports Windows Server 2012
  R2 domain controller operating system, we are in the process of upgrading the domain controllers to 2012 R2 but not the forest and domain functional level to 2012 R2.
  thanks
  If answer is helpful, please hit the green arrow on the left, or mark as answer. Salahuddin | Blogs:http://salahuddinkhatri.wordpress.com | MCITP Microsoft Lync

  There are several likely reasons for this.  The most significant is that Exchange 2007 RTM is no longer supported (outside ot extended support, which is not going to include adding support for new operating systems): 
  http://support2.microsoft.com/lifecycle/default.aspx?LN=en-us&p1=10926
  You'll note from the following -
  http://technet.microsoft.com/library/ff728623(v=exchg.150).aspx - that only Exchange 2007 SP3 is currently supported in any environment.
  HTH ...

• Adding second domain controller in Windows server 2012 R2

  Hello, our primary domain controller is currently on a machine that has Windows Server 2008 R2 Standard. We are planning to setup a second domain controller as a failover to our primary domain controller. My question is, can we have a secondary domain
  controller on a Windows Server 2012 R2 even if our primary domain controller is on a machine that has Windows Server 2008 R2?

  I think I found the answer to my question.
  http://technet.microsoft.com/en-us/library/dd464018(v=ws.10).aspx
  "In Windows Server 2012, Adprep.exe is integrated into the AD DS installation process and runs automatically as needed. For example, when you install the first domain controller that runs Windows Server 2012 into an existing domain and forest, then adprep
  /forestprep and adprep /domainprep automatically run and report the results of the operations.
  Some organizations may prefer to run Adprep.exe separately in advance of an AD DS installation. For this reason, Adprep.exe is also included in the \Support\Adprep folder of the operating system disk.
  In Windows Server 2012, there is only one 64-bit version of Adprep.exe. It can be run remotely from any server that runs a 64-bit version of Windows Server 2008, Windows Server 2008 R2, or Windows Server 2012. The computer where you run it can be either
  domain-joined or in a workgroup.
  The version of Adprep.exe in Windows Server 2012 includes new syntax and parameter options in order to run it remotely. For more information, see
  Adprep."
  For more information about the objects and containers that are created when the schema is extended to support Windows Server 2012, see
  Windows Server 2012: Changes to Adprep.exe.

• Windows Server 2012 R2 in 2003 forrest

  Hi,
  We have a domain that has Windows 2008 R2 domain controllers, and the domain functional level is 2003, and the forest is 2003. We are looking at installing a Windows Server 2012 R2 as a regular server, not a DC, is that possible or do we have to add a Windows
  Server 2012 R2 domain controller to have regular Windows Server 2012 R2 in the domain ?
  Thanks for reply.
  /Regards Andreas

  Hello,
  by default functional levels apply only to DCs.
  In your case test it in your lab system to be sure there is no influence on the running applications.
  Best regards
  Meinolf Weber
  MVP, MCP, MCTS
  Microsoft MVP - Directory Services
  My Blog: http://blogs.msmvps.com/MWeber
  Disclaimer: This posting is provided AS IS with no warranties or guarantees and confers no rights.
  Twitter:  

• Is it possible to restore Windows server 2012 backup to another physical hardware or virtual machine?

  Hi
  I have windows server 2012 which is my domain controller. It has 2 hyper visor virtual machine that they are 2012 too. I have an additional domain controller in another location too.
  I want to know, how can I restore a bare metal or system state backup to another machine, to have a domain controller same as old one whit all the properties, rules and features.
  Thanks

  Hi Mehdi,
  Yes, it is possible to restore Windows backup to a different machine with different hardware. This article, although written for Windows Server 2008 still applies in 2012:
  https://support.microsoft.com/en-us/kb/249694
  Best regards,
  Please remember to mark the replies as helpful if they help, or as answers if they answer your question. Please also unmark the answers if they provide no help.
  Zach Roberts
  Independent Microsoft Community Support Advisor
  Disclaimer: I don't work for Microsoft. Any advice given is my own and does not represent Microsoft.
  Follow me on Twitter:
  @WindowsZach

• Windows Server 2012 Foundation, in a Workgroup - "The server did not finish checking the license compliance. If the server is joined to a domain, make sure that the server can connect to a domain controller"...

  Every few days we see two dialogs with the following messages:
  Dialog 1, title: Check for Licensing Compliance is Incomplete
  The server did not finish checking the license compliance. If the server is joined to a domain, make sure that the server can connect to a domain controller.
  Dialog 2, title: Check for Licensing Compliance is Incomplete
  The server did not finish checking the license compliance. If the server is joined to a domain, make sure that the server can connect to a domain controller. If the license compliance check cannot be completed, the server will automatically shut
  down in 8 day(s) 23 hour(s) 0 minute(s).
  The server is not (and never has been) joined to a domain or had any DC roles installed. In fact its still connected to the default Workgroup.
  The server was configured in our office and never showed this message until it was installed on site. The main difference from what I can see is that when installed on site it was given a static IP address and does not have any DNS settings in the network
  adapter properties. 
  I have scoured a number of forums on this error but in almost every other instance of this error message the servers are connected to a Domain Controller and the solutions generally are linked to dis-joining and rejoining the domain. Unfortunately this is
  not an option for this scenario.
  I initially thought that adding some relevant DNS server IP address may resolve the issue, however, we have the exact same model server configured exactly the same running at a different site that does not experience this problem. This server also has no
  DNS server configured.
  I have seen a post that suggests turning off the servers "Foundation Checking", but I'm unsure how to do this.

  Thanks for your response Vivian.
  I can confirm that this server is not (and never has been) a member of any active directory, it is configured as a Workgroup server. It was initially configured on a network that does have an active directory, but was never joined to it. During that time it
  never displayed these messages.
  The server was moved into production on a different site and network and setup with a static IP address.The site network does have its own active directory but the server was not joined to it. It is whilst on this new network that these messages began.
  Since my original post DNS servers have been added and the Microsoft activation has been verified, however, the messages are still appearing.
  There are only 2 user accounts configured on this server. The local admin account and another local admin user.
  The remote desktop services roles have been installed but not yet configured. I don't think that has any bearing on this scenario though.
  The description of this error in the above "Introduction to Windows Server 2012 Foundation" link states:
  This error occurs when the server cannot finish checking the requirements for the root domain, forest trust configuration, or both. It usually happens when the server cannot connect to a domain controller. If the situation persists, the server will
  shut down 10 days after the first time the compliance check failed. Each time this error message occurs, it will state the actual time remaining before the server will shut down. If you restart the server after it has shut down because of non-compliance, the
  server will shut itself down again in 3 days.
  The above description leads me to the following question - In a Workgroup environment, does the server still try to contact a domain controller to establish a level of trust? If this is the case could it be that the server can no longer see the initial DC
  on its new network and this is what is triggering the messages?
  Am I clutching at straws here?

• DPM 2012 R2 - Windows Server 2012 R2 Hyper-v backup of Windows Server 2003 R2 - Non-retryable error 0x80070490

  Hi,
  I have a hyper-v host running Windows Server 2012 R2 Standard with Hyper-V on it, and on that host I got 5 virtual machines running and of those 5, 4 of those the DPM are able to backup but when DPM tries to backup a server running Windows Server 2003 R2
  I get the following errors in the eventlog.
  Log Name: Microsoft-Windows-Hyper-V-VMMS-Admin
  Source: Microsoft-Windows-Hyper-V-VMMS
  Date: 2013-11-28 10:46:58
  Event ID: 18014
  Task Category: None
  Level: Error
  Keywords:
  User: SYSTEM
  Computer: HYPERV05.domain.local
  Description:
  Checkpoint operation for 'SERVER01' was cancelled. (Virtual machine ID 5221623F-C80C-4B92-AD02-F545D118C859)
  Event Xml:
  <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
  <System>
  <Provider Name="Microsoft-Windows-Hyper-V-VMMS" Guid="{6066F867-7CA1-4418-85FD-36E3F9C0600C}" />
  <EventID>18014</EventID>
  <Version>0</Version>
  <Level>2</Level>
  <Task>0</Task>
  <Opcode>0</Opcode>
  <Keywords>0x8000000000000000</Keywords>
  <TimeCreated SystemTime="2013-11-28T09:46:58.365308800Z" />
  <EventRecordID>411</EventRecordID>
  <Correlation />
  <Execution ProcessID="2116" ThreadID="4248" />
  <Channel>Microsoft-Windows-Hyper-V-VMMS-Admin</Channel>
  <Computer>HYPERV05.domain.local</Computer>
  <Security UserID="S-1-5-18" />
  </System>
  <UserData>
  <VmlEventLog xmlns:auto-ns2="http://schemas.microsoft.com/win/2004/08/events" xmlns="http://www.microsoft.com/Windows/Virtualization/Events">
  <VmName>SERVER01</VmName>
  <VmId>5221623F-C80C-4B92-AD02-F545D118C859</VmId>
  </VmlEventLog>
  </UserData>
  </Event>
  Log Name: Microsoft-Windows-Hyper-V-VMMS-Admin
  Source: Microsoft-Windows-Hyper-V-VMMS
  Date: 2013-11-28 10:46:58
  Event ID: 18012
  Task Category: None
  Level: Error
  Keywords:
  User: SYSTEM
  Computer: HYPERV05.domain.local
  Description:
  Checkpoint operation for 'SERVER01' failed. (Virtual machine ID 5221623F-C80C-4B92-AD02-F545D118C859)
  Event Xml:
  <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
  <System>
  <Provider Name="Microsoft-Windows-Hyper-V-VMMS" Guid="{6066F867-7CA1-4418-85FD-36E3F9C0600C}" />
  <EventID>18012</EventID>
  <Version>0</Version>
  <Level>2</Level>
  <Task>0</Task>
  <Opcode>0</Opcode>
  <Keywords>0x8000000000000000</Keywords>
  <TimeCreated SystemTime="2013-11-28T09:46:58.365308800Z" />
  <EventRecordID>412</EventRecordID>
  <Correlation />
  <Execution ProcessID="2116" ThreadID="4248" />
  <Channel>Microsoft-Windows-Hyper-V-VMMS-Admin</Channel>
  <Computer>HYPERV05.domain.local</Computer>
  <Security UserID="S-1-5-18" />
  </System>
  <UserData>
  <VmlEventLog xmlns:auto-ns2="http://schemas.microsoft.com/win/2004/08/events" xmlns="http://www.microsoft.com/Windows/Virtualization/Events">
  <VmName>SERVER01</VmName>
  <VmId>5221623F-C80C-4B92-AD02-F545D118C859</VmId>
  </VmlEventLog>
  </UserData>
  </Event>
  Log Name: Microsoft-Windows-Hyper-V-VMMS-Admin
  Source: Microsoft-Windows-Hyper-V-VMMS
  Date: 2013-11-28 10:46:58
  Event ID: 10150
  Task Category: None
  Level: Error
  Keywords:
  User: SYSTEM
  Computer: HYPERV05.domain.local
  Description:
  Could not create backup checkpoint for virtual machine 'SERVER01': Element not found. (0x80070490). (Virtual machine ID 5221623F-C80C-4B92-AD02-F545D118C859)
  Event Xml:
  <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
  <System>
  <Provider Name="Microsoft-Windows-Hyper-V-VMMS" Guid="{6066F867-7CA1-4418-85FD-36E3F9C0600C}" />
  <EventID>10150</EventID>
  <Version>0</Version>
  <Level>2</Level>
  <Task>0</Task>
  <Opcode>0</Opcode>
  <Keywords>0x8000000000000000</Keywords>
  <TimeCreated SystemTime="2013-11-28T09:46:58.365308800Z" />
  <EventRecordID>413</EventRecordID>
  <Correlation />
  <Execution ProcessID="2116" ThreadID="4280" />
  <Channel>Microsoft-Windows-Hyper-V-VMMS-Admin</Channel>
  <Computer>HYPERV05.domain.local</Computer>
  <Security UserID="S-1-5-18" />
  </System>
  <UserData>
  <VmlEventLog xmlns:auto-ns2="http://schemas.microsoft.com/win/2004/08/events" xmlns="http://www.microsoft.com/Windows/Virtualization/Events">
  <VmName>SERVER01</VmName>
  <VmId>5221623F-C80C-4B92-AD02-F545D118C859</VmId>
  <Parameter0>%%2147943568</Parameter0>
  <Parameter1>0x80070490</Parameter1>
  </VmlEventLog>
  </UserData>
  </Event>
  What I have done to try to troubleshoot this issue is:
  Reinstalled DPM - No sucess
  Restarted the Hyper-v Host - No sucess
  I'm at the point where I am out of ideas and google hasn't given me much.
  /Joseph

  i have the same error.
  "vssadmin list writers" shows last error unknown for all writers
  disk space is sufficient
  ntbackup of systemdrive and systemstate runs fine.
  i installed KB940349 which fixes some vss related issues but the problem is still there.
  any ideas?
  Thanks.
  When you have vssadmin reporting unknown error the only way to reset the vsswriters (as I understand it please correct me if I'm wrong :) ) is to restart the machine. The Fellenator is correct, make use that the vsswriter is working correctly since this
  is the main function DPM is using when taking backup. He's also right in saying that it's outside the scope! Create a new thread on your error, then you will get much better responce!
  /Joseph

• Windows Server 2012 Standard - HP OfficeJet Pro 8600 Plus printer not working after promoting to Domain Controller / AD Services

  An associate and myself installed the built-in drivers for the HP OfficeJet Pro 8600 Plus multi-function (network) printer on a Windows Server 2012 Standard server installation and everything worked fine whenever I want to print anything directly from the
  Windows Server machine (there's a reason for this, so please understand that ;)  ).
  We were able to print without any problems from the Windows Server 2012 machine, using the drivers from Microsoft.  Mainly, because HP has not listed any specific support for Windows Server 2012, only Windows Server 2008 R2, however, the drivers that
  came with Windows 2012 seem to work very well.
  PROBLEM: I later had to promote the Windows Server 2012 to a Domain Controller, and created the Active Directory configurations, even enabled the Print Services.  After doing all of that, the HP printer will not print anything.  It's like all print
  requests directly from the Windows Server go to Nil.
  Has anyone encountered a problem like this before? The only thing I can think of is that after perhaps something affected printing directly once we promoted the server to being a DC, and added other features / roles.  I even tried installing the
  HP drivers for Windows Server 2008 R2, and the results are still the same...nothing prints.  Trust me, the printer is set as the Default Printer and even when choosing to print, we make sure the HP OfficeJet Pro is selected, and is on, as other Windows
  Client PC's can print to it directly.
  Does anyone have any suggestions we could try?  Thanks in advance.

  While it is quite a while since this was posted - I can concur a similar issue exists.
  We have spent the better part of a day trying to work out why other HP printers work fine but our 8620 prints are not printing and going to Nil.  The print server is hosted on a shared DC.  Comparing to the initial posters details, for some reason
  it seems to be most commonly related to the OfficeJet Pro 8600/8610/8620/8630 series printers.
  I ended up doing a print server migration from the domain controller to stand alone host and all printers now work from a single server rather than a mix.  Domain controller OSes varied from 2008, 2012, 2012 R2 (tested with multiple) and only after
  all of those failed then tried a stand alone server os machine as a last resort which worked fine.  Printing directly from Win 7 / 8 /8.1 clients to the IP always worked.

• Windows 8.1 pro client on a Windows server 2012 R2 Essentials domain, how to change lock when idle?

  Hi,
  I need to find out how to do something?
  I have Windows 8.1 pro running on my PC and its part of a domain which is Windows Server 2012 R2 Essentials, it all runs perfectly except for a little niggle where my Win 8.1 PC locks after its not used for a short time.  What I want to find out is
  how to change this so it no longer locks when idle?  I know this is a security feature but as its just my home pc it can be very annoying to log in again after walking away from the PC for a few min's.
  I've had a look through the default domain policy but there are so many settings that I can't find it, that's even if there is a setting there?
  Anyway can anyone help?
  Thanks
  JK
  JK MCP

  Hi,
  We can try to implement by use High performance power plan or GPO to prevent computer from locking down:
  Refer to the solution here:
  http://social.technet.microsoft.com/Forums/en-US/0863112d-ee54-4808-9d27-0380d7bf04b0/gpo-to-disable-lock-computer-?forum=winserverGP
  Also, you can check if there is any task scheduled for idle:
  Task Conditions
  http://technet.microsoft.com/en-us/library/cc721902.aspx
  Hope these could be helpful.
  Kate Li
  TechNet Community Support

• How to install RDP CALs pack on Windows Server 2012 R2 (member of NT domain)

  OS: Windows Server 2012R2 (64-bit), member of NT (Samba 3) domain.
  Task: install RDP CAL pack, to allow connecting above its default 3 sessions limit.
  Problem: when setting up RDP licensing/other required service, I came to a problem: RDP access broker service requires AD type of domain to be installed.
  The server is part of NT (Samba 3) domain and we have no intention to change domain type only to satisfy an auxiliary service.
  Is it possible to enable additional RDP CALs on Windows Server 2012 R2 without mandatory joining an AD? The license control available up to Windows Server 2008 has been removed from Windows Server 2012, I can't bypass installing broker and the rest of related
  services.
  Thank you for any information.

  Hi,
  you might find the dedicated TS/RDS forum is better suited to your question:
  http://social.technet.microsoft.com/Forums/windowsserver/en-US/home?forum=winserverTS
  Some related information which may be helpful:
  http://social.technet.microsoft.com/Forums/windowsserver/en-US/cbffb2d4-ff9d-49ee-a9ce-a60db2262422/managing-server-2012-rds-in-a-workgroup?forum=winserverTS
  http://support.microsoft.com/kb/2833839/en-au
  http://ryanmangansitblog.com/2013/10/30/deploying-a-rdsh-server-in-a-workgroup-rds-2012-r2/
  Don
  (Please take a moment to "Vote as Helpful" and/or "Mark as Answer", where applicable.
  This helps the community, keeps the forums tidy, and recognises useful contributions. Thanks!)

• Running two instances of Windows Server 2012 Essentials R2 on the same domain

  We have Windows Server 2012 Essentials R2 running as a domain controller -- and have installed another licensed copy of the same thing on the same domain.  We want to use the 2nd server for running an LOB application and provide backup for the
  AD services. 
  The 2nd server is a member of the domain. Can I do this and have the 2nd server provide AD failover services like they do with 2012 Standard? 

  Two things to consider. In the XP and 2003 era, the OS was not written in a security-first fashion. While XP did have LUA, almost nobody used them. Then came Vista and UAC, and those prompts were a major pain point because nobody wrote for security. Fast
  forward 6 years and standard accounts are a normal best practice. Almost nobody in business recommends running daily tasks as administrator.
  I mention all this to illustrate that, similar to admin accounts, what you used to get away with no longer applies. Running LOB apps on a DC is just bad. Many times, the app just doesn't work. But even if you could get it to work, it is a terrible idea.
  If the stories of Home Depot, Target, and most recently Sony don't already give it away, I'll spell it out. We no longer live in an age where you can take shortcuts and expect to be safe. Large organizations make national news when they screw up. But small
  businesses are targeted just as often and are at just as much risk. From "leaking" their client info to having their data held for ransom, the small business is abused regularly, but never makes national news because they are, by definition, small.
  If you can take simple easy steps to help minimize that risk, such as keeping a domain controller free of other software and locked down, then it is almost unethical to do Otherwise in the modern computing era. The world ha changed. It is our responsibility
  as I.T professionals to change with it. That's why we get to call ourselves "professionals" in relation to I.T.
  So, what bad things? Risking the customer's very livelihood. I consider that pretty darn bad.

• ACS 4.1 support with Windows Server 2012 Domain controller

  I am upgrading my Domain Controller / Active Directory from Windows Server 2003 to Windows Server 2012.
  In my environment, I am using Cisco ACS 4.1 which is integrated with Windows Server 2003 Active Directory.
  Will ACS4.1 will work fine with my new domain controller (Windows server 2012) or I need to upgrade my ACS too?
  Regards,
  Junaid

  Junaid,
  ACS 4.x code doesn't even support Windows 2008 R2. Your best bet is to migrate the ACS from 4.x to ACS 5.4 Patch 2 or stay with windows 2003 or 2008 (Non-R2).
  ACS 5.4 patch 2 supports Windows 2012 AD.
  http://www.cisco.com/c/en/us/td/docs/net_mgmt/cisco_secure_access_control_system/5-4/release/notes/acs_54_rn.html
  Regards,
  Jatin
  **Do rate helpful posts**

• Windows Server 2012 R2 - Join Domain fails (Active Directory)

  Well guys - I don't know what to do about this problem anymore...
  I set up a DC for my home network - Windows Server 2012 R2 Foundation. Everything is set up fine - DNS, AD - I suceeded joining the domain with other PCs in the network.
  Problem:
  When I want to join the domain "lionnet.at" it tells me that it cannot find the network address after I typed in the domain admin password.
  The dns entries are fine - checked it with nslookup. The DC name is lionhead.
  nslookup:
  set q=srv
  > set q=srv
  > _ldap._tcp.dc._msdcs.lionnet.at
  Server:  lionhead.lionnet.at
  Address:  10.0.0.150
  _ldap._tcp.dc._msdcs.lionnet.at SRV service location:
            priority       = 0
            weight         = 100
            port           = 389
            svr hostname   = lionhead.lionnet.at
  lionhead.lionnet.at     internet address = 10.0.0.150
  I tried several solutions: editing the lmhosts/hosts file, deactivating IPv6, setting a static IPv4
  Any ideas on this?

  what the hell...it was an external soundcard preventing the join...i installed it a week ago - unplugged it - "Welcome to the domain lionnet.at!"
  Hi CloneBraveB,
  Glad to hear that you have solved this issue and thanks for sharing in the forum. Your time and efforts are highly appreciated.
  Would you please let me know the complete error message that you get when failed to join the problematic client computer to the domain?
  In addition, for a test, please select another computer and install the external soundcard again, then attempt to join the computer to domain. Did you reproduce this issue?
  By the way, would you please let me know more details of that soundcard?
  If any update, please feel free to let me know.
  Best regards,
  Justin Gu
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]