Quantcast
Channel: Windows Server General Forum forum
Viewing all 24879 articles
Browse latest View live

Windows Server AD Certificate Services SSL Problem with Firefox

July 5, 2013, 12:42 am
$
0
0

Hello all,

I currently have problems with Active Directory Certificate Services issued SSL certificates and compatibility with Firefox (newest).

Environment: PKI has been deployed in two tier architecture, root CA and Enterprise Issuing CA. Both Servers are Windows 2008 R2, Issuing is Enterprise edition, Root Standard edition. Problem exist with the Firefox and issued certificates, when trying to open protected page with this certificate I get:


Message: Error code: sec_error_bad_signature

Certificate looks like this:

Version: V3
Signature Algorithm: RSASSA-PSS
Signature Has Algorithm: SHA1


Root CA is trusted and installed on each machine keystore. Problem only affects Firefox, I suspect the problem is the FF keystore, because for Chrome and IE everything works.

Maybe you have the same expierence with FF compatibility issues.

Thanks in advance!

J


Search

Shared Folder Auditing (Folder Owner)

July 5, 2013, 12:38 am
$
0
0

hi guys, i had enabled auditing on files and folders.

If I go to the Security Tab and click on Advance and click on Owner Tab.

The username listed on current owner of this item, is it the user who created the folder?

Thank you for any input.

Please check pic below:

Every second counts..make use of it.

official Microsoft statement for NIC teaming on Windows Server 2008 R2 Core

July 4, 2013, 5:15 am

Clustered Windows Server 2008 Standard Service Pack 2 simultaneous cmd problem

July 2, 2013, 2:37 am
$
0
0

Hi all,

Wehave two clustered Windows Server 2008’s with Standard Service Pack 2 installed and 300+ tasks running in Task Scheduler.

The tasks are required to run cmd files and at any time up to 200 tasks and therefore 200 cmd files are required to run simultaneously

To begin with we were having issues getting the tasks to run reliably but have achieved this by increasing the Task Scheduler Service Quotas.

However we are now faced with the scenario where the tasks a running fine but the cmd files simply do not all run when required and we end up getting multiple application errors like in the example below:

Event Type:      Error

Event Source:   Application Error

Event Category:            (100)

Event ID:          1000

Date:                2013-07-02

Time:                9:59:00 AM

User:                N/A

Computer:         h-app259.hosting.sca

Description:

Faulting application cmd.exe, version 6.0.6001.18000, time stamp 0x47919317, faulting module kernel32.dll, version 6.0.6002.18541, time stamp 0x4ec3e855, exception code 0xc0000142, fault offset 0x00000000000b6fc8, process id 0x277c, application start time 0x01ce76fa02da93b4.

How can we get more cmd files to run simultaneously? Would increasing theMaxCmds value in the registry be enough or should we be looking elsewhere?

Key:

 HKLM\SYSTEM\CurrentControlSet\Services\LanmanWorkstation\Parameters

 

Value:

 MaxCmds

 

Data Type:

 REG_DWORD

 

Range:

 0 – 65535

 

Default value:

 50

 

Recommended value:

 2048

Any suggestions would be much appreciated.

Folder Redirection Policy on Windows Server 2012 only working on computers with windows 8

July 5, 2013, 7:06 am
$
0
0

I have configure a folder redirection policy on my windows server 2012 server and it is working fine with all computers that have windows 8 installed but those that have windows 7 installed this is not working. When setting up my policy I have tried selecting and deselecting the check box for the option  use folder redirection on computers with previous versions of windows but still there is no change. Could this be a common error or i missed something in my configuration.

Trev

how to make my system dual boot (Windows 8 and Windows Server 2008 R2)

July 5, 2013, 3:03 am
$
0
0
I have Windows 8 preloaded & installed in my laptop. As i need Windows Server 2008 R2 to run my SAP BO server. I wanted to install Windows Server 2008 R2 as my second OS. I know How to install Windows Server 2008 R2, But i am not sure how to make my system Dual Boot. I also do not want to compromise with the performance of Windows Server 2008 R2. Please help me. 

Diskpart to To Create Partition For Windows Install

December 6, 2011, 11:45 am
$
0
0

Hello,

I am trying to install Windows Server 2008R2 but use diskpart instead of the provided GUI to make my partitions. My goal is to have the partition looking like this: https://skydrive.live.com/?sc=photos&cid=9cd23b281473873d#cid=9CD23B281473873D&id=9CD23B281473873D%21127&sc=photos

The commands i use are the following:

DISKPART> select disk 0

DISKPART> clean

DISKPART> create partition primary align=1024

DISKPART> format fs=ntfs unit=64K quick

DISKPART> active

 

When I press "Refresh" on the GUI and press the "Next" button, I get the error "Windows unable to create or locate the System partition..."

However, when I use the GUI "Format" option, installation goes along smoothly. However I would like to use a unit=64K rather than the default 4K.It seems Windows won't allow any unit other than the default 4K.

Doing a DISKPART> format fs=ntfs unit=4K quick (4K default) works without problems.

Any insights?

Logon Failure: The target account name is incorrect

July 5, 2013, 9:00 am
$
0
0

I'm having an issue where I cannot connect to a DC (\\DC1.help.local) via name but can connect through IP.

What happened was our main DC (DC1 on network 172.16.1.1/24) went down due to motherboard failure. When DC1 was brought back online all users within its own network (172.16.1.1/24) could access it by name (DC1.help.local) but our external office networks (172.16.2.1 - 4.1/24) could not. When you try to visit \\dc1.help.local externally you get: Logon Failure: The target account name is incorrect.

On the forward lookup zones under _msdcs I can see all the proper Alias CNAME records, no duplicates. When you try to connect via this Alias CNAME of other DC's, you can, except for DC1's Alias CNAME. When you try, it pops this message up:

You were not connected because a duplicate name exists on the network.

I can assure you that we have not cloned DC1 nor have we brought anything online that resembles this. We also only have one nic card on DC1.

Any thoughts on how to correct this problem?

Search

dell pe1850 usb boot ws 2008 r2 error

July 5, 2013, 11:37 pm
$
0
0

full error text

Stop : c000021a {fatal system error}

the initial session process or system process terminated unexpectedlywith a status
of 0x00000000 (0xc000012d 0x001003f0). The sytsem has been shut down.

STOP: c000021a {Fatal System Error}

Server 2003: problem with NT AUTHORITY\NetworkService account

March 20, 2012, 11:16 am
$
0
0
Hi!

On a MS Windows Server 2003 Standard with SP2 the following odd problem started to occur some time ago: all services which run as the "NT AUTHORITY\NetworkService" account cannot start.

After the Windows is restarted everything works file for a day or two and then the problem shows up again.

The server is a domain controller but does not have any of FSMO roles. Another domain controller in the domain does not have this problem.

There are various errors and warnings logged in the Event Log regarding the issue, for example:

Event Type:    Warning
Event Source:    LSASRV
Event Category:    SPNEGO (Negotiator)
Event ID:    40960
Date:        19.03.2012
Time:        03:07:45
User:        N/A
Description:
The Security System detected an authentication error for the server DNS/foo.bar.local.  The failure code from authentication protocol Kerberos was "A specified logon session does not exist. It may already have been terminated. (0xc000005f)".


An attempt to restart the DNS Client results in the following:

Event Type:    Error
Event Source:    Service Control Manager
Event Category:    None
Event ID:    7038
Date:        20.03.2012
Time:        17:38:29
User:        N/A
Description:
The Dnscache service was unable to log on as NT AUTHORITY\NetworkService with the currently configured password due to the following error:
Cannot start a new logon session with an ID that is already in use.

Event Type:    Error
Event Source:    Service Control Manager
Event Category:    None
Event ID:    7000
Date:        20.03.2012
Time:        17:38:29
User:        N/A
Description:
The DNS Client service failed to start due to the following error:
The service did not start due to a logon failure.


It seems as if there is a problem with the NetworkService account.

Group Policy should be fine as in the Default Domain Policy, as well as Default Domain Controllers Policy, in the branch of Windows Settings/Security Settings/Local Policies/User Rights Assignment the "Log on as a service" policy includes the "NT AUTHORITY\NETWORK SERVICE" account.

Is there a possibility that the NetworkService account gets locked?

Has anyone seen this issue before? I'd really need to fix it as the server is in production (e.g. it runs WSUS 3.0 SP2).

TIA
-- rpr.

Team Speak server issues

July 6, 2013, 2:05 pm
$
0
0
ok this probably isnt the best place to post this, i tried on the teamspeak forums but it has to be approved by a moderator before it shows up and i posted it at 7:30 this morning and its still not there and i would like to solve this some time today so i have been running my teamspeak server via dynamic dns and its been just fine up until last night around 10 est, at that time about 90% of the people lost connection and cannot re-connect, it dosnt seem to be any pattern to the people who can and cannot connect eaither, i got some info from the people i could contact to see where there actual location was to see if it was an outage in there area, but nothing specific there. so ima at a loss as to how to fix this, i have reset my server, reset/configured my routers, reset the server, used a different router and a different server, different operating systems on the servers and im at a loss.
northern michigan and hampton va could connect, but seaford va and durham north carolina could not, where the people in seaford and hampton are is less than 10 miles apart, the server is hosted in petersburg va, im on comcast, the guy in michigan was on charter, and the guy in hampton is on verizon, so it doesn't seem to be only one isp who can't connect.
anyone have any ideas on this?

Device Manager

July 6, 2013, 5:52 pm
$
0
0

My Device Manager is empty. Why and how did this happen and can it be restored?

Spanish Character (Extended ASCII) not properly translated on Mainframe after FTP(command ) transfer from Windows to Mainframe

June 30, 2013, 1:04 am
$
0
0

A text file having records of fixed length 256 bytes containing some extended ASCII characters are not transferred on Mainframe via FTP transfer  on mainframe dataset.Here  is the Command that i am using

open xxx.xxx.xxx.xxx
USER uname pwd

quote site sbdataconn=(ibm-1140,ISO8859-1)
put file1.txt 'MD11.MAINT.PHRASE.TABLE'

quit

Sample input file : }Test 1234}éÍíÓóÚúüÑñ}á

Output Text  :        }Test 1234}éÃ.íÃ.óÃ.úüÃ.ñ}á

Please help as this is a blocking issue in my downstream application.


Unable to run windows backup after ADDS and DHCP server role isntalled on 2008 R2 64bit

July 7, 2013, 9:49 am
$
0
0
Hi,

I am a unable to run windows backup for the volume C or the fullbackup or bare-metal with systemstate after installing windows server 2008 R2 standard edition 64 bit server after installing ADDS and DHCP server roles .I am getting the following errors in event viewer.But it is possible to create backup for  another partition say E drive  it is successfully creating the backup .

Findings

1 .Before installing ADDS and DHCP server roles I were able to create all types of backups .

2. The output of  the vss writer list is for the NTDS as shown below .All other writers are fine.
Writer name: 'NTDS'
   Writer Id: {b2014c9e-8711-4c5c-a5a9-3cf384484757}
   Writer Instance Id: {d093c4e7-e0d1-4a4a-b0d9-62558f3fff67}
   State: [11] Failed
   Last error: Non-retryable error

Errors in event viewer.
VSS Warning

A VSS writer has rejected an event with error 0x800423f4, The writer experienced a non-transient error.  If the backup process is retried,

the error is likely to reoccur.

. Changes that the writer made to the writer components while handling the event will not be available to the requester. Check the event log for related events from the application hosting the VSS writer.

Operation:

   PostSnapshot Event

Context:

   Execution Context: Writer

   Writer Class Id: {b2014c9e-8711-4c5c-a5a9-3cf384484757}

   Writer Name: NTDS

   Writer Instance ID: {d093c4e7-e0d1-4a4a-b0d9-62558f3fff67}

   Command Line: C:\Windows\system32\lsass.exe

   Process ID: 524

Backup error

The backup operation that started at '‎2012‎-‎05‎-‎09T12:38:29.928000000Z' has failed because the Volume Shadow Copy Service operation to create a shadow copy of the volumes being backed up failed with following error code '2155348129'. Please review the event details for a solution, and then rerun the backup operation once the issue is resolved.

Please help.

How to configure and setup VPN in Windows2003 server and Client computer Window7

July 7, 2013, 3:53 am
$
0
0

Hi, Friends

i need to know how do i configure and setup VPN in windows2003.

We have windows2003 and DC for our small organistion.

I need to connect my boss laptop to our windows2003 server through VPN.So that with publicly internet connection he can connect to our office remotely and also uses share files and folder remotely out of from office.

Can anyone helps in this regards.

Os on server:windows2003

Client laptop OS: window7.

Search

event log reporting

July 7, 2013, 10:52 am
$
0
0
We have a over 30 of windows servers that we do not check event logs on a regular basis as we do not have a central reporting tool. I was wondering if their was a power shell script to at least we could pull warnings and errors in the application/system logs every 24 hours and send them in as an html file, or event recommend an open source software or a good decent piece of software that may cost under 200$ that would work. I would like the report to be emailed to be every day.

Active Directory Sites And Services

June 30, 2013, 1:08 pm
$
0
0

I wanted a step by step answer for Active Directory Sites and Services in win 2003 OR 2008. I have two laptops to play around with. So, my question is if I install Server OS on both the laptops, how could I configure and do the practice taking Active Directory Sites and Services? If it is possible to do the practice, I kindly request you to help me out if there is any step by step guide or reference that I could follow and practice on same.

Please guys help me with this!!!!

Tracking a memory leak in 2008r2...?

July 3, 2013, 10:30 am
$
0
0

Hello --

Recently we've encountered event 2019 srv - The server was unable to allocate from the system nonpaged pool because the pool was empty.  The server was rebooted yesterday and already Memory usage has increased from 5gb to 8gb.  Based on the past couple weeks, the server will run fine for about a week before needing a reboot.

Using poolmon, I grabbed the following (top 5 processes shown):  

At 10:00a:

 Memory:16766772K Avail: 9046292K  PageFlts:   107   InRam Krnl: 6764K P:830528K
 Commit:7649792K Limit:33531684K Peak:7751492K            Pool N:503820K P:839464K
 System pool information
 Tag  Type     Allocs            Frees            Diff       Bytes                  Per Alloc

 Proc Nonp      65099 (   0)         3 (   0)    65096    86447424 (          0)        1327
 File Nonp   73822364 (  77)  73685557 (  71)   136807    45098640 (       2080)         329
 Ntfx Nonp     837972 (   5)    704712 (   0)   133260    42202560 (       1760)         316
 KLsc Nonp    3439741 (   5)   3306608 (   0)   133133    40472432 (       1520)         304
 Irp  Nonp     378392 (   0)    333265 (   3)    45127    34859760 (       -912)         772

And at 1:30p:

 Memory:16766772K Avail: 8335728K  PageFlts: 36023   InRam Krnl: 6812K P:868796K
 Commit:8558940K Limit:33531684K Peak:9405944K            Pool N:521428K P:877464K
 System pool information
 Tag  Type     Allocs            Frees            Diff       Bytes                  Per Alloc

 Proc Nonp      73554 (   3)         3 (   0)    73551    97675664 (       3984)        1327
 File Nonp  105171269 (17537) 105042282 (17575)   128987    42430320 (     -12704)         328
 Ntfx Nonp     933558 (  15)    810599 (  14)   122959    38608864 (        352)         313
 KLsc Nonp    3809366 (  29)   3686678 (  32)   122688    37297152 (       -912)         304
 Irp  Nonp     443612 (  19)    398610 (  16)    45002    35735200 (      -1904)         794

What really concerns me is the Proc tag, which seems to be win32k.sys (using findstr /m /l Proc *.sys).  Am I correct to assume that win32k.sys is the cause of the memory leak?  How would I correct this?

Thanks -- michael~

How could I know which account can start and stop some service in windows2008R2 ?

July 7, 2013, 7:08 pm
$
0
0
How could I know which account can start and stop some service in windows2008R2 ?

All screen fonts have changed and look like MT Extra

July 7, 2013, 7:38 pm
$
0
0

Over the last few weeks the server I monitor started showing up with the windows start key, sign in and upper headers all looking like MT Extra type font (squares, lines) you cannot read it. the lower body of seems to remain in English, Doing a little reading it seems that an update might change it, so I followed a script changing the font to a normal font in ie arial etc. in internet explorer, and the server software.. this made it worse on the next boot. I cant tell if the updates that were applied made it worse or other.

I am running a T310, Dell with 2008 R2 . Any assistance would help currently I cannot read anything on the screens they have all gone alien MT extra type fonts is the closest I can explain to. ... when I could read a partial, the font was normal actual I think I did a reset font and it made it worse.

any assistance would help, were doing a major upgrade next week and currently were in trouble not being able to read the screens.

David M

Viewing all 24879 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>