Windows Server 2012 R2

Items related specifically to Windows Server 2012 R2

0

Quick Tip – How Do I View The Deleted Objects Container

Posted on by Rhoderick Milne [MSFT]

Windows Server 2008 R2 Active Directory added the AD Recycle Bin feature.  This allowed for an easier way to recover from an “oops” moment when a small number of objects were mistakenly deleted.  The option to perform an authoritative restored remains to recover from mass deletion events.  The AD Recycle Bin can be enabled via the AD Admin Centre or AD PowerShell using the Enable-ADOptionalFeatureRead the rest “Quick Tip – How Do I View The Deleted Objects Container”

0

HealthChecker Script & Schannel TLS Registry Issues

Posted on by Rhoderick Milne [MSFT]
Health Checker Issue With TLS Registry Keys

Unfortunately issues can arise when third-party tools are used to modify TLS settings on a Windows Server. While these utilities are often intended to simplify the process of hardening or tuning protocols, they can introduce serious side effects.  Especially in environments running applications like Exchange Server, IIS or other components that depend on schannel. Misapplied registry changes, unsu… Read the rest “HealthChecker Script & Schannel TLS Registry Issues”

1

Installing Exchange 2010 on Windows Server 2012 R2

Posted on by Rhoderick Milne [MSFT]

Installing Exchange 2010 onto Windows Server 2012 R2 is a request that frequently heard on the TechNet Exchange forums.  You may have seen posts from me in the past saying that this was not supported, and at the time that was the correct statement.  There has been a change though!  Exchange 2010 SP3 RU26 added support for installing Exchange 2010 onto Windows Server 2012 R2.

This post will step throu… Read the rest “Installing Exchange 2010 on Windows Server 2012 R2”

2

Get-AdfsProperties Error ADMIN0120

Posted on by Rhoderick Milne [MSFT]

The below is an issue which caused this week’s customer a little stress.  They wanted to review the current AD FS configuration, but were not able to successfully run the Get-AdfsPropeties cmdlet.

The Get-AdfsProperties cmdlet would generate the error below.

ADMIN0120: The client is not authorized to access the endpoint net.tcp://localhost:1500/policy

For make most glorious benefit of search engines:
Get-AdfsProperties : ADMIN0120: The client is not authorized to access the endpoint net.tcp://Read the rest “Get-AdfsProperties Error ADMIN0120”

1

Install DFSRDIAG On Windows 2012 R2 and Windows 2016

Posted on by Rhoderick Milne [MSFT]

Working on multiple versions of Exchange means having multiple different labs.  Each lab will have different versions of Exchange, different update levels and also different Active Directory site layouts.  They are all required to test and validate different configurations.

These VMs are not always running.  As a result, DFS sometimes needs attention if the environment was powered off for an extend… Read the rest “Install DFSRDIAG On Windows 2012 R2 and Windows 2016”

0

Change AD FS 2012 R2 Service Account Password

Posted on by Rhoderick Milne [MSFT]

One of the added features in AD FS 2012 R2 was the ability to leverage group managed service accounts (gMSA) which obviated the requirement to manually change the password associated with the service account.  See Getting Started with Group Managed Service Accounts for some background on gMSA.  You may also see the term sMSA which is a standalone managed service account.

Managed service accounts and … Read the rest “Change AD FS 2012 R2 Service Account Password”

1

New Netstat Options

Posted on by Rhoderick Milne [MSFT]

New?  Well some options are not that new really.  Others are however!

Sometimes it is the little things in life that can help immensely.  Take our venerable friend, netstat!  Even though it has been around for many moons folks often get into the habit of using only certain options, switches or parameters.   For reference purposes, the Windows XP Netstat options are docRead the rest “New Netstat Options”

0

Script To Remove Windows Update Server Values From Registry

Posted on by Rhoderick Milne [MSFT]

In some of the lab environments provided to me, the base Windows image has pre-set WSUS updates servers.  When I then move the lab VMs to a different network, the original WSUS servers are no longer available, and I typically point to Microsoft Update or a different WSUS server.

In the case of pointing to Microsoft Update, I wanted to delete the initial WSUS registry values.  In my case, these are … Read the rest “Script To Remove Windows Update Server Values From Registry”

1

Updating Windows Server 2012 R2 AD FS SSL and Service Certificates

Posted on by Rhoderick Milne [MSFT]

The below content is superseded  -- for information on updating your certificates please see:

 

Active Directory Federation Services (AD FS) heavily leverages X.509 certificates to allow the solution to function securely.  As with all of the other certificates that you deploy within your enterprise, there must be a process to manage and renew certifica… Read the rest “Updating Windows Server 2012 R2 AD FS SSL and Service Certificates”

0

Exchange Services Not Starting on Windows Server 2012 Due to Network Location Profile

Posted on by Rhoderick Milne [MSFT]

Some of my lab servers run in Microsoft Azure with no redundancy.  This is because they are only a lab, and I want to minimise the monthly billing costs for these environments.  When the servers are restarted due to patching or maintenance activities, there can be a little fallout. 

In the case below, some Exchange services were not running on the Exchange 2010 CAS server in the lab… Read the rest “Exchange Services Not Starting on Windows Server 2012 Due to Network Location Profile”