[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More



Microsoft Azure is a cloud computing platform and infrastructure for building, deploying and managing applications and services through datacenters. It provides both platform-as-a-service (PaaS) and infrastructure-as-a-service (IaaS) services and supports many different programming languages, tools and frameworks, including both Microsoft-specific and third-party software and systems. Cloud Services is a PaaS environment and can be used to create scalable applications and services; there are specific software development kits (SDKs) provided by Microsoft for Python, Java, Node.js and .NET. Azure also has file and storage services, data management, analytics and DNS services.

Share tech news, updates, or what's on your mind.

Sign up to Post


I check on my Windows 2012 server and see an application called: "Host Agent Configuration". In details properties for product name it says: "Microsoft Azure Site Recovery"

What is that?

Angular Fundamentals
LVL 12
Angular Fundamentals

Learn the fundamentals of Angular 2, a JavaScript framework for developing dynamic single page applications.

SSL CertificateHi,
I am try to set up Remote Access in Windows Server 2016 essentials and it is asking for SSL certificate.
(1) Is buying a certificate a must to set up remote access in Server 2016 essentials?
When I set up Remote Desktop Access in SBS2011, I used server-generated certificate which does not cost any money.
(2) If I am going to  set up Remote Desktop Access in Server 2016 Standard, do I also need to purchase SSL certificate? No server-generated certificate available anymore?

Quick Backup of windows 2016 hyper-v server.

Can I just shut down hyper-v server . Then to copy vhdx file to a usb?
Best way to install and download two VM's on 2016 Standard Server? Is it install the 180 Server 2016 Server trial then put in the key that came with the Dell PowerEdge operating system? I've had several licensing issues with VM's in the past.

Thanks in advance
What does the double percentages before the numbers mean? "%%3%%8%%9.CRL"

CERTUTIL -SETREG CA\CRLPUBLICATIONURLS "1:%WINDIR%\SYSTEM32\CERTSRV\CERTENROLL\%%3%%8%%9.CRL\N2:http://pki.ECHOs.com/certenroll/%%3%%8%%9.crl\n10:ldap:///CN=%%7%%8,CN=%%2,CN=CDP,CN=PublicKEY SERVICES,CN=SERVICES,%%6%%10"
Dear All

              I have selected the specific OU to sync with O365, but after I ran ps "start-ADSyncSyncCycle -PolicyType delta", I still don't see the domain user sync to portal O365, any idea ?


Is office 365 Exchange separate service from Enterprise Mobility + Security?

Also, I need 6 years worth of successful and unsuccessful logins for HIPAA compliance.  Where do I set that up and or review those logs?  Feel free to suggest any other compliance related features that should be enabled.

Finally, anyone familiar with MDM and setting up the equivalent to GPOs for profile setup?   I would like a tutorial link on this.

A couple years ago I found a Windows utility that was able to search for a filename or filename extension on multiple servers (as long as the user doing the search was an administrator or domain administrator).

This utility would then list the exact path \\server\drive letter\folder path to the file.

I am now looking for utilities that are able to do this.

What utilities are able to do this?
I have a windows server 2016 std machine that is a VM and I am running routing and remote access on it as a VPN connection, and also it has a few NICs in it to go back and forth between 2 subnets. I have a file share on it and have noticed that I cannot move files across the network while RAS is on. Or at least it's not working well at all as it took several minutes to transfer a 24k file as a test. When I disable the RAS service the files transfer at normal speeds. Any suggestions?

I am trying to reset the local admin password for Windows Server 2K16. The only account that has access to the desktop is a basic user account so I am unable to make any changes in the GUI (lusrmgr.msc). I tried to boot to the windows recovery prompt but I can not seem to find the drive with the local os installed. Below are the following drives that I can see in recovery cmd:


How can I get C, or the hdd with the actual os to show? I do have a \windows\system32 folder in X but there is no utilman.exe file. This is a VMWare box if that helps

Thanks in advance!
OWASP: Avoiding Hacker Tricks
LVL 12
OWASP: Avoiding Hacker Tricks

Learn to build secure applications from the mindset of the hacker and avoid being exploited.

I am exploring using Azure Active Directory for a 100 person organization. There is no AD today, everything is local workgroups. We have deployed many elements of the O365 Stack and every user has an account. I have added 2 new laptops to the Azure Active Directory via Win 10 first boot. The devices are now managed by MDM/Intune.  We purchased AzureAD Premium 1 licenses.  

My issue is, can I apply GPO to these machines like they were in AD? The machines show they are in Workgroup. Printers are the only real AD type items to worry about. There is no file server, local share, etc. We are trying to be 100% Cloud.  

We are trying to avoid dedicated AD server, VPN, AD Connector, etc.  It seems like AzureAD is very close, but the devices showing they are Workgroup, not in a domain is my concern. I would much rather them show in a domain.
We just added our first 2016 DC (FFL/DFL 2008R2) to run along with our existing 2008R2 DC.
Is there anything that will break or oddities with AD, LDAP that others might have noticed if all FSMO roles are on 2016 DC versus the 2008R2 in the scenario above.
I ask because we have noticed some strange application behaviour and it is too sporadic right now to put my finger on it.
Replication is good and no errors.
After reading a bit more about AAD, I want to renew my question as I didn't get any responses anymore in my earlier post.

Our company is working on a webapplication that holds privacy-sensitive data.
Therefor we're looking for an appropriate way to secure the login to it.

Our product aims at about 500 users, which are customers, not users within or related to our company.
We only need to provide them a secure access to the website we're creating for them. That's all, no sharing or interacting with them.

However, our users are known to us. They are employees of a variety of completely different companies, with no link to eachother. For some bigger companies a few employees will get a login, for smaller companies only one user will get a login.

If bigger companies would have their own tenant, the application should be coupled to their tenant. For all small companies without one, we would create one basic aggregated tenant.

My questions are related to the license fees:
- Would this be B2C functionality?
If so, am I right that the costs would only be €0.026 per authentication (because we want MFA enabled)?
This is based on this page: https://azure.microsoft.com/en-us/pricing/details/active-directory-b2c/
Or do these costs come on top of another Azure license that I'm not aware of?

- If not, I reckon the costs would come from this page: https://azure.microsoft.com/nl-nl/pricing/details/active-directory/
And then the costs for 500 users including MFA would…
Has anybody used Azure Site Recovery to protect a SQL Server 2008 standard edition cluster?

I am just trying to wrap my head around how the data gets sync'ed. Typically a hot data synchronization is an enterprise feature however this article states that ASR can be used to protect a SQL Server 2008 SE fail over cluster.

I don't see any details on how the data sync works though.
- https://docs.microsoft.com/en-us/azure/site-recovery/site-recovery-sql

Can anybody share their experience with Azure Site Recovery specific to SQL Server 2008 standard edition.

Thanks experts!
Hello, I am trying to configure SSO between Azure AD and Gsuite.  here is what i have done;

added a custom domain in azure ad
added a user with the custom domain upn sufix
added the enterprise application Gsuite and configured the sso settings
settings summarysettings summary
I have configured gsuite for third party sso and uploaded a certificate from azure

The Problem I am having is when I sign into a test account (gmail)I am redirected to the microsoft login from gsuite, I type in my username and passowrd and I am authenticated, I am then presented with this message :

 Request Id: 5106ce80-8b8b-4986-bcaf-482a67693b00
Correlation Id: 8f275842-ee87-4df5-8bad-095c79eabfaf
Timestamp: 2018-11-08T21:39:53Z
Message: AADSTS65005: Misconfigured application. This could be due to one of the following: The client has not listed any permissions for 'AAD Graph' in the requested permissions in the client's application registration. Or, The admin has not consented in the tenant. Or, Check the application identifier in the request to ensure it matches the configured client application identifier. Please contact your admin to fix the configuration or consent on behalf of the tenant. Client app ID: 01303a13-8322-4e06-bee5-80d612907131.
Advanced diagnostics: Disable
If you plan on getting support for an issue, turn this on and try to reproduce the error. This will collect additional information that will help troubleshoot the issue.

Any help is appreciated
We have a Windows Server 2012 R2 Standard installed at Headquarters that is functioning as a DC.

We just purchased a Windows Server 2016 Standard server that we'd like to make into a backup DC -- it's installed on a remote office subnet.

This article on PeteNetLive appears to show that this is straightforward:


However, I'm wondering if there are any possible pitfalls with setting this up. Is there any possibility of corrupting the 2012 DC or otherwise harming the domain structure?
On Windows Server 2016, I'm hoping to block an update called "HP - Printers - HP LaserJet 600 M601 M602 M603 PCL6"  because this is a virtual server I'd have no need to print from.  Plus, more importantly, the update attempt keeps failing and I hit an ureachable when I click "More Info"

This site can’t be reached

The webpage at http://sysdev.microsoft.com/support/default.aspx might be temporarily down or it may have moved permanently to a new web address.


Thanks for reading, thanks for helping!
Thanks in advance to all experts for your time and insights.
Issue: We had two 2008R2 Domain Controllers (AD FFL/DFL is 2008R2) that both acted as GC, DNS... I replaced one of them (DC2 - secondary DNS) with a new 2016 DC (using same name and IP, but DNS was cleaned properly and demotion of old one and promotion of new one worked flawlessly). All DNS records replicated between the remaining DC1 2008R2 and the new DC2 2016 and I do not see any replication or DNS issues in the Event logs. I now started the process of testing to replace the last 2008R2 DC (DC1) and part of the test was to turn off the existing 2008R2 DC1 and run the entire domain off the new 2016 DC2 which has all the FSMO roles on it. Everything seemed to work fine, but we experienced issues with Outlook seeing the Exchange servers as well as several application servers having issues with client application software (on W7 workstations) connecting to them. Pinging servers by name and IP worked fine, but nslookup kept insisting that it queries the DC1 which was off. So I removed the DC1 from the static network card DNS settings on the Exchange servers and Outlook managed to connect right away. I changed the priority of the DNS servers on the DNS list network card) on the application servers and as soon as I did that everything worked. I realize this was a DNS issue and know that it might take 15 min + before the workstations try for the secondary DNS server, but I am also wondering how to overcome the problem …
I am in the process of upgrading all DCs from 2008R2 to Server 2016.
On my 2nd DC (let's call it DC2) I have run into a problem - one Service Location record for the decommisioned DC will not go away.
DC2 was demoted, had its roles and features removed and was then taken out of the domain.

After removal I manually deleted the server object in Sites and Services, and cleaned up in DNS as well (the DNS is AD integrated with all DCs being DNS servers and Global Catalogs).

All DNS records stayed deleted, shot of one:
The Service Location _kerberos record representing DC2 keeps coming back - not matter how many times I delete it :-(
The record is located under "Forward Lookup Zones -> _msdcs.mydomain.name -> dc -> _sites -> Default-First-Site-Name -> _tcp -> _kerberos Service Location (SRV) [0][100][88] DC2.mydomain.name 26.10.2018 07:00:00

I did find a remnant of DC2 in the reverse lookup zone for its subnet using ADSI Edit - I deleted that record from in ADSI Edit.

It is now close to 48 hours since I deleted DC2 and I hesitate to move forward with my upgrade, because the next domain controller to be introduced into the domain will get DC2's old IP address (need to reuse the IP due to statically configured DNS server IPs on lots of hosts).

Anyone have an idea what could be causing this record the keep reappearing?
What am I missing?
Acronis Data Cloud 7.8 Enhances Cyber Protection
Acronis Data Cloud 7.8 Enhances Cyber Protection

A closer look at five essential enhancements that benefit end-users and help MSPs take their cloud data protection business further.

Hi Support

How to convert the BACPAC file to bak file format.

what is the free tools that we can look for?
Morning, I am trying to setup a Windows 2016 VPN via LT2P but keep getting the below error.
Anyone know what I can do to fix it?

During main mode negotiation, IPsec received an invalid negotiation packet. If this problem persists, it could indicate a network issue or an attempt to modify or replay this negotiation.
Local Network Address:
Remote Network Address:
Keying Module Name:      IKEv1

I am running into quite an unusual problem and was wondering if anyone has experienced this issue before. I have an ActiveX Control that I have made that uses a Picture Box and displays an image from Azure blob storage by converting that image's memory stream into an image. I use this ActiveX Control for a Microsoft Access 2002 application. This ActiveX Control works great on forms, but on reports it doesn't display fully (Please see attached images). Anyone know why?
I need to install a web-service related Win 2016 std / IIS server on the DMZ. We will use public SSL certificate on that. It will then query data form AD LAN SQL server.

What is the best practice to do this keeping in mind that I have read that you don't want to have AD joined servers on the DMZ?

I have installed public SSL certificates only to AD Servers and now I don't know what to do with this workgroup 2016 std server regarding public SSL certificate.

I believe tat I need to install IIS on this server.
How to set environment variable (Path) for each remote desktop user (e.g. %USERPROFILE%\Window) in Server-2016?
Many thanks.

I need to execute the Office 365 Azure AD Synch from my computer to the server running the Azure AD Connect v1.11 (PRDADC01-VM) I have made some changes to the AD Attributes.

    [Parameter(position = 0, mandatory = $true)]
    [ValidateSet('Delta', 'Full')]
    [string]$ComputerName = 'PRDADC01-VM'
Invoke-Command -ComputerName $ComputerName -ArgumentList $type -ScriptBlock {
    If ($Type -eq 'Full') {$Type = 'Initial'}
    Import-Module adsync
    Start-ADSyncSyncCycle -PolicyType $Type

Open in new window

Can someone here please assist me with the correct PowerShell to execute from my laptop which does not require me to install the ADSync ?

Because when I execute the above script from my VS Code, it is not doing anything and no confirmation of success either?

Thanks in advance.


Microsoft Azure is a cloud computing platform and infrastructure for building, deploying and managing applications and services through datacenters. It provides both platform-as-a-service (PaaS) and infrastructure-as-a-service (IaaS) services and supports many different programming languages, tools and frameworks, including both Microsoft-specific and third-party software and systems. Cloud Services is a PaaS environment and can be used to create scalable applications and services; there are specific software development kits (SDKs) provided by Microsoft for Python, Java, Node.js and .NET. Azure also has file and storage services, data management, analytics and DNS services.