Microsoft Azure is a cloud computing platform and infrastructure for building, deploying and managing applications and services through datacenters. It provides both platform-as-a-service (PaaS) and infrastructure-as-a-service (IaaS) services and supports many different programming languages, tools and frameworks, including both Microsoft-specific and third-party software and systems. Cloud Services is a PaaS environment and can be used to create scalable applications and services; there are specific software development kits (SDKs) provided by Microsoft for Python, Java, Node.js and .NET. Azure also has file and storage services, data management, analytics and DNS services.

Share tech news, updates, or what's on your mind.

Sign up to Post

Configure Server EssentialsServer TCP/IP PropertyipconfigHi,
 I am trying to set up Windows Server 2016 Essentials. I went thru basic Windows Server installation and when I log in as administrator, it is automatically displaying "Configure Windows Server Essentials" window.

 Currently Internet router is performing DHCP server function.
 DHCP IP Range:

 and my server received dynamic IP from NETGEAR like follows:
 Server IP:

 When it is all said and one, I like to have the following STATIC IP information on TCP/IP Properties:
Server IP:

Should I assign a local static IP information on this server before starting "Configure Windows Server Essentials" or after going thru "Configure Windows Server Essentials"?

CEOs need to know what they should worry about
CEOs need to know what they should worry about

Nearly every week during the past few years has featured a headline about the latest data breach, malware attack, ransomware demand, or unrecoverable corporate data loss. Those stories are frequently followed by news that the CEOs at those companies were forced to resign.

Hi, I need to add a Windows Server 2016 as domain controller.
Currently there is just one DC: Windows 2003 R2.
Forest functional level is: Windows 2000.
First question: can I safely raise this to Window Server 2003?

Second: is it possible to add Windows Server 2016 as DC?
If not, should I add a third server with 2008 , raise forest functional level to 2008, demote the 2003 DC, and then add Windows server 2016?
Thank you
Hi EE,

How do redirect/configure the Powershell ISE or VSCode editors to run PowerShell scripts using PowerShell console (Powershell v6) terminal?

I have already tried the info in these posts:

And this works in VScode if I run the script from the command line.

But when I try to run the PS script with the intention of debugging it I get the following screen: see attached.

Basically what I need is when I hit the start debugging button F5 I need the terminal version to default to 'pwsh' (powershell v6)instead of PowerShell integrate

Below is my settings json file:

    "": "c:/Program Files/PowerShell/6/pwsh.exe"

"": [
        "shell": "C:\\Windows\\system32\\cmd.exe",
        "label": "cmd"
        "shell": "C:\\Windows\\system32\\WindowsPowerShell\\v1.0\\powershell.exe",
        "label": "PowerShell 5.1"
        "shell": "C:\\Program Files\\PowerShell\\6\\pwsh.exe",
        "label": "PowerShell 6.0"       
        "shell": "C:\\Program Files\\Git\\bin\\bash.exe",
        "label": "Git bash"


Open in new window

Any assistance is welcome.

Let me know if my query needs clarification.

Thank you.
we are getting ready to implement a retail site with approximately 20 users on Azure with RDS and M365.  We are currently in a Citrix environment and have generic terminals logging in to the Citrix servers.  Some of the sales people are full Citrix users and some are Email only users.  They have show cases in multiple spots in the store.  Users log all of the terminals in when they get in in the morning (sales1, sales2, office1 ets).  Throughout the day users will check stock or show clients various items and just log in to the application at the closest terminal (which is already logged into Citrix).  

We are being told that every user has to have a license.  That makes sense to me but it is really unworkable to have them logging out of RDS and logging back in again as themselves all day long.  If they are at the server, they log into the application as themselves.  Any ideas of what we can do and still be legal.  Thanks  Gloria
Hello All,

Very odd - WSUS on Server 2016 does not show any computers.  I usually use the "use the update services console" instead of "use group policy" but neither will work .  If I search for a specific system nothing shows up.  I have set this up many times on other networks with no problems.  Any suggestions?


Rob Battaglia
Looking for some help concerning the RDS Gateway Role and load balancing.

I have an pre-production RDS environment that contains 3x Gateway Servers. I have tested the environment by connecting through each one of the individual Gateways and everything works just fine.

I'm now at the point where I want to use my hardware load balancer to receive the connections and distribute them between the 3 Gateways. I would also like to use the UDP Transport on 3391 as well.

The part that I don't completely understand is that I'm assuming that each individual connection, which will be coming in initially on TCP 443 and then UDP 3391 would need to be routed to the same gateway?

It would make sense and be easy to set the LB up to balance both ports to the 3 Gateways, but without any specific load balancer magic, connection "A" might go to one gateway for 443 and a different gateway for 3391.

It's possible that I could be overthinking this and I'm not sure if this is a flat out requirement. In the case where the user initially connects on Port 443 to Gateway A, then the UDP traffic comes in and the LB forwards that to Gateway B. Does Gateway B know to forward that UDP traffic to Gateway A if all the gateways have the farm properties configured?

These are the things that I don't really know.
Have some issues with a Domain - windows Server 2016 acting as a PDC and fileserver and some Windows10pro clients.

Windows clients connect to the fileserver without issues. They mount the fileserver shares and can read and write files. But there's one issue I haven't found a solution yet:
If a user wihthout administrator rights stores an office file (MS Office as well as LibreOffice!!) into a folder of a fileserver share, the store command works without any issues. But if the user closes the document, it vanishes. It doesn't vanish completely but only for non-administrative users. Administrators see the document and can open, modify and store it. If you take a look at the properties of the document in the security tab, there is no owner assigned to the document. Some Administrator must assign an owner and give rights to "Everybody" "Full Access" - then the document is visible and modifiable by non-administrators as well. It stays visible, if a non-administrator stores it again.
This behaviour is only with office documents. A text document (notepad, wordpad etc...) works without any issues.

Is there somebody who has seen this behaviour and has hints for me to solve it?
Best Regards
If I have an O365 account that is either cloud or AD synced that had an assigned mailbox, can I convert it to shared and then I in assign the Exchange license and then delete the account without affecting the now shared mailbox?

I have an Excel Add-in project that interacts with an Azure SQL database using a connection string.
I want to control which tables a user can see and edit.
What is the best way to do this. Should it be set up inside the Azure  SQL database per user name
and then a different connection string given to various people?

I manage an active directory domain at the Windows Server 2012 Domain and Forest functional levels with two replicating DCs.  This domain was first created as a 2000 AD domain, and then migrated to Windows Server 2003, then migrated to Windows Server 2008 R2, and then again to Windows Server 2012.  So the AD domain has been active for about 20 years now, and I am concerned the domain may now have a lot of extra baggage that is no longer needed or even applies.  Our environment has also hosted Exchange NT Server, Exchange Server 2003, and now an Exchange 2010 server.  We plan on moving to O365 as well. I do not plan on O365 mailboxes integrated/managed by AD.  We are looking at no more than 20 mailboxes.

I also believe AD now employs more secure channels of replication that needs to be manually applied, and was not automatically applied during the 2012 AD level migration.

Later this year, I will purchase a new Windows Server 2019 server that will host a new DC. My understanding employing a new 2019 server as a domain controller only allows functional levels at 2016 domain and forest functional levels, so there is no 2019 domain/functional level option.  

So I have two options:

I have the choice of migrating the existing AD domain again to the 2016 functional levels once again of which is pretty easy and not much fuss.

Or, I can go ahead and setup a brand new 2016 AD domain/forest with a 2016 Server as a replicated DC, and 2019 server functioning as the primary …
Microsoft Azure 2017
LVL 13
Microsoft Azure 2017

Azure has a changed a lot since it was originally introduce by adding new services and features. Do you know everything you need to about Azure? This course will teach you about the Azure App Service, monitoring and application insights, DevOps, and Team Services.

I have an  ssl certification with crt format and i need to convert it to .pfx (to use it to Azure apps)

How to do this conversion?
Hi experts,
We are in the process of identifying what is the best choice for IDP (identity and provider authentication) for Office 365 - 1) stay with native Azure AD passthrough or 2) using a 3rd party IDP.

Just wanted to know your experiences what are the benefits and disadvantages.

Hi im looking to  adding registry keys via a GPO but am having mixed results.

I've created a .bat file and added to the startup script on the user configuration profile, but its creating some mixed results.

It applies in full on some PC's but sporadic on others.

Any ideas

Content of batch file

reg add HKEY_CURRENT_USER\Software\Microsoft\Office\15.0\Common\Identity /v Version /t REG_DWORD /d 1
reg add HKEY_CURRENT_USER\Software\Microsoft\Office\15.0\Common\Identity /v EnableADAL /t REG_DWORD /d 1
reg add HKEY_CURRENT_USER\Software\Microsoft\Exchange /v AlwaysUseMSOAuthForAutodiscover /t REG_DWORD /d 1
Windows 2016 server always logs in as a temporary user
DHCP Logging Question:  I am running DHCP services on a Windows Server 2016.  I would like to know how I can capture all of the DHCP log activity for an indefinite amount of time in a format that humans can read.  Any suggestions are appreciated.

I need to remove the end users from the local administrators group on all workstations. For a select group of users, they would need to remain as local admins on their machine. I currently have 1 OU that holds all workstations.  

I see that there are two ways of removing users from admin group. Either using restricted groups gpo or group policy preferences. I dont see much of a difference between the two approaches. In either case it would seem that I would have to create two separate OU's , one for computers that dont have end users in local admin group and the other would have computers not linked to any gpo of this type.  Is this correct? What would be the best approach to this?

Thank you.
When trying to get Bitlocker key saved to the Azure AD, I sometimes get this:

Can't sign in to your Microsoft Account
You need to be signed in to Windows with a Microsoft
account to save your recovery key. Sign out and then
sign in with a Microsoft account or go to
Settings and choose Accounts to change your
existing account.

This doesn't make sense to me. The user is signed in to his "Work or School" account which appears to register him with not only the Microsoft 365 apps etc. but also registers him and the laptop on the Azure Active Directory for the organisation. Under "Devices" in the AD his device appears with correct name.

It's only when attempting to save the BL key to the AD that we have this issue.

Is there perhaps another way to get the user signed in to the domain account but without having to tell Windows that the laptop is an organisation's laptop?

Confused of Berkshire!

Having an issue on Server 2016 RDS servers where the start menu; action center etc do not work. Fail with error
"ActivateApplicationForContractByAppIdAsUserWithHost of the app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI for the Windows.Launch contract failed with Package could not be registered.."

Steps taken so far
re-register all windows apps - worked for a little while before failing again
Run through latest set of updates
sfc scan and repair
dsim repair
Test on cloned server excluded from group policies

I see this is a fairly common issue, but i havent seen a solution as yet.

any help would be greatly appreciated at this point
SSL certificate setupHi,
 I am setting up Anywhere Access in Windows Server 2016 Essentials. As you can see in the screenshot, I need to enter SSL Certificate for "".
 I have a few questions for this:
 (1) Can I have W2016 Essentials server to create a certificate like I was able to do in SBS2011?
 (2) If option (1) is not possible, where can I buy one cheap? (I know there is a free one out there, but I like to get one)
 (3) Since I am testing "Anywhere Access" on this test server/lab environment, I like to be able to re-assign SSL certificate (that I am going to buy) in production server in a week.
       Can I use SSL Certificate on this test server and use it in production server later?

Thanks for your help.
OWASP: Forgery and Phishing
LVL 13
OWASP: Forgery and Phishing

Learn the techniques to avoid forgery and phishing attacks and the types of attacks an application or network may face.

Hi Experts,

we use WIN2016 server and ADFS Server.
What can I do when we have problems with the password sync ?
Architecture advice

So from a full pipeline infrastructure to develop and then deploy a web application what would you all recommend as best practice.

The items I do know at this point is I will be using the latest .net and angular frameworks for the application.  There will be a SQL backend.

My company wants this application to be deployed using CI/CD techniques.

We will have an Azure storage along with utilizing Docker.

I dont know much more but wanted to get an idea of what this architecture should look like as a developer.

I would imagine working locally in visual studio...perhaps there are some item you need to think about upfront for .net and angular apps while developing knowing that you will push to azure via a docker container.

Also at this point should I be thinking about .net versus .net core.

I plan on watching some videos and doing more reading but wanted to start with this as a place to get ideas of how this should be setup at a high level
from the architecture point of view dev through test and prod.
Hi everyone,

I have production data in an Azure SQL Data Warehouse, for which I need to scramble certain sensitive data, so I can supply to external vendors. E.g. Company Name, address etc...

I imported the data from 20 x different Excel files and there are no relationships defined in the database with common fields.

How can I scramble the data in MS SQL, retaining the original values and ensuring the scrambled value is consistent across all tables for the same value. E.g. Company A, renamed to Company Z will be consistent across all instances of Company A, across all tables.

Thank you for any help you can provide :-)

Looking for trustworthy recommendations for an IT contracting/consulting company in Brazil (Piracicaba, Sao Paulo service area).
Need some on-site hands to install new server and networking equipment along with VMware and Windows OSes.
Must be enterprise level capable.

Will setting a new server 2016 I made it a workgroup instead of a domain.
How can I change it into its new domain?

Looking for some advice. We are working with an outside software vendor they will be connecting into the network via VPN and need to RDP into 2 servers. I can restrict the access from the VPN to the server but once they are on the server they can RDP to other machines on the network. The AD user service account I created to provide to the vendor has local admin rights on the 2 servers they need to RDP into so I can't reliably block it at the firewall.

Is there a way to restrict the "Log on to" to allow RDP access from any system (even a non-domain system) to the specified servers?


Microsoft Azure is a cloud computing platform and infrastructure for building, deploying and managing applications and services through datacenters. It provides both platform-as-a-service (PaaS) and infrastructure-as-a-service (IaaS) services and supports many different programming languages, tools and frameworks, including both Microsoft-specific and third-party software and systems. Cloud Services is a PaaS environment and can be used to create scalable applications and services; there are specific software development kits (SDKs) provided by Microsoft for Python, Java, Node.js and .NET. Azure also has file and storage services, data management, analytics and DNS services.