I'm migrating to new hardware from SBS 2011 to Window Server 2016 Standard (not Essentials), I will add the Essentials role. I've done half a dozen SBS 2011 to Windows Server 2012 R2 Essentials and to 2012 R2 Standard but it's be a while and this is 2016. We are not migrating Exchange, already on Office 365. We don't use WSUS or Sharepoint.

I am looking for a step by step document, I previously used https://blogs.technet.microsoft.com/sbs/2014/03/31/windows-server-2012-r2-essentials-migration-keys-to-success/ but that is from 2014. Is there a more current step by step for 2016?

Our Remote Desktop Gateway is Windows Server 2016.

I need to be able to disable a RD CAP and RD RAP via powershell.  We are going to set up a scheduled task to run the script to disable certain RD CAP and RD RAP rules.  So I need to be able to disable the rules by name.

Ideas?

James

We currently have a AD domain with two replicating 2012 Server DCs. Domain Functional level is at 2012.  

The Primary DC is a physical server with Windows Server 2012 Standard, and will be (7) years old.  

The other replicating DC is a Windows Server 2012 DC that's a VM.  The Hyper-V server that hosts this VM and another VM that is an Exchange 2010 Standard server is Windows Server 2012 Standard and is also close to (7) years old as well.

Overall, AD is healthy without issues.   At the end of this year we will retire the existing Exchange 2010 server and move to O365 hosted mailboxes.

I am getting ready to purchase a Dell R440 that will serve as a Hyper-V server.  Will purchase Windows Server 2019 Standard.  I will install a new VM that will replace the primary 2012 DC that's on the physical server.

I also have an existing Dell R440 server that is a Hyper-V Server with Windows Server 2016 Standard.  I have one VM that is a Windows Server 2016 that serves as a Storage server.
I plan on spinning up a second VM on the server to serve as a new replicating DC server.

When I purchase the new Dell R440 server along with Windows Server 2019 Standard, should I go ahead and install the Hyper-V Host with Windows Server 2019 Standard, and then also install the new primary DC that will hold all FSMO roles as a Windows Server 2019 Standard VM or downgrade it to Windows Server 2016 Standard?

I already have 25 Windows Server 2016 CALS.  I can go ahead and bite the …

Azure AD Experts,
Whats the difference of get-azureaddirectoryrolemember vs get-azroleassignment?

It's odd most of the directory roles are in get-azureaddirectoryrolemember...
but there's a bunch of stuff under get-azroleassignment, which I'm guessing has some privileged assignments delegated to primary ids as well?

Someone accidentally deleted our Windows Server 2016 AD-Integrated forward lookup zones using a third party tool. What would be the easiest way to recover the DNS zones? We do have the ability to restore the any of the domain controllers in its entirety, but we will have to accommodate for an Authoritative restore which it doesn't seems to be a straight forward process.

Hi Experts,

on a Fileserver 2019 I have a data partition with REFS.
Now they need replication but this is not supported.

What can I do ?

Hi i want to configure Client Apps in 365 Device management to prompt each time i open any microsoft installed Office application. the machine is not on the corporate domain just BYOD windows 10 pro build.

I have been looking into App Protection policies but not coming up with anything. Help is needed :)

When i run the command get-azsecurityalert, i get the following result:

Id                 : /subscriptions/4b06/resourceGroups/GUD01/prov
                     iders/Microsoft.Security/locations/centralus/alerts/256470605332_2de8ba64-8ec8-47-8ce0-00
                     4f77588f3f
Name               : 4777-8ce0-00488f3f
ActionTaken        : Undefined
AlertDisplayName   : Azure Security Center test alert (not a threat)
AlertName          : SCUBA_RULE_ASC_EICAR
AssociatedResource : /subscriptions/6e6ab4b06/resourceGroups/CCLOUD01/prov
                     iders/Microsoft.Compute/virtualMachines/azrapp007
CanBeInvestigated  : True
CompromisedEntity  : RAPP007
ConfidenceReasons  : {}
ConfidenceScore    :
Description        : This is a test alert generated by Azure Security Center. No further action is needed.
DetectedTimeUtc    : 25/09/2019 10:42:32
Entities           : {Microsoft.Azure.Commands.Security.Models.Alerts.PSSecurityAlertEntity,
                     Microsoft.Azure.Commands.Security.Models.Alerts.PSSecurityAlertEntity,
                     Microsoft.Azure.Commands.Security.Models.Alerts.PSSecurityAlertEntity,
                     Microsoft.Azure.Commands.Security.Models.Alerts.PSSecurityAlertEntity...}
ExtendedProperties : {[compromised Host, AZRAPP007], [user Name, Kloud\KellyGarcia], [account
                     Session Id, 0x13ce9cc], [suspicious Process,
                     …

Hi,

I have DC under Win 2008 and also use WIn 2008R2 as Backup DC as well as Azure AD connect to the O365 .

I plan to upgrade to Win 2012R2 by install another new server to migrate the DC.

I need an advice or maybe the link for the steps to migrate the DC  from Win 2008 to WIn 2012R2, Also how to move the Azure AD connect where our users mail already on O365.

KIndly please advice

Regards


Stefan

Hi,
I have an issue with my server running Windows Server 2016. I think the issue is DNS or DHCP related but unsure.
for a while now, myself and a few colleagues have been domain joined.
When we're out and about, we connect in to the server Via VPN - which seems to work fine.

The server assigns an IP address and lets us in.

This has stopped working now and I can't figure out what config has changed.

If I connect directly to the network where the server is at, my laptop gets no internet at all - when I try and troubleshoot I get an error which says "WiFi" doesn't have a valid IP configuration. The IPv4 settings are set to retrieve the settings automatically from the DHCP.

Interestingly, I am trying to connect a brand new laptop up to the domain and having a slightly different issue. When the new laptop is on the same network, the servers DHCP manages to assign an IP address. When I go to join the domain, it asks for credentials but then errors and says:
The following error occurred attempting to join the domain "xxxx.local" The network path was not found

From this new computer, I can remote desktop into the server when I disable the server firewall- even though it isn't domain joined
and with my existing computer, which is domain joined, I can't RDP in now.

Both new and old laptops are on windows 10 pro - the oldest being less than a year.

Any help would be hugely appreciated

Kind Regards,
Dave

Hi Experts,

I have a Windows Server 2016 setup with Hyper-V. On the server 2 virtual machines have been created. This has been a standard installation and the default Production Switch is used.

I would however like to give the 2 virtual machines machines a fixed IP (different from the IP they automatically received).

The information I see requires to setup a different virtual switch. Since the machines are in production I would like to be sure this is the correct procedure. Perhaps a link to the correct procedure?

Thanks for any help in advance,
Mark
2019-09-20_111931.png

How do I gain access to exchange servers in Azure where my Office 365 email is located. I need to remove data from a user that is confidential and want to make sure the retention policy reflects the data completely being removed.

Hi,

Is it possible to assign Office 365 Admin Roles to users using Cloud or AD Security groups?

Regards,
Richard