Hi,
I am try to set up Remote Access in Windows Server 2016 essentials and it is asking for SSL certificate.
(1) Is buying a certificate a must to set up remote access in Server 2016 essentials?
When I set up Remote Desktop Access in SBS2011, I used server-generated certificate which does not cost any money.
(2) If I am going to  set up Remote Desktop Access in Server 2016 Standard, do I also need to purchase SSL certificate? No server-generated certificate available anymore?

Thanks.

Best way to install and download two VM's on 2016 Standard Server? Is it install the 180 Server 2016 Server trial then put in the key that came with the Dell PowerEdge operating system? I've had several licensing issues with VM's in the past.

Thanks in advance

Dear All

   
              I have selected the specific OU to sync with O365, but after I ran ps "start-ADSyncSyncCycle -PolicyType delta", I still don't see the domain user sync to portal O365, any idea ?



Keith

A couple years ago I found a Windows utility that was able to search for a filename or filename extension on multiple servers (as long as the user doing the search was an administrator or domain administrator).

This utility would then list the exact path \\server\drive letter\folder path to the file.

I am now looking for utilities that are able to do this.

What utilities are able to do this?

Hello,

I am trying to reset the local admin password for Windows Server 2K16. The only account that has access to the desktop is a basic user account so I am unable to make any changes in the GUI (lusrmgr.msc). I tried to boot to the windows recovery prompt but I can not seem to find the drive with the local os installed. Below are the following drives that I can see in recovery cmd:

A:
D:
X:

How can I get C, or the hdd with the actual os to show? I do have a \windows\system32 folder in X but there is no utilman.exe file. This is a VMWare box if that helps

Thanks in advance!

I am exploring using Azure Active Directory for a 100 person organization. There is no AD today, everything is local workgroups. We have deployed many elements of the O365 Stack and every user has an account. I have added 2 new laptops to the Azure Active Directory via Win 10 first boot. The devices are now managed by MDM/Intune.  We purchased AzureAD Premium 1 licenses.  

My issue is, can I apply GPO to these machines like they were in AD? The machines show they are in Workgroup. Printers are the only real AD type items to worry about. There is no file server, local share, etc. We are trying to be 100% Cloud.  

We are trying to avoid dedicated AD server, VPN, AD Connector, etc.  It seems like AzureAD is very close, but the devices showing they are Workgroup, not in a domain is my concern. I would much rather them show in a domain.

After reading a bit more about AAD, I want to renew my question as I didn't get any responses anymore in my earlier post.

Our company is working on a webapplication that holds privacy-sensitive data.
Therefor we're looking for an appropriate way to secure the login to it.

Our product aims at about 500 users, which are customers, not users within or related to our company.
We only need to provide them a secure access to the website we're creating for them. That's all, no sharing or interacting with them.

However, our users are known to us. They are employees of a variety of completely different companies, with no link to eachother. For some bigger companies a few employees will get a login, for smaller companies only one user will get a login.

If bigger companies would have their own tenant, the application should be coupled to their tenant. For all small companies without one, we would create one basic aggregated tenant.

My questions are related to the license fees:
- Would this be B2C functionality?
If so, am I right that the costs would only be €0.026 per authentication (because we want MFA enabled)?
This is based on this page: https://azure.microsoft.com/en-us/pricing/details/active-directory-b2c/
Or do these costs come on top of another Azure license that I'm not aware of?

- If not, I reckon the costs would come from this page: https://azure.microsoft.com/nl-nl/pricing/details/active-directory/
And then the costs for 500 users including MFA would…

Hello, I am trying to configure SSO between Azure AD and Gsuite.  here is what i have done;

added a custom domain in azure ad
added a user with the custom domain upn sufix
added the enterprise application Gsuite and configured the sso settings

I have configured gsuite for third party sso and uploaded a certificate from azure

The Problem I am having is when I sign into a test account (gmail)I am redirected to the microsoft login from gsuite, I type in my username and passowrd and I am authenticated, I am then presented with this message :

 Request Id: 5106ce80-8b8b-4986-bcaf-482a67693b00
Correlation Id: 8f275842-ee87-4df5-8bad-095c79eabfaf
Timestamp: 2018-11-08T21:39:53Z
Message: AADSTS65005: Misconfigured application. This could be due to one of the following: The client has not listed any permissions for 'AAD Graph' in the requested permissions in the client's application registration. Or, The admin has not consented in the tenant. Or, Check the application identifier in the request to ensure it matches the configured client application identifier. Please contact your admin to fix the configuration or consent on behalf of the tenant. Client app ID: 01303a13-8322-4e06-bee5-80d612907131.
Advanced diagnostics: Disable
If you plan on getting support for an issue, turn this on and try to reproduce the error. This will collect additional information that will help troubleshoot the issue.

Any help is appreciated

On Windows Server 2016, I'm hoping to block an update called "HP - Printers - HP LaserJet 600 M601 M602 M603 PCL6"  because this is a virtual server I'd have no need to print from.  Plus, more importantly, the update attempt keeps failing and I hit an ureachable when I click "More Info"

This site can’t be reached

The webpage at http://sysdev.microsoft.com/support/default.aspx might be temporarily down or it may have moved permanently to a new web address.

ERR_CONNECTION_ABORTED


Thanks for reading, thanks for helping!

I am in the process of upgrading all DCs from 2008R2 to Server 2016.
On my 2nd DC (let's call it DC2) I have run into a problem - one Service Location record for the decommisioned DC will not go away.
DC2 was demoted, had its roles and features removed and was then taken out of the domain.

After removal I manually deleted the server object in Sites and Services, and cleaned up in DNS as well (the DNS is AD integrated with all DCs being DNS servers and Global Catalogs).

All DNS records stayed deleted, shot of one:
The Service Location _kerberos record representing DC2 keeps coming back - not matter how many times I delete it :-(
The record is located under "Forward Lookup Zones -> _msdcs.mydomain.name -> dc -> _sites -> Default-First-Site-Name -> _tcp -> _kerberos Service Location (SRV) [0][100][88] DC2.mydomain.name 26.10.2018 07:00:00

I did find a remnant of DC2 in the reverse lookup zone for its subnet using ADSI Edit - I deleted that record from in ADSI Edit.

It is now close to 48 hours since I deleted DC2 and I hesitate to move forward with my upgrade, because the next domain controller to be introduced into the domain will get DC2's old IP address (need to reuse the IP due to statically configured DNS server IPs on lots of hosts).


Anyone have an idea what could be causing this record the keep reappearing?
What am I missing?

Hi Support

How to convert the BACPAC file to bak file format.

what is the free tools that we can look for?

Hello,

I am running into quite an unusual problem and was wondering if anyone has experienced this issue before. I have an ActiveX Control that I have made that uses a Picture Box and displays an image from Azure blob storage by converting that image's memory stream into an image. I use this ActiveX Control for a Microsoft Access 2002 application. This ActiveX Control works great on forms, but on reports it doesn't display fully (Please see attached images). Anyone know why?
ActiveXFullyDisplayed.PNG
ActiveXNotFullyDisplayed.PNG

How to set environment variable (Path) for each remote desktop user (e.g. %USERPROFILE%\Window) in Server-2016?
Many thanks.
-Itai