Improve company productivity with a Business Account.Sign Up



Microsoft Azure is a cloud computing platform and infrastructure for building, deploying and managing applications and services through datacenters. It provides both platform-as-a-service (PaaS) and infrastructure-as-a-service (IaaS) services and supports many different programming languages, tools and frameworks, including both Microsoft-specific and third-party software and systems. Cloud Services is a PaaS environment and can be used to create scalable applications and services; there are specific software development kits (SDKs) provided by Microsoft for Python, Java, Node.js and .NET. Azure also has file and storage services, data management, analytics and DNS services.

Share tech news, updates, or what's on your mind.

Sign up to Post

Dear Experts,

Some of our Users have disconnects to Outlook. We already did some research and want to know now the best practice values for this Exchange environment:

Exchange 2016 CU5, Version 15.1 (Build 845.34)
Mailboxes: >400
Users are using MAPI/HTTP

Server Info:
RAM: 40 GB
CPU: 16 vCPU (Intel Xenon CPU E5-2640 v3 @ 2.60GHz)
Storage: tiered storage ssd & nvme
Windows Server 2016 Standard, CU from March

MAPI Settings in Registry

Maximum Allowed Exchange Sessions Per Service
Maximum Allowed Sessions Per User
Maximum Allowed Service Sessions Per User
Maximum Allowed Concurrent Exchange Sessions Per Service
Disable Session Limit

Could you please let us know the best values and are there more settings we need to do for MAPI?

At the moment we're using the default values on our throttlingspolicy expect RPC. Whats your recommendations/best practice?

Many thanks!
Users cannot log in MU mode from their workstations.
I found the QBCFMonitorService.exe is stopped, and pressing StartScan button in QBDSM enables users to log in Multi-User mode.
Looking at Event viewer, I found .Net Runtime error 1026 is being logged.
What can be done about this error?

I've tried:
server is static IP
Full install of QB 2017 Premier on Windows Server 2016 Essentials
QuickBooksDB27 is local admin with r/w on shared directory
All latest patches/updates in Windows 2016 Essentials and QB.
QBCFMonitorService is set to Log On as Local Service Account

Below is the error:

Application: QBCFMonitorService.exe
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.UnauthorizedAccessException
at System.IO.__Error.WinIOError(Int32, System.String)
at System.IO.File.InternalDelete(System.String, Boolean)
at System.IO.File.Delete(System.String)
at Intuit.SBM.DataHelper.CFScan.CFWatcher.DeleteDSNFile(System.String)
at Intuit.SBM.DataHelper.CFScan.CFWatcher.OnDeleted(System.Object, System.IO.FileSystemEventArgs)
at System.IO.FileSystemWatcher.OnDeleted(System.IO.FileSystemEventArgs)
at System.IO.FileSystemWatcher.NotifyFileSystemEventArgs(Int32, System.String)
at System.IO.FileSystemWatcher.CompletionStatusChanged(UInt32, UInt32, System.Threading.NativeOverlapped*)
at …
After renaming an AD object for a user who'd recently changed their name and it hasn't updated from on-premise to Office 365.
I'd modified the proxyAddresses and mail attribute in addition to changing their UPN on premise
from Azure AD I've checked that "Synchronize of UPN" was set to true.
kicked off a sync of dirsync "Start-OnlineCoexistenceSync" which reports no issues in either the event viewer or Office 365 admin console.
However, the UPN hadn't updated in Office 365, I logged a call with Microsoft who suggested manually updating the UPN with the following:
Set-MsolUserPrincipalName -UserPrincipalName OLDUPN –NewUserPrincipalName NEWUPN
Which has worked but the primary SMTP alias is still set to old smtp record despite being correctly defined in the objects on-premise attribute (In CAPS).
I can't update the SMTP setting from either the Office 365 console on online Exchange as it's not possible when managed through DirSync.
Does anyone know how I can get around this? Microsoft has said because DirSync has been deprecated that we'll need to upgrade to Azure AD Connect before they can offer any further assistance.
I have a client with two locations on different subnets connected by a dedicated T1. Location A has a 2008 SBS with SP2. It is the file server for that location as well as running DNS and DHCP. It was running Exchange 2007 but have replaced that with Office 365. IP is I do not want to change anything at this location.

At location B I have two servers that are domain controllers. One is running 2008R2 with SP1 ( and is running DNS, DHCP as well is the file server for that location.  The other server is running 2008 Standard with SP2 ( I want to replace these two servers with one new server running Server 2016 and want it to be a domain controller as well as DHCP and file server. I have already checked and the applications that run on these two servers and they are compatible with 2016.

The domain and forest functional levels are Server 2003. The SBS was upgraded from an old 2003 server many years ago by someone else.

Can someone please help me with the steps I should follow for replacing those servers with the new one but not changing anything on the domain controller in location A? I have found a few articles but none are particularly clear or intuitive to me. Some mention exchanging the current DC IP with the new server and some say not necessary.  Also not sure about how and when to promote (dcpromo) the new server and downgrading the older ones. Lots of questions so any help would be appreciated.
Windows 2016 is installed in DC & ADC
I have added an additional domain controller. I want to demote the existing primary DC.

Do I have to seize all the roles from DC before demoting? Or is there any other procedure to transfer all the roles from DC to ADC.

(I am demoting the DC so that I can change it from evaluation to standard & activate thereafter. As per microsoft we can not do this to a DC)
(Once it would be converted to  standard edition, I would activate & again make it either a DC or ADC)

Please advice the applicable commands to perform all the operations.
We currently have two domain controllers; Operations Master is 2008 R2 and the secondary is 2012.
The domain functional level is 2008 R2 and the Forest functional level is 2003.
The server environment are mostly 2012, 2008 and one 2003, and support two Win XP workstations within our environment.
Need to know the best practice approach to eventually upgrade the domain and forest to 2016.
I'd like to setup a new 2016 domain controller within the current environment.
Any help/advice will be greatly appreciated. Thanks!
I have a freshly build Windows Server 2016 standard with freshly installed SQL Express 2008 R2 and one test database installed on it.

When I try to test the connection to database on the server itself - the test succeeds. When done from workstation it fails with message:

[DBNETLIB][ConnectionOpen (Connect().]SQL Server does not exist or access denied.

As troubleshooting I have disabled the Firewall and any vscan software.

Any thoughts?

Am setting up an RDS server with server 2016 and i need to Disable users to view hidden Items in the system.  In Windows 7/2008 i do this through GPO but its not working with 2016/windows 10. Users can simply Users can simply unhide the files through go to the "View" tab and then Tick On the "Hidden Items" Box. Is there any option to Disable user access to "Hidden Items".

I tried "Do not allow Folder Options to be opened from the Options button on the View tab of the ribbon" in User Configuration/Administrative Templates/Windows Components/ File Explorer but thats disables only the Folder option properties and users can simply view hidden files by checking "Hidden Items".

Appreciate you helpFile explorer, "Hidden Items"

We have come across a sync problem with our AD/office 365 hybrid solution. Our environment consists of the following:

On-premises AD - synchronised to office 365
On-premises exchange - not synchronised with office 365 - all mailboxes are local
Office 365 online archive enabled - archive mailboxes held in office 365

One of our users left the business and we followed procedure of disabling the AD account and the user has been moved to an OU that does not sync with O365. However we now need to gain access to the users archive mailbox. Since the account has now been disabled and disconnected from O365 how would we go about doing this? We have attempted re-synchronising the account back to O365 and enabling the account again. After the sync we get the following error in offce 365 DirSync errors:

"We detected a duplicate Proxy address conflict on the value SMTP:"emailaddress". All attribute values need to be unique accross objects. To resolve this conflict, first determine which object should be using the conflicting value. Then, update or remove the conflicting value from the other object(s). This error was detected on 4/20/17 2:00 PM".

Has the archive mailbox now disappeared? It seems there is still some footprint of the users account in O365 and we just need to reconnect it somehow but since we re-synchronised it looks to be a new user.

Thanks in advance.
Hey Experts,

I have Symantec Endpoint Manager ver 14 installed on a Server 2016 box.  SEP clients are password protected via policy.  However, local admins on PCs are able to disable the protection by right clicking the Symantec shield and selecting disable SEP.  unfortunately, some users in the company have local admin right due to their role.  Has anyone came across this issue and is there a resolution?  Thanks in advance!
Azure AD Premium, which is part of EMS, integrates with many other solutions such as Salesforce, ServiceNow and so on.

How does this fit in with OAUTH?

I want to implement token authentication for WEBAPI in C#.The application is going to be hosted on Microsoft Azure. Can someone help me with some guidance with some code example  how to implement token authentication for WEBAPI for server/client side.

We are planning to upgrade from "DirSync" to "Azure AD Connect". Is it possible to build a new server for "Azure AD Connect" to co-exist and work side-by-side with the current "DirSync" server in such a way that we could gradually migrate from the current "DirSync" server to "Azure AD Connect"?

Thank you,
For some reason if I link a Group Policy to an OU (not in the top domain level), the group policy will not apply. Once I add to the domain level, the policy applies without issue. Any Ideas?
I have a terminal server in an OU by itself.  I have a GPO linked to that OU and the security filtering is set for the Terminal server computer object and the domain user who I am logging in as.  I have the GPO enabled and enforced, I have run right clicked the OU in the GPM and selected Group Policy Update and it completes successfully and I have also run gpupdate /force on both the DC then the terminal server.  None of my policies in that GPO are being applied to the Terminal server.  

I can make the changes locally on the TS via gpedit.msc however that is not the approach I prefer.  I have a number of other sites that I am successful at with my procedure and the changes are applied.  Can anyone give  me advise on this, is there an issue in 2016 that I am not aware of?

Thank you,
How do I create a group policy in Server 2016 to add local users to the Administrator group???

Example - JDoe logs in to a windows 7 workstation and he will automatically be added to local Administrator group.
We've been managing a mix of Windows Server 2012 R2 and 2008 R2 servers over multiple subnets via remote desktop.  We are able to login to those servers and go about our various management tasks with no issue.  We recently installed a couple new Windows Server 2016 virtual host boxs and setup RDP for those as well.  We can login just fine using a remote desktop client when we are on the same subnet, but when we try to remote in across an SSL-VPN connection or over a point-to-point VPN (any other subnet), we get a black screen after login.  No changes to our firewalls or routers and just defaults on the servers.  Happens whether local server firewall is on or off.  Can someone tell me what was changed "out of the box" for 2016 that results in black screens from remote subnets after login?  Thanks!
I am trying to add a computer configuration policy within group policy. Under Security Filtering I am assigning a Computer object (not a user or group object). I run gpupdate /force on that PC I added to Security Filtering, but it doesn't apply. When I run gpresults /r, I get the following message

The following GPOs were not applied because they were filtered out
    Map Printers
        Filtering:  Denied (Security)

If under Security Filtering, I add Authenticated Users, it applies without issue. Any Ideas?
I restored the DHCP database based on some solutions to this I found online and would like to force the DHCP cleanup process to see if the event log error persists. Is it possible to force this process?

I think this happens automatically on my DHCP server each night.
I've created a virtual Server 2016 WSUS instance. The GPO for the client computers is supposed to be set by the network engineer. I'm getting updates downloaded from Microsoft, but have yet to see any client computers connect. I've checked the default firewall ports, and TCP 8530 and 8531are allowed.

Any ideas out there?

Thanks in advance.

p.s. This is my first 2016 production server.

I want to install Apache atlas on one of my Microsoft Azure VM. Can anyone give me any guidance how can I install this on a VM?

Also is there any integration available with$ for Apache Atlas?

Modern Authentication is enabled at the tenant.
Enabled one user with MFA within Office 365
Without any additional Claim Rules MFA seemed to work for ADAL client (Outlook 2016)

Created App password and attempted to use it for legacy ActiveSync client.
Authentication does not succeed (instead user is prompted to fill in fields like server etc..)

Any ideas?

Thank you.
Dear Experts.
I am just done with the setup of a SharePoint 2016 system "enterprise" on Windows Server 2016
what I need now is to allow forms Login to use the same AD credentials people use in the organization.

I googled a bit and found various solutions for an LDAP connection to SharePoint 2010. and when I tried them the system stopped working.
can someone help me out with this?

Best Regards
Hello Experts,

I have successfully configured my router to speak with the Microsoft Azure Virtual Network Gateway, which has the following BGP settings.

ASN 65010
Peering address

The BGP configuration on my router is simply as follows:

router bgp 65050
 bgp log-neighbor-changes
 neighbor remote-as 65010
 neighbor ebgp-multihop 255
 neighbor update-source Tunnel1
 address-family ipv4
  network mask
  neighbor activate

The strange thing is, I can ping the peer address at, see below, but BGP won't come up.

cisco-csr-bgp2#ping source gigabitEthernet 1
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to, timeout is 2 seconds:
Packet sent with a source address of
Success rate is 100 percent (5/5), round-trip min/avg/max = 6/15/23 ms

I'm sure there is something very simple that I'm missing. Any help will be greatly appreciated.

I have included the configurations.

Also, the configurations were taken from the sample here:
We are a large organization that have 114 ESXi host 875 VM's and still a hand full of physical servers as well. We are mainly a Windows OS organization. We are in the process of migrating users to office 365 and also getting our feet wet with Azure storage. I know with Azure you can convert VMware VM's to hyper-v with native tools which are being deprecated and third party tools. Vmware also has cloud offers with vCloud which I believe was just sold.

We are looking to move away for an onside Lab and place it in the cloud to have hardware cost and maintenance.  Our core Vm's are backed up via Dell vRanger including our DC's. We are looking to setup an isolated lab environment in the cloud that is 100% isolated from production. I know others are doing the same thing an interest to see how others company have done with who have a large VMware presence which keep cost in mind since it is a lab environment.


Microsoft Azure is a cloud computing platform and infrastructure for building, deploying and managing applications and services through datacenters. It provides both platform-as-a-service (PaaS) and infrastructure-as-a-service (IaaS) services and supports many different programming languages, tools and frameworks, including both Microsoft-specific and third-party software and systems. Cloud Services is a PaaS environment and can be used to create scalable applications and services; there are specific software development kits (SDKs) provided by Microsoft for Python, Java, Node.js and .NET. Azure also has file and storage services, data management, analytics and DNS services.