Azure

Microsoft Azure is a cloud computing platform and infrastructure for building, deploying and managing applications and services through datacenters. It provides both platform-as-a-service (PaaS) and infrastructure-as-a-service (IaaS) services and supports many different programming languages, tools and frameworks, including both Microsoft-specific and third-party software and systems. Cloud Services is a PaaS environment and can be used to create scalable applications and services; there are specific software development kits (SDKs) provided by Microsoft for Python, Java, Node.js and .NET. Azure also has file and storage services, data management, analytics and DNS services.

Share tech news, updates, or what's on your mind.

Sign up to Post

We are going to update some file servers, one server 2003 and one 2008, DFS members.
Existing environment:
2003, 2008, 2012, and 2016 servers formed a DFS file service.

Requirements:
1. Fail-over and HA
2. Enable file history or version features, allow domain users to recover their files to the previous version by themselves.
3. Enable security audit, to check who deleted or moved the file if necessary.

Could I have some advice on which version should I use? server 2016 or 2019? Standard or Enterprise? Should we keep DFS or change to Cluster HA solution?
Thanks a lot.
0
Become a Microsoft Certified Solutions Expert
LVL 13
Become a Microsoft Certified Solutions Expert

This course teaches how to install and configure Windows Server 2012 R2.  It is the first step on your path to becoming a Microsoft Certified Solutions Expert (MCSE).

We are going to upgrade the DHCP server to Server 2016 or 2019.
Requirements:
1. DHCP service failover or HA
2. Multiple vLAN via core switches

Any ideas which version should we use? Any new features on server 2019 on DHCP service?
Thank you.
Existing Environment:
A Cisco Switch worked as DHCP replay, Two DHCP servers for failover. (2003 or 2008)
0
I am trying to make a replacement storage spaces direct cluster on server 2019 to replace our 2016 cluster.  But I have an issue after creating the SET switch and creating hyper-v virtual NICs tied to the SET switch it only displays the virtual NICs speed at 10gb I am using one dual port card on each node.  On the 2016 cluster the virtual mic shows 20gb.  Am I missing something on the 2019 cluster? Should the virtual NICs so the aggregated bandwidth of the physical NICs the the SET switch is connected to?
0
I would like to setup multiple VLAN's but not quite sure how to get VLAN 4 working.

Scenario is as follows:

1. 10.11.1.0/24 - VLAN ID:1 - This will be used for clients that are connected to Ports 1-18, 20-52 on the HP-2530-48G Switch
2. 192.168.15.0/24 - VLAN ID:4 - This will be used for a single PC that will be connected to Port 19 on the HP-2530-48G Switch
3. I currently have a Windows Server 2016 DHCP setup already (on IP Address: 10.11.1.31) for the VLAN ID:1 but dont have anything setup for VLAN 4
4. VLAN's have been configured on the HP-2530-48G Switch (See screenshot for more details)
5. Cisco Router is configured as the Gateway and is on 10.11.1.1


HP 2530 Switch
Equipment I have is the following:

1. HP 2530-48G Switch
2. Cisco ASA-5506
3. Cisco 4000 Series Router

Questions are as follows:

1. I want to be able to setup a DHCP Scope for VLAN ID: 4 on the Windows Server 2016 DHCP Server so the PC (that is connected to port 19) is issued an IP Address of 192.168.15.2 but when I setup a scope other users on VLAN ID: 1 are issued an IP Address from the DHCP Server Scope 192.168.15.0/24.

What do i need to configure either on the switch, ASA or router so only the PC that is connected to port 19 on the switch is issued a 192.168.15.x IP Address?

2. Is it possible to lockdown the VLAN ID: 4 so it only has access to the internet and no access to internal resources on VLAN ID:1 ?
0
Hello Experts,

I am migrating an organization to the Azure cloud and Microsoft 365. They are currently running Windows 10 Pro build 1903. However, the end users were not comfortable with the Windows 10 UI, so the IT manager installed "Classic Shell" (http://classicshell.net/) on all of the desktops to allow the users to have their familiar Windows 7 interface.

My question is: Once we migrate them to the cloud and start managing the desktops with Intune, will ClassicShell be allowed or blocked?

I have searched the ClassicShell forums, and also all of the Intune documentation, and there is no mention of customizable start menu programs being supported or blocked.
I guess it could possibly be whitelisted as an allowed app, but I'm not sure.

We are still about 2 months out from the migration, so I'd like to remove ClassicShell now and allow the end users to get used to the Windows 10 start menu early, rather than waiting until they are in the cloud and the have to get used to many things, including no ClassicShell.
Anyone have experience with custom start menu utilities and managed Windows 10 desktops in Intune?

Thanks in advance for your insight. Any info is greatly appreciated!
0
Team, need you help in below:

I want to restrict emails being sent from our internal sender to external recipients that matches certain criteria.

The criteria is: Any email being sent to external user with that has a specific Sensitivity label applied (basically we are testing Azure Information Protection labels. so any email with a specific label) should be restricted with Do Not forward [pic of the rule is attached]

It is working in a way. The recipient does gets the red DNF sign on an email, but the recipient is still able to forward the email.

Request you to please give  me some suggestion , it is bit important and urgent for me
0
My windows 10 user, lets call him guser is a member of the corp\administrators group (and enterprise admin groups). His windows 10 client desktop was working fine a couple of days ago, and his folders were being redirected to the server on D:\Shares\User Folders\guser. Suddenly, and we thought after an update, it says that he does not have rights to d:\shares\User Folders\guser\Desktop.
Here are some facts:
He's an admin at corp
He can map to the server
He can navigate and map to d:\shares\user folders\guser, but can't navigate further than that
He IS owner of d:\shares\user folders\guser
He is NOT owner of the Desktop, Documents, Downloads, Favorites, etc... (can't seem to get him to be an owner)
The Windows 10 client displayed the message : File and print sharing resource (Server name) is online but isnt responding to connection attempts.

I could use some help here, guys/gals!
0
Hi
Im trying to install server 2016 on a VM on hyper V, without any success
I keep getting boot failure, reboot and select proper boot media...
Ive tried Gen 1 & 2 vms no success
Ive tried the Virtual DVD drive point to ISO on Hyperv Host and from bootable USB but still no success
where am i going wrong
Thanks in advance
0
Hi, I have built a new Windows Server 2016 and the domain name is the same as the companies website i.e. mycomany.com therefore when they try to browse to www.mycompany.com it redirects to their Windows Server instead of going to their external website. I have added an A Record for www.mycompany.com in the DNS pointing to the external website but receive access to my company.com as denied, it also removes the www. I have it working on PCs by changing the hosts file but need it working from the Server for iPhones etc.

Help !
0
We have a large Windows file server with 100+ users. Inevitably a folder or file goes missing. Perhaps someone accidentally dragged a folder into another folder, or someone "by mistake" deleted a file or folder. As you know, on a Windows server if you delete the file, it's instant and permanent.

How do you deal with this?

For logging purposes, if Jane in accounting accidentally drags a top-level folder into another folder and now we have to spend 30 minutes looking for it, are there utilities that can monitor every single file/folder action that occurs on a Windows file server, including the name of the user who made the change?

And for recovery purposes, are there any solutions for file servers that move the file or folder to a temporary holding location vs instantly deleting it? (Rant: My $400 Synology NAS has a "network trash" feature but Windows Server (after 20 years) STILL does not have this feature???)
0
Why Diversity in Tech Matters
LVL 13
Why Diversity in Tech Matters

Kesha Williams, certified professional and software developer, explores the imbalance of diversity in the world of technology -- especially when it comes to hiring women. She showcases ways she's making a difference through the Colors of STEM program.

Does anybody know how we can use MFA for Outlook Anywhere? We have an Exchange On-prem environment. I was told if we use AD Connect we can do this. Just need details.

Thanks
0
This map drive preference use to assign a drive label.
Preference with drive label
H drive mapping using the label
The drive mapping is assigned to this registry entry
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\##fs1#data$]
"_LabelFromDesktopINI"=""
"_LabelFromReg"="CAD-H"


We now want to stop using drive labels. The following attempts were made to remove the drive label.

1.   The drive label text was removed from preference.  
2.   Changed the drive label name which does update the registry entry.
3.   Deleted the drive label text again, which again did not remove it from the registry.
4.   Deleted the map drive within the preference, which again did not remove it from the registry.

I am for suggestions how to remove the drive label from the registry.
0
My company is new to Azure and have begun the building process; however, they've done this without security in practice.  I need to bring them up-to-speed and need assistance.  Can you point me in the correct direction?  We need to deal with SOC 1 and ISO27000 frameworks.  

Help needed!
0
Azure Site Recovery / Zerto or Veeam?

Hello

Im investigating and testing replication of a test VM we have in azure and failing miserably.  Current production config:
  • Site to Site VPN from our on premise site(s) connected into UK South Azure region.  
  • 10.0.0.0/16 address space.
  • All production resources (Domain controllers only so far) located here.
  • A test SQL server VM stored here 10.0.0.11 and being replicated by ASR to UK West region.
  • dedicated ASR vnet used at the UKWest site.
  • A dedicated failover vnet also used for the failover replica.

I clearly must be missing something.  I have yet to failover, but understand that the replica VM can have the same IP address as before but its recommended that it doesn't (depending on the address space and subnet?

Also am i right in saying we must either add vnet peering between UK South and UK West?  A VPN connected to UK West should UK South go offline or just allow external WAN IP access?

There doesn't seem to be much simple standard information for ASR.  I was hoping this would be easy and simple.  Which leads me onto Zerto and Veeam (currently using), is anyone using this in an azure to azure setup?  If so any pointers over ASR?

Thanks
0
We are looking into some best practices regarding data retention for a batch of excel spreadsheet files. At present there is a requirement of the company to keep the files for 6 years, and they reside on a Windows file server share. By 'keep them', I mean if someone deleted them and they weren't recoverable this would potentially cause chaos. They are in a directory whereby permissions are set to read-only for almost everyone bar our IT support groups, therefore the number of people who could inadvertently delete the files is very limited. We don't have any sophisticated records management/EDRMS type systems to enforce data retention where we could upload the files too. Have you ever had any similar situations, and what types of controls did you put in place to do all you can to preserve the availability of the files in line with the retention requirement? I need to explore how backup retention works as well in case we had a major disaster and lost the server/data centre it was hosted on/drive etc.
0
Hi,

Please review the below image:

This message appear on user terminal session on each Wednesday around 4pm. We scan the server multiple times but found nothing.
Some one please let me know why this happening?

Vicky.jpg
0
Greetings,

I enabled Microsoft MFA for a few users. Is there any way to avoid having to use App Passwords or is there a way for them to create their own? The automatic ones from Microsoft are difficult to remember and are already deterring users from wanting to test MFA. I am a domain admin with MFA enforced (not just enabled) and have never been prompted for my app password on any Office program or online offering (e.g., SharePoint online) and neither has my colleague. I use text but my colleague uses the MS Authenticator app.  

One user was prompted on his iPhone's native email app for his password and didn't know to use the app password so was entering his domain password which obviously would not authenticate him. Another was prompted when opening Outlook but I have no other information except that he told me he got an error when entering his password (again, domain password). Again, I have never been prompted for a password where I had to use an app password so not sure why they are. They are not domain admins, for reference.  

We have not configured any conditional access rules.

Thanks for any help understanding this and configuring it, if possible, to simply require the verification code to authenticate.
0
I am getting an 0x8024402f error on a windows 2016 server vm when trying to do a windows update.
I can download and install from the update catalog. Any help would be appreciated.
0
I have a terminal server 2016, I have admin rights and a local admin account too.  I'm trying to run as administrator on this server while logged in as a user that doesn't have rights,  It's telling me access denied.
0
Starting with Angular 5
LVL 13
Starting with Angular 5

Learn the essential features and functions of the popular JavaScript framework for building mobile, desktop and web applications.

Hello IT people

I need to set up a DFS server. what is the best practice for it? Hardware requirements? how to configure it step by step
0
I have Oracle 12c server  set up in an Azure VM  .  This need to be accessed by another Azure VM (Both machines are windows 2016 servers)  . I have opened port 1521 and I can do psping to port 1521. But Oracle connection fails
Are there any extra setting to be done with Oracle server  or client
0
I have a three-nodes Windows 2016 Core Edition Hyper-V Cluster (this is a LAB environment):

H2A-HV1-CoreE
H2A-HV2-CoreE
H2A-HV3-CoreE

I have two VMs in the cluster with Azure Site Recovery enabled (Hyper-V to Azure), Hyper-V replica is currently paused, when I try to resume the replica from Powershell I get this following error (from any Hyper-V host in the cluster):

"Resume-VMReplication : Hyper-V encountered an error trying to access an object on computer 'H2A-HV1-CoreE' because the
object was not found. The object might have been deleted, or you might not have permission to perform the task. Verify
that the Virtual Machine Management service on the computer is running. If the service is running, try to perform the
task again by using Run as Administrator.
At line:1 char:21
+ Get-VMReplication | Resume-VMReplication
+                     ~~~~~~~~~~~~~~~~~~~~
    + CategoryInfo          : ObjectNotFound: (:) [Resume-VMReplication], VirtualizationException
    + FullyQualifiedErrorId : ObjectNotFound,Microsoft.HyperV.PowerShell.Commands.ResumeVMReplication"

I am an Enterprise Domain Admin.

The interesting is that I'm able to resume replication from the Hyper-V Manager Console

Please take a look at the pictures I attach here

Any idea of what to do here?

Thanks in advance,

RJC
Error1.jpg
Evidence-1.jpg
Evidence-2.jpg
0
I will be setting up an AD FS farm in order to link to SharePoint Online (part of Office 365).

We have a single-forest AD environment with three (3) child domains under the root forest domain.
The root forest domain isn't used except for a few management accounts.
All three child domains have users that will need to access our single SharePoint Online instance.

I believe my best course of action will be to setup the AD FS farm under the root forest domain since it has trusts to all its child domains.
I'll be installing an AD FS server as well as a WebProxy server and then federating to the Azure AD that SharePoint Online requires.


What would be the best way to ensure all users within the three child domains can log into SharePoint Online?
I believe I'll have to modify some of the claims from the default in order to achieve this.

Any direction/best practices/general help would be appreciated.

Thanks.
0
Gents I am looking to take a different direction for the MCSE track.   I think trying to do server 2016 right now is biting off more than I can chew.   I would like to start small and work my way up to the full certification.   Does Microsoft offer an certification in exchange server?  I was thinking starting with learning how to build an exchange server from scratch for 2016 or 2019 and then move into azure AD and O365 then work my way into the full server MCSE.   Could anyone assist with some path options?
0
We have IIS 7.5 on Server 2008 R2 Datacenter. We have been using a Godaddy SSL cert and it had to be rekeyed. I did that, the SSL cert was approved and available on the website. I downloaded the zip file and followed Godaddy's steps. I added the intermediate cert using the Certificates MMC. Then I went to IIS and chose "complete certificate request" and chose the .crt file. When I add a "friendly name" and click okay, it looks like it's there. But, when I go to bind it to the website, it isn't there, and it disappears from the Server Certificates area in IIS.

I did some googling and found the following, which appears to have fixed the issue in that I can see the cert now: "Here are instructions to make the PFX if you have no private key. To fix this, use the MMC snapin to import the cert into PERSONAL, click it and grab the serial # line.  Go to dos, run certutil -repairstore my "paste the serial 3 in here" (you need the quotes) then refresh MMC with personal certs, right click it – export – select everything except DELETE PRIVATE KEY, hit ok.  Then go to IIS and IMPORT cert instead of finish request." (comment by pixelloa at https://blogs.msdn.microsoft.com/vijaysk/2009/05/22/disappearing-ssl-certificates-from-iis-7-0-manager/ )

When I went to export the PFX it prompted for a mandatory password, which I added, and then entered it when importing into IIS. This is a business website with about 50 users and I'd prefer this to run smoothly. Are there any caveats I should …
0

Azure

Microsoft Azure is a cloud computing platform and infrastructure for building, deploying and managing applications and services through datacenters. It provides both platform-as-a-service (PaaS) and infrastructure-as-a-service (IaaS) services and supports many different programming languages, tools and frameworks, including both Microsoft-specific and third-party software and systems. Cloud Services is a PaaS environment and can be used to create scalable applications and services; there are specific software development kits (SDKs) provided by Microsoft for Python, Java, Node.js and .NET. Azure also has file and storage services, data management, analytics and DNS services.