Azure

Microsoft Azure is a cloud computing platform and infrastructure for building, deploying and managing applications and services through datacenters. It provides both platform-as-a-service (PaaS) and infrastructure-as-a-service (IaaS) services and supports many different programming languages, tools and frameworks, including both Microsoft-specific and third-party software and systems. Cloud Services is a PaaS environment and can be used to create scalable applications and services; there are specific software development kits (SDKs) provided by Microsoft for Python, Java, Node.js and .NET. Azure also has file and storage services, data management, analytics and DNS services.

Share tech news, updates, or what's on your mind.

Sign up to Post

PowerShell Script Request: Remote Windows 2016 Server Page File and Location.
0
Hey Experts.  I need to copy data from a directory on a server (serverA) but a Windows service on the server needs to be stopped before the data is copied.  Not sure how to get the script to check for the Windows service (say spooler) to be stopped before the script continues on.  Thank you in advance for any help!
0
i  have on premise file servers.

we have user mailboxes on office 365 tenant, we only have on premise AD, ADFS, AAD connect server.

i need to implement azure RMS to protect documents  , is there any article on this which gives detailed steps.

Also implementing RMS different than Azure information protection
0
Hi Experts,

my exchange server 2016 restarts each night.
How to troubleshoot this ?
Where to look into ?
0
hi,

any offical, practical guide to migrate Oracle and MS SQL to Azure MS SQL ?

Azure do not support Oracle DB yet, right?
0
Script to list logons on a specific domain controller, which the user actually logged onto that domain controller. Trying to look up examples and I just keep finding ways to find a specific user, I want all of the logons for the past X hours, of any user.
1
Hello, I'm trying to up an Oracle Database for a customer, and i have a few issues with it.

When i'm on a DOS and type "lsnrctl status <service_name>
i got an answer "Instance <name>, status BLOCKED, comport 1 handler(s) for this service..."
Command Success. (Could be not 100% accurate as I trad myself from french)

In a other hand, when i'm trying to connect with SQLPlus on the DB,  i got the following :
"ORA-01033: ORACLE initialization or shutdown in progress"

All services linked to Oracle are running exept OracleRemExecServiceV2.

As my lsnrctl start, stop and status gives answers, I dont know if problem comes from my listener.ora/tnsnames.ora (that was the previous problem I got and think have pass through).

Also SQLDeveloper send back the ORA-01033 error too.

The oracle DB version is 12c 12.1.0.2.0.
OS is Windows Server 2016 64 bits

Blocked Message afterr lsnrctl status

ORA 01033 at login attempt
I've tried to shutdown then startup DB, reload services.
The only thing I got is tnsping answer well.

If you need anything more for precision feel free to ask.

Thank by advance if you have an answer, I digged in many sites but no one give a clear answer that applied well for me.
0
Hi All,

We are looking at installing a Server 2016 server (standalone) with the CS role. We are primarily going to be using it to secure our DC's (currently 2008R2 - but will be upgraded soon), for LDAPS but may look to utilise it further for other devices/servers as well. I am looking for opinion / best practices on how to set this up.

I was thinking that we would only need one enterprise server currently for our needs. I have read however that it is better to have two, a root and subordinate with the root turned off. Would this be over kill given our needs?

Secondly what length key would be best and algorithm to use. According to MS SHA2 with a 2048 key should be fine, however I have also read that that SHA256 would be better.

Should we stick with the default 5 year certificate lifespan.

Which template is most suited for securing the DC / LDAPS

Should I create a dedicated account for access to the server / servers

Finally if one Enterprise root server is deployed, should this be turned off when not in use. I read a MS article that says this is not recommended.

Thanks for your help.

Paul
0
How big does AD have to be (and how slow does the link need to be) to justify installing a new domain controller in a regional office using the IFM (Install From Media) method?

I think we'll have a 50 mbps symmetrical site-to-site VPN.

Our NTDS folder is 375 megs in size.

Should I use IFM or just do it the regular way?

I'm no pro so picking the easy method is very much preferable.

Reading about IFM here:
https://social.technet.microsoft.com/wiki/contents/articles/8630.step-by-step-guide-to-install-an-additional-domain-controller-by-using-ifm.aspx

I became concerned reading this passage:

"Important :
The next steps are required to change the SYSVOL folder security settings. These steps change the file hash, which will become the same file hash as in the IFM. If you use DFS Replication, SYSVOL will keep the presided data only if the file hash on the source domain controller and the destination server are the same
On the destination server, right-click the SYSVOL folder, and then click Properties.
Click the Security tab, and then click Advanced.
Click the Auditing tab, and then click Edit.
Clear the Include inheritable auditing entries from this object’s parent check box, and then select it again.
Click Apply, and then click OK.
"

The existing domain controllers are Server 2012 and the new one will be Server 2016.  The functional level will remain at Server 2008 R2
0
Hi all,
Recently I have created smtp rely on exchange .
I can send email to inside organization but unable to send external domain.
how can I configure smtp rely on exchange 2016 for sending external domain
0
How do you add a  azure ad user to a remote desktop users group?
0
hello

is there attributes added to a active directory user / group on prem ad ,in hybrd mode in office 365 ,that let me filter the list of users /groups that are being sync to azure ad /office 365

thanks.
0
We successfully completed a cut-over migration from Exchange 2010 to O365.  We utilized the Azure AD Sync Tool to populate all the users and sync all the mail.  The migration actually completed the first week of January.  I've left the exchange server up and running just in case something went wrong this whole time.  

On February 3rd, I disabled the Azure AD sync with O365, so now all mailboxes Sync Status shows the "Cloud" instead of "Sync with AD".  I left the Azure AD Connect Tool installed on one of our DC, and will remove it in the near future.

On February 6th, I powered down our Exchange 2010 server and then powered it back up yesterday, February 13th.  I just wanted to make sure any mail related services were not pointing to the Exchange 2010 server.  One week with the server off-line should be sufficient for this need.

Now I want to start removing the Exchange 2010 completely.  All O365 mailbox management will be done in the O365 console. and I simply do not want to have any exchange services within our local network.  I want to properly remove the exchange server so that all the Exchange AD attributes are properly removed in case we decide to install another on-prem exchange server in the future.  

I first want to know if I need to remove all the mailboxes before removing mailbox databases, etc.  I am using the following article to assist me remove Exchange:

https://tekbloq.com/2017/11/11/decommissioning-exchange-2010-mailbox-server/
0
I was wondering if I can use Azure to ping for connectivity, and if lost, send SMS..?
0
Working through some issues on a Server 2016 Essentials server and noticed that the remote web access portal site (remote,domain.com/remote) is not accessible internally (on the LAN) but works fine externally. If I ping the site internally from the Server 2016 Essentials server, it replies back with the public IP address of the server. This seems correct and matches what we see on other Server 2016 Essentials servers with Anywhere Access/RWA working internally and externally. Likewise, if we compare DNS settings (Forward Lookup Zones) between working and non-working servers, settings appear to be the same.

Internally, if I enter the public IP in a browser, the page does not resolve. Externally, it does resolve, as does the DNS address - remote.domain.com/remote.

Running the Anywhere Access repair wizard did not address the issue. It completes successfully, but does not allow us to access the site internally on the same LAN as the server. Doesn't matter if I try from the server itself or a client workstation.
0
We have been using Microsoft Azure Recovery Services Agent to back up local servers for the last 4 years.

About a year ago when I logged in to the Azure portal, I was prompted to choose "work or school account" or "personal account".

If I choose "work or school account" there are no resources there. No resource group or backup vaults.  If I choose "personal account" all the backups and resources are there.

Not sure how this happened but I want to move the resources from "personal" to "work".

When I try using the "move" utility under the subscription tab I get an error that says "you do not have any subscriptions to move resources to. Please create a new subscription"

 I have two subscriptions, a work and a personal.

Any idea how I can move the resources from the "personal" to the "work" account?  Is this something Microsoft has to do on the back end?

thanks,
cja
0
Hi team,

[Server00]: PS C:\Users\dperezb\Documents> Install-WindowsUpdate

Confirm
Are you sure you want to perform this action?
Performing the operation "(13/02/2020 8:59:39) Definition Update for Windows Defender Antivirus - KB2267602 (Definition 1.281.594.0)[197MB]" on target
"MDMVFS01".
[Y] Yes  [A] Yes to All  [N] No  [L] No to All  [?] Help (default is "Y"): A

X ComputerName Result     KB          Size Title
- ------------ ------     --          ---- -----
1 Server00     Accepted   KB2267602  197MB Definition Update for Windows Defender Antivirus - KB2267602 (Definition 1.281.594.0)
1 Server00     Accepted   KB4524244   67KB Security Update for Windows Server 2016 for x64-based Systems (KB4524244)
1 Server00     Accepted   KB4537764    1GB 2020-02 Cumulative Update for Windows Server 2016 for x64-based Systems (KB4537764)
Access is denied. (Exception from HRESULT: 0x80070005 (E_ACCESSDENIED))
    + CategoryInfo          : NotSpecified: (:) [Get-WindowsUpdate], UnauthorizedAccessException
    + FullyQualifiedErrorId : System.UnauthorizedAccessException,PSWindowsUpdate.GetWindowsUpdate

I connect with a administrator user.

Regards.
0
Document folder redirection was applied about a year ago, redirected to a file server with a path like \\server\users\Documents. These [url="https://docs.microsoft.com/en-us/windows-server/storage/folder-redirection/deploy-folder-redirection"] directions were followed. Upon creating the GPO for the redirection, a mapped drive was never specified as the ideal behavior was that the user would click on their Documents folder and have no knowledge of the files actually being on a server rather than saved locally. However, it appears that the policy created a mapped drive and the users have been accessing their files by clicking on the mapped drive instead of their Documents folder.

This wasn't an issue until one day the drive went from being Z: to U: and no users could find their documents. In the group policies, we cant find anything specifying a mapped drive. We have un-applied the GPO and redirected the documents to a different server. The new redirection works, and we specified a new mapped drive at \\server\users\%USERNAME%\Documents to avoid this issue in the future.

However, the Z: drive still appears, and short of creating a login script to delete the drive every time, I'm not sure how to get rid of it. Any advice?
0
In Azure, I set up two VM's, a Win2012 R2 DC and a Win10 workstation, both VM's in the same subnet 10.0.0.0/24.

When attempting to add the Win 10 workstation it says it cannot find a DC? I deleted the VM's and am about to try again, as I was getting pretty burnt out and frustrated. Figured I'd ask before I begin again. Is this a feasible lab scenario?

When attempting to add the Win10 workstation to the Domain, the message I was getting was that the win 10 workstation could not find a domain controller in the domain.  I went with Test.Com as my domain vs Test.local  Maybe that was part of my problem? This is my first Lab using Azure.

Is there an article on how to build this lab environment?  It's possible that I misconfigured something fundamental with DNS and or the IP stack on the workstation?

My goal is to have a Windows Domain Controller and a Win10 Pro or Enterprise workstation so that I can test GPO's and login scripts.

Then, my plan is to connect a Firewall to another location and set up additional workstations, but for now, I just want to get the single Azure domain up and running with just the two nodes.

Feedback appreciated.

R
0
Dear Team,

Recently we have upgarded our AD from 2008 R2 to 2016 .

When i do readmin everything is ysncing .
But when i use gpudate i am getting error on 2016 DCs but successful is 2008R2.

Can you please help me sort this.
I have attached the screenshot also.
lec3.jpg
0
I am exporting some logs from Microsoft Azure to an Excel CSV file and I would like to convert UTC time that is placed in cell A2 to AEST and place in B2.

I would prefer not to have to use a third party tool, so if there is a formula I can use would be great.

The Date Value in cell A2 look like this "2020-02-11T22:49:56.1699545Z" and I would like it to look like this in Cell B2 "11/02/2020 22:49:56"

Furthermore, if this cant be done is there a way that I can change the timezone in Azure so when I export the logs the dates are shown in EST ?

Any help would be appreciated.
0
I need help to set up Fortinet Firewall with NPS and Azure MFA, idea is to have NPS send for MFA request when signing into VPN.
Is this possible?
0
Hello,

I just setup a Windows Server 2016 server and I am looking at the Best Practices Analyzer results in Server Manager.

Some of the results such as "AutoDisconnectTimeout doesn't have the recommended value on this server." or "DurableHandleV2TimeoutInSeconds doesn't have the recommended value on this server", I do not know where to go and adjust it to the correct value.  

I click on the link "more information about this best practice and detailed resolution procedures" but it is just not available.

Someone who knows please advise.  

Thanks,
0
I have a client who have a requirements of detailed reports inquiry in all of their Office managed services and Azure Infrastructure.
We would like to know if Azure Sentinel can fill these requirements, I am going to detail some of these requirements but the list is longer than this.
If Sentinel can't do this on its own, Can you please suggest me to anything that can be integrated with Sentinel in order to properly finalize these requirements as needed?

Below are the details

A company is using Office 365 with Federated Identities (Azure AD Connect + ADFS) having a single UPN suffix @company.com for all company and downstream company users. Office 365 tenant name: company.onmicrosoft.com.

Azure AD SSPR is in place with password write-back capability and applied to all users. All mailboxes are hosted in Office 365 only, and NO on-prem mailboxes exists. HCW was never run in this setup, so hybrid Exchange doesn’t exist.


Only an Exchange 2016 on-premises server was installed recently to manage remote Office 365 mailboxes in a supported way, due to the change in objects source of authority after Azure AD Connect introduction.

Skype for Business hybrid doesn’t exists. Hence, all users are only using Skype for Business Online as the UC system in this Office 365 setup. Office 365 Groups, Teams, Yammer & Planner will soon be
introduced corporate wide.

All company users are using and expected to use E5 Enterprise Non-Conferencing PSTN and E5 EM+S licenses.
0
A Windows 10 Pro 1903 laptop will NOT accept new local user accounts at logon.
I've changed the passwords to no avail.
I've created new accounts to no avail.
I've run sfc, DISM, sfc to no avail.
Only the one (original?) user tied into AzureAD is working as expected.
(The computer is NOT domain-joined).

Other than reinstalling Windows, any suggestions?
1

Azure

Microsoft Azure is a cloud computing platform and infrastructure for building, deploying and managing applications and services through datacenters. It provides both platform-as-a-service (PaaS) and infrastructure-as-a-service (IaaS) services and supports many different programming languages, tools and frameworks, including both Microsoft-specific and third-party software and systems. Cloud Services is a PaaS environment and can be used to create scalable applications and services; there are specific software development kits (SDKs) provided by Microsoft for Python, Java, Node.js and .NET. Azure also has file and storage services, data management, analytics and DNS services.