[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More


Windows Networking





The Windows operating systems have distinct methodologies for designing and implementing networks, and have specific systems to accomplish various networking processes, such as Exchange for email, Sharepoint for shared files and programs, and IIS for delivery of web pages. Microsoft also produces server technologies for networked database use, security and virtualization.

Share tech news, updates, or what's on your mind.

Sign up to Post

Hi all,

Lately, we've had a spike in user's devices losing trust relationship with our domain (we've only one domain).

We've made no changes recently to the domain or domain controllers. Can anyone point me in the direction to what might be the cause of this and what health check I can run that might highlight what the cause is?

Fundamentals of JavaScript
LVL 12
Fundamentals of JavaScript

Learn the fundamentals of the popular programming language JavaScript so that you can explore the realm of web development.

What are the best practices providing Admin access for Active Directory for Developers.
Devs writing an application that will authenticate using active directory. In order to do so they will need to generate a key the
application. They will also need to create different groups of users and place users in the groups. They believe having admin access will make this a lot easier than asking for each thing in turn.

How is everyone dealing with these similar requests?  Please advice.
What to adjust on server, as port 993 is not responding, like is responding on port 80 (http). isn't responding on port 993 (imaps).
while I already opened TCP & UDP Inbound & Outbound Firewall rules on 993 port.
I know it is going to be a huge, huge list but is there a utility out there that will go through every folder and sub folder on the server and report who has what rights to those folders?
I am currently with Ivanti formally known as Shavlik patch management.  My 3 year is about to expire, what I was paying for 3 years is now what I will have to pay for 1 year so we can not continue with Ivanti.   Does anyone have any recommendations on a patch management system that has a reasonably  price structure?

I have a standalone windows 2016 server in a datacenter
It was nagging about a remote desktop licence key but I assumed it was because I haven't activated windows

Its not stopped accepting remote desktop sessions with the error:
The remote session was disconnected because there are no Remote Desktop License Servers available to provide a license

I logged into the host console and applied my licence key to activate windows 2016 server, but its still having the same issue where i cannot connect on RDP

All my others servers in the past have not had these issues.
This server sits on its own with no other (of my)  servers around it, and only 1 user account to access it

Can anyone help me get it working?
OK, Friends. I need help with DNS, DOMAIN CONTROLLER on Windows 2016 Stadard

I try to find out how to add additional DC to my Windows 2012R2 functionality forest but I have so many problems.

I'm in the middle of moving all my 2012 R2 servers to new hardware with new OS  - Windows 2016

I have installed new OS for server that will be my new DC with FSMO role.
I did this many times in the past so whole procedure is straight forward but not this time
My problem is that since I'm running out of IP addresses in my 10.0.0.x family I've decided to extend my subnet by installing Superscop on my DHCP server. This was done a year ago and all is working OK since.

I've changed network mask for all computers from to to give them access to 2 subnets 10.0.0.x and 10.0.1.x
Simple yes ?
I've confirmed and my DHCP server is assigning IP from new subnet / second superscope as soon as first is full. This is what I want.

So I've installed new server and I've installed AD DS role on it.
All went smooth. I've restarted server and run configuration to promote this new server to be a third DC

and here we go:
I'm getting an error.

On first step - Deployment Configuration I have error:

The wizard cannot access the list of domains in the forest. The error is: The network path was not found.

I did a lot of research in internet but all points to DNS issue which in my configuration is OK.

I have 2 DCs in network:

Master: - also DNS,…
Hi Team,
I have a project that involves moving my secondary domain controller to a cloud environment on a different not-NATed subnet. Unfortunately, in the process of doing a bare metal copy using VEEAM Agent, my DC02 came up malfunctioning, As a result of tweaking and ruminating it seemed easier to just bring the local copy of DC02 back online. My plan now is to just build a new third domain controller (DC03) and decommission the second one. My post is mostly for the sake of gathering thoughts, advice, and little-known information when it comes to setting up a new DC as this will be my first rodeo.

My current setup (IP addresses are used as an example):
DC01 ( - Primary DC (AD, DNS, DHCP, Certs) on 2008 r2 on a physical device.
DC02 ( - Secondary replicated AD and DNS on 2008 r2 in vSphere on an ESXi host.
DC03 ( - My third DC will be built in a vCloud Director environment, likely running Server 2012 or 2016. This device will also be in a different subnet, Routes have already been established and the machines that are currently there all work correctly with the devices in my local subnet.

Are there any issues replicating AD and DNS from 2008 r2 to 2012 or 2016? Would I be better off just building a 2008 r2 machine in my VCD environment, or perhaps upgrading my primary from 2008 r2 to 2012 or 2016?

What is the industry standard for setting up and configuring a third DC and then decommissioning the secondary, such as in…
Hi guys,

I got a dlink switch and synology nas.
Got link aggregation (2 ports) from switch to nas.
How do I test the performance ? Is there any way to test read write performance through link aggregation .

I just want to see the difference between a single port connection and link aggregation to either server/nas ?? Just wanted to prove a client there is a difference with actual facts!
Problem printing to 2 win 10 1803 PC. One is a desktop, both are brand new machines, one a laptop,
I Have 6 other win 10 PC’s in office including another laptop, all these work.
Current Users are administrator user,
NO AD, just workgroup
All pc’s are updated

I have done all the following changes,

Turned off firewalls and A/V completely, same Server connection error from bizhub c364
Turned on firewall, open all smb ports and port 445 to allow scans, same Server connection error from bizhub c364
Deleted then scans folder and recreate folder and sharing with everyone at full control, and current user sign in name as full control, same Server connection error from bizhub c364
Deleted and re completed the registration in address book.
Have also tic’d and untic’d the smb1 feature in add and remove features.
Have also turned OFF/ON file sharing, network discovery, and file sharing in network advanced settings

All other PC’s (Win 10 1803) work fine using the following registrations, example given,

Host Name--  (IP) address of the pc)
Folder--            scans      (shared scan folder with full permissions off the C drive like others)
User name            user      (local user name)
Password      password      (local user name password)

The error from the bizhub never changes, “server connection error”
all pc’s have no internet issues, can ping printer IP from the 2 not working, have powered printer on and off. Very frustrating. I am to believe that smb2 is already enabled …
Starting with Angular 5
LVL 12
Starting with Angular 5

Learn the essential features and functions of the popular JavaScript framework for building mobile, desktop and web applications.

I have a client who has an application which involves a combination of VBScript and Access to download data from an FTP site and then process that data into multiple Access databases. I'm not happy with the way this was implemented but I'm stuck with it.

I received an email this afternoon which indicates that about 15-20 of the files that should have been downloaded and processed on Monday did not make it into the Access databases.

Indications are that something occurred on there servers which affected their authentication service.  Any chance that this would have affected ADO communications between the VBScript and the Access BE databases?  I'm not a huge fan of VBScript or ADO and don't use either often enough to know what will or will not affect them.


We have a client who share data between 2 computers. PC2 connects to PC1 for shared data and some software.

Intermittently, PC2 loses connection to PC1. The share is setup as \\PC1\ Data. When we dial in, we can ping the IP address but not the PC name.

More often than not I will add a shortcut using the IP Address and then the the original shortcut using the PC name will then work. We have tried setting the shortcuts using the IP address but this had the same issue but in reverse.

I have set PC1 to static, checked Computer Browser service and UPNP are set to auto on both. Disabled all advanced sharing settings, reinstalled SMB from features and then Enabled all advanced sharing. It will work for a period of time and then lose connection again.

Any suggestions?
I have Microsoft loopback adapter set in a windows server 2016 datacenter machine.  In the past , with windows server 2008 e.t.c , I could go to Network and sharing center -> Change adapter setting -> Advanced settings   and change the order of the network adapter to give loopback adapter the highest priority. But In Windows server 2016 DC , I don't see that option. Hiw do I get it ?
I have several directory structures and I want users to be able to edit files in those directory structures but I do not want them adding files or changing the directory structure. Can this be done with NTFS Permissions?
I am trying to create a GPO to deploy the remote desktop connection shortcut(mstsc.exe) on all users desktops on the domain.

This is what I have:
I went into system32 and made a copy of the mstsc.exe file.
I then pasted the mstsc.exe into a share that I have on my C drive on the domain controller.
The permissions all the way through the share are everyone and domain users.
I'm starting the GPO at the root of my domain it is configured as a user policy
I am running gpudate on the DC & the client workstation.

I have included screenshots of the configuration.

I have never done this before, can someone assist me with this configuration. I will provide any additional information you may need.
Thank you.

Hi Experts

Could you point a way a Windows7 / 10 user's  login configuration could prevent an user to see network locations at Windows Explorer?

Some files needed to operation remains at network folders , the app needs to read this files during operation but the operator can't access it due security reasons.

Thanks in advance.
Our business just got a new copier.  The old copier drivers work on the new copier, but I want to update workstations to the new driver.  So, I added a 2nd printer GPO (users/policy/windows/deploy printer) and (computers/policy/windows/deploy printer), so the transition would be seemless to the end user.  In a couple weeks, I want to remove the old printer driver gpo (gpo setup the same way).  If I simply delete the old gpo, will the printers disappear from the users device & printers?  If not, what do I have to do to remove the old printer install?

I have created an application that adds permissions to a Shared Folder on a Window server (this is important as I'm setting permissions on a share and NOT NTFS).

I now need to do the opposite and remove the group 'Everyone' from the Share permission.  I have a piece of code that gets the existing permissions as follows:

 Dim securityDescriptor As ManagementBaseObject = TryCast(securityDescriptorObject.Properties("Descriptor").Value, ManagementBaseObject)
        Dim existingAcessControlEntriesCount As Integer = 0
        Dim accessControlList As ManagementBaseObject() = TryCast(securityDescriptor.Properties("DACL").Value, ManagementBaseObject())

        If accessControlList Is Nothing Then
            accessControlList = New ManagementBaseObject(0) {}
            existingAcessControlEntriesCount = accessControlList.Length
            Array.Resize(accessControlList, accessControlList.Length + 1)
        End If

As you can see above, I am using an ACL list and I extend it  so that I can then add the new ACL for the group I want to give permissions to.  I now wish to do the opposite and remove an entry from the accessControlList.

Now, I am convinced that if I were to remove one of the existing entries from this accessControlList before committing it back, that would remove a permission for an existing object but I don't know how to enumerate the accessControlList to find the entry I want to remove.

In pseudo-code, this is what I …
We are looking at some interesting connections that appear to be inbound from the below snippet:
Incoming connection from ( [source ip here] Port 46525 ) to svchost.exe

The source of the incoming traffic is connected to an external suspicious ip address and not part of our infrastructure.  We would like to see if there is a way to determine whether incoming traffic with svchost.exe as the communicating file can be reasonably white listed?

Is there a set of expected source ip's that we could reference that would allow us to sift out possible known external ip's that are valid incoming connections to an svchost.exe process running on an end point?
CompTIA Network+
LVL 12
CompTIA Network+

Prepare for the CompTIA Network+ exam by learning how to troubleshoot, configure, and manage both wired and wireless networks.

I have hardware VPN with two draytek routers. ip on one side and on the remote side.

My dns server (windows 2012) is set on the 192.168.1.Χ network.

If i try nslookup domain.name on the remote location ( i get good results: (dns)  and i also get the domain name.

If i try nslookup domain.name in the 192.168.1. X network is get "non existent domain"!

I'm able to ping the dns server and i'm also able to ping to FQDN.

Any possible solutions? Any recommendation on what to look?

We had a power outage and unexpected power shutdown on our RDP server and now I am not able to RDP thorough the internet.
It says Error: Unable to display RD Web Access.  On the event viewer says The service did not start due to logon failure.
Not sure if this service  start by local system account or domain administrator account.

I logged into the RDP server and some of the services have stopped and if I start the  Remote desktop connection  , I get the Error 1068.

On the RDP server I click the remote desktop services, it says “The server pool does not match the RD connection Broker that are in it”

On the event viewer i get event 7001, Source - service control manager

Please see the snapshot.
 Any help to resolve this would be great and thanks in advance.
Dear Experts

We recently deployed CRM application which is web based and deployed on windows 2012 R2  running IIS and MSSQL 2012, webserver is separate and MSSQL is separate both have enough RAM and CPU but users are experiencing slow, please suggest what could be causing this, how to do performance tuning for  IIS 8.5 and MSSQL performance tuning please suggest.
Dear Experts

We have done integration for the CRM application with external web portal, the CRM application is behind firewall and the web portal is in public cloud, integration is done through WEB API from the CRM application we able to update the records to the web portal but from the web portal records are not creating or updating in CRM application. Please help on the following
1.      As this is windows server 2012 installed with IIS how do we check the request from web portal which is from internet is hitting to CRM application.
2.      CRM application is not showing up any logs hence how to check it from windows server level and IIS
Please suggest. thanks in advance.
We have a domain controller that is being used as a file server, and has several different folders that users have mapped drives to. One of these folders has 6 users mapped to it, and it is continually disconnecting from those users on a very sporadic basis. We have added it manually, written a script to add it, and attempted a group policy, but it continually disappears from their file browser.

It is only the one shared drive, all of the others work fine. Additionally, it is not all users as of yet, but we have added it again for some of the users experiencing the problem, and it has not showed up again.
Remote users not getting notified when their network password needs changing

We have a Microsoft network using a Cisco VPN and have remote users

The problem is  the remote users never gets notified that they need to change their password
The password is not changed and the remote user gets locked out- since they were never notified

I was told there is no fix

Anyone have a solution?

I am being dinged by auditors since I have to have the remote users Network passwords set in Active Directory that they cannot be changed

Windows Networking





The Windows operating systems have distinct methodologies for designing and implementing networks, and have specific systems to accomplish various networking processes, such as Exchange for email, Sharepoint for shared files and programs, and IIS for delivery of web pages. Microsoft also produces server technologies for networked database use, security and virtualization.