PeopleSoft Adoption Made Smooth & Simple!
On-The-Job Training Is made Intuitive & Easy With WalkMe's On-Screen Guidance Tool. Claim Your Free WalkMe Account Now
Course Of The Month
8 days, 14 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Windows Server 2008
83K
Solutions
82
Articles & Videos
36K
Contributors
Windows Server 2008 and Windows Server 2008 R2, based on the Microsoft Vista codebase, is the last 32-bit server operating system released by Microsoft. It has a number of versions, including including Foundation, Standard, Enterprise, Datacenter, Web, HPC Server, Itanium and Storage; new features included server core installation and Hyper-V.
Share tech news, updates, or what's on your mind.
I'm trying to copy all files from one folder to another on the same drive
I tried xcopy d:\FTP\filename\*.* D:\filename /v /f /s but I don't see the file and its also asking me if it's a file or directory. I'm trying to automate it where it will just copy any file in the first folder. what am I doing wrong?
I tried xcopy d:\FTP\filename\*.* D:\filename /v /f /s but I don't see the file and its also asking me if it's a file or directory. I'm trying to automate it where it will just copy any file in the first folder. what am I doing wrong?
1 Comment
PeopleSoft Has Never Been Easier
Hi all,
We have just upgraded our internal ROOT CA to use SHA256. The upgrade is as expected im just wondering now how to we get the new 256 ROOT certificate out to the trusted ROOT CA repository of the clients that we are potentially upgrading the certificates on?
We have just upgraded our internal ROOT CA to use SHA256. The upgrade is as expected im just wondering now how to we get the new 256 ROOT certificate out to the trusted ROOT CA repository of the clients that we are potentially upgrading the certificates on?
Hi all,
Im trying to implement a more secure means of using RDP. Having read up about I feel the TLS enabled option would be sufficient. Having configured the host session properties on teh server to use SSL 1.0, encryption level high and ticked the box for allow connections from computers running NLA with auto generated Certificate. Haivng logged out and back in again I notice its still communicating over port 3389. Is this correct? Can I test whether this is encrypted?
Im trying to implement a more secure means of using RDP. Having read up about I feel the TLS enabled option would be sufficient. Having configured the host session properties on teh server to use SSL 1.0, encryption level high and ticked the box for allow connections from computers running NLA with auto generated Certificate. Haivng logged out and back in again I notice its still communicating over port 3389. Is this correct? Can I test whether this is encrypted?
I have a file server a 2008 r2 64 bit machine. I have files designated by departments and no inheritance (I take it off). My question is as much as I'm trying to not allow access to unauthorized users, sometimes I have to mix it up. I need to have one folder to be accessed by other users that are not in the department. I don't want to actually share the folder but just give permission to that folder I do not want the users to be able to see anything except that one folder and what's in it. What's the best way to accomplish this? this department also has files that are not in folders and I don't want the other users to be able to access them either.
I have two particular vulnerabilities that were found by our Qualys scan.
Vulnerability 1: SSL/TLS Server supports TLSv1.0
Solution disable TLS 1.0
What I did. Set the registry entries below.
[HKEY_LOCAL_MACHINE\SYSTEM
"DisabledByDefault"=dword:
[HKEY_LOCAL_MACHINE\SYSTEM
"Enabled"=dword:00000000
The vulnerability is still showing up.
Vulnerability 2: Birthday attacks against TLS ciphers with 64bit block size vulnerability (Sweet32)
Solution: Disable DES and 3DES.
What I did.
Set the following Reg entries:
[HKEY_LOCAL_MACHINE\SYSTEM
"Enabled"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM
"Enabled"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM
"Enabled"=dword:00000000
For some reason the vulnerabilities are still showing up on the server. I have followed what I have read on microsoft. I am beginning to think that it is a false positive.
Vulnerability 1: SSL/TLS Server supports TLSv1.0
Solution disable TLS 1.0
What I did. Set the registry entries below.
[HKEY_LOCAL_MACHINE\SYSTEM
"DisabledByDefault"=dword:
[HKEY_LOCAL_MACHINE\SYSTEM
"Enabled"=dword:00000000
The vulnerability is still showing up.
Vulnerability 2: Birthday attacks against TLS ciphers with 64bit block size vulnerability (Sweet32)
Solution: Disable DES and 3DES.
What I did.
Set the following Reg entries:
[HKEY_LOCAL_MACHINE\SYSTEM
"Enabled"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM
"Enabled"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM
"Enabled"=dword:00000000
For some reason the vulnerabilities are still showing up on the server. I have followed what I have read on microsoft. I am beginning to think that it is a false positive.
cmd:
net stop wuauserv The service is starting or stopping.
Services is set to automatic.
Can I restore services?
Thanks
123nitab
net stop wuauserv The service is starting or stopping.
Services is set to automatic.
Can I restore services?
Thanks
123nitab
I need to mount a ISO in 2008 server. Anybody have a free good tool to use?
Hello,
I have a program called PolicyTech my users use and sometimes within the program it will call for a word module to be installed. Now when this happens the users system will be prompt for UAC credentials and prevents the user from installing the module successfully. This is a program and install that we approve, however we do not want to disable UAC, but figure out a way to push a GPO to allow for this program and word module to install without UAC credentials needed. I appreciate anyone that can help me figure out how to set a GPO to allow what I am trying to accomplish for my users.
Thanks,
nimdatx
I have a program called PolicyTech my users use and sometimes within the program it will call for a word module to be installed. Now when this happens the users system will be prompt for UAC credentials and prevents the user from installing the module successfully. This is a program and install that we approve, however we do not want to disable UAC, but figure out a way to push a GPO to allow for this program and word module to install without UAC credentials needed. I appreciate anyone that can help me figure out how to set a GPO to allow what I am trying to accomplish for my users.
Thanks,
nimdatx
This is really just an annoyance, but I have some KILLED/ROLLBACK spids from failed attempts to select data from Excel (working fine now), and I'd like to get rid of them without restarting the SQL service because it's on a production machine. I've read that restarting DTC might work, but will SQL patiently wait for the service to come back up or will users receive errors if they run a query requiring DTC? The machine is not clustered but does have linked servers. The box is Windows Server 2008 R2 and SQL 2008 R2. Google was an infinite rabbit hole. Thanks!
in windows server 2008 onwards we use ntdsutil commands to perform database maintainace and removal of metadata
do we use the same in windows server 2003 also
do we use the same in windows server 2003 also
Problems using Powershell and Active Directory?
Managing Active Directory does not always have to be complicated. If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why
How can I Reset forgotten local administrator user password in window 2008
Is it possible for me to map a drive for someone to some files on my server without giving them permission on the server or how would I set this up on the server side to ensure minimal access.
I recently concluded a successful domain migration from windows Server 2008 to Windows Server 2012 R2 Essentials. The new server is acting as a DC and is operating well.
However I have a problem Adding roles and Features. I tried installing the DHCP Role on 2012 in order to migrate DHCP from 2008 but I keep receiving the following Message:
"The Request to add or remove features on the specified server failed. The operation cannot be completed because the server that you specified requires a restart""
It does not appear to matter which role or feature is selected The result is the same and numerous restarts have not resolved the problem,
Has any one come across this problem before and resolved it? Many thanks
However I have a problem Adding roles and Features. I tried installing the DHCP Role on 2012 in order to migrate DHCP from 2008 but I keep receiving the following Message:
"The Request to add or remove features on the specified server failed. The operation cannot be completed because the server that you specified requires a restart""
It does not appear to matter which role or feature is selected The result is the same and numerous restarts have not resolved the problem,
Has any one come across this problem before and resolved it? Many thanks
I have a 2008 R2 server that had a GPO applied/enforced to all systems. This caused a lot of permissions problems and wont let a few applications launch.
How can I sort of "undo" this?
If i want to apply a "default" or blank GPO to the users, how can I do this? Effectively leaving them without any restrictions
How can I sort of "undo" this?
If i want to apply a "default" or blank GPO to the users, how can I do this? Effectively leaving them without any restrictions
Im removed a DC\DNS server off our network. I am at the "remove DNS delegation" step. This is only the delegation to this specific server, correct? I am refreshing our servers to 2012 and this is our old 2008 server. We have the 2012 currently online as the production server.
Its been awhile since I have demoted a server to remove off our domain so I wanted to make sure.
Its been awhile since I have demoted a server to remove off our domain so I wanted to make sure.
I have a domain with two 2008 R2 servers, one being the licensing host and one being the license server. We want to add a 2012 server as well. Will the 2008 RDS licenses cover the 2012 server or do we need to add 2012 RDS licenses? If we do, which I expect to be the correct answer, can the current 2008 license server handle those at the same time as the current 2008 licensing requirements which won't change.
Hello,
I am looking for a way to pull information on all my shares on my domain/network. I am preparing to plan out a backup strategy for my environment. I understand I can use server manager, net share, etc.., however looking for another tool I can use and allows me to export data to an excel spreadsheet.
Thanks,
nimdatx
I am looking for a way to pull information on all my shares on my domain/network. I am preparing to plan out a backup strategy for my environment. I understand I can use server manager, net share, etc.., however looking for another tool I can use and allows me to export data to an excel spreadsheet.
Thanks,
nimdatx
Picked up a job half way through and discovering lots of problems...
A customer has an old SBS2008 but is adding a Server 2012R2 Essentials to replace the SBS. Exchange has already been decommissioned in favour of Office 365.
The new server has been added as a DC and the migration started - FSMOs were moved over successfully. I've been called in to help them make the final swap but I couldn't edit any Group Policy - then noticed that the new DC didn't have a SYSVOL or NETLOGON share.
Looked at the old server and there's lots of JRNL_WRAP_ERROR errors which have lead to this I think. FRS error 13568 - these have been going on for a long, long time unnoticed.
As this server is going to be decommissioned shortly, are there any shortcuts to get round this. Don't want to force it off the domain until I can edit Group Policy on the new server. Also really, really don't want to have to demote the new server as they've installed a serious bit of software on it which we can't easily reinstall without great cost.
Any advice welcomed. Thanks, Ian
A customer has an old SBS2008 but is adding a Server 2012R2 Essentials to replace the SBS. Exchange has already been decommissioned in favour of Office 365.
The new server has been added as a DC and the migration started - FSMOs were moved over successfully. I've been called in to help them make the final swap but I couldn't edit any Group Policy - then noticed that the new DC didn't have a SYSVOL or NETLOGON share.
Looked at the old server and there's lots of JRNL_WRAP_ERROR errors which have lead to this I think. FRS error 13568 - these have been going on for a long, long time unnoticed.
As this server is going to be decommissioned shortly, are there any shortcuts to get round this. Don't want to force it off the domain until I can edit Group Policy on the new server. Also really, really don't want to have to demote the new server as they've installed a serious bit of software on it which we can't easily reinstall without great cost.
Any advice welcomed. Thanks, Ian
I have a Dell T320 server that we just restored from an image backup. It had two (of three) RAID drives in predicted fail, when we removed one to replace it the RAID died immediately. Rebuild of RAID with new drives and then restore from backup went smooth. Now I'm having some trouble.
I'm also confused about how it's getting to the advanced boot menu to prompt me to enter system recovery without a Windows volume.
- On boot, it tries to enter system recovery.
- If I tell it to boot normally, it tries to load Windows then restarts.
- If I go into system recovery, it can't find the Windows installation and asks for drivers or an image to restore. If I load RAID drivers, it finds a Windows install on the RAID volume, which is mapped to the next available drive letter. (Not C:)
- Then I can run startup repair and it will prompt for a reboot and boot Windows properly. (With the right volume mapped to C:)
- The system runs mostly fine. I have a .NET issue I'm working on but I THINK it's unrelated.
- If I reboot the system it goes back to the beginning.
I'm also confused about how it's getting to the advanced boot menu to prompt me to enter system recovery without a Windows volume.
How our DevOps Teams Maximize Uptime
Our Dev teams are like yours. They’re continually cranking out code for new features/bugs fixes, testing, deploying, responding to production monitoring events and more. It’s complex. So, we thought you’d like to see what’s working for us. Read the use case whitepaper.
I currently have a 2008 r2 server that is my file server - (I'm move to 2012 soon) I have this configured with a USER folder for user drives and in that user folder there's individual folders for the users which are mapped via Active Directory Profiles. The next folder is a SHARE and within that SHARE are individual folders. Obviously ever time I create a new folder within SHARE it inherits the permission from the SHARE. I'm needing to know if there's a way around this. Can I not share the SHARE folder and just give individual groups access to the folders, will this work? Or is there some way of stopping the inheritance? Not everyone on the Top SHARE folder needs to access the individual folder within and it's a mess because I have to keep removing and adding groups. Basically what I'm trying to accomplish is I do not want anyone to have access to something they are not supposed to.
Hi all,
We use our internal CA using a SHA1 to create certificates for internal web services. We are now tasked with upgrading this to SHA2. My colleague has suggested we renew all SHA1 certificates so that nothing is set to expire within the next 12 months. We will then look to upgrade the rootCA but im concerned that once we do that all the web certificates will need to be upgraded?
Can someone clarify what happens when the ROOTCA is upgraded to SHA2?
It will be difficult to know whether all web services are SHA2 compatible, is there a way to create a separate SHA2 ROOT CA?
We use our internal CA using a SHA1 to create certificates for internal web services. We are now tasked with upgrading this to SHA2. My colleague has suggested we renew all SHA1 certificates so that nothing is set to expire within the next 12 months. We will then look to upgrade the rootCA but im concerned that once we do that all the web certificates will need to be upgraded?
Can someone clarify what happens when the ROOTCA is upgraded to SHA2?
It will be difficult to know whether all web services are SHA2 compatible, is there a way to create a separate SHA2 ROOT CA?
Hi,
Does anyone know why a domain user not able to RDP to machine. I have added the person under group " Remote Desktop Users" on the server itself. Everytime i try to login i get message saying ""to Sign in remotely you need the right to sign in through RDS etc..."
Unless i make user Local Admin on server, it doesnt work. However i dont want to make them Local admin. Just be able to RDP to server.
Does anyone know why a domain user not able to RDP to machine. I have added the person under group " Remote Desktop Users" on the server itself. Everytime i try to login i get message saying ""to Sign in remotely you need the right to sign in through RDS etc..."
Unless i make user Local Admin on server, it doesnt work. However i dont want to make them Local admin. Just be able to RDP to server.
Greetings,
We have a Windows Server 2008 R2 AD DC, I'm applying the Windows 10_Server 2016 templates to make some changes for Windows 10. I've downloaded the msi, installed on my local computer and copied the PolicyDefinitions over to the Central Store on the domain controller. I'm looking for a specific item regarding windows 10, that I'm not seeing in the Domain Group policy I'm modifying.
The setting I'm looking for is the Interactive logon: Machine account lockout threshold.
I assumed it should be under this path: Computer Configuration > Policies > Windows Settings > Security Settings > Local Policies > Security Options
I can find this setting on my machine in the Local Policies,, but I don't see it in the domain policies.
Am I missing a step when copying over these templates?
Thank you,
We have a Windows Server 2008 R2 AD DC, I'm applying the Windows 10_Server 2016 templates to make some changes for Windows 10. I've downloaded the msi, installed on my local computer and copied the PolicyDefinitions over to the Central Store on the domain controller. I'm looking for a specific item regarding windows 10, that I'm not seeing in the Domain Group policy I'm modifying.
The setting I'm looking for is the Interactive logon: Machine account lockout threshold.
I assumed it should be under this path: Computer Configuration > Policies > Windows Settings > Security Settings > Local Policies > Security Options
I can find this setting on my machine in the Local Policies,, but I don't see it in the domain policies.
Am I missing a step when copying over these templates?
Thank you,
I have an Exchange Server running on Windows Server 2008 R2. Exchange Version 2010. Total Users are about 30. I just started using backup software, and every time I initiate a backup, it always says "Mailbox Replication Service is not running". I then manually restart the service and Re-Run the backup but still the same result. I also found a patch from Microsoft and when I try to install it, it says installation ended Prematurely. It is my clients Exchange Server, and we are just maintaining it. I can't re-install the whole Exchange. Did reboot my server multiple times, all the backup progress is stuck in QUEUE at either 0% or 10% but nothing is going on.
I tried adding some security GPs to a domain controller. Now that GP will not replicate or allow any GP updates to be performed on itself.
I tried dcpromo to demote it and got the above error.
The rest of the message was
Active Directory Domain Services could not transfer the remaining data in a directory partition: CN=Schema,CN=Configuration
to AD DC dc6....
Someone suggested stopping the KDC service. Did not help.
I tried dcpromo to demote it and got the above error.
The rest of the message was
Active Directory Domain Services could not transfer the remaining data in a directory partition: CN=Schema,CN=Configuration
to AD DC dc6....
Someone suggested stopping the KDC service. Did not help.
Windows Server 2008
83K
Solutions
82
Articles & Videos
36K
Contributors
Windows Server 2008 and Windows Server 2008 R2, based on the Microsoft Vista codebase, is the last 32-bit server operating system released by Microsoft. It has a number of versions, including including Foundation, Standard, Enterprise, Datacenter, Web, HPC Server, Itanium and Storage; new features included server core installation and Hyper-V.
Top Experts In
Windows Server 2008
-
1
Shaun Vermaak7,800 points -
2
David Johnson, CD, MVP7,200 points -
3
Lee W, MVP5,843 points -
4
John Hurst5,000 points -
5
Sarang Tinguria5,000 points -
6
Ajit (Kevin k)5,000 points -
7
Dan McFadden4,800 points -
8
Adam Brown4,706 points -
9
Lionel MM4,100 points -
10
Kimputer4,000 points -
11
FOTC4,000 points -
12
-MAS4,000 points -
13
Aaron Tomosky3,800 points -
14
Wayne883,500 points -
15
Cliff Galiher3,500 points -
16
Adam (CodeTwo Software)3,072 points -
17
NorthernTel & Telebec Managed Services3,028 points -
18
Satish Auti3,022 points -
19
Scott Silva3,000 points -
20
Dustin Saunders2,932 points -
21
Philip Elder2,800 points -
22
Jackie Man2,800 points -
23
Coralon2,800 points -
24
Tom Cieslik2,800 points -
25
masnrock2,700 points