Hi guys

How do you give someone the private key for the SSL certificate but un-encrypted? I don't get what they are saying.

I've got a Windows 2008 R2 web server that I created the CSR onto. Then I got the certificate from the provider and have applied the certificate to this to complete the request.

My colleague needs the private key. I exported it as a .PFX file, but when you do that, it is password protected. He needs it un-encrypted.

Do you use the MMC console to do this and then export it as a .CER file? Will that be correct?

Cheers
Yashy

I just configured tls1.2  on windows server 2008

User tls 1.0 and 1.1 also

How can I disable tls1.0

On tests it shows it is using tls 1.0

I am managing two separate locations, both have a single 2008 R2 DNS/DHCP server and they both hold the FSMO roles. I want to create a secondary DNS/DHCP server at each location for redundancy. Here is where my problem lies, I have 2 servers running server 2012 R2 to use as the secondary. I have had no issues setting up redundant DNS with the 2008 and 2012 boxes. I've hit a roadblock with DHCP and i'm not liking what Google has to say.

Ideally i'd like to run a DHCP hot standby with the 2012 box. Load balance is an option as well if needed. One site would have no issues running a split scope as i only have ~60 devices. The other location has almost 200 devices, a split scope would be difficult to pull off.

I cannot upgrade the 2008 r2 boxes but i can downgrade the 2012 r2 boxes to 2008 r2.

Any thoughts or ideas would be appreciated.

Thanks,

Tom

Unable to play videos in RDP session.

I administer a site that uses multiple RDS servers. The servers run as VMS under HyperV or Xen.  They all run Server 2008R2. Clients are mostly Wyse C10LE's with a few PCs.

The problem I have is that video content does not show in Internet Explorer11. If I got to Youtube and try to play a video, I just get "An error occurred, please try again later". Chrome works fine.

I have tried:
1. Using a Win10 PC instead of a Wyse client, no difference.
2. Toggled "Use software rendering instead of GPU rendering" under advanced IE options, (and rebooted), no difference.
3. Added YouTube to the trusted sites list, no difference.
4. Logging on with an admin account, no difference.

Any ideas?

IE releases a cumulative patch every month so seeing that we are missing a cumulative IE patch from 2015

how do we start a standard baseline.

we have altiris , so if we never check for updates on windows server , will it contact altiris

so which comes first WSUS or altris?

Sorry, this is such a NOOB question, but I'm asking it : (

Setting up a new user in SBS 2011 Standard.  Exchange is running on the server.

When the user goes to OWA, there's no contacts listed.   Shoulnd't that be populated with the GAL (the iist of users on the domain).

Someone new starts at the company and doesn't know how people's email addresses.

And is there a way to hide some people from the published GAL list?

This is likely networking 101, but.... I'm stuck.

SBS 2011 server at location A (192.168.1.0 subnet)
Location B is connected to location A with VPN, subnet 192.168.2.0.  The router at location B currently gives out public DNS IP addresses

What's the right way to set things up for domain added laptops running win 10 pro at location B to be able to access shares on the server like \\serer\files?  The server is the domain controller.  There's only that 1 server.

Use a Hosts file?  It has that now with entries:

server  192.168.1.3
server.domainname.local  192.168.1.3 (is this needed?)

When they click on a mapped drive, a windows security box pops up asking for credentials, and even though we check 'remember my credentials', it asks again after a reboot.  This window ALSO says 'the system cannot contact a doimain controller to service the authentication request.  Please try again later.

You click OK after adding credentials, get to the files and all is fine.  till a reboot.

What do I need to do so it can get to the domain controller across the VPN?

Why doesn't it save the credentials after a reboot?

Why does it even ask for the credentials - the user and password entered when logging in are the credentials.

THANKS!

Hi guys

I've just had to use the Active Directory Certificate Services to create a self-signed web certificate for our firewall. Our servers are Windows 2008 R2.

I've installed the certificate with a 2048 encryption, but now Google Chrome is having a hissy fit because it says that it is a SHA-1 and that it is untrusted.

Does the Windows 2008 R2 support SHA-2 at all? Or is this one of those doom day things that I can't do anything about unless i upgrade to Windows 2012R2?

Thanks for helping
Yashy

We're replacing a Windows 2008 domain controller, and we're confused about the existing domain name and logins.

All existing machines are members of the domain ABCCOMPANY.COM, but when users login to the domain, they use this domain name in their credentials:  DEF\username

In Active Directory Domains and Trusts, we see one domain:  ABCCOMPANY.COM.  The Properties of that show a Domain Name of (pre-Windows 2000) of DEF .

In Active Directory Users and Computers/Domain Controllers, we see two devices:  Server1 and Server2.  Server1 is nowhere to be found; that is, it has been turned off and relegated to a closet somewhere.  It is still designated as a DC, Domain Controller.  Server2 is still quite active and is designated as the GC, Global Catalog.  We intend to de-commission Server2.

Our questions are these, but additional specific info is welcome.

1.  Why is the DEF part of the login credentials so prevalent?  Is it simply because of the pre-Windows 2000 name?

2.  When should we use DEF moving forward?

3.  We believe that the original local domain should not have a .com extension.  In moving to a new domain controller and demoting the old one, should we re-name it?  (And of course we can educate ourselves via Google, but what steps are taken to rename it?)

Thank you... as is often the case when one is confused, we're not 100% sure what to ask, so please feel free to enlighten us in this area.

hello experts
it has been perplex me for a long time, our company wireless network is using domain computer object authentication to connect, it is pushed by GPO.
sometimes a computer can't connect company wireless because authentication failed, tried reset computer account in ADUC but it doesn't help, i have to quit computer from domain then rejoin to fix it, so i think the computer subject must have something changed on client side or AD side which doesn't match anymore, but except wireless connection issue this computer works well under AD environment.
so you could you help investigate what is the culprit for my case?

thank you

Hello Everyone,

Need to dig up an old issue briefly. The last time I tried to migrate a DHCP scope to an existing DHCP server (authorized and servicing scopes, but not in the same range as the ones being migrated over) I got an error “Error while importing option 6. This option conflicts with the existing option". Apparently this is the case because the already existing server added the entries for 006 DNS Server and 015 DNS Domain Name when it was installed/authorized. At the time the best recommendation I could find was to delete those two entries from the DHCP server options and then run the import (obviously DHCP scope would be exported from the source server) again. The last time I got around it because I had a server we could move the DHCP to that never had DHCP before and thus no previous entries existed. This time I have to move it to an existing DHCP server. However, I would like to understand what is the risk of deleting those two entries and has anyone ever done that step?

The other option would be to export only the v4 aspect of the scope since (as far as I understand it) the option for exporting specific scopes is split into v4 and v6 subcommands. So running something like this: netsh dhcp server v4 export c:\dhcp "192.168.1.0" might work because including the v4 portion of the command allows for the export of a single scope.  This also gets around the "class conflicts with an existing class" error message that is returned when you try to import an entire …

I have a Warehouse Management Systems running on window server 2008. It seem slow accessing the WMS at times and I don’t see any issue with the network.

I run Wireshark on the network and see everything is working just fine and run continuous ping using ping plotter show latency within 4ms Avg.

Asking if anyone has any idea on how isolate if the issue is with the WMS application, window server itself or some services on the server that causes the issue.

The window server is hosted on VMWare with 8vcpu and 8gb ram

Hi Guys,

I am looking for a recommendation for an antivirus solution to be installed on a Windows 2008 R2 server.
The server is running a smart host mail server (not Exchange),

Any ideas are welcome?