Experts,

Within a command prompt on a windows server 2012 what is the NETSTAT syntax to query for port 8080 that is LISTENING?

Hello experts,
I just purchased a Dell Power Edge R540 and installed Windows Server 2012R2 64bit, I need to install an HD video card but I am having a hard time finding one for up to $250.
Anyone recommend a video card I can purchase?

Thank you in advance.

I have a  1 line batch command file(tbd.bat). In the batch file there is a line which is used to set/ create a time stamp.  When I run this batch file on Windows server 2012 the batch file works perfectly. However if I run it on my local PC, it isn't working. instead it just echoes the command to the screen.  Does anyone have any idea why it won't run on my local pc, and only on the server? I have also tried it from another local PC, and again it only echoes the command

tbd.bat :
set timestamp=%datetime:~0,8%_%datetime:~8,4%

On windows server 2012 the output from running the batch  is : set timestamp=20190212_1201

On my local PC the output of running the batch  is : set timestamp=~0,8datetime:~8:4

We have a Cisco WLC 5508 with two SSIDs that point to the same 2012R2 server running NPS. Let's call the SSIDs USER and IT

I created two Network Policies in NPS: USER allows any domain user to join. IT should only allow members of the IT Wireless domain group to join.

Radius authentication works for all users. The problem I'm having is that any domain member is currently able to join the IT SSID via radius. I added the NAS-ID to the WLAN and to the Network Policy but that didn't seem to help. I'm not sure if the WLC is passing over what it needs for NPS to identify which SSID is being joined.

Any suggestions welcome.

Thank you

Hi,

As far as I understand our current set-up:-

We have a WPA2 Enterprise wireless solution.  The AP's act as Radius Clients and connecting devices use PEAP to connect valid domain users via RADIUS (currently running on Server 2012 R2) using their domain credentials.

There is a server-side certificate which I believe is used for encrypting the session.

I have been asked to move to a pure certificate based solution (i.e. certificate on both server and client and no more authentication necessary) and I am not sure how best to set this up.  We have our own PKI.

Can anyone point me in the direction of any good quality information about how I would set RADIUS up to work in this way?

I have noticed an unchecked box in Radius that says "Disconnect Clients without Cryptobinding" but I can't find a lot of documentation about what that means and what checking it would change.

I have also noticed that we are using the Domain Users group to validate users, but imagine we could use Domain Computers instead.  How secure would that be?  Does the device actually do some authentication or could another device with the same name connect with that setting?

I've also seen a number of things indicating that MS-CHAP and MS-CHAP-V2 are essentially worthless. so how do I avoid using these?

If anyone can point me at any great documentation for setting something like this up in a more secure way, I would find that really helpful.

Not an expert in these areas, so any …

I need to setup 2 virtual servers on one box. Windows 2012 Domain Server and an
Exchange 2016 Server. Which hypervisor, Windows or VMWare, would be the best choice?

So recently upgraded added a Windows 2012 R2 server to my existing Windows 2003 network. The purpose is to remove the 2003 server from the environment. The add went fine but now in Event viewer on the new 2012 R2 server I am getting SceCLI Event IF 1202 about 0x534 : No mapping between account names and security IDs was done. I found a pretty good article (below) that helps me find the accounts that are not syncing and they are "besadmin" and "exmerge". But when I go into RSoP it shows me the accounts are in the "Allow log on locally" and "log on as a service". I have searched AD and found that both of these accounts have been removed. BESADMIN was for my Blackberry server, no longer in use and not sure what exmerge is but I'm sure it's with Exchange which is no off-site with Office 365. I would like to remove these two accounts from "Allow log on locally" and "log on as a service" but when I go in through RSoP everything is greyed out. How can I remove those entries so I stop getting the error 1202?

http://www.rebeladmin.com/2016/01/how-to-fix-error-no-mapping-between-account-names-and-security-ids-in-active-directory/

Hi EE,

We have an application that we just migrated the database of our setup is as follows:

Microsoft servers Windows Server 2012 R2
Applications are distributed via Citrix XenApp 6.
Application in question uses SQL auth.

The issue is when we migrated the database and repointed the connection strings the application doesn't login via Citrix see the error below. However, when we are connecting to the DB from the server the application is installed on there are no issues.

"||AXAPS04|0|System|7/03/2019 4:13:40 PM|-2147205987|[Microsoft][ODBC SQL Server Driver][SQL Server]Cannot execute as the database principal because the principal ""guest"" does not exist, this type of principal cannot be impersonated, or you do not have permission.||AMPRO Standard|5.0.14|AMPRO|5.0.14|basStartup|CheckDatabase|3|||"

I'm at a loss how to diagnose this, I have checked the GPO and Folder permissions and rebooted the application server no fix.

Any assistance is welcome on this opaque issue.

Thank you.

Trying to add a Windows server 2012 R2 domain controller to a Windows 2003 domain. Running into issues on the Prerequisites Check and its failing, error below

Verification of prerequisites for Active Directory preparation failed. Unable to perform Exchange schema conflict check for domain ripatampa.local.
Exception: Access is denied.
Adprep could not retrieve data from the server server.ripatampa.local through Windows Management Instrumentation (WMI).
[User Action]
Check the log file ADPrep.log in the C:\Windows\debug\adprep\logs\20190305110127-test directory for possible cause of failure.

I have looked online and made sure that "Enable Distributed COM on this Computer" is enabled on the 2003 server, also made sure there is no third party AV on either servers. The Windows 2012 R2 is already part a member of the domain. Also made sure Network Serice account was added to - SeServiceLogonRight

I am setting up a terminal server for some of our employees on the road; I published to them the app’s they need.

However, would love if I could give them the ability to save documents they download locally to the server,

Please advice

In addition, I am looking to reduce the time from clicking on application to being connected to the session, what I did I published calendar and created a task schedule that as soon they login it lurches the calendar,  once the connection is made when they open the application they want to work on, it opens immediately, I am not so excited about the calendar pops up, and if they x out the calendar it will again take time when they open their applications, is there a hidden app or something nice like a clock I can publish instead of the calculator?

My employer wants the ability to disable an AD account and have assurance the end user's access to email and network resources is immediately or quickly revoked. We tested this earlier this morning and discovered although email access to Exchange is almost immediately unavailable, the end user still has access to critical and sensitive data through mapped drives. I've got the impression this is because the end user still has a kerberos ticket cached on their PC. What is the best practice to mitigate this risk? Should we modify the kerberos ticket lifetime on the 2012R2 Domain Controller, or some other method? Thanks!

I have a critical server that the trust relationship between it and the DC is broken. Is there a way I can reestablish the trust without restarting it?

Hi guys,
I got a prtg installed in a separate server.

Got wmi sensors, and got few errors in it. Says “ the vm could not be found. Is it powered off ? - perfcounter:no data to return. Performance counter error 0x80D007D5

It says vm turned off. But the vm is turned on and running. I tried restarting that particular vm too. Still no change. It still stays red with same error.

Any ideas ??