[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x

Windows Server 2016

Windows Server 2016 is the successor to Windows Server 2012 R2. Built upon the same core code as Windows 10, Windows Server 2016 brings enhancements in security, servicing, and connectivity. A particular focus on this release was hybrid-cloud scenarios, and has close ties to Azure and other Microsoft cloud initiatives. This does not detract from the many improvements that are available for on-premises-only deployments

Windows Server 2016 comes in Datacenter, Standard, and Essentials editions, and for servicing, has adopted windows 10's cumulative model. The new nano-server install is designed to be remotely managed and is designed to be kept current through continuous feature updates. The full GUI install operates similarly to windows 10's "Long Term Servicing Branch" (LTSB) model with cumulative security updates.

Windows Server 2016 has also shifted from a per-processor-and-CAL licensing model to a per-core-and CAL licensing model. This brings Windows Server's licensing more in line with Microsoft's other products and makes hybrid-cloud license planning easier as well.

Share tech news, updates, or what's on your mind.

Sign up to Post

We create VMs with the latest build of our code on. One VM has a weird ASYNC_NETWORK_IO error when running a SQL SELECT statement. It isn't on any other VM.

I have tried googling for the error - clearly something failed to start or get set when this VM was created.

Just for peace of mind it would be really useful to know what might be the cause of this and if there is some setting I can adjust to fix it.

The symptom is that a SQL SELECT statement just seems to time out with this ASYNC_NETWORK_IO error, but the strange thing is that it must have somehow returned some results because it then blocks an INSERT statement that has used the results of the SELECT statement.

Everything necessary for the application is on the VM - the ASP.NET application and the SQL Server database so there is no actual network access outside of the VM.

There is no antivirus running on the VM either which is one possibly cause I came across.

The server is Windows Server 2016 and the SQL Server is 2016 also.

I've attached a picture of what is happening.

Just to repeat this doesn't occur on any other VMs with the same software on.

I have tried restarting IIS and restarting the VM.

The VM is Hyper-V.

ASYNC_NETWORK_IO error
0
Prepare for an Exciting Career in Cybersecurity
Prepare for an Exciting Career in Cybersecurity

Help prevent cyber-threats and provide solutions to safeguard our global digital economy. Earn your MS in Cybersecurity. WGU’s MSCSIA degree program curriculum features two internationally recognized certifications from the EC-Council at no additional time or cost.

Hi Experts,

We have installed a new 2016 print server.  The printers are published through preferences in active directory and item-level targeting is set up to the specific groups.  It prints fine for the end users, but when the administrators try to print a simple test page it errors out?  No matter if the systems are physical or VDI instances.  Printing a document or a page from a browser works fine.

What could be off in the GPO that causes the print test page function not to work?  

Thanks,

Mark
0
We are experiencing the issue mentioned here where the recent KB4467684 disables Outlook 2016 search on our Server 2016 terminal servers, preventing everyone from searching their inboxes. One workaround is to uninstall KB4467684, but then we lack the security updates. So the only workable option is to add the following to registry:
Create a new DWORD here: HKLM\SOFTWARE\Policies\Microsoft\Windows\Windows Search\
named  PreventIndexingOutlook and set the value to 1

This re-enables Outlook search after the update so that users can search their inbox. But now we have a second issue which may or may not be related. When they compose a new email and try to add an attachment, the Search Documents box in the upper right of the screen you see when browsing for attachments no longer works. This kind of makes sense because we just added "PreventIndexingOutlook" to the registry, but we cannot remove that key because then they can't search their inboxes.

I am wondering if anyone else is experiencing this and what the fix might be?
0
So, I'm trying to setup Shibboleth on a windows 2012 server to work with our adfs 3.0 server.   This was working over the past year until recently.. I figured it was the recent renewed certificates for signing / decryption.  So i stood up a new shibboleth server since the previous was 'temporary' and the new server is also throwing 500 service errors.

Looking through the shibboleth native logs i spot this:
ERROR Shibboleth.ISAPI [4080] isapi_shib: Unable to locate metadata for identity provider (http://adfs.mydomain.com/adfs/services/trust)

so i browse to "http://adfs.mydomain.com/adfs/services/trust" in chrome and receive a 503 error.

pretty sure this worked in the past or none of my other RP's would work.  is this related to new certs, and whats the solution?  I havent seen much for adfs 3.0 out there to help guide me

Thanks in advance!!!
0
I have a few Win 2016 server vms that are having issues connecting to WSUS 6.3 which runs on Win 2012R2
The errors I get are
8024401f
8024401c

Logs show this

2018/06/05 07:45:14.5767492 680   4164  WebServices     WS error: There was an error communicating with the endpoint at 'http://WSUS.domain.com:8530/ClientWebService/client.asmx'.
2018/06/05 07:45:14.5767518 680   4164  WebServices     WS error: The server returned HTTP status code '500 (0x1F4)' with text 'System.ServiceModel.ServiceActivationException'.
2018/06/05 07:45:14.5767533 680   4164  WebServices     WS error: The server was unable to process the request.
2018/06/05 07:45:14.5767656 680   4164  WebServices     Web service call failed with hr = 8024401f.

Open in new window


I am able to load this page http://WSUS.domain.com:8530/ClientWebService/client.asmx
with this result.

Client Service


You have created a service.

To test this service, you will need to create a client and use it to call the service. You can do this using the svcutil.exe tool from the command line with the following syntax:

svcutil.exe http://wsus.domain.com:8530/ClientWebService/Client.asmx?wsdl

You can also access the service description as a single file:

http://wsus.domain.com:8530/ClientWebService/Client.asmx?singleWsdl

Open in new window


Ive read so many articles about fixes in IIS< but none have worked, nor have there been and changes on WSUS server.
I have another WSUS on another domain and I'm having the same issue there.

On client side ive done the usual but no luck.

net stop wuauserv 
net stop cryptSvc 
net stop bits 
net stop msiserver 
Ren C:\Windows\SoftwareDistribution SoftwareDistribution.old 
Ren C:\Windows\System32\catroot2 Catroot2.old 

Open in new window


The client gets added to WSUS but shows not yet reported.

Ive deployed the new 2016 VM from few different templates with same result.

I have some other 2016 vms, from same templates from a while ago, and those are not showing this error. So I'm not sure why these new ones are.
0
I want to know the best way to install a new Dell T333 Windows 2016 Server to replace an old 2008 R2 server.
I plan to install the Active Directory on the new server, (DHCP is on the router), but the new server is on the same LAN domain and similar IP as the old server running active directory.
I've done this before but used a different domain name for the new server so I could create it on the same network.  
Then when everything is ready, (files copied, new mapping, etc.), on the new server, I just change the domain on each of the dozen PCs and do a restart on each.
Is there a better way?
Thank you.
0
accidentally installed the DC role and promoted it on our Terminal server.
demoted and removed the role. now the Remote Desktop Management service will not start.

what would be the steps to resolve this? i'd prefer NOT removing the role and reinstalling as there are many remoteapp and other configs setup.

alternatively i have a backup i can restore from before the screw-up, however i'm not sure if that's advisable due to the promotion?
0
I am setting up a 2016 RDS server hosting a few apps and want to change the "Remote computer" name from the actual server name to something more generic like rds.domain.com. I have attached a pic that shows what I want to change.  I figured out where to change the Gateway server name, but not the remote computer name.  Any help you can provide would be greatly appreciated.2016 RemoteApp
0
I am using Backup Exec 2016 and trying to back up a Hyper-V virtual Server 2016 with Exchange.  Backups were running fine until I installed Exchange 2016, I am now unable to backup that server.  I get the following error in Event Viewer on the host server and nothing in the virtual server:

A VSS writer has rejected an event with error 0x800423f4, The writer experienced a non-transient error.  If the backup process is retried,
the error is likely to reoccur.
. Changes that the writer made to the writer components while handling the event will not be available to the requester. Check the event log for related events from the application hosting the VSS writer.

Operation:
   PrepareForSnapshot Event

Context:
   Execution Context: Writer
   Writer Class Id: {66841cd4-6ded-4f4b-8f17-fd23f8ddc3de}
   Writer Name: Microsoft Hyper-V VSS Writer
   Writer Instance ID: {86a4095e-f206-4b63-add4-59d60f5469a1}
   Command Line: C:\Windows\system32\vmms.exe
   Process ID: 2744
0
My Domain and Forest Level are at Windows Server 2016

When im creating a new GPO Preference and im trying to target Windows 2016 Server only i don't see it.  All i see is this

2018-12-11-11_17_13-Untitled---Paint.png
How can i add it or do i need to choose the option "Windows Server Family" ?  If yes how do i target Windows Server 2016
2018-12-11-11_18_56-Untitled---Paint.png
Thanks for your help !
0
Are You Protected from Q3's Internet Threats?
Are You Protected from Q3's Internet Threats?

Every quarter, WatchGuard's Threat Lab releases a security report that analyzes the top threat trends impacting companies around the world. For Q3, we saw that 6.8% of the top 100K websites use insecure SSL protocols. Read the full report to start protecting your business today!

I have created a timeout GPO of 60 minutes for my organization. I want to apply it on all the computers in organization except the PC's at reception. For that I created an OU for all the users and other OU for reception TV users. I applied the GPO onto the users OU not on reception OU but still the reception TV logs itself out after 60 minutes.
FYI: I was logged onto the Reception TV once with my regular user account.

So, what can I do to exclude those PC's from timeout GPO ?
0
Hello,

Recently installed 20 2016 RDS user CALs and since then nobody has permission to download any files from the internet, whether from online banking or other government sites. Error states the security settings do not allow it.  Before installing the CALs the users were working in grace period and all was fine.

If I use RD Licensing Diagnoser it says at the top
Licenses are not available for this Remote Desktop Session Host server and RD licensing diagnoser has identified licensing problems for the RD Session host server.

The Remote Desktop Session Host Server is in Per User licensing mode and No Redirector mode, but license server ……. does not have any installed licenses with the following attributes: Product Version:Windows Server 2016Licensing mode.

Looking at the licensing server info it says
Version                           Windows Server 2016
………………..
……………
The license server has the following licenses installed and available

RDS Per User CAL      Windows Server 2016     20 installed     0 available


I have already checked in the registry that the value 4 is assigned to HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\RCM\Licensing Core\LicensingMode

Also the name of the licensing and host server is correct (just one machine).

I have been looking for abut 2 hours now and am not finding anything helpful.

Please help!

Thank you

Alasdair Barclay
0
Hi,

  I have a network with 5 workstation PCs and 1 file server (running Windows Server 2012 Essentials on HP Proliant MicroServer Gen8, two 7200rpm SATA HDs, as a physical standalone server).
  I am going to upgrade this physical server to a virtual server and here is what I have in mind:
 1. On a new HP Proliant MicroServer Gen10 server with two 7200rpm SATA HDs, I will install Windows Server 2016 Essentials OS
 2. Add Hyper-V role to the OS.
 3. Convert an existing Windows Server 2012 Essential Server to a virtual server using Microsoft Virtual Machine Converter (MVMC)
 4. Turn on this virtual machine (running Windows Server 2012 Essential) and perform in-place Windows 2016 Essential upgrade.

 I guess I could perform in-place upgrade to Windows 2016 Essential on current physical server (running Windows Server 2012 Essential) before converting it to virtual server, but I thought it would be easier to upgrade OS in virtual environment.

 What do you think?
 Is this what you would recommend?

 The only other concern is that how responsive the new virtual machine (running WE 2016) would be in Hyper-V environment on a RAID 1 with two 7200rpm SATA hard drives.
 Currently HP MicroServer with two 7200rpm SATA hard drives are running just fine for average 3 users opening Word and Excel files. No one ever complained about the speed.

 I could also forget about setting up Hyper-V server and just set up another physical server running Windows Server 2016 Essentials …
0
Unable to see shares when I access server 2016 through UPN path from any client/server on same domain. I believe it could be firewall rule SMB over TCP which is blocked. I can ping the server but can't access it.

I'm running Windows server 2016, trial version
error.png
0
Hi Experts,

Periodically our PDC issues EventID 4 "The Kerberos client received a KRB_AP_ERR_MODIFIED error from the server **** The target name used was ldap/****.***.com.au/***.com.au@***.COM.AU. This indicates that the target server failed to decrypt the ticket provided by the client. This can occur when the target server principal name (SPN) is registered on an account other than the account the target service is using. Ensure that the target SPN is only registered on the account used by the server. This error can also happen if the target service account password is different than what is configured on the Kerberos Key Distribution Center for that target service. Ensure that the service on the server and the KDC are both configured to use the same password. If the server name is not fully qualified, and the target domain (***.COM.AU) is different from the client domain (***.COM.AU), check if there are identically named server accounts in these two domains, or use the fully-qualified name to identify the server."

We can then see this error replicated on the other domain controllers and more importantly to our Exchange Servers. At that point we can no longer authenitcate Outlook clients and email essentially stops working. From what I've read this is related to the machine password being updated and not replicating properly. I've done some digging as to why that would be and checked all DNS settings which seem to be fine. No issues reported with AD replication …
0
i have windows 2016 server
I have data coming in on port 3299
When i hits the server i need to remap it to port 9013 as there is an app on this server which is listening on this port

is this possible/
There is not router, the server sits directly on the internet so it needs to be done it windows
0
Allow multiple users to login and use the same application at the same time.
0
Currently we are using AD on Windows server 2016 and Exchange Server 2016. We want to add Microsoft office online exchange 365 as a load balancer in DAG. It is possible?
0
What are the best practices providing Admin access for Active Directory for Developers.
Devs writing an application that will authenticate using active directory. In order to do so they will need to generate a key the
application. They will also need to create different groups of users and place users in the groups. They believe having admin access will make this a lot easier than asking for each thing in turn.

How is everyone dealing with these similar requests?  Please advice.
1
Creating Active Directory Users from a Text File
LVL 8
Creating Active Directory Users from a Text File

If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.

RDS install on Server 2016 fails, reboots and then cannot remote into server. Error is  "Failed: Unable to install RD Connection Broker role server on server 'Server'".  We have tried Quick Start and Standard deployments and they both fail the same way. Have to remove partially installed RDS role to be able to RDP into server.
0
Is there server specific coding needed for Web.config files  where the website is uploaded to a Windows server? Believe it or not; “Verio; my website hosing company does not know which version of Windows Server they are using --  they only know that it is Windows server!” Please look at my web config file and let me know if anything stands out.

<?xml version="1.0" encoding="utf-8"?>
<!--
  For more information on how to configure your ASP.NET application, please visit
  http://go.microsoft.com/fwlink/?LinkId=169433
  -->
<configuration>
  <appSettings>
    <add key="webpages:Version" value="2.0.0.0" />
    <add key="webpages:Enabled" value="false" />
    <add key="PreserveLoginUrl" value="true" />
    <add key="ClientValidationEnabled" value="true" />
    <add key="UnobtrusiveJavaScriptEnabled" value="true" />
  </appSettings>
  <system.web>
    <httpRuntime targetFramework="4.5" />
    <compilation debug="true" targetFramework="4.5" />
    <pages>
      <namespaces>
        <add namespace="System.Web.Helpers" />
        <add namespace="System.Web.Mvc" />
        <add namespace="System.Web.Mvc.Ajax" />
        <add namespace="System.Web.Mvc.Html" />
        <add namespace="System.Web.Routing" />
        <add namespace="System.Web.WebPages" />
      </namespaces>
    </pages>
  </system.web>
  <system.webServer>
    <validation validateIntegratedModeConfiguration="false" />
    <handlers>
      <remove name="ExtensionlessUrlHandler-ISAPI-4.0_32bit" />
      <remove 

Open in new window

0
I have installed a DC server (Windows Server 2016) in parallel to SBS server, to replace SBS. But, somehow I couldn't connect with shares on new server from any domain computer. I can still ping the new DC but I can browser shares. Error: Network resource is unavailable.

I checked the firewall inbound rules, form SMB to TCP. Its blocked and I couldn;t find any way to turn it on. Its says its controlled by system administrator.

Any help will be much appriciated
0
OK so we have an in house marketing database that used to connect to a remote MySQL database on a Linux server. I decided to migrate to a MySQL server on our in house computer that also serves as the domain controller. everything is working fine except when I try to export a CVS. This was all operational when it was connecting to the Linux server prior. Please give me a hand guys!

The error that I am getting is below:
MySql.Data.MySqlClient.MySqlException (0x80004005): Fatal error encountered during command execution. ---> MySql.Data.MySqlClient.MySqlException (0x80004005): Fatal error encountered attempting to read the resultset. ---> MySql.Data.MySqlClient.MySqlException (0x80004005): Reading from the stream has failed. ---> System.IO.IOException: Unable to read data from the transport connection: A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond. ---> System.Net.Sockets.SocketException: A connection attempt failed because the connected party did not properly respond after a period of time, or established connection failed because connected host has failed to respond
   at System.Net.Sockets.Socket.Receive(Byte[] buffer, Int32 offset, Int32 size, SocketFlags socketFlags)
   at System.Net.Sockets.NetworkStream.Read(Byte[] buffer, Int32 offset, Int32 size)
   --- End of inner exception stack trace ---
   at …
0
How to turn off Windows Information Protection (WIP) on Server 2016?
Deployed a new server 2016 last week (I did not build the server), and have issues with users on laptops that take home work in the evening (Excel documents).  The files are all in protected mode when they open at home.  I had not heard of Windows Information Protection before, so looking for advice.  Should I disable it, or is it best to configure and what is best practice?  Only files involved are Word & Excel documents.
0
Search results appear to have no file associations . it shows a blank page and you cannot click on it to open the files.  These are word documents.  you then can go into the directory and open the file ok.  Only the search results is missing the file associations.   The os is 2016 server with remote desktop.
0

Windows Server 2016

Windows Server 2016 is the successor to Windows Server 2012 R2. Built upon the same core code as Windows 10, Windows Server 2016 brings enhancements in security, servicing, and connectivity. A particular focus on this release was hybrid-cloud scenarios, and has close ties to Azure and other Microsoft cloud initiatives. This does not detract from the many improvements that are available for on-premises-only deployments

Windows Server 2016 comes in Datacenter, Standard, and Essentials editions, and for servicing, has adopted windows 10's cumulative model. The new nano-server install is designed to be remotely managed and is designed to be kept current through continuous feature updates. The full GUI install operates similarly to windows 10's "Long Term Servicing Branch" (LTSB) model with cumulative security updates.

Windows Server 2016 has also shifted from a per-processor-and-CAL licensing model to a per-core-and CAL licensing model. This brings Windows Server's licensing more in line with Microsoft's other products and makes hybrid-cloud license planning easier as well.