Windows Server 2016

Windows Server 2016 is the successor to Windows Server 2012 R2. Built upon the same core code as Windows 10, Windows Server 2016 brings enhancements in security, servicing, and connectivity. A particular focus on this release was hybrid-cloud scenarios, and has close ties to Azure and other Microsoft cloud initiatives. This does not detract from the many improvements that are available for on-premises-only deployments

Windows Server 2016 comes in Datacenter, Standard, and Essentials editions, and for servicing, has adopted windows 10's cumulative model. The new nano-server install is designed to be remotely managed and is designed to be kept current through continuous feature updates. The full GUI install operates similarly to windows 10's "Long Term Servicing Branch" (LTSB) model with cumulative security updates.

Windows Server 2016 has also shifted from a per-processor-and-CAL licensing model to a per-core-and CAL licensing model. This brings Windows Server's licensing more in line with Microsoft's other products and makes hybrid-cloud license planning easier as well.

Share tech news, updates, or what's on your mind.

Sign up to Post

We have a 2016 Standard PDC that is running AD and file services for a small network.   We have another server running 2016 that we want to use a Backup domain controller along with file replication for the data.    If anything happens to the Primary we can promote backup to primary and all data will be up to date.    What is the best way to configure the backup domain?   Thank in advance
0
Price Your IT Services for Profit
Price Your IT Services for Profit

Managed service contracts are great - when they're making you money. Yes, you’re getting paid monthly, but is it actually profitable? Learn to calculate your hourly overhead burden so you can master your IT services pricing strategy.

Need a clarification on domain name change.

Consider I have an existing domain of ABC.com and i am building another server as primary domain DEF.com.
I have a file server joined to ABC.com with file permissions set. I am now joining this file server to DEF.com.

PS - DEF.com domain has the same set of users in Active Directory.

Now, My question is will the file permission be the same for DEF.com after joining the file server from ABC.com to DEF.com.

Kindly advise...
0
Have a 4yr old box running server 2012 with HyperV and running 5 VMs - am replacing with a New server 2016 and moving the VMs across.
Can i just enable replication of the VMs to the new box and then turn the old off ? Am I better to export and import in ?
Will I get issues with hardware being different / Host server name being different ?

Any pointers appreciated - its a live system so dont want to mess it up and have downtime.
0
adding windows 2016 or windows 2019 to windows 2012 r2 Domain

We have a new application which requires windows 2016 or 2019 DC.  We currently have Windows 2012 DC's with Forest and Domain Functional levels set at windows 2012 r2.

While either 2016 or 2019 would work for us, I'm leaning towards windows 2019 OS for future proofing.

My main question is this really, Is a schema update a definite requirement when adding a windows 2016 (or windows 2019) DC? and presumably the schema will be updated across the Forest?
0
I asked this before and like to expand a bit deeper.  
 For some reason we have two DNS partitions.  company.com and company.local
No immediate problems to resolve, but there is potential for corruption.  My thoughts to remove it completely but like to research first.
The zone shows up on all Domain Controllers, but for some reason the replication is only pushed out via one particular.  All DCs replicate 5 partitions, but that one replicates 7.  The additional 2 are the partitions related to company.local
Its behaving like old 2003 AD partition where we only had single source replication from the PDC.  Could that be because I have all the FSMO roles on that DC?
0
Server 2016 Standard (VM) Start Menu does not work when left clicked. Fast hourglass but then not anything. Can right click. Have already tried the solutions of turning off/on of all start menu settings. Tried to re-register the start menu apps using: 'Get-appxpackage -all *shellexperience* -packagetype bundle |% {add-appxpackage -register -disabledevelopmentmode ($_.installlocation + “\appxmetadata\appxbundlemanifest.xml”)}'. As far as I can tell this started with the installation of the server but when unnoticed. It affects all users.

Additional Apps 5973 Error "Activation of app Microsoft.BrokerPlugin_cw5n1h2txyewy!App Failed with error: The app didn't start. See the Microsoft-Windows-TWinUI/Operational log for additional information" AND "Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with the error: The app didn't start. See the Microsoft-Windows-TWinUI/Operational log for additional information" every time the Start menu is clicked.

All updates have been installed on this server. Running as a RDP Host and has only a handful of programs installed.
Any direction would be greatly appreciated.
0
This one always frustrate me.  Simple command to see all the domain or forest details. And it doesn't show the list all the servers or sites.  
For example: Get-ADDomain | Format-List
Gives me
ReplicaDirectoryServers            : {server1.company.com, server2.company.com, server3.company.com, server4.company.com...}   how to get all servers?

Same for this:  Get-ADForest | Format-List

Gives me:
GlobalCatalogs        : {server1.company.com, server2.company.com, server3.company.com, server4.company.com...}  how to get all servers?
Sites                 : {site1, site2, site3, site4...} how to get all sites?

I'm probably missing something very simple.  Just annoying issue!
1
I have a file server Windows 2016 I'm needing to remove one group from a bunch of folder - my end result is I only want that one group to see one folder within a root folder.  What is the easiest way to accomplish this without having to disable inheritance and remove the user/group from each folder?
0
A client is looking to do a migration from their SBS 2011 server - i have never worked with SBS but people i talked to tell me its difficult to work with. Basically the client wants to not only migrate\upgrade to Windows Server 2016 Active Directory but they want to migrate to a new domain as the company has been bought out and they want to start fresh.

Is this doable? Would ADMT be the best route to migrate users, computers, servers? Exchange would also need to be migrated to Exchange 2016 on-premise. We suggested O365 but they are pushing back.

Thanks
0
Is there a way to hide shares which a user does not have access to in the share listing? I have tried enabling Access based Enumeration on the share, however this appears to only work for the contents of a share and not the share itself. I am aware you can append $ to create a hidden share, this is not what I want. I want any given user to see only shares that they have access to.

Thanks
0
Active Protection takes the fight to cryptojacking
LVL 2
Active Protection takes the fight to cryptojacking

While there were several headline-grabbing ransomware attacks during in 2017, another big threat started appearing at the same time that didn’t get the same coverage – illicit cryptomining.

Is it beneficial to have VMWare tools to be installed on Windows Server CORE Domain Controller?  Would there be any benefits doing it?
0
Does anyone know what TCP port "Remote Desktop Licensing" listens on?.  Mr google (well my search skills) are failing me at moment.  

I am troubleshooting an error connecting from a new RDS server I built and want telnet test the ports required between servers.
Cheers
String
0
Hi,

Could someone please explain the practical difference between these two dns settings in DHCP?
DHCP-DNS-config.PNG
I am currently set to "Dynamically update DNS records only if requested by DHCP" but I have read that best practice is to use "Always dynamically update DNS and PTR records"

 Why should I do this? I do see many duplicate/old A records in my DNS. Will changing the setting to "always" stop these duplicate records?
old-duplicate-dns-records.PNG
Thank you very much
0
I am currently pursuing my MCSA Server 2016.  I purchased the IC2 by Will Panek but I am a terrible book learner.  This is probably not the section to ask this question but I was wondering if there is any experts that can help guide while I am studying 70-740 or if there are currently any videos that will be uploaded in the near future.  I looked under the certification option on the site but could not find anything.   Is it possible to use this to ask questions if I am studying and get stuck?  I am not sure if this is limited to just technical issues.  Thank you.
0
I'm trying to use Wireshark to troubleshoot a network connectivity issue.

The environment:
Windows Server 2016
Wireshark v3
The server has 3 physical NIC's

To start with I decided to do a ping test that works (i.e. gets replies) so that I could view a working ping before then moving to the ping test that is failing

The issue that I have is that while I'm able to capture packets, none of the captured activity is reporting my ping activity?

So I highlight the capture interfaces (see image)
start the ping (172.16.2.1 -t) - which gets replies
run the capture for 10 seconds
then when I try to filter the results based on the host (ip.addr == 172.16.2.1)
nothing is displayed?

So my questions are

1. What am I doing wrong with the capture
2. I'd like to be able to use a display filter of (ip.addr == 172.16.*) - however this is not accepted. Can I do this, and if so, what is the correct syntax?

ThanksCapture interfaces
0
Unable to Raise Forest Functional Level from Server 2008 R2 to Server 2016. The log states that the 2 current DC's are running early versions of Windows which they are both at Windows Server 2008 R2 Standard 6.1 (7601). According to my research, that should suffice.
Does anyone have any ideas why its saying this?
0
Is it possible to move FSMO roles back to a 2008 R2 DC if anything stops working in our domain post  promotion of the 2016 domain controllers?
0
Is there a way to have multiple hidden shares (on one file server) to show up for a user with the proper permissions? I have heard that it is possible, but haven't found the right instructions for setting this up.  I have tried a test with just two hidden drive/shares, and wasn't able to see any hidden drives, even if I had permissions.

We will be having a single file server (FS01), Windows Server 2016, Active Directory environment.
This server will have multiple hidden shares (\\fs01\acct$, \\fs01\sales$, etc), one for each Department in the company. Each department will be its own drive on the file server, with share and security permissions to the drive.  And then just security permissions for the parent folder in the drive, and child folders.  Will be using groups to apply permissions.

However some users have access to other departments as well as their own.  We want to use Group Policy to map the file server ( F = \\fs01), and then when the user goes into the mapped drive, they would see all the network shares on that file server that they have permission to, and the rest of the shares that they don't would stay hidden.

What does permissions (sharing and security) need to be set to, and where do they need to be used, to allow this situation occur?

I am still new to asking questions on Experts-Exchange, so please let me know if forgot to include needed information to get the proper assistance.

Thank you.
0
Looking for a powershell script that sets locale for all servers to Ireland

Is there a handy way to do this?

Do i need to use it a regional XML file as link below

https://www.lewisroberts.com/2017/03/01/set-language-culture-timezone-using-powershell/
1
Expert advice: How to get hired in cyber security
Expert advice: How to get hired in cyber security

Phil Richards knows cyber security. He’s the Chief Information Security Officer for Ivanti—and he has great advice for anyone looking to build a career in cyber security.

Hello

My Configuration on a Single machine:
 
Windows Server 2016 HyperV Hypervisor in a Workgroup – with 2 HyperV VM's:
-      VM1 : Windows 2016, AD, DNS
-      VM2: Windows 2016, TSE
About 20 client PC and 5 remote TSE connections

My Question:
The Hypervisor is presently on a "workgroup". I have been suggested to integrate the Hypervisor into the Windows domain of VM1 as a member server.
This should allow the use of Windows Backup on VM1 to a USB drive connected to the Hypervisor

Is this solution technically OK? Should it work?
Is this a valid solution for backup of VM1?
0
Hi Windows Server experts,

Just need a general guidance on this scenario pls

In AWS EC2 Windows Server 2016 (serverA), have manually installed softwares,  imported/configured SSL certificates, etc for one of my application, my application works fine in https....all good at this stage.

As you know, in AWS, we have an option to create an AMI (Snapshot) from an EC2. Using this AMI we can create subsequent servers instances (serverB, serverC, etc , so we dont have to reinstall and configure softwares once again.

My Request is:
If I launch and create new EC2 Windows server based on above AMI, Do I have to perform anything extra for SSL certificates to work on serverB, serverC, so on? would that works as it was working on the serverA.

please suggest. and advice.

Thanks in advance
0
Hello folks, need another pair of eyes to check my DC Win2016 hardware specs.  Only for AD purposes box.  DC, DHCP, DNS.  It'll be sitting separately from VM environment and crunching only AD specific purposes.  

HPE ProLiant DL360 Gen10 Performance - rack-mountable -Xeon Silver 4110 2. - x1
Intel Xeon Silver 4110 / 2.1 GHz processor- x1
HPE SmartMemory - DDR4 - 16 GB - DIMM 288-pin -registered - x1
HPE Read Intensive - solid state drive - 480 GB - SATA 6Gb/s - x2
HPE Foundation Care 24x7 Service - extended service agreement - 3 years - o - x1
Hardware Option(s) Install into a Server (CDW ConfigurationServices) - x1
1
I am currently experiencing an issue with one of my clients.  Each time they lose power I am forced to power their units up manually since they do not have an active WOL setup.   After I log into the servers after bringing the DC/ FS back up I noticed that no one is able to get any internal connectivity to the network or internet.   The only way I am able to restore internet/ local lan connectivity is to flush the DNS cache, re-register the DNS cache reboot the DC and then everything is restored.


Windows Server 2016 Standard
NIC - Embedded LOM 1 on Port 1
DNS set to 127.0.0.1
Secondary 8.8.8.8

Not sure what else to include this is a class c network with only 3 servers a couple of managed switches and 1 ASA.
0
I have perflib event errors after a fresh install of Server 2016 and Exchange 2016. I have re-installed the performance counters for Exchange. Commands in text file attached.
I have these event logged in eventviewer.
Event ID 1023
Attached text file for more information.

Appreciate your help.
Event.txt
0
Hello,

I just setup a new Windows 2016 VM.  The Ethernet Controller and Base System Device have an exclaimation mark in device manager.

Anyone knows the location on the windows 2016 dvd to update the drivers?

I picked VMXNET3 when I built the VM.  

Thanks.
0

Windows Server 2016

Windows Server 2016 is the successor to Windows Server 2012 R2. Built upon the same core code as Windows 10, Windows Server 2016 brings enhancements in security, servicing, and connectivity. A particular focus on this release was hybrid-cloud scenarios, and has close ties to Azure and other Microsoft cloud initiatives. This does not detract from the many improvements that are available for on-premises-only deployments

Windows Server 2016 comes in Datacenter, Standard, and Essentials editions, and for servicing, has adopted windows 10's cumulative model. The new nano-server install is designed to be remotely managed and is designed to be kept current through continuous feature updates. The full GUI install operates similarly to windows 10's "Long Term Servicing Branch" (LTSB) model with cumulative security updates.

Windows Server 2016 has also shifted from a per-processor-and-CAL licensing model to a per-core-and CAL licensing model. This brings Windows Server's licensing more in line with Microsoft's other products and makes hybrid-cloud license planning easier as well.