Category: 1114

Windows Server 2012 introduces a new Group Policy feature: ‘Infrastructure Status’. This feature is present in the Group Policy Management Console (GPMC) on Windows Server 2012 and in the Remote Server Administration Tools (RSAT) package for Windows 8, and introduces a Status tab for the domain level.

Recently, Microsoft released KnowledgeBase article 2743367 with the ominous title Adprep "not a valid Win32 application" error on Windows Server 2003, 64-bit version. When you’ve been reading this blog, you might have already guessed what might be causing this issue, even though adprep.exe on the Windows Server 2012 DVD is a perfectly fine Windows 64bit … Continue reading "KnowledgeBase: Adprep "not a valid Win32 application" error on Windows Server 2003, 64-bit version"

Many software vendors and organizations have adopted workflow tools to accommodate their needs towards faster delivery of the same quality. At least, getting an OK from a senior executive, is something that can be automated to save time, right? Another angle a lot of organization explore is Delegation of Control. Why wait for a centralized … Continue reading "Tip: Zohno’s Z-Hire & Z-Term (freeware)"

I’ve seen a couple of vendors release backup products, specifically targeted at Hyper-V. Some solutions utilize the Hyper-V Volume Shadow Service (VSS) writer to make backups. The big question, however, is whether this type of backup is of any use to backup Domain Controllers for disaster recovery. Over the years, we’ve seen a lot of … Continue reading "Host-Based Backup and Restore of Virtual Domain Controllers Whitepaper"

In the past 11 years, Microsoft has released four versions of Windows Server on which you could install Active Directory. On all these platforms, Microsoft offered two ways to promote a server to a Domain Controller. In this blogpost I’ll reveal the differences between the advanced mode and normal mode for dcpromo.exe for the Windows … Continue reading "DCPROMO Advanced Mode, what does it do?"

Whenever a worm utilizes the normal access and daily tools systems admins use, there is a significant problem. After all, shutting down the attack vector suddenly isn’t that easy. So, without making dramatic changes to your environment, how can you rest assured?

Since Windows Vista, Microsoft has bundled and enabled IPv6 by default. This means Windows Vista, Windows 7 Windows Server 2008, Windows Server 2008 R2 (and all their derivate SKUs like Small Business Server) out of the box talk IPv6. Note: Server Core installations do not have IPv6 enabled by default and are the one notable … Continue reading "Why rücksichtlos disabling IPv6 is a bad idea"

Microsoft has included numerous features in Active Directory the last couple of years. Also, more and more technologies in products like Exchange Server, SharePoint Server and the Windows client (Windows Vista, Windows 7) have an Active Directory opt-in to store information in Active Directory. All this bountiful integration, however, comes with a price. The price … Continue reading "Active Directory Feature Requirements"

You might be running Windows Server 2003 (R2) and Windows Server 2008 Domain Controllers at the moment and you're looking to replace these servers with Windows Server 2008 R2 Domain Controllers to utilize the new features of Windows Server 2008 R2. You might also be looking to replace your aging Windows Server 2003 (R2) and … Continue reading "Transitioning your Active Directory to Windows Server 2008 R2"

On Patch Tuesday for June 2009 (yesterday, June 9, 2009) Microsoft released security bulletin MS09-18 yesterday to address a vulnerability in Active Directory and Active Directory Application Mode (ADAM) that could allow remote code execution. It’s should not come as a shock Microsofts Active Directory and Active Directory Application Mode (ADAM) contain insecure code, allowing … Continue reading "A New Vulnerability in Active Directory (MS09-018)"