Running downlevel VMs on Windows 10 Hyper-V? Update the Integration Components

I’m seeing lots of people adopting the Technical Previews of Windows 10 and Windows Server 2016 around me, and running Virtual Machines (VMs) on the built-in Hyper-V hypervisor seems to be among the scenarios tested thoroughly. Microsoft has issued a KnowledgeBase article detailing an update in the Integration Components (ICs) for Windows 7, Windows 8.1, … Continue reading "Running downlevel VMs on Windows 10 Hyper-V? Update the Integration Components"

KnowledgeBase: Domain Controller promotion stops responding when NetBIOS over TCPIP is disabled in Windows Server 2012 R2

Sometimes, an easy task becomes daunting. Especially when you’re working with technology like Active Directory Domain Services and you can’t even get a server promoted to a Domain Controller because the promotion process hangs and you’re left without clues.   The situation You can promote a Windows Server to an Active Directory in the following … Continue reading "KnowledgeBase: Domain Controller promotion stops responding when NetBIOS over TCPIP is disabled in Windows Server 2012 R2"

Knowledgebase: Known Issue with Windows and Windows Server Technical Preview in a pre-Windows Server 2012 Active Directory environment

While going through the Release Notes for the Windows Server Technical Preview and the Release Notes for Windows 10, I noticed something quite interesting: If you join a computer with Trusted Platform Management (TPM) enabled to a domain in which there are no domain controllers running at least Windows Server 2012, computer authentication and those … Continue reading "Knowledgebase: Known Issue with Windows and Windows Server Technical Preview in a pre-Windows Server 2012 Active Directory environment"

KnowledgeBase: ADFS authentication issue for Active Directory users when extranet lockout is enabled

Active Directory Federation Services (AD FS) in Windows Server 2012 R2 is a vastly improved version of Active Directory Federation Services found in previous versions of Windows Server. One of its features, however, might prove extremely counter-productive and counter-intuitive to its feature name and normal behavior in a certain scenario.    The situation Active Directory … Continue reading "KnowledgeBase: ADFS authentication issue for Active Directory users when extranet lockout is enabled"

KnowledgeBase: Lsass.exe on a Windows Server 2012 R2 or Windows Server 2012-based Domain Controller crashes when installing a replica Windows Server 2012 R2-based Domain Controller

Last year, Microsoft has identified an issue in Windows Server 2012 and Windows Server 2012 R2, that occurs when you have Active Directory Domain Controllers that are running Windows Server 2012 R2 or Windows Server 2012 in an Active Directory Domain and you install a replica Domain Controller on a Windows Server 2012 R2-based host. … Continue reading "KnowledgeBase: Lsass.exe on a Windows Server 2012 R2 or Windows Server 2012-based Domain Controller crashes when installing a replica Windows Server 2012 R2-based Domain Controller"

KnowledgeBase: Active Directory replication fails with an RPC issue after you set a static port for NTDS

In environments where Active Directory needs to traverse network boundaries, the network ports for remote procedure calls (RPCs) for Active Directory replication can be configured as a static port instead of the default configuration of a random high port. However, this might pose problems in your Windows-based domain environment.   The situation In a Windows-based … Continue reading "KnowledgeBase: Active Directory replication fails with an RPC issue after you set a static port for NTDS"

KnowledgeBase: The Active Directory Administrative Center crashes in Windows 8.1 or Windows Server 2012 R2

The Active Directory Administrative Center (dsac.exe) offers a Graphical User Interface (GUI) for many of the features added to Active Directory in recent years, like Dynamic Access Control, Authentication Policies and Authentication Policy Silos. Unfortunately, last year, a couple of bugs were found. Luckily, they got squashed.   The situation The Active Directory Administrative Center … Continue reading "KnowledgeBase: The Active Directory Administrative Center crashes in Windows 8.1 or Windows Server 2012 R2"

KnowledgeBase: Windows Server 2012 R2-based AD FS Proxy consumes 100% CPU

As part of the May 2014 Update Rollup, Microsoft has released an update for Windows Server 2012 R2-based Active Directory Federation Services (AD FS) Proxies, consuming 100% CPU. This leads to rejected logons and slow performance for colleagues trying to authenticate to the Active Directory Federation Services (AD FS) infrastructure.     The situation The Active … Continue reading "KnowledgeBase: Windows Server 2012 R2-based AD FS Proxy consumes 100% CPU"

KnowledgeBase: You cannot log on as a local administrator when you restart in Directory Services Repair Mode

As part of the May 2014 Update Rollup, Microsoft has fixed a problem that I hope has not been bugging any Active Directory Admin… On Windows Server 2012 and Windows Server 2012 R2-based Domain Controllers, an issue was identified that blocks access to the Directory Services Restore Mode (DSRM).   The situation On Windows Server … Continue reading "KnowledgeBase: You cannot log on as a local administrator when you restart in Directory Services Repair Mode"

KnowledgeBase: Colleagues with IE get Windows prompts when authenticating to AD FS behind TMG, forms-based authentication when using Chrome or FireFox

Today, a colleague came up to me to ask me a question on a weird situation he encountered while troubleshooting an Active Directory Federation Services (AD FS) implementation at a customer site. Note: We didn’t implement this situation, but after solving this challenge, we gave some great pointers to get the environment sorted.   The … Continue reading "KnowledgeBase: Colleagues with IE get Windows prompts when authenticating to AD FS behind TMG, forms-based authentication when using Chrome or FireFox"