Category Archives: Microsoft Windows Server

KnowledgeBase: ADM files are not present in SYSVOL in the GPMC Infrastructure Status option

Windows Server 2012 introduces a new Group Policy feature: ‘Infrastructure Status’. This feature is present in the Group Policy Management Console (GPMC) on Windows Server 2012 and in the Remote Server Administration Tools (RSAT) package for Windows 8, and introduces a Status tab for the domain level.


KnowledgeBase: Adprep "not a valid Win32 application" error on Windows Server 2003, 64-bit version

Recently, Microsoft released KnowledgeBase article 2743367 with the ominous title Adprep "not a valid Win32 application" error on Windows Server 2003, 64-bit version. When you’ve been reading this blog, you might have already guessed what might be causing this issue, even though adprep.exe on the Windows Server 2012 DVD is a perfectly fine Windows 64bit […]


Tip: Zohno’s Z-Hire & Z-Term (freeware)

Many software vendors and organizations have adopted workflow tools to accommodate their needs towards faster delivery of the same quality. At least, getting an OK from a senior executive, is something that can be automated to save time, right? Another angle a lot of organization explore is Delegation of Control. Why wait for a centralized […]


Host-Based Backup and Restore of Virtual Domain Controllers Whitepaper

I’ve seen a couple of vendors release backup products, specifically targeted at Hyper-V. Some solutions utilize the Hyper-V Volume Shadow Service (VSS) writer to make backups. The big question, however, is whether this type of backup is of any use to backup Domain Controllers for disaster recovery. Over the years, we’ve seen a lot of […]


Whitepaper on Host-Based Backups and Restores of Domain Controllers

This page contains the following whitepaper:  Host-Based Backups and Restores of Domain Controllers How to be effective in backing up and restoring virtual Domain Controller with host-based backup solutions   Title : Host-Based Backups and Restores of domain Controllers How to be effective in backing up and restoring virtual Domain Controllers with host-based backup solutions Authors […]

DCPROMO Advanced Mode, what does it do?

In the past 11 years, Microsoft has released four versions of Windows Server on which you could install Active Directory. On all these platforms, Microsoft offered two ways to promote a server to a Domain Controller. In this blogpost I’ll reveal the differences between the advanced mode and normal mode for dcpromo.exe for the Windows […]


How to effectively defend against Morto.A in the enterprise

Whenever a worm utilizes the normal access and daily tools systems admins use, there is a significant problem. After all, shutting down the attack vector suddenly isn’t that easy. So, without making dramatic changes to your environment, how can you rest assured?


Why rücksichtlos disabling IPv6 is a bad idea

Since Windows Vista, Microsoft has bundled and enabled IPv6 by default. This means Windows Vista, Windows 7 Windows Server 2008, Windows Server 2008 R2 (and all their derivate SKUs like Small Business Server) out of the box talk IPv6. Note: Server Core installations do not have IPv6 enabled by default and are the one notable […]


Active Directory Feature Requirements

Microsoft has included numerous features in Active Directory the last couple of years. Also, more and more technologies in products like Exchange Server, SharePoint Server and the Windows client (Windows Vista, Windows 7) have an Active Directory opt-in to store information in Active Directory. All this bountiful integration, however, comes with a price. The price […]


Active Directory Time Sync (broken by default)

Active Directory relies on accurate time for a number of reasons. One of this reasons is Kerberos authentication, which by nature can only cope with a difference in time (time skew) of five minutes between the Kerberos server and client. Now, don’t get me wrong. I think the time skew limitation and the overall Kerberos […]