Windows 2016 – Computer Browser Service Missing ?

August 8, 2017

Compared to older versions of Windows Server some services are missing like :

Computer Browser Service

Network Discovery Service

Making that you don’t see the computers available in your network by default …

image

Solution :

Make sure that the SHARING options for the DOMAIN profile is turned on !

image

Next check that the DNS Client Service is running

image

Next check that the Function Discovery Resource Publication Service is running

image

Next check that the SSD Discovery Service is running

image

Make sure the Firewall is allowing network discovery

netsh advfirewall firewall set rule group="Network Discovery" new enable=Yes

Go and check again to what is appearing now…

image

If it does not work you can try turning on the UPnP Device Host Service. Which I don’t recommend since UPnP can be a weak spot in your network…

Enjoy!


Group Policy Error Event ID 1030

August 3, 2017

After a Reboot of a Domain Controller Server 2008r2 I got many Errors Event ID 1030

image

And as well a Warning event LSA Event ID  40961 ?

The Security System could not establish a secured connection with the server ldap/xxx/xxx. No authentication protocol was available.

Diagnostics :

After reading on the net, I did several Diagnostics test:

dcdiag /v /c /d /e /s:%dcname% > c:\dcdiag.txt

image

repadmin /showrepl %dcname% /verbose /all /intersite >c:\repl.txt 

image

May errors appear in there but did not ring a bell to me ?

I also did a machine Pwd reset on the domain controller that had the issue, but not success too Sad smile

The nltest.exe /dsregdns was OK but did not solve it to ??Baring teeth smile

image

Solution :

After trying all of the above did not help …

But simply restarting the AD Domain Services

image

It gave a few warnings but after that everything was back to normal.

image

Enjoy !


VSS error–Event ID 25

July 11, 2017

Recently I got an Error Event ID 25 and the System State backup failed!

image

Event ID 25 : …Shadow Copy Storage could not grow in time…

Debugging :

Use this command vssadmin list shadowstorage /for=D:

image

It showed some storage limitations for the VSS on the D: drive.

Also check the Backup Logs: %windir%\logs\WindowsServerBackup

image

Opening the last log I see that there are no errors and the log suddenly stops …

image

Solution :

I checked the settings and indead there was a limitation set…

image

image

So I changed it to unlimited and solved Smile

But make sure that you have enough disk capacity before you set it to unlimited !!

image

Because it can grow fast !

In case this does not work you can use these alternatives :

The following command on the host in order to place the shadow copy on another disk; drive letters need to be changed accordingly:

vssadmin add shadowstorage /For=D: /On=E: /MaxSize=UNBOUNDED
vssadmin resize shadowstorage /For=D: /On=E: /MaxSize=UNBOUNDED

Or you can modify the System Performance by Adjusting the Page File to 1.5 times the amount of RAM:

  1. Open System in Control Panel.
  2. On the Advanced tab, under Performance, click Settings.
  3. On the Advanced tab, under Virtual memory, click Change.
  4. Under Drive [Volume Label], click the drive that contains the paging file you want to change.
  5. Under Paging file size for selected drive, click Custom size, and type a new paging file size in megabytes in the Initial size (MB) or Maximum size (MB) box, and then click Set.

This will have only an effect after a REBOOT !


How to disable the SMBv1 Protocol on Windows 2012 & 2016

June 29, 2017

First check if the protocol is enabled, go to ROLES & FEATURES

image

As you can see it is enabled but greyed out…

So you need to use the famous Powershell :

image

Using :

CLS

Get-WindowsFeature FS-SMB1

Remove-WindowsFeature FS-SMB1

image

When Finished you will see this message :

image

After REBOOT you can see the SMBv1 is unchecked Smile

image

Success !


Difference between Virtual and Physical Machine

May 11, 2017

Sometimes you need to know whether you connect to a Virtual or Physical Machine.

In order to know how you are going to manage the Backup strategy for these machines.

SOLUTION :

Easy by using the ‘SystemInfo’ command.

image

See the System Model Label …

Or use the GUI Version command : ‘msinfo32’

image

More options posted in this thread here.

Enjoy !


Installing VPN Service failed Event ID 7041 on Windows 2016

May 3, 2017

Installing the VPN service using the Add Roles and Features on a Windows 2016 Server failed Sad smile all the time …

In the Event Viewer we could see these events :

image

Event ID 7041 :

The MSSQL$MICROSOFT##WID service was unable to log on as NT SERVICE\MSSQL$MICROSOFT##WID with the currently configured password due to the following error:
Logon failure: the user has not been granted the requested logon type at this computer.
 
Service: MSSQL$MICROSOFT##WID
Domain and account: NT SERVICE\MSSQL$MICROSOFT##WID
 
This service account does not have the required user right “Log on as a service.”
 

So the configuration manager could not install the local Windows Database, because lack of credentials to run as a service.

So basically it boils down to get the GPO adapted with the correct credential settings.

Solutions :

1. To edit this setting, open Group Policy Management and edit the Default Domain Policy (Or other policies if they are applied like in my case)

Navigate to Computer Configuration, Policies, Windows Settings, Security Settings, Local Policies, User Rights Assignments. 

Edit Log on as a service and add the following groups:

IIS_WPG
NETWORK
NETWORK SERVICE
SERVICE
NT SERVICE\ALL SERVICES

2. See here KB 2832204 :

  • Assign the Log on as a service user right to
  • NT SERVICE\ALL SERVICES in the GPO that defines the
  • user right.

Next Run gpupdate /force

image

Next REBOOT the server …

After this the Feature was installed successfully Smile

image

And you are ready to Configure the VPN Access.

Do not use the Server Management Dashboard

image

image

But use the manual configuration method instead.

image

3. Configuration :

Configuration of simple VPN Follow these Steps :

image

image

image

image

image

Also check the Firewall settings

image

image

Enjoy!


WebMatrix on IIS8 on Windows 2016

May 2, 2017

How to install Webmatrix on IIS8 using Windows Server 2016

 

1. You do not need to install anything relating to Webmatrix !

2. Install the IIS Server Role

image

Create a virtual folder and copy all the files / database and web.config in there.

image

PS :  You can’t run .cshtml in the root folder !

Because it has a forbidden handler settings for .cshtml extensions

image

Result will look like this :

image

 

3. Configure the IIS server for ASP.NET Razor

Optionally you can set the CLR 4.0 as 32 Bit integrated mode.

image

Select the Handler Mappings, next Advanced Settings and change the Application Pool from :

Default Application Pool to .NET v4.5

image

 

You don’t need to set ISAPI filters !!

image

And the Mapping handlers are already installed for .cshtml as well Smile

image

You are ready to test you webpage…

PS :  don’t forget to give READ / WRITE access to the Database folder location ! Winking smile

Success !!