Can A Domain Trust Another Domain With The Same ‘Root Domain’ Name?
KB ID 0001288 Problem About a month ago I was with a client to do some investigation/consultancy, they were a large company with their head office in the UK and a number of other offices around the world. They had a number of domains and sub domains and wanted to consolidate them all into a new domain. Well that’s all OK, but the UK company has been purchased by a large American company, who were putting a lot of pressure on...
Windows – A Delegation For This DNS Server Cannot Be Created
KB ID 0001287 Problem When promoting a server to be a domain controller, you might see the following error, “A delegation for this DNS server cannont be created because the authoritative parent zone cannot be found or it does not run Windows DNS server. If you are intergrating with an existing DNS infrastructure, you should manually create a delegation to this DNS server in the parent zone to ensure reliable name resolution from...
Stop Windows Servers ‘Locking’ with Group Policy
KB ID 0001283 Problem Servers locking themselves after a period of inactivity is, (in most cases) a good thing. But on my test network that only I use it gets a bit annoying switching between machines and constantly having to unlock Windows all the time! Note: For obvious security reasons don’t do this on a production network! Solution Create a new GPO linked to your computer OU, (or edit an existing one). Edit the policy....
Error – The Computer You Are Signing Into Is Protected By An Authentication Firewall
KB ID 0001241 Problem I put a ‘net use’ command in a logon script for a client today, and the drive refused to appear. So I executed the offending line and saw the following error; System error 1935 has occurred The computer you are signing into is protected by an authentication firewall. The specified account is not allowed to authenticate the computer. Solution This error is seen because the user, (or group the user is a...
Robocopy – File Server Migration
KB ID 0001233 Problem I’ve done a lot of migrations, and moving a client’s files and shared data, usually makes them cringe. I’ve lost count of the amount of times I’ve heard ‘We can’t have any downtime’, which is fine, until you tell them how much its going to cost to do this on a Saturday! As I posted recently, Microsoft have made this a lot easier with the file serve migration tools,...
IIS – Cannot Download File From Website (With Extension .xyz)
KB ID 0001223 Problem I first saw this problem a few months ago, when I wasted to download some .bin and .pkg files from a web server running IIS, into a Cisco firewall. Then again this week I needed to get a large .iso file into a clients network so I put it on a publicly accessible web server running IIS, and had the problem again. Solution On the IIS server, open administrative tools > Internet Information Services (IIS)...
Group Policy To Throttle Network Speed via QoS
KB ID 0001217 Problem Why would you want to do this? Well what if you want to test slow link group policy processing, or you are testing BranchCache? Using Group policy you can ‘throttle’ traffic to and from a particular IP address. Below I will pick a domain client on 192.168.110.120, and throttle all traffic between that client, and the domain controller to be 100kbps. Solution As I sad above I’m throttling...
Remote Desktop Web – Session Timeouts (Altering)
KB ID 0001215 Problem Timeouts for the RDWeb portal are defined by the choice you made when you logged in, if you selected ‘private’ or ‘public’ on the PC options, this sets the timeout. The default is 240 mins for private, and 20 minutes for public connections. Solution To alter these values you need to make changes in the ‘Internet Information Services Management Console’ on the RDWeb server....
Windows BranchCache (Hosted and Distributed)
KB ID 0001212 Problem The purpose of BranchCache is, (as the name implies) to cache files in branch sites, without the need for a local file server or DFS. There are essentially two deployment models, In Hosted Mode a server in the branch caches the files locally as they are requested by clients. This works because the main file server provides a hash of the requested file, the branch server will download it, and if another client...
Windows – Suppress the ‘First Run’ Welcome to Windows Animation
KB ID 0001186 Problem I don’t like ‘first-run’ dialogs, Internet Explorer is annoying enough, Now Windows and Office insist on playing me a film clip when they start for the first time. I’m a busy guy I have things to do, stop asking me questions and making recommendations! It takes this long to create a user profile? I don’t think so. Solution You can do this by local policy on the machine, but domain...