Disable LLMNR and NetBIOS (via GPO)
Disable LLMNR and NetBIOS KB ID 0001816 Problem LLMNR is a protocol that’s used both in IPv4 and IPv6 networks to provide name resolution (in the absense of DNS), the problem with it is that it is wide open to exploitation and can be used to perform a MITM attack on your network. NetBIOS is much older and asscociated with IPv4 networks only. Really old Microsoft OSs used to rely on it heavily, but these days its pretty much...
Upgrade Server 2012 (In Place)
Upgrade Server 2012 KB ID 0001802 Server 2012 End Of Life Note: Also See In Place Upgrade of Window Server Windows Server 2012 (and Windows Server 2012 R2) will go end of life on October 10th 2023. Start planning to migrate your productions workloads off this platform as soon as you can. I’ve mentioned before on the site, I’m not a fan of ‘in place’ upgrades, you get to migrate all the ‘broken bits’...
DC Promotion fails ‘FRS is Depreciated’
FRS is Depreciated KB ID 0001579 Problem Error seen when attempting to add a new domain controller to an existing domain; Verification of replica failed. The specified domain {Domain-Name} is still using the File Replication Service (FRS) to replicate the SYSVOL share. FRS is depreciated. The server being promoted does not support FRS and cannot be promoted as a replica into the specified domain. You MUST migrate the specified domain...
Microsoft Edge on Server 2019/2016 (and Citrix)
KB ID 0001657 Problem In a fit of lunacy Microsoft have called ‘their’ new browser Microsoft Edge, so we can spend the next few months confusing it with Edge. Plus every Google search for GPO settings, error messages etc will all now show search results for the old Edge Browser not the new Microsoft Edge browser! Perhaps the same doofus at Microsoft who called the Exchange sync Active Sync when Microsoft already had a...
In Place Upgrade Windows 2016 to Windows 2019
KB ID 0001761 Problem Note: Also See In Place Upgrade of Window Server For the last twenty years or so I’ve said “In place upgrades are a bad idea”, my rationale has been that if something is broken we are simply migrating that problem, and we are relying on a lot of factors, (some of which may be unknown.) That we will just have to ‘trust that it will work’. Most modern servers are virtual so we can...
Remote Desktop Services: RDS Sizing Calculations
KB ID 0001753 Problem This is a horrible subject to find any decent information on. Microsoft are typically ‘vague’ and most people are stuck with using trial and error, or massively overestimating hardware to be on the safe side. I get asked this occasionally and, just like Microsoft, it’s a question I don’t like to answer! People are reticent to tell you that you need ‘x’ amount of CPU and...
Enable Remote Desktop (Remotely)
KB ID 0001747 Problem Let’s say you want to RDP to a remote server (imagine such a thing!) But some doofus didn’t enable RDP? Well you can enable Remote Desktop via group policy and wait a while. I used to connect to the registry remotely and change the key that enabled RDP, but now you can do it with a simple PowerShell command. Not only will it enable Remote Desktop, it will also allow RDP on the Windows firewall (if...
Windows File Server Migration (Maintain Share & NTFS Permissions)
KB ID 0001201 Problem When attempting a File Server Migration why isn’t this better publicised? Did you know Microsoft have a set of Migration tools, and one of them is for file servers? Now traditionally I’d use RoboCopy or XCopy to migrate files and folders, and for ‘User Profiles’ I would normally back them up, and restore them to the new server. This is because the file permissions on ‘correctly...
Domain Join SID Error
KB ID 0001732 Problem Thankfully I don’t see a SID error very often these days; The following error occurred when attempting to join the domain ‘{domain-name} The domain join cannot be completed because the SID of the domain you attempted to join was identical to the SID of this machine. This is a symptom of an improperly cloned operating system install. You should run Sysprep on this machine in order to generate a new...
Migrate From Server 2012 to Server 2019 Domain Controllers
Server 2012 DC to Server 2019 DC KB ID 0001731 Problem I get asked about this quite a lot. In the past most of the queries were about moving from Server 2008 to Server 2019, if that’s what you are after then simply go here. This article is purely for the introduction of, and migration to Windows Server 2019 Domain Controllers. And it assumes your current domain controllers are Windows server 2012 (or 2012 R2). Adding a Server...