Disable LLMNR and NetBIOS (via GPO)
Disable LLMNR and NetBIOS KB ID 0001816 Problem LLMNR is a protocol that’s used both in IPv4 and IPv6 networks to provide name resolution (in the absense of DNS), the problem with it is that it is wide open to exploitation and can be used to perform a MITM attack on your network. NetBIOS is much older and asscociated with IPv4 networks only. Really old Microsoft OSs used to rely on it heavily, but these days its pretty much...
Windows Server 2022 Domain Join
Server 2022 Domain Join KB ID 0001809 Problem To join Windows Server 2022 to a Domain (Local Domain). The end proces is the same as it’s always been, they’ve just made the job of getting to there a little more convoluted, (this is the same with Windows 11). Solution: Server 2022 Domain Join Whilst logged in as a (local) administrative user, click the Windows button > Settings. System. About. Advanced system...
DC Promotion fails ‘FRS is Depreciated’
FRS is Depreciated KB ID 0001579 Problem Error seen when attempting to add a new domain controller to an existing domain; Verification of replica failed. The specified domain {Domain-Name} is still using the File Replication Service (FRS) to replicate the SYSVOL share. FRS is depreciated. The server being promoted does not support FRS and cannot be promoted as a replica into the specified domain. You MUST migrate the specified domain...
Migrate DHCP Scope(s)
Migrate DHCP KB ID 0001792 Problem If you have a lot of DHCP scopes, options, or reservations, then manually creating them on your new DHCP servers can be a both a time consuming and tedious process. If only there was an easier way? Migrate DHCP with Netsh Below you can see an example, where I have many scopes and lot’s of settings that would be painful to have to recreate from scratch. This example is on Server 2008 R2,but...
Migrate From Server 2012 to Server 2022 Domain Controllers
Server 2012 DC to Server 2022 DC KB ID 0001790 Problem I get asked about this quite a lot. In the past most of the queries were about moving from Server 2008 to Server 2022, if that’s what you are after then simply go here. This article is purely for the introduction of, and migration to Windows Server 2022 Domain Controllers. And it assumes your current domain controllers are Windows server 2012 (or 2012 R2). Adding a Server...
Windows Server 2022 SFTP
KB ID 0001779 Problem Note: This will also work on Server 2019 There’s really no excuse to be using FTP any more, it’s insecure and your username, passwords and data are sent in clear text! So let’s put the secure in FTP and deploy Windows Server 2022 SFTP instead! Note: Yes there’s FTPS as well (and it’s not the same), that adds a secure layer to the old FTP protocol. SFTP is a completely different...
Windows Server – Sysprep
KB ID 0000729 Problem I don’t deploy large amounts of servers at once, so Windows Server sysprep is not as important as it is with the client operating systems I deploy. But I do need to create virtual machine templates, (mostly for testing), but some clients like to have server templates. I prefer to manually sysprep and shutdown a server then either convert or clone it to a template. Thankfully sysprep is in the same place as...
Windows Server DHCP Failover & Load Balancing
DHCP Failover KB ID 0001488 Problem Applicable to: Server 2012/2016/2019/2022 Even though we have had this functionality for a while, I’m still seeing people deploy DHCP scopes (split 80/20) across two servers? You can deploy multiple DHCP servers to serve the SAME DHCP scopes, in either load balanced, or hot standby deployment. Solution: DHCP Failover I’m assuming you already have one DHCP server setup and, with a...
Event ID 1030 and 1058
Event ID 1030 KB ID 0000119 Problem Event ID 1030 and 1058, Windows cannot query for the list of Group Policy objects. A message that describes the reason for this was previously logged by the policy engine. and Windows cannot access the file gpt.ini for GPO CN={31B2F340-016D-11D2-945F-00C04FB984F9},CN=Policies,CN=System,DC=<domain name>,DC=com. The file must be present at the location <<domain name>sysvol<domain...