server 2012

DFS Referral Error

Posted by robd on June 30, 2017
DFS, Server 2012 / No Comments

Kept getting the below error today while access a share, annoying the redirection share of a desktop.

 

Weirdly I could

Access the share from another server,

I could access the share using the direct share.

So I installed DFSUTIL.EXE on the server having the problem by installing “Distributed File system tools” windows feature.

Then ran:

 

 

Boom.

Tags: , ,

WSUS Issues – System.IO.IOException

Posted by robd on June 02, 2016
WSUS / 15 Comments

So we auto patch servers using WSUS (Version: 6.2 on Server 2012) which is great as all servers (and we have loads) get patched and we don’t have to do anything (except fix shitty MS updates).

Last week WSUS patched itself and all of a sudden the WSUS Admin console was inaccessible:

WSUS Error

Clicking the copy error to clipboard gave this:

 

So after much Googling I found KB3148812 is the update that broke it.

To recover your console, run the following in an elevated command prompt (assuming Windows is installed on drive C):

cd C:\Program Files\Update Services\Tools

Wsusutil.exe postinstall /servicing

Then reset the server node or reboot WSUS, and you’re back in!

 

Once your back you may find that client scans against WSUS no longer succeed.

To restore client-server communication, enable HTTP Activation on your WSUS server via the Add Features and Roles Wizard in your Server Manager:

HTTP activation

Job Done.

Tags: , , ,

Server 2012 UAC – You don’t currently have permission to access this folder.

Posted by robd on May 13, 2014
Server 2012 / 1 Comment

Hi All,

Today I thought I’d setup roaming profiles on a Server 2012 file server, easy I thought, take me 10 minutes I thought…I was wrong.

So first things first, I created a share on my server with permissions:

Permissions1

Tested the share from another PC, great I can get on.

Jumped back on the server and tried to open the folder from the rout i.e. E:\Share\staff and I got the following

You don’t currently have permission to access this folder. Click Continue to permanently get access to this folder

UAC0

Well if I click Continue then my share is ruined with ugly permissions I don’t want! I.e. I only want the permissions I specified above not my username dotted everywhere.

So I turned to UAC and disabled it:

UAC2

No change, well thats mental……after a good hour of searching I found the answer was to set the registry to:

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\EnableLUA

to 0

UAC3

Reboot the server and all was fine in the world!!.

So why does UAC do this? UAC strips the admin credential from any un-elevated process. If you’re attempting to use an un-elevated process such as explorer to access a remote share using only admin credentials, UAC will strip the admin credentials from the process’ security token and the process will receive an “access denied” error.  Which is stupid if you changing permissions.

Tags: , ,

Find AD users using Profile Paths (roaming profiles)

Posted by robd on May 08, 2014
powershell / No Comments

So today due to a server migration I needed a list of all the users who have roaming profiles, found this useful Powershell script:

Please note you need to ammed this line of code to suite your site: “OU=VI2,OU=Students,OU=Users,OU=Monmouth School,DC=Monmouth,DC=local”

Tags: , , , , , , ,

Copy Protected by Chetan's WP-Copyprotect.