Installing Legacy Network driver in WS 2003 VM over Hyper-V

Hi!

When you want install a Win 2003 Server over Hyper-V (win 10) and you see that network card doesn’t works, you need to remove the network card, add a Legacy network card and after use the Windows 7 drivers.

To do that go to Windows 7 machine, find C:\Windows\System32\DriverStore\FileRepository and copy the folder dc21x4vm.inf_amd64_neutral_8887242a56ee027e or the same but with differents hexadecimal numbers.

Once done, make an iso with this folder and connect it to your virtual machine Windows 2003 and use this driver.

Regards!

How to enable Recycle bin in ADDS 2008 R2

Hi!

To enable Recycle bin feature in ADDS 2008 R2 you need to do the following steps:

  1. Connect to a domain controller and open Active Directory Module for Powershell.
  2. Execute the command: Get-ADOptionalFeature ‘recycle bin feature’.With this line you can see if Recycle bin is enabled or not if EnabledScopes is blank.recyclebin00
  3. Copy DistinguishedName showed on the executed command and execute the following command: Enable-ADOptionalFeature -identity ‘CN=Recycle Bin Feature,CN=Optional Features,CN=Directory Service,CN=Windows NT,CN=Services,CN=Configuration,DC=YourDomainXXX,DC=XXX’ -Scope ForestOrConfigurationSet -Target ‘YourDomainXXX.XXX’
  4. Push Y.recyclebin01

Regards!

Failed to obtain the InfrastructureMaster using a well known GUID in ADDS 2008 R2

Hi!

Checking and ADDS 2008 R2 I saw the following error in Eventvwr:

AD Replication Monitoring : encountered a runtime error.Failed to obtain the InfrastructureMaster using a well known GUID.The error returned was: ‘Failed to get the ‘fSMORoleOwner’ attribute from the object ‘LDAP://DC1.YourDomainXXX.XXX/<WKGUID=2fbac1870ade11d297c400c04fd8d5cd,DC=ForestDnsZones,DC=YourDomainXXX,DC=XXX>’.The error returned was: ‘There is no such object on the server.’ (0x80072030)’ (0x80072030)

fsmoroleowner01

To solve it I did the following actions:

  1. Open Adsi Edit and connect to Configuration Naming Context.
  2. Go to CN=NTDS Settings,CN=YourServerNameXXX,CN=Servers,CN=YourSiteXXX,CN=Sites,CN=Configuration,DC=YourDomainXXX,DC=XXX and right click on properties.
  3. Seek distinguishedName, push View button and copy all the line.fsmoroleowner02
  4. Connect to DC=ForestDnsZone,DC=YourDomainXXX,DC=XXX and right click Properties over CN=Infrastructure.
  5. Seek fsMORoleOwner and push Edit.fsmoroleowner03
  6. Erase the line and paste the line copied steps before. Push OK.
  7. Open a new connection to DC=DomainDnsZones,DC=YourDomainXXX,DC=XXX and repeat same steps.

Your Warnings with ID 1000 will disappear.

Regards!

Dcdiag fails for NCSecDesc test on Windows 2008 R2 Domain Controllers

Hi!

These days I’m checking an ADDS 2008 R2 forest. and when I did a dcdiag I saw the tipicall error in the NCSecDesc test :

* Security Permissions Check for C=ForestDnsZones,DC=domainXXX,DC=org

(NDNC,Version 3)

Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn’t have Replicating Directory Changes In Filtered Set access rights for the naming context: DC=ForestDnsZones,DC=domainXXX,DC=XXX

* Security Permissions Check for DC=DomainDnsZones,DC=domainXXX,DC=org

(NDNC,Version 3)

Error NT AUTHORITY\ENTERPRISE DOMAIN CONTROLLERS doesn’t have           Replicating Directory Changes In Filtered Set access rights for the naming context: DC=DomainDnsZones,DC=domainXXX,DC=XXX

This error not`s important if you don’t want to implement RODC but anyway you have two options to solve it:

As Microsoft says you can follow this article to fix it:

https://support.microsoft.com/en-us/kb/967482

But if you want to fix it manually you can do the following steps:

  1. Open Adsi Edit and Connect to the connecting point: DC=ForestDnsZoones,DC=DomainXXX,DC=XXXconnect01
  2. Over DC=ForestDnsZoones,DC=DomainXXX,DC=XXX right click and select Properties.
  3. In Security Tab push on Advanced.
  4. Select Enterprise Domain Controllers with Replicating Directory Changes and push Edit.connect02
  5. Select Allow checkbox to Replicating Directory Changes In Filter Set and Apply to This object and all descendant objects, also select Apply these permissions to objects and/or contaniers within this container only.connect03
  6. Connect to C=DomainDnsZones,DC=domainXXX,DC=XXX and do the same actions.

Regards!