Microsoft's official enterprise support blog for AD DS and more
Hi folks, Ned here for a quickie. Back in April I posted a short mail sack piece about Schema updating best practices. Something I couldn't talk about that the time is now public:
Testing for Active Directory Schema Extension Conflictshttp://technet.microsoft.com/en-us/library/testing-for-active-directory-schema-extension-conflicts(WS.10).aspx
This article walks through using some simple techniques and a script to validate that an application's schema update is not going to cause issues. Nearly all AD Schema issues are caused by incorrect changes made by third parties - this article will help you prevent those issues.
Ned "shee-maa" Pyle
KB
980650
You cannot generate FSRM reports in Windows Server 2008 if the policy for the United States FIPS compliant algorithms is enabled
979522
A Windows Server 2003-based terminal server stops responding after many users log on to it and log off from it
981607
A client cannot automatically join a domain that contains RODCs when a Windows Server 2008-based WDS server is used
981111
An update is available for Best Practices Analyzer for the File Services role in x64 editions of Windows Server 2008 R2
980360
Update for the AD DS Best Practices Analyzer rules in Windows Server 2008 R2
979734
Description of an update for Remote Desktop Services BPA
980408
The April 2010 stability and reliability update for Windows 7 and Windows Server 2008 R2 is available
974103
You cannot access the shared files or folders that are hosted on a Windows Server 2008-based or Vista-based computer if the path contains a junction point
981836
Network connectivity for a Windows Server 2003-based Hyper-V virtual machine is lost temporarily in Windows Server 2008 R2
980054
Recommended hotfixes and updates for Windows Server 2008 R2-based server clusters
981953
An incorrect IP address is returned when you ping a server by using its NetBIOS name in Windows Server 2008 or Windows Server 2008 R2
979158
Files do not go into the Recycle Bin when you delete more than 1000 files at the same time in Windows 7 or in Windows Server 2008 R2
981426
You cannot run a task that is associated with a business rule of Authorization Manager in Windows Server 2008
983386
Reliability Monitor displays no information in Windows Server 2008 and in Windows Server 2008 R2
981506
"SSL Certificate add failed, Error: 1312" error message when you try to add a CTL in Windows Server 2008 R2 or in Windows 7
980933
The Licensing Diagnosis tool returns a value of “0” for the number of RDS CALs that are available in Windows Server 2008 R2
981845
The Windows Remote Management service stops responding in Windows 7 or in Windows Server 2008 R2
981577
The "Invoke-WmiMethod" cmdlet dispatches incorrect results on a computer that is running Windows 7 or Windows Server 2008 R2
981156
RemoteApp applications are displayed as black windows when you restart the applications in a Remote desktop connection in Windows Server 2008 R2
979290
"A referral was returned from the server" error message when you use the IADsUser::ChangePassword method in Windows Server 2003 SP2
980864
Some IPsec packets are dropped unexpectedly on a computer that is running Windows Server 2008 or Windows Vista
Blogs
Win2008 R2 BPA Updates Released for April 2010 wave
Friday Mail Sack – Cup Runneth Over Edition
Inspecting AD replication facilities with LDAP searches
Quick-Find, what domain-joined VMs you have?
Volume Activation Management Tool 2.0 released
Giving Non Administrators permission to read Event Logs Windows 2003 and Windows 2008
How to mitigate the SharePoint XSS security issue with Group Policy – KB983438
Key considerations for Hyper-V virtual machine deployments
New Networking-related KB articles for the week of April 18 – April 24
Network Monitor 3.4 Beta Released on Connect!
Group Policy Hotfix Round Up – 22/4/2010 to 28/4/2010
KB274274 Focus: The Cross-Forest program deployment problem using Group Policy
Keep an eye on the Windows Server Information Experience Networking Team’s blog!
Microsoft's new directory-federation services finally ready to roll
How Microsoft Secures the Cloud Infrastructure
Active Directory Domain Services Command Fu, Part 6
Scripts to make your life easier
64-bit Version of Acctinfo2.dll
Active Directory Domain Services Command Fu, Part 5
The Case of the Printing Failure
Say goodbye to Windows logon scripts with Group Policy preferences
Group Policy Setting of the Week 23 – Outlook 2003 RPC Encryption
972779
Some smart cards performing requests cause performance issues
978098
Errors when you have a large "Folder Redirection" policy settings file in Windows Vista, in Windows 7, in Windows Server 2008, or in Windows Server 2008 R2
982822
Some providers may receive an incorrect password value from the OLEDB32 component if the password in the connection string is blank in Windows 7 or in Windows Server 2008 R2
Wiki
Wiki Page: AD FS 2.0: Migrate Your AD FS Configuration Database to SQL Server
Wiki Page: Hyper-V: How to Configure Server Core using SCONFIG
Wiki Page: Hyper-V: Performance Guide
Wiki Page: Hyper-V: How to Find the Host of a VM
Migrated Users Get Prompted To Change Password at First Logon Even After Migrating Their Password with the PES
The Next Generation of AD Performance Analysis
Validating your AD Schema Prior to Upgrade (a Followup)
Friday Mail Sack – It’s About To Get Real Edition
Hey, Scripting Guy! Weekend Scripter: Configuring W32Time Service Logging
Considerations when upgrading your Active Directory to Windows Server 2008 and 2008 R2
Group Policy Setting of the Week 25 – Remove the Action Center icon
BPOS Deployments – notes from the field
What's next for Windows Server and beyond?
Announcing the Availability of Active Directory Federation Services 2.0 and Forefront Protection for SharePoint 2010
AD Clients Not Authenticating to its Local Site
Top 10 IAM Challenges for Heterogeneous Enterprises
Eugenio Pace on Identity Federation, WIF, and ADFS 2.0
Free Office Mobile 2010 for Windows Phones
Best Practices for Creating a Secure Guest Account on Windows 7
Choosing an Appropriate User State Virtualization Solution
PowerShell Resource Page at Windows IT Pro
Folder Redirection isn’t working correctly — the redirection targets the wrong server!
Select WMI
The very best Sysinternals tools for Windows server security
Hyper-V Best Practice Analyzer - What does it check
New Networking-related KB articles for the week of May 2 – May 8
New topic and script about testing for Active Directory schema extension conflicts
Adding claim mapping to existing provider in SPS 2010
Using Kerberos security with Server for NFS
Two Minute Drill: The Schtasks command
Windows Intune - Under the Hood
IPv6 transition technologies on Windows Server 2008 R2 Server Core
PowerShell and AD DS Best Practice Analyzer
982879
Microsoft Advisory Services Engagement Scenario - Internet Explorer 7 and 8 Group Policy Deployment
979230
TCP connections fail intermittently when both endpoints are on the same computer in Windows Server 2003 SP2
982813
How to restore IIS and clean up Active Directory when you uninstall Active Directory Federation Services 2.0
978309
IPv6 transition technologies, such as ISATAP, 6to4 and Teredo do not work on a computer that is running Windows Server 2008 R2 Server Core
Friday Mail Sack – Tweener Clipart Comics Edition
Why do I get ACCESS DENIED when running commands on a remote PS runspace?
DsRemoveDsDomainW error 0×2015 (The directory service can perform the requested operation only on a leaf object.)
NTLM V1… no, excuse me… NTLM V2… oh, no, you were right… it’s V1…
Component Service MMC hangs if a remote computer is offline
Windows 2008 R2 Recycle Bin support for FIM
Group Policy Setting of the Week 24 – Remove Properties from the Computer icon context menu
Update: Extend your Corporate Active Directory Boundary to your Blackberry!
Available now: Active Directory Federation Services 2.0
How to use Group Policy to configure home page – Part 3
Windows Azure Platform. Inside the Cloud. Microsoft's Cloud World Explained Part 2.
Linux Integration Services v2.1 Release Candidate Now Available
ADSIEdit does not show all attributes!?
Using BitLocker to Encrypt Removable Media (Part 3)
New Networking-related KB articles for the week of April 25 – May 1
Active Directory Mergers, Acquisitions, and Divestitures
Server Core: Best Practice for Applications on Windows Server
AD FS 2.0 Step-by-Step & How-To Guides
Hello, Internetz. Jonathan here again. Ned didn’t tell you the whole story. Not only did I have to wait for the truth serum to wear off; I also had to chew my way out the straps. Nevertheless, I’ve emerged victorious and have again successfully stormed the AskDS gates and vanquished Ned. Don’t fear for the little Neebler, though. Yes, he’s been jammed into a steel drum along the side of one of our nation’s great highways, but he’s being fed well through the bung hole, mostly, and he has a nice view of the Interstate. I hope he enjoys playing Punch Buggy with himself.
Of course, knowing Ned, I give him about a week before he escapes, so let’s make the most of that time, shall we?
AskDS has been successfully migrated to our new blog platform. Unfortunately, the backup that was restored after the migration was older than we thought so we appear to have lost some of our more recent posts. I’m working now to re-post those articles now. Please let us know if I missed one.
--Jonathan “Pretender, Redux” Stephens
983254
The first data point that is in a Performance Monitor log .csv file may be a larger number than expected in a Windows Server 2003-based domain
File Services management pack has been released
ADFS/SharePoint webcast w/Brjann Brekkan
Group Policy Setting of the Week 26 – Do not automatically make redirected folders available offline
Work Remotely with Windows PowerShell without using Remoting or WinRM
File Services Management Pack for System Center Operation Manager 2007 is available
KB978098 Focus: Large “Folder Redirection” issue
The case of the blank file properties dialog
Configuring applications in Windows with Group Policy preferences
Moving the NTP service to a new PDCe
How to exclude individual users or computers from a Group Policy Object
Run Diagnostics to Check Your System for Memory Problems
Locating Domain Controllers To Access The Default Domain DFS (SYSVOL/NETLOGON)
Infrastructure Planning and Design Guides
Information About Upgrading to Windows Server 2008 R2 AD
AD Schema Changes Made by Exchange
New Networking-related KB articles for the week of May 9 – May 15
Enable and Use Remote Commands in Windows PowerShell
AD FS 2.0 … a SAML Promise Delivered!
AD FS 2 proxy management
File upload/download and remote program execution using WS-Management
Issuing Information Cards with AD FS 2.0
Servicing a Server Core Installation
Manage Windows 7 Power Options from the Command Line