Active Directory Domain Service Role’s Install Error 0x80010108

Hi everyone

If you hit an install error 0x80010108 when you try to add the Active Directory Domain Service’s role to your server, then please make sure your account is correctly delegated the corrects right to add a new domain controller. It’s a simple right issue.

 

7-4-2018 12-00-31 PM

I kindly asked for a unfiltered account to do the task, and it worked like a charm 🙂

Thanks

 

Advertisements
Posted in microsoft | Leave a comment

Windows Server 2016 RDS’s setting

Hi everyone

If you make a RDS install for a simple server. I found today a small tip to simply add the Remote Desktop Session Host’s role and set the licensing mode correctly; (As the console don’t seem to be there by default)

Open gpedits.msc, and go there:

Computer Configuration\ Administrative Templates\ Windows Components\ Remote Desktop Services\ Remote Desktop Session Host\ Licensing

And set those two options;

Use the specified Remote Desktop license servers Enabled, and enter the licensing server.

Set the Remote Desktop licensing mode Enabled, and select user or device.

After you can hit a refresh in your RD Licencing Diagnostic MMC, and the status should be good !

 

Thanks

Posted in microsoft | Leave a comment

Windows 10 April’s 2018 patch with Intel SSD BSOD

Hi everyone

Please be aware of a know problem with Surface Book and the latest update, it would cause a BSOD of your OS.

The only recommended action is to reinstall a older version (Build 1709)

blue-screen-of-death-bsod-windows-56a6faab3df78cf772913ee6

See an official’s statement:

When attempting to upgrade to the Windows 10 April 2018 Update, select devices with Intel SSD 600p Series or Intel SSD Pro 6000p Series may crash and enter a UEFI screen after reboot.

Microsoft is working with OEM partners and Intel to identify and block devices with Intel SSD 600p Series or Intel SSD Pro 6000p Series from installing the April 2018 Update due to a know incompatibility that may cause performance and stability issues.  If you have encountered this issue, follow the steps to reinstall the previous operating system (Windows 10, version 1709).

Microsoft is currently working on a resolution that will allow the April 2018 Update on these devices in the near future.

 

Posted in microsoft | Leave a comment

Windows 7/10 + Terminal + SmartCard Redirection with XenDesktop

Hi everyone

In some instance you might have to use a smartcard inside a windows session, using the smartcard in Internet Explorer, not to login to the VM, it’s a simple scenario, but in some occasion it can be a headache.

Imagine you have some terminal;

That will force you to do a redirection of the USB device;

That way with a Wyse;

Device=vusb ForceRedirect=0x08E6,0x0000,0x00,0x00,0x00 (You have to replace the ID with the Smart Card ID you have)

Now if you connect to a Windows’s OS hosted with XenDesktop you will have another problem, the VDA’s agent badly handle the said smartcard, thus you have to remove that CtxHook

You simply erase the folder Smart Card Hook

3-20-2018 9-33-56 AM

You reboot the Windows session, and voila, the next time you will have to use your smartcard in Internet Explorer the prompt will display and work as expected !

Win8PIN

 

 

Posted in microsoft | Leave a comment

Windows 7/10, vSphere 5.5+, Citrix Desktop Studio Power State Unknown

Hi everyone

In your vSphere do you happen to have Windows 7 or 10 streamed VM that got in a reported as in an Unknown Power State ? if yes please follow my tip.

From that screen you remove that VM from your DDC inventory.

3-22-2018 2-54-02 PM

On the vSphere you remove it too from the inventory, don’t delete from disk

3-22-2018 2-54-29 PM

You click to browse your datastore

3-22-2018 2-55-05 PM

On your VM .vmx you right click to

3-22-2018 2-55-27 PM

You follow that wizard

3-22-2018 2-55-36 PM

Now you return in the DDC, you need to re-add that machine

3-22-2018 2-58-31 PM

In your desktop group your re-add it too;

3-22-2018 2-58-51 PM

 

Now both system will be syncro !

 

 

Posted in microsoft | Leave a comment

Logon Failure: The target account name is incorrect

Hi everyone

Today I stumbled into a bug;

From a DC to another DC when I try to naviguate to the server fileshare I got that error;

Logon Failure: The target account name is incorrect

I checked the DNS’s console, and from the faulty DC the console don’t open too.

After checking all around, the DFS is dead, the server is no more responding to anything and oh well, it’s tombstone.

tombstone

At that point first thing I did is;

net stop kdc

After that a netdom;

netdom reset passwd /Server:DC2 /UserD:domain\administrator /PasswordD:*

netdom reset passwd /Server:DC2 /UserD:domain\administrator /PasswordD:*

Type the password associated with the domain user:
The machine account password for the local machine has been successfully reset.
The command completed successfully.

I did a restart, now the DNS’s console open, but I still got a account error, thus I run the netdom against the other DC as well, another restart and voila! It work as expected !

 

A good article related to mine is there; Domain controller is not functioning correctly

 

 

 

Posted in microsoft | Leave a comment

DNS Server Service – Error 1717: The interface is unknown

Hi everyone

Yesterday I stomped into a new bug, I wanted to share it with you guys.

After some Windows Update on a Server 2008 R2, I got that wonderful message from the service manager for the DNS server service:

Windows could not start the DNS Server service on Local Computer. 
Error 1717: The interface is unknown.

image_thumb_85

After some research I found this blog post and some Microsoft KB that talk about the EventLog that can have bad permission, thus I resetted those permission:

Per the MS KB, it’s those I need to set: (KB there: Error message when attempting to start the Windows Event Log Service: “Access denied”)

Restore the default permissions on %SystemRoot%\System32\winevt\logs.

Authenticated user – List folder/read data, Read attributes, Read Extended attributes, Read permissions
Administrators – Full control 
SYSTEM – Full control 
EventLog – Full control

After that, the service still give me an Access Denied 5 error, now I simply moved all EventLog file from that folder to a backup folder, and I tried to restart the eventlog service, and now it was working ok !

64102

After that change the DNS Server Service was able to start with the eventlog ! 🙂

 

 

Image took from there and there

 

Posted in microsoft | Leave a comment