Thursday, May 12, 2016

Server 2012 R2 Essentials how to use .com .org TLD Suffix

If you are building a new domain best practices dictate that you should be using an internal domain that is in line with your external domain for example. “Office.Domain.com” with your external domain being “domain.com”

However, by default Server 2012 R2 Essentials will not allow you to use a top level domain. It will try to set your domain to “.local”for example “Domain.local” if you use the wizard which will be a problem in the future as your domain and network grows.

To resolve this install Server 2012R2 Essentials, but do not run the “Configure Windows Server Essentials” instead close it. Set your static IP on your network card, change the computer name to what you want it to be and restart.

After restart logon and close the “Configure Windows Server Essentials” then open up Powershell as an Administrator:

You will now create the new domain administrator account using the following command:

PS C:\> $cred = Get-Credential –UserName LocalAdmin –Message “Authenticate please”

Note: you cannot have a local user with the same name

See below for Example for Administrator “JoeAdmin”

clip_image002

You will then be prompted to enter in the password as shown below: clip_image004

Now we can start the DC Promotion process:
PS C:\> Start-WssConfigurationService -CompanyName “JoeCPA” -DNSName “Office.JoeCPA.com” -NetBiosName “Office” –NewAdminCredential $cred -Setting All

See below for Example for “Office.JoeCPA.com”:

clip_image006

Select “Yes” when prompted:

clip_image007

You may see progress bar it may take a minute or 2 so be patient:

clip_image009

clip_image011

The system may require a few restarts and you will see this confirming the setup completed:

clip_image013

Welcome to your new domain!


Reference: https://technet.microsoft.com/en-us/library/dn376323(v=wps.630).aspx

Monday, May 9, 2016

Add Exchange 2016 Attributes in Exchange-less local domain

Download Exchange 2016 installation files. You can download the media here:

https://www.microsoft.com/en-us/download/details.aspx?id=49161

Before we begin I would recommend:
· Make sure you have a good backup of your AD and Server (test it)
· Restart your AD server to complete any pending updates, installers, …
· Run MS AD Replication Status Tool to make sure AD is ready

Extract the installer to C:\TempExch16

clip_image002 clip_image003

Open up a Command Prompts as an Administrator and cd to C:\TempExch16

clip_image005

Type setup /ps /IacceptExchangeServerLicenseTerms

clip_image007

You will see Unattended Setup is running

clip_image009

Files copied Organization Checks Completed and AD Schema extended:

clip_image011

Open up Active Directory Users and Computers, Select “View”, Select “Advanced Features” as shown below:

clip_image013

Now when you edit the properties of a user you can edit added Exchange Attributes from the “Attributes Editor” without ADSIedit as shown below:

clip_image015clip_image016

The same is also true for distribution and other groups:

clip_image018

Thursday, May 5, 2016

Add Exchange 2010 Attributes in Exchange-less local domain

Download Exchange 2010 installation files. You can download the trial here:

https://www.microsoft.com/en-us/download/details.aspx?id=21570

Before we begin I would recommend:
· Make sure you have a good backup of your AD and Server (test it)
· Restart your AD server to complete any pending updates, installers, …
· Run MS AD Replication Status Tool to make sure AD is ready

Extract the installer to C:\TempExch as shown below

clip_image002 clip_image003

Open up a Command Prompts as an Administrator and cd to C:\TempExch

clip_image005

Type setup /PrepareSchema or setup /ps

clip_image007

You will see a cancel Prompt for Unattended Setup (let it count down)

clip_image009

Files copied Organization Checks Completed and AD Schema extended:

clip_image011

Open up Active Directory Users and Computers, Select “View”, Select “Advanced Features” as shown below:

clip_image013

Now when you edit the properties of a user you can edit added Exchange Attributes from the “Attributes Editor” without ADSIedit as shown below:

clip_image015clip_image016

The same is also true for distribution groups:

image

Credit: https://community.office365.com/en-us/f/158/t/169309
https://technet.microsoft.com/en-us/library/bb125224(v=exchg.141).aspx
http://blog.coretech.dk/bfa/adding-exchange-attributes-to-ad-in-an-office-365-with-sso-environment/

Wednesday, May 4, 2016

Windows Server AD Replication Status Tool


To test your AD replication in your environment I recommend the following MS tool:
https://www.microsoft.com/en-us/download/details.aspx?id=30005

Once downloaded and installed, typically but not required to be one of your Domain Controllers, you will have the following icon on your desktop:

clip_image002

When you open the Tool, by default, it will pull in your local domain information. For a quick check simply click on “Refresh Replication Status” in the top left corner as shown below:

clip_image004

It will then open up the Replication Status Viewer as shown in the example below:

clip_image006

As you can see in my example above there is a replication error

By looking up the 8524 error on the “Last Sync Result” and reviewing the “Last Sync Message” field I can then research and resolve my replication issues.

clip_image008