Roles and Features | RayLin ICT

Page 1

Standard

How to enable Remote Desktop remotely using Powershell

By admin • On May 2, 2015 • In Roles and Features, Windows

In Windows Server 2012, remote management is enabled by default but not Remote Desktop. To enable RDP on the server, add the target server to the Server Manager and run remote Powershell console.

On the remote Powershell console, enable remote desktop and firewall using the following cmdlets:

1) Enable Remote Desktop
set-ItemProperty -Path ‘HKLM:\System\CurrentControlSet\Control\Terminal Server’-name “fDenyTSConnections” -Value 0

2) Allow incoming RDP on firewall
Enable-NetFirewallRule -DisplayGroup “Remote Desktop”

3) Enable secure RDP authentication
set-ItemProperty -Path ‘HKLM:\System\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp’ -name “UserAuthentication” -Value 1

Standard

Seize the Operations Master Role

By admin • On January 6, 2015 • In Roles and Features, Windows

You can use the Ntdsutil.exe command-line tool to transfer and seize any operations master (also known as flexible single master operations or FSMO) role. You must use Ntdsutil.exe to seize the schema operations master, domain naming operations master, and relative ID (RID) operations master roles. When you use Ntdsutil.exe to seize an operations master role, the tool first attempts a transfer from the current role owner. If the current role owner is not available, the tool seizes the role.

When you use Ntdsutil.exe to seize an operations master role, the procedure is nearly identical for all roles. For more information about using Ntdsutil.exe, type ? at the ntdsutil: command prompt.

To seize an operations master role

Open a Command Prompt as an administrator: On the Start menu, right-click Command Prompt, and then click Run as administrator. If the User Account Control dialog box appears, confirm that the action it displays is what you want, and then click Continue.
At the command prompt, type ntdsutil, and then press ENTER.
At the ntdsutil: prompt, type roles, and then press ENTER.
At the fsmo maintenance: prompt, type connections, and then press ENTER.
At the server connections: prompt, type connect to server <servername> (where <servername> is the name of the domain controller that will assume the operations master role), and then press ENTER.
After you receive confirmation of the connection, type quit, and then press ENTER.

Depending on the role that you want to seize, at the fsmo maintenance: prompt, type the appropriate command, and then press ENTER.

Role	Credentials	Command
Domain naming master	Enterprise Admins	Seize naming master
Schema master	Enterprise Admins	Seize schema master
Infrastructure master	Domain Admins	Seize infrastructure master
Primary domain controller (PDC) emulator	Domain Admins	Seize pdc
RID master	Domain Admins	Seize rid master

The system asks for confirmation. It then attempts to transfer the role. When the transfer fails, some error information appears and the system proceeds with the seizure of the role. After the seizure of the role is complete, a list of the roles and the Lightweight Directory Access Protocol (LDAP) name of the server that currently holds each role appears.

During seizure of the relative ID (RID) operations master role, the current role holder attempts to synchronize with its replication partners. If it cannot establish a connection with a replication partner during the seizure operation, it displays a warning and asks for confirmation that you want the seizure of the role to proceed. Click Yes to proceed.

Type quit, and then press ENTER. Type quit again, and then press ENTER to exit Ntdsutil.exe.

Standard

DHCP database transfer

By admin • On April 14, 2014 • In Roles and Features, Windows

Click start – run – type cmd and press enter

In the command console

Type:
netsh dhcp server export c:\dhcp.txt all

Then press enter. You can change the path and filename to suit your needs.

You should see confirmation after a short bit

The amount of time to backup your database will be dependent upon the size. You should get a confirmation that it was completed successfully.

Login with the appropriate credentials on your target server for importing. If you haven’t installed the DHCP role yet open the server manager console and click on Add Roles.

click the DHCP Server box to add the role

then click Next, then Next again

Make sure the correct IP is selected for binding

then click Next

Configure DNS

Set parent domain, Primary and Secondary DNS server IPs and click Next (in this instance the primary is the loopback for the DC that is being used as an example)

If WINS is in use…

click the radio button for “WINS is required…” and configure your Primary and Secondary server IPs then click Next, if you don’t use WINS, leave the default setting and click Next

Since we are importing a database, just click Next on this screen

Usually you can disable DHCPv6 stateless mode

If you aren’t sure you I can’t tell you if you need it or not so either accept the default or change it and click Next

You should get a confirmation message saying the install succeeded.

I wouldn’t import the database onto the new server until you have gone to your old DHCP server and either disabled the DHCP Server service, deactivated the scopes or Unauthorized it.

Open a command prompt on the new server

In the command console

type:
netsh dhcp server import c:\dhcp.txt all

Then press enter. You can change the path and filename to whatever you are using. This how to skips the step of copying the file you exported to the root of C: on the new server.

Authorize the DHCP server

Click Start, point to All Programs, point to Administrative Tools, and then click DHCP.

In the console tree of the DHCP snap-in, expand the new DHCP server. If there is a red arrow in the lower-right corner of the server object, the server has not yet been authorized.
Right-click the server object, and then click Authorize.
After several moments, right-click the server again, and then click Refresh. A green arrow indicates that the DHCP server is authorized.