Windows 2012 R2 with the Windows Essential Experience role installed.

I can get to remote web access but I want to add some existing shares to the shared folder area. The Dashboard wants me to assign new permissions one user at a time (cant even do groups?!). I have an existing share with permissions applied within that folder tree already.

All I want to do is take what I already have and put it on the RWA page. I dont want to modify any permissions, especially for 25 users, one at a time for the 5 shares I want to make available, then have to go back in and reassign permissions on the restricted nested folders. SBS 2011 allowed me to achieve this very simply.

Thanks for any assistance.

Hi, so while it has certainly been a rocky road, windows 10 is working fine on all the desktops in the office. WIN!

whats NOT WORKING is anyone that has a laptop and wants to work remotely.

right now no laptop that connects with the WSE Connector and has it 'green' can see or access any of the files stored on the server that are part of 'Shared Folders'. this is crippling our company right now and is making me think of rolling everyone back to windows 7!

please help. nothing has changed in the router or access setup topology. remote desktop works fine and thats what everyone is having to use right now, but its painful and now how it should be.

Windows 10 is not an upgrade right now, its a big step backwards!

Hi All, I have a windows server 2012 VPN Service setup and working. All users are being assigned an iP address from our DHCP server. 

I would like to assign clients to different VLAN's based on groups. I have seen this link that shows i can assign a VLAN tag using NPS.

https://technet.microsoft.com/en-us/library/cc754422(v=ws.10).aspx

I have tried to setup the attributes but the clients are still getting the wrong ip address.

DHCP is setup with several pools which match our VLANS and these work on wired connections ( Swapping from one vlan to another changes the ip address). 

We are using a cisco ASA firewall for our Vlan interfaces. 

Thanks

Hello all,

My Essentials Dashboard is showing alerts that all our client PCs need updates installed. After checking each PC, they are all up-to-date. This then changes the update status to 'Up-to-date' but changes back every night to needing the same update status. I am lost as to what the issue is here.

Can anyone help find the issue?

Thank you,

Jason

Hi,

Downloaded 120 day Eval version from MS website, 2012 Essentials Server. Installed, configured & all working well. Purchased a Retail license BUT will not activate !!! Checked MS website & it states that to convert a Eval to Full version, enter the new key, this does not work & requests that I enter another one.

Called MS Support in UK, was sent from pillar to post several times & its always the wrong dept, eventually a lady stated that 2012 Essential Eval version cannot be upgraded to Full. Solution:- Download a new version & than key in the License key.

This would mean backup Data, re-install 2012 Essential, AV, Apps ... this would take over a day.

Any assistance would be greatly appreciated, especially I've paid for the license.

Thanks in advance 

Hitesh Patel

Hi,

We have a Server 2012 Essentials server that we are using in a small business environment. Everything has been working great until now we're having an odd problem. Ever since I installed a ton of updates on the server (I install updates every 3 months or so) we have an application (M-Files) that gives this error on every client computer when the user logs in. If we dismiss the error and wait a minute or so and then use the application, everything works just fine. No errors and authentication works properly.

We are a very small business, only 3 of us in the company and I'm the IT guy. Normally I can figure stuff out with some Googling but this one has me stumped. I don't really even know where to start. DNS seems to be working fine even immediately after login - I can nslookup the servers just fine. Maybe worth noting is that the M-Files server application is on a second server - one running Server 2008 R2. I also installed a bunch of updates on it the same day.

What is the recommended way of fixing this? Should I roll back all the updates and see if that fixes it and then apply them one by one? This will be a HUGE pain since there was around 100 updates on the server running M-Files and about 75 on the 2012 server (DC, DNS, etc).

Thanks,

Devin

Can anyone provide a reference to a recommended allowance for annual disk space growth for Windows Server 2012?

Something like the Microsoft recommended disk space allowance to allow for updates and security patches.

thanks,

Steve

Hi everyone,

i'm running into a strange problem. We recently did a SBS 2008 tot Server 2012 Essentials R2 migration for a client. Migration went through fine, all the information from the AD migrated over nicely and everything seems to be fine and dandy, except...

Except i can't get the Connect Wizard to complete on any of the computers in the network. On every machine (Windows 7 Pro and Windows 10 Pro) i get the same error at the same location. Once it hits the point where i need to enter a username and password to join to the network i always get the message that the server isn't available.

I've tried the skip-domainjoin hack and even tried the skip DNS alteration hack found here: https://tinkertry.com/how-to-make-windows-server-2012-r2-essentials-client-connector-install-behave-just-like-windows-home-server but it still throws the same error.

Here's the information from the ClientDeploy.log for my latest try:

[724] 160302.125606.2237: ClientSetup: Standard Ouptput: ===========================================================================
[724] 160302.125606.2237: ClientSetup: Standard Ouptput: Interfacelijst
[724] 160302.125606.2237: ClientSetup: Standard Ouptput:  14...00 1c c4 d6 15 ed ......Broadcom NetXtreme Gigabit Ethernet
[724] 160302.125606.2237: ClientSetup: Standard Ouptput:   1...........................Software Loopback Interface 1
[724] 160302.125606.2237: ClientSetup: Standard Ouptput:  13...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
[724] 160302.125606.2237: ClientSetup: Standard Ouptput: ===========================================================================
[724] 160302.125606.2237: ClientSetup: Standard Ouptput:
[724] 160302.125606.2237: ClientSetup: Standard Ouptput: IPv4 routetabel
[724] 160302.125606.2237: ClientSetup: Standard Ouptput: ===========================================================================
[724] 160302.125606.2237: ClientSetup: Standard Ouptput: Actieve routes:
[724] 160302.125606.2237: ClientSetup: Standard Ouptput: Netwerkadres             Netmasker          Gateway        Interface Metric
[724] 160302.125606.2237: ClientSetup: Standard Ouptput:           0.0.0.0          0.0.0.0  192.168.101.254  192.168.101.159     10
[724] 160302.125606.2237: ClientSetup: Standard Ouptput:         127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
[724] 160302.125606.2237: ClientSetup: Standard Ouptput:         127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
[724] 160302.125606.2237: ClientSetup: Standard Ouptput:   127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
[724] 160302.125606.2237: ClientSetup: Standard Ouptput:     192.168.101.0    255.255.255.0         On-link   192.168.101.159    266
[724] 160302.125606.2237: ClientSetup: Standard Ouptput:   192.168.101.159  255.255.255.255         On-link   192.168.101.159    266
[5508] 160302.125606.2237: ClientSetup: Standard Error:
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput:   192.168.101.255  255.255.255.255         On-link   192.168.101.159    266
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput:         224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput:         224.0.0.0        240.0.0.0         On-link   192.168.101.159    266
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput:   255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput:   255.255.255.255  255.255.255.255         On-link   192.168.101.159    266
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput: ===========================================================================
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput: Permanente routes:
[5616] 160302.125606.2237: ClientSetup: The exit code of the process (C:\Windows\system32\route.exe) is: 0
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput:   Geen
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput:
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput: IPv6 routetabel
[5616] 160302.125606.2237: ClientSetup: ProcessHelper.StartProcessWithRedirectOutput() Executing "C:\Windows\system32\nslookup.exe" SC-SRVESS
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput: ===========================================================================
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput: Actieve routes:
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput:  Indien metrische netwerkbestemming      Gateway
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput:   1    306 ::1/128                  On-link
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput:  14    266 fe80::/64                On-link
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput:  14    266 fe80::a866:9f43:f634:c7ee/128
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput:                                     On-link
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput:   1    306 ff00::/8                 On-link
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput:  14    266 ff00::/8                 On-link
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput: ===========================================================================
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput: Permanente routes:
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput:   Geen
[5508] 160302.125606.2237: ClientSetup: Standard Ouptput:
[5508] 160302.125606.2705: ClientSetup: Standard Ouptput: Server:  xxx.xxx.local
[5508] 160302.125606.2705: ClientSetup: Standard Ouptput: Address:  192.168.101.1
[5508] 160302.125606.2705: ClientSetup: Standard Ouptput:
[5508] 160302.125606.2705: ClientSetup: Standard Ouptput: Naam:    XXX.xxx.local
[5508] 160302.125606.2705: ClientSetup: Standard Ouptput: Address:  192.168.101.1
[5508] 160302.125606.2705: ClientSetup: Standard Ouptput:
[5508] 160302.125606.3017: ClientSetup: Standard Ouptput:
[5508] 160302.125606.3017: ClientSetup: Standard Error:
[5616] 160302.125606.3017: ClientSetup: The exit code of the process (C:\Windows\system32\nslookup.exe) is: 0
[5616] 160302.125606.3017: ClientSetup: Set CD Fail reason 10 for SQM in ClientDeployment.exe
[5616] 160302.125606.3017: ClientSetup: RecordClientDeploymentFailReason: Save registry failed in ClientDeployment.exe : System.UnauthorizedAccessException: Kan niet naar de registersleutel schrijven.
   bij Microsoft.Win32.RegistryKey.EnsureWriteable()
   bij Microsoft.Win32.RegistryKey.CreateSubKeyInternal(String subkey, RegistryKeyPermissionCheck permissionCheck, Object registrySecurityObj, RegistryOptions registryOptions)
   bij Microsoft.Win32.RegistryKey.CreateSubKey(String subkey, RegistryKeyPermissionCheck permissionCheck)
   bij Microsoft.WindowsServerSolutions.ClientSetup.ClientDeploy.Helper.RecordClientDeploymentFailReason(UInt32 failReason)
[5616] 160302.125606.3017: ClientSetup: Exiting ValidateUserTask.Run
[5616] 160302.125606.3017: ClientSetup: Task with Id=ClientDeploy.ValidateUser has TaskStatus=Failed
[5616] 160302.125606.3017: ClientSetup: Task with Id=ClientDeploy.ValidateUser has RebootStatus=NoReboot
[5616] 160302.125606.3017: ClientSetup: Exting ConnectorWizardForm.RunTasks

Kind regards, Philipp - Solid IT Solutions

VPN

.

Client: Windows 7 Pro

.

Host: Windows Server R2 Essentials

.

We set up VPN access to the host on a single client workstation after some playing around with the ports on the router. Was able to set up Server shares and access files etc.

.

Set up a second client and could not establish a VPN connection.

.

To verify that the VPN was working properly, we removed the VPN from the workstation that was working and rebuilt it.

.

Unfortunately we could not get the VPN to work again.

.

Remote Web Access, however, is working fine from all the workstations to the Server with no problems. Same certificate that we are using for the VPN. 

.

With the workstation that had VPN working before:

.

VPN errors at the client end:

.

Running the ”Windows Server Essentials Connector Configuration Wizard” resulted in “Cannot get information from **.***.***.172. Please contact your server administrator”

Setting up a network connection:

.

“Connection failed with error 800. The remote connection was not made because the attempted VPN tunnels failed...

“The remote device or resource won't accept the connection Detected”

.

From the ClientDeployment.log

.

[8804] 160613.100137.5575: ClientSetup: Making web request: https://**.***.***.172//connect/default.aspx?Get=Setup.cab&LanguageId=1033&64bit=1[8804] 160613.100137.7275: ClientSetup: Failed to download Setup.cab from server: System.Net.WebException: The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel. ---> System.Security.Authentication.AuthenticationException: The remote certificate is invalid according to the validation procedure.

.

At the Server End

.

Error 2016/06/13 8:06:07 Schannel 36888 None

.

A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 1203.

.

Error 2016/06/13 7:18:17 Schannel 36887 None

.

A fatal alert was received from the remote endpoint. The TLS protocol defined fatal alert code is 46.

.

Warning 2016/06/11 16:11:32 RasSstp 18 None

.

The Secure Socket Tunneling Protocol service either could not read the SHA256 certificate hash from the registry or the data is invalid. To be valid, the SHA256 certificate hash must be of type REG_BINARY and 32 bytes in length. SSTP might not be able to retrieve the value from the registry due to some other system failure. The detailed error message is provided below. SSTP connections will not be accepted on this server. Correct the problem and try again.

.

Error 2016/06/11 16:11:32 RasSstp 24 None

.

The certificates bound to the HTTPS listener for IPv4 and IPv6 do not match. For SSTP connections, certificates should be configured for 0.0.0.0:Port for IPv4, and [::]:Port for IPv6. The port is the listener port configured to be used with SSTP. The default listener port is 443.

.

From what I can see, it appears that the certificate is OK for Remote Web Access but not for the VPN.

.

Any ideas on how to fix, would be sincerely appreciated.

.

Thanks - Al

Thought I asked this before but can't find it anymore.  I have a Windows 2012 R2 Essentials server running on physical hardware.  Also have a Windows 2012 R2 Server running virtual.  They are PDC and backup PDC, plus do DNS, certificate server, and DHCP.  The Essentials server is running on a tower PC and want to move it to a rack mount system.  Obviously different hardware and network card.  I have a lot of stuff setup in these systems and hate to rebuild it.  I do have an external hard drive that is backing up the C: drive as part of the built in backup software.  If I was to plug that drive into the new server and do a restore would everything just work?  Give or take the fact that it's a different network card and would have to configure it to the same static IP and stuff.

Thanks.

Steve

I'd like to back up my WSE 2012 R2 server to an external Seagate HD.

File explorer sees the drive (WSE assigns it a drive letter) and you can easily copy or delete files from it, however the WSE 2012 R2 Server back-up wizard does not recognize the drive at all.

I get an error message that says something to the effect that "The wizard cannot find any drives that are suitable for a backup destination ...."

I'm stumped. 

Hi,

I'm working for a small company (10 users). We have 2 servers; 1 is a normal file server, domain controller etc.; the second is dedicated for running a financial application. We bought and installed new hardware but with so called 'Technet licenses'.

Obviously we need to buy proper licenses. I have 2 questions :

1. Am I correct in buying 1 Windows 2012 R2 Essentials license, 1 Windows 2012 R2 Standard license and 10 CALs ?

2. Can I just install these licenses 'over' the existing 'Technet licenses' ?

Any help will be greatly appreciated.

Ronald Ruijtenberg

Hi,

the Essentials Role Configuration Fails on 67% on a freshly installed 2012 R2 Server.

I read in some other sites, that I should take off the essentials role and reinstall, but I cannot uninstall.

How can I reset the Essentials Role Installation?

br.

Martin

 Since a few Server update rounds ago, I've been receiving repeated Alert Viewer alerts on most all Windows 10 workstations stating that "Important updates should be installed". When I run a check for updates on the workstations, the result is none available and the alert goes away for a period of time. Then it appears again. I've seen this on several Server 2012 R2 Essentials and WHS 2011 systems. Anyone have any idea as to what is causing this and a means to rectify it? I can set the alert to be ignored but this is not ideal nor permanent. It's really quite annoying and would like to get back to accurate alerts. Thanks and regards.

I should add that these are reported on the health check emails as well.

Hello,

My company wants to migrate its server from SBS 2003 to Windows Server Essentials 2012 R2 on different hardware.

For simplicity reasons, we also want to keep our previous server name, and our previous domain name.

(I saw that its possible for 21 days to have both servers with the same domain name)

However, i can't find on technet a step-by-step method for our case.

Can you help us with a method ?

Thanks,

I have installed and configured Windows 2012 Essentials on a small server for a non-profit it is the sole DC. I have created a new domain as the old hardware had failed and server with the old domain was un-bootable. I have configured the DNS server. The old server was using DHCP but some other network issues have made it necessary to use static IP's I have changed the clients to use the new box as the DNS server. I started having problems when I went to the clients to move them onto the new domain. I cannot resolve the server from the clients by name. I can connect to it fine with an IP address. From the client running nslookup I get

Server: ServerName.DomainName.Local

Address: 192.168.7.XXX

From the client running nslookup /Server I get:

Server: SeverName.DomainName.Local

Address: 192.168.7.XXX

*** ServerName.DomainName.local can't find /server: Server failed

Despite this I tried to add the clients to the domain but got an error.

Any clues to what's going on with this?