Lrl

ok, using internal windows dns server control bind dns servers (on *nix) host public domain names.. quickly setting several domains i had 30+ domains setup , of them share several common entries (soa, ns, , zone records (a, mx , ptr)). however, windows dns server resides in intranet. default internal name ('macron.intranet.lan') not usable official internet zone. no worries! start setting 1 of zones (primary & forward lookup) using dnsmgmt.msc , setup commonly required records while making sure know name of file dns server using. sure setup domain only public nameservers. , sure allow zone transfers " only servers listed on name servers tab. " (much safer!). when you're done go %systemroot%\system32\dns , find file created; copy somewhere accessible (desktop example) while leaving file explorer open. now; edit copied file (don't worry; text file) , copy everything after first header clipboard (the line starts "@  in soa ...."). t...

we have windows 2012 (not r2) rds environment follows: we have 1 domain, 1 licensing , 1 connection broker server.  three rd gateway servers, 2 web access servers, , 5 session host servers.  all servers virtualized. in our peak times, have average of 150 users logged in , running published app.  at times, used memory on session host servers pegged @ on 95% utilization.  cpu, disk, , network normal. our session host servers using quad core cpu , 8gb ram. our proposed solution solve our disconnects/hung sessions @ least double ram on our session hosts. does seem right course of action or right solution proposed? thanks in advance. hi, since there no overload issue other system resources, increase ram sounds plan me. best regards, amy please remember mark replies answers if , un-mark them if provide no help. if have feedback technet subscriber support, contact tnmff@microsoft.com. ...

we have windows 2012 r2 file server in cluster. there no cluster shared volume (because user file server resource manager , nfs, not supported csv) "file server general use" we install role "server nfs".  since created first nfs share resource in cluster, new resource automatically created in file cluster role : network file system we enabled shadow copies volume shares (nfs , smb share). use default schedule settings shadow copies, twice day. after ~1 month, failover role on node, , noticed resource network file system take long time come online. long goes in failed state... other resources working well. if wait long enough, resource become in online state eventually... 15 minutes.  in windows event logs, in servicesfornfs-server logs, can see operational log filled operation "created volume", "destroyed volume", "discovered volume" etc... , these operations take long time during failover of cluster. when finishe...

upgraded dc 2008 r2 have 2 dc's running 2008 r2.  when use registry wizard select registry settings lets me tick values under 1 folder click on folder keys selected unticked. can confim have same problem in test lab running 2008 r2 upgraded 2008 r2 i can confirm 1st dc running 2008 r2 fresh install not upgrade , have same problem. domain running @ 2003 functionality still have 2003 dc's i have done fresh 2008 r2 install in test ran dcpromo has same problem registry wizard can 2008 r2 ad server see if have same prob? hi sprouley, thank detail steps. can reproduce issue on side now. i report issue our server production team. regards, wilson jia this posting provided "as is" no warranties, , confers no rights. Windows Server  >  Group Policy ...

hello all,  i assigned project of migrating existing dfs-n&r on 2003r2 2008r2, , decommission 2003r2 dfsservice. there ms recommended howto documentation or checklist.  apologize, if reposting checked other post, didn't clear documentation. hi,  can setup dfs file server on server 2008 r2, create replication group between windows 2008 r2 server , windows 2003 r2 server. after dfsr replication finished, can add namespaces new serve manually , decommission windows 2003 r2 dfs server. in additional, use robocopy or fsmt file copy between windows 2008 r2 server , windows 2003 r2 server. more detailed information, please refer threads below: dfs migration 2003 r2 2008 r2 http://social.technet.microsoft.com/forums/windowsserver/en-us/697b76ca-572d-4f54-b74a-e7f3c538f524/dfs-migration-from-2003-r2-to-2008-r2?forum=winserverfiles best way move dfs-shares 2003 r2 2008 r2 http://social.technet.microsoft.com/forums/windowsserver/en-us/71f72e0b...

we finished computer migration 1 domain new domain looks gpo's old domain still affecting computer.  example, users cannot change homepage in ie settings, grayed out.  cannot configure offline folders , synchronization, grayed out.  not have gpo's in new domain affect , seems gpos old domain still controlling pc. how can clear these old settings users or admin can change these settings? thank help! you experiencing called gpo tattooing.  when remove gpos applying computer, not remove setting being applied, hence term tattooing.  have recreate gpos applied in old domain , set them desired configuration , remove gpos if them configurable end user. if found post helpful, please " vote helpful ". if answered question, remember " mark answer ". rich prescott | mcitp, mcts, mcp [blog] engineering efficiency | [twitter] @rich_prescott | [powershell gui] client system administration tool | [powershell gui] new ad user crea...

in event detail tab section xml view  timecreated attribute systemtime value different logged time value in general tab value. our application reading xml view value. please explain 1 correct read? explain detail 2 different time. hi prashant by default, time service has “phase adjustment” process slows down or speeds system clock rate match reliable time source. tsc counter on physical cpu clocked system quartz (if still this). “normal” drift of kind of component not important, , may related external factors temperature of room. time service can deal kind of slow drift. but default configuration not seem fit time source drifts , rather unpredictable. need shorten process of phase adjustment. fixing drift rather simple, time service needs correct clock rate more frequently, cope load of virtual machines slow down clock of host. a few parameters need adjusted in registry clock stay synchronized : set specialinterval value 0x1 force use of specialp...

hi, i bloody beginner ps , had getting point @ i´m stuck.  the ps1 runs fine , csv output correct when attempting "send report mail..." receive error in subject line , have tried working. $params = @{ # inlineattachments =  attachments = $logfilepath # 'c:\temp\attachment1.txt', 'c:\temp\attachment2.txt' body = "please find attached completed listing of users included in summaryreport $today" bodyashtml = $false subject = “finished - $scriptname” from = 'group-scripts@company.com' to = 'group@company.com','me@company.com' # bcc =  smtpserver = 'server.internal.company.com' # priority = 'high' # port = 587 # credential = (get-credential) # usessl = $true } writelogfile("send report mail...") send-mailmessage @params   if assist quickly, appreciate behind on deadline.   thank , best regards, jerome13 still can't reproduce error you're get...

hi, i'm looking powershell script lists current drive machine, , tells if usage of drive greater or lesser 50%. need this. t&regards, ba santo hi ba santao, to list local volumes , filter free space, please start script below: $drives=get-wmiobject -class win32_volume | select-object driveletter, label, filesystem, pagefilepresent, @{name = "computername"; expression = {$_.__server} }, @{name = "capacity(gb)"; expression = {$_.capacity / 1gb} }, @{name = "freespace(gb)"; expression = {$_.freespace / 1gb} }, @{name = "percentfree"; expression = { ($_.freespace / $_.capacity)*100 } } $drives $drives|where{$_.percentfree -gt 50}|foreach{write-host "the free space in $($_.driveletter) greater 50%"} i recommend can write , post current script , issue more efficient support. best regards, anna wang please remember mark replies answers if , unmark them if provide no help. if have feedback tech...

a simple question newbie - if patch laptop (win7) network without adding credentials in active directory on domain controller internet access can virus still onto server. run test machine loads lot of garbage applications , need web access access. load , try. not want incur cost of trendmicro seat. server protected if add virus protection (free) workstation. have of course asa between net , switch how can protect me. don't care if laptop has virus/malware issue - take care of that. want windows 2008 , 2012 servers protected. thanks hi, it’s not absolutely guaranteed domain environment safe. may improve security methods, such security software/program, no data exchanging or communication. stand along/separate subnet. best regards, eve wang please remember mark replies answers if , unmark them if provide no help. if have feedback technet support, contact tnmff@microsoft.com. Windows Server ...

can deploy gpo printer on domain controller in remote site not have print manager running? hi sixtwo,   thanks posting here.   you can use group policy preference policy in windows server 2008 feature deploy printer. if dc not windows 2008 server, can configure group policy preference item in windows server 2003 environment either windows server 2008 server or windows vista service pack 1 client rsat update installed. if not have windows server 2008 server, can download , install remote server administration tools on windows vista sp1 on vista client manage , configure them. start deploy printer client, client need group policy preference client side extensions.   xp gpp’s cse http://www.microsoft.com/downloads/details.aspx?familyid=e60b5c8f-d7dc-4b27-a261-247ce3f6c4f8&displaylang=en vista gpp’s cse http://www.microsoft.com/downloads/details.aspx?familyid=ab60dc87-884c-46d5-82cd-f3c299dac7cc&displaylang=en   after above preparations, can deploy printer through ...

dear all, encounter problem during deployment hope here can give me pointers. first let me explain whole setup. there 3 wsus servers. 2 db servers 1 downstream server. all these server don't have internet access @ all. server been harden due security reason. port 8530 allow updates. 1. both wsus_db1 , wsus_db2 is a cluster server. both installation option choose was using wis database , services. 2. downstream sever (wsus_downstream) question (setup layout) - should wsus_db1 consider upstream server to wsus_db2 has downstream server? using synchronize windows server update services server? - how import offline update database the new wsus server database? - must use sql database? -where can download offline update database? problem encounter (during setup) - when wsus_downstream synchronize windows server update services server, have selected following " this replica of upstream server " when click next don't se...

i have sbs2011 windows 7 clients. using common network share, small company, 20 clients. there 3 or 4 people telling me on random days, 2 or 3 times day, click on network drive , take between 3-10 minutes folder view populate. same thing when trying save file share. when try save file, says network drive isn't accessible , have save file locally. have couple databases open server have re-open , reconnect when happens. any ideas? office @ remote location internet connection dial-up speed. i've gotten updates installed on server. of clients way out of date , wsus not working correctly (i took on services client). have old unmanaged 10/100 linksys switch tonight replacing new cisco managed 48port gigabit switch. after install, i'm going run of diagnostics in switch. i'm hoping network issue of kind... what think? network related? patch related? else? thanks! alex i'd definately start network switch, wiring (got cable tester?). i snmp monitor switch ba...

this windows server 2003- having trouble creating users. coming following error: 'windows cannot create object (username) because: directory service unable allocate relative identifier'. i have never seen error , happened suddenly. if can many thanks. hi shane, have moved rid master role server? did of dcs, particularly 1 holding rid master fsmo role, crash , restore done? check kb article  for possible solution. salvador manaois iii mcitp | enterprise/server admin bytes & badz :  http://badzmanaois.blogspot.com/ Windows Server  >  Directory Services

hello, i'm wondering if can me on this, have "perimeternetwork" site in resides rodc , "default-first-site-name" site in resides 2 rw dc. there member computer in "permieternetwork" site tries log in wrong dc "default-first-site-name" site, ethernet adapter ethernet0:    connection-specific dns suffix  . :    ipv4 address. . . . . . . . . . . : 10.1.4.251(preferred)    subnet mask . . . . . . . . . . . : 255.255.255.0    default gateway . . . . . . . . . : 10.1.4.254    dns servers . . . . . . . . . . . : 10.1.4.252    netbios on tcpip. . . . . . . . : enabled c:\users\a...z>set log logonserver=\\dc1-dom1 <- wrong rwdc site seems know site in, c:\users\a...z>nltest /dsgetdc:a.local /account:dc1-ftp$            dc: \\dc1-rodom1.a.local  <- rodc in same site, should used. ...

hello. i running build 10049. have had lots of trouble doing updates both windows , patches. have tried lots of tricks, turning off getting updates other microsoft products. changed stage in update got error , error number. now find can't install 2 updates, both error number 0x80072f78. i have tried creating new user account administrator privileges, suffers same problems. i hope can me. have other problems windows 10, feel need past before addressing others.  thanks! .pat interesting. answer clipped out of page on web windows update. i running no software matches specifications mention.  my internet connection has stayed consistently robust enough stream movies on it. there appears little wrong there. running wu on , over, worked. that's 2 days of running on , over. there log file or can examined see wrong. not workable solution long run. .p Windows 10 Insider Preview ...

hello,     foreach can access dot properties well? eg: $boxes = get-process foreach($box in $boxes.handles) possible? how can access dot properties , there other way? this work: $boxes=get-process foreach($handle in $boxes.handles){$handle} each element of "$boxes.handles" integer , has no properties.  has no "dots". $boxes.handles.count $boxes.handles[0].gettype() you can properties , methods of integer if needed $boxes.handles[0].compareto(3) \_(ツ)_/ Windows Server  >  Windows PowerShell

i have failed namespace server not listed in ad , not found in adsi showing in dfs management dfs namespace server. cannot delete , warning namespace server cannot forcibly removed. what correct cmd line syntax run? dfsutil /unmapftroot /root:\\hdh.local\dfs /server:\\missingserver when run this usage: dfsutil /unmapftroot deletes dfs references obsolete domain based root replica. special problem repair command , should not confused commands such /remftroot. usage: dfsutil /unmapftroot /root:< \\domain\rootshare >         /server:<roottargetserver> /share:<roottargetshare>     /root:<dfspath> - dfs domain root operate on.     /server:<roottargetserver> - name of root target server unmap.                       should appears in dfs replica info.   ...

hi everyone, i running windows server 2k12r2 , experiencing issues vss. a fellow i.t. professional suggested updates rollups ( current windows server 2012 / r2 & windows 8 / 8.1 update rollups ) server 2012 may solve issues encountering. there doesn't seem great deal of information presented in rollups documentation; wondering if can give insights (if any) microsoft updates directly affect vss? any fantastic. kind regards, davo hi davo please check following article: recommended hotfixes , updates windows server 2012 r2-based failover clusters https://support.microsoft.com/en-us/help/2920151/recommended-hotfixes-and-updates-for-windows-server-2012-r2-based-failover-clusters there few updates vss: 3090343 resolves issue when multiple vss backups in progress, cluster service may crash because of inconsistent state in csv vss provider. 3060678 resolves issue unneeded snapshots may not deleted after backup completed. there recommended hot...

i have posted sql discussion board ... we have forest/domain.  dc , sql server running cubes sit in 1 zone/extranet , sharepoint 2010 sits in dmz zone on internet.  sql , sp2010 member of domain.  both seperated firewall. issue:   when create new ad user , add group has access sharepoint site , appropriate cubes ..it takes 1 hour before user can access his/her sp site page , 4 hours before can access cube/report/dashboards. and if not add user group , assign them access directly sp site , cube works right away. cannot seem find out whats different when added groups???  any !deas guys??? thanks much. hello, since new creation involved, suspect due ad replication latency / issues. for active directory replication latency, appears when use multiple ad sites , in case, check scheduling of ad replication between different sites. if have ad replication issue, able detect running dcdiag /e /v on each dc , examining if there failures. ...

so have ipam installation running on windows server 2012 box using wid db. need install , migrate ipam on new 2012 r2 server. how can while maintaining db wid? upgraded existing server 2012 r2 (and upgraded db) in order facilitate move can't find definitive instructions on this. the above technet of answer. needs in future, full steps follows: install , provision ipam on new server stop windows internal database service on both old , new servers backup ipam db on older server , restore on new per above technet start wid service on new server if using new gpo prefix, readd servers new gpos match old gpos Windows Server  >  IPAM, DHCP, DNS

hi all, i'm having issue our enterprise certificate authority , allowing computers request certificate via certificates mmc.  i'm testing trying test certificate enrollment configuration 2 machines in own ou in ad (to minimize gp related variables).  in terms of auto enrollment in group policy, created gpo enabled certificate services client - auto enrollment , certificate enrollment policy ou 2 machines in allow work (this seems working other computer on network claims auto-enrollment isn't available). right now, if open mmc certificates snap-in on local computer of 1 of test machines, right click on certificates > tasks > automatically enroll... standard "before begin" screen.  i click next , screen says "certificate types not available" (sorry, cannot post screenshots @ time).  if click "show templates" checkbox, can see of templates (including computer template created) don't show available. i'm compl...

i have little troubleshoot in our domain @ work has been having issues file permissions did digging , found problem might causing this.  had done migration win 2k3 2008.  worked wasn't until started sharing files discovered issue. hunch "builtin" groups not being available.  in active directory, "builtin" container showing when try add of these groups file permissions, inaccessible. example, if want "administrators" group of domain have full access folder, on security tab when type in "administrators", , click ok, pops dialog box ask group is.  in ad, group displayed under "builtin" groups.  weird.  if add other group created accepts it.  however, permissions specify not effected. group permissions don't take effect until after user re-authenticates if user added group after have logged on.  when adding users , can't find them verify verify specifying domain oppsed local machine v...

buenos días. tengo algunos clientes configurados con la característica de windows server backup en windows 2008 y 2012 con destino de copia dedicado para estas. como es normal, coge todo el disco y lo oculta. hasta aqui todo bien. el tema es que con el tiempo va llenando el disco con las copias llega un punto que no queda espacio libre para las copias y estas no se hacen. el proceso de copia o sistema no es capaz de liberar espacio del disco. es normal? hay alguna cosa tener en cuenta para que se haga? el recurso de destino de copia es una unidad conectada via iscsi, que normalmente no llega 800gb hola marti fuguet, acerca de tu consulta, ¿pudiste resolverlo? ¿encontraste alguna solución? cualquier actualización quedamos al pendiente. gracias por usar los foros de technet. juan  _____ por favor recuerde "marcar como respuesta" las respuestas que hayan resuelto su problema, es una forma común de reconocer aquellos que han ayudado, y hace que sea más fác...

if have downloaded updates server , restart server automatically load updates. if have downloaded updates server , restart server automatically load updates. no. i assume that, referring update installation through wsus. it depends on policies have configured. here's snip kb:  http://technet.microsoft.com/en-us/library/cc708536(v=ws.10).aspx regards, santosh i not represent organisation work for, opinions expressed here, own. posting provided as is no warranties or guarantees , confers no rights. blog | wiki Windows Server  >  Windows Server General Forum

  dialogue appearing when starting computer on starting tag not match end tag i'd check runs @ startup / logon. seems html or xml parse error of sort.       regards, dave patrick .... microsoft certified professional microsoft mvp [windows server] datacenter management disclaimer: posting provided "as is" no warranties or guarantees, , confers no rights. Windows Server  >  Server Manager

im configuring hyper-v server host 5 virtual machines.total capacity 100tb.if want run snapshots how calculate capacity snapshots   samj unless understand how goiing implement snapshots, difficult anticipate. there 2 types: when vm running, when vm powered off. when vm powered off need worry virutal disk snapshot files.  when vm running need worry virtual disk snpashot files in addition saved runngin memory state.  configuration , meta data small barely worth worrying about. the saved memory state easier deal equal the memory setting of the vm.  2gb of ram = 2gb saved state file. the virtual disk snapshots files are different story.  each differencing disk, means each has maximum size equal first vhd in chain.  amount of change that is written disk between each snapshot determins how large each be.  conservative estimate each snapshot can equal parent vhd size.  so, if have vm 40gb virtual disk snapshot tak...

hello, i have following questions on hyper-v 3.0 vhdx? can help? can w2k8r2 vm run on vhdx disk (os)? can w2k8r2 vm have vhdx secondary disk (data disk)? karthik r hi, the new vhdx format in windows server 2012 addresses technological demands of evolving enterprise increasing storage capacity, protecting data, , ensuring quality performance on large-sector disks. the main new features of vhdx format are: support virtual hard disk storage capacity of 64 tb. protection against data corruption during power failures logging updates vhdx metadata structures. improved alignment of virtual hard disk format work on large sector disks. the vhdx format provides following features: larger block sizes dynamic , differencing disks, allows these disks attune needs of workload. a 4-kb logical sector virtual disk allows increased performance when used applications , workloads designed 4-kb sectors. the ability store custom metadata file user might want record, such op...

hi all, i have small query, if create user or added workgroup machine child domain, user or machine replicate in root domain..?? please explain, in advance thanks, ntrao hi, thanks post. root domain child domain doesn't involve replication of user gc's replication across forest nothing keep references of object in own domain , partial reference of object in other domains, users/computers/groups not replicated child domain parent domains. by default schema , configuration partition replicated in parent-child domain. domain users created in domain directory partition domain specific , not replicated other domains in forests. to check replication(configuration , schema partitions) can use repadmin /showreps or repadmin /replsummary cmd. http://blogs.technet.com/b/askds/archive/2009/07/01/getting-over-replmon.aspx best regards, alvin wang please remember mark replies answers if , un-mark them if provide no help. if have feedback technet subscriber su...

i have tested network discovery on our servers enabling computer browser service on pdc master browser , change firewall rules in gpo. shows computers across vlans. possible show server printserver or set of servers in vlan. security between each department rather not have every system showing in network. our network two dc's 2 dns, both servers 2008 rc2 domain @ 2008 level. there no xp machines in network , 200 machines running windows 7 or windows 8. thank you hi, even servers show on network, users still not able access them without permission. in other hand, if not share files permission, users still able access servers though not displayed on network (need computer name or ip address of course). so permission still better way solve issue. and if disable network discovery needed, please refer thread: http://social.technet.microsoft.com/forums/en-us/ae458fcf-a6cb-4e9b-905a-2982fbb0dba3/network-discovery-gpo-to-disable-it?forum=winservergp technet subscriber...

hi all, current setup follows. windows 2008 r2 wsus 3.2 installed we having issues wsus timing out. getting 7032 & 7053 errors. tried deleting wsus from  %appdata%\microsoft\mmc. reset iis. when console , can run cleanup wizard successfuly. click on computers or updates timeout. any appreciate! regards gerrit hi spk78, in addition winfried, may following things: 1. use wsusutil reset wsus, may re-download update files content folder: c:\program files\update services\tools>wsusutil reset 2. re-index wsus database: https://technet.microsoft.com/en-us/library/dd939795(v=ws.10).aspx 3. if wsus server not 3.2.7600.274, install kb2938066 upgrade it. best regards, anne please remember mark replies answers if help. if have feedback technet subscriber support, contact tnmff@microsoft.com . Windows Server ...

here problem , solution.  may bug in windows 8 rdp client. target server: server 2008-r2 datacenter sp1 minencryptionlevel = 4 client one: server 2008-r2 enterprise sp1 minencryptionlevel = 3 connection attempts work normally. client two: windows 8 enterprise minencryptionlevel = tried possible values, including 3 , 4. connection attempts fail. solution: changing minencryptionlevel 3 on target server allows connections windows 8 (client two).  not required allow connections 2008-r2 client (client one) using rdp 7.1 client.  changing securitylayer , userauthentication values on client 2 made no difference until after minencryptionlevel value on target server reduced 3.  question: bug in windows 8?  need enabled fips-compatible crypto on windows 8 enterprise? thanks! hello tp: first of all, thank replying , testing this, appreciate time spent much. the problem resolved.  "ssl cipher suite order" o...

hi all i tried migrate dhcp using backup , restore other week did not realise using 2008 backup wouldn't go hand in hand using restore 2012 r2. quite silly. anyway can see there few different articles around web technet migration; can people please let me know errors or problems may have encountered using powershell export-dhcpserver commands , dhcp failover in server 2012 r2? i going migrate off older windows 2008 r2 server 1 2012 r2 server not sure if recommended or indeed viable. my 2 servers in 1 subnet, not sure if create or use dc failover if affects dhcp - being in subnet entirely?  i read blog - https://blogs.technet.microsoft.com/teamdhcp/2012/09/10/migrating-existing-dhcp-server-deployment-to-windows-server-2012-dhcp-failover/ - , different article - https://technet.microsoft.com/en-au/library/dn495428.aspx can has migrated dhcp off 2008 r2 windows 2012 r2 let me know method have used, , problems might have occurred? haven't done before , apprecia...

buenos días. el mi red existe un controlador de dominio, el cual cumple adicionalmente la tarea de servidor dns. el problema que ocasiona es que el mismo no actualiza los nombres de los equipos, y por consiguiente, al intentar conectarme un computador siguiendo el nombre, termina conectandose otro pc porque quedó almacenado. en revision del servidor, los nombres de los equipos permanecen con varias direcciones ip. cualquier informacion adicional que necesiten estoy la orden. saludos. luciano manganiello saludos. eso que te sucede es muy comun cuando mueves los equipos entre vlan o subnet. entonces quedan registros del equipo en varias partes. lo que te puedo recomendar es que actives la depuracion de registros dns  (scavening , aging) esto le colocara fecha los registros y eliminara de la bd todos aquellos que cumplan la configuracion establecida por ti. link de ayuda http://technet.microsoft.com/en-us/library/cc771362(ws.10).aspx ahora te recomiendo que si todos tus usua...

all, trying create firewall rule allow authenticated traffic on port 1688 (kms) computers not in our enterprise , behind nat network. the rule works in enterprise no problem. when put same computer behind nat network rule not work. have esp protocol 50 allowed on kms server , udp ports 500 , 4500 well. what trying achieve have computers outside our network connect our kms server. not have vpn , want control computers can connect kms server. missing? authentication on esp inbound ports need open on client? thanks in advance charlie it looks issue has been resolved. problem because authenticating traffic , not encrypting using ah instead of esp. ah not work in nat. once chose encrypt traffic problem resolved. still need test data integrity on esp should work. charlie Windows Server  >  ...

we have windows 2008 server 32bit en, domain controller in domain. now, need install server (windows 2008r2 chn) as exchange server, need add ad ds in server, when run dcpromo in exchange server, message said " need run adprep /forestprep first", run adprep /froestprep on 2008 server before, and get the message "forest-wide information has been updated. [status/consequence] adprep did not attempt rerun operation." so can't add this 2008 r2 server as another domain controller. why? anyone can me!    hi,   thank post here.   1. if want install windows server 2008 r2 dc in windows server 2008 domain, please make sure run adprep /domainprep /gpprep command on windows server 2008 dc holds infrastructure operations master role prepare domain. if want run 1 of adprep.exe commands on 32-bit computer, use 32-bit version of adprep.exe (adprep32.exe) , if run adprep.exe on 64 bit windo...