Blog

Internal event: Active Directory has encountered the following exception and associated parameters.

Today I was performing a migration from SBS 2003 to SBS 2011. I performed all the checks and ensured I had all the updates in place. During the migration the SBS 2011 server failed the migration. Upon further investigation I noticed that only 1 role transferred over from the old DC to the new one. On the old SBS 2003 server I saw: Upon doing some more research, I came across this hotfix from Microsoft http://support.microsoft.com/kb/981259 which does not specifically address Exception e0010004 but does address e0010005. I installed this hotfix and then proceeded to manually transfer all FSMO roles using NTDSUTIL on the SBS 2011 server from it’s self to it’s self . This might sound strange, but I wanted to do this per another article I read on Microsoft’s site. Once I confirmed that all the roles transferred over from the new SBS 2011 to it’s self. I then moved the roles back to the old SBS server. Then verifying event logs, everything looked clean and happy. I also noticed this event on the old SBS 2003 server. This seemed odd to me because look at the user….it is a a SID with no matching name. This is not normal. I then unpromoed the failed SBS 2011 server and removed it from the domain. I then decided to inspect the SBS 2003 DNS server. I noticed under GC’s that there were two entries. One was the current server, in this case 10.55.100.10 and another of 10.55.100.60. Well there was no other GC with an IP of this, so that stood out like a sore thumb. I then deleted this invalid entry and looked at all other entries, Name Servers, etc. to verify it was clean. On the old SBS 2003 server, I followed Microsoft troubleshooting to increase my logging. To increase NTDS diagnostic logging, change the following REG_DWORD values in the registry of the destination domain controller under the following registry key: HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesNTDSDiagnostics Set the value of the following subkeys to 5: 5 Replication Events 9 Internal Processing Note Level 5 logging is extremely verbose and the values of both subkeys should be set back to the default of 0 after the problem is resolved. Filtering the Directory Services event log should be performed to isolate and identify these events. I did this on the source controller even though it mentions to do this on the destination server. Next I restarted netlogon service via command prompt. NET STOP NETLOGON & NET START NETLOGON I performed the migration again. It failed, but I was able to capture a lot more events in the event log. This time I saw Event ID 1925: Attempt to establish a replication link failed due to DNS lookup problem. Following  http://technet.microsoft.com/en-us/library/cc778061(WS.10).aspx   I started looking at DNS as the issue. this lead me to http://technet.microsoft.com/en-us/library/cc785014(WS.10).aspx It turns out, that someone previous had turned of Zone transfers. The DNS server looked like this: and this: To fix it, it should look like this: and Make sure to also check the AD domain, in this case csg.local, as those settings were also modified. I also noticed that they had DNS forwarders on, pointing to external address’s, but when I ran the original Internet Connection Wizard on the SBS 2003 server, it made no mention of this. Weird. Ah, once I did this, I was able to migrate correctly. Note, make sure to cleanup the old failed SBS 2011 servers from AD, Name servers and DNS so you get a clean migration. As this was a new customer for me, I had no knowledge of the previous IT person’s skills or abilities, or how things were setup or should I say not setup correctly. Lesson learned is when you enter a situation where you don’t know what was done before, look at everything, even though it is time consuming, the troubleshooting takes even more time. Lyle Epstein Kortek Solutions Lyle Epstein’s Systems Engineer Blog

Windows Server Solutions BPA Updated September 2011 but is not prompting for update

Microsoft released an update this week for the Windows Server Solutions BPA that covers a number of products, including: Small Business Server 2011 Standard Edition Small Business Server 2011 Essentials Windows Storage Server 2008 R2 Essentials Windows MultiPoint Server 2011 More information about this update is available on the Official SBS Blog page at http://blogs.technet.com/b/sbs/archive/2011/09/29/windows-server-solutions-bpa-updated-september-2011.aspx So how do you get the update? First, make sure you have the Microsoft Baseline Configuration Analyzer 2.0 installed. To get it, go here . Next, make sure to download and install the Windows Server Solutions Best Practices Analyzer 1.0 here During the install, you will be prompted with this screen: Make sure to check this box during your install, or you will not be prompted to automatically update! Once you have it installed, launch the BPA either via the SBS Console under security (if you selected to integrate it in the console) or when you launch it under the start menu. You will see in the system tray an icon/pop up stating to update, like this: Select that, and a window will open Close the BPA you have open and then wait about 5-10 seconds. The next box will change and allow you to click on it. That’s it, you are now updated! Hey Lyle, I don’t see it prompting me. Why? Ok, so you got it installed, but now you launch it and don’t see it prompting you for the update. No problem, here is how to fix this: Open up the registry and navigate to HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsServerSolutionsBPA Look for the DWORD item “Update”.  It is probably set to a 0. We want to change it to a value of 1. It should now look like this:   Close out the BPA if you have it open. Now re-launch it and you will see it appear in the SysTray. Lyle Epstein Kortek Solutions Lyle Epstein’s Systems Engineer Blog

Why the Cloud Can Become a Game Changer

Like everything else in IT today, cloud computing can be either unnecessary in your business operations – or it could be something you really need. However, a recent survey on the perception of the cloud shows that almost half of small business owners are more or less dismissing it outright.

What is the correct model number?

Today we received a batch of new Seagate Enterprise hard disks, which should have been model ST2000NM0011. It looks like someone in the label department in Thailand made a mistake, as the model number is shown with a 1 (1TB) and a 2 (2TB). After plugging it in, it was detected as a 1TB drive. Glad to know we can’t always rely on stickers.

QuickBooks Payroll

Do you use QuickBooks for your accounting at the business? Do you use the payroll feature in QuickBooks to pay your employee’s? Are you a member of Costco? Did you know that as a member of Costco QuickBooks provides a discount on their payroll services? If you did than that is great, if not, pick up the phone and give QuickBooks Costco payroll a call at 800.498.7401 x 87108
I was able to save over $100 a year from our payroll services by using this.

The Motorola XOOM is the first device to run the Android 3

The Motorola XOOM is the first device to run the Android 3.0 (Honeycomb) OS, optimized for tablets. With a 1GHz dual-core processor, 32GB memory, and 1GB RAM, plus a gorgeous 10.1" widescreen HD display and support for Adobe Flash 10.2, you can experience the best in multimedia, and multi-task with the ease and performance of a PC.

The Motorola XOOM is the tablet you've been waiting for.

Exchange 2010 SP1 Rollup 3 and BlackBerrys sending duplicate messages

Tonight I had a customer informing me that since we installed the latest rollup for Exchange 2010 SP1 their BlackBerry were sending duplicate messages. After doing some research into the issue, I came across this blog http://blogs.technet.com/b/exchange/archive/2011/03/14/exchange-2010-sp1-rollup-3-and-blackberrys-sending-duplicate-messages.aspx For the time being, hold off on installing RU3 until Microsoft get’s this fixed. In fact, they state that they have pulled the Rollup for now. I suggest looking at the EHLO link above to confirm when it is fixed.

Exchange 2010 Mailbox Server Role Calculator

I am currently working on planning out a new data center that will be running Exchange 2010. I found a great tool from the Exchange team called Exchange 2010 Mailbox Server Role Requirements Calculator which is quite powerful. An updated version of this tool can also be located at http://blogs.technet.com/b/exchange/archive/2010/01/22/3409223.aspx