Gary passes along a PSA

Gary passes along this info…

“I didn’t see this here, and your blog is usually the first place I look for “SBS” (er.. essentials now) information:

Samsung 850 EVO SSD drives do NOT get along well with Windows 2012 R2.  In an essentials server, they’ll produce 100% crashes, and in any other 2012 R2 server, they’ll produce crashes any time the write cache is turned off (which happens when a server is promoted to a DC — which happens 100% of the time for Essentials.)

Sadly, nothing about the crashes leads a person to believe that it’s the SSD drive, but it has been narrowed down by several people.

There’s quite a bit of information once you know what to search for.  Isn’t that always the case?

Here’s some links:

This guy had the problem, even though it wasn’t narrowed down:
https://social.technet.microsoft.com/Forums/windowsserver/en-US/ebc71806-37ab-49c4-9218-9964b30d958a/0xc000021a-during-server-2012-r2-essentials-setup?forum=winserveressentials

This one narrows it down:
http://community.spiceworks.com/topic/869314-warning-do-not-use-samsung-850-evo-ssd-with-windows-server-2012-r2

Here’s the one that generated my own “ah, ha!” moment:
https://social.technet.microsoft.com/Forums/windowsserver/en-US/81c6d52f-578c-44c8-a6ec-18c03a818295/cant-promote-server-2012-r2-to-domain-controller-get-error-0xc000021a?forum=winserverDS

Patching Exchange

When updating Exchange servers remember that since 2010 era they no longer automatically MU down.

To know what the latest and greatest is – check out this post:

http://blogs.technet.com/b/rmilne/archive/2013/10/29/how-to-check-exchange-2010-ru-version.aspx

For an oneoff clicking on help-about is probably the easiest.

Then compare it to this list here:  https://technet.microsoft.com/library/hh135098.aspx?f=255&MSPPError=-2147217396

Then keep in mind for Exchange 2010 if you do any PCI/TLS tweaking that you need to be on  update rollup 9 as noted here:

SMTP is not transported over TLS 1.1 or TLS 1.2 protocol in an Exchange Server 2010 environment:
https://support.microsoft.com/en-us/kb/3029667

Following up on MS15-010 side effects

Just to follow up on a few updates:  The hotfix for this issue is now out and we’re still pushing for this to be on Microsoft update:  http://blogs.technet.com/b/sbs/archive/2015/03/13/the-ms15-10-security-update-for-windows-server-2012-r2-essentials-and-the-client-restore-functionality.aspx

If you have a 2012 R2 (and only 2012 R2 Essentials is impacted) you’ll need to install this hotfix on all workstations to use the console to restore files.

You cannot restore files and folders from Server Essentials Backup on a Windows-based computer after installing MS15-010
https://support.microsoft.com/en-us/kb/3045682

Want to block the Windows 10 upgrade icon?

Looking to block the Windows 10 upgrade icon from the system tray?

 

Remove windows 10 upgrade icon from sys. tray – Spiceworks:
http://community.spiceworks.com/topic/983148-remove-windows-10-upgrade-icon-from-sys-tray

1, Run the following command

taskkill /f /im GWX.exe /T

This will take about 30 seconds to close it

2. Copy the following into notepad and save it as Disable.reg (ensure the file ending is .reg)

———————————–

Windows Registry Editor Version 5.00

[-HKEY_CLASSES_ROOT\GWX\shell\open\command]

[-HKEY_CLASSES_ROOT\ms-gwx\shell\open\command]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\GWX\shell\open\command]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ms-gwx\shell\open\command]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WINEVT\Publishers\{18abebc9-83ec-435f-8f15-6d1e9187c999}]

————————————————

Run the Disable.reg file and restart the computer.

Want to get it back? Do the same only copy this and save it as Enable.reg

—————————————————

Windows Registry Editor Version 5.00

[HKEY_CLASSES_ROOT\GWX\shell\open\command]

@=”C:\\Windows\\System32\\GWX\\GWX.exe %1″

[HKEY_CLASSES_ROOT\ms-gwx\shell\open\command]

@=”C:\\Windows\\System32\\GWX\\GWX.exe %1″

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\GWX\shell\open\command]

@=”C:\\Windows\\System32\\GWX\\GWX.exe %1″

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\ms-gwx\shell\open\command]

@=”C:\\Windows\\System32\\GWX\\GWX.exe %1″

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WINEVT\Publishers\{18abebc9-83ec-435f-8f15-6d1e9187c999}]

@=”Microsoft-Windows-GWX-Ins”

“ResourceFileName”=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,\

00,6f,00,74,00,25,00,5c,00,73,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,\

5c,00,47,00,57,00,58,00,5c,00,47,00,57,00,58,00,2e,00,65,00,78,00,65,00,00,\

00

“MessageFileName”=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,\

6f,00,74,00,25,00,5c,00,73,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,\

00,47,00,57,00,58,00,5c,00,47,00,57,00,58,00,2e,00,65,00,78,00,65,00,00,00

“Enabled”=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WINEVT\Publishers\{18abebc9-83ec-435f-8f15-6d1e9187c999}\ChannelReferences]

“Count”=dword:00000002

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WINEVT\Publishers\{18abebc9-83ec-435f-8f15-6d1e9187c999}\ChannelReferences]

@=”Microsoft-Windows-GWX-Ins/Operational”

“Id”=dword:00000010

“Flags”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WINEVT\Publishers\{18abebc9-83ec-435f-8f15-6d1e9187c999}\ChannelReferences\1]

@=”Microsoft-Windows-GWX-Ins/Debug”

“Id”=dword:00000011

“Flags”=dword:00000000

Essentials update on MU

Update to remove duplicate descriptions for Office 365 integration in Windows Server 2012 R2 Essentials:

https://support.microsoft.com/en-us/kb/3019270

 

Be aware this is another update for Essentials that “This update removes unnecessary descriptions, and updates Office 365 integration links in the Integrate with Microsoft Office 365 wizard.”

Tracking issues with Essentials

Be aware of issues that have been resolved:

Bug with PowerBI module:

http://blogs.technet.com/b/sbs/archive/2015/05/18/subscribing-to-microsoft-power-bi-breaks-through-the-official-office-365-integration-in-windows-server-essentials.aspx

If you have subscribed to the PowerBI it will break Office 365 integration – see Resolution (Updated on 05/18/2015): The fix for this issue has been included with the following hotfix released for RMS Subscription issue:

Install the following hotfix on the server:

https://support.microsoft.com/en-us/kb/3055778

Bug in Restore console on client side

http://blogs.technet.com/b/sbs/archive/2015/03/13/the-ms15-10-security-update-for-windows-server-2012-r2-essentials-and-the-client-restore-functionality.aspx

If you have Windows 7 and 8 (RTM only NOT 8.1) the bug in the restore console can be fixed with the hotfixes from https://support.microsoft.com/en-us/kb/3045682

 

Issues that have NOT been resolved:

We are still awaiting a hotfix for Windows 8.1 clients with respect to the restore console. ETA is expected to be June.

A little rain, a little thunder, a little power outtage

IMG_1982While the MVP virtual conference was going on, California had a rain storm… and I had thunder,  and a power outage, smack dab in the middle of the Windows update session.

So fortunately I happened to have my laptop next to me and it has an AT&T cellular connection.  I fired up the connection, plugged in the headset and was back online in hopefully not too long of a delay.  But then the fun started.  Because my voip phone system was on battery backup it started ringing.

Look for the recorded session to be posted up to channel 9 and in the meantime Amy (who was wonderful as moderator) will be posting up the decks on www.thirdtier.net/blog site.

My favorite session was the one I did with Lawrence Abrams of bleepingcomputer.com on Ransomware.  He did a wonderful job and I was really pleased how that session went.

Missing your antispam filter updates?

https://social.technet.microsoft.com/Forums/exchange/en-US/472d3c62-dacd-4482-a1b9-8507aea62d5e/no-more-antispam-filter-or-block-list-updates?forum=exchangesvrgenerallegacy

So if you’ve noticed that you’ve not been getting any spam filter updates, you aren’t alone.

Here’s where I need your help.  Let’s make sure Microsoft knows that we still need those antispam updates, so how about we get a bit social and let them know that Exchange 2010 is still a supported product.

Pick a blog post at http://blogs.technet.com/b/exchange/archive/2015/05/07/public-folder-team-is-looking-for-feedback.aspx and post your comment about the lack of antispam updates.  Or post in the partner forum at www.sbspartnerforum.info

Bottom line how about we let them know that there are still some folks using that platform and this is still a supported platform.

 

GoDaddy and SBS

Changes to Microsoft SBS and GoDaddy Integration | GoDaddy Help | GoDaddy Support:
https://support.godaddy.com/help/article/15902/changes-to-microsoft-sbs-and-godaddy-integration?isc=gd5379a&xid=&cvosrc=email.house.gd5379a

What won’t change – the personaldomain.remotewebaccess.com is not going away.

But it does bring up the concern I have of combining premises items with things you don’t control in the cloud.  When their business model changes, they change.

So be aware if this impacts anyone.

Just a heads up about the Thecus unit

A heads up:

http://www.newegg.com/Product/Product.aspx?Item=N82E16822102095

http://forum.thecus.com/viewtopic.php?f=79&t=9261&p=43104#p43104
http://forum.thecus.com/viewtopic.php?f=79&t=9262

Just a warning for anyone buying Thecus units and apparently Thecus units from Newegg.

Once you receive one ensure that there is an icon on the desktop for ORBWEB and then also try to activate it.

If it fails to activate it, decide if you want to ship it back or  install the newer ISO from their web site.

There is clearly a bug in some of these builds that causes the unit to  fail to activate and also fail to install the client restore and  apparently also per the review from newegg cannot setup the client backup.

After banging my head on this for a few days, thinking it was something that I might be doing wrong, I reinstalled the Server with the ISO from the Thecus web site. The rebuilt unit finally worked as expected.

I would strongly recommend that folks reinstall from the ISO to your Thecus units before deploying them.  If there isn’t an ORBWEB icon on the desktop you have the original build which has major problems.  Another quick and dirty test is to see if the unit activates.  If it does not activate, either send it back or reinstall the operating system using the ISO from the web site.

If you are looking for a client backup server (like I was) in order to ensure you have cryptolocker defenses in place, this was supposed to be a nice easy solution.  However given that I’ve hit this issue and another poster on the newegg site hit it as well, obviously there’s a problem out there with the build that got shipped out.

I’m just surprised that these got released in this condition.  Actually I’m not surprised to be frank about it.  I’m disappointed that these got released in this condition.