Category Archives: Windows Server 2012 R2

Windows Server: Sample uses of SETSPN

SPN means "Service Principal Name". In Active Directory you can set an SPN with the command line tool SETSPN. Find below some usage examples which I use often: setspn -Q http/ ==> Check if the SPN "http/" exists setspn -L MyServer ==> Show all SPNs for MyServer setspn -X ==> Search for duplicate SPNs in the current domain setspn -S http/www.mywebsite-com MyServer ==> Set the SPN for a specific Server object in AD. This also checks for duplicate Read more [...]

Windows: How to generate a SAN certificate via Web enrollment

In environments where you have a Microsoft PKI Infrastructure (AD CA) setup, you can create new certificates via web enrolment: https://ca-server/CertSrv This is straight forward for single-name certificates. If you wish to have multiple names for a certificate (Subject Alternative Names = SAN), you need a certain syntax in the "Atrributes" field of the web page: You can add as many names as you want, separated by "&". Important: Read more [...]

Active Directory: Reset Expiry Date of an expired Password

Many companies have a policy that require their users to change their passwords regularly (e.g. every 90 days). In Active Directory, this is normally enforced via Group Policy. This works well, but can be problematic if the user is out of the office while the password expires. An example: If he or she is using a mobile phone to access company emails via ActiveSync, the access will be blocked once the password has expired. ActiveSync does not support password changes, so the user has no way to Read more [...]

Windows: Microsoft SQL Server 2008 R2 Setup Support Files cannot be uninstalled

I recently wanted to uninstall SQL Server 2008 R2 completely after I have upgraded to SQL Server 2014. The uninstall of the "SQL Server 2008 R2 Setup Support Files" did not work and produced the error: Microsoft SQL Server 2008 R2 Setup Support Files cannot be uninstalled because the following products are installed: Microsoft SQL Server 2008 R2 RsFx Driver Strangely, the "Add/Remove Programs" section did not list the "Microsoft SQL Server 2008 R2 RsFx Driver". To uninstall this "hidden" Read more [...]

Windows Time service doesn't start automatically on a workgroup computer

On a workgroup computer that's running Windows 7/8.1, Windows Server 2008 R2/2012 R2, the Windows Time service stops immediately after system startup. This issue occurs even after the Startup Type is changed from Manual to Automatic. Additionally, the following event is logged in the System log: Log Name: System Source: Service Control Manager Event ID: 7036 Level: Information The Windows Time service entered the running state. Log Name: System Source: Service Control Manager Event ID: Read more [...]

Malicious Software Removal Tool (MRT): How to disable the monthly download and run via Windows Update

The Microsoft Windows Malicious Software Removal Tool (MRT) is downloaded and run with the monthly Windows Update cycle on many Windows versions (e.g. Windows 7, 8.1, 10, Windows Server 2012 R2 and others). It always uses the same KB/Patch number: KB890830 You can disable this in Windows Update by hiding the update, but it will be re-offered next month. To permanantly disable the offering via Windows Update, change this registry key: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\MRT] "DontOfferThroughWUAU"=dword:00000001 It's Read more [...]

SQL Server 2012 Express: How to get access to the DB when you have lost all passwords

It can happen that you lose all passwords or that you delete the users in a DB, so you have no access or limited access to the databse instance. There are many articles on the Internet that talk about SQL password crackers or other strange methods (some cost you money) to sort this out, but there is a much better and simpler method. For this to work, you need access to the server console (for example via RDP). The trick is to activate and reset the password for the sa account, then login with Read more [...]

SQL Server 2012 Express: How to install on a Windows 2012 R2 Domain Controller

While it is not recommended (mostly due to security reasons), SQL can be run on a Domain Controller. But the following 2 points have to be considered: The order is important: SQL can be installed on a DC. But a SQL server cannot be made a DC. So: DC first, then SQL You cannot use the following 3 accounts for the SQL service: Local Service, Network Service, MSSQL$SQLEXPRESS Although I used these guidelines, it did not work for me. Near the end of the install, when the SQL service is started Read more [...]

Windows Updates to avoid 2: Telemetry send loads of data to Microsoft

As I have already written here, Microsoft released a lot of unwanted updates for Windows 7 SP1 and Windows 8.1 recently to promote the update to Windows 10. Now they want to get more data out of your system. By releasing a couple of "Telemetry" updates, they hope to get the same data from you as they get with Windows 10. In addition, these updates slow down your machine and use disk space. Here is the list you need to uninstall KB3022345 KB3068708 - Replaces KB3022345 KB3075249 KB3080149 To Read more [...]

Windows: Run commands to start Control Panel items

Sometimes it is faster to access Control Panel items via command line than clicking and searching in the UI. To use a command, just press <Windows-Key>-R, which will open the Run window. Then just type the command and press <Enter>. For the .cpl files, the "control" command can even be left out, so that is even less to type. Control Panel Applet Command OS Accessibility Options control access.cpl XP Action Center control /name Microsoft.ActionCenter 8, 7 control Read more [...]