Windows 2012 Hosting - MVC 6 and SQL 2014 BLOG

Tutorial and Articles about Windows Hosting, SQL Hosting, MVC Hosting, and Silverlight Hosting

Windows Hosting - ASPHostPortal.com :: How To Set Up And Configure DNS On Windows Server 2016

clock January 23, 2017 04:50 by author Armend

Domain Name System (DNS) is central to TCP/IP hostname resolution and Active Directory itself. Learn to install and configure the DNS Server role in Windows Server 2016.
Domain Name System (DNS), defined in several Request for Comments (RFC) documents, performs a single task: translating user-friendly hostnames to IPv4 or IPv6 addresses. The DNS server in Windows Server 2016 works the same basic way as it does in Windows Server 2012 R2. However, the Windows Server engineering team added some worthwhile enhancements, including DNS policies and Response Rate Limiting (RRL).

Installing the DNS Server Role

To install the DNS Server role, we can open an elevated Windows PowerShell console (right-click the PowerShell icon and select Run as Administrator from the shortcut menu) and run a single command:
Install-WindowsFeature -Name DNS -IncludeAllSubFeature -IncludeManagementTools
If you're more of a GUI-minded administrator, you can use Server Manager to install DNS Server.

Using Server Manager to install DNS Server in Windows Server 2016

As shown in the preceding screen capture, I already have DNS Server installed on my Windows Server 2016 domain controller.

Setting DNS Server Preferences

We can manage the Windows Server DNS Server in a variety of ways:

  •     DNS Manager Microsoft Management Console (MMC)
  •     Windows PowerShell DNS cmdlets
  •     Dnscmd.exe command-line utility

Windows Server 2016 also includes the traditional Nslookup.exe and IPConfig.exe command-line tools as well. If you install the Remote Server Administration Tools (RSAT) tools on your administrative workstation, you'll get all the aforementioned DNS Server management utilities.
Open the DNS Manager by typing dnsmgmt.msc from your elevated PowerShell console. Right-click your server and you'll see a number of configuration options directly on the shortcut menu. For instance, you can:

  • Create a new forward or reverse lookup zone
  • Scour your DNS zone files for outdated and/or inaccurate records
  • Purge the server's resolver cache
  • Pause, stop, start, or restart the server

Best Windows Server 2016 Hosting Recommendation

ASPHostPortal.com

ASPHostPortal.com provides our customers with Plesk Panel, one of the most popular and stable control panels for Windows hosting, as free. You could also see the latest .NET framework, a crazy amount of functionality as well as Large disk space, bandwidth, MSSQL databases and more. All those give people the convenience to build up a powerful site in Windows server 2016. We offers Windows hosting starts from $5/month only. We also guarantees 30 days money back and guarantee 99.9% uptime. If you need a reliable affordable Windows server 2016 Hosting, we should be your best choice.

 



Windows Hosting - ASPHostPortal.com :: Reset Password in Windows Server 2016

clock January 9, 2017 05:31 by author Armend

Windows Server 2016 brings a host of new features that greatly enhance the functionality of the operating system. Many of these improvements expand on existing capabilities of Windows Server 2016.  The new product also benefits from having the capability of performing at a much higher level than previous servers and comes equipped with an integrated virtualization platform.

 

In this article I will tell you about how to reset Windows Server 2016 R2 lost admin password. The answer is not absolute. For example, if you have password reset disk or another administrator available, Windows server 2016 r2 lost admin password would be reset instantly.
Or if you have backup Windows system status with disk, such as Windows system restore disc, you could restore Windows server 2016 r2 to early system point.
Even though there are not anything available for recovering server 2016 r2 password, Windows system 2012 r2 installation disk and third-party recovery tool would help you too.

First, Windows system installation disk reset Windows server 2012 r2 admin password.
Preparation: a copy of Windows server 2012 r2 installation disk
The key step of resetting server 2012 r2 admin password with installation disk is to replace Utilman.exe.

  • Boot off Windows disk and select the "Repair your computer" option from the lower left-hand corner.
  • Get to the option to open the Command Prompt.
  • Type the following commands to back up the utilman.exe file:
  • MOVE C:WindowsSystem32Utilman.exe C:WindowsSystem32Utilman.exe.bak
  • Copy cmd.exe and rename it Utilman.exe.
  • COPY C:WindowsSystem32cmd.exe C:WindowsSystem32Utilman.exe
  • Now you can go ahead and reboot your machine. When it's done booting up again and you are at the Logon screen click on the Ease of access icon.
  • Now you have replaced Utilman.exe with cmd.exe.
  • Command Prompt opens, type following commands:
  • .net user administrator *

Once you press Enter, you will be asked to set a new password and then confirm it. When entering new one, don't worry if you can't see it, because it is invisible, however it has been remembered.
Once you're logged in again, don't forget to delete Utilman.exe and then rename Utilman.exe.bak back to plain old Utilman.exe.

Second, reset server 2016 admin password with third-party Windows password genius.
Windows Password Genius has four versions available, standard, professional, and advanced and raid. And the raid version is special, because it works for raid server Windows domain or local admin password reset. The advanced is general version, working on both server and client computers.

So choose appropriate Windows password recovery version to burn a password reset disk and then recover Windows server administrator password.
Preparation: Windows Password Genius Advanced/Raid, available computer and bootable USB drive.

  • Install Windows Password Genius Raid, and run it on available computer.
  • Insert bootable USB drive into this available computer and choose USB, click "Begin burning" to create password reset disk with USB.
  • Exit USB device after it is successfully burned with password reset disk.
  • Plug USB into server 2016 and boot server from USB.
  • Recovery tool program runs, and then choose Windows system - Windows serve 2016  and select user account - administrator.
  • Click "Reset Password", the administrator would be set with new password "[email protected]".

At last, reboot server computer to finish Windows password reset. But remember to exit USB reset disk from server before your server computer boots from hard disk successfully.

Best Windows Server 2016 Hosting Recommendation

ASPHostPortal.com

ASPHostPortal.com provides our customers with Plesk Panel, one of the most popular and stable control panels for Windows hosting, as free. You could also see the latest .NET framework, a crazy amount of functionality as well as Large disk space, bandwidth, MSSQL databases and more. All those give people the convenience to build up a powerful site in Windows server 2016. We offers Windows hosting starts from $5/month only. We also guarantees 30 days money back and guarantee 99.9% uptime. If you need a reliable affordable Windows server 2016 Hosting, we should be your best choice.



Windows Hosting - ASPHostPortal.com :: What's New in Windows Server 2016

clock December 19, 2016 06:13 by author Armend

What's New in Windows Server 2016

Executive Summary

In the coming months, Windows Server® will start rolling out to company datacenters. Microsoft® made a significant investment in WS 2016 to address company needs for cloud requirements. As a result, this iteration includes support for containers, tighter integration with Microsoft's Azure® cloud service, more security for Hyper-V® virtual machines, and improvements to RDS. Let's take a look at how the infrastructure of WS 2016 has been inspired by Azure and see what cloud technology has been implemented in Windows Server 2016 deployments.

The Move to a Software-Defined Datacenter

Virtualization administration has become increasingly complex, especially in multi-tenant environments. Windows Server 2016 has introduced the separation between fabric administration and service or application administration. Fabric administration is the responsibility of the physical layer of the system: storage, networking, and compute components. Application or service administration handles the installation and management of applications and services. The idea is to separate administrative privileges between the administrators that manage the hardware and those that handle the software. From the fabric administration point of view, WS 2016 also addresses the challenge of hardware component compatibility issues, migration to and from the cloud.

What's New in Windows Server 2016?

The four major areas of innovation for Windows Server 2016 are:

  •     Security
  •     Azure-inspired infrastructure
  •     Hybrid application platform
  •     RDS

Security

Emerging security threats have put security at the top of IT professionals' concerns. The Identity Theft Research Centre reported 781 high-profile industry attacks in 2015, which is the highest since they started operation 11 years ago. They also assume that 40% of attacks are not even reported. Windows Server 2016 has a long list of built-in security features and protection that we'll review below.

  • Credential Security - Credential Guard, introduced with Windows® 10, uses virtualization-based technology that encapsulates credentials stored in the system within a VM. This creates a boundary between the VM hosting the credentials and malware or malicious software, preventing system breaches.
  • Administrator Security - More granular administrator privilege settings were introduced to ensure admins only have access relative to their role. In addition to the previously mentioned separation between fabric and application administrators, Windows Server 2016 can create administrator roles with time-based limitations to ensure long-term protection of the system.
  • OS Protection – Windows Server 2016 is equipped with Azure-grade OS protection. This adds protection to the OS no matter where it is deployed, whether in the private or public cloud. The system is now equipped to examine OS behavior for abnormalities. If abnormal behavior is detected, action is automatically taken to block malicious code. This is achieved with Control Flow Guard, Windows Defender improvements, and advanced code integrity policies.
  • Protection for VMs – Microsoft shielded VMs provide advanced VM protection. They have been introduced in Windows Server 2016 powered by Bitlocker and the new Host Guardian Service.

Bitlocker encrypts the disk and state of the VM, "shielding" it from malicious software or disgruntled admins.
On top of that, Host Guardian Service is a new component within Windows Server that allows an encrypted VM to scale like a normal VM on a normal fabric. Host Guardian Service allows Hyper-V hosts to get Bitlocker keys from a central location to create what Microsoft has coined a "protected fabric."
Encrypted VMs can now move to hosts that are trusted by a Host Guardian forest while remaining encrypted.

Azure-Inspired Infrastructure

As the title of this section suggests, the years of knowledge from providing over 200 Microsoft services reliably in Azure are brought to the WS 2016 fabric. This provides admins with a cost-effective and flexible platform to completely virtualize the datacenter by using the same compute, storage, and network virtualization features that power Azure in the public cloud.

  • Virtualize Anything with Ease -  Windows Server 2016 mitigates the downtime experienced with previous upgrades by adding dynamic memory and the ability to add and remove hard drives and disks, making it easy to upgrade to the WS 2016 fabric. In addition, the Linux community will be pleased to hear that Windows Server 2016 will support Linux technologies such as containers and docker engines.
  • Flexible Workload Placement – Azure also inspired workload management technology that further simplifies the administrator's life, starting with the Network Controller that improves network management through centralized control of network policies. These policies apply to physical network components such as switches, routers, and load balancers as well as virtual components like virtual switches.

In addition, the Distributed Firewall feature relieves administrators from having to configure ports and firewalls while migrating VMs from host to host or datacenter to datacenter.  The required ports for applications running in the VMs are automatically opened to provide connectivity across the infrastructure.

  • High Performance Storage –  Distributed Storage Spaces in Windows Server 2016 enable multi-commodity servers with no shared storage to be configured as a single storage pool.
  • Think of it as a pseudo-RAID array that spans across physical servers. For example, whereas with RAID you might have six disks and parity on one disk, Storage Space Direct would provide storage across six servers and parity on one server. Standard servers can be used with local storage to build highly available and scalable software-defined storage.

Hybrid Application Platform

Windows Server 2016 embraces container technology. While not a new technology—Linux has been using it for 10 years—it is new to the Windows space. It further accelerates app deployment, streamlines development and testing, lowers app deployment costs, and increases server consolidation.

  • Nano Server Deployment Option – At its core, the Nano Server is a scaled down version of Windows built specifically for the workload required. It's a lightweight and portable version of Windows Server that is below server core grade and can be deployed in a couple of hundred MB with key roles and features (storage, IIS, DNS, Hyper-V, etc.). This provides admins with just enough OS, optimized for the next level of containerized applications. Developers now have a three-tier choice when developing applications: full applications that can run on RDS, traditional VMs, and containers.
  • Windows Server and Hyper-V Containers – Containers provide a boundary within a system, which is less overhead than a VM. They provide a read-only view of the OS where the application can be run. This allows for multiple isolated applications to run on the same host with minimal overhead. While Hyper-V containers use a hypervisor to create that additional layer of isolation, Windows Server containers are specifically for isolated applications. This technology enables agile application development and deployment within the Windows ecosystem.

RDS 2016

While Microsoft introduced a number of improvements in the new Remote Desktop Services 2016, the main three areas of improvement are graphics, scalability, and interoperability with Microsoft’s cloud service offering, Azure.

  • Graphics Improvements: The new version of RemoteFX® used in Hyper-V VMs supports up to OpenGL 4.4 , the cross-platform language and application programming interface for rendering 2D and 3D graphics. With OpenGL and Direct Device Assignment (DDA) technology, every VM in a Hyper-V environment has its own GPU driver, making it possible to simultaneously run several sessions that use graphic-accelerated applications from the same server.
  • Scalability: The highlight of the scalability features in RDS 2016 is that the High Availability Connection Broker no longer requires its own SQL server cluster. It can either use an existing non-dedicated SQL Server or an Azure SQL database, making RDS easier to implement. Microsoft also optimized the login process to better handle login storms, also known as 9 A.M. scenarios, which are the slowdowns that users experience when many users login at the same time first thing in the morning.
  • Better Interoperability with Azure: The Microsoft RDS and Microsoft Azure teams worked together to optimize the interoperability between the solutions, making them almost a tightly coupled solution. For example, the High Availability Connection Broker can now use an Azure-hosted database. In addition, an RDS 2016 setup can use the Azure Active Directory Domain Services, so it does not require an actual domain controller machine. RDS 2016 also includes the Azure quick start templates, allowing users to automate the RDS 2016 setup.

Is RDS 2016 Enough to Manage virtual applications and desktops?

While the new features in Windows Server 2016  provide RDS with  better graphic performance, strong scalability, and cloud readiness, it cannot yet be considered a complete and independent solution. Using RDS alone to create and manage application and desktop delivery is a complex process and still requires several add-ons such as NLB, reporting tools, and a high availability solution. This complexity could discourage businesses from adopting an application delivery solution.
Improving RDS 2016 with Parallels Remote Application Server (RAS)

Parallels® Remote Application Server (RAS) enhances the RDS infrastructure to provide the functionality and flexibility that businesses need. A cost-effective system with zero-admin built-in enterprise features, it takes advantage of the RDP protocol improvements while being easy to set up, manage, and scale up. Hundreds of businesses have already chosen Parallels RAS for its exceptional end user experience, lower TCO, and its straightforward and easy-to-use console.

Parallels RAS brokers the connection between RDSH applications and desktops to client devices via a proprietary protocol and Microsoft Remote Desktop Protocol. This means that all the graphic and performance improvements of OpenGL available in WS 2016 are automatically implemented in Parallels RAS. The further improvement of the RDP protocol will reduce the differences with other protocols on the market such as HDX and PCoIP.

Parallels RAS improves and simplifies the usage of Microsoft RDS in four main areas:

  • End User Experience - Microsoft RDS 2016 cannot provide a seamless experience on every device. For instance, Chromebook™ is not supported, and usage on mobile devices is limited by the reduced screen size. In addition, the improved web access still does not provide all the features needed to be considered a valid alternative to the classic client access. Parallels RAS fills this gap, allowing organizations to provide users with a seamless experience across multiple platforms.
  • IT Administrator Experience - While Windows Server 2016 made an effort to simplify the use of RDS, many of the limitations of WS 2012 have not been addressed. Printing is still a source of concern, configuring the RDS role requires different manual tasks, and NLB is not considered the best option to create a reliable and high availability environment. Parallels RAS replaces the Microsoft connection broker with a fully integrated connection broker capable of advanced reporting, automatic print driver redirection, and resource-based load balancing. Parallels RAS is an all-in-one solution, eliminating the need for third-party add-ons.
  • Security - Windows Server 2016 has a strong security background, improving the protection of the fabrics, applications, and VMs on premise and in the cloud. However, IT administrators still need to look for a third-party solution for the reinforced security necessary for the remote access of RDS. Parallels RAS has an extensive set of features to increase the level of security. In fact, many  organizations concerned about data protection choose Parallels RAS for its ability to control end user activity and its advanced filtering.
  • Scalability and System Reliability - Windows Server 2016 invested heavily in the integration with Azure to simplify scalability, system reliability, and cloud integration. Although RDS can now be fully deployed in Azure, gateway high availability and TS load balancing still require extra add-ons to reach a satisfactory level of performance. Parallels RAS offers zero-admin load balancing and high availability for gateways and TS without any extra cost. In addition, it is able to work with Azure and AWS™ to provide IT administrators with more options to build their on-premise and hybrid cloud.

Best Windows Server 2016 Hosting Recommendation

ASPHostPortal.com provides our customers with Plesk Panel, one of the most popular and stable control panels for Windows hosting, as free. You could also see the latest .NET framework, a crazy amount of functionality as well as Large disk space, bandwidth, MSSQL databases and more. All those give people the convenience to build up a powerful site in Windows server 2016. We offers Windows hosting starts from $5/month only. We also guarantees 30 days money back and guarantee 99.9% uptime. If you need a reliable affordable Windows server 2016 Hosting, we should be your best choice.



Windows Hosting - ASPHostPortal.com :: How to Repair the Boot Files in Windows Server 2008 or 2008 R2

clock December 5, 2016 07:09 by author Armend

How to Repair the Boot Files in Windows Server 2008 or 2008 R2

When booting to the Windows Recovery Environment (WinRE), the drive letters are assigned on a first-come, first-serve basis. For example, the C: drive in Windows will often have a different letter in WinRE. The DiskPart utility can be used to keep track of the drives and what is stored on them.

Note: If there is no System Reserved partition. It is okay to select the drive containing the Windows folder.   

  • First Partition: 100 MB System Reserved (No drive letter)
  • Second Partition: 60 GB (C:) OS
  • Third Partition: 1.5 TB (D:) Data
  • DVD Drive: E:

Note: If there is no System Reserved partition. It is okay to select the drive containing the Windows folder

Restoring Boot Files

  • Boot to the Windows Server DVD.
  • Open the command prompt.
    • Server 2008 R2:
    • If no driver is needed, press Shift-F10 to open the command prompt.
    • Continue with step 3.
  • Server 2008 (or 2008 R2 if a driver is required)
    • Click Next at the first screen.
    • Click Repair your computer.
    • If no driver is needed, click Next and proceed to step vii below.
    • If a driver is needed, click Load Drivers.
    • Insert the media containing the needed driver.
    • Note: The media can be a CD, DVD, or USB storage device
    • Navigate to the folder containing the driver, select it, and click Open.
    • Click Command Prompt.
  • The command prompt appears.
  • Type DiskPart at the command prompt.

  • Type List vol at the DiskPart prompt.
  • Write down the drive letter of the DVD drive. In this example, it is F.
  • Write down the drive letter of the system reserved drive. In this example, it is C.
  • Type Select vol 1 (assuming volume 1 is the System Reserved volume, as it is here).
  • Type active. This sets the selected volume as active.
  • Type exit to return to the command line.
  • Type Copy f:\BootMgr c:\ at the command prompt. One of two things will happen:
    • If the file Bootmgr already exists on C:, type N to avoid overwriting it.
    • If the file Bootmgr doesn't already exist on C:, it will automatically be copied.
  • Type Bootrec /Fixmbr at the command prompt.
  • Type Bootrec /Fixboot at the command prompt.
  • Type Bootrec /rebuildBCD at the command prompt.
    • If no OS is found, the following appears:

This means that one of the following is true:

  • The boot configuration database (BCD) already exists.
  • The OS is not there.
  • The OS is damaged beyond the ability of BootRec to recognize it.
  • If BootRec /RebuildBCD succeeds, it will list any installations of Windows that it found. Press Y to accept and add them to the BCD. The server is now configured to boot from the proper partition. Close the command prompt and reboot the system into normal mode.

Best Windows Server 2016 Hosting Recommendation

ASPHostPortal.com provides our customers with Plesk Panel, one of the most popular and stable control panels for Windows hosting, as free. You could also see the latest .NET framework, a crazy amount of functionality as well as Large disk space, bandwidth, MSSQL databases and more. All those give people the convenience to build up a powerful site in Windows server 2016. We offers Windows hosting starts from $5/month only. We also guarantees 30 days money back and guarantee 99.9% uptime. If you need a reliable affordable Windows server 2016 Hosting, we should be your best choice.



Windows Hosting - ASPHostPortal.com :: How To Enhance Your Windows Server Security

clock November 28, 2016 07:30 by author Armend

Enhance Your Windows Server Security

There are a variety of features and settings for securing your Microsoft Windows Server infrastructure, so be sure you make the right choice. There are many techniques for getting the most out of the various security features of Windows Server 2008 R2. With so many choices, it can be difficult to know which individual security features and settings you should use to adequately secure your servers.

 

When it comes to securing Windows Server 2008 R2, there are two phases you need to consider: pre-deployment and post-deployment security. You can best think of pre-deployment security as security planning. If you're going to be setting up a new server, there are certain security considerations you should take into account before you even begin the installation process.

Server Role Isolation

One of the primary tasks involved in pre-deployment security planning is taking measures to reduce your server's attack surface. Attack surface reduction is based on the concept that the more code that's running on a system, the greater the likelihood that code contains a vulnerability that could be exploited. So to reduce the attack surface on your servers, you need to ensure those servers aren't running any unnecessary code.

It's recommended you take things one step further, though, to maximize the effectiveness of your security posture. As a general best practice, you should configure each server to perform one specific task. For example, rather than running DNS services and Dynamic Host Configuration Protocol (DHCP) services on a server already configured to act as a file server, it's better from a security standpoint to run each role on a dedicated server. Not only does this help reduce the attack surface, it can also make any required troubleshooting easier because each server is running a less-complex configuration.
It's understandable that sometimes using a separate server for each role isn't practical, either because of cost or because of functionality requirements. Even so, it's a good idea to isolate server roles whenever you can.

Server virtualization can help to further bring down costs. For example, Windows Server 2008 R2 Enterprise Edition is licensed for use within up to four virtual machines (VMs), as long as the underlying physical server is running Hyper-V and nothing else.

Use Server Core

Another tactic for reducing a server's attack surface is to configure it to run Server Core. Server Core is a bare-bones Windows Server 2008 R2 installation that doesn't include the full graphical UI.
Because Server Core deployments run a minimal set of system services, they have a much smaller attack surface than a traditional Windows Server deployment. Server Core installations also tend to perform better than full Windows Server installations. The server has to deal with less overhead, which makes it ideal for use within VMs.
Unfortunately, you can't use Server Core for all Windows Server 2008 R2 deployments, because only certain system services and relatively few server applications can run on Server Core deployments. As such, it's best to deploy Server Core where you can, but accept the fact that you won't be able to use it on all of your servers—at least for now.

Group Policy Planning

Pre-deployment security planning is important, but once things are up and running, your security best practices should include ongoing Group Policy management and planning. It's advisable to take Group Policy settings into account prior to Windows deployment. You'll also need to adjust policy settings over time as your security requirements evolve.
Although you can fully manage Group Policy settings using the tools included with Windows Server 2008 R2, Microsoft offers a free utility called Security Compliance Manager (SCM) that can simplify the process. Download SCM here. The installation process is straightforward and uses a simple wizard. Just make sure you select the check box that tells the setup wizard to check for updates.

Once you've installed SCM, you can launch it through the server's Start menu. When you run it for the first time, the software will have to import a number of different security baseline packages. This process can take several minutes to complete.
Once you've imported the security baselines, you'll see a list of baseline categories within the console tree. Expand the Windows Server 2008 R2 SP1 container to view the available Windows Server 2008 R2 baselines. Microsoft provides security baselines for a number of different server roles

The baselines Microsoft provides each represent a collection of Group Policy settings considered optimal for that individual server role. Although the baselines adhere to Microsoft's security best practices, blindly accepting a security baseline is considered a bad practice. Your organization will have its own unique security needs. Microsoft generally recommends you augment the default security baselines to fit those needs.

The first step in doing so is to choose a security baseline that matches the server role you want to configure. Next, click the Duplicate link found in the Actions pane. This lets you make a copy of the security baseline. That way you can modify the copy without having to worry about making irreversible changes to the original security baseline.
When prompted, enter a name for your custom security baseline and then click Save. When you do, you'll see your newly created security baseline displayed in the Custom Baselines section at the top of the console tree.
When you select your custom security baseline, you'll see all the security settings displayed in the console's center column. The console lists the default setting, Microsoft's recommended setting and your custom setting.  Initially, the custom settings will match the Microsoft settings. As you make modifications, those will be reflected in the Customized column.

You can modify individual policy settings by double-clicking on a setting and then choosing a new value  After modifying any setting, click the Collapse link to save your changes. When you do, the policy setting will be displayed within the console in a bold font to indicate settings have been modified.
When you finish reviewing the various settings and making any necessary modifications to the security baselines, export your security baseline. The Actions pane contains a number of different export options.

You should initially export the security baseline to an Excel spreadsheet. That way, you can store a documented copy of your security baseline settings independent of SCM. You should also export the settings into a Group Policy Object (GPO) Backup. You can use the GPO Backup to import the security baseline settings into the Group Policy Editor.
You can import a baseline into the Group Policy Editor by opening the security policy you want to modify, right-clicking on the Security Settings container and choosing the Import Policy option.

You can import your security settings into the Group Policy Editor. The Security Configuration Wizard is an equally handy tool you can use to secure your Windows 2008 R2 servers. This is installed by default in Windows Server 2008 R2, and is accessible through the server's Administrative Tools menu. Like SCM, the Security Configuration Wizard is designed to help you create server-role-specific security policies you can export to the servers on your network.

When you launch the wizard, you'll see an introductory screen. Click Next to clear this screen and you'll be taken to a screen that asks you what action you want to perform. You can create, edit or apply a security policy, or you can roll back the most recent security policy.
Assuming you decide to create a new policy, the Security Configuration Wizard will prompt you to provide the name or IP address of a server to use as a security baseline. This should be a server upon which you'd like to model the policy you're about to create.

Click Next a couple of times, and you'll come to a screen asking you what roles the server will perform (see Figure 5). The list of roles is automatically populated based on the roles installed on the server from which you're modeling the new policy. You can then manually modify the list of roles.
It's important for the role list to accurately reflect the roles you plan to install on the servers that receive the policy. The Group Policy settings, registry settings and firewall configuration will all be based on the roles you've chosen.

Choose the roles that will be insvers.

talled on target serClick Next, and you'll see a similar list referring to the features you'll install on the server. Once again, it's important for the feature list to be accurate. It's also worth noting that the Security Configuration Wizard doesn't actually install roles and features. It only creates policies based on the roles and features you indicate are installed.

  • The next two screens follow the same basic format as the Roles and Features screens. One screen asks you about Installed Options. These are things like such as Remote Desktop or Remote Volume Management. The next screen asks you about any additional installed services such as the Disk Defragmenter or the Adobe Acrobat Update Service. You might see some non-Microsoft services displayed on this list, depending on what software is installed on the model server.
  • The next screen asks you what should happen when startup encounters an unspecified service. You can leave the service startup type unchanged, or you can block the service. At the next screen, you'll see a list of the services whose startup types will be changed so you can make sure that you're not about to disable something critical.
    The wizard now takes you to the Network Security section. You can skip this section, if you so choose. It's designed to configure the Windows Firewall based on how you'll use the server. This section lets you review existing firewall rules and add or delete rules based on your needs.
  • The Registry section is next. The Registry portion of the wizard asks if all computers that will be connecting to the server meet certain minimal OS requirements. It also verifies whether or not the server has surplus processing power. These configuration settings determine whether or not to enable Server Message Block security signatures.
    Other screens ask you about the types of accounts you're using, and the types of domain controllers on your network. Once you finish answering the wizard's questions, it will show you the all registry modifications it's about to make.
  • The last section you'll encounter before you're asked to save your security policy is the Audit Policy section. This section asks you one question about your general auditing philosophy. Essentially, it wants to know if you want to audit successful events, successful and unsuccessful events, or nothing at all. The audit policy settings will be based on your choice.

When you reach the end of the wizard, you're asked to save the new policy as an XML file. You then have the option of applying the new security policy now or later. If you choose to apply the security setting later, you can do so by rerunning the Security Configuration Wizard and choosing the Apply an Existing Security Policy setting.

You can apply a previously created security policy through the Security Configuration Wizard.
There are far too many Windows Server security features to discuss within a single article, but these are some of the highlights. The major tools such as the Security Configuration Wizard and the Security Compliance Manager can help you secure your servers without having to configure each security setting individually.

Best Windows Server 2016 Hosting Recommendation

ASPHostPortal.com provides our customers with Plesk Panel, one of the most popular and stable control panels for Windows hosting, as free. You could also see the latest .NET framework, a crazy amount of functionality as well as Large disk space, bandwidth, MSSQL databases and more. All those give people the convenience to build up a powerful site in Windows server 2016. We offers Windows hosting starts from $5/month only. We also guarantees 30 days money back and guarantee 99.9% uptime. If you need a reliable affordable Windows server 2016 Hosting, we should be your best choice.



Windows Hosting - ASPHostPortal.com :: How to repair UEFI Bootloader in Windows 8

clock November 21, 2016 07:10 by author Armend

How to repair UEFI Bootloader in Windows 8

In this article we will learn how to repair Windows 8 bootloader on a computer with UEFI. The corruption of the Windows 8 bootloader can occur after the installation of the second OS (in Dual Boot configurations), be caused by the erroneous actions while failure recovering and for some other reasons. If the loader in Windows 8 on UEFI system is corrupted, it’s impossible to start the system or a blue screen with the following error appears:
The boot configuration data for your PC is missing or contains errors.

File :\EFI\Microsoft\Boot\BCD
Error code: 0xc000000f

All this can imply corruption or even total removal of Windows 8 loader configuration – Boot Configuration Data (BCD). You won’t be able to recover the BCD loader using bcdedit. When running this command, the following error appears:

  • The boot configuration data store could not be found.
  • The requested system device cannot be found

The matter is that the BCD loader configuration in Windows 8 installed in UEFI mode is stored on a separate hidden EFI volume (100 MB in size on FAT32 file system). Bcdedit can not see it and, therefore, manage the loader configuration on it.

So to recover the loader (BCD) configuration, you have to boot from the original installation Windows 8 DVD (or a recovery disk or a special EFI bootable flash drive) and open the command line choosing System Restore – > Troubleshoot-> Command Prompt or pressing Shift+F10).

 

Start diskpart:

diskpart

Display the list of disks in the system:

list disk

Select the disk with Windows 8 installed (if there is one disk in the system, it will have zero index):

sel disk 0

Display the list of volumes in the system:

list vol

In this example, you can see that the EFI volume (it can easily be recognized by its size of 100 MB and FAT32 file system) has the index volume 1, and the boot volume with Windows 8 installed is volume 3.
Assign any disk letter to the EFI volume:

select volume 1
assign letter K:

Close diskpart:

exit

Go to the bootloader directory in the hidden volume

cd /d k:\efi\microsoft\boot\

Recreate the boot sector on the boot partition

bootrec /fixboot

Delete the current BCD configuration file by renaming it (save the older configuration as a backup):

ren BCD BCD.bak

With bcdboot.exe, create BCD store again by copying the boot files from the system directory:

bcdboot C:\Windows /l en-us /s k: /f ALL

where C:\Windows – is the path to the directory with Windows 8 installed.

  • /f ALL – means that the boot files have to be copied including those for UEFI and BIOS computers (potential ability to boot in EFI and BIOS systems)
  • /l en-us – is a type of the system locale. By default, en-us – English (USA) is used.

Now you have to restart your computer. Then in the list of bootable devices there appears Windows Boot Manager where you can choose desired operating system to start.

Best Windows Server 2016 Hosting Recommendation

ASPHostPortal.com provides our customers with Plesk Panel, one of the most popular and stable control panels for Windows hosting, as free. You could also see the latest .NET framework, a crazy amount of functionality as well as Large disk space, bandwidth, MSSQL databases and more. All those give people the convenience to build up a powerful site in Windows server 2016. We offers Windows hosting starts from $5/month only. We also guarantees 30 days money back and guarantee 99.9% uptime. If you need a reliable affordable Windows server 2016 Hosting, we should be your best choice.



Windows hosting - ASPHostPortal.com :: How to setup a Node.JS development environment on Windows

clock November 14, 2016 07:10 by author Armend

How to setup a node.js development environment on Windows

It’s easy to install node.js on Windows, just go to node.js official site and download Windows installer, then execute the installer. Congratulations!!! You successfully installed node.js on Windows!!!

 

Install mongoDB

Go to mongoDB official site to download zip file for Windows, and unzip the contents to anywhere you like. MongoDB will read data at \data\db by default, but mongoDB won’t create this folder for us, so we must create it by ourself, you can create this folder in Windows Explorer, or type the following command in terminal:

C:\> mkdir \data
C:\> mkdir \data\db

After creating \data\db, double click mongod.exe in your_mongodb_path\bin or type the following command in terminal to turn on mongoDB:

C:\> cd your_mongodb_path\bin
C:\> mongod

Then you can double click mongo.exe or type the following command in terminal to get into administrative shell´╝Ü

C:\> cd your_mongodb_path\bin
C:\> mongo

Congratulations!!! You’ve successfully installed node.js and mongoDB on Windows!!!

Update node.js

Go to node.js’s official site and download Windows installer, then execute the installer. Then your node.js is updated.

Update mongoDB

Go to mongoDB official site to download zip file for Windows, and use the files in new zip file, then you can start to use the latest mongoDB. If you have question about installng or using mongoDB, you can check the Windows Quick Start on mongoDB official site :)

Setup a node.js development environment on other OS

If you want to setup a node.js development environment on Mac OSX Lion or Ubuntu 11.04, you can take a look at:

  • How to setup a node.js development environment on Mac OSX Lion
  • How to setup a node.js development environment on Ubuntu 11.04.

npm commands and node.js basics

Now you have setup a clean node.js development environment. Let’s have a quick look at how to use npm and learn some basics of javascript and node.js.

Best Windows Server 2016 Hosting Recommendation

ASPHostPortal.com provides our customers with Plesk Panel, one of the most popular and stable control panels for Windows hosting, as free. You could also see the latest .NET framework, a crazy amount of functionality as well as Large disk space, bandwidth, MSSQL databases and more. All those give people the convenience to build up a powerful site in Windows server 2016. We offers Windows hosting starts from $5/month only. We also guarantees 30 days money back and guarantee 99.9% uptime. If you need a reliable affordable Windows server 2016 Hosting, we should be your best choice.

 



Windows Hosting - ASPHostPortal.com :: 10 Features in Windows Server 2016 sysadmins

clock November 7, 2016 06:55 by author Armend

The newest release of Microsoft’s server operating system, Windows Server 2016, hit general availability on September 26th, along with System Center 2016. We’ve been hearing about new and improved things coming in Windows Server 2016 for months, so you most probably know about the container support and the improved security and networking tools. Maybe you’ve even used some of them in the technology preview versions.
But in case you’ve been holding out for GA, or your working day consisting of endless tickets simply doesn’t allow you to find time to tryout betas and technology previews, we’ve prepared a closer look at the top 10 features in Windows Server 2016 that every sysadmin needs to know about.

 

Server footprints get even smaller with Nano

The next evolution of Server Core – Nano Server, is an even more thinned down version of Windows Server 2016. A Nano server must be managed remotely and can only run 64 bit applications, but it can be optimized for minimum resources, requires far less patching, restarts very quickly, and can perform a number of specific tasks very well with minimal hardware.
Good uses for Nano Server include IIS, DNS, F&P, application servers, and compute nodes. So if you liked Server Core, you will love Nano; and if you never really understood Server Core, you should give Nano a chance, especially if patching and downtime are challenges in your 24×7 shop.

Improved server management with PowerShell 5.0

Windows Server 2016 comes with PowerShell 5.0, a part of the Windows Management Framework 5.0.
including support for developing your own classes, or a new module called PackageManagement, which lets you discover and install software packages on the Internet.
The Workflow debugger now supports command or tab completion, and you can debug nested workflow functions. To enter it in a running script you can now press Ctrl+Break, in both local and remote sessions, and also in a workflow script. And PS5 now runs in Nano server directly, so administration of this lightweight server platform is made even simpler.

Versatile container support for enhanced density

Windows Server 2016 offers two kinds of containers to improve process isolation, performance, security, and scalability. Windows Server Containers can be used to isolate applications with a dedicated process and a namespace, while Hyper-V Containers appear to be entire machines optimized for the application.
Windows Server Containers share a kernel with the host, while Hyper-V Containers have their own kernel, and both enable you to get more out of your physical hardware investments. On top of this, Microsoft announced that all Windows Server 2016 customers will get the Commercially Supported Docker Engine for no additional cost, enabling applications delivered through Docker containers to run on Windows Server on-premise installations or in the cloud, on Azure.

More secure identity management

WS2016 brings some huge improvements to Active Directory, security, and identity management, such as Privileged Access Management (PAM), restricting privileged access within an existing Active Directory environment. In this model you have a bastion forest, sometimes called a red forest, that is where administrative accounts live and which can be heavily isolated to ensure it remains secure. Just-in-Time administration, privileged access request workflows, and improved audition are all included, and best of all – you don’t have to replace all of your DCs to take advantage of this.

Simplified administrative work

“Just Enough Administration” is a new capability in Windows Server 2016 that enables administrators to delegate anything that can be managed through PowerShell. Do you have a developer who needs to be able to bounce services or restart app pools on a server, but not log on or make any other changes? With JEA you can give him or her exactly those abilities, and nothing more. Of course, you may have to write some PS1s to let them actually do that, but the point is that now you can.

Improved HA remote desktop management

Customers who want to set up highly-available RDS environments, but not go to the trouble and expense of setting up HA SQL, can now use an Azure SQL DB for their Remote Desktop Connection Broker, making it both easier and less expensive to set up a resilient virtual desktop environment.
The RD Connection Broker can now handle massively concurrent connection situations, commonly known as the “log on storm”, and it has been tested to handle more than 10k concurrent connection requests without failures.

Software-defined storage for easier management

Software-defined storage enables you to create HA data storage infrastructures that can easily scale out, without breaking the bank. With software defined storage, even SMBs can start to take advantage of high availability storage with the existing budgets.
Three new features take over the stage: Storage Spaces Direct enables you to combine commodity hardware with availability software, providing performance for virtual machines, Storage Replica replicates data at the volume level in either synchronous or asynchronous modes, while Storage QoS guards against poor performance in a multitenant environment.

Time slips into more accuracy

If you have set up an NTP server on your network, or subscribed to NTP services from an NTP pool, you know how important accurate time can be. Typically, Windows environments were less worried about accurate time, and more concerned with a consensus of time, with a five-minute drift being acceptable.
Now in Windows Server 2016, the new time service can support up to a 1ms accuracy, which should be enough to meet almost all needs – if you need more accuracy than that, you probably own your own atomic clock.

Connection flexibility with software-defined networking

Immensely valuable in a virtualization environment, software-defined networking enables administrators to set up networking in their Hyper-V environment similar to what they can in Azure, including virtual LANs, routing, software firewalls, and more.
You can also do virtual routing and mirroring, so you can enable security devices to view traffic without expensive taps.

Boosted security

There are so many security improvements in Windows Server 2016 that we could do an entire post just on that, which, as a matter of fact, we will in the coming weeks. For now, be aware that WS2016 includes improvements to protect user credentials with Credential Guard and Remote Credential Guard, and to protect the operating system with Code Integrity, with a whole host of improvements with virtual machines, new antimalware capabilities in Windows Defender, and much more.

Best Windows Server 2016 Hosting Recommendation

ASPHostPortal.com provides our customers with Plesk Panel, one of the most popular and stable control panels for Windows hosting, as free. You could also see the latest .NET framework, a crazy amount of functionality as well as Large disk space, bandwidth, MSSQL databases and more. All those give people the convenience to build up a powerful site in Windows server 2016. We offers Windows hosting starts from $5/month only. We also guarantees 30 days money back and guarantee 99.9% uptime. If you need a reliable affordable Windows server 2016 Hosting, we should be your best choice.



About ASPHostPortal.com

We’re a company that works differently to most. Value is what we output and help our customers achieve, not how much money we put in the bank. It’s not because we are altruistic. It’s based on an even simpler principle. "Do good things, and good things will come to you".

Success for us is something that is continually experienced, not something that is reached. For us it is all about the experience – more than the journey. Life is a continual experience. We see the Internet as being an incredible amplifier to the experience of life for all of us. It can help humanity come together to explode in knowledge exploration and discussion. It is continual enlightenment of new ideas, experiences, and passions


Author Link


Corporate Address (Location)

ASPHostPortal
170 W 56th Street, Suite 121
New York, NY 10019
United States

Sign in