Search the Community

WannaCry was a disaster that could have been prevented if people took notice. If you didn’t hear about it you must have been asleep, here is a refresher. After WannaCry, most businesses took notice and updated their operating systems, patched them and took measures to avoid a further outbreak. But today, May 14th, 2019, Microsoft has released information that warns of yet another WannaCry-like worm. Note: If you are using Windows 10, you are OK, you are not vulnerable to this CVE. If not, and if you are still on Windows 7 then start upgrading to Windows 10 by using the Inplace Upgrade Task Sequence I explain about here or if you cannot upgrade immediately, then patch Windows 7 to protect it from this vulnerability. Vulnerable in-support systems include Windows 7, Windows Server 2008 R2, and Windows Server 2008. Downloads for in-support versions of Windows can be found in the Microsoft Security Update Guide. Customers who use an in-support version of Windows and have automatic updates enabled are automatically protected. Out-of-support systems include Windows 2003 and Windows XP. If you are on an out-of-support version, the best way to address this vulnerability is to upgrade to the latest version of Windows. Even so, we are making fixes available for these out-of-support versions of Windows in KB4500705. If however you are running Windows XP, yes…. that old unsupported operating system then take warning ! Today, Microsoft has warned against the wormable capabilities from this CVE (critical Remote Code Execution vulnerability) and they blogged about what to do to avoid it happening to you. Read that blog post here: https://blogs.technet.microsoft.com/msrc/2019/05/14/prevent-a-worm-by-updating-remote-desktop-services-cve-2019-0708/ It’s very clear from their text that this is all about protecting customers from the next worm, so pay attention and if you have old operating systems that are in support and affected, then update immediately. Note: This is so serious that even Windows XP and Windows Server 2003 are getting updates from Microsoft for this vulnerability. You can download those updates from Microsoft Catalog here. https://support.microsoft.com/en-ca/help/4500705/customer-guidance-for-cve-2019-0708

Greetings all, Firstly, I'm a true noob when it comes to certificates. I’m trying to deploy RDS on a W2012 R2 workgroup server (there is no AD). I’ve been using this guide but it requires a cert and, like Jon Snow, I know nothing about certs. The thought is to use the cert simply for authentication. We’ll manually install the public side cert on each of the 5 remote user’s computers. It doesn’t have to be from an external authority. I need to create a client cert that: 1. Is required 2. Is valid for at least 5 years How do I create this certificate? Using IIS or CA? Please provide details! Thanks all!!

Hi everybody, I would like to ask help with the role "Remote Desktop Services" under windows server 2012. The main objetive is provide pools of virtual machines for users who need one because his notebook is too old for install windows 7/8. People then will works with their personal dektop integrated in AD with all domain resources available. Current Status: I have installed 3 machines called "vs-dc" (domain controller), "vs-test04" (windows server 2012) and "vs-test05" (windows server 2012). In each machine I have done: * VS-DC: I have not change nothing in AD (including schemas). * VS-TEST04: I have installed remote desktop services. In this server is running "RD Web Access", "RD Connection Broker", "RD Virtualization Host" and "Remote Desktop Session Host". I have deployed one colletion under 4 virtual machines, running 2 virtual machines in this server. * VS-TEST05: I have installed remote desktop services. In this server is running "RD Virtualization Host" and "Remote Desktop Session Host". Here I have running 2 virtual machines in this server. Main Objetive: Now, my main idea is when a user need a virtual desktop, he launch out VPN conection and when he is connected, then he launch a remote desktop on vs-test04 or vs-test05 and his session is redirected to this virtual machine. Questions: How can I do it without RDWeb Portal? is it posible?

I want to be able to have user's remote in from the outside of the network. I know I need public IP and I got that but I don't know how to setup profiles for people, so when they login they see mapped drives and shortcuts to their folders. I don't know scripting and since it is less than a handfull of users. I could do it manually for each person. I am also located in New york City and would love to connect with other Admins to learn from.

Hello folks, How can I include the terminal server build in a TS? I have around 20 apps to install and for Terminal Server(Remote Deskop Services) the role has to be installed first and then set to ''change user /install" to install apps and then revert back to " change user /execute". I ran as TS step as command but it failed with no apparent reasons. The log is very vague, so hoping someone already went thru this. Thanks!!