How To Change RDP Port number

To change the Remote Desktop port numbers follow the steps below:

To change the Remote Desktop port numbers follow the steps below:

1. Start Registry Editor (start ->Run -> regedit).

2. Locate the registry subkey:

HKEY_LOCAL_MACHINESystemCurrentControlSetControlTerminalServerWinStationsRDP-TcpPortNumber

3. On the Edit menu, click Modify, and then click Decimal.

4. Type the new port number.

5. Close the Registry Editor.

 

To connect to the remote computer using the new port.

Open the RDP client and type:
:port
10.0.1.1:3341

Log Off users from a remote server

Problem: When trying to log on to a terminal server you receive the following message:

“Terminal server has exceeded the maximum number of allowed connections”

 

Solution:
To fix this issue there is a need to log of the remote users from the server.
From a different windows server 2003 go to:
Start -> Programs ->Administrative Tools -> Terminal Service Manager -> File -> Connect -> -> right click on the user in the right hand pane -> Click Disconnect

How to Prevent User Validation on a Specific Domain Controller

To prevent users from login to a specific domain controller follow the instruction below:

To prevent users from login to a specific domain controller follow the instruction below:

In the domain controller that you need to prevent users from login in to or validate their user name and password push or disable the Net Logon.

To do so:
Go to Control panel -> Administrative Tools -> services and locate the Net Logon service, right click and click push.

For more info see
http://support.microsoft.com/kb/240142

Scripting and automating backup jobs using NTbackup

This KB will show you how to automate the Microsoft build in Backup software NTbackup using a script.

 

Script 1:
This script use an existing pre configured job to backup to a tape drive:

ntbackup backup [systemstate]”@C:path to jobjobname.bks” /g /p “LTO ultrium”

 

/ p – “Tape drive name”
/G – Override tape

Script 2:
Backup specific folders to tap drive:

ntbackup backup systemstate “E:folder” “F:folder” /p “LTO ultrium” /d “Complete Backup” /um /hc:on

 

/hc – Uses hardware compression
/um -Use the first available media
/p – tape drive name

 

Microsoft NTbackup on the web
https://www.microsoft.com/resources/documentation/windows/xp/all/proddocs/en-us/ntbackup_command.mspx?mfr=true

Lock Desktops using group policy

To automatically lock users desktops using the password protected screen saver:

To lock desktops
Open the group policy editor and create or edit and existing Group Policy.

In the Group Policy editor go to:

User Configuration, Administrative Templates, Control Panel, Display
Enable – Password protect the screen sever
Enable – Screen saver timeout
Number of seconds to wait to enable the Screen Saver, (1500 Seconds = 25 minutes)

Applying Wallpaper to users using Group policy

To implement the same wallpaper to all users computer using group Policy follow the steps.

  1. Create a share network folder on one of the servers.
  2. Create or edit existing group policy
  3. In group policy editor under -> User configuration ->administrative templates ->Desktop ->Active Desktop
  4. Enable Active desktop policy
  5. Enable Active Desktop Wallpaper and Type the path to the Wallpaper next to the Wallpaper Name:
  6. Give users Read and Write permission to the Shared folder where the Wallpaper located.

“operation master ERROR” In operation master TAB

When getting the “the target principal name is incorrect” error message while trying to access a DC from the LAN (e.g Start->run) and “operation master ERROR” In operation master TAB in active directory.

This issue cased by a DC that has lost its secure channel.

When getting the “the target principal name is incorrect” error message while trying to access a DC from the LAN (e.g Start->run) and “operation master ERROR” In operation master TAB in active directory.

This issue cased by a DC that has lost its secure channel.
To resolve the issue, do the follow from the DC that is not the PDC
emulator.

1. Stop the Kerberos Key Distribution Service and set it to disabled.

2. Open a command prompt and run the following command:
“netdom resetpwd /server:
/userd:administrator /passwordd:”
(without the quotation marks)

Where is the name of the server that is the PDC Emulator
operations master role holder.

After you reset the secure channel, restart the domain controller.

For more info use MS KB.
http://support.microsoft.com/kb/q288167/