How to Reset Administrator Password in Windows Server 2012 R2


In this scenario Password for the administrator account is incorrect and you will have to reset the password

2012 AD-2017-06-04-04-11-12

Boot the Windows Server 2012 R2 from CD/DVD

Enter Your Language and other preferences and Click Next

2012 AD-2017-06-04-06-04-01f


Repair Your Computer

2012 AD-2017-06-04-06-04-14

Select Troubleshoot menu

Watermarked 2012 AD-2017-06-04-06-25-47


Select Command Prompt menu

2012 AD-2017-06-04-06-06-25

Run the following commands at the Command Prompt

cd windows\system32 
ren Utilman.exe Utilman.exe.old 
copy cmd.exe Utilman.exe

2012 AD-2017-06-04-06-25-39

Press Windows Key + U and in the command prompt include the following commands. In this case Abcd@1234 is the administrator password.

net user administrator Abcd@1234


2012 AD-2017-06-04-06-32-05

Close the command prompt and login using the given password

2012 AD-2017-06-04-06-34-17

2012 AD-2017-06-04-06-34-30




How to Install Active Directory in Windows Server 2012 R2

Please note that,

  • IP is configured statically
  • DNS server is installed with the AD


Click on “Add roles and features”

2012 AD-2017-06-03-01-26-15

click Next

2012 AD-2017-06-03-01-34-23

By default Role based or feature based installation option is selected. Press Next

2012 AD-2017-06-03-01-34-30

Select the appropriate Server and press Next.

2012 AD-2017-06-03-01-34-41

Select both Active Directory Domain Services and DNS server roles.

2012 AD-2017-06-03-01-35-03

Press Next

2012 AD-2017-06-03-01-35-15

Press Install to start the installation process.

2012 AD-2017-06-03-01-35-33

wait till the Installation finishes

2012 AD-2017-06-03-01-42-05

2012 AD-2017-06-03-01-44-29

Promote this server to a domain controller

2012 AD-2017-06-03-01-44-44

Add a new forest

2012 AD-2017-06-03-01-45-30

Provide the DSRM password

2012 AD-2017-06-03-01-46-05

In this case the default is selected

2012 AD-2017-06-03-01-46-17

NetBIOS name is given (default)

2012 AD-2017-06-03-01-46-35

keep the default

2012 AD-2017-06-03-01-46-47

review the options

2012 AD-2017-06-03-01-46-53


2012 AD-2017-06-03-01-47-19

After the installation server will be rebooted

2012 AD-2017-06-03-02-01-00.png



After Installing RODC (Read Only Domain Controller)

RODC done.jpg

After installing the read only domain controller you may have witnessed that if you create any object on RODC, it will be replicated into the writable DC. The reason is you are actually connected to the writable DC not the RODC AD.

Right click the domain and select “Change domain controller” to check out the connected DC


To manage RODC server you can delegate permission to user

this user wont have permission to write changes to active directory

go to run type “dsmgmt”


in the command prompt type

local roles

add user_name administrators


when there is no connection with the writable domain controller

prepopulate passwords to store accounts passwords in cache otherwise users wont be able to log in

How to change SID in Windows Server 2012 R2

In this article we are going to discuss how to change SID using sysprep.exe tool.  If you are someone who is cloning servers most probably you would have encountered the error stating SID is identical when you try to join to domain.

0 failed join

STEP 01: Go to run and type sysprep command. you will be directed to sysprep folder in windows directory

1 cmd command sysprep

STEP 02: Find sysprep.exe and right click and select run as administrator option.

2 run exe

STEP 03: On the system preparation tool box tick the generalize box and click OK

3 tool box4 sysprep is working

STEP 04: System will auto restart and setting configuration will appear. select country or region / app language / keyboard layout and click next.

5 settings

STEP 05: provide the product key. If you dont have one just click the skip button

6 settings product key

STEP 06: Select I accept in license terms section

7 I accept

STEP 07: Provide password for built in administrator account and select finish

8 password

Congratulations !! you have successfully generated a new SID



After Installing WSUS Server

This tutorial discuss what to do next after finished installing WSUS server

please keep in mind that WSUS is installed on windows server 2012R2 environment

WSUS server configuration

Go to windows server update services,

options > Computers

and selectuse group policy or registry settings on computersoption

sharepoint 2012 datacenter -2016-07-12-09-21-54.png

Group policy configuration

go to “Computer Configuration > Policies > Administrative Templates > Windows Components > Windows Update”

and configure

  1. Configure Automatic Updates
  2. Specify intranet Microsoft update service location
  3. Enable client-side targeting

Configure Automatic Updates

EX2016 DNS-2016-07-12-09-37-10.png

Specify intranet Microsoft update service location

Type the location – http://name-of-the-domain:8530 (default value is given here)

EX2016 DNS-2016-07-12-09-37-55.png

Enable client-side targeting

type the name of the group you have created under computer

EX2016 DNS-2016-07-12-10-14-31.png


After finished configuration force group policies using gpupdate /force command and confirm that client machines are added to the WSUS server.

How to Raise Domain Functional Level in Server 2012 R2

You can raise then Domain Functional Level using “Active Directory Users and Computers” tool.

Note that

You can also use “Active Directory Domains and Trusts” tool to raise the functional level.
User account should belong to “Domain Admins” or “Enterprise Administrators” group.
Raising Domain Functional Level is one time thing and cannot be reversed. Will have to restore the forest from a backup






How to solve default server is unknown Issue for nslookup

When you type command “nslookup” you might encounter following error stating

Default Server : UnKnown

nslookup error.jpg


right click reverse lookup zone and click new zone



create a primary zone (by default it is already selected)




type the network ID (subnet of your network)


Then don’t forget to select the Reverse lookup zone name:


Then click next and keep the default dynamic update type and complete the new zone wizard



Still you might encounter the same error.

Right click on the newly created zone and select “New Pointer (PTR)…”

a 11.jpg

Enter the ip address of the DNS server and name of the Host and click OK

a 22.jpg

Now try “nslookup” and you will see the correct server name. And don’t forget to flush DNS (ipconfig /flushdns) if you still find the same result.