THE OFFICIAL BLOG OF THE SBS DIVA

http://msdn.microsoft.com/en-us/library/jj991858.aspx

If you are looking for an example of how to build a hosted mail plug in for Essentials you can now download the sample from Microsoft

Download it from here http://www.microsoft.com/en-us/download/details.aspx?id=34860

And the sample files are then installed on your machine

Makes a great rdgateway device

Makes a great RWA device (normal non metro IE supports ActiveX)

I must say that the Dell AT&T AllAccess app which touts that you can set it up via the device leaves a LOT to be desired.  I had to call AT&T to set up the cellular I could not do it straight from the device even though the paperwork said I should.

The other fail is that you can't set up firm email without FIRST setting up a Microsoft account.   Only then do you get the option to add another account, and I can't figure out how to not have an Outlook (cloud) account.  Hello Microsoft I realize that you think RT is a consumer device but I know a lot of consumers that don't want an Outlook account.

Last fail is that you have to update the apps installed on the store for each user's profile you set up.

Bottom line works well for what it does, but Enterprises are going to hate some of the design decisions on this.

Control of patching, control of deployment, just not here....

If you have an older Adobe reader you'll notice that your system tray now urges you to update.

http://www.youtube.com/watch?v=0omja1ivpx0

I think we need a redo of Queen's Radio GaGa and this version would be called Television GaGa.  The number of people that say in passing that they no longer subscribe to Cable and only watch things online and on netfix is no longer oddities, but more and more are doing just that.

So what will we be watching in 10 years?

Come find out what the SMBKitchen Project is all about and chat with the
authors in this open free flowing forum. We always get into some
interesting conversations.

This month I’d like to highlight the future of small business IT
consulting but you can bet our conversation will wander into hyper-v,
security, patching and more. It always does!

So plan to join us at 6pm eastern time on Monday. Join Lync Meeting
<https://meet.lync.com/harborcomputerservices/amy/N33CT62B> or download
the iCAL <http://www.thirdtier.net/downloads/Chat520.ics>

We’ll use Lync Audio and Video and yes it will be recorded.

The other day several of us were chatting about the sorry state of Microsoft documentation.

Install a NAP Health Policy Server:
http://technet.microsoft.com/en-us/library/dd296890(v=ws.10).aspx

and that's a good case in point.  "Windows Server 8 beta"

Yeah that's going to google up well.

Background read here:
http://www.networking4all.com/en/ssl+certificates/faq/change+san+issue/

In 2015 the SSL certs will no longer accept a .local in the SAN request.

We are seeing this inside the SBS cert wizard (please note this has been tested on SBS 2011 standard and SBS 2008)

Here's the SBS certificate wizard output:
-----BEGIN NEW CERTIFICATE REQUEST-----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RIIOc21hbGxiaXpjby5jb22CFXJlbW90ZS5zbWFsbGJpemNvLmNv
bYIbU0JTVEVTVFNFUlZFUi5zYnN0ZXN0LmxvY2FsMB0GA1UdDgQWBBTtp0JB90G4
A0lq9Mrl2nUNW9YCvjAOBgNVHQ8BAf8EBAMCBSAwDQYJKoZIhvcNAQEFBQADggEB
AKI8HlAue2tRq6jJ20YafFeg3Qmh830lTben9FGgHUxsxaZZB6ewNmcRVg+u+fLP
g0PR9g27+q3YbN8SwdIQjX9c3/HzY8jbspgDJds3N4MPx+5O72up5G/YZlypDk+F
SclurtL1Kwuq23Pmz5XWloGSTo8RhssV8A6dQ7jggQhNSY3MeZ1GnNNlIj/j3zqL
IlcIiKlNbL3ObQLZCfCz4k+Q4OiQZXwRPyZ4b9XGHWq3O/Gp1B72gLuaYqJ3i5n8
McY7z2esBGli9n5mjEZrdaPCvV7at2FSXWJvWd5ohOhXY1yF6ZZpZ7ByXfJ5twN4
mOM4axM1ATKvI0CXHkIa+08=
-----END NEW CERTIFICATE REQUEST-----

Now take that ssl cert request and check it out here: http://certlogik.com/decoder/

As you can see there's a very obvious .local in the SAN section

Requested Extensions:
            X509v3 Subject Alternative Name:
                DNS:smallbizco.com, DNS:remote.smallbizco.com, DNS:SBSTESTSERVER.sbstest.local

If you select a single domain (simple cheap) cert from godaddy it will ignore this SAN info and build a cert that doesn't have a .local in the name. 

I'm checking to see if this impacts when you choose a UCC cert.  Please note this does NOT impact Windows 2012 Essentials as that cert request is different.  It's for sure on SBS 2008/SBS 2011 standard.

Again, still investigating the long term impact, hang loose.

And as a ps google on cheap godaddy or 5.99 godaddy and you can usually hit an offer for a 5.99 ssl cert offer http://www.godaddy.com/?isc=iap32m

I'm still not seeing where SBS puts .local into the SSL certificate wizard - http://msmvps.com/blogs/bradley/archive/2013/05/13/mailbag-what-about-local-and-ssl.aspx  several of you in the comments say it does.  Can you email me at susan-at-msmvps.com and show me what you are seeing and where you are seeing it?  As I'm looking at my box and cannot see it.

And like anything with technology, until someone else can repro the issue and fully understand it, it can't get understood to be fixed if there's a problem.

So folks, show me your .locals please?

So you can't (or shouldn't) use .local in an SSL certificate and is that going to cause an issue on a SBS network?

http://www.networking4all.com/en/ssl+certificates/faq/change+san+issue/

In a word because no, we don't use .local in our ssl certificate naming.  We don't even use it in self signed certs.  (see http://blogs.technet.com/b/sbs/archive/2009/12/14/how-to-manually-install-certificates-in-sbs-2008.aspx for an example)

We only use .local for the internal domain name we don't use .local in a SSL cert naming.

So bottom line that issue is a non issue for how we set up our networks.

One of the things you find when you actually USE your iPhone is that the charge drops like a rock.  So I picked up a Mophie charge battery pack to add to my collection of geek travel stuff.  In addition to the laptop, we also have the Jambox  boombox (Okay so I don't always travel with that), an iphone charge cable, and I've just added the Jawbone UP device.

It's a wonder I make it through the airport security line at all.

If you are working with Server 2012 or Essentials, Mark's blog is another good tech source to bookmark.

Scoped Snapshots vmicvss Error 13 on Server 2012, Windows 8 | MCB Systems:
http://www.mcbsys.com/techblog/2013/05/scoped-snapshots-vmicvss-error-13-on-server-2012-windows-8/

If you are working with Server 2012 or Essentials, Mark's blog is another good tech source to bookmark.

Scoped Snapshots vmicvss Error 13 on Server 2012, Windows 8 | MCB Systems:
http://www.mcbsys.com/techblog/2013/05/scoped-snapshots-vmicvss-error-13-on-server-2012-windows-8/

No one teaches it better than Rhonda Layfield!

Deploying Windows 8 - Learn About the Tools You Need to Do It Right | Windows IT Pro:
http://windowsitpro.com/deploying-windows-8-learn-about-tools-you-need-do-it-right?promo=WP2936T1

Early bird: $429 (register before 6/6)
Price: $499

Dates and Times: 
Day 1 June 27 (2 sessions) - noon, 1:45
	Session 1 - Windows Assessment and Deployment Kit (Windows ADK) -
Intro and basic tools
	Session 2 - WADK - Performance analysis and other tools & WADK
Integration

Day 2 July 9 (3 sessions) - noon, 1:30, 3
	Session 3 - MDT 2012 U1 - Installation, set up and deploy Windows 8
image
	Session 4 - MDT 2012 U1 - Automate MDT deployments
	Session 5 - MDT 2012 U1 - Advanced Features including MDT
integration with WDS

Day 3 July 11 (3 sessions) - noon, 1:45, 3:30

	Session 6 - WDS 2012 Installation, Creation and Deployment of
Windows 8
	Session 7 - WDS 2012 Advanced features
	Session 10 - CM 2012 Zero Touch Installations (ZTI)

Community based AH HA fixes.

First up is when you transmog your server from Essentials 2012 to standard you will get a leftover error in the event logs

Windows Server 2012 Essentials : After Transmog SILSVC Error | Title (Required):
http://titlerequired.com/2013/05/02/windows-server-2012-essentials-after-transmog-silsvc-error/

Robert Pearman details the fix for that.

Next up is a an error 5767 on SBS 2011 standard that is triggered when you have set all passwords to "never expire"  There is a script on the box to update the SharePoint password and when the password policy is change to never require this change, the system will throw up an event 5767 as a result.

SharePoint Foundation Error 5767 on SBS 2011:
http://social.technet.microsoft.com/Forums/en-US/smallbusinessserver/thread/979975bf-fdcf-4795-a678-eab35c9216f6/

Ignore it or follow the advice to move the SharePoint to a user group that doesn't get managed by the password policy,

To whom it may concern up at Microsoft.  I'm a small business server software assurance customer.  Have been since 2000.  Along the way there's been times that software assurance gave me a good deal (caught Live communicator as it peeled out of Exchange), and times it didn't (cough - SBS 2003 R2 comes to mind).  So I'm coming up to my software assurance renewal as of June 30, 2013 in the first post SBS era renewal and I just can't justify it anymore.

As a result of me getting the parts of SBS - Windows Server 2012, Exchange 2013, the price tag of my overall agreement increased for one making me step back and really think hard about whether or not this is good value to my firm.  Given that Microsoft is in this new era of "Apple like" disclosure - as in not saying anything about what they are up to - I can't predict what they will be doing in three years.  While one of the guys in my office joked about whether or not Microsoft would be in business in three years - the reality of the software assurance benefits in the "new" era of Microsoft is vastly decreasing from what they were before.

New products lately haven't been more stable and we've had to wait for cumulative updates before things settled down (Exchange 2013 CU1 for example).  So the often key feature touting of "new releases" is not necessarily a selling point.  New things are new pain and not stable releases these days.

Elearning offerings for the server platform is typically out of date and not timely.  You get better training from the Linked in Server group or Microsoft Virtual Academy.  There is not a single Exchange 2013 course that I can see in the e-learning section.  The only "Essentials" training is for Essential Business Server 2008 (you remember that platform, right?)

I get technet benefits from signing up for action pack.  If I didn't sign up for action pack, I'd just buy technet plus outright instead of SA.

About the only thing that - assuming I did this - I might lose is the Cold Backups for Disaster recovery that are probably needed for server replication or fallover.

Bottom line in the small business space, software assurance was a hard sell before, now, I just don't see the benefits.

I don't know where Microsoft will be in three years to plan that far ahead.

So Microsoft?  Give me a reason I should continue on with my software assurance purchase that expires June 30th.

Download Window Server 2012 Products and Editions Comparison from Official Microsoft Download Center:
http://www.microsoft.com/en-us/download/details.aspx?id=38809

That's actually not a half bad comparison of all the 2012 server editions.

The wizard cannot configure Remote Desktop Connection settings. - THE OFFICIAL BLOG OF THE SBS DIVA:
http://msmvps.com/blogs/bradley/archive/2012/10/29/the-wizard-cannot-configure-remote-desktop-connection-settings.aspx

Remember that blog post about Windows 8?

You'll see this again after you apply IE10 to your Windows 7 machines.

BLOCKED SCRIPT  Remote Desktop Connection

The wizard cannot configure Remote Desktop Connection settings.  Make sure that the client version of Remote Desktop Protocol (RDP) 6.0 or later is installed on this computer.

1.  Ensure you have the latest SBS 2008 update rollup. http://blogs.technet.com/b/sbs/archive/2012/09/25/update-rollup-3-for-windows-small-business-server-2011-standard-and-update-rollup-6-for-windows-small-business-server-2008-available-now.aspx

2.  Put the url of the web site in the trusted site zone

3.  Click on "compatibility" settings and place the site in compat mode.   <<<< this one is key

Jump through all those hoops and you'll get in just fine.

Mr. SharePoint and Mr. Office 365 Robert Crane has an announcement today:

CIAOPS Office 365 and SharePoint Guide special offer for May 2013 ONLY! Full details at http://blog.ciaops.com/2013/05/office-365-and-sharepoint-guide-turns.html 

In  summary:

- 10% off for new subscribers
- 1 hour free remote consultation for new and existing subscribers till June 30 2013
- 10% referral commission for every converted subscription

Full details of the Guide at www.wssops.com

(edit, fixed url)  

Just a reminder, if you have clients on the fence and still running SBS 
2003, and they are thinking of SBS 2011 or SQL add on there's only two 
months to purchase these on the VL lists.

SBS 2011 standard/SQL add-on will only be offered on the VL price lists 
until June 30, 2013.

It will come off for good on the OEM price list in December 2013.

CALS will continue to be sold until 2016.

Q&A Part 1: Small Business Server Update Webinar
http://h30507.www3.hp.com/t5/Coffee-Coaching-HP-and-Microsoft/Q-amp-A-Part-1-Small-Business-Server-Update-Webinar/ba-p/118791

Q: What are the possibilities of extending Windows SBS 2011 Standard 
licenses beyond 2013?
A: Windows Small Business Server 2011 Standard will remain available 
through the OEM channel until December 31, 2013, and will remain 
available in all other current channels until June 30, 2013. The Windows 
SBS 2011 CAL Suite will remain available through the OEM channel until 
December 31, 2016, and will remain available in all other current 
channels until June 30, 2016.

This in from Harry Brelsford:

Attend SMB Nation Spring virtually with our ONLINE edition! We’ve teamed with Varvid again to provide selected content sessions online. You may attend this “limited edition” of the Spring conference complimentary. It all starts with the Registration link and select Streaming Broadcast.

http://spring.smbnation.com/index.php/register/registration

Streaming Broadcast:

Standard Streaming Broadcast: $0.00 COMPLIMENTARY (April 6, 2013 to May 3, 2013) 

Attend SMB Nation Spring virtually with our ONLINE edition! We’ve teamed with Varvid again to provide selected content sessions online. You may attend this “limited edition” of the Spring conference complimentary. It all starts with the Registration link and select Streaming Broadcast.