Category Archives: Windows

Windows 10–1709 and OneDrive UX

OneDrive receives some well deserved attention in every upgrade of Windows 10. The road to an exciting user experience is paved with some hiccups, but once 1709 came around – most of the quirks were sorted out.

OneDrive is still seen in the system tray as two clouds (blue for OneDrive for Business and white for the personal edition). Spotting them in the task manager reveals a different confusion still.

image

image

One of the advocated new improvements is the ability to maintain sparse-files, or pointers, or – well, the point beeing; the file is not on disk and will only be retrieved from the cloud when needed (or requrested). The ability needs toggling under the Settings for each cloud (business or personal) and named Files On-Demand (or this can be enabled via group policy per machine)

image

Technically Files On-Demand is an attribute set for each file. The state is called Pinned or Unpinned and can be toggled via the “attrib” command. No idea why they chose to maintain an older command rather than enabling this via Powershell only.
To make files available offline; attrib -U +P /s

image

The end-user isn’t required to know this and can toggle the options from  right-click option when selecting any file or folder. The names aren’t the same, but rather offer a more end-user friendly name.

image

Applying the Free up space option will clearly show the progress of altering the attribute by saying Applying properties….

image

As a way to educate the user and offer a clear view of the state of any folder (offline, online, issues or syncing) there is a new column added (as opposed to the previous overlay on the icons) named Status. Personally this seems to be an improvement (allows for sorting for example).

image

Remember the system tray icons? A bit more useful this time around – if you left-click them once the following status will be shown.

OneDrive for Business

image

OneDrive

image

The reason for this write-up is based on the experience of migrating all OneDrive content to OneDrive for Business. Odd thing once I was completed. (1) is the OneDrive for Business and (2) is OneDrive. For some reason the consumption of data differs with just above 100gb. Where did this go? The below is from settings of the OneDrive-client.

image

Comparing the folder on disk looks like this shows that both are roughly 237gb – so this seems odd. Verifying online via the Manage Storage button shows some correct numbers and verifiying basic folder structure from the web-interface provides some additional confidence. Accessing the OneDrive for Business via the admin-center for Office 365 and spinning up the Reports for usage – shows that 8mb is currently consumed?

Are there any more ways to confirm how much data I got?

image

As OneDrive for Business is essentially a glorified interface for Sharepoint – there are certain limitations defined. There are restrictions on files both in OneDrive and OneDrive for Business, however OneDrive for Business has far more annoying limitations. Sample output to resolve the 181 conflicts – a number far lower than expected to be honest.

image

Windows 7 x64 and TPM 2.0

If you are using Bitlocker, Configuration Manager 1610 or higher and get a piece of hardware that has TPM 2.0 there are a few more hurdles to get the device encrypted. Coretech has written notes from the field which states the two options going forward. Following their recommendation – lets go down the path of running a device with CSM (UEFI) enabled and installing Windows 7.

Make sure that the device is running in UEFI and is setup as expected. I will leave the actual configuration of BIOS / UEFI out of this – as any device with TPM 2.0 will most likely have a preconfigured settings that are optimal. If not, time to configure for UEFI (without Secure Boot).

UEFI Boot

Once that is completed – create a new group that has the intention to identify if we (if possible) booted with a legacy option (legacy PXE-boot, legacy USB stick etc etc). Validate that its not UEFI-booted and that we have a TPM 2.0 chip (and add a check that we are also intending to install Windows 7 x64).

image

Only two steps are required in the group – format the drive as GPT and then a restart to the boot-image. Suggested format:

image

Preprovision

Once we have ensured that the device is running in UEFI, and not legacy…, and since we all are running a newer ADK then 1511 – we should add three registry keys per Microsoft

Above configuration of the algorithms for Windows 10 (build 1511) is kept as REG_DWORDs under:

HKLM\SOFTWARE\Policies\Microsoft\FVE

Operating System drives: EncryptionMethodWithXtsOs

Fixed Data drives: EncryptionMethodWithXtsFdv

Removable Data drives: EncryptionMethodWithXtsRdv

Hotfix

You can integrate the TPM 2.0 hotfix into the Windows 7, or simply install it after the WIM has been copied onto the machine. It should be installed before MBAM (or just bitlocker) is installed and starts handling the encryption

Windows 10–1607–LinkedConnections

So, lots of things have to fall into place for this to take effect, but here we go….

If you have UAC enabled (in some form or another) and have users that are able to run in two different contexts (elevated and non-elevated) with the same user account – it means that they are local administrators on the device. It also means…

.. that if they map a network drive in one context it will not be visible in the other context by default.

Microsoft created the great Linked Connection which will automatically allow the mapping of a network drive to be visible in both contexts.

Well, since roughly October 2016 this stopped working if you were running Windows 10 – 1607 with the October 2016 patch, and the user was local administrator on the device and mapped a drive in one context and also expected the EnableLinkedConnections to provide a smooth user experience – it simply stopped working.

To add insult to injury – if you map a drive within a login-script; the default context is elevated so the non-elevated process (such as explorer.exe) will not show the mapped drive.

As far as I can tell this is not listed as a known defect. Therefore its not listed as a fixed defect in the March 2017 patch for Windows (so, october.. november… december.. 6 months in total in a non-working state). According to Google (oh, what a reliable source for anything named Microsoft) Windows 10 – 1607 was noted as Business Ready (Current Business Branch) since 29 November 2016.

image

Ready for business, eh? Well – at least one step further….

Group Policy Preference and Scheduled Tasks

For some reason it’s always the details in the basics that are the longest hurdle to get over. This particular topic is something that always needs to be re-googled before the last details are sorted out.

Purpose

To create a schedule task to either run as the system-account or the interactive user via Group Policy Preference.

The detail:

When resolving SYSTEM the normally resolved identity is BUILTIN\SYSTEM. Interactive is normally not able to resolve at all. This normally results in the following error client side when attempting to apply the Group Policy

‘0x80070534 No mapping between account names and security IDs was done.’

What should be done?

Click the Change User or Group and select the domain of your environment, and proceed to select the Builtin-container. This will resolve both Interactive (running in the user context of the logged on user) and system to NT Authority.

image

End-result;

image

or

image

Office and its poor handling of slow-links

Office is and has been a core application for a quite a while within most Windows environments.  This is a small list of things that have been adopted to make the user experience better for users not located close to the file-servers, or articles that allow you to understand why things happens.

Slow network performance when you open a file that is located in a shared folder on a remote network computer
Known issues with Office if Desktop or My Documents is redirected
An Office program is slow or may appear to stop responding (hang) when you open a file from a network location
Excel workbooks may open slowly over the network
Slow performance when you browse the My Documents folder in the document library in Windows 7 or in Windows Server 2008 R2

and for the PST / OST-files;

Limits to using personal folders (.pst) files over LAN and WAN links
Network Stored PST files … don’t do it!

Access

Using a wan with ms-access? How fast, how far?

Keyboard Layouts–cleanup the languagebar

Want to get rid of excess language settings? In an European environment it can be quite nasty and if your organization truly spans across the globe – multiple settings can conflict. Here is to set the record straight and cleanup things properly from a default / mandatory profile along with some major HKLM cleanup to smoothly offer the right keyboard layout for users.

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{0000897b-83df-4b96-be07-0fb58b01c4a4}\LanguageProfile\0x00000000\{0001bea3-ed56-483d-a2e2-aeae25577436}]
“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{03B5835F-F03C-411B-9CE2-AA23E1171E36}\LanguageProfile\0x00000411\{A76C93D9-5523-4E90-AAFA-4DB112F9AC76}]
“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{241A9AFE-5045-43a8-9F86-1B5E3814095C}\LanguageProfile\0x00000404\{0AEC109C-7E96-11D4-B2EF-0080C882687E}]
“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{241A9AFE-5045-43a8-9F86-1B5E3814095C}\LanguageProfile\0x00000404\{0B883BA0-C1C7-11D4-87F9-0080C882687E}]

“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{241A9AFE-5045-43a8-9F86-1B5E3814095C}\LanguageProfile\0x00000404\{B2F9C502-1742-11D4-9790-0080C882687E}]
“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{241A9AFE-5045-43a8-9F86-1B5E3814095C}\LanguageProfile\0x00000404\{F3BA907A-6C7E-11D4-97FA-0080C882687E}]

“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{3FC47A08-E5C9-4BCA-A2C7-BC9A282AED14}]
“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{3FC47A08-E5C9-4BCA-A2C7-BC9A282AED14}\LanguageProfile\0x00000804\{F3BA9077-6C7E-11D4-97FA-0080C882687E}]

“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{3FC47A08-E5C9-4BCA-A2C7-BC9A282AED14}\LanguageProfile\0x00000804\{FA550B04-5AD7-411f-A5AC-CA038EC515D7}]

“Enable”=dword:00000000

 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{4518B9B5-7112-4855-B64F-2EC0DD2831E6}\LanguageProfile\0x00000411\{54EDCC94-1524-4bb1-9FB7-7BABE4F4CA64}]
“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{531FDEBF-9B4C-4A43-A2AA-960E8FCDC732}\LanguageProfile\0x00000404\{0B883BA0-C1C7-11D4-87F9-0080C882687E}]
“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{531FDEBF-9B4C-4A43-A2AA-960E8FCDC732}\LanguageProfile\0x00000404\{4BDF9F03-C7D3-11D4-B2AB-0080C882687E}]
“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{531FDEBF-9B4C-4A43-A2AA-960E8FCDC732}\LanguageProfile\0x00000404\{6024B45F-5C54-11D4-B921-0080C882687E}]
“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{531FDEBF-9B4C-4A43-A2AA-960E8FCDC732}\LanguageProfile\0x00000404\{761309DE-317A-11D4-9B5D-0080C882687E}]
“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{531FDEBF-9B4C-4A43-A2AA-960E8FCDC732}\LanguageProfile\0x00000404\{B2F9C502-1742-11D4-9790-0080C882687E}]
“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{531FDEBF-9B4C-4A43-A2AA-960E8FCDC732}\LanguageProfile\0x00000404\{F3BA907A-6C7E-11D4-97FA-0080C882687E}]
“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{81D4E9C9-1D3B-41BC-9E6C-4B40BF79E35E}\LanguageProfile\0x00000804\{F3BA9077-6C7E-11D4-97FA-0080C882687E}]
“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{81D4E9C9-1D3B-41BC-9E6C-4B40BF79E35E}\LanguageProfile\0x00000804\{FCA121D2-8C6D-41fb-B2DE-A2AD110D4820}]
“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{A028AE76-01B1-46C2-99C4-ACD9858AE02F}\LanguageProfile\0x00000412\{B5FE1F02-D5F2-4445-9C03-C568F23C99A1}]
“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{AE43355F-D71A-4E19-BB94-C23CCBF88F74}\LanguageProfile\0x00000412\{48878C45-93F9-4aaf-A6A1-272CD863C4F5}]
“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{E429B25A-E5D3-4D1F-9BE3-0C608477E3A1}\LanguageProfile\0x00000404\{037B2C25-480C-4D7F-B027-D6CA6B69788A}]
“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{E429B25A-E5D3-4D1F-9BE3-0C608477E3A1}\LanguageProfile\0x00000404\{D38EFF65-AA46-4FD5-91A7-67845FB02F5B}]

“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{E429B25A-E5D3-4D1F-9BE3-0C608477E3A1}\LanguageProfile\0x0000045e]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{E429B25A-E5D3-4D1F-9BE3-0C608477E3A1}\LanguageProfile\0x0000045e\{8F96574E-C86C-4bd6-9666-3F7327D4CBE8}]
“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{E429B25A-E5D3-4D1F-9BE3-0C608477E3A1}\LanguageProfile\0x00000478\{409C8376-007B-4357-AE8E-26316EE3FB0D}]
“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{E429B25A-E5D3-4D1F-9BE3-0C608477E3A1}\LanguageProfile\0x00000804]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{E429B25A-E5D3-4D1F-9BE3-0C608477E3A1}\LanguageProfile\0x00000804\{54FC610E-6ABD-4685-9DDD-A130BDF1B170}]
“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{E429B25A-E5D3-4D1F-9BE3-0C608477E3A1}\LanguageProfile\0x00000804\{733B4D81-3BC3-4132-B91A-E9CDD5E2BFC9}]
“Enable”=dword:00000000

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\CTF\TIP\{E429B25A-E5D3-4D1F-9BE3-0C608477E3A1}\LanguageProfile\0x00000804\{EF63706D-31C4-490E-9DBB-BD150ADC454B}]
“Enable”=dword:00000000

 

Looking at the user profile there can be several places in which configuration can be found.

Primary key for keyboard settings;

image

The language bar configuration can be seen under HKCU\Software\Microsoft\CTF and three places below this registry key contains configuration relating to what will be seen in the actual language bar. They are all expanded below.

image

RemoteFX Performance Counters

This is a pure copy-and-paste article from a Spanish blog about Performance Counters regarding the RemoteFX protocol within Windows Server 2012. Took me a long time to google it – so saving it here for use later on.

 

RemoteFX Graphics

  • Average Encoding Time: Average frame encoding time
  • Frame Quality: Quality of the output frame expressed as a percentage of the quality of the source frame
  • Frames Skipped/second – Insufficient Client Resources: Number of frames skipped per second due to insufficient client resources
  • Frames Skipped/second – Insufficient Network Resources: Number of frames skipped per second due to insufficient network resources
  • Frames Skipped/second – Insufficient Server Resources: Number of frames skipped per second due to insufficient server resources
  • Grphics Compression Ratio: Ratio of the number of bytes encoded to the number of bytes input
  • Input Frames/second: Number of sources frames provided as input to RemoteFX graphics per second
  • Output Frames/second: Number of frames sent to the client per second
  • Source Frames/second: Number of frames composed by the source (DWM) per second

RemoteFX Network

  • Base TCP RTT: Base TCP round-trip time (RTT) detected in milliseconds
  • Base UDP RTT: Base UDP round-trip time (RTT) detected in milliseconds
  • Current TCP Bandwidth: TCP Bandwidth detected in bits per second (bps)
  • Current TCP RTT: Average TCP round-trip time (RTT) detected in milliseconds
  • Current UDP Bandwidth: TCP Bandwidth detected in bits per second (bps)
  • Current UDP RTT: Average TCP round-trip time (RTT) detected in milliseconds
  • FEC Rate: Forward Error Correction (FEC) percentage
  • Loss Rate: Loss percentage
  • Retransmission Rate: Percentage of packets that have been retransmitted
  • Set Rate P0: Rate in bits per second (bps) at which data is sent with priority 0
  • Set Rate P1: Rate in bits per second (bps) at which data is sent with priority 1
  • Set Rate P2: Rate in bits per second (bps) at which data is sent with priority 2
  • Set Rate P3: Rate in bits per second (bps) at which data is sent with priority 3
  • TCP Received Rate: Rate in bits per second (bps) at which data is received over TCP
  • TCP Send Rate: Rate in bits per second (bps) at which data is sent over TCP
  • Total Received Rate: Rate in bits per second (bps) at which data is received
  • Total Send Rate: Rate in bits per second (bps) at which data is sent
  • UDP Packets/Received/sec: Rate in packets per second at which packets are received over UDP
  • UDP Packets/Send/sec: Rate in packets per second at which packets are sent over UDP
  • UDP received Rate: Rate in bits per second (bps) at which data is received over UDP
  • UDP Send Rate: Rate in bits per second (bps) at which data is sent over UDP

Windows 7 hotfix frenzy

An application or service that uses Winsock API or Winsock Kernel API may randomly stop responding in Windows Server 2008 R2 or in Windows 7 http://support.microsoft.com/kb/2465772
“0x80041002 (WBEM_E_NOT_FOUND)” error occurs when you try to open a WMI namespace on a computer that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2465990
Windows 7 may connect to a guest network instead of a corporate network http://support.microsoft.com/kb/2481614
A “0x000000B8” Stop error occurs when you try to shut down or hibernate a computer that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2490742
High CPU usage or a lengthy startup process occurs during WMI repository verification when a large WMI repository exists in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2505348
An update that improves the startup performance of Windows 7 and of Windows Server 2008 R2 is available http://support.microsoft.com/kb/2510636
A computer that is running Windows 7, Windows Vista, Windows Server 2008 or Windows Server 2008 R2 continues to use the original printer driver after you update or replace the printer driver http://support.microsoft.com/kb/2511290
Network throughput is not scaled up correctly if high-bandwidth PCI Express adapters and four or more processor sockets are used in Windows Server 2008 R2 http://support.microsoft.com/kb/2511305
“0x00000050” Stop error occurs when you run an application that uses the RegSetValueEx function on a computer that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2516405
The WWAN service may crash after you resume a Windows 7-based computer from S3 sleep http://support.microsoft.com/kb/2519740
The network location profile changes from “Domain” to “Public” in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2524478
“0x0000003B” Stop error when you remotely control a Remote Desktop session in Windows Server 2008 R2 http://support.microsoft.com/kb/2525246
You encounter a long logon time after you enable the “Do not automatically make redirected folders available offline” Group Policy setting in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2525332
Visual artifacts occur when more than 1,000 controls are drawn in the same container in Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2525949
Printing performance decreases in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2526028
Windows Vista, Windows Server 2008, Windows 7, or Windows Server 2008 R2 may stop responding at the Welcome screen after you enter the user credentials to log on to the computer http://support.microsoft.com/kb/2526870
An SSO solution that calls the LsaLogonUser function to pass a KERB_TICKET_LOGON structure for Kerberos authentication does not work in Windows 7 SP1 or in Windows Server 2008 R2 SP1 http://support.microsoft.com/kb/2526946
Incorrect memory dump files in an x64-based version of Windows 7 SP1 or of Windows Server 2008 R2 SP1 http://support.microsoft.com/kb/2528507
Some CPU cores are parked while other active CPU cores have a heavy workload in Windows Server 2008 R2 http://support.microsoft.com/kb/2534356
Print driver installation does not work in Windows 7 or in Windows Server 2008 R2 when you try to install the HP Universal Print Driver in a Novell network environment http://support.microsoft.com/kb/2546651
The EnumPrinterDataEx function causes pool corruption in the printer spooler service in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2549657
Connectivity problems for an Outlook client to an Exchange Server in a server farm through an RPC-over-HTTP connection http://support.microsoft.com/kb/2549661
Time-out error occurs when you install a Windows Update package that contains drivers on a computer that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2552343
Msinfo32.exe takes a long time to display or export system information on a computer that has many MSI-X-supported devices and that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/default.aspx?scid=kb;en-US;2492536
An application crashes when it tries to retrieve file information from an invalid or corrupted file in Windows Vista, in Windows Server 2008, in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2578214/
I/O throughput is low when large files are read sequentially in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2564236/
Offline files synchronization may not finish on a computer that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2561708/
The logon process stops responding in Windows Server 2008 R2 or in Windows 7 http://support.microsoft.com/kb/2578159/
A mapped drive that has the non-persistent flag set is displayed as a disconnected drive in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2551503/
You experience a long domain logon time in Windows 7 or in Windows Server 2008 R2 after you deploy Group Policy preferences to the computer http://support.microsoft.com/kb/2561285/
When you try to access files on a network share, Windows Explorer stops responding on a computer that is running Windows 7 http://support.microsoft.com/kb/2550581/
Windows 7 or Windows Server 2008 R2 reports memory incorrectly on a computer that is running a chipset that has an integrated GPU http://support.microsoft.com/kb/2566191/
Unexpectedly slow startup or logon process in Windows Server 2008 R2 or in Windows 7 http://support.microsoft.com/kb/2617858/
Windows 7 or Windows Server 2008 R2 crashes if a command prompt or a PowerShell console is opened and closed many times http://support.microsoft.com/kb/2617157/
Certain user folders are absent from the user profile in Windows 7 or in Windows Server 2008 R2 if the folders are excluded from the roaming profile http://support.microsoft.com/kb/2600484/
“Stop 0x000000AB (SESSION_HAS_VALID_POOL_ON_EXIT)” error when a client logs off from a Windows Server 2008 R2 Remote Desktop Services session http://support.microsoft.com/kb/2585233
Slow performance when you copy more than 10 gigabytes of data to a Blu-ray disk in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2583905/
A process that is being terminated stops responding in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2582203
The desktop does not load and only displays a black or blue background after you log on to a computer that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2590550
Client computers do not obtain an IP address when they request a DHCP lease from a Windows Server 2008 R2-based DHCP server http://support.microsoft.com/kb/2598526/
Black screen during a Remote Assistance session in Windows Vista, in Windows Server 2008, in Windows 7, or in Windows Server 2008 R2 http://support.microsoft.com/kb/2614066/
Paged pool memory leak when you access some shared files in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2612966/
Invalid redirected printers may be available in a Remote Desktop Services session that connects to a RD Session Host server that is running Windows Server 2008 R2 http://support.microsoft.com/kb/2620656/
Internet Explorer Group Policy Preferences do not apply to Internet Explorer 9 in a Windows Server 2008 R2 domain environment http://support.microsoft.com/kb/2530309/
The BranchCache feature does not work for shared files that are opened in read/write mode in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2591402/
Logon scripts take a long time to run in Windows Vista, in Windows Server 2008, in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2581608/
You cannot rename an application in a shared folder in Windows 7 or in Windows Server 2008 R2 if the application is being run by one or more users http://support.microsoft.com/kb/2622136/
Print output is blank when you print text to a Generic/Text Only printer in Internet Explorer 9 on a computer that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2584449/
“0x00000027” Stop error when you try to access a shared network resource in Windows Server 2008 R2 or in Windows 7 http://support.microsoft.com/kb/2584874/
Print queue does not work if the queue is not one of the first 100 queues installed in a Windows Server 2008 or Windows Server 2008 R2 Terminal Services session http://support.microsoft.com/kb/2532459
The Windows 7 startup process is slow when you create many restore points http://support.microsoft.com/kb/2555428
Add Printer Wizard lists published printers in AD DS slowly in Windows Vista, in Windows Server 2008, in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2571564
Handle leak when a WMI query is triggered by using the Win32_PowerSettingCapabilities class in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2639077
Windows Explorer crashes randomly in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2638018
Computer randomly stops responding after you use the VSS software provider in Windows Server 2008 R2 or in Windows 7 http://support.microsoft.com/kb/2627052
The Group Policy Client service crashes on a terminal server that is running Windows Server 2008 or Windows Server 2008 R2 when multiple users connect to the server at the same time http://support.microsoft.com/kb/2622802
Power options do not work correctly in Windows 7 or in Windows Server 2008 R2 when you use Group Policy to configure the power plan in a domain http://support.microsoft.com/kb/2514376
Windows Explorer may crash in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/?id=2515325
A Jump List that contains more than 999 items is not displayed in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/?id=2607576
You cannot open an image in a compressed (.zip) file that is protected by using a password in Windows 7 http://support.microsoft.com/?id=2635972
Changes to performance counters are not updated for at least 15 minutes when you use WMI to query performance counter values in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/?id=2613988
You encounter a long logon time after you enable the “Do not automatically make redirected folders available offline” Group Policy setting in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/?id=2525332
The Windows Event Log service may crash in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2499016
Error in Windows 7 or Windows Server 2008 R2 when unlocking a computer or switching users http://support.microsoft.com/kb/976586
SMB2 directory cache is not updated correctly if a file is deleted in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2646563/
Rdpshell.exe process leaks memory in Windows Server 2008 R2 when you move a published RemoteApp application’s window on the client side http://support.microsoft.com/kb/2636613/
Applications or services that start multiple Remote Desktop Services sessions crash in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2617687/
Loaded user profiles cannot be unloaded after you run WMI queries for the Win32_StartupCommand class in Windows Vista, Windows Server 2008, Windows 7, or Windows Server 2008 R2 http://support.microsoft.com/kb/2639505/
The computer stops responding when you use a WDDM driver in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2617202/
“Index was out of range” error message when a Group Policy report is generated in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2642947
A BITS client resets the TCP connection every time that it finishes downloading a range of the file in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2654875/
Stale user profile folders are not deleted completely in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2661663/
Item-level targeting object picker dialog box shows only the domain in which the Gpmc.msc is started in Windows Server 2008 R2, in Windows 7, in Windows Vista or in Windows Server 2008 http://support.microsoft.com/kb/2385838
“An unexpected network error occurred” error message when you try to browse a DFS folder in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2649905/
Selected subfolder is highlighted unexpectedly when you select the parent folder in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2653385
Variable %userdomain% roaming profile path is not resolved correctly in Windows 7, Windows Server 2008 R2, Windows Server 2008, and Windows Vista http://support.microsoft.com/kb/2664408
Description of an update rollup for the printing core components in Windows 7 and in Windows Server 2008 R2 http://support.microsoft.com/kb/2647753/
You cannot reestablish a Remote Desktop Services session to a Windows Server 2008 R2-based server http://support.microsoft.com/kb/2661332
Fixes an issue in which a folder is not available offline when you move the folder from an unpinned location to a subfolder in a redirect folder in Windows 7 or in Windows Server 2008 R2. http://support.microsoft.com/kb/2665362/
Improved interoperability between the BranchCache feature and the Offline Files feature in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2675611
A Remote Desktop Services session stops responding during the logoff process in Windows Server 2008 R2 http://support.microsoft.com/kb/2571388/
Handle leak occurs in the Audiodg.exe process in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2670667/
Data transfer speed is slow in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2675785
A logoff script is removed incorrectly when you use the GMPC to remove a logon script on a Windows Server 2008 R2-based domain controller http://support.microsoft.com/kb/2675275
Topmost windows are not always in the topmost position in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2587473/
“Please wait for Local Session Manager” message remains for several minutes when you disconnect from a computer that is running Windows Server 2008 R2 during the logon process http://support.microsoft.com/kb/2661001
Description of an update rollup for the printing core components in Windows 7 and in Windows Server 2008 R2 http://support.microsoft.com/kb/2647753
“0×00000044″ Stop error on a computer that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2552033
Windows are displayed incorrectly when you connect to a RemoteApp program from a computer that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2682814/
Issues when you try to display a large TIFF file that contains multiple pages by using Windows Photo Viewer in Windows Vista, in Windows 7, in Windows Server 2008 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2635500/
Robocopy.exe utility incorrectly skips some files during the file copy or backup process in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2680906/
Client computer uses site-less SRV records after you restart the computer in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2666938/
Significantly slower directory tree replication performance when you use the Robocopy command in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2646535/
Poor performance occurs when you shadow a Remote Desktop session in Windows Server 2008 R2 or in Windows 7 http://support.microsoft.com/kb/2685909/
Description of Update Rollup 2 for Active Directory Federation Services (AD FS) 2.0 http://support.microsoft.com/kb/2681584/
Slow performance when you browse the My Documents folder in the document library in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2690528
File corruption occurs when you perform file operations on a file server that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2559767/
Settings that are driven by a Netlogon GPO do not work as expected in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2698279/
The Spoolsv.exe process stops responding when you connect to more than 200 network printers from a computer that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2697865/
“0x80041001” error when the Win32_Environment WMI class is queried by multiple requestors in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2692929/
On-demand antivirus scans do not work as expected in Windows Vista, in Windows 7, in Windows Server 2008, or in Windows Server 2008 R2 http://support.microsoft.com/kb/2698155/
“0x80041001” error when the Win32_Environment WMI class is queried by multiple requestors in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2692929
Long logon time when you establish an RD session to a Windows Server 2008 R2-based RD Session Host server if Printer Redirection is enabled http://support.microsoft.com/kb/2655998
Delay occurs when you log on to a domain from a computer that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2709630/
The event log files become corrupted in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2701799/
You cannot access offline files that were configured in a DFS namespace on a Windows 7-based client computer http://support.microsoft.com/kb/2705233/
Home directory settings that you tried to define by using Group Policy are not applied on a Windows 7 SP1-based or Windows Server 2008 R2 SP1-based VDI client http://support.microsoft.com/kb/2673347/
Splwow64 process crashes when you try to print an Adobe document in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2701894/
A Remote Desktop Services session stops responding during the logoff process in Windows Server 2008 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2571388/
Remote Desktop Services does not prevent a console session from being disconnected in Windows Server 2008 R2 http://support.microsoft.com/kb/979470
“0x0000007F” Stop error when you try to wake the computer from Sleep (S3) mode if you use offline files in Windows Vista, in Windows Server 2008, in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2531771/
“0x0000003B” Stop error when you use a Citrix XenApp application in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2705742
Driver installation fails even when a compatible driver is found in the local driver store in Windows 7 and in Windows Server 2008 R2 http://support.microsoft.com/kb/2715992/
Home folder is not mapped to a client computer when multiple users are logged on to a computer that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2715922/
You are prompted to enter credentials when you try to access a SharePoint server on a Windows 7 SP1-based or Windows Server 2008 R2 SP1-based computer http://support.microsoft.com/kb/2718654
A network printer is displayed as offline incorrectly on a computer that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2713128
Number of user objects and GDI objects increases when an application displays new animated controls in an Aero theme in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2719248/
You experience a long startup time or a long logon time when domain controllers are unavailable on a Windows 7-based or Windows Server 2008 R2-based domain member computer http://support.microsoft.com/kb/2673042/
High CPU usage on a file server that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2732618/
TCP/IP protocol stops responding on a computer that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2733994/
Handle leak occurs in the MPEG-2 Audio Decoder when you play videos multiple times in Windows Media Player in Windows 7 http://support.microsoft.com/kb/2704377/
You experience a long logon time when you try to log on to a Windows 7-based or a Windows Server 2008 R2-based client computer that uses roaming profiles http://support.microsoft.com/kb/2728738/
Changes in a CSC folder are not synchronized with the server on a computer that is running Windows 7 SP1 or Windows Server 2008 R2 SP1 http://support.microsoft.com/kb/2733363/
Applications that execute PowerShell scripts crash randomly in Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2740522
Non-topmost window appears above a topmost window when you click the Show Desktop button on a computer that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2743148
Folder Redirection feature does not synchronize a file in a redirected folder on a computer that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2714014/
Computer crashes when you connect to a Citrix XenDesktop virtual machine in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2735697/
Application crashes when it uses the BitmapImage class to optimize images in Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2743155/
Incorrect start time of Group Policy scheduled tasks on a client computer that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2738974
Remote Desktop Configuration service crashes together with event ID 1000 in Windows Server 2008 R2 http://support.microsoft.com/kb/2749262/
High CPU utilization by the Svchost.exe process and the Lsass.exe process in the Remote Desktop session after you remotely connect to a computer that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2750090/
You cannot enable Server Manager remote management after you install Windows Management Framework 3.0 update on a computer that is running Windows 7 or Windows Server 2008 R2 http://support.microsoft.com/kb/2749615
Stop error when you use a Citrix XenApp application in Windows 7 or in Windows Server 2008 R2 http://support.microsoft.com/kb/2748302/
Logon or logoff process is slow on a computer that is running Windows 7 SP1 or Windows Server 2008 R2 SP1 in a WAN environment http://support.microsoft.com/kb/2751389/

Tivoli Storage Manager and SQL backup

The script that was used as a template for initiating the SQL backup from the TDP agent is simply a bat-file. It isn’t very complicated and quite basic. Since deploying this backup within a datacenter and dealing with a few different SQL-servers installed in quite a few different ways – it seemed that this script had as many variations as we had SQL-servers installed. The main flaws were around the fact that multiple SQL instances weren’t detected and that the transaction-log weren’t truncated when the backup had been run for databases that were set to recovery mode FULL. Inorder to make this more manageable the following improvements were made;

  • Detect all SQL instances via the local the registry – based on Jay’s blog
  • Exclude Windows Internal Databases
  • Run through all databases in each instance. Verify if there are any offline instances and databases
  • Backup all databases or each database that are online.
  • Run a backup of transaction log and truncate it – some things based on SpaghettiDBA
  • Track all errors and exit the command with the error if one occurs to allow TSM to report a failed backup

It does not;

  • Detect if a SQL instance is offline
  • Detect if SQL is not installed and then fail

Why a bat-file?
All servers we are supporting doesn’t have Powershell. A reality…

@ECHO OFF

rem ==================================================================

rem sqlfull.smp sample command file

rem

rem Sample command file containing commands to do a scheduled full

rem backup of all SQL databases to an IBM Tivoli Storage Manager

rem server.

rem

rem This file is meant to be executed by the IBM Tivoli Storage

rem Manager central scheduler in response to a defined schedule on

rem the IBM Tivoli Storage Manager server.

rem

rem ==================================================================

rem ==================================================================

rem Replace "C:" with the drive where Data Protection for SQL

rem is installed. Update the directory to match the installation

rem directory that you chose when you installed the product.

rem ==================================================================

set TSMERROR=0

set sql_dir=C:\Progra~1\Tivoli\TSM\TDPSql

C:

cd %sql_dir%

rem ==================================================================

rem The two lines below put a date/time stamp in a log file for you.

rem Note: You can change "sqlsched.log" to whatever you prefer in

rem lines below.

rem ==================================================================

date < NUL >> %sql_dir%\sqlsched.log

time < NUL >> %sql_dir%\sqlsched.log

rem ==================================================================

rem Now call the command-line interface to do the backup:

rem

rem Replace "srvrname" with the name of the options file name you

rem plan to use.

rem

rem If SQL authentication is being used and the SQL login settings have

rem not been stored via the GUI, you must also specify the /sqluser and

rem /sqlpassword options on the command below.

rem

rem In this example, we use the '*' to back up all of the databases

rem on the SQL server. Note that database 'tempdb' will not

rem be backed up.

rem

rem Note: You can change "sqlsched.log" and "sqlfull.log" to

rem whatever you prefer.

rem ==================================================================

rem %sql_dir%\tdpsqlc backup * full /tsmoptfile=%sql_dir%\dsm.opt /logfile=%sql_dir%\sqlfull.log >> %sql_dir%\sqlsched.log

rem ===================================================================

rem Query all Microsoft SQL Server instances installed

rem ==================================================================

ECHO Creating tdpsqlservers.txt > command.log

reg query "HKLM\Software\Microsoft\Microsoft SQL Server\Instance Names\SQL">> tdpsqlservers.txt

reg query "HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Microsoft SQL Server\Instance Names\SQL" >> tdpsqlservers.txt

ECHO Generated tdpsqlservers.txt >> command.log

FOR /F "tokens=1 delims= " %%B IN (tdpsqlservers.txt) DO IF NOT "%%B"=="HKEY_LOCAL_MACHINE\Software\Microsoft\Microsoft" IF NOT "%%B"=="HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Microsoft" IF NOT "%%B"=="MICROSOFT##SSEE" CALL:servers %%B

del tdpsqlservers.txt

ECHO Deleted tdpsqlservers.txt >> command.log

del tdpsql_input.txt

ECHO Deleted tdpsql_input.txt >> command.log

ECHO Exit code %TSMERROR% >> command.log

exit /b %TSMERROR%

rem ================================================================

rem Verify all database instances

rem Check if there are any offline databases

rem ================================================================

:servers

IF NOT "%1"=="MSSQLSERVER" SET INSTANCE=%COMPUTERNAME%\%1

IF NOT "%1"=="MSSQLSERVER" SC QUERY "MSSQL$%1" | find /i "RUNNING"

IF ERRORLEVEL 1 ECHO %INSTANCE% offline >> command.log | GOTO :EOF

IF "%1"=="MSSQLSERVER" SET INSTANCE=%COMPUTERNAME%

IF "%1"=="MSSQLSERVER" SC QUERY "MSSQLSERVER" | find /i "RUNNING"

IF ERRORLEVEL 1 ECHO %INSTANCE% offline >> command.log

IF ERRORLEVEL 1 GOTO :EOF

ECHO Verify Server %INSTANCE% >> command.log

SQLCMD -S %INSTANCE% -E -Q "SET NOCOUNT ON; SELECT name FROM sys.databases WHERE state_desc IN ('OFFLINE')" -h -1 -o tdpsql_offline.txt

ECHO Generated tdpsql_offline.txt >> command.log

SET FILE=tdpsql_offline.txt

FOR %%R IN (%FILE%) DO (

IF %%~zR LSS 87 (GOTO :backup

) ELSE (GOTO :backupoffline)

)

GOTO :EOF

rem ================================================================

rem Run a backup against each instance without offline dbs

rem For each instance - check what databases have FULL recovery

rem ================================================================

:backup

ECHO Backup all databases >> command.log

CALL %sql_dir%\tdpsqlc backup * full /SQLSERVER=%INSTANCE% /tsmoptfile=%sql_dir%\dsm.opt /logfile=%sql_dir%\sqlfull.log >> %sql_dir%\sqlsched.log

IF NOT "%ERRORLEVEL%"=="0" SET TSMERROR=%ERRORLEVEL%

SQLCMD -S %INSTANCE% -E -Q "SET NOCOUNT ON; SELECT name FROM sys.databases WHERE recovery_model_desc IN ('FULL') AND state_desc IN ('ONLINE')" -W -h -1 -o tdpsql_input.txt

ECHO Generated tdpsql_input.txt >> command.log

FOR /F "delims=" %%A IN (tdpsql_input.txt) DO CALL:translog "%%A"

del tdpsql_offline.txt

ECHO Deleted tdpsql_offline.txt >> command.log

GOTO :EOF

rem ================================================================

rem Run a backup against each instance with offline dbs

rem For each instance - check what databases have FULL recovery

rem ================================================================

:backupoffline

echo Backup - offline DBS located >> command.log

SQLCMD -S %INSTANCE% -E -Q "SET NOCOUNT ON; SELECT name FROM sys.databases WHERE state_desc IN ('ONLINE')" -h -1 -o tdpsql_online.txt

ECHO Generated tdpsql_online.txt >> command.log

FOR /F %%D IN (tdpsql_online.txt) DO CALL:dbbackup %%D

del tdpsql_offline.txt

ECHO Deleted tdpsql_offline.txt >> command.log

del tdpsql_online.txt

ECHO Deleted tdpsql_online.txt >> command.log

SQLCMD -S %INSTANCE% -E -Q "SET NOCOUNT ON; SELECT name FROM sys.databases WHERE recovery_model_desc IN ('FULL') AND state_desc IN ('ONLINE')" -h -1 -o tdpsql_input.txt

FOR /F %%A IN (tdpsql_input.txt) DO CALL:translog %%A

GOTO :EOF

rem ================================================================

rem Run a backup against a specific database

rem ===============================================================

:dbbackup

ECHO Backup against specific database %1 >> command.log

CALL %sql_dir%\tdpsqlc backup %1 full /SQLSERVER=%INSTANCE% /tsmoptfile=%sql_dir%\dsm.opt /logfile=%sql_dir%\sqlfull.log >> %sql_dir%\sqlsched.log

IF NOT "%ERRORLEVEL%"=="0" SET TSMERROR=%ERRORLEVEL%

GOTO :EOF

rem ================================================================

rem Run a log-file backup and truncate the transaction log

rem ===============================================================

:translog

SET DB=%1

ECHO Transaction Log for %DB% >> command.log

CALL %sql_dir%\tdpsqlc backup %1 log /truncate=yes /SQLSERVER=%INSTANCE% /tsmoptfile=%sql_dir%\dsm.opt /logfile=%sql_dir%\sqlfull.log >> %sql_dir%\sqlsched.log

IF NOT "%ERRORLEVEL%"=="0" SET TSMERROR=%ERRORLEVEL%

GOTO :EOF

:EOF

TSM 6.2 Query–Time Calculation

Apparently they redid a couple of things with IBM TSM 6.2 – which allowed a good half of a day to understand the DB2 query language and howto manipulate it.

Apart from the node-name (which should be fairly basic) – the following is the end-result for my finalized query which shows the elapsed time of a job (backups in this specific case) – and providing it in a D HH:MM: SS format. Its so much easier to read.

image

SELECT entity AS "Node name", CAST(sum(bytes/1024/1024) AS decimal(8,2)) AS "MB xfer",&nbsp; SUBSTR (CAST(min (start_time) AS char(29)),12,8) AS "start time", SUBSTR (CAST(max (end_time) AS char(29)),12,8) AS "end time", DAY(end_time-start_time) || ' ' || HOUR(end_time-start_time) || ':' || MINUTE(end_time-start_time) || ':' || substr(DIGITS(SECOND(end_time-start_time))8,10) AS "ELAPSED TIME" FROM summary WHERE activity='BACKUP' AND start_time&gt;=current_timestamp - 24 hours GROUP BY end_time, start_time,entity