Introducing a new line of Network Storage Servers for SMB

Only yesterday, a third product that I worked on over the past little while called Windows Storage Server 2008 R2 Essentials was announced, on hardware provided by Western Digital.

Windows Storage Server 2008 R2 Essentials is a mid-way point between Windows Home Server, and Windows Small Business Server 2011 Essentials.  And by in between, I mean you have a business class Home Server.  So you have media streaming, but no domain controller, and a limit of 25 users instead of 10 that Home Server has. 

One other unique feature it has is the ability to join a domain, that Windows Home Server does not have.  You can join any size domain, but limit (via AD security group) the number of users down to 25 who can use the NAS box.  You can only use it for up to 25 users.

This is a great solution if you want to add client backup to 25 clients on any SBS 2008 or SBS 2011 Standard networks, or just a standard server network.  Furthermore, it does have RWA with it, which means you can add an RWA solution to your standard server network if you want.

The WD Sentinel DX4000 looks pretty awesome from a hardware perspective as well.  You can jump on over to the Western Digital WD Sentinel DX4000 website to learn more.

Read More

Home Server and SBS Add-in to Automate Client Backup of your MAC

One of the most popular posts on my blog is how to enable Apple’s Time Machine backup to backup to your Windows Home Server 2011 or Windows Small Business Server 2011 Essentials.  As it turns out, a company named Orbital Technologies has decided to build an add-in that enables this functionality without the need for you to walk through the steps of creating those confusing sparse files.

That add-in has been reviewed over on the famous UsingWindowsHomeServer blog, specifically in a blog post here, covering the preview of the Orbital Backup Configuration for Mac.  They additionally covered the add-in again when it was available.

Simply install the add-in, open up the dashboard on the MAC client and go to add-ins, Orbital utilities and follow along.  All you  need to know is your username and password to the server.  easy right? also free!

Keep in mind that you can still do the manual steps provided in my post if you prefer not to install anything as all this add-in does is the configuration pieces for you.

You can download the add-in directly from the Using Windows Home Server Forums, or We Got Served forums. The add-in should work fine on Windows Home Server 2011, Windows Small Business Server 2011 Essentials, and also Windows Storage Server 2008 R2 Essentials.  If you’re using any other Windows product, the manual steps are for you.

Read More

Using your Home Server for more than Storage, Backup and Remote Access

Back in 2006, I was without power for 4 days in November.  It was cold, but I had friends, and an offline Small Business Server 2003 R2.  Of course I ran everything out of my house, why wouldn’t I?  Being offline my server started sending NDRs and I didn’t have access to anything, as it was all offline.  While I had been toying with adopting the cloud for the amount of spam I was getting, this pushed me over the edge.  It was at that time I decided to adopt the cloud.  My email and most things that I own are all hosted in various cloud services so if the power goes out at my house, my stuff keeps running. 

Trust me, I did a cost benefit analysis and in order to keep things running for me at home, I’d have to pay for hosting services anyways, and given I was running a “business class” server, I was forced into “business class” prices.  I am not a business, I am a consumer.

However, there are certain things that I don’t trust the cloud for, and hence I want my own cloud storage that I run and have total control over.  Enter Windows Home Server stage left. Home Server has been my personal cloud storage location since 2007, I now run WHS 2011.

Enter Cloud computing.

My Windows Home Server is perfect device to do computing for me, and it can just chug away on it all the time.  The one draw back is that there is only one account “Administrator” that has total access to the server.  this obviously isn’t good computing practice, so let me show you how to create a working account that you can have do things for you.

First step, let’s create a new user account on the server.  We’ll do this using the normal Add User Wizard in the dashboard.  I’ll call the user Working User.  I gave the user access to the shared folders it needed access to (where I can interact with Working User’s storage), and nothing more.  I didn’t even give this user remote access.

Now, by default all users created don’t have access to log into the server, we need to grant this permission.  This will make the user a standard user on the server, so it will have access to do things the same as a standard user would have access on a client PC (running applications, a /user folder with full control, and access to those folders you gave it.  it won’t be able to mess with the OS or install things.  PERFECT!

1. On the server console, click Start, then Run, and type in gpedit.msc to edit the local policy on the server
2. Expand down Local Computer Policy, Computer Configuration, Windows Settings, Local Policies, and click on User Rights Assignment
3. Scroll down the list on the right until you find Allow log on locally and double click to open the property page
4. Click the Add User or Group… button and type in the username that you created in the first step inside the Add User Wizard.
5. Click OK and then OK again and close the local group policy editor.

Now this Working user has access to log in to the server locally.  Of course it can’t do any administration of the server as it’s not a member of the administrators group.

Next I want to use something as this user, say the command prompt.  I simply use a command line like the following: C:\Windows\System32\runas.exe /USER:SERVER\Working /savecred "C:\Windows\System32\cmd.exe"

The /savecred will save the credentials you typed in as Working User (alias “working” in the above) and will remember it for future runs.  I actually just created a shortcut with this command in.  Now that you have a command prompt open, anything you run from this command prompt will run as the Working User.  So you can load up any application and have it work in the context of this non-administrative user.  So if you do hit something that wants to modify your system, you’ll get a UAC pop-up or an access denied (I haven’t hit anything like that yet in my set up).

Just be careful what you do, because there is no free Anti-virus for your server, and I highly recommend getting an anti-virus for your server if you plan on connecting this user up to the Internet to do anything directly on the server.  I have Antivirus on my system.

Read More

Seattle Interactive Conference: Learn the Cloud

Technical Content, Technical Experts

The Cloud Experience track at SIC is for experienced developers who want to learn how to leverage the cloud for mobile, social and web app scenarios.  No matter what platform or technology you choose to develop for, these sessions will provide you with a deeper understanding of cloud architecture, back end services and business models so you can scale for user demand and grow your business.

Register today using the promo code “azure 200” and attend SIC for only $150 (a $200 savings).

• Attend a full day of technical sessions and learn more about leveraging the cloud for mobile, web and social scenarios. View the list of confirmed Cloud Experience speakers.  Sessions include:
  • Great Mobile Apps Make Money – Intro to Cloud Experience Track
  • Mobile + Cloud, Building Mobile Applications with Windows Azure
  • Zero to Hero: Windows Phone, Android, iOS Development in the Cloud
  • Building Web Applications with Windows Azure
  • Building Social Games on Windows Azure
• Cloud Experience speakers and technical experts will be available to provide technical assistance and resources for developing, deploying and managing mobile, social and web apps in the cloud.

Seattle Interactive Conference (SIC): November 2-3, 2011, The Conference Center at WSCC

Read More

How to remove G+ and add proper sharing buttons to your Blogger Blog like Facebook, and Twitter!

If you’re not one of the few that uses Google+, then Google’s Sharing defaults inside of Google Blogger aren’t necessarily for you.  The scream Google sharing only.  The e-mail button is an icon of GMail, Google+ is the biggest sharing button.  Sure you can get to the others, but they are little buttons.  Don’t you want to be mainstream?

Here’s how I changed it with a little help from A Consuming Experience.

Getting your sharing code snippets

First, before I even touched my blog, I went to the appropriate sites to obtain my sharing buttons.  For me, that was the Facebook Like Button, Twitter’s Tweet Button, and LinkedIn’s Share Button (although I don’t use this one on my photo blog).  From these pages, you should use the UI to decide how you want the button to look for your site.  Make sure you specify a URL to Like, Tweet, or Share, this is a temporary URL, I used http://foo.bar.com. This is a placeholder for later.

I saved each of these code snippets into Notepad for copy/paste later.

Adding the sharing code to the Blogger blog

Inside your Blogger Dashboard, select the blog you wish to add your sharing buttons to, then click the “template” modification and choose to Edit the HTML:

Choose to Proceed when you edit the HTML, and then make sure you select Expand Widget Templates that’s at the top:

Scroll down until you find the <b:include id=’shareButtons’ var=’post’> tag.  I deleted everything between that tag, and </b:includable> and replaced it with my own sharing code.

This is where things get fun. 

You need to replace that http://foo.bar.com with the URL of the blog post.  Google puts that information into a variable and replaces it at the time the page is rendered.  So we simply need to do this as well.  Let’s take a look at the twitter code, because it’s the simplest. 

Here is what Twitter gave me:

<a class='twitter-share-button' data-count='horizontal' data-via='seandaniel' data-url=”http://foo.bar.com” href='https://twitter.com/share'>Tweet</a><script src='//platform.twitter.com/widgets.js' type='text/javascript'/>

note that I have bolded the temporary URL we need to replace with the URL of the blog post.  With the help of the above website, this is what I changed it to:

<a class='twitter-share-button' data-count='horizontal' data-via='seandaniel' expr:data-url='data:post.url' href='https://twitter.com/share'>Tweet</a><script src='//platform.twitter.com/widgets.js' type='text/javascript'/>

Note I have added the expr: phrase which tells Google there is something to replace after the “=” sign.  I then put in the URL variable data:post.url, and also changed the quotes from double quotes to single quotes.  Google interprets that code and inserts the actual URL of the individual blog post.  Thus if they tweet on the main page with all the posts, they still only tweet the one that they are intending to, instead of the entire feed of posts.

So yeah, a little harder than their previous format where you had just put in <$BlogPostPermanentURL$>, but not too difficult all the same. 

Now on my blog you can see the following at the bottom of each post, without having to put that Google + link there.

Cleans things up and standardizes them all in one.  Enjoy.

Read More

HP/Microsoft do an Extreme Make-Over of a Not For Profit Organization

Earlier this year, I had the pleasure to be able to participate in a very heart warming story.  Families For Effective Autism Treatment of Washington (or FEAT WA), was the first winner of the HP & Microsoft Extreme technical make-over.  FEAT really does a lot of work for children with autism, and were struggling with their hobbled together IT infrastructure. 

Microsoft and HP came together to set up the IT Infrastructure backbone running Microsoft Windows Small Business Server 2011 Essentials on a maxed out HP ProLiant MicroServer. And for the children and office workers, Microsoft Windows MultiPoint Server 2011 Premium on an HP ML 110 G7; to be connected to with the HP t5749e thing clients and HP EliteBook 8460p Notebooks. HP also improved their networking infrastructure with the HP ProCurve 1810G-24 switch.

It was so awesome to meet and help out Brenne and Amanda at FEAT of WA to do their job and help children with autism.  Check out the video:

Read More

Outlook 2010 Speed Tip: Using the Quick Step Box

Outlook 2010 has been out for a while, but one of the more recent features I started to depend on to make email faster for me is the Quick Steps box on the dialog:

The Quick Steps bar allows you to make quick and customized operations on pieces of email that you have in your inbox.  There are a bunch of default ones that I use all the time, and I’ve also created a few new ones myself. 

Let’s first talk about how to use it, it’s pretty simple.  If you have a message you want to take action on, simply make sure it’s collected and select the one you want.  If you want to reply and delete it, simply click that button.  A reply message is opened to the individual, and the original message is deleted.  It’s that simple. 

Let’s say we often move mail to a specific folder in our inbox, and it involves selecting the message, dragging it to a folder that may or may not be collapsed in the tree view, and then dropping it there.  Instead, we can create a new Quick Step for this.  To do that simply:

1. Select the Create New Quick Step
2. Give the Quick Step a name like “Move to Follow Up”
3. Select Move to a folder, under the Actions drop down. 
4. Then select the folder in the drop box that appears that you want to move the message to. 

And that’s it.  You can additionally assign a short cut key, give it tool tip text if you have complicated rules, or even add additional actions.

It’s made my life easier, with the amount of messages I get each day, I highly suggest checking out the Quick Steps.  Allows you to cut through email pretty fast.

Read More

New SBS Marketer!

Well… not so new, as he’s been around as an external content vendor forever. Welcome David Fabritius to the Windows Server & Cloud marketing team here at Microsoft, with a focus on small and medium businesses. David is very familiar with the Windows Server family since he’s spent most of his time at Microsoft creating technical readiness material for the last few releases of SBS and other SMB-focused server products. David has a lot of experience as an ITPro deploying and managing server infrastructures.

David is from the Pacific Northwest and has been doing computer stuff since before college. He’s been a fan of SBS since he first bought a copy to run his own local small business. Since 2008, he’s been spending the majority of his time making sure you, the Microsoft Partner, are ready to sell SBS and have the training and resources you need to be successful.

Obviously with his new role, he’ll be helping to decide the direction of the product from within the marketing org!

Read More

Thank you BizTech Magazine – SeanDaniel.com is listed in their top 50 Must Read IT Blogs

I was rather surprised last night to be browsing my @Mentions on Twitter only to find out that @BizTechMagazine listed me as one of the “50 Must-Read IT Blogs”. I first saw it when I was mentioned in their tweet. Today I was able to visit BizTech Magazine’s blog post to see that I’m not even at the very bottom!

It’s a great honour to even get a mention in a top 50!

Read More

Obtaining a Domain Name in SBS 2011 Standard and Essentials

So my second video that I did with the HP/Microsoft Coffee Coaching is now live. This one is near and dear to my heart as it’s a program that I built almost from the ground up (admittedly I had a little help from my friends at the start). I dive into the nuances of obtaining a domain name for your Remote Web Access website in these two products. The “Essentials” side of the fence also pertains to Windows Home Server (except in the view I talk about .remotewebaccess.com, where in WHS its .homeserver.com, but it works the same way)

Additionally, if you are interested in some corny video footage and want to learn a bit more about me, you can view my rather embarrassing bio video. I swear it didn’t feel this corny when I was filming.

Read More

Learn about how Multi-Point 2011 Premium works with SBS 2011 Essentials on HP/Microsoft Coffee Coaching

I managed to finally get my schedule coincided with the HP/Microsoft Coffee Coaching filming crew. When I was with them I managed to create my first video which talks about how awesome MultiPoint 2011 Premium server is when you have Small Business Server 2011 Essentials already running in your network (details here). Check it out, it’s only 6 minutes of your time.

Read More

Using the new Office365 with SBS 2011 Essentials

Over on the Official SBS blog, they have a new post about how you can use Office365 with SBS 2011 for a better together story.

SBS 2011 was designed from the ground up to work with hosted versions of Exchange and SharePoint, such as Office365, or BPOS. But you don’t need to wait for any integration pieces to be in play, you can get started today. Check out these videos for more details:

What you can do Today

What you can do with the Office 365 integration module

Read More

The Basics of Local DNS for Small Business Server 2011 Essentials

[Post idea courtesy of Robert Pearman, MVP]

If you’ve used Windows Small Business Server in the past, you’ve probably figured out exactly how DNS works. With the SBS 2008 and SBS 2011 the Connect to the Internet Wizard would analyze your network and determine a static IP address to use, and then ensure you like it before making it the server’s IP address. Then as we all know, the DNS server runs on SBS and resolves local network addresses, like “domain.local” or “server” or the internal fully qualified domain (FQDN) “server.domain.local”

Since SBS 2008 and SBS 2011 are DHCP servers by default, that means they hand out IP addresses, and the server’s IP as the DNS server. DNS works flawlessly in such an environment. Internet based addresses (such as Microsoft.com) are first sent to the SBS box for resolution, and then forwarded on to the ISPs DNS servers for name resolution.

Ultimately SBS is a middle man in the peer to peer DNS infrastructure and gives the full power of DNS to the local network

So how is SBS 2011 Essentials Different?

SBS 2011 Essentials doesn’t assign itself a static IP address, and it doesn’t have a Connect to the Internet Wizard. Essentials will automatically connect to the Internet just like any client computer, using the DHCP assigned address. It does however use its local DNS server to resolve both local and Internet based names by overriding the DHCP assigned IP address to 127.0.0.1 (localhost). If you dig into the DNS settings, you’ll notice that the DNS Server picks up the routers IP as a forwarder. Routers by default will hand out their own IP as the DNS Server and proxy DNS out to the WAN configured (usually DHCP but sometimes services like OpenDNS) DNS servers. This means that if the server were to ask for an Internet based address, like technet.com, it would forward that request to the router, which would intern forward it to the ISP, which could hopefully resolve it for you.

Clients on the network also still need to use the SBS DNS Server in order for Active Directory to work, or to resolve the server and other services on the network (for example, client backup doesn’t work unless DNS is operating correctly). Clients *also* get their IP and DNS Server from the DHCP server, which in Essentials, by default, is the router. This means that the DNS server is the router, essentially skipping the SBS name resolution step. Once the client goes to http://server/connect, a service is installed called LAN Configuration Service. This service monitors client IP address changes, when the client gets a new IP (ie, it turns on, or it changes locations) it immediately sends out a UPnP query looking for the server (note, this only works on single subnet environments). If a server is found, the DHCP assigned DNS address is overwritten by the server’s IP address (obtained in the return call from UPnP). If no server is found, the DHCP DNS assigned address is kept.

This means that client computers get the SBS DNS address within the SBS network, but the DHCP assigned address at a place like StarBucks. Clients can always resolve the Internet, and inside of the SBS network, they can also resolve the SBS server and Active Directory domain.

Now, for those paying attention, you’ll have recalled that the SBS server’s address is also DHCP assigned, which means it can change if the router deems it necessary. There is a similar service on the SBS server that will broadcast when it’s IP address changes, the clients on the network pick this up and update DNS, the clients off the network will just re-do the process above to get the right IP address.

A side-effect/pro of this design over the SBS 2008 or 2011 Standard design is that if the server is down for patching (we all know how long those reboots take), or another reason, the client will revert back to the DHCP assigned address after a short period of time and can continue to resolve the Internet until the server comes back online.

Can I set things up the old way?

Of course you can. SBS 2011 Essentials is still a full blow copy of server, and all the power that you’re familiar with is there. You can just jump into the NIC settings on the server and give it a static IP address of your choice. No problems there.

Additionally, if you absolutely wanted to run DHCP on the SBS Essentials server, no problems there either, simply open up the Server Manager, install the roll and configure DHCP. Don’t forget to turn off DHCP on your router, and away you go. If you’re not familiar with DHCP settings though, I suggest you leave it the way it was.

Read More

How to Manually Configure SBS 2011 Essentials Internet Domain Name

Back in SBS 2003 timeframe, having an Internet domain name for remote access to your server started to become more and more essential. With the SBS 2008 product, we added the ability to work with domain partners directly inside of the product to obtain that domain name, and also configure it. This same methodology was moved to SBS 2011 Standard product, and with the birth of Essentials, only later this year, we added the ability to also get your SSL Certificate as part of this process. Moving away from the self-issued certificate, which while can be configured correctly to work, causes a lot of work pushing the root certificate around to all the remote PCs and devices that possible connect to the server.

I believe the best path to success for you is to have your domain with one of our domain partners, because the alerts are integrated, and the solution is simple to set up, and you don’t need any additional components like 3^rd party Dynamic DNS clients or static IP addresses from your Internet Service Provider (ISP). It’s a built in Dynamic DNS client, that’s been completely tested by both our 3^rd party vendors as well as the Microsoft test team.

However, if you must manually configure your domain name, In SBS 2011 Essentials, the path of manually configuring your domain name is more hidden, and I wanted to share with you how to do this. First off, your domain name cannot be with GoDaddy or eNom if you want to manually configure your domain name. We optimize for the automated cases as mentioned above. So let’s get started in manually configuring our domain name.

1. Open the Server Dashboard and click on the Server Settings link
2. On the Remote Web Access tab, select Turn On

1. Choose to configure the router, or skip the router configuration. If your router does not support the UPnP based configuration protocol, or you have and want UPnP disabled; it’s recommended that you skip the router configuration. If this is the case, you should
1. Create a DHCP reservation for your server in your router’s DHCP server (or other DHCP server on the network) such that your server gets the same IP address every time.
2. Open at a minimum port 443 from the Internet to the router using the TCP protocol (UDP is not needed). If you do not wish to educate users to type in https://, then you should also open port 80 to the same internal IP address. The server will automatically redirect http:// requests to the secured by SSL https:// URLs
2. When you have finished the router configuration portion of remote access, you should choose to Set up your domain name.
3. Click Next on the Getting started page of the wizard
4. When manually configuring a domain name, the server assumes you already own it. Thus in the Do you own a domain name page of the wizard, select I want to use a domain I already own and type in the name of the domain, eg. Contoso.com.
1. Note: if your domain name is with eNom Central or GoDaddy, you’ll be asked to use that service instead of manually configuring your domain name.
5. On the following page, select Set up my domain name manually, and click Next.
6. On the following page, you will be shown a help topic on how to set up your domain name manually by clicking the I want to set up my domain name manually link.
7. Outside of the wizard, to setup your domain name, you’ll have to log into your domain name provider and make the following changes:
1. Create an A record called “remote” (if you choose to use remote.contoso.com) that points to the static IP address of your server
2. Ensure that your IP address from your ISV is static (doesn’t change). If this is not an option, you can look into a 3^rd party dynamic DNS solution and ensure that that’s updated. If you go with the Dynamic DNS option, then (a) above should probably be a CNAME to the URL provided by the Dynamic DNS company.
8. Once you have completed the above step, confirm that your domain is set up, check the box and click Next.
9. Next you will need to have a certificate for your domain name. This certificate will secure web traffic to your domain. It’s VERY important that the certificate name (remote.contoso.com) matches the A record you created above. Without a match, your users will get a certificate warning (you can change the “remote” using the Advanced button:

1. This generates a certificate request. You’ll have to find a certificate provider (Both GoDaddy and eNom Central offer low cost certificates for use) and follow their instructions on how to get a certificate. They will need the certificate request string shown in the wizard below. To copy this into a webpage, simply press the Copy button and paste it into the certificate providers webpage when asked.

1. Most inexpensive certificates are issued immediately, but if you live in a country that doesn’t do this, or you purchased a higher end certificate, you might have to wait. I do want to take a second and tell you that yes, you do only need the cheapest of certificates. The SBS team has gone to a great deal of effort to ensure that you only need the cheapest security aspect, with no multi-name or wildcard certificates needed. If you choose to upgrade, it should be for another reason than those mentioned. So if your provider needs more time, just tell the wizard and follow the instructions

1. Once you have the certificate string, or file, you’ll have to import that into the server using the next page of the wizard:

1. Now you’re finished, and your domain name is set up.

You know you’re correct when on a computer outside of your network you type in NSLOOKUP remote.contoso.com (replacing your domain name here) and it returns the static IP address of the external IP of the router (the one your ISP gives you), and that when you browse to http://remote.contoso.com/remote, that you don’t get a certificate warning when the logon page comes up. This ensures you have both the router port 443 forwarded correctly, and that the certificate is installed correctly. Additionally, all the errors in your dashboard should disappear, if they were there in the first place (this can take up to 30 minutes for these alerts to clear)

That’s all there is to it!

Read More