%3CLINGO-SUB%20id%3D%22lingo-sub-257712%22%20slang%3D%22en-US%22%3EMailbag%3A%20New%20Year%20New%20Questions%20(Issue%20%235)%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-257712%22%20slang%3D%22en-US%22%3E%3CP%3E%3CSTRONG%3E%20First%20published%20on%20TechNet%20on%20Jan%2008%2C%202015%20%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EHey%20y'all%2C%20Mark%20and%20Tom%20and%20some%20new%20members%20to%20AskPFEPlat%20to%20tackle%20your%20questions%20in%20the%20new%20year.%20Hope%20everyone%20was%20able%20to%20take%20some%20time%20off%20and%20re-charge.%20How%20are%20those%20new%20year's%20resolutions%20going%3F%20Be%20healthier%3F%20Read%20more%3F%20Learn%20a%20new%20technology%3F%20Get%20certified%3F%20More%20on%20that%20later.%20By%20this%20point%20in%20the%20year%20most%20people%20have%20already%20dropped%20them.%20Stick%20with%20it!%20Alright%20let's%20get%20into%20the%20Q%26amp%3BA.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CA%3EUpgrading%20AD%20%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%3E%20Forest%20and%20domain%20functional%20level%20support%20%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%3E%20Defragging%20SSD%20%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%3E%20Portqry%20without%20portqry%20%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%3CA%3E%20Stuff%20from%20the%20Interwebs%20%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3E%20Question%20%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3EWindows%20Server%202003%20is%20end%20of%20life%20July%2014%2C%202015%2C%20I%20guess%20that%20means%20we%20should%20start%20upgrading%20Active%20Directory.%20Any%20useful%20links%20I%20need%20to%20know%20about%3F%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3E%20Answer%20%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3ENow%20is%20probably%20a%20really%20good%20time%20to%20start%20on%20this%20if%20you%20haven't%20started%20already.%20Seriously.%20I%20know%20some%20of%20you%20are%20probably%20thinking%20%22Really%3F%20Still%20on%202003%3F%22%20I%20assure%20you%20it%20is%20true.%20So%20if%20this%20is%20you%20time%20to%20get%20started.%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2FCore-Infrastructure-and-Security%2FBest-Practices-for-Implementing-Schema-Updates-or-How-I-Learned%2Fba-p%2F255611%22%20target%3D%22_blank%22%20rel%3D%22noopener%22%3Ehttps%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2FCore-Infrastructure-and-Security%2FBest-Practices-for-Implementing-Schema-Updates-or-How-I-Learned%2Fba-p%2F255611%3C%2FA%3E%3CA%3E%26nbsp%3B%3C%2FA%3E%3C%2FP%3E%0A%3CP%3EAnd%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2FCore-Infrastructure-and-Security%2FUpgrading-or-Migrating-Active-Directory-to-Windows-Server-2012%2Fba-p%2F256162%22%20target%3D%22_blank%22%20rel%3D%22noopener%22%3Ehttps%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2FCore-Infrastructure-and-Security%2FUpgrading-or-Migrating-Active-Directory-to-Windows-Server-2012%2Fba-p%2F256162%3C%2FA%3E%3CA%3E%26nbsp%3B%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3E%20Question%20%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3EWe%20will%20upgrade%20all%20of%20our%20Domain%20Controllers%20(DCs)%20to%20Windows%20Server%202012%20R2%20in%20the%20coming%20weeks%2Fmonths%2C%20but%20the%20forest%20and%20domain%20functional%20levels%20will%20remain%20at%20%E2%80%9CWindows%20Server%202003%E2%80%9D%20%E2%80%93%20are%20we%20supported%20after%2014.%20July%202015%3F%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3E%20Answer%20%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3EGary%20Green%20here%20to%20answer%20this.%20As%20you%20pointed%20out%2C%20the%20end%20of%20extended%20support%20is%20fast%20approaching%20for%20Windows%20Server%202003%3A%3C%2FP%3E%0A%3CUL%3E%0A%3CLI%3E%3CA%20title%3D%22https%3A%2F%2Fsupport.microsoft.com%2Fen-us%2Flifecycle%2Fsearch%3Fsort%3DPN%26amp%3Balpha%3DWindows%2520Server%25202003%2520R2%26amp%3BFilter%3DFilterNO%22%20href%3D%22https%3A%2F%2Fsupport.microsoft.com%2Fen-us%2Flifecycle%2Fsearch%3Fsort%3DPN%26amp%3Balpha%3DWindows%2520Server%25202003%2520R2%26amp%3BFilter%3DFilterNO%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noopener%20noreferrer%20noopener%20noreferrer%22%3E%20http%3A%2F%2Fsupport2.microsoft.com%2Flifecycle%2Fsearch%2Fdefault.aspx%3Fsort%3DPN%26amp%3Balpha%3DWindows%2BServer%2B2003%2BR2%26amp%3BFilter%3DFilterNO%3C%2FA%3E%3C%2FLI%3E%0A%3C%2FUL%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EHowever%2C%20the%20answer%20to%20your%20question%20is%20%E2%80%9CYES%E2%80%9D%20-%20you%20are%20supported%20as%20long%20as%20the%20operating%20system(s)%20you%20have%20deployed%20for%20your%20DCs%20are%20supported.%3C%2FP%3E%0A%3CP%3EForest%20Functional%20Level%20(ffl)%20and%20Domain%20Functional%20Level%20(dfl)%20control%20certain%20functionality%20within%20the%20Active%20Directory%20forest%20and%2For%20domain%20respectively%20and%20are%20not%20affected%20by%20OS%20lifecycle%20limits.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EActive%20Directory%20Functional%20Levels%20Technical%20Reference%3A%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fprevious-versions%2Fwindows%2Fit-pro%2Fwindows-server-2003%2Fcc757019(v%3Dws.10)%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noopener%20noreferrer%20noopener%20noreferrer%22%3Ehttps%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fprevious-versions%2Fwindows%2Fit-pro%2Fwindows-server-2003%2Fcc757019(v%3Dws.10)%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EA%20few%20things%20you%20should%20know%20about%20raising%20the%20DFL%20(and%2For)%20FFL%20to%20Windows%20Server%202008%20R2%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2FCore-Infrastructure-and-Security%2FA-few-things-you-should-know-about-raising-the-DFL-and-or-FFL-to%2Fba-p%2F255547%22%20target%3D%22_blank%22%20rel%3D%22noopener%22%3Ehttps%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2FCore-Infrastructure-and-Security%2FA-few-things-you-should-know-about-raising-the-DFL-and-or-FFL-to%2Fba-p%2F255547%3C%2FA%3E%3CA%3E%26nbsp%3B%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3E%20Question%20%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3EShould%20I%20be%20defragging%20my%20SSD%3F%20I%20see%20lots%20of%20info%20all%20over%20the%20place%20what's%20the%20story%3F%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3E%20Answer%20%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3EThis%20topic%20is%20being%20put%20to%20bed%20by%20%3CA%20href%3D%22https%3A%2F%2Fwww.hanselman.com%2Fblog%2FTheRealAndCompleteStoryDoesWindowsDefragmentYourSSD.aspx%22%20target%3D%22_blank%22%20rel%3D%22noopener%20nofollow%20noopener%20noreferrer%20noopener%20noreferrer%22%3E%20Scott%20Hanselman's%20excellent%20post%3C%2FA%3E%20that%20should%20not%20be%20missed%20by%20anyone.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3E%20Question%20%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3EI%E2%80%99m%20on%20a%202012%20R2%20server%20and%20don%E2%80%99t%20have%20portqry%20or%20telnet%20available.%26nbsp%3B%20Is%20there%20another%20method%20to%20test%20if%20a%20port%20is%20open%20on%20a%20remote%20machine%3F%3C%2FP%3E%0A%3CP%3E%3CSTRONG%3E%20Answer%20%3C%2FSTRONG%3E%3C%2FP%3E%0A%3CP%3ELongtime%20reader%20now%20Microsoft%20FTE%20Mike%20Kline%20has%20this%20one.%3C%2FP%3E%0A%3CP%3EOn%20Windows%202012%20R2%20and%20Windows%208.1%20running%20version%20PowerShell%204.0%20you%20can%20use%20the%20%3CA%20href%3D%22https%3A%2F%2Fdocs.microsoft.com%2Fen-us%2Fpowershell%2Fmodule%2Fnettcpip%2Ftest-netconnection%3Fview%3Dwin10-ps%22%20target%3D%22_blank%22%20rel%3D%22noopener%20noopener%20noreferrer%20noopener%20noreferrer%22%3E%20Test-NetConnection%3C%2FA%3E%20cmdlet%3C%2FP%3E%0A%3CP%3EIn%20the%20examples%20below%20we%20are%20testing%20for%20port%20389%20(LDAP)%20between%20two%20domain%20controllers%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CA%3E%20%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20style%3D%22width%3A%20787px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F52110i9390E51C6876B636%2Fimage-size%2Flarge%3Fv%3D1.0%26amp%3Bpx%3D999%22%20%2F%3E%3C%2FSPAN%3E%20%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3ENotice%20that%20we%20failed%20to%20connect%20to%20port%20389.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CA%3E%20%3CSPAN%20class%3D%22lia-inline-image-display-wrapper%20lia-image-align-inline%22%20style%3D%22width%3A%20827px%3B%22%3E%3CIMG%20src%3D%22https%3A%2F%2Fgxcuf89792.i.lithium.com%2Ft5%2Fimage%2Fserverpage%2Fimage-id%2F52111i1EE2C42CE1295C0B%2Fimage-size%2Flarge%3Fv%3D1.0%26amp%3Bpx%3D999%22%20%2F%3E%3C%2FSPAN%3E%20%3C%2FA%3E%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EWhen%20the%20port%20is%20unblocked%20TcpTestSucceeded%20is%20True%20and%20the%20warning%20message%20disappears.%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EUntil%20next%20time!%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EMark%20'sweet%20sassy%20molassy'%20Morowczynski%2C%20Tom%20'Booyah!'%20Moser%2C%20Gary%20'First%20Timer'%20Green%2C%20Mike%20'Finally%20a%20Blue%20Badge'%20Kline%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-TEASER%20id%3D%22lingo-teaser-257712%22%20slang%3D%22en-US%22%3E%3CP%3EFirst%20published%20on%20TechNet%20on%20Jan%2008%2C%202015%20Hey%20y'all%2C%20Mark%20and%20Tom%20and%20some%20new%20members%20to%20AskPFEPlat%20to%20tackle%20your%20questions%20in%20the%20new%20year.%3C%2FP%3E%3C%2FLINGO-TEASER%3E%3CLINGO-LABS%20id%3D%22lingo-labs-257712%22%20slang%3D%22en-US%22%3E%3CLINGO-LABEL%3EGaryGreen%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EMarkMorow%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3EMikeKline%3C%2FLINGO-LABEL%3E%3CLINGO-LABEL%3ETomMoser%3C%2FLINGO-LABEL%3E%3C%2FLINGO-LABS%3E

First published on TechNet on Jan 08, 2015

 

Hey y'all, Mark and Tom and some new members to AskPFEPlat to tackle your questions in the new year. Hope everyone was able to take some time off and re-charge. How are those new year's resolutions going? Be healthier? Read more? Learn a new technology? Get certified? More on that later. By this point in the year most people have already dropped them. Stick with it! Alright let's get into the Q&A.

 

Upgrading AD

Forest and domain functional level support

Defragging SSD

Portqry without portqry

Stuff from the Interwebs

 

 

Question

Windows Server 2003 is end of life July 14, 2015, I guess that means we should start upgrading Active Directory. Any useful links I need to know about?

Answer

Now is probably a really good time to start on this if you haven't started already. Seriously. I know some of you are probably thinking "Really? Still on 2003?" I assure you it is true. So if this is you time to get started.

https://techcommunity.microsoft.com/t5/Core-Infrastructure-and-Security/Best-Practices-for-Implement... 

And

https://techcommunity.microsoft.com/t5/Core-Infrastructure-and-Security/Upgrading-or-Migrating-Activ... 

 

 

Question

We will upgrade all of our Domain Controllers (DCs) to Windows Server 2012 R2 in the coming weeks/months, but the forest and domain functional levels will remain at “Windows Server 2003” – are we supported after 14. July 2015?

Answer

Gary Green here to answer this. As you pointed out, the end of extended support is fast approaching for Windows Server 2003:

 

However, the answer to your question is “YES” - you are supported as long as the operating system(s) you have deployed for your DCs are supported.

Forest Functional Level (ffl) and Domain Functional Level (dfl) control certain functionality within the Active Directory forest and/or domain respectively and are not affected by OS lifecycle limits.

 

Active Directory Functional Levels Technical Reference:

https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2003/cc757019(v=ws....

 

A few things you should know about raising the DFL (and/or) FFL to Windows Server 2008 R2

https://techcommunity.microsoft.com/t5/Core-Infrastructure-and-Security/A-few-things-you-should-know... 

 

 

Question

Should I be defragging my SSD? I see lots of info all over the place what's the story?

Answer

This topic is being put to bed by Scott Hanselman's excellent post that should not be missed by anyone.

 

 

Question

I’m on a 2012 R2 server and don’t have portqry or telnet available.  Is there another method to test if a port is open on a remote machine?

Answer

Longtime reader now Microsoft FTE Mike Kline has this one.

On Windows 2012 R2 and Windows 8.1 running version PowerShell 4.0 you can use the Test-NetConnection cmdlet

In the examples below we are testing for port 389 (LDAP) between two domain controllers

 

 

Notice that we failed to connect to port 389.

 

 

When the port is unblocked TcpTestSucceeded is True and the warning message disappears.

 

Until next time! 

 

Mark 'sweet sassy molassy' Morowczynski, Tom 'Booyah!' Moser, Gary 'First Timer' Green, Mike 'Finally a Blue Badge' Kline