Ask a question


How can we help you today?

Ask Question
Manage notifications
Subscribe to this question
User

Essentials 2016 - Problem with Domain Service

Hi 

I had a working Windows Server Essentials 2016. I have changed Router and after that VPN and Remote web access do not working. 

I have trying repair but I got that error messege, 

Domain Service cannot be reached

Dynamic DNS cannot be updated

What can I do to fix that ;-) 

Please help 

 

 

Attached Files
asked05/16/2021 07:45
414 views
Add Comment
Mariette Knap

Jonas,

Is that router on the same IP address/network?

User

Hi , thanks for instant answer.. 

Yes it same IP address and network.. 

and the ports , 80, 443 and 3389 its open in router firewall. 

Sokoban

replied 05/16/2021 07:56
Mariette Knap

Pls, close 3389 immediately! It is a very bad idea to open RDP traffic to the internet and you don't need that on your server as you can use RDP Gateway. I am wondering if this is also a TLS 1.2 issue. Pls, read Ask a question > Cannot configure remote web access on Server 2016

replied 05/16/2021 08:00
User

I have try that 

New-ItemProperty -Path "HKLM:\SOFTWARE\WOW6432Node\Microsoft\.NETFramework\v2.0.50727" -Name "SystemDefaultTlsVersions" -Value 1 -PropertyType DWORD -Force
New-ItemProperty -Path "HKLM:\SOFTWARE\WOW6432Node\Microsoft\.NETFramework\v2.0.50727" -Name "SchUseStrongCrypto" -Value 1 -PropertyType DWORD -Force
New-ItemProperty -Path "HKLM:\SOFTWARE\WOW6432Node\Microsoft\.NETFramework\v4.0.30319" -Name "SystemDefaultTlsVersions" -Value 1 -PropertyType DWORD -Force
New-ItemProperty -Path "HKLM:\SOFTWARE\WOW6432Node\Microsoft\.NETFramework\v4.0.30319" -Name "SchUseStrongCrypto" -Value 1 -PropertyType DWORD -Force

New-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\.NETFramework\v2.0.50727" -Name "SystemDefaultTlsVersions" -Value 1 -PropertyType DWORD -Force
New-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\.NETFramework\v2.0.50727" -Name "SchUseStrongCrypto" -Value 1 -PropertyType DWORD -Force
New-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\.NETFramework\v4.0.30319" -Name "SystemDefaultTlsVersions" -Value 1 -PropertyType DWORD -Force
New-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\.NETFramework\v4.0.30319" -Name "SchUseStrongCrypto" -Value 1 -PropertyType DWORD -Force

But It doesn't help .. 

Any other ideas ? 

replied 05/16/2021 08:31
Mariette Knap

Did you reboot server?

replied 05/16/2021 09:22
Mariette Knap

In addition to the above save the below to TLS12-Enable.reg and import that into your server and reboot

Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client]
"DisabledByDefault"=dword:00000000
"Enabled"=dword:00000001
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server]
"DisabledByDefault"=dword:00000000
"Enabled"=dword:00000001

 

replied 05/16/2021 09:28
User

Hi 

The Powershell and rebooting my server help, yehhoooo :-)  

Thank you for your help, You are my HERO !!!!!

Have a nice day :-)

replied 05/16/2021 09:54
Tim Donovan

"Pls, close 3389 immediately! It is a very bad idea to open RDP traffic to the internet and you don't need that on your server as you can use RDP Gateway."

How do you use RDP Gateway?  Thank you.

replied 05/23/2021 20:56
Mariette Knap

Connect the Access Anywhere portal like remote.domain.com. You will see a list with tiles that represent the computers you can connect to. Save such a RDP connector to to your desktop.

replied 05/24/2021 11:10
Tim Donovan

Yes, that is exactly how I was doing it.  But it's now not working.  Once I get it working I will try it again but with port 3389 not opened to see if works.  Thank you.

replied 05/24/2021 11:35
Reply
Last Activity 06/11/2021 05:22

1 Answer(s)

  • Mariette Knap

    The answer is to change TLS settings, see Powershell commands and registry settings

     

    answered 05/16/2021 10:24
    Add Comment
Add an Answer