Export Windows Update list

If you want to export a list of updates installed on a Windows 2008 server, there is a built in tool to do this.
Use the WMIs Command-line interface (WMIC) to export this list.

On the command line:

wmic qfe get /format:csv > C:\updates.csv

You can use these other format options:


LIST is Tab Delimited

Enable Disk Cleanup Utility in Windows 2008 R2

To cleanup your disks from old files, service packs and tempory internet files Windows 7 has a tool called Disk Cleanup.

By default, this tool is not installed on Windows 2008 R2.
There are two ways to enable this:

  1. Install the “Desktop Experience” feature.
    This will install several Windows 7 features on your Windows 2008 R2 server such as Windows Media Player, Photo Management and the Disk Cleanup Utility.
    This is of course something you do not want installed on your server. Also, the server requires a reboot after installing the feature.
  2. Copy the files from the WINSXS directory.
    An easier way of enabling this the cleanup utility is to copy the files from the winsxs directory.
    You need two files: cleanmgr.exe and cleanmgr.exe.muiCopy cleanmgr.exe from  C:\Windows\winsxs\amd64_microsoft-windows-cleanmgr_31bf3856ad364e35_6.1.7600.16385_none_c9392808773cd7da\cleanmgr.exe to %systemroot%\System32
    Copy cleanmgr.exe.mui from C:\Windows\winsxs\amd64_microsoft-windows-cleanmgr.resources_31bf3856ad364e35_6.1.7600.16385_en-us_b9cb6194b257cc63\cleanmgr.exe.mui to %systemroot%\System32\en-US

There you go!

List all Windows updates in HTML or TXT format

wmic qfe list brief /format:htable > "c:\hotfix.html"

This produces a HTML file named “hotfix.html” that gets placed in the root of your C: drive.
If you would rather have a text file, the command would be:

wmic qfe list brief /format:texttablewsys > "%USERPROFILE%\hotfix.txt"

Task Scheduler Error and Success Codes

The task is ready to run at its next scheduled time.
The task is currently running.
The task will not run at the scheduled times because it has been disabled.
The task has not yet run.
There are no more runs scheduled for this task.
One or more of the properties that are needed to run this task on a schedule have not been set.
The last run of the task was terminated by the user.
Either the task has no triggers or the existing triggers are disabled or not set.
Event triggers do not have set run times.
A task’s trigger is not found.
0x8004130AContinue reading

Scheduled Task fails with error code 2147942667

A scheduled task in Windows Server 2008 fails to start.

The task history displays two errors:

Event 103: Task Scheduler failed to start instance “{…}” of “…”  task for user “…”.
Additional Data: Error Value: 2147942667.

Event 203: Task Scheduler failed to launch action “…” in instance “…” of task “…”.
Additional Data: Error Value: 2147942667.

Error code 2147942667 indicates that the directory name is invalid. In most cases, this is caused by placing quotes around the “Start In” directory.

Remove the surrounding quotes from the “Start In” path.
The path of the program to launch must be surrounded by quotes if it contains spaces; the “Start In” path must not be surrounded by quotes.

Applies To:
  • Windows 7
  • Windows Server 2008
  • Windows Server 2008 R2
  • Windows Vista

Event ID 1053: Exchange ActiveSync doesn’t have sufficient permissions to create container

Situation: when attempting to run Exchange ActiveSync on a smart phone, the Exchange Server may log this event.

Source:        MSExchange ActiveSync
Event ID:      1053

Description: Exchange ActiveSync doesn’t have sufficient permissions to create the “CN=Bob Lin,CN=Users,DC=chicagotech,DC=net” container under Active Directory user “Active Directory operation failed on 2008dc2.chicagotech.net. This error is not retriable. Additional information: Access is denied.

Active directory response: 00000005: SecErr: DSID-03152492, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0

Make sure the user has inherited permission granted to domain\Exchange Servers to allow List, Create child, Delete child of object type “msExchangeActiveSyncDevices” and doesn’t have any deny permissions that block such operations.

On the Android phone, you may receive can’t create user account message.

Resolution: Grant  inherited permission to domain\Exchange Servers. To do that, please follow these steps:

1. Run Active Directory Users and Computers.
2. Click on View and Select Advanced Features
3. Select a mailbox that isn’t working with Active Sync, double click on the account.
4. Click the Security Tab and then the Advanced button.
5. Highlight Exchange Servers, and check the Include inheritable permissions from this object’s parent.
6. Click OK to save the settings.




How to install application on Windows 2008 Terminal Server

It’s recommended to install Terminal services role before installing any application which will be available to terminal server users. If TS role installed after the applications are installed, some the application may not work correctly in a multiple user environment.

In that scenario uninstalling and reinstalling the affected programs can resolve the issue.

To ensure that an application is installed correctly to work in a multiple user environment, the Terminal Server must be switched into Install mode before applications are installed on the server.

A Terminal Server canbe placed into Install mode using one of the following methods:

++Using the Install Application on Terminal Server tool in Control Panel\Programs.

This tool is available only when we install terminal server. It will automatically put terminal server into execute mode when application installation is complete.

++ Run Change user /install from command promptto place the server into Install mode and install the application. After installing the application, use the Change user /execute command (or restart the server) to place the server back intoExecute mode before using the application.

Change user /query command can be used to find the current mode. 

When an application is installed in Install mode, HKEY_CURRENT_USER information is primarily written to the following registry key:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Terminal Server\Install


This information is then circulated to HKEY_CURRENT_USER for each user when they log on to the Terminal Server.