Search This Blog

Monday, August 31, 2015

Win 2016 TP3 : Hello Powershell Direct !


You can now using Powershell Direct to easily manage and run Powershell cmdlet and script directly inside a virtual machine.


  • Host – Windows 10 or Windows Server 2016
  • Guest VM – Windows 10 or Windows Server 2016
  • Guest credential
  • Running as Hyper-V Administrator
  • VM on locally and booted

Powershell Remoting to Windows Server 2012 R2

  • Failed with an error message. We need to configure it in order to make it work.


But the game has changed with Powershell Direct on Windows Server 2016 TP3

  • Work on VM without network connectivity


  • Work on VM with  Windows Firewall enabled


[ Test Powershell Direct]


Enter-PSSession –VMname (name)


Able to connect to the virtual machine without any extra configuration. From here, you can execute powershell cmdlet.

Example: Install Web Application Proxy for ADFS

Add-WindowsFeature Web-Application-Proxy


How do you find Powershell Direct? Cool right! Just give it a try yourself on Powershell Direct.

Sunday, August 30, 2015

Win 2016 TP3: Update VM Configuration Version

Here is the current VM configuration version when run on Win 2012 R2 Hyper-V Host.


Just execute

Get-VM * | ft name,version

By default, VM that you create on Win 2016 TP3 will run as VM configuration ver 6.2


When VM import into Windows Server 2016 TP3, then you should update the VM configuration if you tend to use the features which available on Win 2016 TP3.

Mean, you still can power on VM running VM configuration version 5 on new Hyper-V Host.


 Here is the compatibility table in case you want to move around

VM Conf version Win 2012 R2 Hyper-V Win 2016 TP3Hyper-V
5 Yes Yes
6.2 No Yes

Once VM configuration version run in version 6, then you cannot move back to Win 2012 R2 Hyper-V. This process is irreversible.

[ Configuration]

1. Power off virtual machine

2. Execute the following command

Update-VMVersion (vmname)


After that, the VM will use new configuration file format .VMCX file extension for virtual machine configuration data and the .VMRS file extension for runtime state data.


Note: Previous file format is .XML

It was designed to increase the efficiency of reading and writing virtual machine configuration data. It's also designed to reduce the potential for data corruption in the event of a storage failure.

Win 2016 TP3 : RIP Vmguest.iso Which Use to Install Integration Component


We use to install or upgrade Integration Component on every Virtual Machine that we setup on prior version of Microsoft Hyper-V but in the next release of Microsoft Windows we no longer need to.

Let look on different between prior version vs Windows Server 2016 TP3

  • Prior version of Integration Services Version on Windows Server 2012 R2 Hyper-V.


Note: No value on IC is due to virtual machine is offline. IC version will display on those vm that are power on.

  • On Windows Server 2016 Technical Preview:



  • TP3-SCO01 – running guest operating system Windows Server 2016 Technical Preview.
  • TP3-SCOM1 – running guest operating system  Windows Server 2012 R2

Both virtual machines display value “0”. So how to update if we no longer has an option on Virtual machine connection console?


Good news is Integration Services (IC) will start to delivered through Windows Update. Something to cheer on! So just execute Windows Update on guest virtual machine to get it updated.

This will reduce the IT operational burden to make sure they are up to date.

Sunday, August 23, 2015

5th Book Reviewed–Designing Hyper-V Solution

Hey folks, sharing another milestones about the 5th book that we have successful work on as Technical Reviewer. It had been  great and glad to assist to make this book successful.


[ Credit Page ]


[ Reviewer Biography ]



[ About the Book ]

This book is aimed at IT admins, consultants, and architects alike who wish to deploy, manage, and maintain Hyper-V solutions in organizations of various sizes. You are expected to have a working knowledge of managing Windows Server and a fair understanding of networking and storage concepts.

What You Will Learn

  • Set up independent and highly available clustered Hyper-V hosts via GUI and PowerShell
  • Acquire knowledge about Generation 1 and 2 Virtual Machines, their creation and management, and also look at the VM Conversion process
  • Understand NIC teaming, Extensible Virtual Switch, and other networking advancements
  • Gain insight into virtual machine storage changes and their follow-up benefits
  • Discover backup and recovery patterns for Hyper-V
  • Familiarize yourself with the essentials of Hyper-V Replica
  • Leverage the benefits of Microsoft VDI

It has officially available and you can get the book from here :-

Thursday, August 20, 2015

Windows Server 2016 and System Center 2016 Technical Preview 3 is Available to Download

Hey folk, Microsoft has released Windows Server 2016 and System Center 2016 Technical Preview 3 to tester.
Feel free to check out :

Do take note that this release still consist some bugs and not recommended to use on production environment.

Are you ready to evaluate it?
If yes, just click below link:-

Windows Server 2016 TP3 :

System Center 2016 TP3:


Thursday, August 13, 2015

GA: Veeam FastSCP for Microsoft Azure


[ Updated: 27 December 2015]

Good news folk! Veeam FastSCP for Microsoft Azure has general availability. The latest build is

Summary on features:
  • Copy file to Azure VM over 2GB. RDP has a limit of 2 GB per file that you can transfer to.
  • Secure file copy over https with built in encryption without VPN connection
  • Schedule file copy without RDP or UI open
Related Post:-
[ Download ]

Monday, August 10, 2015

Install Microsoft AntiMalware on Existing Azure VM

You may have deploy an Azure VM but forget to install antivirus security extension during provisioning. If yes, then you may refer to below step on how we deploy Microsoft Antimalware f9or FREE.

[ Requirement]

Windows guest operating system from Win 2008 R2 SP1 or higher

Install Window Azure VM Agent into VM. Download from here.

[ Configuration ]

Use Windows Azure Powershell to execute below command

$servicename = "MS4U-VM1"
$name = "MS4U-VM1"

$vm3 = Get-AzureVM –serviceName $servicename –Name $name
$vm3.VM.ProvisionGuestAgent = $TRUE
Update-AzureVM –Name $name –VM $vm3.VM –ServiceName $servicename

# Get the VM
$vm3 = Get-AzureVM –ServiceName $servicename –Name $name

# Add Microsoft Antimalware Agent to the Virtual Machine
Set-AzureVMExtension -Publisher Microsoft.Azure.Security -ExtensionName IaaSAntimalware -Version 1.* -VM $vm3.VM

# Update the VM which will install the Antimalware Agent
Update-AzureVM -Name $servicename -ServiceName $name -VM $vm3.VM


Credit to

Thursday, August 6, 2015

Veeam Endpoint Backup V1.1 for Windows 10


Good news ! Veeam has just recently released a new version 1.1 to support Windows 10 and it’s FREE.


Quick look on features:

  • Support for Windows 10
  • Bug fixes
  • Volume Resize. Able to restore to bigger/ smaller volume.
  • Network setting auto configuration.
  • Driver recovery
  • Post backup and activities prompt for an action

So far, so good during our backup testing on Windows 10 to our 16GB external USB drive.


2015-08-06 12.31.55

Check out this blog from Veeam about Veeam Endpoint Backup ver1.1 :-

To download – click here

Enjoy folk! Don’t miss this chance to test free backup utility on Windows 10.

Wednesday, August 5, 2015

Error “Your System Administrator Has Restricted Access to this App” When Open System Center Endpoint Protection


[ Error ]



Has Installed Microsoft AntiMalware Extension on Azure Virtual Machine.

Encountered an error message “Your System Administrator has restricted access to this app”

[ Resolution]

1. Open command prompt

2. Type

cd "c:/program files/microsoft security client"
configsecuritypolicy cleanuppolicy.xml


3. Open Microsoft Antimalware.


That should do the trick

Error : Unable to Execute the Embedded Application to Complete the Installation When Install Microsoft Azure Backup Agent




This message appear when trying to install Microsoft Azure Backup Agent on Azure Virtual Machine running Windows Server 2008 R2 SP1 Datacenter edition.


  • Install Microsoft Visual C++ 2008 Redistributable Package. You can download from here.
  • Reinstall Microsoft Azure Backup Agent

Configure Microsoft Advanced Threat Analytics (Preview) on Hyper-V Virtual Machine

[Updated – 13 August 2015]

We just deployed Microsoft Advanced Threat Analytics (ATA) into our environment to evaluate how powerful the product on automatically analyzing, learning and identifying normal and abnormal behavior. Its also help on identify known malicious attacks, security issues and risk using world class, cutting edge research in behavioral analytics to help enterprise identify security breaches before they cause damage.

ATA is now part of EMS products!
Version :- Preview Edition

Download ATA from -

Pricing:- From


Screenshot taken on 5th August 2015. Subject to change.


  • One virtual machine for ATA Center running Win 2012 R2 with latest Windows update
  • One virtual machine for ATA Gateway running Win 2012 R2 with latest Windows update
  • Domain controller running on Windows Server 2008 and later

Each ATA deployment can monitor one domain and up to 10 domain controllers depending on the network traffic to and from the domain controllers. During Preview version, one ATA only can monitor a domain. If you do have multiple domain, just deploy another ATA.

[ATA Center VM]

  • Install ATA Center
  • Login in to get ATA Gateway Setup software
[ ATA Center Gateway VM]
  • Install ATA Center Gateway
  • Configure static IP Address
  • Configure DNS suffix with your own domain name (on Mgmt NIC)image
  • Configure 2 Interface : Management & Capture NIC
  • Set IP without dns and gateway on Capture NIC

[ Configure Port Mirroring on Virtual Switch]
Configure Port mirroring. You can refer to our previous post.

Domain Controller VM – Set as Source on Port Mirroring

ATA Gateway VM – Set as Destination on Port Mirroring

[Updated –13 August 2015- Extra configuration]

1. On Gateway, enter

  • FQDN Domain Controller
  • Select Capture Network Adapter


2. On Detection, enter

VPN subnet – (your network)

Honeyaccount SID – (enter one of the domain user account SID)

Our example:

  • Useraccount- Amber
  • Domain – corp
$objUser = New-Object System.Security.Principal.NTAccount("corp", "Amber")
$strSID = $objUser.Translate([System.Security.Principal.SecurityIdentifier])


Do we have any suspicious activities? Well, no at this moment.

Bookmark this page!

We will update the result after 21 days starting from today. Why 21 days? Well, the ATA Center requires a minimum of 21 days of data for user behavioral analytics.

Stay Tuned!

Sunday, August 2, 2015

Monitor Virtualization Platform With Veeam One


Veeam One allow you to monitor, reporting and capacity planning for

  • Microsoft Hyper-V (2008 R2 SP1, 2012, 2012 R2)
  • Vmware vSphere (6.0, 5.X, 4.x)
  • Veeam Backup and Replication (6.5, 7 , 8)
  • Vmware vCloud Director (5.1,5.5, 5.6)
  • System Center Virtual Machine Manager (2008 R2 SP1, 2012, 2012 R2)
  • Vmware vCenter (4.0,5.0,5.1, 5.5, 6.0) 

We will have a look on our environment with Veeam One.

[Virtualization Infrastructure ]

From Veeam One reported:-

  • Hyper-V Host has insufficient memory to cope the demand of the virtual machine
  • Virtual machines dynamic memory has reached 90% threshold. The higher the average pressure, vm will start to use paging disk which will impact VM performance.


You can view top Hyper-V Host and virtual machine to view utilization and usage by selecting counter.



Below is some sample screenshot on Hyper-V Host and Virtual Machine:

[Hyper-V Host]



[Virtual machine]

  • Able to understand your VM utilization in CPU, Memory, Disk and Network
  • Able to perform task such as start, off, hard reset, remote console and manage your VM
  • Able to view, restart or kill running processes for Windows VM
  • Able to view and end daemon for Linux VM







The features and functionalities provide by Veeam One can almost on-par with System Center Operation Manager.

[ Backup Infrastructure]

The section only applicable when customer is using Veeam Backup and Replication product to perform backup. From here, you can

  • View status of backup job
  • View Backup repository usage
  • View Backup Proxy Usage
  • View Veeam components such as WAN accelerator, tape servers, cloud repository, cloud gateway, backup proxies and backup repository


For each alarm or alert, you can configure action to execute.


[ Reporting]

In Veeam One Reporter, you can

  • View prebuilt dashboard.
  • Create custom dashboard
  • Add your own widget
  • Setting Dashboard Preview Image
  • Setting Dashboard Color
  • Configure scheduling for dashboard deliver to your email
  • Publish your dashboard to web portal
  • Share your dashboard with other users




Customer has option to view full report and some widget can change display options.


In term of out of the box report, there are prebuilt report available and you can build custom report as well. Make sure you change the report header with a custom image (example: company logo)


Sample report:-




[Capacity Planning]

Besides that, Veeam One included with capacity planning to assist on

  • backup repository
  • Hyper-V Host Failure Modelling
  • Hyper-V Host Over Provisioned Datastore




You can use what-if and resource reservation for advanced capacity planning in your virtual infrastructure.



Well, we just covered some of the report and features on Veeam One : powerful monitoring, reporting, and capacity planning tool for VMware vSphere, Microsoft Hyper-V and the Veeam backup infrastructure. Feel free to check out yourself. The product came with free and paid version of Veeam One. Interested, click here.