Jerry Welliver's questions

We have a client with a very old active directory environment on Windows Server 2008 R2. We are going to replace it with a new server and would like to upgrade the existing server to keep all of the permissions and profiles in place. We realize we will need to do it in a couple steps. We created a Hyper-V server to test the upgrade. During the initial attempt to upgrade to 2012 R2 we received an error indicating Forestprep and Domainprep need to be run. The Forestprep completed successfully but Domainprep had issues with replication. Long ago there was another server but it was decommissioned before we got the client so we don't have access to it. I was able to manually remove the old server in sites and services to effectively disable replication. Now I am getting a permissions error creating CN=TPM Devices,DC=CVV,DC=local in Active Directory Domain Services. See log excerpt below:

[Status/Consequence]

The operation has not run or is not currently running. It will be run next.
[2024/02/13:16:51:53.609]
Adprep was about to call the following LDAP API. ldap_add_s(). The entry to add is CN=TPM Devices,DC=CVV,DC=local.
[2024/02/13:16:51:53.610]
LDAP API ldap_add_s() finished, return code is 0x10 
[2024/02/13:16:51:53.617]
Adprep was unable to create the object CN=TPM Devices,DC=CVV,DC=local in Active Directory Domain Services.

[Status/Consequence]

This Adprep operation failed.

[User Action]

Check the log file ADPrep.log in the C:\Windows\debug\adprep\logs\20240213165153 directory for more information. Restart Adprep.
[2024/02/13:16:51:53.621]
Adprep encountered an LDAP error. 

Error code: 0x10. Server extended error code: 0x57, Server error message: 00000057: LdapErr: DSID-0C090CB7, comment: Error in attribute conversion operation, data 0, v1db1


DSID Info:
DSID: 0x1811100d
ldap error = 0x10
NT BUILD: 9600
NT BUILD: 16384

[2024/02/13:16:51:53.628]
Adprep was unable to update domain information. 

[Status/Consequence]

Adprep requires access to existing domain-wide information from the infrastructure master in order to complete this operation.

[User Action]

Check the log file, ADPrep.log, in the C:\Windows\debug\adprep\logs\20240213165153 directory for more information. 

D:\support\adprep>netdom query fsmo
Schema master               Culinary01.CVV.local
Domain naming master        Culinary01.CVV.local
PDC                         Culinary01.CVV.local
RID pool manager            Culinary01.CVV.local
Infrastructure master       Culinary01.CVV.local
The command completed successfully.

I ran adprep /domainprep using an elevated command prompt logged in with an admin account belonging to Domain Admins and Enterprise Admins. Anyone have an idea how to fix this error?

Additional command results requested by joeqwerty:

PS C:\Users\cvvadmin> echo $host
Name             : ConsoleHost
Version          : 3.0
InstanceId       : 9b5b8e7f-85bd-40c3-ba0b-b32a0f87f133
UI               : System.Management.Automation.Internal.Host.InternalHostUserInterface
CurrentCulture   : en-US
CurrentUICulture : en-US
PrivateData      : Microsoft.PowerShell.ConsoleHost+ConsoleColorProxy
IsRunspacePushed : False
Runspace         : System.Management.Automation.Runspaces.LocalRunspace

PS C:\Users\cvvadmin> Get-ADObject (Get-ADRootDSE).schemaNamingContext -Property objectVersion
DistinguishedName : CN=Schema,CN=Configuration,DC=CVV,DC=local
Name              : Schema
ObjectClass       : dMD
ObjectGUID        : f91149b0-619b-4ee8-90f1-3aa164846200
objectVersion     : 69

PS C:\Users\cvvadmin> Get-ADForest | fl Name,ForestMode
Name       : CVV.local
ForestMode : Windows2000Forest

PS C:\Users\cvvadmin> Get-ADDomain | fl Name,DomainMode
Name       : CVV
DomainMode : Windows2000Domain

PS outputs and domainprep log:

PS C:\Users\cvvadmin> Get-ADObject (Get-ADRootDSE).schemaNamingContext -Property objectVersion
DistinguishedName : CN=Schema,CN=Configuration,DC=CVV,DC=local
Name              : Schema
ObjectClass       : dMD
ObjectGUID        : f91149b0-619b-4ee8-90f1-3aa164846200
objectVersion     : 69

PS C:\Users\cvvadmin> Get-ADForest | fl Name,ForestMode
Name       : CVV.local
ForestMode : Windows2008R2Forest

PS C:\Users\cvvadmin> Get-ADDomain | fl Name,DomainMode
Name       : CVV
DomainMode : Windows2008R2Domain

PS C:\Users\cvvadmin> Dfsrmig /getmigrationstate
Unable to create DFSR Migration log file. Error 1307
All Domain Controllers have migrated successfully to Global state ('Eliminated').
Migration has reached a consistent state on all Domain Controllers.
Succeeded.

Domainprep log:

[Status/Consequence]

The operation has not run or is not currently running. It will be run next.
[2024/02/14:13:29:33.022]
Adprep was about to call the following LDAP API. ldap_add_s(). The entry to add is CN=TPM Devices,DC=CVV,DC=local.
[2024/02/14:13:29:33.025]
LDAP API ldap_add_s() finished, return code is 0x10 
[2024/02/14:13:29:33.033]
Adprep was unable to create the object CN=TPM Devices,DC=CVV,DC=local in Active Directory Domain Services.

[Status/Consequence]

This Adprep operation failed.

[User Action]

Check the log file ADPrep.log in the C:\Windows\debug\adprep\logs\20240214132932 directory for more information. Restart Adprep.
[2024/02/14:13:29:33.039]
Adprep encountered an LDAP error. 

Error code: 0x10. Server extended error code: 0x57, Server error message: 00000057: LdapErr: DSID-0C090CB7, comment: Error in attribute conversion operation, data 0, v1db1


DSID Info:
DSID: 0x1811100d
ldap error = 0x10
NT BUILD: 9600
NT BUILD: 16384

[2024/02/14:13:29:33.048]
Adprep was unable to update domain information. 

[Status/Consequence]

Adprep requires access to existing domain-wide information from the infrastructure master in order to complete this operation.

[User Action]

Check the log file, ADPrep.log, in the C:\Windows\debug\adprep\logs\20240214132932 directory for more information. 

I want to setup Hyper-V VMs with a shared vhdx or vhds virtual disk. I have a W10 VM that has the main file space and setup a shared folder to allow two other W10 VMs to map a drive and share the data. I suspect performance may be better is I use a shared VHD in Hyper-V. The host computer is Server 2016 Std. I can create the shared VHD but when I try to attach it to a VM, I get an error that says the VHDX location doesn't support sharing. I found several articles saying I need to enable it but I cannot find where to enable it. I have two 2016 servers in a datacenter and several VMs on each but no clustering is setup.

We have a client running a very old physical server running 2012 Standard. We want to upgrade to 2019 essentials. We want to switch to essentials since they will not need more than 25 cals. Is there any way to do an in-place install (even in multiple steps) so we do not have to re-install all of the software? I have tried some different approaches but the option to keep current files is always disabled.

I am an it consultant with 40+ years of experience but I am new to virtualization. I have a host server with 2016 standard installed in a datacenter. I used showkeyplus and the key shows as all B's most likely because it is their volume license. I have read that 2016 standard allows 2 virtuals to be activated and that a physical windows 10 can connect to a virtual windows 10 license. I have been able to create the virtual machines with no apparent issues. My question is how do I activate the virtual machines so they don't expire?

Update: I tried using key C3RCX-M6NRP-6CXC9-TW2F2-4RHYD (2016 standard) in the slmgr command and got the following error:

The slui command displayed:

Ideas?