Tag Archives: active directory



Windows Server 2012 has four editions: Foundation, Essentials, Standard and Datacenter.

Specifications Foundation Essentials Standard Datacenter
Distribution OEM only Retail, volume licensing, OEM Retail, volume licensing, OEM Volume licensing and OEM
Licensing model Per server Per server Per CPU pair + CAL Per CPU pair + CAL
Processor chip limit 1 2 64 64
Memory limit 32 GB 64 GB 4 TB 4 TB
User limit 15 25 Unlimited Unlimited
File Services limits 1 standalone DFS root 1 standalone DFS root Unlimited Unlimited
Network Policy and Access Services limits 50 RRAS connections and 10 IAS connections 250 RRAS connections, 50 IAS connections, and 2 IAS Server Groups Unlimited Unlimited
Remote Desktop Services limits 50 Remote Desktop Services connections Gateway only Unlimited Unlimited
Virtualization rights N/A Either in 1 VM or 1 physical server, but not both at once 2 VMs Unlimited
DHCP role Yes Yes Yes Yes
DNS server role Yes Yes Yes Yes
Fax server role Yes Yes Yes Yes
UDDI Services Yes Yes Yes Yes
Print and Document Services Yes Yes Yes Yes
Web Services (Internet Information Services) Yes Yes Yes Yes
Windows Deployment Services Yes Yes Yes Yes
Windows Server Update Services No Yes Yes Yes
Active Directory Lightweight Directory Services Yes Yes Yes Yes
Active Directory Rights Management Services Yes Yes Yes Yes
Application server role Yes Yes Yes Yes
Server Manager Yes Yes Yes Yes
Windows Powershell Yes Yes Yes Yes
Active Directory Domain Services Must be root of forest and domain Must be root of forest and domain Yes Yes
Active Directory Certificate Services Certificate Authorities only Certificate Authorities only Yes Yes
Active Directory Federation Services Yes No Yes Yes
Server Core mode No No Yes Yes
Hyper-V No No Yes Yes

Also View :

Web Content Management – Allow reviewers to see drafts and nothing more


You have a public-facing site with WCM/Publishing enabled.  Active Directory authentication is used for your content creators, editors & approvers.  Your anonymous users can browse most portions of the site without logging in, however, there are some areas where they login using forms-based authentication.

Your pages are constantly undergoing changes, and you need to create an account that has access to review the draft version of pages, however, you do not want them to see the Site Actions button or the Page Editing Toolbar, or have the ability to create any new content.  Essentially, they are the most basic of content reviewers – the only ‘elevated permissions’ they have over an FBA user is that when they browse the site, they see the latest draft of every page, instead of the latest published version.

The Typical Solution

So in most situations, you would turn content approval on within your page libraries, and then add this user to the <SITE> Members SharePoint group, where they would be granted contributor rights, and could review the page drafts.  They would be able to edit the drafts, but since content approval is turned on, anything they modify won’t go anywhere without approval.  But they are contributors, and can create new content (that they cannot publish), and they still have access to the Site Actions menu, even if the functionality available to them is significantly limited.  In the majority of cases though, this setup works exactly as needed for most organizations.

Our Scenario’s Solution

In our case, we need to create a new Permission Level:

1.  Browse to Site Actions -> Site Settings -> Modify all Site Settings -> Advanced Permissions.

2.  Click Settings -> Permission Levels.

3.  Click on the actual ‘Contribute’ link.


4.  You will now be presented with a page listing all of the permissions for contributors.  We want to make a copy of this permissions set, and then modify the new permission level.  Scroll down to the bottom of the page and click on Copy Permission Level.

5.  A new page will appear where we can now customize our new permission level.  Give this level the name of Draft Reviewers, or whatever you see fit.

6.  Then, make sure only the boxes checked in the images below are checked on your page.  This will ensure that any users granted this Draft Reviewers permissions level will be able to see drafts but not do anything else ‘elevated’ within the site.  Once you have checked (and double checked) your settings, click Okay.


7.   Once the permission levels has been created, go back to Permissions in your breadcrumb.


8.   Now we need to create the SharePoint group that will hold these Draft Reviewers and also assign them the permissions set we just created.  Click on New -> SharePoint Group.

9.  Give your group a name (such as Draft Reviewers) and then make sure you check the box next to the new permission level we just created:


10.  Click Okay – and congratulations, your new group is created with the proper permission based on the scenario above.  Now, add your users to the group, and when they log into the site, they will see all of the pages in draft form, but perform any other type of content management process or administrator function.

Ref : Web Content Management