Dear Friends
I have mail server on Linux and i joined my mail server with Active Directory and my user in Active Directory can login to my mail server but i want to manage them by tab in Active Directory such as enable/disable they email on Active Directory Without disable they account.
How can i fix this in Active Directory?
Hello.
I need some help with DPM 2012 SP1.
I want to have an off-site backup, and for this purpose we have bought an HP MSL2024 Tape Library. I have created many Protection Groups and every Protection Group Backups up 2-3 virtual servers (in a Hyper-V cluster). So far I am backing up to Disks. When I started having backups to my Library I noticed that every Protection Group that I have uses a single LTO tape. I want to ask a couple of things:
What I want to achieve in general is:
How can I create this scenario?
Hello,
Question as follows:
If you'd be getting an effective permissions report about your AD DS environment, which of the below permissions should be considered as most important?
I would appreciate if you can give a rank for each of these permissions (1 = Most important (highest risk))
Full control
Delete all child objects
Create all child objects
Any role (inc. special) with delete bits : Delete attribute <attr>
Any role (inc. special) with create bits : Create attributes <attr>
Write
Write all properties
Any role (inc. special) with write bits : Write <attr>
All Validated Writes
All Extended Rights
Read
Read all properties
Any role (inc. special) with read bits : Read <attr>
hello,
i have an active directory with 2008 domain functional level i have created a custom attribute in the active directory but i need this attribute to be displayed when right click on the user object in the active directory .
this is the current stat of the attribute
i want this attribute to be like the following Employee ID
Thanks all for you support.
I have setup Site-Site VPN to my remote office located Internationally. all the policies are working fine except the wallpaper as it only shows black background. but when i see personalize its shows me Desktop Background
what might be the solution for this problem
Hello,
I'm writing to ask for a question regarding Active Directory Topology Configuration.
I have Site A, Site B and Site C:
I have to define Site Link(s) under Active Directory Sites & Services.
Based on information above, which is best way to setup it ? As Best Practice it is recommended that a site link contain only two sites. That said is it recommended to create first two only or all of three Site Links below ?
Thank you.
Bye,
Luca
Disclaimer: This posting is provided AS IS with no warranties or guarantees, and confers no rights. Whenever you see a helpful reply, click on [Vote As Help] and click on [Mark As Answer] if a post answers your question.
Dear System Admins,
Actually I am new to this forum and I need help. Let me explain you my scenario. Ours is a small company and I have configured Cisco router with dedicated Public IP. So the private IP default gateway is 192.168.50.254 and DNS is 218.56.43.22 "DNS is given by ISP". Now what I did is I have configured IP address to server 192.168.50.1/24. Default Gateway IPv4 address 192.168.50.254 DNS 218.56.43.22 on Windows domain server computer. Internet is up on Windows Server. Also I have setup Active directory successfully. Now I want Windows 7 computer to Join the domain and also it should be able to access to Internet. Let me know how to configure Windows 7 network properties and how to join domain. Please explain me in simple way step by step process. Thank you.
hi i need a great kind help i am telling here my network detail
one domain controller that is running server 2003 enterprise (schema version is 31 )
one member server that running server 2003 enterprise with exchange server 2003
I need to upgrade domain controller server 2003 enterprise to server 2008 enterprise R2 i know very well how to
upgrade but my question is after domain controller upgraded to 2008 enterprise R2 my another member server 2003 with exchange server 2003 will work in this scenario again i am repeating my question after my domain controller upgraded into 2008 my another member server that is running server 2003 with exchange server 2003 will continue work yes or not please tell me
thanks
Hello Guys,
I have two forest with domain name abc.com & xyz.com exist and they are configured with two way trust.
Now User administrator of domain abc.com want to access the resources of domain xyz.com hence can some please help to to confgure this.
Thanks in advance.
NM-BG
Hello,
we recently remove a trust relationship to an external Domain that has now been retired. However there is still an object of class Microsoft_DomainTrustStatus in the database which is causing Operations Manager to trigger alerts.
How can I remove this object safely.
I tried netdom trust /remove /force however I receive the error that either the domain is unavailable or "file not found".
When I restart one of the domain controllers of the retired domain the error message changes to "The specified domain either does not exist or could not be contacted." and the error message on the object in AD changes to "Access Denied." or "The workstation does not have a trust secret".
The trust does not show up in "Active Directory Domains and Trusts". When I do a netdom query trust on some DCs the list is empty on other DCs the output looks like this:
Direction Trusted\Trusting domain Trust type
========= ======================= ==========
olddomain.local
Direct
The system cannot find the file specified.
The command failed to complete successfully.I hope someone has some advise.
Thank you
Sascha
Global query block is causing a DNS server to fail a query with error code Name Error exists in the DNS database for WPAD on a Windows 2008 server.
Hi there,
I'm doing some search for possible SAMBA to 2012 AD migration and I do have some concern regarding to Netbios. Based on my scenario below, users are using ABC\user_account to login to the system. In this case, keeping the same netbios name during and after the migration will definitely help IT team and will prevent end user conflicts.
As the samba and AD servers are on different subnet using the same Netbios name shouldn’t introduce any conflict however I’m not quite sure if this is supported or possible with ADMT…
So my question; would it be possible to use the same Netbios name during the migration?
Current SAMBA :
dns name :a.b.c
netbios name :ABC
Subnet :1.2.3.x
New AD :
dns name :q.w.e
netbios name :ABC
Subnet :1.2.30.x
Any comments or explanations would be appreciated…
Thanks,
Cem
Hi,
I want to know that does Active Directory Support Non English Languages like japanes, Arabian?
I think we can have domain name in non english languages also. How active directory handles it.
Sandeep Gupta
Hi
I have root domain contoso.dom (DC1 and DC2) and subdomain sub.contoso.dom (DC3).
I see error event 2896 on DC3
A client made a DirSync LDAP request for a directory partition. Access was denied due to the following error.
Directory partition:
DC=sub,DC=contoso,DC=DOM
Error value:
8453 Replication access was denied.
User Action
The client may not have access for this request. If the client requires it, they should be assigned the control access right "Replicating Directory Changes" on the directory partition in question.
No fails or errors in BPA.
Also if I try to run on DC1 repadmin /replsummary I can see:
site\DC3 via RPC
DSA object GUID: 0458a97c-437e-49a4-8f9c-095fd7340834
Last attempt @ 2013-12-19 15:27:27 failed, result 8418 (0x20e2):
The replication operation failed because of a schema mismatch between the servers involved.
118 consecutive failure(s).
Last success @ 2013-12-18 08:12:03.
How can I solve this problem?
Hi,
is there a newer version of this document available?
https://www.microsoft.com/en-us/download/details.aspx?id=16797
The document in the link above is written for Windows 2000. Even the changes are not dramatically it would be nice to have a version with current product names handy.
Thank you,
Lutz
Now in our project we need to support multiple forest by using AD LDS.
After investigation I found it seems there are several issues by using AD LDS.
1: AD LDS hides all domain information of the integrated AD DS. Although we can create more than one application partition or different OU on one application partition for different AD DS.
2: sAMAccountName should be unique of special domain in AD DS, however when AD LDS integrated with more than one AD DS. it is broken in AD LDS, it seems a critical issue of authentication in AD LDS.
3: when more than one user with same sAMAccountName, how to identify which user is to authentication.
the above issues only focus on the AD DS user synced to AD LDS, not AD LDS local user.
ANYBODY with experience already proved when to support multiple forests by using AD LDS.
Hi, I am planning for an AD upgrade from 2003 to 2012. The AD consists of single forest, single domain and 4 sites and 6 domain controllers. The functional level is Win 2003.
My plan is to introduce one AD 2012 server as domain controller to the existing infra. So in the process of introducing the first 2012 DC , in case any issue happens or anything goes wrong , I would need to restore the AD to the previous level.
So I would like to know the process of complete recovery back to Win 2003 in case of issue.
Hi,
I'm wondering what happens to the phantom object on the last non-GC domain controller in the domain/forest once it becomes a GC? Are they get destroyed immediately or they will stay hanging around in the database forever? Should I transfer Infrastructure Master to that DC before making it a GC to cleanup those?
Thanks,
Ivan
Ivan Seriavin