task scheduler
I have DC where multiple sites are replicating Data Now i'm planning to Configure task scheduler for powershell script Now task scheduler has any vulnerabilities on DOMAIN CONTROLLER?
View ArticleBest way to replace a Server 2000 PDC with a 2012 Server PDC
I have a small domain with 1 PDC (Server 2000) and about 40 clients running Windows 7 or Windows 10. I want to replace the Server 2000 PDC with a 2012 Server PDC. I am looking for the best (and...
View ArticleJoin domain by DNS Forwarding
Hi!We have deployed new Domain Controllers on the cloud. Because of company's policies, we must use public DNS for all our DNS querys, otherwise all querys get geo-located based of Azure's region.The...
View Articlepowershell - How to add/remove users to msExchCoManagedByLink of AD Group
Is there a powershell through with I can add/remove msExchCoManagedByLink of AD groups? I believe this attribute is available only for Distribution and no security group.
View ArticleADFS 2012 R2 - Force Certificate Logon for IOS
Hey Guys,i'm trying to find some information on how to customise the ADFS login page to automatically propose certificate Logon when the device logging in is an iphone.basically it should automatically...
View ArticleFinding the source of repeated AD account lockouts
Hello,On a Windows Server 2008 R2 domain, I have turned on auditing to try and determine the source that keeps locking out an admin account every 30 minutes or so. Looking at the security event log on...
View ArticleInstall-ADserviceAccount failed with unspecified error
Hello,I'm trying to setup a new server farm in my domain and I built a gMSA called NewFarm where i put two servers: SVR01 and SVR 02. When i run the following command: Get-ADServiceAccount NewFarm...
View ArticleHow to add IP to domain controller
How to add IP to domain controllerHow to add IP to domain controller
View ArticleEvent 2092 -Replication Issue
This server is the owner of the following FSMO role, but does not consider it valid. For the partition which contains the FSMO, this server has not replicated successfully with any of its partners...
View ArticleUser authenticated on wrong DC
Hi,We had recently a problem with one of our DC:s. We had 4 DC, dc01, dc02, dc03 and dc04. For some readon dc04 died and it doesnt exist on the forest anymore. But every morning somehow some clients...
View ArticleSome Domain Controllers do not autoenroll for Kerberos Authentication...
Hello Everyone,we have a domain running in 2008R2 domain-mode. We have Root- and Intermediate CAs integrated into AD. The CA-Servers are Microsoft Servers. Our DCs need Certificates because we are...
View ArticleAD Pssword Synch Between 1 Way Trust Domains
I have a client challenge that I hope we can solve. Scenario Corporate - 1 way trust to our client AD. Mirror'd AD users but completely unique SID per domain. Assume zero...
View ArticleProblems with new DC - I think I f*cked up the SYSVOL
Hi!Half a year ago I took over a new installed DC, lets call it DC02 (server 2016) and the old one DC01 (Server 2008r2). When I ran dcdiag I got pretty much failed at everyting and started to work it...
View ArticleRD Web services on windows 2012R2 server to Manage IOT Users to their...
Hey MS Experts,I have implemented RDweb server on 2012R2 OS and Domain Controller is running on Server2008R2 in PCI zone, https://localhost/RDWeb/Pages/en-US/password.aspxAbove is the URL for IOT Users...
View ArticlePDC failed test VerifyReferences
Hi,We are facing few errors on dcdiag /q but mainly References are not being verifiedI have read the article KB312862 but its seems for issue with FRS and we have DF/FFL as Windows 2008, we are using...
View ArticleOne Domain file server not translating SID's via the share or logged in as...
We have one file server which is behaving differently then all the rest.Server is 2016, if I log into he server with a domain account the SID's are translating correctly. However if I log in as the...
View ArticleClik here to view.
CPU LSASS high value on domain controllers.
Hi,Can anyone help me translating the value we are getting when we use Performance monitor on our DC. What does 300 stands for?Thank you in advance! Nikart
View ArticleHow to revert domain controller certificates?
The domain PKI is being retired. How do we revert the domain controllers to the default certificates instead of them looking to renew from the retired certificate authority?
View ArticleUnable to restore active directory from corrupted single server to dual...
I have a difficult to work with VM admin who after some time I found there were corruption issues. This corruption caused the replication between two VMs to stop working. It was out of my hands. It's a...
View ArticleSID translation is not working
Hello, I have an issue where SID translation on a file server is not working from a remote computer. Logged in locally on the file server SID translation works, but from any other workstation SID...
View Article