Duplicate SPN
Can having a duplicate SPN for SQL cause problems with AD User and\or machine authenticating from different subnets away from the SQL server and DC? DC and SQL are in the same subnet.
View Articlejoin client pc to domain
Hi,If I want to join a pc (test001) after osd with an existing name (test001in the ad ) ,I have to delete test001 from the AD. It gives an administration issue .Is there a way to solve the problem...
View ArticleHow to get workstations for group of users in AD using powershell script?
Hi, Guys.Do you know how to get workstations for group of users in AD using powershell script?Thank you.
View ArticleAD 2016 Password filter DLL
Hi All,I`m looking how to create and setup the password filer dll on AD 2016, I`ve seen Microsoft documentation but helpless...
View ArticleUsage of -ServicePrincipalNames when creating gMSA accounts
This question is based on the below article,https://docs.microsoft.com/en-us/powershell/module/addsadministration/new-adserviceaccount?view=win10-psAs per the example the usage will look like below for...
View ArticlePrevent users from changing domain password from workstation
I would like to prevent my users from changing their domain passwords from their workstations. We have a password reset portal that sets the users password in a number of places besides AD. I know...
View ArticleLAPS Installed , But Unable to see the Password
Hi , We have implemented the LAPS for manage the local admin password . we have configured the GPO and installed LAPS clients . But unable to see the password LAPS UI . Using the below cmds we have...
View ArticleFSMO scinario
Dear Tech,i have three domain controllers in single forest and single Domain but its located in two diff locations. in location "x" their are tow domain controllers and forest wide fsmo role...
View ArticleThe permissions on NETLOGON (server) are incorrectly ordered, which may cause...
Hi Support,How can I troubleshoot this problem.If I select reorder will it fix existing permissions issue?Is it recommended to reorder fix on NETLOGON?What are the default permissions on NETLOGON...
View ArticleA question about Immediate and Urgent AD replication
The Microsoft documentation on the following does not make these point clear (especially question 2). Therefore I wanted to ask the question here and hopefully a member of the MS AD team will pick it...
View ArticleError While Query Get-AdComputer
Hi Team,I am just writing a below query to display all the computer in our domain but somehow it is giving an error . When I check the excel sheet it only shows up 256 entries we have almost 7K...
View ArticleThe specified account already exists.
HELP.I am in a twist here as to what is going on and am unable to resolve.History.Two of our Domain Controllers Tombstoned due to network card issues. I attempted to demote the controllers but had some...
View ArticleRegarding Authentication Logs Printing on Domain Controller
Hello Everyone,I'm ingesting domain controller logs into QRadar. My question is regarding user authentication on a windows machine using local instead of domain name, does the authentication logs...
View ArticleSPN Question
My domain FQDN is bob.bobautomotive.com. it is a single domain all devices are registered to bob.bobautomotive.com. I have clients who record an event in windows saying cannot find domain bob. there...
View ArticleActive Directory - PreHash Password While creating Users
Hi We are trying to automate the Active Directory Deployment in cloud, as part of that we are looking to create users provided users provide us a pre-hash value of their password and using that we...
View ArticleQuestion regarding SID History filtering
Hi All,We are working to test the security of Active Directory external trust. As per Microsoft TechNet articles if we disable SID history filtering then the Administrators in trusted Domain can misuse...
View ArticleMigration from SBS 2008 (AD/DNS) to Windows Server 2012 R2
I'm trying to retire the SBS 2008 server. I need to move AD/DNS to a new box running Windows Server 2012 R2. The WS 2012 R2 has been promoted to DC, FSMO roles have been transferred, DNS replicated,...
View ArticleLDAPS
When we install LDAPS certificates on domain controllers, will the normal traffic for user and computer authentication and replication, group policy etc.. also use LDAPS as opposed to LDAP?
View ArticleAny limitations Or disadvantages with using msds-memberoftransitive?
Hi,Using msds-memberoftransitive attribute to get direct and transitive(nested) group membership of users. Would like to know if anyone there using it and any limitations with using...
View ArticleHow to Reactivate my windows ?
Hey all, i did format my system. Now i dunno where to activate my windows. Can someone help me out ?Thanks
View Article