Correct sequence for adding new DCs, Sites and Subnets
I'm interested to learn the correct sequence for adding new DCs, Sites and Subnets, so that I can avoid creation of unnecessary/unwanted DNS entries and/or AD objects.Current Environment:2 x DCs in...
View ArticleADMT v3.2 Interforest user migration fails
Hello, I'm having a hard time migrating a user from one forest to another. I'm using 2 different domain controllers in different forests and I've already established a forest trust. The source DC is...
View ArticleUnable to join a windows 10 device to test domain
Hi,I have built a test lab win VM Workstation to test various upgrade options.I have used Windows2012 R2 as the server and have installed all the necessary options and promoted it to a DC. I have 2...
View Articleldp say forestFunctionality: 0 = ( WIN2000 ); but is W2008
Hello, I'm try to add a new W2016 DC to my domain (2 DC W2008 R2 already presents), I can't procede to promote W2016 to DC because says that forest level is W2000.In both DC W2008, in mmc gui, "Active...
View ArticleLastlogonTimestanmp Shows Future Date - showobjectmeta shows...
I have several machines that show a last logon in the future.I ran repadmin /showobjmeta DC "OU Paths" >temp.txt and the output for the DC looks like a GUID.Loc.USN Originating DSA Org.USN...
View ArticleCan't log in to local computer after created active directory
Hello, so I have some problems...I'm a computer systems student and now I'm studying system administration.I'm using Windows Server 2008 R2 on VMware software.I had a task to try create an active...
View ArticleProtected user group in 2012 R2
Hi, I have few privileged user account in my domain, planing to implement "protected user group" authentication mechanism. All my NetApp shares can be connected using IP address. Technically if user is...
View ArticleUser Account Issues
I purchased my laptop from my previous company when I was leaving and I kept all of the info on the laptop. I had a username with admin rights on the company domain. Since the company removed me from...
View ArticleWhat is the recommendation for DNS when using multi-domain forest
Hello, can someone please help me with the following questionIf I have a Forest with a 'tree' under to forest root domain as followsForest-Root.Local # forest root domainTree01.Local # which is a...
View ArticleAdding a UPN Suffix that is already synced to O365
Hello,We have 2 forests: one.org and two.ca; Both are synced with Office365 in a single tenant.We would like to add a UPN suffix called two.ca to the one.org forest - will this cause any issues since...
View ArticleInstallation of Certificate Authority Role
Where should I install certificate authority role ? do I need to have dedicated machine in a domain, can I install in domain controller where Active Directory is installed.Thanks, Ram Ch
View ArticleForest level before migration to o365
Hello All, We're in the middle of a migration to O365 and we're currently in hybrid mode, my question is does our domain/forest level need to be at a certain level for the migration? Does it matter if...
View ArticleHow to set up deny interactive logon with limited hours for service account
Hi,I am looking for a solution to set up deny interactive logon with limited hours for service account.Since it is a service account, the service has to run all the time. But I would like to configure...
View ArticleSyslog daemon and Auditing daemon
What is an SYSLOG daemon? What is an auditing daemon?
View ArticleWhat does error code 8007203c mean?
While performing modification actions in Active Directory, Error 8007203c error occurs.
View Article(apparently) random AD accounts keep being locked due wrong logins
Hello there,we have an issue since beginning of August where Active Directory accounts are being locked - not always the same accounts. It really seems to appear randomly. So far these accounts having...
View ArticleMapping Network Drive via GP for Security Groups - Win Server 2016,
Hello,I would like some help with mapping network drives for multiple users via group policy that are all in pre-organised security groups. I have seen a few posts/videos, documents on how to map via...
View ArticleDirect LDAPS connectivity into internal Active Directory
Hi all,I am looking at a solution which includes 3rd party access into the internal AD environment directly via LDAPS. The connection is external and via the internet. The purpose of the connection...
View ArticleW2008R2: replication error 8418
Hi, I have two servers, running repadmin /syncall /e /dI obtain following message: CALLBACK MESSAGE: The following replication is in progress: From: CN=NTDS...
View Articlesecure channel
I am needing to get some understanding on the secure channel. What makes if intermitted? I was under the impression if the secure channel was broken then a user would not be able to login to a...
View Article