Clik here to view.
Cross-Forest AD Token Size
We have two forests with a one way trust between both forests. I want to know if i add a user from Forest A to the groups in Forest B will this affect the AD token size of the user in Forest A. Based...
View ArticleAD Replication issue - the destination server is rejecting replication
Hello, I have 3 DC servers, 2 in prod environment and 1 in DR and I just found out that the DNS Server is not replicating in the DR server. I change a DNS entry in 1 Prod dc last Mar 9. It replicated...
View ArticlePlanning and configurations Active Directory and DNS Services
Dear All,We have to plan and Design DC 2016 for 500-1000 Thousand Users, I need Proper Guidelines to set it up.1. How many Domain Controllers do we require for the load Balancing or Failover Purpose?2....
View ArticleAD backup
We have an Active Directory domain spanning multiple branches. Each branch is connected to each other and has two local GCs. While I am a developer at one of the branches, I am also a part-time...
View ArticleScript to Add User Account in Attribute Field in Active Directory
Dears,I have plan to add user manager account in division field in attribute field in active directory 2012. Kindly I'm looking for script to run in Power shell to set all user account managers in...
View Articlehow to delegate AD rights for creating dns A Records and modify only
Hi,Can someone tell me if i can give permission to user to create only A records and modify them. I don't want user to create other DNS records or delete current records
View Article_msdcs deligation folder security tab error
Hello,I keep seeing that the security tab for the _msdcs delegation folder will not show security items. Rather show a red 'X' with message "The requested security information is either unavailable or...
View ArticleClik here to view.
Hybrid Joined Devices - Windows Hello for Business
Hey @all,I've deployed 2 Windows Server 2016 VMs with Azure AD Connect and Hybrid Device Join. I've build a 2Tier PKI (based on 2 2k16 VMs) and followed these...
View ArticleCan't authenticate to PC in another Domain
Hello all, I need some assistance with authentication.I just recently established and validated a Trust to another Domain. For some reason my domain (ABC ) users cannot authenticate to XYZ domain. We...
View ArticleChange\SWAP RODC IP address
Hi All,This is regarding RODC migration from Windows 2018 to Windows 2012.Environment : Single Forest single Domain environment with 2 RWDC and 4 RODC. All DC are running in Widnws 2008R2.We are in...
View Articledomain controller certificate expiring but CA gone
I have a domain with two domain controllers with certificates that will expire soon, but the issuing certificate authority has been demoted and the member server will be retired soon. Certificate...
View ArticleDisabled user sscript
I found this script in a older forum. I was not able to reply so I thought I would repost. It works well I needed it to export to a csv . param([parameter(Position=0,ValueFromPipeline=...
View ArticleIF our DC Down user not able to access file folder and network printer or...
Hello Team ,We have DC server and ADC server domain and forest functional level 2000 Native . DC and ADC sync successfully if our DC Down ( which is hold all FSMO role) user not able to access file...
View ArticleWMI Query for Office 2016/Office ProPlus(Click to Run)
Hi All,Could you please guide me to apply a GPO using WMI filter so that Office 2016 and Office 365 ProPlus can be targeted at the same time or through a single query.
View ArticleWhy CA refreshes templates from DC
List of Certificate Templates seems to be refreshed periodically. If ADCS is inactive (no certificate is issued) for approx. 15-20 minutes it takes a long time (20-25s) refresh the list of...
View ArticleAdditional Domain Controller is not authenticating when Primary Domain...
Hi,I have a Primary Domain Controller and Secondary Domain controller. The problem is that when Primary Domain Controllers goes down, Secondary Domain Controller does not authenticate the users.I've an...
View ArticleAD Win2K8 R2 Native Mode ... IsDomainMaster and MaintServerList
Hello - we have 100+ Win2K8 R2 DC's deployed, running native mode ... noticed even the PDC Emulator has "IsDomainMaster" registry key set to "blank". The MaintServerList is set to Auto on all DCs....
View ArticleRemove-ADOrganizationalUnit : Access is denied
I have a windows server 2008r2 domain called sl13.mycompanytest.biz. I am running powershell on the server as a user that is a member of the following groups : Domain Admins, Enterprise Admins, Domain...
View ArticleLocal Admin GPO Strange Behavior
Hi I have a problem with GPO. We have LAPS configured. All computers located in one OU named Corp_Computers. Also we have group named "workstation_admins"( members are helpdesks) which granted to read...
View ArticleDFSR Migration Stuck
A few weeks ago the domain controllers in our Lab domain was attempted to be migrated from FRS to DFS. The domain is at Windows 2008 R2 functionality level and the DC's are on Windows 2019. When the...
View Article