Creating posixGroup object in Directory
I would like to create an item with the following attributes in the directory to map some user groups for Linux clientscn=xx01-privateobjectClass: posixGroupgidNumber: 1945memberUid: Ā xx01-privatethese...
View ArticleClik here to view.
Adding Access Control Conditions?
I am following this:https://social.technet.microsoft.com/wiki/contents/articles/26945.authentication-policies-and-authentication-silos-restricting-domain-controller-access.aspx Trying to add a...
View ArticleAD/Kerberos dropping SPN in database during ticket
forgive the double posting, but I selected the wrong forum initially.I am having a problem with a user account getting this error consistently for the past few months.Ā I have finally narrowed it down...
View ArticleFederate to SQL server while doing a windows desktop login
ļ»æļ»æļ»æWe have a SQL server which acts a user data source for some of our custom SSO services. Now, we are in the process of introducing Active Directory. Post this, we expect that whenever a user logs...
View ArticleOffline files disappear when going back online
Hello,We are looking at deploying a fleet of laptops.Currently our desktop users have Folder Redirection and DFS.We would like to utilize this for our laptops, but with the added feature of offline...
View ArticleDNS Forwarder
Team,Please share me best practice link for DNS forwarder.... Currently my infra configured directly pointing to public, which is not safe.
View ArticleReplication time and Authoritative or Non-Authoritative Restore
Hi all,Can anybody tell me what is exact replication time frame when we talk aboutAuthoritative or Non-Authoritative Restore of Active Directory? The key issue here is exact time: "not yet replicated"...
View ArticleDFS Replication Errors
Hello I'm sort of new to DFS replication.I'd like to get our DFS jobs running again.Ā One thing I'm worried about is replicating in the wrong direction and having our user community lose production...
View ArticleNeed to know the default value for LdapSrvPriority and LdapSrvWeight for Read...
Hi,I would like to know what are the default values āāfor the priority LdapSrvPriority in an RODC and the default weight (LdapSrvWeight) in an Read Only Domain Controller.We are working with Windows...
View Articlead / sysvol version mismatch although all AD and SYSVOL GP versions correct
HiI am suddenly getting "ad / sysvol version mismatch" error on few group policies when doing gpresult. I have checked all the GPOs versions in AD and SYSVOL on all 3 DCs and they are correct, Sysvol...
View ArticleCustom attribute
Hello! Is this possible to create attribute for user which value is part of DN of this user.dn=cn=username,ou=ou2,ou=ou1,dc=mydomain,dc=localI need ou name which is parent for parent ou of object -...
View ArticleHow much RAM does each 'secure channel connection' to a Windows Server...
Hello :)I am trying to obtain a more accurate way of working out the RAM for a domain controller, I know RAM is relatively cheap and I could therefore just add more RAM ant not think about it too much....
View Articlequestion about ad lds authentication in workgroup and replicated from active...
Hello,I have an application which is designed to use directory services for authentication and its network is not controlled by our organization..I would like to know if I can deploy an ad lds instance...
View ArticleSome users do not have any timestamp information
Hi there,I faced an issue while trying to detect legacy user accounts in MS AD environment. I used PS tool to load all active users with "LastLogonDate" property and found out that only few users have...
View ArticleGPO override/chagne for local user only - help
Hello, I have users in domain MSB, but computers (where users log in) are in different domain MSA. I cannot change that, it by design. I needed to setup profile redirect, drive mappings, etc. These...
View ArticleClik here to view.
Revoke SubCA Certificates
Hallo,we have an offline Root CA and two subordinate CAs. I renewed the SubCA certificates but made a mistake. I renewed the CA certificates once more with the right parameters. Now the "wrong" SubCA...
View ArticleFew Questions about RSAT
Hello all, I apologize if this has been answered somewhere, but after searching through the internet for half a day yesterday I've been unable to find anything for a few questions I've had. I would...
View ArticleAD lookup not using domain in 1809
Most of my users upgraded to 1809 in the last week or two and now they are having issues with network resources. The symptom is an active directory user (Scanner) can no longer access their shared...
View Articleconstrained delegation for sql
my domain hasĀ an spn for domain\AppAccount for mssqlsvc/MySqlServer.domain.com. appaccount is running the sql service on MySqlServer.assume unconstrained delegation has been working with this setup for...
View ArticleActive Directory 2016 Multi factor authentication
Hi all, I have been looking for info on this for a little while but i haven't been able to get a solid answer so i was hoping you guys might have some more info. My company is looking to deploy some...
View Article