Active Directory with Multiple Sites
Hi All, We have around 8 AD servers along with 4 multiple AD sites running 2008 server. More Than 4500 users with multiple subnets. All the AD servers are running some application and services like...
View ArticleUnable to create user accounts until DC is restarted
We have experienced 3 times lately where we have been unable to create user objects in Active Directory. The first two had the same errors. I'm not sure if the third one is related or not. I have 4...
View ArticleDFSR fails with partner that no longer exists.
Short version: one of our domain controllers has DFSR Event 5008 errors, regarding a domain controller that has be demoted and removed from our domain. It is the only domain controller, of five, to...
View ArticleProblems with Junction on DC
Recently we upgrade (migrate) domain controllers from WS 2003 to WS 2016. The Domain functional level is still on 2003. Everything was looking fine until the clients wasn’t able to take the GPOs. We...
View ArticleADFS 3 (Version 6.3.96.17238) - Authentication across multiple forests
Hello,I've inherited a partially completed ADFS implementation. The purpose is to provide authentication services for a in-house Web application. We have a 2-way trust between Domain A and Domain B. We...
View ArticleCan't access external website from local domain (variant)
Hi guys, Wondering how you address this issue which is a vairant of the "can't access external website from local domain" issue. Our internal AD domain is called company.com Our external website is...
View ArticleFine Grained Password Policy Not Taking Effect
The domain functional level is 2008. I have set a Fine Grained Password Policy with maximum password age of 30 days along with other settings that are similar to existing password policies. I set the...
View ArticleDomain controller virtualization
Can we virtuallize the windows 2003 domain controller? Is there is technet article available from Microsoft which can be referred?
View ArticleNew DC netlogon issues
So about a month ago I transferred FSMO roles over to a new physical server and shut down the old. We only need one Dc as there are only about 10 users on the domain (I know that's not a lot but it's...
View ArticleAD Site Connection
Hi guys, I need advice regarding AD Site Connections.Breakdown: I have 5 Sites. Lets called them Site A, B, C, D and E. Each site have two domain controllers each. We can say A1(Site A Domain...
View Articleldap_add_ext_sW error 0c44(68 (Already Exists).
I'm trying to create an OU using the command prompt. I am running the following command in ntdsutil partition management:create nc DC=xxx,DC=xxx,DC=xx NULLIt gives me the error:ldap_add_ext_sW error...
View ArticleDomain controllers won't allow login at console if network is connected....
This is a strange one. It keeps happening... I have a total of 8 Domain controllers, this only happens to one specific site and one specific child domain.Server 2012r2 and Server 2016. forest level...
View ArticleHow to Perform Domain Joining with different subnets or networks??
Dear Team,Consider my organization having different subnets or networksMy Domain Controller (With DNS)Ip : 172.17.23.152subnetmask : 255.255.255.0Gateway : 172.17.23.12ND Domain controller (With...
View ArticleStrict replication consistency 2016 DC
I am building a new Win2016 DC to add to a Win2012r2 domain/forest. Do I still need to add the reg key for 'Strict Replication Consistency' to a 2016 DC? Thx
View ArticleCannot delegate permission to move user object from OU to its subOU
Hello,like I said in a title, I am trying to delegate permission for moving user object to its subOUs.I have spent lots of time doing research and tests on this topic and almost all of the answers says...
View ArticlePDC Crashed now No access to any AD tools or ADSIEDIT from SecondaryAD
Hi, Need urgent help guys... I know not a Good setup.. but thats what our budget allowed us...I had I physical server AD and on top of it I had HyperV with SecondaryAD, Exchange. A normal iCore5...
View ArticleInteractive Log On, badPwdCount not correct
Hello,I've been scouring the internet without finding anything that is helping my situation. My problem is that it seems like some of our workstations on the interactive logon screen show an wrong...
View Articlehow to prevent reuse of account names
The goal here is to prevent accounts from being created with the UPN of an account that existed in the past. So if employee A leaves in 2015, that account ID should never be used again. Is there a...
View ArticleDNS Scavenging for 3 domain infrastructure
Hi All,We have 3 different domains under same forest and DNS scavenging is working good for 2 domains (zones) and for another one it's not working as expected. Is there any way to find and fix it?I...
View ArticleClik here to view.
I can't figure out how to replicate between two servers in different domains?
Hello,I posted originally in the Hyper-V section but it was suggested the question was a kerberos problem so I should post here. i've done replications between servers all the time - sometimes they...
View Article