SMBv1 for trusting and trusted Domain
Hello All,We are upgrading our environment (abc.com) to win2019 Domain controller so which mean SMBv1 will no longer will supported and we have external & forest trust relationship with few other...
View ArticleClik here to view.
Windows Server 2016 error 1864.. How to fix it?
Hello Microsoft Community, I had this error before and after performing D2/D4 to recreate Sysvol and Netlogon...
View Articleobjects linked to a computer SID
Gents,I'm trying to find a way to have a comprehensive list of objects related to a AD computer (or possibly its SID) in order that, before deleting that Computer Account, there will be no orphaned...
View Articlefailed test DFSREvent and 1b" could not be registered on the interface with...
Dear all,I have the following topology:Two domain controllers (windows server 2008 r2 ) and one cas/hub server and one mailbox serverWe have to shut down the primary domain controllers for physical...
View ArticleSecurity Group Membership Not Being Applied to User
Hi allTheres's an problem when a tried to add a any user to a new Specific Group (Member Of). In this case this group controls the user Web Access in my company. In my AD exists FilterWeb_Level1,...
View ArticleAD ACL migration
What's the best way to migrate 100+ ACL from one AD to another AD not in the same domain?My employer purchased another company and need to migrate ACL running on AD Windows Server 2012 R2 to AD running...
View ArticleActive Directory - Lowering the FFL/DFL
Hi all,I have two On-Prem Exchange environments; the legacy Exchange 2007 SP3 RU 16 (empty databases, no PF), and our Production Exchange 2013 CU22 infrastructure, which holds 1,400 mailboxes. We need...
View ArticleCan Resource-Based Kerberos Constrained delegation Work across 3 domains?
Here is a scenario:User accounts are in a user domain. let's call it USERDOM1Multiple SQL Server instances are installed in a server domain. Let's call it SERVERDOM1. Multiple SQL Server instances are...
View ArticleMigrate Server 2008r2 to 2016 Rebuilding Active Directory from Scratch with...
Hello All, I'm tasked with taking an old 2008 Active Domain structure and move it over to Server 2016. The Active Directory services is to be rebuilt from scratch. I've got to keep the old domain...
View ArticleThe security of this directory server can be significantly enhanced
hi all,today tI found that replication was not occuring because of one of the objects can not be updates as follow ctive Directory Domain Services could not update the following object with changes...
View Articlecertificates role in ldaps for windows and linux clients
Hi,I would like to know how certificates work in both windows and Linux clients.Here is my setup. We have a windows internal CA, we have windows domain controllers that serve as our ldap server. We...
View ArticleApplication LDAP connections to wrong AD Site
Hi,I have some application that points to mydomain.com to lookup the domains available.the problem is it returns all the domains in both sites.is it possible if I ask for domain controlers it will only...
View Article2012R2 Backup DC not working correctly
We have a simple domain, 2012R2, 2 domain controllers and a dozen member servers, pretty much out of the box.When both DCs are up it appears as if everything is working fine, BPA and AD Replication...
View ArticleRODC in place upgrade recommendations
Hi All,We are having a client with 20 Domain controllers in Data Center and 500 RODC's in Windows 2008 R2 OS. They want to introduce Windows 2012 R2 domain controllers in Data Center and perform...
View Article2003 Server DC Promo
Hi All I'm current trying to retire my 2003 SBS Server, it was the only domain controller but I now have a 2016 DC will all roles migrated over to it. Issue is when I run DC promo to demote the 2003...
View ArticleHow can I set up complicated rights on existing directories
One of my clients has an existing data folder with a layout similar to this:Part 1 -Drawings -Specifications -Inspection -Notes Part 2 -Drawings -Specifications -Inspection -Notesthrough a few hundred...
View ArticleHow to convert Local Profiles to Roaming Profiles?
Hi,Older user Profiles on our domain were set up as local profiles. Any new user accounts are now being set up as roaming profiles.Is there a way to convert the older local user profiles to roaming...
View ArticleUnable to Start AD Certificate Services
Hello, I receive the following error when starting ADCS. The revocation funActive Directory Certificate Services did not start: Could not load or verify the current CA certificate. BPGLTD-PHLCERT02-CA...
View ArticleUpgrading offline root CA in two tier environment?
Hi, our root and issuing CA's needs renewing because the lifetime is being reduced.The current offline root CA is based on a Windows 2003 which does not support SHA-2. So I had a clever idea to set up...
View ArticleForce check User Account in Forest not in local domain -- consideration / advice
hello everyone, i have been task to design a forest with independent IT structure. and we designed a parent/ child forest. now I want to create rules for make new user account in Domains. first of...
View Article