Unable to modify the wellKnownObjects attribute when changing default...
Hello, I'm preparing for the 70-640 exam. In attempting to redirect the default domain computer OU, I entered the command redircmp "CN=CLIENTS,DC=contoso,CD=com". I get the error -unable to modify...
View ArticleDelegate permission to modify UPN
Hello allPlease let us know how to delegate permission for User to modify UPN for user object in an OU.regardsAamirNA
View ArticlePassword Not Required: Computers
I was running a utility to check our AD for password problems. It comes from KnowBe4 and is called the Password Exposure Test. It found some computers, not users, that were listed as "Password Not...
View ArticleActive Directory Security Group membership based on specific attribute
Trying to figure out if there's a way to create an AD security group and populate its members with user objects that have a specific attribute. Example: ABC Security Group User XYZ has attribute...
View ArticleAD FS Unable to find Expired certificate
Hello,I recently setup an ADFS connection with an external service and get a "connection not secure message" when I am redirected to our /adfs page due to a certificate that has expired I have looked...
View ArticleWindows Server 2019 domain controller deployment
Hello, we have 4 domain controllers. Three are running windows server 2008 R2 and 1 is running windows server 2012 R2. Our primary domain controller is one of the windows 2008 R2 servers. Our domain...
View ArticleDefault Domain Controller Policy
Hello EveryoneWe have a domain controller environment and as it is, we have a default domain controller policy in place. The Default domain controller has following setting:Enforced : NoLink Enabled :...
View ArticleRepadmin /replsummary Error (8606)
Hi,I have 5 DC in 3 different networks (DEV, TST, PRD), all DC are are2012 R2 except PRD-ADV3 that is 2008 R2.if I run the command Repadmin /replsummary from all DC I receive the error...
View ArticleRODC in DMZ - User Accounts can authenticate - Computer Accounts can not
Hi everyone,i am having a RODC in a DMZ. Useraccount Authentication works fine (IIS and RDS Gateway) - but computer authentication does not.Our RDS Gateway works with non domain joined computers. But...
View ArticleRecord SRV issue with domain controler
Hi,I have an issue in a customer environment.2 Domain controller AD1 + AD2. Both 2016 server and both DNS.AD1 is configured with AD2 as first DNS and AD2 is configured with AD1 as first DNS (127.0.0.1...
View ArticleLAPS Install: Update-AdmPwdADSchema : The requested attribute does not exist
has anyone seen this issue before, I'm having problem running the following command for LAPS to work but its takes me nowhere using online searchThis is what i have done1. I'm an schema master admin,...
View ArticleGroup User Update - VPN
When the user is on Cisco VPN or any third party VPN on a Windows 10 device the user group membership does not enumerate properly. For example, we have a group called W10RemMedia that we add users that...
View ArticleClik here to view.
Access Denied while updating GPO from Domain Controller &
I have OU for Server in DC (blocked inheritance) with over 100 Servers in it, there are around 6 policies applied. I have two issues described below:1. While applying "Group Policy update" from OU in...
View ArticleHow to find out which users are going to be disabled and how to send out a...
I'm new to this, so bare with me please... We have contractors that have access to well everything until their contract ends. What I need to do is a bullet list of things, and if I can find a way to do...
View Articletrying to applocker modern Snip and Sketch packaged app, error on client...
Environment is Server 2019, client computers are Windows 10 Enterprise SAC 2004.Applocker is enforced, default is no apps are allowed. Goal is to whitelist the modern Snip and Sketch packaged app via...
View ArticleDCPROMO never completes
Hi All,I'm busy with 2 new DCs for a client. Done numerous DCPROMO's without an issue up until now.When I DCPROMO, the prerequisites all pass with no issues. It then starts to prepare the installation,...
View ArticleClik here to view.
NIS server alternatives for Windows Server 2016
It seems NIS server is no longer available since Windows Server 2016.Currently we're using Windows Server 2012:Anyone knows alternatives for Windows Server 2016?thanks in advance,olioli
View ArticleAn operation error occoured - when implementing LAPS on Win2012 server
I’m trying to implement LAPS (Local Administrator Password Solution) on a Server 2012.The LAPS software has been installed with the Management Tools as the documentation describes.The import of the...
View ArticleEnabling SSO with ADConnect
When I try to enable Single Sing-On with ADConnect (fresh install, just yesterday first synced), it says "An Error Occurred while locating computer account". I do enter valid Domain Admin...
View ArticleGPO for outlook auto archiving features
Good Morning Team,My client is running a on prem Exchange 2016 organization with several servers in a DAG. They are running the latest CU16, and clients are in a Windows 2016 single forest/domain with...
View Article