Error Installing Certificate Authority when selecting a specific CSP
Recently bought a smart card sdk from ACS. The kit uses the acos5-32 cards and the csp installed is version 2.5.On an Enterprise Domain Controller, the installation of the certificate authority is...
View ArticleStatic RPC Ports for AD - Inside or Outside Dynamic Port Range?
Hello! When setting static RPC ports for Active Directory as per KB 224196, is it recommended to use ports that are inside the dynamic port range, or outside the dynamic port range of 49152-65535?...
View ArticleDonot Replicat AD Win servers 2008 R2
PS C:\> dcdiag /test:registerindns /dnsdomain:FQDN /v Starting test: RegisterInDNS This domain controller cannot register domain controller Locator DNS records. This is because it cannot...
View ArticleDFS 2008R2/Win7: Does lowest-cost targeting work for a target in a trusted...
Hi - We have 2008R2-level AD, all 2008-level DFS namespaces, and all Win7 Enterprise x64 clients. We are a stand-alone forest/domain with trusts to a couple of outside forests/domains that host some...
View ArticleDCDiag failed test DFSREvent
Been trying to figure out what is going on. Completely vanilla install of 2012 ad ds on two servers. The second server fails DFSRevent in dcdiag. The first dc with all the fmso rolls passes, but...
View ArticleRODC to cache more than 1.500 passwords ?
Hi,The Microsoft "RODC Guidance for administering the password replication policy" says :"If more than 1,500 accounts (users, computers, or groups) are added to the Allowed list (the...
View ArticleConnecting a Windows 7 prof to Active Directory 2008R2 Datacenter
I can not seem to get my Windows 7 Prof (virtual) to connect to my Windows 2008 R2(Active Directory Datacenter. Every time I try to connect the Windows 7 machine to the Active Directory I keep getting...
View ArticleBranch Office Scenario
Here is the scenario I am faced with and I am looking for some input.My environment now is a mix of Novell (Edir) and Windows (AD) migrating to AD.I have 24 remote locations and 650 users most use EVPL...
View ArticleClik here to view.
Strange AD DS DNS?
Not sure what to say here. I am somewhat new to DS. I installed and added in DNS etc with AD DS in server 2012. I setup the dns as needed etc. This was about a week ago. Now today I login and find...
View ArticleChange All User Settings in Specific OU(s) In Active Directory 2008
I want to Change the Password of All the Users in Some OUs in active Directory 2008.And Also i want to Change the Attributes of all users in specific OU(s).What is Procedure?Note:- My OUs names are in...
View ArticleClik here to view.
How to display "Manager" field in ADUC View?
Hi,I want to view a Manager field in ADUC (Win2008 R2), please suggest.Regards,MaqsoodMaqsood Mohammed Senior Systems Engineer MCITP-Enterprise Admin & ITILv3 Foundation Certified
View ArticleDns.GetHostEntry returns a nonexistent name
My C# code, string szHostName = Dns.GetHostEntry(e.SourceAddress).HostName; (e.SourceAddress is a returned arguement of tyrpe string from a mcast event), is returning a name that does not exist in my...
View ArticleCan we use Windows domain account as Live ID?
Hi, We have accounts on our Active Directory and want to use as Live ID. I found documents from Microsoft team to do this last year unfortunately cannot find it for now. Can anyone have idea to use...
View ArticleAuthenticating from multiple PDCs
Pre AD (Active Directory), I could set up multiple BDCs (Backup Domain Controllers), and if my PDC (Primary Domain Controller) and one BDC was down, the other BDC would authenticate. AD seems to allow...
View Articledcdiag errors after installing 2012
I just installed a new 2012 server, made it a domain controller and transferred fsmo roles to it. Now dcdiag is showing the following errors (see below). I don't know what the appropriate actions are...
View ArticleActive Directory Design Review Skill Set?
Hello,I am hoping to get some help. I am interested in engaging a resource to do a full review of my companies current Active Directory implementation and advise the proper path going forward. I have...
View ArticleForce DNS Change for Active Directory Integrated DNS Zone After DR Testing
Hello, for an Active Directory Integrated DNS zone, what's the best way to force a DNS change to other AD DNS servers (for a large number of machines within the same zone)? Will incrementing the serial...
View ArticleClik here to view.
Group Policy Software Installation Packages Not Shown in GP Mgmt Console
This is a weird one. When I go into the Group Policy Management console, none of my Software installation packages are shown when looking at the "Settings" tab:However, when I go in to edit the Group...
View ArticleActive Directory issue
Objects are randomly being removed, and permissions are changing for User accounts in Active Directory. I can give myself permissions for Domain Admin, and ten minutes later it's been removed. I am...
View ArticleClik here to view.
Trying to restrict delegate control access in ADUC
So, we want to delegate control of specific OUs in Active Directory to users, but only allow them to change phone numbers and titles. So far I've been able to restrict nearly everything by allowing or...
View Article