Protect object from accidental deletion and delegated rights over computer...
Hi guys,This is probably a question covered many a time so apologies if it has, although i cant find one with a solution that i want.So i have delegated rights for a certain group to manage computer...
View ArticleExtensionAttribute not found in Attribute Editor
Hi,I can't find any ExtensionAttribute in Attribute Editor. Please advise is there any settings I need to apply to see the list of ExtensionAtttribute in Attribute Editor? ThanksPei
View ArticleAuthenticating from multiple PDCs
Pre AD (Active Directory), I could set up multiple BDCs (Backup Domain Controllers), and if my PDC (Primary Domain Controller) and one BDC was down, the other BDC would authenticate. AD seems to allow...
View ArticleLDAP web search not working on AD LDS instance
Hello all !Let me explain the goal before the problem :We need to setup a directory service in our DMZ so our web portal can provide an address book without having to connect to the AD. We setup (this...
View ArticleVirtual Service Accounts
Does anyone know how to list/create/delete/modify virtual service accounts? It seems like MS is now intent on creating entities capable of logging into my system but I have no way of listing or...
View ArticleAdam SYnc Issues since week-end
Good afternoon, We use AD LDS with Windows 2008 R2. We succeeded to use, sync and retrieve datas with Active Directory.This morning I notice an error on Syncs log file : " Processing Entry: Page 1,...
View ArticleDns.GetHostEntry returns a nonexistent name
My C# code, string szHostName = Dns.GetHostEntry(e.SourceAddress).HostName; (e.SourceAddress is a returned arguement of tyrpe string from a mcast event), is returning a name that does not exist in my...
View ArticleDomain userrename
Hi,How to rename domain user account from user1.user to user1_user . With out affecting anywhere in the domain and should not be get effected on user profile.?We are using Windows Server 2008 R2
View ArticleHow to import a certificate into the AD DS personal store in Server Core
I found this article that shows how to do it in MMC but our DC are all configured in Server Core.Event ID 1220 — LDAP over SSLhttp://technet.microsoft.com/en-us/library/dd941846(WS.10).aspxDoes anyone...
View ArticleAgreement of Company Security Policy
We want yours to acknowledge the Company Security policy when prompt to change there password.Any thoughts?I will enable the Password Policy in Group Policy to establish the parameters. Any way to...
View ArticleShutdown showing up on DC's even though access should be prevented
Windows 2003 as the "primary" DCRemove and Prevent access to the Shut Down command is enabled, yet the users of the group that the policy is set for can still shut down the DC's... any ideas?
View ArticleConsiderations when shutting down a domain controller for maintenance
Hi All,Apologies for asking this. I know this type of question has been asked on here before, but I ask again I ask as everyone has a different domain topology.I have three forests in my network, split...
View ArticleWebsite hosted on forest 2 unable to authenticate from users on forest 1....
Hello,Firstly, thank you in advance for all the readers who are taking their time to assist all of us with our dilemmas. I have a website hosted on Windows Server 2008 R2 Enterprise, which sits on one...
View Articlecomputing of modified timestamp attribute in the schema partition
Hello,i have problems understanding the modifiedTimeStamp attribute especially in the schema. I found on MSDN and Technet that this attribute is computed from the whenchanged attribute of the same...
View ArticleCreating a DNS A Record for depricated domain controller good thing to do?
Hi all,I have been tasked with a full domain controller upgrade from 2003 to 2008 R2. Company won't go to 2012 till next year but it's on the cards at least.The upgrade has basically been to install...
View ArticleTwo Forests share the same vlan address space?
I have two AD forests. Forest A has two dc's in main site. Forest B has two dc's in main site. They do not live in the same vlan.I'm implementing sites and services so I can add additional dc's to...
View ArticleBacking up Active Directory in Mixed Mode
Hi all,I have a domain running in mixed mode (2003 SP2 AND 2008 R2) I am trying to figure out the best way to back it up.So far on one of my 2008 r2 DC's I have configured a daily backup using Windows...
View ArticleDifference between "Replicating Directory Changes", "Replicating Directory...
I have been scouring the Internet trying to determine the difference between the "Replicating Directory Changes", "Replicating Directory Changes All", and "Replication Directory Changes in Filtered...
View ArticleAD LDS fails if an user belongs to more than ~2000 groups
Hi gentlemen, If I have more than 2000 groups (~2025) associated with an user, that user is not able to access to ADAM at all. If I try to connect using ADSI (as that user), ADSI fails with error:...
View ArticleRetiring Active Directory Forest: Last DC, DCPROMO or shut down?
Years ago, we have acquired a Windows 2000 Forest with resources that have already been migrated over to a Windows 2008 AD Domain.This Windows 2000 Forest has no child domains and only has one domain...
View Article