Opinion on using external secure LDAP for SSO authentication?
Hi guys,We are 2008r2 forest and domain levels. We do have ADFS setup and would normally try to use it for this kind of stuff, but we are wanting to do business with a vendor that wants to do external...
View ArticleUser Profile or Home Folder Issue
I am facing an issueI have Microsoft server 2008 Enterprise version, and Clients are Microsoft Windows 7 Ultimate versions,when client users login the systems, home folder or User Profile folder are...
View ArticleBehaviour of RODC in a Remote Site
Hello,This is with respect to RODC setup in a remote site, I have installed a RODC in the remote site (without any credential caching) all the administration is done from the central site.Also...
View ArticleUpgrade Domain Functional Level to 2012
Has anyone see any issues upgrading their domain functional level, specifically with Citrix Xenapp 4.5? I'm apprehensive due to the legacy version that we are running. Are there any other gotcha's that...
View Articlewindows 2012 DHCP option
Hi all,Two Windows 2012 DHCP servers at the same sitequestions:1) which way is better: to use failover or split scope between two servers?2)for failover, does it work when two DHCP servers are located...
View Articleoffline root - online issuing CA setup
So ive been reading a ton of posts and guides and im still a bit fuzzy on this.....currently following instruction from this...
View Articleclients may cause bad_address entry on a DHCP Server in Windows 2003 Server R2
clients may cause bad_address entry on a DHCP Server in Windows 2003 Server R2Regards Celio
View ArticleAD LDS fails if an user belongs to more than ~2000 groups
Hi gentlemen, If I have more than 2000 groups (~2025) associated with an user, that user is not able to access to ADAM at all. If I try to connect using ADSI (as that user), ADSI fails with error:...
View ArticleNew to AD Environment
Hello, everyone. I am a new admin to this environment and have some questions.Right now i have a simple domain and child.primary domain (domain.local)--2 DCschild (work.domain.local)--2 DCsIn AD sites...
View Articleusername challenge when browsing to: \\domain.local
I have a 2008 R2 domain with two sites. Each site has 2 DC's. Several windows 7 computers have difficulty browsing to: \\domain.local to enumerate the listing of shares on that server (Sysvol &...
View ArticleAD LDS What are reasons a search would fail?
I can successfully authenticate an AD user via an LDS proxy.However, when I do a search after the authentication, I get an object not found.What could be the reasons and how do I fix this?Is their an...
View ArticleADMT for Windows Server 2012
Hello All,Is there ADMT tool for Windows server 2012?Regards,Virish
View Articlew32tm /query /status Access is denied. (0x80070005) from elevated prompt
I am in the process of decomissioning the 2008 DC so I have moved all FSMO roles to another DC. The old DC is getting time from the newly promoted PDC as are the domain clients it seems.I have gone...
View ArticleWindows server 2008 unable to recieve promote from win2k12 or win 2k8 r2 only...
This was the error when i tried to join win2k12 to DC on win2k8"ADPrep execution failed --> Microsoft.DirectoryServices.Deployment.ADPrepLdapException: No Such Object. Server extended error: 8333....
View ArticleCleanup server metadata with AD Users & Computers assigns RID master role to...
I have a setup of 9 windows servers (four with Server 2003, four with Server 2008, and one with Server 2008 R2 x64). I am getting ready to bring online a second Server 2008 R2 server for Exchange in...
View ArticleAgreement of Company Security Policy
We want yours to acknowledge the Company Security policy when prompt to change there password.Any thoughts?I will enable the Password Policy in Group Policy to establish the parameters. Any way to...
View ArticleExtended Attributes not always visible
All, We recently created a new custom extended attribute called environment (type Unicode string) and related it the computer class. We can see the custom attribute in ADSIEdit. however, when...
View ArticleChange All User Settings in Specific OU(s) In Active Directory 2008
I want to Change the Password of All the Users in Some OUs in active Directory 2008.And Also i want to Change the Attributes of all users in specific OU(s).What is Procedure?Note:- My OUs names are in...
View ArticleClik here to view.
Red X on User object in DACL
I have an account that is explicitly listed in the DACL on some objects in my directory. In the DACL the user object icon shows the regular user icon with a small red x in the lower right corner of...
View Article