Error joining domain - The service cannot accept control messages at this time
Hello,I'm having a strange issue connecting a Windows 2003 Server to my domain.BACKGROUNDWe have a production environment with several critical virtual servers. We also have an isloated DR...
View ArticleAD 2012 issue with deleted users still reside in the directory
Hi,Let me start from the AD setup I have: WS 2012 (Primary DC), WS2003 (Secondary), 2 x 2008R2 DCs.I had a child OU (Test) in one of the root OUs (Sales Users) and I was trying to move Test OU to the...
View ArticleUnable to promote server to domain controller after demoting it...!
Hi everyone,Here is the story. I have 2 domain controllers, 1. pv-dc01 and 2. pv-dc01rep(replica). The software that I have used for the servers is the server 2012 evoluation. Now as u may know, before...
View ArticleADFS 2.0 compatibility with ADFS 3.0
We are using ADFS 2.0 for SSO and we want to upgrade to server 2012 and it uses native 3.0. We are using an outside vender that uses the ADFS 2.0. If we do the upgrade to server 2012 and ADFS 3.0 will...
View ArticleHow to transfer profile information to one domain to other domain
Hi Now now i am having one domain(ABC.com) with 700 computer and now my organisation is plan to change our domain name due to some reason.They have some requirement in this migration . They want same...
View ArticleAD Accounts getting locked out
We are having a problem where accounts get randomly locked out. It happens the most over the weekend. I have checked the event viewer and doesn't show the computer that the account was logging onto. I...
View ArticleForest trust design with multiple network segments
We have three firewalled network segments A | B | C. A = our existing internal forest B = a single DC to be stood up specifically to create this trust C = external forestB is necessary as we are unable...
View Articleaccess denied after changing group scope
Hi,Because of a corporate merger, we merged two ADDS Forests into one common forest/Domain (oldDom ->newDom). We migrated all subjects (users/groups) from olddom tonewDom. We included the objetSid...
View ArticleMSMQ Acitve Directory Integration Permission
Hi,I have an application that uses MSMQ Active Directory Integration.While installing the application if i run as domain admin i am able to install that application.But as a normal user i am not able...
View ArticleMigrate a Windows Server 2000 to 2012
I have a very small domain (25 users) with the server being used as the DC and some very limited (36 Gb) file sharing, including a QuickBooks Db. I'm going t replace this with a new server running...
View ArticleUser Role in AD LDS - what is its purpose?
If a member of the User role cannot read the DIT in AD LDS, then how does it authenticate?What is the purpose of the User role in ad lds?Thanks,leo
View ArticleAD LDS Windows Principals - authenticating fails with ldp.exe
I am able to authenticate native AD LDS users in the Readers role successfully using ldp.exe and my app. Now I want to test Windows Security Principals. So on my LDS box I created a local Windows...
View ArticleHow to Design Branch Office with Single Domain Model
HI, We are going to set up 2 branch office through PTP link at different locations from our Main office.Our Main office has1. Single Forest, Single Domain with Active directory, DNS and DHCP...
View ArticleRemove old Exchange OWA Cert Authority
We keep receiving the following error messages on our Domain Controllers every 8 hours -"System Error: Source: DistributedCOMDCOM was unable to communicate with the computer exchange.domain.local using...
View ArticleDFS Site shows as "No site association" after OS upgrade
Hi,I upgraded one of my DFS servers from W08SP2 to W08R2SP1. Now the server shows the correct Site in the DFS Management GUI, but via dfsutil the Site information shows as "No site association" for...
View ArticleRODCs containing FRS backlog files
I just did an ADRAP and one of the things identified is a large number of backlogged files for SYSVOL on my RODCs. We still use FRS for our SYSVOL, we have a mix of 2008 and 2008 R2 RODCs, and they...
View ArticleThe security database on the server does not have a computer account for this...
This problems exists in the below Environment ForestA, has been around awhile, has one domain Called DomainQ ForestC, is new, has one domain called DomainR ForestC has a one way transitive trust to...
View ArticlePDC emulator isolated from member computers
We'd like to add a DC to our existing domain, and move the PDC role to it. The new DC will be in a DMZ where it has full routability to all other domain DCs, but zero routability to all other member...
View ArticleIPv6 without autoconfiguration
I'm trying to figure out how to get rid of autoconfiguration and auto-anything in IPv6.I don't want to expose my MAC addresses. I want to have static IP addresses on my servers, and I want to decide...
View ArticleCan I temporarily give users rights to add a HKCU registry key through active...
I want to add a REG_Expand_SZ key to this path (HKCU\software\Microsoft\office\14.0\common\general\ for all users when they sign onto their computers. However, we have restricted user access to edit...
View Article