LAN Issues when the WAN link is down - with RODC
Hi all,I have a really strange issue. One of my customer site has a domain controller and additional domain controller in the Head Office. Branch offices has RODCs. There are 6 sites with head office...
View ArticleNew Print Server 2008 R2: Find Printer is not listing any printers in the...
Hi, We have Active Directory domain; I have added a new Server 2008 R2 Print Server for my domain I have 10 printers been installed and shared. And each printer has "List in the directory" has been...
View ArticleDeploy DFS to large enterprise
What is the best way to deploy Distributed File System (DFS) to a large enterprise where you want user folders created for all domain accounts? Is there a script or powershell script to create the...
View ArticleTombstone lifetime and backup confusion
Hi All, I am reading about AD backups and tombstone values. The numbers (60 day versus 180 days) is all good, but the workflow that would cause problems does not make much sense to me. Although I would...
View Articlefederation metadata URL fails with 404 or 500 error
I am building a standalone adfs server to connect CRM which is hosted by Microsoft. The problem I'm having is whenever I go to https://example.mycompany.com/FederationMetadata/2007-06/ I receive 404...
View ArticleHow can a user reset his forgotten password ?
Is there a way that a user can reset its forgotten own password (in a windows AD domain) without using 3rd party applications like ADSelfService Plus or Password Reset Pro ? What do you think, is...
View ArticleLast Logon and Password expires - difference
Hiwe have Main Dc and child DC in this scenario we are pulling reports of "last Logon" and "PasswordExpires". we are finding the difference that "last Logon" is greater than "PasswordExpires" so can...
View Articleldapsearch example with SASL bind
I am trying to do OpenLDAP integration with Microsoft AD/LDAP. For some initial troublehooting purpose, I am looking for using ldapsearch command with SASL bind (DIGEST-MD5). Can anyone give me the...
View ArticleUser Role in AD LDS - what is its purpose?
If a member of the User role cannot read the DIT in AD LDS, then how does it authenticate?What is the purpose of the User role in ad lds?Thanks,leo
View ArticleAD Architecture Question
I know i should be able to find this, but i haven't found a good discussion.I need to build a hosted environment - hosted Active Directory is the easiest way to explain it, for user auth. It would be...
View ArticleProblems joining a Windows 7 Machine to a Windows 2003 Domain Controller.
I've got an interesting problem that I'm hoping someone has seen before...Mixed Domain Controller Environment: W2K3 & W2K8R2Domain Functional Level: Windows Server 2003Forest Functional Level:...
View ArticleQuerying Attributes from Extended Schema
All,Our company recently extended our AD schema and added a new attribute "environment" to the computer class. This attribute is not visible via powershell and or ADSI in powershell. The attribute...
View ArticleCan I temporarily give users rights to add a HKCU registry key through active...
I want to add a REG_Expand_SZ key to this path (HKCU\software\Microsoft\office\14.0\common\general\ for all users when they sign onto their computers. However, we have restricted user access to edit...
View ArticleData corruption between Parent and Child domains
Hello,At first I thought this was an IIS problem, then I thought it was a File Server problem, now I have narrowed it down to being a problem transferring data between the Parent domain and Child...
View ArticleADPREP32.exe /domainprep /gpprep exited with error
I am trying to add a Windows 2008R2 as a DC in Windows 2003 R2 server environment. adprep32.exe /forestprep completed successfully. Now I get the following message - Please...
View ArticleAdministrator Password Chnage
Good Day,I have domain environment and i am using a built-in administrator account for all the administrative tasks across the domain.The password which i am using for this account is very old and is...
View ArticleADsOpenObject bind unsuccessful
Hi, I am trying to connect to an AD server from a computer that is outside the domain using ADSI however the bind is unsuccessful. Using Visual c++ 2010 express. Here is the code...
View Article2008r2 - DNS with AD Integrated Zones on non-DC?
Hi guysWe have a 2008r2 forest and running AD-integrated zones on all of our Domain Controllers. We now want to make a member server(non-DC) a DNS server. Are there any issues having AD integrated...
View Articlecreating custom classes & attributes
Hi all,I am running AD on windows server 2012. As required by an SAP application, in AD, I need to create a custom group calledtaxgroup with 2 custom attributes called technicalUsernameand...
View ArticleRestrict rights to subfolders in Active Directory
This may be a stupid question, but, my boss wants me to setup a folder in a manner that I'm not familiar. So...I want to give everybody in the company full rights to a folder on our server (call it...
View Article