dsadd command-line tool works , but created account do not disable at...
Hi everybody i use dsadd command-line tool to add users to my AD with expiration date . everything is ok and the specified user is created normally . but i use -acctexpires switch to account disable at...
View ArticleEffective Permissions Audit
Hello,I am trying to resolve a permissions issue in AD and am looking for a way to unravel what's being applied. If I look at the Effective Permissions of a given user, it shows me a list what's...
View ArticleDelegate unlock user account access in Server 2008
I have Server 2008 STD SP 2 w/o hyper V. I would like to delegate access for a regular domain user to unlock user accounts and reset passwords. I have the reset passwords part, no problem, because...
View ArticleClik here to view.
ADMT - User cant not access to the share folder after migration
Using ADMT 3.1, i can migrate user, workstation, profile and group, but the user that has permission in the source domain, doesnt have it anymore in the target domain. I checked that user has the same...
View ArticleDemoting a DC
what can i do to demote a dc while users are logged on ? i have 3, going down to 2...besides doing it before / after hours, ( which is doable)ThxSteven J Einhorn
View Article2 New servers 2008. Zones not create.
I add a new server (DC2) to domain.Before addingon theserverS2(main server 200864bit)I startedfrom thecd2008R2 adprep:adprep32 /forestPrep adprep32 /domainPrep adprep32 /domainPrep /gpprep adprep32...
View ArticleClik here to view.
Cant Shutdown and Restart Server 2008
when i join server 2008 to domain , I can't shutdown and restart server ?Whyany help be appreciate YaHyA.ZaHeDi
View ArticleNew to ADFS - simple question
I am new to ADFS and a currently reading through the documentation. My company has a couple of specific requirements, with one being access to a SharePoint instance (resource partner) but the other...
View ArticleClik here to view.
User's failed to login after setting "user must change password at next logon"
Hi: In our Active Directory environment, any new AD user who has "user must change password at next logon" , cannot login to the domain, the strange thing is when the AD user attempted to login ,...
View ArticleNeed to ask someone a few questions regarding Active Directory.
I'm working on a class final project and need to do some primary research on Active Directory in the form of a short interview. Would appreciate anyone who has a few minutes (the interview is only a...
View ArticleAuthentication issues after DCPromo of the first 2008r2 server?
Hi,I am in the middle of the 2003->2008r2 upgrade. Creating new VMs for new DC but keeping the same forest and child domains.Already forestpreped and domainpreped everything. Installed DCs in the...
View ArticleUnable to replicate between 2 DCs error message: 'exceeded the tombstone...
We had an issue where our exchange servers CMOS batter died which caused the time to go back to 2005. It looks like during this time we lost synchronization between our main DC and the Exchange DC. We...
View Article2008 R2 virtual lab using powershell - error
I'm working on a TechNet 2008 R2 AD virtual lab and getting an error when running this command in PowerShell. I use PowerShell to type in the script below and get an this error. Can you tell me if the...
View ArticleHR list to AD Synchronization challenge; What are poeple using?
We can't be the only company trying to Sync our AD users with the list on an HR database. If HR removes an associate for example, can it be removed from AD automatically and/or notify appropriete IT?...
View ArticlePDC SRV record missing in DNS - Howto recreate
HiWe have a domain with 4 dc's. 3 are 08 and 1 is 03. a while ago i transferred all the fsmo roles from the 03 server to one of 08 servers without any errors. recently without cause several functions...
View ArticlePossible to access DC in remote site via IPSec VPN?
Hello, Is it possible to access DC [ Windows 2008 ] in another site via IPSec VPN?Limitations are:-Can not add any additional DC in new site. Can not create child domain. Can add DNS server.Pls suggest.
View ArticleHow to find out who is delegated what access in an Active Directory domain?
I have a very simply question - How to find out who is delegated what administrative tasks in an Active Directory domain?For example, I'd like to be able to find out and document the following - 1....
View ArticleDOMAIN SYSTEM VOLUME (SYSVOL SHARE)" is in JRNL_WRAP_ERROR.
please help me with this.The File Replication Service has detected that the replica set "DOMAIN SYSTEM VOLUME (SYSVOL SHARE)" is in JRNL_WRAP_ERROR. Replica set name is : "DOMAIN SYSTEM VOLUME...
View ArticlePolicy skipped.
Hi there,i run in following problem.GPSVC(308.490) 21:30:59:203 ProcessGPO: Searching <cn={5E781B71-627B-4859-AA38-6D4C39D1EBC8},cn=policies,cn=system,DC=testdom,DC=local> GPSVC(308.490)...
View ArticleUnsure how to clear replication issue
Trying to determine how to clear a replication issue. Have a multi domain/multi forest configuration. Trying to standup a new dc/gc in an existing domain and getting errors which is preventing it...
View Article