ACL list - SELF
Hi All,OS - Windows Server 2008 R2 StandardWhat do you mean by SELF in DNS Zone Security Setting. ( Access Control List )Please see the print-screen for more info.Thanks & Regards, Param...
View ArticleFailed Logins on AD
I keep getting dozens of failed login attempts (event id 4625) for various users in AD. All are valid user names.Here's one of the messages:An account failed to log on. Subject:Security ID:...
View Article2008R2 DCs not being used to log on
I have an environment with 4 domain controllers. Two are running 2003, and two are running 2008R2. One of the 2K3 DCs hold all FSMO roles. All DCs are GCs. 2K3 servers are placed in the local site with...
View ArticleAD attributes for third party app
Dear all,I have a third party application which holds an independent list of all my AD users and there is a requirement to store the unique identifier into a select group of AD attributes for each user...
View ArticleAD DS Config problem (The AAAA record for this DC was not found) Cannot...
I am trying to figure out what is wrong with my AD DS Config. I ran dcdiag. The results were:C:\Users\Administrator>dcdiag /test:dnsDirectory Server DiagnosisPerforming initial setup: Trying to...
View Articlenew 2012 R2 domain - xp clients cannot join or print
I just migrated a 2003 domain to 2012 R2. Things were working ok & then XP clients became AD stupid.Steps I took:Added a VM 2012 R2 DC to the domain. Server had DNS installed. Ran dcdiag &...
View ArticleADFS cache
First of all thanks for taking the time to read, any response is greatly appreciated.If I setup ADFS between my in-house operations with an off-site host and my in-house AD's go down, can users still...
View ArticleW2008 DC Script and Login very slow
Hi All....I have a 2 DC setup both w2008SP2 Stnd now. I recently lost one of these when it was configured with W2003SP2. I posted here and went through force remove and cleaning the metadata from the...
View ArticleLDAP Bind does not validate domain name when using NeGotiate / NTLM
LDAP authentication works with any random domain name. I created a sample console app to isolate the problem from all other code. void MainX() { NetworkCredential netCred1 = new...
View ArticleADFS 2.0 and trust in a multi-forest environment
- I have ~200 forests in a corporate network. These are all user/account forests. e.g: Forest B, Forest C, Forest D and so on.- ADFS 2.0 has only been setup in Forest A and all applications (mainly...
View ArticleHow Single user can access truetsed domain
Hello Guys,I have two forest with domain name abc.com & xyz.com exist and they are configured with two way trust.Now User administrator of domain abc.com want to access the resources of domain...
View ArticleDomain users can't change their passwords from their workstations
Greetings,We have a Windows Server 2008 SP2 AD forest. Newly hired users are enforced to change their temporary passwords at the 1st logon, but the problem is some users can't perform that password...
View Articledomain controller forced removal
Just a simple question. We lost a 2003 Domain Controller last night due to a hardware failure. This server was scheduled for removal in the next month so it won't be replaced. It is just a Domain...
View Articleremove AD with IIS installed
i inherited a windows server 2008 R2 box that has AD and IIS installed. I am in need of removing AD and i was wondering what problems i will have when i remove AD
View ArticleHow to display gender attribute in active directory.
hello,i have an active directory with 2008 domain functional level i have created a custom attribute in the active directory but i need this attribute to be displayed when right click on the user...
View ArticleAdprep manually running -- Win 2012
Scenario- Windows 2003 Single Domain, Single Forest, Forest/Domain functional level is 2003.Planning to upgrade Schema to 2012. Win2012 will perform Adprep automatically if we run setup, but still want...
View ArticleUsers from an external organization authenticating to a Remote Dekstop App
Hi,We have set up Remote Desktop Apps using Remote Desktop Services The apps are permissioned with AD user accounts in our forestWhen an external company that has network access (i.e. routable...
View ArticleAuthentication/security bug ?
I confronted the following situation :On a workgroup member PC with win 7 OS installed, i created an user with the same username and password as another one which is created in an active directory...
View Articleadm template to diable "advance feature" option from active directory users...
adm template to disable "advance feature" option from "active directory users and computers"(dsa.msc)
View Article8453 Replication access was denied
HiI have root domain contoso.dom (DC1 and DC2) and subdomain sub.contoso.dom (DC3).I see error event 2896 on DC3A client made a DirSync LDAP request for a directory partition. Access was denied due to...
View Article
More Pages to Explore .....