AD user's account email change audit
Hi,We need to audit email attribute changes of user account in Active Directory. Event 4738 does not audit this attribute. Is any way to get event into event viewer then email attribute is changed in...
View ArticleSplitting an existing Windows Server 2012 domain in two
Greetings,I have a question regarding best practice for splitting up a Windows Server 2012 domain and I have two alternatives to choose from (or maybe you have additional solutions to this problem to...
View ArticleRetrieve AD managedby attribute for computer
Greetings,I am trying to retrieve just the managedby field of computers in AD. I need to use vbscript and not powershell. I just need the value, but it comes back as a DN. Here is the script I...
View ArticleDoes the microsoft certificate server have dependency on DC?
Hello,We have a working Win 2008 DC and Win 2003 Certificate server environment.I do plan to install Win 2012 DC and decommission older DCWhat I am not sure is impact on Win certificate server, does it...
View ArticleDNS Reverse Lookup Zones
Hi,We have a Domain with Multiple Domain Controllers and all of those Servers are also holding DNS roles. It is mix of Windows 2003 and Windows 2008.We have several AD sites and Subnets associated to...
View ArticleI have about 10 computer that will not show they have Windows 7 SP1
I have been upgrading all the Window 7 computers to SP1. I have been running reports and they are saying that some of the computers are not SP1. I looked on the computers and they are showing SP1...
View ArticleNetwork Passwords saved for Domain Users
Hello, I am having an issue with domain users trying to access a local server. When they want to access the server through internet explorer they should be prompted by the server to provide...
View ArticleHow to deny ADFS access of non domain-joined pc
Hello.I deployed ADFS service on Windows Server 2012R2 for sso Google Apps.All pc can sign on with ADFS from intranet. How can I deny access of non domain-joined pc?Best regards,Arashi-yama.
View ArticleAD user object ntSecurityDescriptor changed
We have a single user object that was created with the same values under ntSecurityDescriptor as all other user objects in the same OU. Yesterday the user had issues, no email, unable to access shared...
View ArticleWindows 2008: built-in full system restore on FISMO DC and concern with USN...
Hello,I have 5 DCs in my AD domain and I like to rely on full system restore and replication to be able to DC disaster recovery in case one of DCs failed or become corrupted.I am planning to use...
View ArticlePTR RECORD IS NOT UPDATING AUTOMATICALLY IN REVERSE LOOKUP ZONE
Hi All,I am using windows server 2008 R2 with Active directory, DNS and DHCP installed.I have configured 192.168.1.0/24 scope in Dhcp server and clients systems are assigned the same but PTR record is...
View ArticleUpdate / Modify existing users attribute in AD
Dear all,I have several 100 users across a few OUs and I need to mass update the mailNickname attribute for them.To explain further there are a lot of users which have their mailNickname attribute set...
View ArticleUsers from an external organization authenticating to a Remote Dekstop App
Hi,We have set up Remote Desktop Apps using Remote Desktop Services The apps are permissioned with AD user accounts in our forestWhen an external company that has network access (i.e. routable...
View ArticleMultiple Domain Sync in ADLDS sync only some users from remote domain
Hi,i am working on this issue for almost a week now. i'm trying to configure an ADLDS instance for Cisco Jabber Proxy authentication for multiple domains.i have 2 forests: starhome.local &...
View ArticleClik here to view.
DNS Name is not updating of domain controllers
HiDNS Host name is not showing FQDN.. See below figure..How can i change it to FQDN..
View ArticleADFS Farm on Server 2012 R2
Hey everyone,Quick question on a best practice around setting up an ADFS Farm on Server 2012 R2. If you have two servers in the farm, are you suppose to use Microsoft Network Load Balancer to...
View ArticleCuster dependency in Domain
Hi,I have come across a confusing questionOne of our customer environment is having only one Windows 2008 Domain Controller in entrire FOrest and Domain. We know that its design problem which need to...
View ArticleDesktop machine's name got changed
Is it possible that a machine connected and joined in a domain network got its name changed by itself, if a domain admin was deleting some other machines manually in the AD?
View ArticleDC - refuses administrator log on
History: I migrated a 2003 domain to 2012 R2 (2 DCs), now native. All was ok until my 1st reboot of the 2nd DC. It lost its ability to communicate w/the domain. I've demoted/removed it and am now...
View ArticlePrimary Domain Controller crashed
Hi All,We have one Primary Domain Controller on windows 2008 server Ent, and one is ADC running on Windows 2008R2 Std.Suddenly Primary Domain Controller has crashed on which 3 FSMO roles were- Schema...
View Article