Create tw domain within a forest
I need Help to create two domain within a forest and two way trust between them
View ArticleProblem with 2012 DC in SBS 2003 domain.
Good morning. I have a client who has a SBS 2003 server that needs to be retired. I set up a 2012 std. server, joined it to the domain, and installed AD. There seems to be proper replication, which I...
View ArticleSSL Certificate for ADFS 3.0
I am reading technet prior to configuring ADFS on Server 2012 R2. I am replacing my current ADFS 2.1 deployment. In the following articlehttp://technet.microsoft.com/en-us/library/dn486788.aspxit says...
View ArticleLDAP Query´s Slow on Virtual DC with W2K12 over Hyper-V W2K12 R2
Hello,We have 2 Virtual Machine DC´s. After upgrade HOSTs from Hyper-V 2012 to Hyper-V 2012 R2, LDAP Query´s are very slow on the 2 Virtual DC´s.Has anyone ever went through the same...
View ArticleSYSVOL_DFSR doesn't migrate to Windows Server 2012
Hey guys.In my lab, I make the upgrade of active directory Windows Server 2008 R2 with sysvol_dfsr, to Windows Server 2012, after upgrade I see in my domain controller 2012, that doesn't migrate your...
View ArticleI want to bind my client certificate with machine certificate in order to...
I have created one dedicated root CA for domain and auto enrollment has been enabled through Group Policy.I want to bind my client certificate with machine certificate in order to bind user with...
View Articledifferent attribute for UPN for specific SPN
Hi, is it possible to use a different attribute in AD as the UPN for a specific SPN? For example, if I access http://webserver.company.com and it has spnego (kerberos auth) configured it can use the...
View ArticleWindows easy transfer problems "Temporary Profile"
I am running windows vista and want to transfer my files to my new windows 8 computer.I have downloaded windows easy transfer (The one for transferring onto windows 7) but when I try to run it it says...
View ArticleActive Directory Trust
I have three domains. Domain A in one city , Domain B & C in another City. My goal is Domain A users should login to Domain C Machines.Domain B & C already has two way trust.If I make outgoing...
View ArticleWindows 2012 R2 schema upgrade
Hello,I wanted to do AD schema upgrade for Windows server 2012 R2 for a forest with root and child domain. Can someone please let me know the command that need to run in root domain and child domain. I...
View ArticleTwo untrusted domains, similar names, and remote desktop
Goal: Allow remote desktop access to untrusted domain servers for administrators with pre-authentication and Network Level Authentication enabled.Servers/clients:Windows 2008 R2 x64 Windows 7Domains:...
View Articleadd mailenabled group in AD LDS
Good day experts, I've created a single ad lds instance which is made available to a 3rd party. They fill this instance with members and groups. When I go to my outlook ldap addressbook I can see the...
View ArticleWS2012r2 - Cross-forest trust - Can add groups to user but when I open it...
Hello Everyone,I hope you can help me resolve this issue, I'm missing something but I don't know what.I have 2 ws2012r2 domain controllers, each one with it's own forest (Lets call them A.com and...
View ArticleImplementing Sites for a new Single Domain Environment
I didn't find exactly what I was looking for so decided to create my own question to get some direct feedback.Currently we have a single domain environment with two domain controllers located at two...
View ArticleDomain Trusts: What does a trustAttributes value of 0x0 ( ) mean?
Using this script (http://gallery.technet.microsoft.com/scriptcenter/Enumerate-Domain-Trusts-25ecb802) to enumerate domain trusts and when looking at my trusts in adsiedit, I find I have four different...
View ArticleWhat Folders a Specific AD Group has Access too
I am trying to find out what folders a specific Active Directory group has access too. I believe this group has access to around 20 different folders and it would be nice to just run a report or...
View ArticleControlling Dial-in Property by Group? Or assigning members to group?
Is this a style question? Philosophical?I am using a firewall that creates an SSL VPN for our users. I want to make sure that only some users can remote.At the moment, the firewall is set to:1....
View ArticleActive Directory : Replication Issue - "Disconnected" sub-domain from the Forest
Hello everyone,I'm managing a multi-domain forest (with 7 sub-domain). All are working fine except for one. Throught repadmin (Repadmin /replsum /bysrc /bydest /sort:delta), I noticed I got both...
View ArticleRODC and NETLOGON 5723 on 2012R2
I have an RODC set up in my AD and am getting multiple 5723 errors for machines. This RODC is in a site with 3 RWDC. Doing a DCDIAG shows all test pass except systemlog, which shows the 5723 and 5805...
View ArticleCross Domain accounts access issue
Hi,we have just upgraded our third and last domain controller that was running on 2003 to 2008R2 on our A domain. we now have a new domain controller and DNS server. On our B domain we pointed the...
View Article