Quantcast
Channel: Directory Services forum
Browsing all 31638 articles
Browse latest View live

Protect password hash when delegating user management rights.

We want to implement a user management policy that protects the password hashes of active directory user accounts. As such we want to grant our account administrators rights to those OUs that they...

View Article



2012R2 AD FS WAP proxy problem

I am trying to setup a test ADFS server environment with the goal of using federated Office 365. My test environment has  two domain controllers at 2008R2 functional level, 1 server 2008R2 and the...

View Article

2003 domain, 2000 forest, changing forest functional level

I feel terrible.   I have looked everywhere.  2003 domain 2000 forest.  A pretty straight forward network.  bringing the fores to 2003 won't hurt anything right?  I mean, it's generally considered safe...

View Article

Domain Controller Startup

Are there any flowcharts on how a domain controller starts up (i.e. domain service XYZ starts and verifies ntds integrity when then allows service ABC allowing DNS to start which then allows netlogon...

View Article

Syntax for Get-ADUser to get only these items "DistinguishedName"...

Is there a way to pull these three parts in PowerShell???

View Article


Proper way of shutting down a DC

I need to temporarily shut down a DC so I can add memory to it. Is there anything special I need to do or be aware of before hand besides letting my users know they can't log in for a set timeframe?

View Article

External Forest Trust Issue

This has got to be a bug in the GUI.  I have two new forests that are in different subnets which I have created a selective auth, 2-way, external trust between, the trust passes validation without...

View Article

Find machines looking up a particular DNS entry

A DNS entry was modified to point from an old server to a new server.Example: Old Server - ServerA.domain.com originally pointed to 10.10.10.10New Server - ServerB.domain.com points to 10.10.10.12Old...

View Article


AD not working on new DC

Hello TechNet forums,We have come across an issue we have not seen before.  On a network with a single 2003 Standard DC, we installed a 2008 standard server. Ran DCPromo, and made it a Global Catalog...

View Article


Could not obtain information about Windows NT group/user 'DOMAIN\user', error...

Hello, we running MSSQL Server 2008 R2 on Windows Server 2008 R2.For MSSQLSERVER service we use special domain account (specified during installation of SQL Server).Now we have some trouble with...

View Article

Administer untrustd domain

I'm trying to administer users in an untrusted domain from my PC.I use the below CMD line and I'm able to get ADUC running. Doing some tasks in ADUC, gives me the error "The specified domain either...

View Article

Domain Clients starting slow

hello experts Our company have domain controller. Domain controller runs Windows 2008 r2, windows 2003 R2 SP2 Today my technician reports me windows XP clients login is to slow about 30 min after bring...

View Article

SYSVOL is not replicating to all servers

Hi Guys,I have noticed a SYSVOL replication problem after creating a new GPO in AGPM, it appeared on PDC and on one more DCs, but not on other 23 DCs.The SYSVOL folder is not replicating to all DCs,...

View Article


DCDIag Assistance

Hi, im getting a lot of best practise analyser errors and warnings etc. I had an old lab DC that I demoted and joined to a new 2012 DC as a secondary DC.I have numerous errors and dns just doesn't...

View Article

Old domain controller crashed. Created a new one..having to rejoin computers...

I had a single domain controller. It has crashed. I had to create a new domain controller with all the same existing information from the old server..same domain name, server name, and IP. Im having...

View Article


Can't authenticate against secondary domain controller

Hi,I have 2 domain controllers which share operations. The secondary DC handles authentication however I can't authenticate against it unless the PDC is online, or has been online while the secondary...

View Article

ADFS and 'unable to authenticate errors'

Hi All,Is it possible to have the IdP return an error via a webpage to the end user in the event they cannot authenticate or have incorrect group memberships for accessing a service provider?Case AUser...

View Article


2012 DCs restarting after renaming any group in dsa.msc

HiI have AD 2012 R2 with DFL and FFL 2012 R2 in my Forest.Now When I am renaming any group in dsa.msc, its restarting the DC with below message:Your PC will automatically restart in one minuteWindows...

View Article

Migrating FSMO from Server 2003 to 2008 R2

I need to migrate my FSMO 2003 Server role over to 2008 R2. Server 2003 Name = ma-file 10.1.1.2 -  "DC" and "FSMO"Server 2008 Name  = ma-file1 10.1.1.3 - "DC"I have many applications using the DNS name...

View Article

2012 Virtual Machine Black Screens Whenever Promoting to Domain Controller

I have a brand new 2012 cluster with 2 hyper-v host nodes running Server 2012 (not R2). I have successfully spun up several virtual machines from templates via VMM 2012R2. I added the AD DS role today...

View Article
Browsing all 31638 articles
Browse latest View live




Latest Images