LDAP query for members of a small group only returns all users if MaxPageSize...
We have been testing with small groups of 3 - 5 users in the group. There are specific users that are not returned when we run the below LDAP query and they are in a group. When we increase the...
View ArticleDistribution List Administration
Hi, there are many distributing lists in on-premises AD. Using active Directory synchronization to sync distribution lists from on-premises AD to Office365. To streamline workflow, the duties of...
View ArticleHow to configure secondary domain controller read only, but prevent write in...
Hi all, I have one primary Domain controller (dc1.abc.local) at site, production mode. I am trying to do some Proof of Concept with the firewall appliance, which the user datastore need extract and...
View Articledcpromo the interface is unknown
I'm trying to take an old DC off our network. I put a new one online, and no longer need this older machine.When I run DCPROMO, I click Next and then get the following message:This wizzard cannot...
View ArticleRemoving some NS records from AD integrated DNS
HiIn my AD infrastructure we have about 40 domain controllers which also all act as DNS and DHCP servers, pretty much one for each office.Not all these offices can route to each others networks, this...
View ArticleDirectoryVirtualListView with LDAP query scope, SearchScope.OneLevel -...
Hi I was trying to perform ldap query against AD and in most cases it's working very well.In specific case, when I try to bring all first level Organizational Units defined on specific bind DN with...
View ArticleBlock access to SAAS Applications on ADFS (Office 365)
Hi All, I like the way you can create issuance Authorisation rules in ADFS. In one scenario I have a set up for a SharePoint online only instance, where ADFS blocks access to users externally (Proxy...
View ArticleDomain controller reboots
Hi,The environment i am working on is quite straight forward. A single forest single domain running 2 Server 2012 R2 domain controllers. both DFL and FFL are 2012 R2 aswell.My issue is when I try to...
View ArticleApplication (LDAP) authentication with AD DS on Windows server 2008 R2
Hi All,I have an Application which need authentication from my Domain controller, basically the application need to do a LDAP lookup for the username and password. This DC is running on windows server...
View ArticleDNSserver problems
HiI have installed a new domain controller, and I have had some problems with DNS on it.After some time the server is not able to make DNS lookups, at the beginning i helped to restart the DNS server...
View ArticleClik here to view.
Cross Forrest Trust Issue
Hi, we have two domains A and B that were running on windows 2003R2 functional level. We recently upgraded our domain B functional level to 2008R2 and also added 2 new 2008R2 domain controllers to our...
View Articleproper setup of AD FS for CRM
i have setup ad fs on server 2008 r2 and used the certificate installed on the system.the uri is showing up as 'https://servername.domain.local/' is this the way it should be? I am trying to test and...
View ArticleADFS 3.0 login failing from IE8
Hi all,We have recently migrated from ADFS 2.1 to 3.0. The migration was successful.The only issue we seem to have is that from IE8 only, the ADFS login page is inaccessible. IE does not report any...
View ArticleAudting of _MSDCS DNS zone ?
Looking at ways to audit the _MSDCS DNS zone as have occasionally seen rogues entries appear. Ideally wanted something proactive which would send email when new records appear in this zone so we can...
View ArticleCannot see the members of the local group on member server!
Hi all,I have two Windows Server 2008 member servers in a domain, 1 Exchange Server 2010 and 1 WSUS 3.0. When I open the properties of the local Administrator group on the WSUS server I only see the...
View ArticleActive Directory Root Certificate Authority (AD CA)
Hello,As the Active Directory Root Certificate Authority (AD CA) will be changed, is it possible to verify which applications, computer is suing the Active Directory Root Certificate Authority (AD CA)...
View ArticleDomain either does not exist or could not be contacted
Ok where to start!Existing 2003 domain (2x DC)New 2012 server - i have followed https://www.youtube.com/watch?v=OG5K6B7hgRU as i hadn't done a migration to 2012Everything was generally ok, Active...
View ArticleAD schema update & trusts between forests.
I have a next structure: 1. Forest 1 - Domain 1 1. Forest 2 - Domain 2 1. Forest 3 - Domain 3 All Forests are connected by trust connection to each other. I've upgraded AD Schema version in Forest 1 -...
View ArticleActive Directory Domain Name Convention
Hi AllI'm creating a brand new domain for a new company I have just started at. We currently use Office 365 so sharepoint and Exchange are both in the cloud and our website is also outsourced.I am now...
View ArticleRestrict AD User and Local User access to AD LDS?
I have AD LDS installed on a domain joined server (2012 R2). By default, the instance allows AD LDS principal authentication, Windows principal (AD or local) authentication and, optionally, AD LDS...
View Article
