AD LDS - multiple domains and universal group memberships.
Because of heavy load on our DC coming from multiple applications doing constant LDAP queries to them I'm trying to remove all this traffic by replicating our AD in an AD LDS instance. We do have 6...
View ArticleDC - refuses administrator log on
History: I migrated a 2003 domain to 2012 R2 (2 DCs), now native. All was ok until my 1st reboot of the 2nd DC. It lost its ability to communicate w/the domain. I've demoted/removed it and am now...
View ArticleClik here to view.
Domain Join between Client Network and RODC Netzwork
Hi therei have the following Network Setup (all Servers are 2008 R2 with SP)If i try to Join the DB Server to our Domain via offline Join(DJOIN) everything is working fine. But if i try to join the...
View ArticleWebsite Updates DNS issues
My company had someone add a word press section to their website. Externally I can ping the domain name without WWW, but internally I can only ping it with WWW in front. The IP address of the site has...
View Articleupgrading from AD 2003 to AD 2008r2.
Trying upgrading from AD 2003 to AD 2008r2. When examining their environment tried to change the domain function level (as a test) and got the message that I could not because one or more servers was...
View ArticleDelegate CONTROL_ACCESS
In order for one to have read access to a confidential attribute, both of the following conditions must be true: (1) permissions must be held that grant read access to the that attribute and (2)...
View ArticleAdvice on Best practice for inter-countries Active Directory
We want to merge three active directories with on as parent in Dubai, then child in Dubai, Bahrain and Kuwait. The time zones are different and sites are connected using VPN/leased line. With my...
View ArticleCannot delegate rights to Terminal Server (remote desktop) properties in ADUC
Cheers!<o:p></o:p>I am trying to provide a junior admin with rights to modify only the home drive and home drive path setting on the terminal server tab in ADUC. <o:p></o:p>I...
View ArticleFor my situation, any reason not to us Change Notification?
I have a simple two site AD topology. One site in each datacenter; 1GB connection between the site networks. Users at both sites. Recently we installed a active/active DAG Exchange 2013 highly...
View ArticleWhat is the difference between a Schema Update and Functional Level Update?
Hello all,I'm trying to wrap my mind around what the difference is between a Schema Update and a Functional Level Update. For example, to have a 2012 R2 DC you need a 2012 Schema update, but not...
View ArticleAD Replication only works one way
Currently we have 2 Domain Controllers serving 1 domain in 2 locations. Location 2 had a DC failure several months ago. I cleaned up all metadata regarding the old DC and promoted a new DC.The new DC...
View ArticleBulk modifying AD permissions
I need assistance giving authenticated users "read" access to active directory. I have different OU's and not all permissions are being inherited.Is there a script to give all authenticated users read...
View ArticleAD Replication Issues Server not replicated in a long time
HelloI have a server DC1 that has not successfully replicated for a log time.Rebuilding it is not an option as it's remotely locatedHere is the Repadmin /ShowrepsSite1DC1DSA Options: IS_GC Site...
View ArticlePreparing to configure windows please do not turn off windows server 2008 r2
Preparing to configure windows Please do not turn of your computer.We see this skin a long time (3 Hours) but server not start. If we remove LAN cable on the server then the server automatic run but...
View ArticleAD Site SRV records on DNS don't seem to be refreshing
Hi all,To carry out one request we recently set up a new site on the AD (Let call it Site X). Even though there is no local DC at this new site, we had to set it up because we had to deploy a...
View ArticleClik here to view.
Update Universal Distribution Group Properties
HiI am looking for a solution to update the the information of universal Distribution group as in User propertiesThis is the Group propertiesBut I want to add Properties like General, Address,...
View ArticleFor my situation, any reason not to use Change Notification?
I have a simple two site AD topology. One site in each datacenter; 1GB connection between the site networks. Users at both sites. Recently we installed a active/active DAG Exchange 2013 highly...
View ArticleServices for Unix 3.5 upgrade to Windows 2008R2 domain
We are planning on upgrading our domain from 2003R2 to 2008R2 and we are heavy users of the Services for Unix 3.5. Either on technet or one of these forums someone had a great document on what the...
View ArticleDoes backing up system state on a parent domain controller back up the child...
I cannot seem to find anything that states whether backing up your system state on a parent domain controller will also back up the child domain.Thank you in advance.
View ArticleDoes the Computers container in Active Directory have any Group Policy...
Hello,It is my understanding that the Computers container can not have Group Policy applied to it. Does it still inherit the default domain policy, or is it not affected by any Group Policy at all?Thanks.
View Article