Using dirsync is it possible to get the child domain changes from the global...
I am using dirsync approach to get the change log in Active Directory. I am able to get the changes from a specific domain controller . I tried getting the child domain changes by searching against...
View ArticleSysvol rebuild on a single domain controller
Hello therePlatform: Server 2008 R2 single Domain controller A clients server above lost power with an unexpected shutdown over the week end and couldn't logon to the domain. However they can browse...
View ArticleDomain Controller failed dcdiag test
Performing initial setup: Trying to find home server... Home Server = server2 * Identified AD Forest. Done gathering initial info. Doing initial required tests Testing server: INDIA\server2...
View ArticleList all attributeID-s via Powershell
Hi,In my research to an Exchange issue I came across a very useful cmdlet which allowed me to list all AD attributes which are enabled to be resolved by ANR in Outlook.The cmdlet: Get-ADObject...
View ArticleDelegate Creating and Deleting Group Policies and OUs to non domain admin users?
We would like to create a security group that does most of the admin tasks that currently require adding a user to domain admins group.Our group policies are edited very often especially as software...
View ArticleIdentity Management for UNIX with Windows2008R2
Hello,We are doing Active directory consolidation and migration from 3 Child Domain to the another 4th Child domain.In the 3 child domain we do have NIS and LDAP for UNIX and authentication for UNIX...
View ArticleADFS 3.0 - Signing certificate CRL check with HTTP Proxy to the internet
Hello, We have an ADFS 3.0 server, with a Claims Provider Trust configured. The Claims Provider signs its tokens sent to this ADFS 3.0 server with a public certificate. The CRL of this certificate is...
View ArticleAccessing DFS Share from a Trusted Domain
I have a Windows 2012 R2 server in domain D. This is the namespace server for the namespace D2.From other machines in domain D I can access \\D\D2 okI have machines in another domain - domain U. There...
View ArticleSeparating a child domain from a forest/parent domain
Our infrastructure is currently as follows: There are two domains which I will call "apple.local" and "banana.local". The domain "apple.local" is the parent/forest which is at a Windows 2003...
View ArticleADFS V3.0 Error 503 with urls
We are setting up and testing adfs version 3.0 on windows 2012 r2.If I goto the following url's it...
View ArticleMigrating Primary DC with windows 2003 server to a Second DC with windows...
HI,I have been doing lots of research into finally upgrading our Primary Domain Controller that is running Windows 2003 Server to a new box running Windows 2008 R2. I have already done all the preps...
View ArticleHA ADFS and WAP HA
Hello MS team,Can someone from the guru AD team provide some thoughts regarding ADFS and WAP HA&DR servers design below? is this officially supported? how can I setup HA and DR for WAP proxy...
View Articledomain in other Forest Dont See Object in other domain forest
hi to alli have one problem that confused me for weeksi hope that you have solution for iti have 2 domain in 2 forest that trust between 2 forest established and verified . administrator from domain a...
View ArticleAD DS Replication 1722 The RPC Server is unavailable
Hi all,An interesting issue - we have 2 DC's - one Primary DC FSMO role holder/DNS Server and other Secondary DC/DNS Server that both replicate with each other. All of a sudden in the past few days we...
View ArticleDomain Controller acting weird, and many errors in the event log
This morning I had several users report an error accessing resources on a DFS namespace. I looked at the domain controller this namespace is on, and I am seeing several errors. The first of which, I...
View ArticleHow to Validate an Old Kerberos Realm Trust
Environment has a Kerberos Realm trust configured on a domain called XYZ. It is configured in both directions. It was created years ago and thanks to IT turnover no one can tell me why it's there. No...
View ArticleWindows Server 2012
In our organization, we are using Windows Server 2012. We have been requested to review access logon violations in order to ensure that potential unauthorized access activities are timeously identified...
View ArticleFind Computer Name User is Logged Onto
Hi!Is there an easy way to find out which computer a domain user is logging onto? It shows in Event viewer but it takes a lot of time. Windows 2003 Server.Thanks.
View ArticleAD Upgrade
Dears,I have deployed my new DCs in all of my sites, then I have done with below:Moved FSMO roles to new DCsConfigured bridgehead serversRemove check box of GC from my old DCsMake sure that my new DCs...
View ArticleServer still domain joined but trust fails
I have run into a problem on one of my servers. It appears as though no one can authenticate to it using its fqdn. If the user had logged in in previous they can log in using the ip address for the...
View Article