Service Principal Names
I have an issue where SQL Server 2012 fails to register the SPN when running the MSSQLSERVICE on a domain user account. If I make the user account a member of the domain admins group, the SQL server...
View ArticleRD Connection Broker settings
I need help with the "RD Connection Broker": Database Connection String Folder to store Database Files DNS Round Robin NameI need to know how to make a connection string that would enable "SQL Server...
View ArticleDFS Namespace Across Bi-Directional Forest Trust
Hey Guys! I've a question that I'd like to put to you all that's been bugging me and my colleagues. We are in the planning stages of setting up a bi-directional forest trust with our parent company...
View ArticleClean up AD of old server & clean metadata
Hi, I've inherited quite a server mess and I'm hoping that the AD experts in this group might help. Currently I have 2 servers and one of them has AD on it and the other does not. The issue I'm...
View ArticleBest way to upgrade 2003 to 2008 Active Directory Domain
I have a specific situation. I need to upgrade a 2003 AD to 2008r2. We aren't comfortable making the jump to 2012. Basically the original design was 5 offices each with a Domain Controller. Each...
View ArticleSelective Authentication - Prompt for Crendentials when searching for users...
Hi All,I have a two-way, transitive, forest to forest trust created with selective authentication enabled. When I attempt to add users from the trusted forest to the trusting forest I'm required to...
View ArticleHow to disable anonymous bindings on your Windows 2008 LDAP server?
How to disable anonymous bindings on your Windows 2008 LDAP server?
View ArticlePopulate and configure RDCB01 And RDCB02
In "WS 2012 R2" I have set up in DNS Manager in mysite.com in "New Host(A or AAAA)..." two new RDCB01 And RDCB02 Remote Desktop Connection parameters with IPv4 addresses Round Robin type. I then setup...
View ArticleParent Setup as External Trust to Child Domain
I have come across a very unusual problem. We have a Parent domain with a couple child domains. One of the child domains is setup as an external trust on the Parent domain but the Child domain sees the...
View Article[HowTo] Secure an OU for specific account (disable the possibility to view...
Hello,Is it possible to create an OU in which the users does not access to the society's information (like user account description, etc..) ?The context for my company is to isolate the external...
View ArticleIs ADFS Site Aware???
Hi GuysI have ADFS configured with 2 ADFS Servers. There is a single forest/domain. Each are on different subnets for example:ADFS01 - SubnetX - ADSiteTown01ADFS02 - SubnetY - ADSiteTown01SubnetX and...
View ArticleDelegating create/modify record rights to a single DNS zone
I have a requirement to allow one team of users to create records within a single DNS zone and edit those records they create as necessary. My understanding, based on testing in my lab, is that the...
View ArticleCross Domain Authorization is not working
Hello,We have configured Active directory services on Windows 2008 R2 server. We are trying to authenticate LDAP user from the client. But in the below scenarios Authorization is failing.Cross Domain...
View ArticleComputer vs server objects
This may have been asked before but these are really hard search terms to narrow down...Active Directory has a very robust schema. One objectClass everyone knows about is the computer object. This...
View ArticleRights to remove MSMQ Configuration
We have a user that we want to give rights to create/delete computer objects in an OU. I granted these rights and it works fine.The problem is on some existing computer accounts when they try and...
View ArticleHow to migrate mailboxes from one Exchange 2013 forest to different Exchange...
We just purchased a smaller company. Both company's have Exchange 2013 running on Windows 2012. There is already a trust relationship setup between both forests. ADMT is installed and configured....
View ArticleSYSVOL Migrate to DFRS working. Need to add new domain controller
I have to add a new domain controller to our network. A few months ago, I moved SYSVOL replication from FRS to DFRS. Is there anything special I need to do on the new domain controller (W2K8R2) to...
View ArticleDelegate permission to manage Computer objects with ADUC
Hi,I'm trying to give permission to "Helpdesk-Group" to manage Computer objects underWorkstationsOU and subsequent OU's below that. I have delegated the rights withDelegate Control wizard in ADUC...
View ArticleAD Authentication through kerberos for internet based Machines
Hi,I have 30-40 machines that have domain Joined but they are rarely in office network. Most of the Time they are on Internet, so i am looking for AD Authentication via kerberos when the Client...
View ArticleClik here to view.
delegate control
Within AD I have granted an AD group more control. I right clicked on our Domain and picked Delegate Control. I then picked the following options. I forced an AD replication. I had 2 users who...
View Article