When Changing Password in AD, AD is Returning the Error “The remote procedure...
Our Application (Oracle) is sending a batch of password resets to the AD via a Gateway machine connected to the AD Domain, and we are getting errors “The remote procedure call failed and did not...
View ArticleCritical event from AD - Event 4015 followed by some 4004 - Windows Server...
Hi allSince last reboot, I have one critical event 4015 followed by some critical events 4004 in DNS server event viewer. I use Windows Server 2003 SP2.I do not understand why. It seems that Active...
View ArticleDomain failure after active directory restore
Active Directory and Domain are not working after rebuild of server.Background: Windows 2003 Standard - single controller in domain - hard drive failed and replaced Reloaded Windows, then loaded Backup...
View ArticleConvert External Trust to Forest level trust
What is the correct procedure for converting the external trust to a forest level trust? Will I need to reset user rights between the domains or will they be restored when the trust is reestablished?
View ArticleExchange Server 2007 Information Store service doesnt start after dc demote
Hi,Recently in my company we install 2 new dc 2008.We migrate the FSMO roles from the old domain controller to the new one and the operation was successful.Today i demote one of the old dc running win...
View ArticleNo SYSVOL_DFSR on newly added Domain Controller
Hi,Have a W2012 Domain in which sysvol replication has been migrated to SYSVOL DFSR replication a long time ago (in W2008-R2) and worked well.I now added a new domain controller (W2012) and there is no...
View Article_kerberos records are gone for some domain controllers
I got Kerberos errors "record not found" so l started poking around and l realized that _kerberos and _ldap records of four domain controllers were done. am just left with only one record in _Msdoc -...
View ArticleAD Replication Partners - some missing?
I have recently begun an AD upgrade from 2003 to 2008R2. So far, the schema has been upgraded to 2008R2 and a new 2008R2 domain controller (GC and DNS) has been introduced. 3 other DCs are still...
View ArticleADFS SSL Certificates
I am trying to setup a SSO solution using Active Directory Federation Services 2.0, and I am having trouble with the security certificates.I have my ADFS server and my ADFS proxy server running on...
View ArticleDomain Trust and User Permissions
My organization is split up into two domains, a corporate domain (example.net) and a domain for external resources (example.biz) with a one-way transitive forest trust allowing .net users to...
View Article2003 to 2008 forest trust verify in only one direction - but seems to work...
I recently set up a forest trust between and existing 2003 forest and a new 2008 forest. The new 2008 side has two domain conrollers/DNS servers and each side has an AD integrated stub pointing to the...
View ArticleQuery using AD Module Timed Out
Hi all, Most of us are aware about the two minute timeout for queries using AD Module in PS. And this timeout is unchangeable. However sometimes a time consuming query is unavoidable. Imagine this...
View ArticleConditional Forwarders in 2008 R2
Hi I have 10 DCs in my child domain and in parent domain have 3 Dcs.I don't have any DNS in root domain. I have all ADDNS in child domain and my parent domain DCs are pointing to child Domain ADDNS in...
View Articlenslookup error
While performing the nslookup on windows 2008 R2 Core DC, getting below result..Can anybody tell me why its showing ..Also Host A and PTR record is availble in ADDNS.======================...
View ArticleUse of RODC levels.
We have an Active Directory domain that is at functional level for "Windows2008Domain" so it is at Windows Server 2008 fuctional level.All of the writable domain controllers are Server 2008R2.Can we...
View ArticleRemove Domain Controller and create new domain
Hello,I am new to configuring domain controllers.Here is my current setup.I have 3 domain controllers on the same domain across 3 different networks. They are all failover and replicated together.What...
View ArticleAD LDS snapshot - DSAMAIN error
Hi,I installed a unique AD LDS on a workgroup Windows Server 2008 (x86as well as R2 x64)Instance name „instance1“, using port 389.Created an Application partition o=test,c=deUsed the default path for...
View ArticleMigrating DFS to New Forest
I'm helping a client migrate their DFS infrastructure to a new forest. We're using ADMT 3.2, but this utility does not support migration of DFS namespaces. What tool or process would you recommend...
View ArticlePCI scan on Windows 2008 R2 Domain controller - giving "LDAP Anonymous...
PCI scan on Windows 2008 R2 Domain controller - giving "LDAP Anonymous Directory Access Permitted" "The Lightweight Directory Access Protocol (LDAP) can be used to provide information about users,...
View ArticleHiding User Objects
I'm setting up RBAC and need to hide an OU and it's contents...simple eh?I've done the usual stuff that you need to do, checked the access and the users (as designed) cannot see the browse the OU....
View Article