ADFS 3.0 - 2 servers in domain
Hi,First of all apologuies if in the wrong area.I've been asked to design an ADFS 3.0 deployment that will replace an exisiting ADFS 2.0 deployment in another domain.The adfs 3.0 has to be the same as...
View ArticleCan AD FS 2.0 (Windows Server 2008) work with AD FS 3.0 (Windows Server 2012?
Hi all,I'm looking to the AD FS deployment to establish a federation trust between two domain controllers A and B. The domain controller A has AD FS 2.0 deployed in Windows Server 2008 while the domain...
View ArticleClik here to view.
Want to be the Microsoft TechNet Windows Server Guru for September?
All you have to do is add an article to TechNet Wiki from your own specialist field. Something that fits into one of the categories listed on the submissions page. Copy in your own blog posts, a forum...
View ArticleAccount options password after migration via ADMT
Hi, There are some issues about account's password after migration via ADMT. 1) The migrated user accounts get "User must change password at next logon". 2) "User cannot change password" has been...
View ArticleDisable users who never logged on
Hello,i run ldap query to find out which users that have never logged on (&(objectCategory=person)(objectClass=user))(|(lastLogon=0)(!(lastLogon=*))). and i found a lot of users. how can i disable...
View Articletemporary profiles
Hi All,I have two RDS session hosts with load balanced and each host has capability of 70 logins, which we usually use to login to other servers in infrastructure.These two RDS session hosts are also a...
View ArticleWe used Fine Grained Password Policy to rollout a new policy by Office
But, can we now switch folks back to the "default" domain password policy which has been updated with our newer requirements?We are having a problem with Citrix 7.6 where people on the FGPP don't get...
View ArticleConfigure the DHCP correctly
In WS 2012 R2 preentered into DHCP169:254.xxx.yyy       Reservation(inactive)In my host machine after "ipconfig /release"DHCP enabled......YesAutoconfiguration IPv4...
View ArticleWhat the purpose to create a site in Sites and Services without DC?
What the purpose to create a site in Sites and Services without DC? In which scenario it could be configured like that?
View ArticleNew Objects not showing up in GPMC
Hi, I have just come across a issue with AD and GPMC on server 2012 R2. When I create a new OU in the ADUC console it does not appear in the tree when browsing the Group Policy console. Also if I...
View ArticleDFS replication does not start due to lack of disk space.
Hello everybody, I'mtrying to replicatedata from onevolume F: \of700GBand isbusywithspace690GB, data is replicated to avolumeon another server, alsoF: \of1.5TB.Thereplicationdoes not happen,although...
View ArticleADFS iOS app not authenticating
We are using an iOS and Android app that uses ADFS for authentication but we are not getting the login prompt. It just goes right to not authorized, so its like its just trying to do windows integrated...
View ArticleChange of DC IP Address - What issues will arise?
Hi,We will be changing the IP address/host name of current DC, if the DC holds some FSMO roles will doing this cause any problems? We will be changing the IP address/host name so it should be about a...
View ArticleRODC
I had a question i could not find anything on the forums or tech net on this, but if you have an RODC and you have a user who is added outside the replication period for the RODC and the user tries to...
View ArticleDomain Controller computer objects, adminCount and AdminSDHolder
According to every article I've read, the "Domain Controllers" group is protected by AD. The group does in fact have adminCount set to 1. The same applies to the "Read-only Domain Controllers" group....
View ArticleClik here to view.
Restrict trust traffic to specific site
Hi,we have a multi-tenant Active Directory supporting a cloud workspace based on Citrix XenApp/XenDesktop. So many customers in 1 AD, each in their own OU. We have dedicated WAN links to many customer...
View ArticleIs there a way to link SSH key in AD?
Is there a way to link SSH key in AD account or there is nothing in AD for that?
View ArticleServer 2012 R2 password expiry notification not showing, and password GPO...
Hi,We have a domain running on two 2012 R2 domain controllers. We had a password and account lockout policy set in our default domain policy, which had some basic password settings, and no lockout...
View ArticleTo Point cleint to specific DC
Hi All,we want to test a logon script by adding to the group policy in test DC, now we want couple of client machine to get authenticated or connected to this test DC, Please let us know how can we...
View ArticleIncorrect member attribute for the "Domain User" group. PowerShell also shows...
I am working with an application vendor. This application needs to import a list of Active Directory users. The application needs an AD group as part of its search.I told the vendor to use the built in...
View Article