DirSync Password Write-Back not working
Hello,In a previous domain, we had DirSync installed on a Domain Controller and configured successfully to Sync with our Office 365 (No Hybrid as we only use Exchange online), with Password Sync...
View ArticleRedirected folders unacessible when notebook offline
Greetings, I'm struggling to solve my issue with redirected folders (Desktop, Documents) and travelling laptops. The situation is following: We have an OU for notebooks On this OU, we have two GPOs -...
View ArticleSchema changes for adding a Server 2012 Domain Controller on an exsiting...
Hi all,I am researching for what schema changes if we add a Server 2012 Full DC/RODC on an existing Forest/Domain functional level with Server 2008 environment.We have multiple DCs in our environment...
View ArticleClik here to view.
DNS Replication between tree domains
Hi,I have 2 tree domains that look like this:All the DNS servers in each DC configure with forest level replication but the replication between DC3 and DC1 can take 30 minutes.Is it normal? If not,...
View ArticleAD Domain Recovery
Can anyone confirm is this the correct step for Domain Recovery.After reading the MS recovery doc, I have created below steps. Please let me know if I have to do any correction 1) Power down all...
View ArticlePromote Windows Server 2012 R2 Standard to DC: Error The domain DNS name has...
I want promote my new Windows Server 2012 R2 Standard to domain controller in existing domain (1x DC Windows Server 2008 Standard). When I run "Active Directory Domain ServiceConfiguration Wizard", I...
View ArticleTroubles backing up TPM key in AD DS
Hello.Im hoping someone can help me with my struggle in getting the TPM key to backup to AD DS.Im running Server 2008 R2. I performed all steps outlined in these articles....
View ArticleUnable to sync AD LDS
Hi,I've done several tentative to sync an AD LDS from a Windows server 2012 R2 domain with no success. I'm using adamsync, and if I try to sync only groups with this instruction in the xml migration...
View ArticleKerberos delegation - implications for Active Directory security in general
As far as I can see, there are none - assuming both the end-user and the service account do not have excessive permissions.All the same, and since we may implement this, I was asked to investigate and...
View ArticleQuestions about a rather large AD
Environment:16x 2008 R2 DCs 4vCPU 10GB Ram each Standard EditionForest and Domain are running 2008 R2 function modes50,000 x Windows 7 Machines3000 x Windows Servers3000 x Linux Servers50,000...
View ArticleClik here to view.
Microsoft Exchange System Objects....corrupt?
Hello,In my Server 2008 R2 environment, I noticed in ADUC an OU (Microsoft Exchange System Objects) that looks like it is corrupted and it contains a bunch of object that also look corrupted. I was...
View Articlegroup Managed Service Accounts causing delays, freezes, lock ups, and service...
For testing, I created a gMSA and it worked perfectly. So I began the process of creating many gMSA accounts and replacing all the existing "user service accounts" in our network.I've migrated several...
View ArticleWindows cannot create the object username because: The name reference is invalid
After upgrading domain controllers from Windows 2008 R2 to windows 2012 R2. We cannot copy an existing user that has a mailbox. We get the errorWindows cannot create the object username because: The...
View ArticleActive Directory Windows Server 2008
I have to create a user in an organizational unit and make him a member of a global group located in another OU using command prompt.Here is the command I used but it gives me an error. Help?Dsadd user...
View ArticleChange Computer Name on Domain Without Removing From Domain
I know that when changing a computer name that is on a domain you first should remove it from the domain and add it to a workgroup. Why is that and what are the consequences of not first removing it...
View ArticleClik here to view.
Why "Unable to load the specified offline registry hive" happened?
Hello.In local network we have some VLANs and when I move a computer from a VLAN to another VLAN I can't loging to Windows 7. When I enter the username and password it show me :"Unable to load the...
View ArticleRID pool and user account creation (migrated from HA forum)
Hello, I have a question about RID pool and user account creation. Our system has two server farms each of which has two DCs (i.e. 4 DCs in total). Two farms are a primary and a backup, and the RID...
View ArticleActive Directory migration
HiI am running Windows 2012R OS with Windows 2012R forest and domain level. Domain controllers are also the DNS servers for our environment.The environment is one forest, one domain, 4 domain...
View ArticleHow do changes made to a user's profile in AD propagate?
How do changes made to a user's profile in AD propagate?For example, if I were to use Set-ADUser to change the H-drive mapping of a user, where, and how should I go about testing the command/script? I...
View ArticleHow computer object authenticates ?
Hello experts,Any direction on computer object authentication process please.Thanks in advance.
View Article