repadmin /showmeta shows old and decomissioned Site and DC information: 0ADEL
Some atributes of a user is shown as 0ADELThis user was created in an old and PROPERLY decomissioned DCthe user was created in 2011 and the DC was PROPERLY decomissioned in 2015 (using sites and...
View ArticleHow to add Email Claim to UserName Mixed endpoint?
We are trying to build an API, which will accept User Active Directory Credentials and return them a SAML token. We have narrowed down to use usernameMixed...
View ArticleGetting "The replication operation was preempted."
Hi,I have promoted the new AD server DC02 ( Windows server 2012 R2) but getting error opening DNS that " Server could not be contacted. Error: DNS service is unavailable".Even when I am trying to...
View Articlehow NETDOM QUERY DC works? WHy NETDOM still lists a old and properly...
I have 18 DCs in a highly-ditributed enviromentMonths ago we decomissioned (using sites and services and Ntdsutil for good measure) 2 DCsOn of the DCs still appears in NETDOM QUERY DC as alive!There is...
View ArticleExclude a computer from cross-forest trust
Hello all,First, the question: Is there a way to exclude/isolate a particular computer from a cross-forest trust?Now, the details:I am working on a project to decommission an acquired domain. Part of...
View ArticleADC Replication using 20 -30 GB in 24 Hours in a day
I've 186 ADC.In Replication it's using high bandwidth & the total utilization is approx 20 - 30 GB in a day.
View ArticleHow to force external LDAP directories to use specific DCs?
I have an Amazon AWS simple directory service, just a "proxy" directory, so the AWS workspaces could be integrated to my AD/DC environmentBut i´ve noticed that Amazon AWS does a DNS query for ldap SRV...
View ArticleDomain controller in place upgrade from 2012 to 2012 R2
Hi All,What are the challenges or issues or consideration to in place upgrade of domain controller from server 2012 to Server 2012 R2, in place upgrade is safe ?<o:p></o:p>Please provide...
View ArticleADFS PowerShell Claims Rule IP-Address Filter Syntax
Variants of the following work for me, but once I add an IP-Address filter, it never fires: I am asked to MFA on the machine with IP 145.151.139.145. So what is wrong or how can I debug to see what the...
View ArticleDFS namespace folder not working after DFS migration
After hours of frustration i decided to post my question on the Microsoft forum. I'm hoping that someone can help me out.I recently started a project to split our enormous fileservers into multiple...
View ArticleClik here to view.
Username in Security Tab automatically added?
We are just wondering why there a user that automatically added on the Security Tab
View ArticleIs it practical for a RODC to cover all subnets for servers in another...
Hello,Looking to extend our On-Prem Active Directory domain into another DataCenter, or 'Cloud Provider'. Firewalls will be open from the Cloud provider to our On-Prem Read/Write Domain Controllers,...
View ArticleDecommision a domain
Whenever I search for this, all I see is answers for decommissioning a "controller". But I'd like to wipe this domain off the face of the earth. It once had a two way trust with my current domain,...
View ArticleReplication Issue
Hello,<o:p></o:p>We are facing replication issue between to servers, both servers are in same sites.<o:p></o:p>We are getting error like “There are no more endpoints available...
View ArticleMassive file error events and VSS issues (only with AD DS server)
I'm posting this in the DS section because this is only happening to my AD server and the exact same problems followed to a brand new AD server I just setup.So to start, my AD server, lets call it AD1...
View ArticleAD Error 1126 and Warning 1655
I am running a Server 2008R2 environment with a single domain controller (Once this issue is figured out, I will be adding a second domain controller).I have found that every hour I get 3 events in the...
View ArticleCreate child domain, create new site in child domain, create IPsiteLink in...
We have a project where we need to create/add a child domain to our existing forest. We've already created a virtual server that will be the DC for this new child domain. In order to create this...
View ArticleADFS 2 Sync errors from Primary to Secondary server
Hello, I hope someone can help. We have 1 Primary ADFS server and 1 Secondary ADFS server (also 2 proxies) in our live environment . The secondary server has stopped syncing to the primary for over a...
View ArticleCreate e-mail enabled universal security group
Hi all,I am looking for a way to directly create e-mail enabled universal security groups from the "Active Directory Users and Computers" console. If I create the group from the Exchange Console, it...
View ArticlePowershell to update "Manager can update membership list" of AD Group.
Readed many articls about scripting enable "Manager can update membership list" of AD Group, also I wrote the scirpt, I think it should be fine to run.after debuging, get access is denied during the...
View Article