What To Expect If I Pre Build A Domain Controller Ship To Remote Site Then...
Good Morning Community Friends!I need a sanity check. So, We Just Purchases A Company that is on its original domain and I am going to deploy a new domain controller and migrate them into our domain.My...
View Articleauthentication policy and authentication policy silo
Need to grant the access via auth policy silo using specify access control conditions for the authentication policy for 5 servers & 5 users. Who are only able to access those server.What specify...
View ArticleWindows server 2012 R2 Conditional Forwarder: NSlookup fails the first time
Hi,Windows server 2012 R2.I have a conditional forwarder added to resolve to the customer domain (abc.com). When I do nslooup -type=mx abc.com it fails the time and it resolves the second time.My...
View ArticlegMSA won't logon after reboots
The gMSA is being used for SQL Server 2016 services. The gMSA has been setup and does work but only after reentering the name in the service properties. After a reboot, the following is in the system...
View ArticleDelayed access to AD resources without internet connectivity
My company requires that all AD and AD-related services administration be done on a system that has no connectivity to the internet. We have built two Windows Server 2016 RDS systems for all of our...
View Article"the security database on the server does not have a computer account for...
I am terrifically inexperienced with running a network. The error mentioned in the title occurred today out of the blue. When I came in this morning I was able to log in fine. When I left for about 3...
View ArticleGroup Managed Service Accounts
Hi All,A few questions regarding gMSA's. I've created the KDS Root Key and the AD Schema was already at a Server 2016 level (DC is on a Windows 2012 server). But checking AD, I do not have a Managed...
View Articlesend a message to all domain users over GP
i know this is an old thing, users deleting any email sent from IT, so i want to send a system message, is that still available. the pop up that appears to all users
View ArticleSchema extension - custom attribute of type Object(DS-DN)
Hello,I have extended the Active Directory schema with a custom attribute of type Object(DS-DN) (attribute syntax 2.5.5.1).Everything works fine. The attribute is displayed and editable in Active...
View Articlesmart card is required for interactive logon users attribute
Hello,I have a question when we tick this attribute on user's configuration.I know that it's ramdomize user's password, blocked interractive logon session...If we reset the user's password on an...
View ArticleAssign Static IP to local user in dial in with Powershell
Hello Iam making a powershell script to create a local user and give him all dial in permissions and everything was successfully done all i want to do is how to Assign Static IP to local user in dial...
View ArticleClik here to view.
How to sync certificates generated by external Root CA with internal CA
Hello All,I have 3 zones (internet, intranet and DMZ). Internet and intranet zones are physically separated and in different domains. I need to build a stand alone root ca in DMZ zone common for both...
View ArticleDomain controllers in Azure with 2016 DC whilst forest functional level is 2003
We have AD forest functional and domain functional level of 2003. We have 1 2003 DC and multiple 2012 R2 DCs. We're looking at implementing DCs in Azure, preferably using Windows 2016.Are there any...
View Articlewhat is standard recommendation of Microsoft to keep FSMO role on Domain...
Dear all,we have one domain controller & one Additional Domain controller (windows2012r2) but now all FSMO role holded on domain controller so i am just want to know what would be better for FSMO...
View ArticleClik here to view.
PowerShell to update NTDS on a Domain Controller
I need help with PowerShell and Active Directory. I need to view the NTDS Schedules of our Domain Controllers. Once I have their current replication schedules, I need to change the NTDS Schedule of a...
View ArticleActive Directory Domain Controller now answering authentication, yet forwards...
I have a odd issue with our Active Directory. A little backdrop, it was a SBS2008 Domain once upon a time. Many years ago. I have inherited this domain as it is now. We have 5 domain controllers in 3...
View ArticleClik here to view.
2012 R2 repadmin /syncall kerberos issues KRB5KDC_ERR_ETYPE_NOSUPP
Hello. I am working on a single DC root forest domain with another single DC domain in the same forest. I was trying to force a kerberos tickets to a third party app to use AES256 on the root domain...
View ArticleUnable to add second domain controller
HiI am currently assisting a client with issues relating to the environments domain controllers running on Windows Server 2012 R2. It would seem that issues have persisted for a while now. When I got...
View ArticleCannot join computer to domain (host to VM)
Hi guys,I do have to apologize in advance because I am a novice at this and I am doing a home study course now to improve my knowledge but just hit a brick wall!I have got a virtual machine on Oracle...
View ArticleI want to upgrade Active directory domain controller from windows server 2003...
I want to upgrade Active directory domain controller from windows server 2003 to windows server 2016. What will be challenge on client operating system which are the part of AD windows 2003 domain....
View Article