All 2008 R2 DCs have same issue
Hi,We have about 15 DCs, some 2003 and some 2008R2. The 2003 ones are all good but the 2008 R2 ones seem to have strange things going on.1. Cannot ping from unelevated command prompt, not even...
View ArticleIs there a way to see how many users and devices connect to active directory...
Hi,as title really, Is there a way to see how many users and devices connect to active directory per week or month?ThanksMac
View ArticleAD Forest graphical Port Overview Server/Clients
Hi guys,I´m searching for a graphical overview of AD Ports that have to be open in a forest and its domains between all servers and their clients.In our environment Servers and Clients are located in...
View ArticleDomain login problem
I have a small forest with a root doamin and a child domain with two DCs in each domain.The first DC (PDSvr1) has the roles PDC, RID, Infrastructure, DNS, WINS, DHCP.The second DC (PDSvr2) has the...
View Articlethe directory service is busy when trying to remove domain controller from trust
i am recieveg this error indicating i need to have all my user accounts and trusts at the Advanced Encryption Standard (AES) or RC4 Kerberos encryption...
View ArticleManaging multiple non-trusted domains through ADAC
Within our company we have many forests/domains and at this point in time there two in particular we are not permitted to add any trust between even though there are network connections between the...
View ArticleSingle windows server 2003 DC have ERROR Issue with active directory access
When trying to access Active Directory Users and Computers I get the following error: The naming Information cannot be located for the following reason: the srever is not operational.The server is...
View ArticlePreventing a site from authenticating to a remote DC?
Hello,I'm trying to set up a domain trust between 2 Window 2003 Native domains. I have done this before and I can see that DNS is working between sites and the required ports are open. However the...
View ArticleIn-Place upgrade of Windows 2008 to Windows 2008 R2 DC
Does it matter what FSMO role you start with? What domain/forest rights are required? I see this article: http://technet.microsoft.com/en-us/library/ee522994(WS.10).aspxAny feedback would be...
View ArticleHub and Spoke config in Sites and Services
I have a question about a hypothetical sites and services configuration.There are 10 sites in a hub and spoke WAN infrastructure (only one hub)The spokes cannot talk to each otherThere is just one...
View ArticleDMZ, 1 way trust and RODC's
Quick description of the setup - Internal forest/domain - internal.localdmz forest/domain - external.localThere's a 1 way trust where external trusts internal. There are also RODC's for internal that...
View ArticleDelegation - Templates could not be applied
We had been using the Account Operators group in Active Director for out Helpdesk, but suddenly people were getting access denied error. To resolve this I was trying to use delegation. However,...
View ArticleOffline DFS Server Removal: Server 2008 R2
Can someone tell me the steps to cleanly remove a Windows 2008 R2 DFS server that is offline? Thanks.
View ArticleHow to size a hardware for Active directory for 100users
what is the minimum CPU/Memory/Harddsik space required for 100users
View ArticleQuestion about zones intermixed with domain
Hello,Say I am using a ad domain setup on a subdomain of registered external domain name. For instance: mycompany.foo.com. prefix = mycompany suffix= foo.comInternally, I want access to external sites...
View ArticleServer 2008 R2 Certificate Services
We currently have a windows server 2003 Domain but i am looking to install a server 2008 R2 2 teir PKI infrastructure. Our Forest root domain is empty and the Cert servers will be installed in a child...
View ArticleADSI SetPassword(string) doenot respect password policy while resetting password
Hello All, We want to reset password from OIM respecting the password policy, without sending the old password.In Active Directory connector SetPassword(string NewPassword) method of IADsUser class is...
View ArticleAlternate UPN
Hi, I'm trying to setup alternate upn suffixes so that our users can login usinguser@domain.com instread of domain\user. We have one forest and one domain (DC Windows 2003 SP2).I went ahead and added...
View Articlecompletly bonened. Access to C: denied. always told need admin permission....
Ive been locked out c:. Told I do not have admin permission. Told to contact admin. IAM THE ADMIN!!! I get a prompt after every shutdown/restart to enter an administrator or power password. Windows...
View ArticleRestrict RPC ports - multiple KBs
There are KB talk about restrict ports on individual services (for example http://support.microsoft.com/kb/224196, http://support.microsoft.com/kb/319553), then there is this KB 154596 (restrict RPC...
View Article