AD GPO vs local policies
I am helping locking down some systems and we are creating a GPO (Active Directory) to do most of the work for us, however we have some parts that will need to be set manually (blanket install of the...
View ArticleLDAP round robin
Hi All, Currently, we have applications that point at a specific domain controller for LDAP queries. One of which is quest authentication services which we use to provide AD integration for unix/linux...
View ArticleUnable to promote server to domain controller
0 I am trying to promote a domain controller in Hyper-V Windows 2012, but I keep getting an error message "Verification of replicas failed. An Active Directory Domain controller for the domain could...
View ArticleDomain computers and their accounts : SID and other identifiers
Hi, I've searched high and low for this, and have finally caved and decided to post a question on this topic. I recently did some debugging on a failing WinRM configuration, and found that i missed a...
View ArticleSYSVOL failed to replicate
I have searched the forum and internet and couldn't find a answer. I wish I can get some help here. Our domain has only two DCs, DC1 and DC2. They both running Server 2008 SP2 x86. The domain...
View ArticleSetFileSecurity returning error ERROR_INVALID_PRIMARY_GROUP
Hi. We have a program that migrates data from one NTFS volume to another NTFS volume over CIFS. The program runs as a service under a specific service account that has Domain Admin permissions. We...
View ArticleMerge 2 domain with same name
Dear friends, We have 2 domain controller with the same domain name (vnlab.local) but the IP address is different. IP 1: 192.168.1.2/24 (300 users) IP 2: 10.2.234.2/24 (50 users) There is anyway to...
View Articleadd Vlan's to sites and services
In the past couple of months I have had to add VLANs to my network for wireless access. I have added 3 VLANs at each site (14 sites total) for the wireless. I also had to change subnet masks on two...
View ArticleAre the SID's re-usable in AD?
Lets say, we delete a object from AD, after the Tombstone interval of 180 Days the object and the SID will be permanently deleted, even if a new object with the same is created it will have a new...
View ArticleUser Admin Locked Out Every Night
I have one admin that is getting locked out every night. When I look in the logs I see pre-authentication failures for the user. Failure Reason = 0x18. If looked up documentation and I've check that...
View ArticleConfiguring Active Directory users authentication on Cent-OS boxes using LDAP
Hello, I am trying to authenticate AD users on Cent-OS box.I have installed AD on my test machine. From Cent-OS, I can do ldapsearch on that. However when I try to authenticate using users it gives...
View ArticleChange the UPN name format
Hello, What would be the most effective way to change the UPN name format from: "AliasName@internaldomainname.com" to: "First.LastName@externaldomainname.com" to all clients under one OU - "BCW-Users"...
View ArticleActive Directory Replication Errors - help and advice please...
Hi All, We seem to have developed quite a major fault in our Active Directory Services. Picking on one server for starters, which was recently re-installed, we have the following errors: EVENT ID...
View ArticleWhat is the recommended Number of GCs per Site?
Am using the hub-and-spoke model. The hub has 7 DCs with 4 being GCs. The hub connects 30 sites with each site having a DC and a GC. This a forest with two domains - production and QA domains. we have...
View ArticleOutlook LDAP address book connector -> sending to user is working -> sending...
Hello, Situation: I have already posted the same question to the office 365 forum http://community.office365.com/en-us/forums/170/t/73372.aspx I have configured an outlook ldap address book conection...
View ArticleSnapshot and turn off DC
Hi I have sitatuion which i'm not 100% sure and want to ask you. Let's say it is 2 sites: Primary Site and DR Site. In primary site are two DC: DC01 and DC02, in DR Site is one DC: DC3 All DC are in...
View ArticleAssign two IP addresses on domain controller
I am bringing up two new Domain Controller (Server 2008R2) which will take over all FSMO roles from older 2003 DCs which will be retired. Our domain controllers are also DHCP, DNS, and WINS servers for...
View ArticleActive Directory Web Services Service will not start
The Active Directory Web Services service will not start on a 2008 R2 server with Exchange 2010. System Specs: Dell PowerEdge T310 Dual Xeon 2.67GHz X3450 24Gb DDR3 RAM Perc h700/1Gb BBWC 8 disks/ 3...
View ArticleUpgrading from 2003 DC to 2008 DC
Hi all, I am about to upgrade our domain from 2003 sp2 to 2008 r2. We currently have 3 2003sp2 dc's. dc1, dc2, dc3 (fsmo are on dc1 and dc2) Does sound like the right approach? - Backup all DC's - Run...
View ArticleCan only log into Windows with pre-Windows 2000 login username
Hi there, Does anyone know why I can only log in with a pre-Windows 2000 username? Infrastructure is Windows 2003 Active Directory. User account is as follow: User login name: JohnSmith Pre-Windows...
View Article