selective authentication trusts
We have a domain trust between DomainA.com and DomainB.local.DomainA.com is an external non-transitive incoming trust to DomainB.local and DomainB.local is an external non-transitive outgoing trust to...
View ArticleDomain Controller not replicating and unable to open ADUC/ADsite/DNS MMC console
We got strange errors on one of our W2K8R2+SP1 domain controllers. The DC had been up and running over a year. It stopped AD replication yesterday and ADUC/ADsite/DNS consoles were unable to open...
View Articleadprep32 /domainprep /gpprep fails with: adprep was unable to complete...
Running adprep32 to prep our Windows 2003 domain for new Windows Server 2008 R2 DCs.adprep32 /forrestprep ran without error after changing domain to native mode. However running adprep32 /domainprep...
View ArticleUnsure how to clear replication issue
Trying to determine how to clear a replication issue. Have a multi domain/multi forest configuration. Trying to standup a new dc/gc in an existing domain and getting errors which is preventing it...
View ArticleActive Directory Operations Master Isolated itself
So, Active Directory Newbie here. Have enough experience/knowledge to be dangerous. We have some trouble in the office, but I got a good feeling whats going on, but I don't how to professionally handle...
View ArticleName changes in AD not updating in ADUC?
Hi, Why is it that changing a users last name for example from within its properties does not reflect in ADUC immedaitely but using the 'rename' process reflect that change. Thanks
View ArticleWhat is the difference between replication of Sysvol and NTDS.dit database
Hi,What is the difference between Sysvol replication and NTDS.dit replication? I assume sysvol uses FRS/DFS to replicate GP, logon scripts etc between DC's and i can see that NTDS replication occurs...
View Article3 DCs, but if we turn off one, they all go offline
We have 3 DCs in one site in one subnet. 1 Physical, 2 Virtual.Right now, one of the virtuals is playing host to all of the FMSO Roles (moving soon, but I want to nail down this issue first.) I did a...
View ArticleAccount Lockout in Active Directory 2008 R2
We've implemented Account Logout policies in our Windows 2008 R2 domain with these settingsLockout duration: 30 minutes Lockout threshold: 15 invalid login attempts Reset account lockout counter after:...
View ArticleError connecting to dc2 from dc1
Hallo.I have 2 domain controllers (DC1 a windows 2003 SBS Server and DC2 windows 2003 Standard server). Dc1 one is named srv and Dc2 is named Data. Some months ago the servers stopped replicating and...
View ArticleTrust between 2003 domain and 2008R2 domain with old Windows NT4 client
Hi all,I've a Windows Domain "OLD" (Windows 2003 forest & domain functional level), I've some old Windows NT4 machines that are client of this domain. I've a new domain "NEW" (Windows 2008R2 forest...
View ArticleInstalling a 2012 DC in a all 2008R2 Domain - Keep Name of existing DC
Management wants me to install a new 2012 Domain Controller though keep the name of the Existing DC Server.The Existing DC had DNS, DHCP, WINS, Print Services, Trend Micro OfficeScan, and a few other...
View ArticleCan I have AD and NPS and CA server running on a single 2008R2
Hi,This is a basic question.Can I have AD,NPS and CA server running on a Single 2008R2 machine.if yes, then please outline NPS config steps when AD is installed.Thanks in advance.
View ArticleAD Server decommissioning
We have a site with some servers and users.I need to decommission the only AD server on this site (others AD servers exist elsewhere along with FSMO roles).Should I stop this server being a global...
View ArticleLastLogonTimeStamp query result is 0?
Hi Guys,Our client has a script that they are using to query the LastLogonTimeStamp of their users in their domains. Unfortunately, they have this domain that when they use this script to query for...
View ArticleAllow non-admin to install software/printer
I have a issue now...Right now im running with thisnet.exe localgroup administrators interactive /Add But can i remove that so they still can install software?the target mashine is a windows 7.When...
View ArticleSome Important Question About Active Directory.
Hi,i have two questions Q1- if i have one domain controller another is in remote office like RODC but in first time we are unable to create replication between them so what is the step to replicate...
View ArticleRead Cache or Write Cache ?
IS there any terminology in MS regarding READ CACHE ? can i say my local system or my local dns dns cache records are read cache ?
View ArticleAD Administration
Hi,We have AD Domain under which for each branches of our company we have created separate OU.Each location have separate admin to manage users under it.So how to give administrators in each individual...
View ArticleBest way to migrate DNS, DHCP, WINS and DFS from Windows 2003 to Windows 2008 R2
Hi,I'm looking to see what would be the best approach to migrate DNS, DHCP, WINS and DFS from Windows 2003 to Windows 2008 R2Also, the best way to manually move the these services to another server....
View Article