How to Replicate ACL for the directories and files that are synced thru Robocopy
We have one server(main site) running with Windows 2003 and DR server running with 2008.We have the robocopy to replicate the users folders and files from Main site to DR server.And We cannot use the...
View ArticleDC promotion and adprep/forestprep
I've tried to dcpromo a new Windows 2008 server installation to be a Domain Controller, running in an existing domain. I am informed that, first, I must run adprep/forestprep ("To install a domain...
View ArticleDisable users to join computer to domain
Hello : How can i restrict users to not join any computers to domain using group policy ? thank youNetwork is my LOVE
View ArticlePreventing roaming profiles automatically migrating from XP to .V2 Windows 7...
We are currently running Windows XP SP3 clients with a Windows Server 2008 R2 domain. We are migrating our estate to Windows 7 and want to give the users a "clean slate" by giving them a brand new...
View ArticleSecondary DNS not Authoratative
Hi everyoneI've been looking around the forums and Google for a while but haven't found a solution to my problem.I have DNS configured on my DC right now and am looking to setup a backup DNS server on...
View ArticleADFS 2.0 - RP Trusts always show as out of date due to monitoring errors,...
I am running Win2008r2 and have a pair of ADFS servers and ADFS proxy servers behind load balancers and Office365 is only ADFS partner. Everything is working right now, but I have noticed that RP...
View Articlepromote server 2012 to dc - trust for delegation test fails
Hello, I added a server 2012 to my domain (win 2003 native functionality level), I'm now trying to promote it to DC but it fails while verifying the requirements. The test...
View ArticleRedesigning my AD - ou structure advice
Hi all,I am in the process of re designing our AD. The original AD person before me used the default containers (computer and users) to store 90% of our objects, which obviously is a nightmare to...
View ArticleKRB_AP_ERR_MODIFIED then migrate VM
Hello When i create a domain account or move a virtual machine with windows 2008r2 , get this error:The Kerberos client received a KRB_AP_ERR_MODIFIED error from the server mss_farm. The target name...
View ArticleRestrict administrative accounts
Hi, I'm looking for a way to restrict certain domain accounts (Domain Admins, Enterprise Admins, etc.) .Is it possible in a Windows Active Directory environment to allow certain AD user account to...
View ArticleTime Sync -Best Pratice and related questions
Hello All -I want to Enable NTP service on my Domain so as all my VMs,Client Computers, NAS boxes,Storage devices sync with one single source .I have been through articles which describes how to create...
View ArticleDomain Trusts, break email communication
I need help i have a domain i wish to migrate into another domain. When i set up the 2 way forest trust the trust part works great but what happens is the ability to email them goes out the...
View ArticleDsRemoveDsServerW error 0x5(Access is denied.) when removing failed 2003 DC...
Hi,I have a failed 2003 SP2 DC (hardware failure) and I've already seized the FSMO roles onto another DC. Currently, we have two functioning DC's. The ones still functioning are 2003 SP2 and a 2008...
View ArticleDNS Appending Space to DC Names
The client I am currently working at has asked me to take a look at one of theirmany Active Directory forests. They are saying their Admins are reporting the fact that they cannot do any amendments to...
View ArticleAdd RODC W2k12
Hi I have a forest and domain in W2k8R2 native, flew days ago I was extended the schema and prepared the domain to install W2k12 domain controllersThe first dc that I installed was a RODC over 2012,...
View ArticleLSA and GroupPolicy Error-Events on 2012 DC after dcpromo
Hi AllI have started to migrate my domain controllers from 2003-R2 to 2012. My first 2012 DC now has some error's in eventlog. I am unsecure if this is a problem or not. First i got Event-ID 40961 vom...
View ArticleHosting ADFS and AD LDS on the same servers
We're not looking for these two components to inter-operate with each other or leverage each other as some other threads suggest. We'd simply like to host these components on the same two server NLB...
View ArticleKerberos KCC_ERR_S_PRINCIPAL_UNKNOWN
I have 2 Domain Controllers (DC and ADC) in Windows Server 2003While i have added these SPN in the ADC, Reset the SPN by using setspn command for ADC machine, Checked duplicate entries by using ldap...
View ArticleDomain members diappear
We have some crazy stuff going on. We can add members to Domain Admins and they stay some time, but after a while they are removed. I can add a group into domain admins and after a while they go away...
View ArticleDSADD, setting securities on pre-staged accounts
I need to pre-stage 100's of computer accounts into a specified OU, which I can do via batch file, lines of which may be;dsadd computer "cn=client01,OU=In Build,OU=IT,dc=mydomain,dc=co,dc=uk"dsadd...
View Article