problem setting up new domain in different subnet
i'm in the middle of studying for exam 70-640, so a lot of stuff is still a mystery for me.all these are setup in a VM. Host and all guests OS are 2008 R2 trial. All VMs are connected connected using a...
View ArticleGrant permissions to a single custom attribute, possible?
Hi Is it possible to grant permissions to an account to write to one or two attributes fields in AD only? Instead of giving full rights to the whole schema. MMaelito
View ArticleInter-Forest Site Subnet Overlap?
Hello,I have domain1.com with a site/subnet of London & 10.0.0.0/24 (added in sites and services) and now need to create domain2.com but need to use part of the 10.0.0.0/24 subnet. There will be a...
View ArticleChange domain netbios name
Hi,We have a domain setup (example: TEMP.com) and the netbios domain name was set to (example: TEM&P) when the domain was first created (NT 4.0 days). Many of our new applications have a problem...
View ArticleCan't demote DC
When I try to demote the domain controller, i receive the can't transfer schema partition "the dsa operation is unable to proceed because of a DNS lookup failure", what I need to check? The DNS...
View ArticleAuto email notification to system administrators if users do not login for...
As from the title above, basically is to allow the system administrators to be notified that these users did not login to their PCs for at least a month and above, and therefore is required to disable...
View ArticleAD with FSMO down for days?
Our agency is moving over the holidays and my DC with FSMO roles might be down for a day or two. I have some backup DC/GC servers in remote offices. Should I transfer FSMO rolls to one of those servers...
View ArticleCreate Account for Select Users to Install Programs
We are outsourcing some of our IT to a local company and I'd like to allow a few select users to have the ability to install plug-ins or software on end-users machines without having to contact an...
View ArticleImplications of re-using server names.
In our environment we have a group that routinely changes the names of servers. Then later on they will create a new server and give it the original name of the one that was renamed.This seems like a...
View ArticlemAPIID value not changed after Schema upgrade
I have noticed that the mAPIID value remained the same (32974) even after the schema upgrade.We had the schema version 31 and upgraded to 47 but the above attribute didn't change.I believe the that is...
View ArticleLDAP Query in Active Directory - NPS Network Policy Attribute
Hi Guys, Does anyone know the best way to search for users in Active Directory (2008) with the attribute "control access through NPS Network Policy" (In user properties > dial In Tab) set too deny?...
View ArticleHave to remove and readd multiple PCs to domain every morning, no error messages
For the past 2 weeks, every morning we have a few computers that will not allow any domain user to login (tested with 3 known good accounts)The only error message is the standard (Username or password...
View ArticleSecure LDAP - Domain Controller FQDN (.local vs .com)
According to this article microsoft requires that the name of the certfiicate match the FQDN of the server for LDAP over SSL with a third party.The FQDN of my Domain Controller is...
View ArticleAre my DNS settings correct as Exchange throws a wobbly when the pdc is down!
Hi there, apologies for posting but I can't seem to find the answer to this anywhere and afaik I am following all good practice! We have several sites with DCs in all of them and at our main location...
View ArticleCross domain account logon events
Hi,Our organisation has two domains with a 2 way trust established between the two, lets call them domain A and domain B.We have users in domain A who often use domain resources in domain B, however,...
View ArticleStopping the DNS service on a domain controller
Hi all,So I am in the process of demoting my old 2003 dc and dns servers.To begin with I would like to stop the dns service on the domain controllers to make sure clients still work and connect to the...
View Articleerror while domain
Dear All, d error is coming while adding system in domainPls help for following error,Network Path was not found.
View ArticleAD LDS user's cn equal to user's sAMAccountName
The environmentI configured a AD LDS instance and sync it with an existing AD. To help and guide me in this process I followed this tutorials: http://www.thegeekispeak.com/archives/64...
View ArticleClik here to view.
AD replication problems due to Tombstone.
I am having AD replication problems that seem to have been caused by a fluke NTP problem. For reasons that have been corrected, our time sources became dis-syncronized by decades (there are references...
View ArticleStart from scratch
Current setup: 3 x Windows 2003 R2 Enterprice domain controllers, a file server, Exchange 2003 single server and various other member servers. Clients running either Windows XP Pro SP2 or Windows 7...
View Article