Active Directory
A set of directory-based technologies included in Windows Server.
6,431 questions
1 answer
Setting up smart card authentication to domain
i have taken over a domain that appears to have had ADFS partially installed and partially set up. the role has long been removed as well as the expired certificates. I am now trying to implement smart card authentication from a third party CA. I…
asked 2020-07-28T20:14:17.323+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 85%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAR%3C/text%3E%3C/svg%3E)
Al Rivers
1
Reputation point
commented 2020-10-11T16:11:54.237+00:00
Pierre Audonnet - MSFT
10,181
Reputation points Microsoft Employee
1 answer
One of the answers was accepted by the question author.
checking sysvol replication type when there is only 1 DC in the domain!?
Hi. I have a single DC, 2012 server R2. I want to add a 2019 DC because I know it is not a best practice to only have 1 DC (just started this job . Trust me, I freaked when I discovered there was only 1 DC!!!!) Here is the problem. I have gone thru…
asked 2020-10-09T17:06:04.28+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(169.60000000000002, 21%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESS%3C/text%3E%3C/svg%3E)
Sharyn Schmidt
241
Reputation points
commented 2020-10-09T18:18:43.817+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Anonymous
4 answers
Active Directory Domain NTP Design
We have 100 DC's in 8 countries ( US, UK, AUS, NZ, France and in Asia ) some DC's are in Azure, AWS and Vmware/xen hypervisors. Noticed some RDP login issues to Vmware servers and DNS issues to AWS. I thought PDC is set to external time source or…
asked 2020-09-09T13:29:43.433+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 77%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAD%3C/text%3E%3C/svg%3E)
Asela De Costa
1
Reputation point
commented 2020-10-09T07:30:18.493+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 57.99999999999999%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESY%3C/text%3E%3C/svg%3E)
Stephanie Yu
396
Reputation points
3 answers
Domain controller (maximum off time)
Hello, We have to depromote a DC and as a precaution to verify that everything works, we have an idea to turn it off for a week or two. What is the maximum time that a DC can be off without problems of decoupling? 90 days? I'm not sure how long…
asked 2020-09-15T16:26:21.607+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 68%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAG%3C/text%3E%3C/svg%3E)
Angel Garcia Gomez
21
Reputation points
commented 2020-10-09T07:29:28.86+00:00
Stephanie Yu
396
Reputation points
2 answers
Why would a cloud-only SMB company need to implement Active Directory?
Hi! I have a customer with less than 20 users, and already has implemented a Microsoft 365 solution, using teams, sharepoint, and exchange online. What is the reason to implement Active Directory? They want to improve security to have more control of…
asked 2020-10-05T02:35:26.093+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 11%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECR%3C/text%3E%3C/svg%3E)
Cristian Ruiz
191
Reputation points
commented 2020-10-09T05:53:57.047+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 96%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFF%3C/text%3E%3C/svg%3E)
Fan Fan
15,326
Reputation points Microsoft Vendor
4 answers
Sites and services auto generate
I have 4 sites and 4 domain controllers in my environment (one at each site) and I'm migrating them over to new hardware. I've stood up the new servers, fully patched, enabled Domain Services, etc on the new servers and they are all listed as domain…
asked 2020-09-30T16:02:51.62+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(92.8, 20%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ED%3C/text%3E%3C/svg%3E)
DollaBillz
121
Reputation points
commented 2020-10-09T05:26:43.087+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 16%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHX%3C/text%3E%3C/svg%3E)
Hannah Xiong
6,276
Reputation points
4 answers
Help! - Security Group Scope Nightmare
EDIT/UPDATE: Here is a summary of the two things which we saw in our environment which should not happen: Computers no longer saw themselves as a member of several security groups. Group scopes were changed from Domain Local to Universal to Global…
Windows Server 2019
Windows Server 2019
A Microsoft server operating system that supports enterprise-level management updated to data storage.
3,704 questions
Windows
Windows
A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.
5,307 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,431 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(140.8, 87%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJD%3C/text%3E%3C/svg%3E)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(102.4, 81%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJD%3C/text%3E%3C/svg%3E)
7 answers
One of the answers was accepted by the question author.
Event ID's 5829-31 Not Visible in Domain Controller logs after August 2020 Patches
Hello, we have applied the August 2020 patches on our Domain Controllers but do not see any logs with Event ID 5829-5831 since the updates. There is at least one Server 2003 machine (i.e. out of support OS) on our domain which I assume is still using…
Windows
Windows
A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.
5,307 questions
Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
12,921 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,431 questions
Windows Server Security
Windows Server Security
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
1,807 questions
Windows Server PowerShell
Windows Server PowerShell
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.PowerShell: A family of Microsoft task automation and configuration management frameworks consisting of a command-line shell and associated scripting language.
5,507 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 32%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
3 answers
Proper way to remove a turned off Domain Controller ?
Hi, The domain controller (Running Windows 2012R2) & other MS Windows Servers in a particular small site has been turned off for a couple of months. We are going to decommission all servers in that site. We would like to ask the proper way of…
asked 2020-10-04T22:53:27.293+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(147.20000000000002, 99%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ET%3C/text%3E%3C/svg%3E)
TonyJK
876
Reputation points
answered 2020-10-08T12:35:56.42+00:00
Anonymous
2 answers
Adding a Custom Attribute in AD and Only Give Access to Certain Groups
Working on Active Directory in a Windows Server 2012R2 / 2016 environment (with Exchange 2016). I want to enter everyone's cell phone number into AD and then have that information be searchable in Outlook, OWA, and the GAL on configured mobile devices.…
asked 2020-09-09T23:54:12.677+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 11%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETS%3C/text%3E%3C/svg%3E)
Tony Saunders
1
Reputation point
commented 2020-10-08T07:56:00.16+00:00
JeffYang-MSFT
6,241
Reputation points Microsoft Vendor
3 answers
Orphaned Enterprise CAs....
I inherited a network with two orphaned Enterprise CAs in Active Directory. Both DCs that were running these CAs, are long gone.... I found the following article and would like to confirm that it still applies to get rid of these orphaned CAs. The…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 20%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EL%3C/text%3E%3C/svg%3E)
1 answer
ADDS Forest Trust question
I have a query about ADDS domain trusts as i cannot wrap my head around it, allow me to build a quick scenario 2 forests forestA and forestB - They are able to resolve each other via DNS and are single domain environments S2016 Trust - 1-way…
asked 2020-10-01T11:22:51.697+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 73%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EK%3C/text%3E%3C/svg%3E)
KINGJULIAN
1
Reputation point
commented 2020-10-08T06:51:49.737+00:00
Fan Fan
15,326
Reputation points Microsoft Vendor
5 answers
One of the answers was accepted by the question author.
Export users list from OU in a csv file
Hi team, I`m currently working on a Powershell script in order to get the following information from all users in a specific OU and export them into a csv file: givenname surname samaccountname E-mail address Departament Title …
asked 2020-10-06T15:03:50.313+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 6%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
Allan Santos
21
Reputation points
commented 2020-10-07T19:38:22.843+00:00
Allan Santos
21
Reputation points
2 answers
2016 multihomed domain server
We have a control system in place with a primary and backup domain controller. They are a multihomed domain server. We have multiple NICs that the DNS is monitoring. The question is we have panelviews that are trying to authenticate against the DNS using…
asked 2020-09-29T13:00:48.773+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 59%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EST%3C/text%3E%3C/svg%3E)
Smelser, Timothy
1
Reputation point
commented 2020-10-07T07:51:18.627+00:00
Hannah Xiong
6,276
Reputation points
4 answers
Move a Domain Controller to an Orphan Site.
Hi All, I have an environment where I have two sites one in India and another in China. I have Domain Controllers under each site that are communicating among themselves. If I demote one of the servers, it will disturb the communication among the other…
asked 2020-10-01T08:00:16.13+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 81%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGD%3C/text%3E%3C/svg%3E)
Garima Das
1,061
Reputation points
commented 2020-10-07T06:28:35.3+00:00
Fan Fan
15,326
Reputation points Microsoft Vendor
12 answers
One of the answers was accepted by the question author.
How to upgrade to a 2019 domain controller with a current 2008 primary controller
Hello, we currently have a 2008 R2 domain controller and a 2012 R2 secondary domain controller. I would like to add a 2019 domain controller and eventually demote the 2008 R2 DC. I understand that the 2019 server schema needs to be upgraded. Is there a…
asked 2020-08-29T14:28:02.677+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 48%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECG%3C/text%3E%3C/svg%3E)
Computer Gladiator
441
Reputation points
commented 2020-10-06T23:19:38.68+00:00
Computer Gladiator
441
Reputation points
1 answer
Choose CSP when using Get-Certificate powershell
Hi, I am looking for a way to change the CSP which is being used by the Get-Certificate powershell function. To be precise, i am trying to use the CSP Type 24 Microsoft Enhanced RSA and AES Cryptographic Provider. Issuing certificates from the…
asked 2020-10-06T12:26:47.407+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 78%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EG%3C/text%3E%3C/svg%3E)
Georg2G
6
Reputation points
answered 2020-10-06T13:47:58.097+00:00
Vadims Podāns
9,121
Reputation points MVP
1 answer
The trust domain has been validated successfully, but I can't find the Object User Domain A, in DC Domain B, even though the location I have changed to Forest Domain A
The trust domain has been validated successfully, but I can't find the Object User Domain A, in DC Domain B, even though the location I have changed to Forest Domain A
asked 2020-09-25T05:33:32.163+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 35%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELA%3C/text%3E%3C/svg%3E)
lucky alqodar
41
Reputation points
commented 2020-10-06T09:27:44.54+00:00
lucky alqodar
41
Reputation points
3 answers
How to fix this error?
We cannot log in the windows 2016 by Personal ID,the error message is "The trust relationship between this workstation and the primary domain failed". I logged in by admin ID and checked the log message.The log content is as below.Would you…
asked 2020-09-15T07:08:44.807+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 45%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EXM%3C/text%3E%3C/svg%3E)
Xue Mei Xu
21
Reputation points
commented 2020-10-06T08:42:40.133+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 15%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELW%3C/text%3E%3C/svg%3E)
Lu Wang
1
Reputation point
1 answer
PKI infrastracture setup multiple hashing algorithm
Hi, I would like to ask if its possible to setup a root CA with SHA 256 then multiple issuing CA with different hashing algorithm like 1 issuing is SHA 382, other issuing is SHA 512 and 1 issuing CA using 256?
asked 2020-09-28T13:01:30.17+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 81%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EB%3C/text%3E%3C/svg%3E)
bizcntradmin
191
Reputation points
commented 2020-10-06T01:30:36.74+00:00
Hannah Xiong
6,276
Reputation points