[AD Bitlocker/Network unlock] Can enforce AD unlock USB drive?
Hello: In domian, All computer using bitlocker and unlock by and only by network unlock. Here is what I want to achive: When any employee useing removeable media, They enforce require using bitlocker protected USB drive, And those drive unlock by…
GPO for disable power plan
Hi, I have a service account that used to login to several workstations across multiple sites. These workstations display are need to stay on. But because of our GPO, it's going to the sleep mode. Without finding these devices and excluded from…
DFSRPrivate Installing Folder
I have been working through some issues with SYSVOL replication lately. I've noticed the "Installing" folder in DFSRPrivate has around 160,000 files, which appear to be .bat files included in two different GPO's. All the domain controllers…
Raise a 2k19 domain controller in core server mode using an answer file.
Good Morning! How can I raise a 2k19 domain controller in core server mode using an answer file? Is there any material that teaches step by step? It will not be a RODC. Thanks.
AD Fun after user enforced shutdown
Hi All, I've got a problem with a server at a charity I volunteer at, where it appears one on the DCs at one of their remote site was shut down on the button. The following day, the server involved started complaining about a target account being…
New active directory for group of comapnies
The situation - one group of small comapnies. The main DC will be located at the cloud. each company will have 1 dc or 2 in office replicated from cloud. what is the best way to implement the new active directory ? each company with separate…
AD delegation wizard permissions issue
Using the delegation wizard to allow the help desk to reset passwords In one OU, there are 12 user accounts. Only 1 of the 12 user accounts has the “User must change password at next logon” greyed out. I can’t understand why its only greyed out on…
Windows Image Recovery
Been restoring Windows Server 2012 Standard Full backup (Bare metal + 2 logical drives) to Hyper-V virtual machine. Restores logical drives then gets stuck on "Cleaning up" screen, not sure how to get around this? Been running for 12 hours. I…
CSV batch registration method using Powershell of Active Directory user account property (Department)
In Active Directory, I want to reflect the specific value (Department) of the registered account property in CSV with PowerShell using PowerShell. (If possible, please tell me the sentence of the completed command) Commands on Powershell and contents…
How to redirect clients of Active Directory site with RODC to another site when all RODC in site fail?
Hello! We have 3 sites: two central sites A and B with RWDC and remote site C with 1 RODC. What must we do to redirect clients of site C with RODC to another site A (not to B) with RWDC when RODC in this remote site fail? The access to site B is…
Duplicate objects in AD and ADC (hybrid environment)
Hi, We are managing a migration to Office 365. I have therefore configured a server with a DC role and one with the Azure AD Connect component. Some users had already been enrolled in Azure AD to take advantage of Office 365 licenses, while…
AD CS Expired Root CA
We have a 2 tier PKI environment. Every time i add a server in the domain 2 expired Root certificate appears in the Intermediate CA store of new server. one is certificate template cross certification authority template and other is Root…
How to manage local administrators group Centralized on all systems
Dear Experts, I need your expert opinion that How to manage local administrator Account Centralized from Domain via group policy, currently we're managing local admin account using restricted group via group policy but we have a lot of OU's and a lot…
AD CS: Deploying Cross-forest Certificate Enrollment
With reference to the article https://video2.skills-academy.com/en-us/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/ff955845(v=ws.10) can somebody please clarify if I already have a Enterprise CA in an Account Forest can I establish a 'Cross…
Can group policies apply, in one way trust between the ABC.com domain and XYZ.com domain two forests
Hi Tea, Can group policies applied, in one way trust between the ABC.com domain and XYZ.com domain two forests. We have two forest domain, one is ABC.com and another is XYZ.com, and there is one way trust configured from ABC.com to XYZ.com. If we…
Domain Controller for DR Site
We're in the process of adding one domain controller in a different site for disaster recovery, but we don't want users to be authenticated from this DC and/or use the DNS server in the DR site. is there a way to specify that the new DC in the DR site…
Accounts disappear from Remote Desktop Server
Hi MS Q&A, I found a very strange observation regarding accounts disappears from Remote Desktop Server. A. Symptom: Remote desktop users in Domain-Controller have been added to the user list of the remote desktop server. In this…
AD Delegation not applying
I have 2 sub OU's and I have delegated permissions to both OU's the same way. I went through ADUCs and went through the delegation wizard. I gave a group create/delete permissions as well as write for computer objects. The goal here was to give my Help…
Accidentally deleted the wrong Public Folder database via ADSI (Exchange 2013)
Hello, accidentally deleted the wrong Public Folder database via ADSI. I have EDB and transaction logs but how can I get back data? Exchange 2010 SP3 Please , help me :)
Will Active Directory Connect Delete Cloud Accounts?
Hello, My company is creating a virtual environment within the Azure cloud with two VMs running Active Directory. These are brand new VMs with no Users or Groups, or Computers created (other than the admin account). We have been using Azure AD to…