Active Directory
A set of directory-based technologies included in Windows Server.
6,121 questions
1 answer
what are recommendation for implementing PAW
Hello What are recommendation for implementing for PAW in tier 0 Specially security point of view . Thank Rich
asked 2024-06-20T13:53:06.03+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(0, 54%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERK%3C/text%3E%3C/svg%3E)
Richa Kumari
286
Reputation points
answered 2024-06-20T15:59:55.9366667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 9%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWL%3C/text%3E%3C/svg%3E)
Wesley Li
5,960
Reputation points
3 answers
How to get a list of AD users that are set to change password at next logon
Hello, I am trying to export a list of all users in AD including a column for "ChangePasswordAtLogon" attribute. I have tried a lot of different variations but none of them have worked. This is one of the formats that didn't work. …
asked 2024-06-19T22:39:41.01+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(259.20000000000005, 14.000000000000002%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EV%3C/text%3E%3C/svg%3E)
Vahid
0
Reputation points
answered 2024-06-20T15:03:03.7433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 74%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERM%3C/text%3E%3C/svg%3E)
Rich Matheisen
45,591
Reputation points
1 answer
Adding legacy computers to the domain
We have approx 20 Mazak milling machines running either Win 95, Win 2000 Pro or Win XP. Since the beginning of the year I've not been able to re-add them back onto the domain (functional level 2016). As they are old a hard drive replacement is often…
asked 2024-04-24T13:20:29.91+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 67%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESB%3C/text%3E%3C/svg%3E)
Stephen Benson
0
Reputation points
edited a comment 2024-06-20T10:39:12.2433333+00:00
Stephen Benson
0
Reputation points
2 answers
Your reply url contains prohibited words or prohibited domains. [BlStHTuVZ800ZGEvsNn04K]
Hello, I have a AAD B2C tenant and an App registration inside it. I'm trying to add a platform configuration for Android platform but getting below error. Can anyone help mw with this? the redirect url is :…
asked 2024-06-19T10:46:58.19+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 83%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMK%3C/text%3E%3C/svg%3E)
Mradul Karmodiya
0
Reputation points
edited a comment 2024-06-20T10:34:27.15+00:00
Mradul Karmodiya
0
Reputation points
0 answers
how to add new PAW WorkStation that are connected with vpn and other network
Hello, What are recommendation or point should be consider when adding PAW Workstation in Active directory tiering 0 part in network point of views. for example ,some workstations may be in connected with VPN and may be have some other network or in…
asked 2024-06-20T09:50:17.45+00:00
Richa Kumari
286
Reputation points
edited the question 2024-06-20T10:05:00.42+00:00
Richa Kumari
286
Reputation points
2 answers
Unable to delete mailboxes in Exchange Online
Hi Everyone, I really need help because we've been struggling this issue for more than 2 months. This is happening for the first time. I created an AD User 2 months ago and it created 2 duplicate mailboxes on Exchange Online. I am trying to hide from…
asked 2024-06-19T18:22:59.0233333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 79%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EEC%3C/text%3E%3C/svg%3E)
Emirhan Cakir
0
Reputation points
answered 2024-06-20T09:41:57.05+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 92%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYL%3C/text%3E%3C/svg%3E)
Yanhong Liu
4,420
Reputation points Microsoft Vendor
1 answer
When attempting to modify files within the Netlogon folder in Active Directory, I've encountered instances where files are use and cannot be change
Dear Experts, I'm seeking assistance with aspects of Active Directory (AD) management and troubleshooting. Specifically, I am encountering a error that the files are in use and cannot be change in the Netlogon folder. When attempting to modify files…
asked 2024-05-13T04:19:37.46+00:00
Dipto Adhikary
20
Reputation points
commented 2024-06-20T05:40:52.6133333+00:00
Dipto Adhikary
20
Reputation points
1 answer
what are the permission recommends for domain operator in AD tiering 0
Hello Experts, what are the permission recommends for domain controller operator in AD tiering 0? below is the OU structure and domain operator group is highlighted. forumad.png Thanks Rich
asked 2024-06-19T05:22:47.58+00:00
Richa Kumari
286
Reputation points
edited the question 2024-06-20T05:18:00.5066667+00:00
Richa Kumari
286
Reputation points
1 answer
DNS Zone Locks and Propagation Delay in Active Directory
Dear Experts, I'm seeking assistance with aspects of Active Directory (AD) management and troubleshooting. Specifically, I am encountering a DNS zone lock and propagation delay issue within the Active Directory environment. When I trying to make changes…
asked 2024-05-13T03:54:23.7433333+00:00
Dipto Adhikary
20
Reputation points
commented 2024-06-20T05:14:49.8333333+00:00
Dipto Adhikary
20
Reputation points
1 answer
Missing ADWS when deploying Azure Stack HCI
Hi, I encounter such an error during the validation of Azure Stack HCI cluster deployment, please advise how can I troubleshoot, thanks! Type 'InvokeEnvironmentChecker' of Role 'DeploymentService' raised an exception: Fail to initialize cloud deployment:…
asked 2024-06-06T09:53:50.7633333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(6.4, 27%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDS%3C/text%3E%3C/svg%3E)
Daniel SHEN
5
Reputation points
commented 2024-06-20T04:52:28.0666667+00:00
vipullag-MSFT
25,606
Reputation points
1 answer
what are the criteria we can follow to make any object as part of AD tier 0
Hello Expert, What are the clear criteria that should be followed as template to decide any object as tier 0 in AD . that will help in deciding where we object in tier 0 . Thanks Rich
asked 2024-06-19T05:01:02.8933333+00:00
Richa Kumari
286
Reputation points
answered 2024-06-19T16:55:11.97+00:00
Wesley Li
5,960
Reputation points
1 answer
Allow non-admin users of workstations to delete files/icons from Desktop using Group Policy
Hello, I'd like to ask if there is possibility to allow non-admin users of computers that are joined to domain to delete files and icons from their desktops. We have ca. 100 workstations with Windows 10/11 and sometimes deleting items is quite time…
asked 2024-06-13T10:46:19.5966667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(12.8, 27%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPC%3C/text%3E%3C/svg%3E)
Piotr Czerwik
0
Reputation points
commented 2024-06-19T12:33:33.74+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 62%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDZ%3C/text%3E%3C/svg%3E)
Daisy Zhou
20,556
Reputation points Microsoft Vendor
1 answer
One of the answers was accepted by the question author.
one of our user recently changed his AD account password and now he is unable to access his all network drives.
Hi All, one of our user recently changed his AD account password and now he is unable to access his all network drives. After every each login his AD account gets locked and get the attached error. Please advise. Thanks
asked 2024-06-18T14:56:40.2+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(48, 23%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHZ%3C/text%3E%3C/svg%3E)
Hussain, Zakir
20
Reputation points
accepted 2024-06-19T12:16:42.3166667+00:00
Hussain, Zakir
20
Reputation points
1 answer
Have a account in our Azure tenant. Unable to access Sharepoint or accounts.microsoft.com
Have a account in our Azure tenant. Unable to access SharePoint or accounts.microsoft.com. User has been synced from AD. When changing password in AD, the Audit logs in Azure shows the changes so its synced. Need further assistance or guidance on where…
asked 2024-06-18T13:35:06.1833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(51.2, 98%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EL%3C/text%3E%3C/svg%3E)
LOUJV
0
Reputation points
answered 2024-06-19T02:57:05.43+00:00
Yanhong Liu
4,420
Reputation points Microsoft Vendor
1 answer
Free Alternatives to Roaming Profiles
Hello everyone, Our organization is currently exploring free alternatives to roaming profiles in our Windows environment. We do not currently use any form of roaming profile and are looking for efficient solutions to maintain consistency for users who…
asked 2024-06-18T11:19:19.8033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 21%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EIR%3C/text%3E%3C/svg%3E)
IT Researcher
46
Reputation points
answered 2024-06-19T02:29:27.15+00:00
Karlie Weng
15,916
Reputation points Microsoft Vendor
0 answers
error="invalid_token", error_description="The issuer 'https://sts.windows.net/22914068-b6f0-4fee-a0e6-e8df19bb78a1/' is invalid"
Related Issue: https://video2.skills-academy.com/en-us/answers/questions/1697294/authentication-fails-when-api-method-is-protected I am trying to call a protected method on my api and I get the error shown in the title. Protected API method being…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 43%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESW%3C/text%3E%3C/svg%3E)
1 answer
what are the permission recommends for domain controller operator in AD tiering
Hello , what are the permissions that are recommended for domain controller operator in AD tier 0 . Thanks Richa
asked 2024-06-18T12:36:34.8166667+00:00
Richa Kumari
286
Reputation points
answered 2024-06-18T14:37:23.51+00:00
Daisy Zhou
20,556
Reputation points Microsoft Vendor
0 answers
How to restrict admin access of all the users within an organisation
Hi everyone, In my organization, all employees log in using their Microsoft email IDs, formatted as user.name@domain.com. Currently, all users have administrative access to applications such as PowerShell, Command Prompt, etc. I want to restrict this…
asked 2024-06-18T08:49:03.1066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 78%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAG%3C/text%3E%3C/svg%3E)
Akshat Gupta
0
Reputation points
edited the question 2024-06-18T09:29:58.7866667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 17%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
Givary-MSFT
30,071
Reputation points Microsoft Employee
2 answers
Show all domain users on logon screen
hi there, i have three users, who share a PC. PC is in a local windows domain. all three users a domain users and already logged in on this PC successfully. PC has a local admin account. How can i show all three users on the bottom left list in the…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(32, 14.000000000000002%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EF%3C/text%3E%3C/svg%3E)
1 answer
Replication like it's 1999: msDS-LogonTimeSyncInterval
OK, I'm a conscientious admin, and we've had Active Directory for nearly 20 years. I remember being really careful to make sure Active Directory replication was optimized, we put DNS in Forest containers, etc. Now however we have DNS on all our domain…
asked 2021-04-09T21:05:43.367+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(112.00000000000001, 69%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBW%3C/text%3E%3C/svg%3E)
Brain Wani
1
Reputation point
edited a comment 2024-06-18T02:53:51.75+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(105.60000000000001, 8%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWR%3C/text%3E%3C/svg%3E)
William Robison
0
Reputation points