what are recommendation for implementing PAW
Hello What are recommendation for implementing for PAW in tier 0 Specially security point of view . Thank Rich
How to get a list of AD users that are set to change password at next logon
Hello, I am trying to export a list of all users in AD including a column for "ChangePasswordAtLogon" attribute. I have tried a lot of different variations but none of them have worked. This is one of the formats that didn't work. …
Adding legacy computers to the domain
We have approx 20 Mazak milling machines running either Win 95, Win 2000 Pro or Win XP. Since the beginning of the year I've not been able to re-add them back onto the domain (functional level 2016). As they are old a hard drive replacement is often…
Your reply url contains prohibited words or prohibited domains. [BlStHTuVZ800ZGEvsNn04K]
Hello, I have a AAD B2C tenant and an App registration inside it. I'm trying to add a platform configuration for Android platform but getting below error. Can anyone help mw with this? the redirect url is :…
how to add new PAW WorkStation that are connected with vpn and other network
Hello, What are recommendation or point should be consider when adding PAW Workstation in Active directory tiering 0 part in network point of views. for example ,some workstations may be in connected with VPN and may be have some other network or in…
Unable to delete mailboxes in Exchange Online
Hi Everyone, I really need help because we've been struggling this issue for more than 2 months. This is happening for the first time. I created an AD User 2 months ago and it created 2 duplicate mailboxes on Exchange Online. I am trying to hide from…
When attempting to modify files within the Netlogon folder in Active Directory, I've encountered instances where files are use and cannot be change
Dear Experts, I'm seeking assistance with aspects of Active Directory (AD) management and troubleshooting. Specifically, I am encountering a error that the files are in use and cannot be change in the Netlogon folder. When attempting to modify files…
what are the permission recommends for domain operator in AD tiering 0
Hello Experts, what are the permission recommends for domain controller operator in AD tiering 0? below is the OU structure and domain operator group is highlighted. forumad.png Thanks Rich
DNS Zone Locks and Propagation Delay in Active Directory
Dear Experts, I'm seeking assistance with aspects of Active Directory (AD) management and troubleshooting. Specifically, I am encountering a DNS zone lock and propagation delay issue within the Active Directory environment. When I trying to make changes…
Missing ADWS when deploying Azure Stack HCI
Hi, I encounter such an error during the validation of Azure Stack HCI cluster deployment, please advise how can I troubleshoot, thanks! Type 'InvokeEnvironmentChecker' of Role 'DeploymentService' raised an exception: Fail to initialize cloud deployment:…
what are the criteria we can follow to make any object as part of AD tier 0
Hello Expert, What are the clear criteria that should be followed as template to decide any object as tier 0 in AD . that will help in deciding where we object in tier 0 . Thanks Rich
Allow non-admin users of workstations to delete files/icons from Desktop using Group Policy
Hello, I'd like to ask if there is possibility to allow non-admin users of computers that are joined to domain to delete files and icons from their desktops. We have ca. 100 workstations with Windows 10/11 and sometimes deleting items is quite time…
one of our user recently changed his AD account password and now he is unable to access his all network drives.
Hi All, one of our user recently changed his AD account password and now he is unable to access his all network drives. After every each login his AD account gets locked and get the attached error. Please advise. Thanks
Have a account in our Azure tenant. Unable to access Sharepoint or accounts.microsoft.com
Have a account in our Azure tenant. Unable to access SharePoint or accounts.microsoft.com. User has been synced from AD. When changing password in AD, the Audit logs in Azure shows the changes so its synced. Need further assistance or guidance on where…
Free Alternatives to Roaming Profiles
Hello everyone, Our organization is currently exploring free alternatives to roaming profiles in our Windows environment. We do not currently use any form of roaming profile and are looking for efficient solutions to maintain consistency for users who…
error="invalid_token", error_description="The issuer 'https://sts.windows.net/22914068-b6f0-4fee-a0e6-e8df19bb78a1/' is invalid"
Related Issue: https://video2.skills-academy.com/en-us/answers/questions/1697294/authentication-fails-when-api-method-is-protected I am trying to call a protected method on my api and I get the error shown in the title. Protected API method being…
what are the permission recommends for domain controller operator in AD tiering
Hello , what are the permissions that are recommended for domain controller operator in AD tier 0 . Thanks Richa
How to restrict admin access of all the users within an organisation
Hi everyone, In my organization, all employees log in using their Microsoft email IDs, formatted as user.name@domain.com. Currently, all users have administrative access to applications such as PowerShell, Command Prompt, etc. I want to restrict this…
Show all domain users on logon screen
hi there, i have three users, who share a PC. PC is in a local windows domain. all three users a domain users and already logged in on this PC successfully. PC has a local admin account. How can i show all three users on the bottom left list in the…
Replication like it's 1999: msDS-LogonTimeSyncInterval
OK, I'm a conscientious admin, and we've had Active Directory for nearly 20 years. I remember being really careful to make sure Active Directory replication was optimized, we put DNS in Forest containers, etc. Now however we have DNS on all our domain…