Active Directory
A set of directory-based technologies included in Windows Server.
6,487 questions
2 answers
One of the answers was accepted by the question author.
unable to create the synchronization service account for azure active directory
installing Azure active directory connect i get the above error .... and the trace log says "Product Microsoft Directory Sync Tool is not installed." pls help ... cannot sync my ad (win server 2016) to azure (entra).... log…
asked 2024-07-25T07:44:22.4466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(147.20000000000002, 14.000000000000002%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESA%3C/text%3E%3C/svg%3E)
SolidarityNow Administrator
40
Reputation points
commented 2024-09-25T22:56:47.09+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(22.400000000000002, 6%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMA%3C/text%3E%3C/svg%3E)
MOD Administrator
0
Reputation points
1 answer
Creating a SHA256 CSR using MMC on a Domain Connected Windows 2016 Member Server
I have been trying to create server certificates that are SHA256 and keep getting SHA1 results. Using the MMC in the CSR wizard (from right clicking in the certificate store, then selecting Tasks -> Advanced Operations -> Create Request). The…
asked 2024-09-25T18:07:02.2866667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(297.6, 24%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EB%3C/text%3E%3C/svg%3E)
Bowman
0
Reputation points
answered 2024-09-25T19:58:16.9233333+00:00
Lex Li (Microsoft)
5,582
Reputation points Microsoft Employee
1 answer
I have a Domain Controller with a Tombstone Lifetime that has exceeded. How do I bring it back online?
I have a Domain Controller with a Tombstone Lifetime that has exceeded. How do I bring it back online?
asked 2024-09-25T16:04:19.31+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(294.40000000000003, 2%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EY%3C/text%3E%3C/svg%3E)
Yogeshwaran
6
Reputation points
edited a comment 2024-09-25T17:19:09.4733333+00:00
Yogeshwaran
6
Reputation points
10 answers
Can't change files in sysvol folder when access through UNC from DC
Hi, we're facing with weird issue, we can't change\add\create files under SYSVOL folder when we access through UNC from DCs. but if we access to the SYSVOL folder through UNC from other servers in domain there is no issue to change\add\create files. …
asked 2022-05-18T22:34:03.67+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(230.39999999999998, 54%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAM%3C/text%3E%3C/svg%3E)
Arnold MIshaev
216
Reputation points
answered 2024-09-25T17:14:03.8766667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(22.400000000000002, 62%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDG%3C/text%3E%3C/svg%3E)
Daniel Gurgel
0
Reputation points
1 answer
Using AD Activation on Windows 2019 Server
I installed the Volume Activation role on a 2019 server and added a Windows 10 Enterprise key, went through the wizard and saw it listed in AD using ADSI edit.. "perfect" I then tried to add a Windows 11 key and it added it but removed the…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 46%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER4%3C/text%3E%3C/svg%3E)
0 answers
Access to Azure Active Directory: Unknown error code: 0x80192ee7
Getting Error code 80192EE7 when trying to sign in. I have access to Azure Active Directory but I'm getting the following:
asked 2024-09-25T15:50:28.2766667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(220.8, 50%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMM%3C/text%3E%3C/svg%3E)
Michael MacCallum
0
Reputation points
asked 2024-09-25T15:50:28.2766667+00:00
Michael MacCallum
0
Reputation points
1 answer
How to remove the "hint" query parameter during AAD B2C password reset flow?
We have set up the password reset exchange as instructed in the docs and are trying to remove the hint query parameter that gets added to the URL when clicking the forgot password link. We do not want it as it is an info leak. Someone else asked a…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 57.00000000000001%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EB%3C/text%3E%3C/svg%3E)
0 answers
Secure Score wants me to disable delegation on my Domain Controller computer accounts
originally posted on the Office365 'answers' forum but I was told that was not the correct place and I should post it here instead. Microsoft Secure Score flagged a number of 'privileged' accounts on my AD domain that were set to allow delegation. I…
asked 2024-09-25T10:36:40.8733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(192, 61%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESB%3C/text%3E%3C/svg%3E)
Steven Blackery
0
Reputation points
asked 2024-09-25T10:36:40.8733333+00:00
Steven Blackery
0
Reputation points
1 answer
One of the answers was accepted by the question author.
Desktop App Installer
Hi If the below policies are disabled through GPO, I suspect that only command-line utilities like winget will be impacted. Could there be any other effects? Computer Configuration-Policies-Administrative Templates-Windows Components-Desktop App…
asked 2024-09-25T06:04:02.35+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 72%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERF%3C/text%3E%3C/svg%3E)
Rising Flight
4,396
Reputation points
accepted 2024-09-25T09:27:51.12+00:00
Rising Flight
4,396
Reputation points
1 answer
Renewing Powershell Self Signed Certificate from CA
Hi Everyone, We're going to change ours Self Signed Powershell certificates, we have an AD Certificate Services in our domain, we've created custom Self Signed Powershell certificates for code signing, then we've distribute the certificates via GPO.…
asked 2024-09-23T15:49:59.2+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 22%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMG%3C/text%3E%3C/svg%3E)
Massimiliano Gasbarro
0
Reputation points
answered 2024-09-25T07:53:37.8066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 62%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDZ%3C/text%3E%3C/svg%3E)
Daisy Zhou
22,801
Reputation points Microsoft Vendor
2 answers
Unavailability of one Domain Controller causes loss of Internet even though Secondary DNS was configured
We have a network with a domain controller that manages DNS settings for all connected client PCs. The primary DNS server is configured on the domain controller, and a secondary DNS server is also set in the Advanced TCP/IP Settings of each client PC. It…
asked 2024-09-23T07:08:24.9066667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(182.40000000000003, 84%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ER%3C/text%3E%3C/svg%3E)
Researcher
6
Reputation points
answered 2024-09-25T07:51:23.1366667+00:00
Daisy Zhou
22,801
Reputation points Microsoft Vendor
0 answers
Multi-Provider Router (MPR) notifications
I need help on two GPOs. If I disable the policy below, will there be any impact besides issues with mapped network drives? Policy: Enable MPR notifications for the system --> Disabled Location: Computer Configuration\Policies\Administrative…
asked 2024-09-25T05:45:52.47+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 7.000000000000001%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
Glenn Maxwell
11,176
Reputation points
asked 2024-09-25T05:45:52.47+00:00
Glenn Maxwell
11,176
Reputation points
1 answer
One of the answers was accepted by the question author.
Digitally sign communications
The policy below is currently disabled in our environment. I have a request from our security team to enable this policy.Could there be any issues with SMB, given that I have DFS shares and file servers? Additionally, I have Windows shares mounted on…
asked 2024-09-21T17:30:47.9933333+00:00
Glenn Maxwell
11,176
Reputation points
accepted 2024-09-25T05:38:04.57+00:00
Glenn Maxwell
11,176
Reputation points
1 answer
One of the answers was accepted by the question author.
RPC GPO information
Hi All I have been asked to enable the following printer-related GPOs, but I am not fully aware of their impact. Could anyone help me understand the pros and cons of these settings? The last one i dont think its printer related but i need information on…
asked 2024-09-22T21:36:10.0033333+00:00
Glenn Maxwell
11,176
Reputation points
accepted 2024-09-25T05:37:22.84+00:00
Glenn Maxwell
11,176
Reputation points
1 answer
SuccessFactors to AD User Provisioning : UPN (UserPrincipleName)
This is related to SuccessFactors to AD User Provisioning This there an expression for SelectUniqueValue() function which can enable creation on UPN with firstname.lastname@contoso.com , firstname.lastname1@contoso.com, firstname.lastname2@contoso.com…
asked 2024-09-20T07:52:17.79+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 34%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESP%3C/text%3E%3C/svg%3E)
Sai Prathap
0
Reputation points
edited an answer 2024-09-25T03:21:38.74+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 45%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Akhilesh
9,270
Reputation points Microsoft Vendor
2 answers
One of the answers was accepted by the question author.
Query on GPO
Hi All I have a requirement to enable the GPOs listed below on Windows Servers (2022/2019/2016). What could be the possible impact of applying these GPOs? Please guide me as i am not sure. Network security: Force logoff when logon hours…
asked 2024-09-21T13:33:21.0033333+00:00
Rising Flight
4,396
Reputation points
accepted 2024-09-24T20:45:13.92+00:00
Rising Flight
4,396
Reputation points
1 answer
Why do my Hyper-V created VMs have Computer objects that contain an SCP?
Its simple, I went to delete some computer objects of PCs which no longer existed, and ADUC threw a warning about deleting the subtree. After using ADSI Edit I found that each of the 6 objects had sub-objects that were Service Connection Points named…
asked 2024-09-24T19:57:24.42+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 97%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EH%3C/text%3E%3C/svg%3E)
helpcomputer
0
Reputation points
answered 2024-09-24T20:40:56.5566667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 38%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMP%3C/text%3E%3C/svg%3E)
Marcin Policht
23,070
Reputation points MVP
1 answer
One of the answers was accepted by the question author.
Entra Connect and AD DS having a weird LDAP error
Hello, I am working to configure and install Azure Active Directory Connect 2.3.20.0 on a new domain with a relatively stock Azure tenant and am struggling with the first sync. The Azure user is global admin, and the directory user is the administrator…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(121.6, 52%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWC%3C/text%3E%3C/svg%3E)
1 answer
Active Directory updates delay
If we amend details for a user (eg: user dept or job title) in our internal HR and AD it seems to be fairly fast. However, the changes to filter through to Azure AD and Sharepoint can often take several days or even 2 weeks. This causes a lot of…
asked 2024-09-24T11:22:44.4+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 44%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAH%3C/text%3E%3C/svg%3E)
Akbar, Hanif
0
Reputation points
answered 2024-09-24T18:23:50.58+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 9%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWL%3C/text%3E%3C/svg%3E)
Wesley Li
8,450
Reputation points
1 answer
Azure Arc fails to connect because NT SERVICES\himds is not allowed to log on as a service
The short version: How do I get Azure Arc to connect to Azure if GPO is limiting which accounts are allowed to log on as a service and the himds service requires "NT SERVICE\himds" to log in as a service? (I am unable to add "NT…
asked 2024-09-19T18:02:36.52+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 50%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJS%3C/text%3E%3C/svg%3E)
Johnathan Sagar
75
Reputation points
answered 2024-09-24T16:54:00.0933333+00:00
Johnathan Sagar
75
Reputation points