gpresult /r report shows user as a domain admin when he is not
I was troubleshooting a GPO for a windows user when i stubble into something weird. The gpresults /r show he is a member of Domain Admins, Enterprise Admins and Schema Admins. I have check AD for those groups and he is not a member of any listed above.…
Moving a domain user profile from one domain to a different one
Hi. I have users with domain user profiles that need to be moved from one domain to another, without losing anything. They also have office 365 in which their sign in shouldnt change, but the move seems to cause issues, same with their one drive. …
Windows 2012 R2 DC to Windows 2022 DC Migration
Dears We're planning Domain Controller migration from 2012 R2 to 2022. We have 2 DCs 2012 R2 that must be migrated on 2 others DC 2022. We'll keep the same IP of old DCs because of dns dhcp settings on all of our devices We do not have this patch…
Unable to join Windows Server 2022 to domain using Microsoft Entra domain services
I am trying to join my Windows Server 2022 to my domain using Microsoft Entra domain services. However, I am unable to find the correct DNS server addresses to join my device to the domain. I have searched online extensively but have not found any useful…
RSAT Get-ADPrincipalGroupMembership is missing on Windows 11
RSAT Get-ADPrincipalGroupMembership is missing on Windows 11 Since upgrading from Windows 10 to Windows 11 I cannot use the RSAT Get-ADPrincipalGroupMembership is command. I get the following error message: PS C:\Users\USER1>…
Password Policy Not Working
We have a hybrid setup with EntraAD and local Active Directory. I have setup a password policy locally that sets our passwords to expire every 365 days (along with other settings). When I run queries locally it does report back correct data on my…
On Premise Server Using Azure AD?
Hi, I've recently purchased a server running 2022. My plan with this is to run VM's for RDS users. We currently run an Azure only estate where we have Azure AD running all our computers & email logins etc. I need help understanding how I can use…
Win10 Sync center, offline files and VPN
In short : Why, when I activate the offline files save for a given subdirectory located in a network directory accessible over VPN, it is not possible anymore to access the rest of the main network directory over VPN? In more details : I start…
AD default domain password policy advice
I am trying clarify some of specific settings within a domain password policy (settings report was produced based on Get-ADDefaultDomainPasswordPolicy). For info - there are no additional fine grained password policies in operation which may supersede…
AD B2C Custom Policy Passwordless redirect to authorized page
Is there a custom policy sample that will automatically redirect the user to authorized page after clicking verify (email received code and was verified) button? I mean no need to add/display Continue button How can I achieve this using custom policy?
Icone raccourci par GPO blanche windows 11
Bonjour, Dans notre infrastructure, nous avons des postes sous Windows 11 et Windows 10. Nous avons un serveur 2016 qui héberge le DC et donc les GPO. Nous avons différents raccourcis vers des pages web avec l'icône de l'application, l'icône est hébergée…
How to sync my AD and setup mailboxes for migration
Hello, Our company has Business Standard license but an on prem exchange server. We want to migrate to exchange online and eliminate our on prem server. We were using the old AD sync tool but that no longer works. What is the best way for me to sync my…
"Enabled" AD attributes is missing
Enabled AD attributes is missing. Tried running AD powershell to get all properties but no help.
'Start in' option disabled while creating a URL Short using GP
Hi, I need to create a URL Short through Group Policy on domain pcs desktop screens, but the "start in" option is disabled. Any Suggestions? Thanks.
Microsoft Remote Desktop for Mac Error 0xc07
Good day, Community I work off of a Mac v.13.6.6 and a Windows v.10 build19045.4291, computer. I have 2 Active Directory accounts, my everyday JohnDoe account and my break glass JohnDoeAD account. I use MRD v.10.9.6 on the Mac to log into my Windows…
How to administer Windows 11 Enterprise computer to allow local user sign-in via MS 365 credentials?
Hi all, I work for a small non-profit organization and am entirely new to IT and system administration. I am beta-testing computer configuration on a Windows machine that I have upgraded to the Windows 11 Enterprise operating system. I have created MS…
How to test SCIM User provisioning for non gallery applications on client credentials authorization mode?
I am doing SCIM User Provisioning. For that I have developed SCIM APIs which supports client credentials authorization mode as well as long lived token in the form of API Key. When I was testing Azure AD SCIM Provisioning, I can see Azure supports long…
Windows 11 Enterprise computer is bricked after running Windows Configuration Designer provisioning package
Hi all, I am completely new to IT and system administration. I was experimenting with the configuration of a Windows computer that I upgraded to the Windows 11 Enterprise operating system. I attempted to use the Windows Configuration Designer to create a…
How can I customize Microsoft Edge browser plugins to use separate email accounts for work and personal purposes?
I've begun using the Microsoft Edge browser [Version 124.0.2478.97 (Official Build) (64-bit)], and I require assistance in segregating my browser profiles using distinct accounts on my Windows 11 PC: Personal account: personal.account@outlook.com Browser…
GPO Method to Push DNS Settings to All PCs in a Domain Environment
I am currently facing a challenging task regarding setting DNS configurations for all PCs. I aim to push DNS entries to ensure that all the machines use the correct DNS servers for domain resolution using Group Policy Object. Methods that were already…