Users loosing trust relationship with the domain controller
Dear Experts, I have 3 Domain Controllers, 2 in Site A, 1 in Site B. Whenever user changes any password, his PC loses trust relationship with the domain controller, and gives below error: "The Security Database on the server does not have a…
Guest user showing invalid email when inviting to Microsoft Teams
Hello Please i need your help on this issue. I want to know why the users UPN changes when I create guests. I have also created contacts. A member tried to send a meeting with Teams but stated invalid email address. I added the contacts and then I also…
"Configure AAD Sync" An error occurred executing Configuring AAD Sync task: An error occurred while sending the request.
Having problem installing Azure AD connect. Please assist. [21:41:36.575] [ 1] [INFO ] Setting default logger for MSAL provider.. [21:41:36.575] [ 1] [INFO ] Default logger set successfully. [21:41:36.607] [ 1] [INFO ] [21:41:36.607] [ 1] [INFO ]…
The User Profile Service service failed the sign-in
While logging into a domain joined machine using local administrator access, I encountered an error message as shown in the screenshot. Sometimes, rebooting the machine resolves this issue. However, this time it still persists. What is the cause of…
Hyper-V Replica broker between two domains
Hello, I have two separate domains with Failover Clusters. One domain: contoso.local Failover: CLS.contoso.local Replica broker: Replica.contoso.local Nodes: node1.contoso.local, node2.contoso.local, node3.contoso.local, node4.contoso.local Secondary…
How to move Azure NetApp Files to a different Active Directory domain
I am in the process of planning a child-domain decommission for a customer and they currently run Azure NetApp Files in 2 regions with replication configured. I need to migrate ANF to the parent domain which means i need a new Active Directory…
Manage users and devices in Azure like on Windows Server 2022
Hi! I have a bit of experience with on-premises Windows Server 2022 and AD Domain Services. I wonder how I can create a DNS server and connect my devices to my domain the same way, but with an Azure server. What resources on Azure do I need to replicate…
Group Policy Objects and AGPM
Hello. I am implementing AGPM. I noticed one problem, if I create a policy in the Group Policy Objects container, the new policy appears in the Uncontrolled menu as it should, but it does not have the rights of the AGPM account from which the service is…
What is the best course of action to implement passwordless for hybrid joined devices?
I have reviewed the official documentation, but I am uncertain about the best way to set up passwordless authentication for Windows and MacOS devices that are connected to an on-premises Active Directory. The challenge is that users are connected to both…
change group scope
Hi All, I have only one domain. I have created a mail-enabled security group in Exchange Server 2016. In Active Directory, I see the Group Scope set to "Universal" and the Group Type set to "Security" for this mail-enabled security…
power shell pop up window
hi everyone! can somebody help me, to make ps1 script when it starts - 1 command: $getusergroups = Get-ADUser -Identity (open popup window to put sAMAccountname) -Properties memberof | Select-Object -ExpandProperty memberof where popupwindow - it need…
users not created in Azure (Entra) after creation in AD and full sync
Hello! Users are not created in Azure (entra, 365) after their creation (and modification) in Active directory. At the same time, all synchronizations are carried out without problems, without errors. In the Syncronization service manager on the local…
Why Add Discovery Group option is not highlighted in Defender EASM
I am working on Microsoft Defender EASM and I have configured the default organization (Contoso Ltd) to identify the attack surface. When I clicked on Discovery option under Management, I observed that +Add Discovery Group option was not highlighted and…
Red block mark on disabled/re-enabled accounts in azure
I have disabled one account in azure and re-enabled after sometime. When we disabled the account on his profile attached image red block mark came and after re-enabling that was not removed. Almost one month before we have re-enabled it but still that…
Adding Windows Server 2022 as a Domain Controller in Windows Server 2016 Forest.
Hi, We have a Windows Server 2016 Active Directory Forest and want to introduce a Windows Server 2022 server as a Domain Controller within the forest, is it possible? What are the steps to add a Windows Server 2022 server as a Domain Controller in a…
Authentication Issue: No Refresh Token Found in Cache
Hello Support Team, I am encountering a persistent authentication issue while attempting to access Azure services through our application. Below is the error message received during the authentication process: Errors: [ { "errorMessage":…
Search in Active directory by Employee number in AD simple GUI Search
i have a requirement that I should be able to search a user by his/her Employee Number, like if we put in sam account name or email address, we are able to search that user, the same way I want to search by employee number, in this environment its…
Configuring Enterprise Subordinate CA in a heterogeneous setup.
I'm facing an issue with configuring the Enterprise Subordinate CA and would greatly appreciate any assistance. The challenge lies in the fact that my Root CA is not a Microsoft product, so the setup should be as follows: Root CA (ejbca, offline) ->…
Active Directory NTP
Hello, If i have 3 Domain Controller (DC), is all three DC will act as NTP server? Is the DC will act as NTP client also to sync the time to NTP pool, or the DC will sync the time from RTC from the mainboard?