7,023 questions with Windows for business | Windows Client for IT Pros | Directory services | Active Directory tags
Windows 11 mandatory profiles, start menu not working.
We’re in the process of implementing a mandatory user profile for students in an educational environment running Windows 11. However, we’re encountering an issue where the Start Menu fails to load or function correctly when using the mandatory…
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Join client machine to new domain errors
Hi - First post and my first time building a domain controller !!. At the grand old age of 57 I have built my first Domain Controller (well at least tried to) - Using Server 2012 R2 I have created a Domain Controller - added DNS and DHCP. Both DNS…
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
migrate 2016 active directory to 2019 maintaining hostname and ip address
Hi All, I want to migrate the customer’s windows server 2016 domain controller to new server but i want to use same hostname and IP address on newly migrated server. Also, the customer have one domain joined server 2022 on which the customer have Azure…
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Unable to log in to Microsoft account
Hi, Good day to you guys! I am having problem logging in to my other Microsoft account. It is the one that I am using on my Windows computer. Whenever I log in, it is stating: Too Many Requests. Before that, it gave me a link and, of course, I went to…
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Export hexadecimal AD extended attribute collection
Something I 've been trying to do for a short while and perhaps someone here can help out AD extended attributes stored as a collection are in a binary format and can't be exported using export-csv and the like [What I need] I'm looking for a…
Windows for business | Windows Client for IT Pros | Directory services | Active Directory

Domain permissions
Hi all i have a requirement from one of my user to provide Read permission on the Deleted Objects Container. I have logged into one of my DC. Opened Active Directory users and computers-enabled Advanced features-Right click on the…
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Windows for business | Windows Server | User experience | Other

How to bypass BitLocker check for Iron Key flash drives
I have configured a Group Policy to force removable drive encryption via BitLocker. This works perfectly until someone uses and Iron Key encrypted drive. Then Bitlocker tries to Bitlock the already encrypted Iron Key drive. Ideally, we would like to…
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Windows for business | Windows Client for IT Pros | User experience | Other
Group Policy Modeling Wizard - Access denied when selecting a server
Hi all, I have 2 domains in the same situation one of which being my test domain so I can post this here. I have a situation where I have delegated group policy control and it all appears to be working from the DC (users are not domain admin and normally…
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Windows for business | Windows Client for IT Pros | User experience | Other
How to block domain users from installing any apps
Hello Team, We have received a request from the client to ensure that no applications (including .msi or .exe files) can be installed on PCs unless the user has domain administrator credentials. This measure is intended to mitigate the risk of potential…
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Fine Grained Password policy does not work for AD User
Hi Guys, I am applying FGPP for a domain user with a less restrictive settings than the Default Domain Policy... RunspaceId : 4de3d0c4-0065-4db3-b8d9-18358169e995 ComplexityEnabled : True DistinguishedName …
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Windows for business | Windows Server | User experience | Other
Windows for business | Windows Client for IT Pros | User experience | Other
What does [[[Create Key]]] and [[[Delete Key]]] mean in Group Policy analyzer
I am working with The group policy analyzer and have been able to compare all the policies in the enterprise. but I have some rows with the setting of [[[Delete key]]] and [[[Create Key]]]. Did some searching, but have not been able to come up with a…
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Windows for business | Windows Client for IT Pros | User experience | Other
How to login to Azure AD joined AVD VMs with MFA configured from Hybrid Domain joined machines without Windows Hello / Hello for Business?
I seem (not 100% certain this is the problem, so open to suggestions) to only be able to login to my Azure AD joined AVD VMs (with a conditional access policy enforcing MFA for offsite IP ranges) from end-points with Windows Hello enabled. My company…
Azure Virtual Desktop
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Microsoft Security | Microsoft Entra | Microsoft Entra ID

Request for Guidance on Laptop Lockout Configuration and Email Notifications
I am currently working as an IT Executive at a private company, and I am looking to implement a security measure across all office laptops. Specifically, I would like to configure the systems to automatically lock after more than three incorrect password…
Windows for business | Windows Client for IT Pros | Directory services | Active Directory

Problème de relation d’approbation suite au renommage d’un contrôleur de domaine dans AWS
Bonjour à tous, Je rencontre un problème dans mon environnement Active Directory hébergé sur AWS. Initialement, mon contrôleur de domaine secondaire s’appelait DC2 dans le domaine Atos.local. Pour des raisons d’organisation, j’ai renommé cette machine en…
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Key Attestation with Yubikey PIV/SmartCard on Certification Authority
Hello, we have configured internal AD CS to enroll certificates for Smart Card Logon for Yubikey users using PIV. Everything works fine from this point. Now we would like to ensure that certificates can be enrolled to (preferable) registered keys only,…
Windows for business | Windows Client for IT Pros | Directory services | Active Directory

GPO - wpad config - admin template missing section
Hello I am looking to disable the following settings however the Connection Page Folder in gpo does not exist. I've tried looking at older and newer admin template files in this case its inetres.admx and inetres.adml. So far none contain the config for…
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Use DSACLs to delegate GP-Link and GP-Options on OU
Trying to figure out how to set a delegation against an OU for GP-Link and GP-Options. I'm close but I keep getting an error saying "no GUID found for {f30e3bbe-9ff0-11d1-b603-0000f80367c1}" The parameter is incorrect. I've tried various…
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
how to fix error code 80192EE7 error code while trying to connect to my organization account
i am trying to connect my account to the companies active directory and i am receiving this issue knowing that i am the administrator and i am trying to connect all computer and pc's on premises to microsoft azure active directory
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Microsoft Security | Microsoft Entra | Microsoft Entra ID
How do I find the BitLocker Recovery Key when the Recovery Key ID doesn't match the numbers in my account except for the Key ID?
I am having trouble with my computer. I had a blue screen show up on Friday. I logged into my Microsoft Account and was following instructions to get a BitLocker Recovery Key. However, the only number that matches what the BitLocker page says I need…
Windows for business | Windows Client for IT Pros | Directory services | Active Directory
Export a List of all AD users Certificates from Each user
Hi, I had to have export the User X509 Certificates from each User in a specific OU, with the Issuer and the Expiration Date. the Export should be looks like in the AD User Object unter Published Certificates Tab. thank you in advanced