no event 5136 recorded in DC - Windows Server 2012 R2
I'm using Windows Server 2012 R2 as DC. And I have enable audit policy: Directory Service Changes - Success. Besides, I also checked dsa.msc -> domain, and set the audit as following selection for Everyone, This object and all descendand objects: …
Slow AD-logins on new Windows 2019 servers after moving to different subnets
Hi. I'm wondering what might affect the login times on newly deployed virtual servers that has been moved from one subnet to another. Scenario: I deploy several VM's and do some configuring on the servers. I join the domain on a temporary…
Domain Controller Access
Hi All I am not a domain Admin, I have a terminal server and from the terminal server i want to connect to domain controller to check the services and event viewer logs. without domain admin access is it possible to connect to domain controller. is…
Remove users from AD Group
Hi All i have 5000 users which needs to be removed from one of my AD group lets say adgroup1. i have csv file in the below format. usernames user1@Anonymous .com user2@Anonymous .com user3@Anonymous .com Is the below syntax…
Suspended user's account Still showing active in Azure AD.
Hi Team, Anyone please help me where I need to dig more to check whats wrong? We have user who's id was disabled in local AD and Suspended in Azure AD but still its showing active on user's page as active for AD application. please refer…
Bridge Head Server not set correctly
Hi I have got 4 DCS DC-A (Site-1) DC-B (Site-1) DC-C (Site-2) DC-D (Site-2) When I run repadmin /bridgeheads I am informed that DC-A is my Bridge Head Server. However when I look at Sites and Services, DC-A only replicates "to" and…
can't remove or reset PIN
hello there, one user forgot his windows 10 PIN code, but the domain user password still remember, so he try to remove or reset the PIN code, but the remove icon is grayed out. (as below screenshot). and there is no option to "reset"…
relationship with active directory OU and exchange distribution list
I am new to this section(AD and exchange) Can anyone tell me how I can send a mail through a distributionlist to everyone under a OU(organisation unit) my envirnment exchange 2019.
Active Directory Language Change
Hello, I am looking for some insight into the default language of Active Directory and if possible, specifically can it be changed. If Active Directory was originally deployed in Spanish, can it be changed to English? Currently 99% of Ad is in…
User's personal folder after users's name rename
Hi, In our AD, i've implemented long ago a GPO so the users's "Documents" folder is located on a file server. On this share, i see folders with the names of the AD accounts, and inside the user's "Document" folder. It looks like…
Domain Controller Administrator Account Locked Event ID
Hi, We have Domain Controller & Additional Domain controller in our environment. From last few days false event ID 4740 getting generated continuously for every second for Domain controller Administrator ID. Administrator account is not getting…
AD DNS Slave Mode
Hello, I am Rubiat. I am a technical resource of a vendor. I got a new query from one of my customer. Recently they bought a new DNS solution called Efficient IP. They need to use IP from this solution. At now, they completely done their job and the…
LDAPS communication Failed From Remote (Client) Machine.
Team, I configured LDAPS using documents from online. Connection works fine in local machine using Ldp.exe tool. But I couldn't connect from other same network machines. I can able to ping IP and telnet to port 636. Ldp.exe and other application…
AD replication from site to HQ
Hi. I have this settings where the DC from HQ is replicated throughout the sites and we have multiples sites configured. Each site consists of two seperate DC. Eg: DCXX01 & DCXX02. The problem faced is that once we create an user account in DC at…
Error "The encryption type requested is not supported by the KDC" when changing passwords on Accounts migrated with ADMT
Hello, I am doing a cross domain migration from Active Directory 2008 R2 to 2016. I used ADMT and PES for the migration of accounts and passwords. This while the migrated users can't change their password after migration. They have the error:…
Cross Forest AD migration and AADConnect
Hi Guys, Over the last few weeks i've been reading a lot around Cross Migration, I have some doubts and information required around migrating AD User/Computer Objects and standing up a new AADConnect server in a new environment but still syncing into…
How did the additional AD user logon name suffix get added?
Dear experts, We have an issue with our on-premise AD where some of the users have more suffixes than our default @Anonymous .cn, I've checked that there was no manual adding on our Domain Trust properties. Any idea how these extra suffixes were…
Edge IE Mode Add-on Management GPO
Hello, I can create GPOs for Add-On Management for Internet Explorer. I can create a GPO to run specific sites in IE Mode within Edge. How can I manage the Add-On list for IE mode within Edge? Example: A user visits a site in Edge IE…
DirectoryEntry call to only dns configured dc servers under a domain
We are querying Active Directory using the DirectoryEntry method by passing a domain name. Under this domain, there are 40 DC's, in that 20 of them are DNS configured, and the rest of them are non-DNS configured, which are not maintained well and not…