NDES automatic renewal of client certificates via SCEP is working even for Revoked certificates
Hi there, My setup is the following: *An offline root CA. *An online SubCA. *A server with the CRL. *A domain controller. *Domain-joined Windows client machines that are able to receive certificates and renew them only if their current…
Unable to join domain Network path not found
I have a AD on an OVH server with WS2019 installed. When I try to join the domain, I have the following error message: Network Path was not found The server's ip is static, the client has the server as primary DNS. I can ping the server with the ip…
How to configure gateway access for windows admin center
Hello, I installed the latest WAC edition (Version 2110 Build 1.3.2111.01001) on my jump server. The jump server is a domain joined Server2019 standard edition. The WAC gateway url works fine and all, however I wish to manage/control who can access…
Domain User Login
Hi, I have been facing an issue while logging the user to my domain. I have created the user in the active directory but that user is unable to login into any company device. I have tried resetting the password and all the troubleshooting but nothing…
ports to be opened
we have a DR site which we installed the additional domain controller and we have firewall also in that site. please help me to understand which are the source and destination ports to be open in the firewall for the successful replication.
Slow RDP logon printer policy
Hi, We are having slow logon issues on the printer policy. (Approximately 30s) for a logon of approximately 45s. A little background: Infrastructure: 2 broker, 1 BDD broker, 40 publication servers 6vcpu and 24go Ram ) The brokers are in Windows…
Checks to Add Win2019 DC with 2012
Hi, We need to add a 2019 DC to our domain and then remove the 2012 DC. What checks should be performed before doing it? We have already migrated FRS to DFSR. 2012 DC is also a DHCP Server. Thanks.
updating password age from 30d to 365d - when does the it take affect?
hello AD administrators, I got a question for the group. I'm an IT admin for an organization running W2008 R2 functional level. I'm using fine grained password policy to manage password settings for all users. I want to change the password age from…
Windows OpenSSH SFTP Server Support for Kerberos Protocol Transition
I wish to setup an SFTP Server front-end for file shares (virtual roots) located on backend hosts. Does the OpenSSH-based SFTP server available with the newer Windows Server OSes support the Kerberos Protocol Transition (KPT) feature? In addition,…
Raise the domain and forest functional level to 2012 R2
My D/C's are already 2012R2. I'm running 2008R2 AD now. My schema = 69. All my FSMO Roles are under 1 D/C. I believe all i need to do is 'Active Dir. Domains & Trusts' and raise the level their first and then go to 'Active Dir. Users & Groups'…
Virtual AD server migration from VMware to Huawei FusionSphere
Good day to all. I'm currently in the process of migrating virtual AD servers from VMware to Huawei FusionSphere. Huawei's Rainbow tool does not support migration of AD servers (does not support application-level migration). Is there another tool that…
What if I dont get a sms confirmation?
I need help, I´m creating a program and I need my domain to start but to get the domain I need to confirm my number but I dont get the sms code
How to size domain controllers today
Hello, I knew some time ago there was a sizing tool for domain controllers, but I believe there is not any more. I want to know the recommended hardware configuration for virtual DCs, and how many users and computers can a domain controller handle in…
Unexpected problems after KB5006672
So the other week we installed KB5006672 on some of our Server 2019 VMs and ran into issue with our Domain Controller and ADFS Servers. After rebooting the DC we noticed that authentication failures occurred for clients, and even doing things like…
Promotion of server 2019 to DC in 2012r2 failed. 2012r2 fuctional level does not support 2019.
I have a single 2012r2 server domain controller functioning properly at the 2012r2 forest/domain functional level. I added a single 2019 server to the domain, installed AD services, and attempted to promote to a domain controller. Here is the error: …
Questions about always on VPN and DHCP
Hello, We are trying to replace our DirectAccess server with Always on VPN. However I am running into some trouble trying to set it up. Is it necessary to set up the DHCP scope for the always on VPN network subnet? If so, Does the always-on…
Powershell to update AD
Hi Gurus, I need some help with updating AD attribute - Telephonenumber and Mobile by feeding CSV file with help of Samaccount name , My csv consist of below samaccountname,telephonenumber,Mobile some of the field for some samaccount could be null …
An Additional DC as a VM
Hi, Are there any special requirements for installing an additional domain controller as a hyper-v virtual machine when NICs on the physical server are teamed and the virtual NIC is also created using the teamed interface or it is better to create a…
After Installing Edge Templates on Domain Controller, lost access to Modify Current GPOs
In Group Policy Editor under Computer or User Configuration - Administrative Templates: We no longer have folders such as "Control Panel, Windows Components, etc. Only folders listed are: Microsoft Edge Microsoft Edge - Default Settings
Problem with RODC (Read Only Domain Controller) forwarding to RWDC with WCF Windows Authentication
I have a problem regarding RODC forwarding. There is a WPF Application calling an WCF service configured with Net.Tcp Binding and Windows Authentication (like here)…