Active Directory
A set of directory-based technologies included in Windows Server.
6,060 questions
1 answer
One of the answers was accepted by the question author.
Site Design and Certificate Authority
Hi all, We have three sites in different Geo-locations. We have plan to create three active directory sites and there is a confusion. Can we deploy subordinate Enterprise CA for each site? BR
asked 2020-08-30T18:50:47.967+00:00
Davoud Teimouri
146
Reputation points
accepted 2020-09-03T04:30:58.627+00:00
Davoud Teimouri
146
Reputation points
3 answers
GPO StartUp Script for KMS Run as Admin and Stop User Prompts
We have 2 Data Centers which are connected to the same AD's Structure through a VPN tunnel. We have two KMS Servers due to using a VDI solution, if they is a fail-over we need to be able to License the newly created machines. KMS DNS setup only works…
Windows
Windows
A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.
4,933 questions
Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
12,410 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,060 questions
asked 2020-08-25T19:04:31.927+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(201.6, 39%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESI%3C/text%3E%3C/svg%3E)
Soren-IT
1
Reputation point
answered 2020-09-03T01:35:25.347+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(281.6, 28.999999999999996%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVW%3C/text%3E%3C/svg%3E)
Vicky Wang
2,646
Reputation points
6 answers
Windows Server 2019 Domain Controller & SBS 2011
Hello, We have a Windows Server SBS 2011 Domain Controller which we are in the process of decommissioning. We have upgraded the Forest and Domain Functional Levels to Windows Server 2008 R2. We have also migrated the File Replication Service to DFS-R,…
asked 2020-08-27T14:26:30.517+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Anonymous
answered 2020-09-03T01:34:14.18+00:00
Vicky Wang
2,646
Reputation points
1 answer
One of the answers was accepted by the question author.
How to secure Blazor WebAssembly application and WebApi using Windows Authentication
I am working on implementing security to Blazor WebAssembly .Net core hosted application. I need to secure client as well as WebAPI (to be hosted on IIS). As a policy decision, the team has decided to use Windows authentication instead of Azure AD for…
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 55.00000000000001%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
2 answers
Migrating Active Directory Domain Controller from Windows 2016 to Windows 2019
Hello there, We had Windows Server 2012 R2 domain controller with DNS and Active Directory Certificate Services in the past, and we migrated to Windows Server 2016. And, now we have planned to migrate the Windows Server 2016 domain controller to…
asked 2020-08-27T07:23:17.777+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 42%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAF%3C/text%3E%3C/svg%3E)
Anand Franklin
21
Reputation points
commented 2020-09-02T02:14:13.333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 62%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDZ%3C/text%3E%3C/svg%3E)
Daisy Zhou
20,301
Reputation points Microsoft Vendor
3 answers
One of the answers was accepted by the question author.
User account security inheritance being disabled automatically
Hi everyone. Hope I am asking in the right place. I have Exchange 2019 on a 2012R2 domain. I was experiencing issues connecting remotely to Exchange. According to multiple articles, the solution was to enable permissions inheritance on the AD user…
asked 2020-08-31T18:42:23.277+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 18%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJP%3C/text%3E%3C/svg%3E)
John Palmer
31
Reputation points
answered 2020-09-01T14:44:50.057+00:00
John Palmer
31
Reputation points
7 answers
Logon script on AD working with domain admin but not working for standard users
Hi All, I am working on a cmd script which needs to the change local machine policies when a user who is connected to the domain logs on. I have been able to make it work with domain admins accounts. But it is not working when trying same with standard…
asked 2020-07-28T09:08:19.1+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 1%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EG%3C/text%3E%3C/svg%3E)
Gyanesh23
1
Reputation point
answered 2020-09-01T10:21:50.343+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(208, 32%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKK%3C/text%3E%3C/svg%3E)
Klaus Koehler
1
Reputation point
3 answers
LDAP filter simplification
Hello, I have the following filter to select users from multiple groups. As these groups all have the same parent OU path, is there any way I can simplify this filter to remove the need to remote the common parent path for each sub-group ? Thank you.…
asked 2020-08-24T03:46:10.597+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 50%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDP%3C/text%3E%3C/svg%3E)
dave parker
1
Reputation point
answered 2020-08-31T07:17:48.327+00:00
Vicky Wang
2,646
Reputation points
3 answers
One of the answers was accepted by the question author.
AD domain migration With AAD connect passthrough authentication
What is the best way to migrate AAD connect to the new Active Directory domain when performing an AD migration? With password hash syncing it would be easy to perform the cutover but I am not sure how to do that when AADC is set to passthrough.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 60%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
1 answer
Burning a CD-Rs attributes to a CD-RW - disc to disc burning
Now that I may have known this from the previous answer, what happens when users burn the CD-Rs attributes to a CD-RW. Would the CD-RW enable hard write-protect? Regards, JohnCTX
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(153.6, 0%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
3 answers
Unable to remove DNS roothint
Hi Everyone, We are facing a weird situation in our DNS roothints configuration. We have configured the custom roothints in DNS properties under roothints tab, however when we run Get-DnsServerRootHint cmdlets we find the default roothints names as…
Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
12,410 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,060 questions
Windows DHCP
Windows DHCP
Windows: A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.DHCP: Dynamic Host Configuration Protocol (DHCP). A communications protocol that lets network administrators manage centrally and automate the assignment of Internet Protocol (IP) addresses in an organization's network.
1,028 questions
asked 2020-08-11T05:48:28.07+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 11%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPK%3C/text%3E%3C/svg%3E)
Pawan Kumar
1
Reputation point
commented 2020-08-27T05:27:36.997+00:00
Candy Luo
12,681
Reputation points Microsoft Vendor
1 answer
Collect hardware hash to Autopilot
Hi, Today we have a local domain with ad sync. Some machines are "Registered" and some are "Joined". What we would like for the "Registered" devices is to create a script we can use on a GPO to collect the hardware hash…
Windows
Windows
A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.
4,933 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
6,060 questions
asked 2020-08-26T20:47:22.023+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(294.40000000000003, 88%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Andreas
1,301
Reputation points
answered 2020-08-27T02:29:53.24+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(176, 16%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHX%3C/text%3E%3C/svg%3E)
Hannah Xiong
6,241
Reputation points
1 answer
Unable to connect to Ad server from RSAT server ?
Our AD server is connected to our server via RSAT server. When we are trying to run the AD commands by doing PSRemoting on RSAT server we are not able to get the desired results. But when we run same commands on RSAT server directly we can see the…
asked 2020-08-26T17:01:37.267+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(147.20000000000002, 59%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKP%3C/text%3E%3C/svg%3E)
Kshitij Patil
1
Reputation point
answered 2020-08-26T17:51:03.353+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 74%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERM%3C/text%3E%3C/svg%3E)
Rich Matheisen
45,416
Reputation points
1 answer
One of the answers was accepted by the question author.
Azure AD Connect - Best Practice for Domain Controller Connection Settings
Hi, Is there a recommended best practice for the DC connection settings under Configure Directory Partitions in Azure AD Connect ? i.e Should it be set to a selection of Preferred Domain Controllers, or should we leave that unchecked ? Thanks, …
asked 2020-08-26T14:00:33.467+00:00
Jammedherbs
21
Reputation points
commented 2020-08-26T14:05:24.41+00:00
Jammedherbs
21
Reputation points
3 answers
Golden image not connecting to domain after adding a rule to pick up computer name automatically
Hi all! Was wondering if someone can help ! I have made a golden image as a media for memory stick use on MDT 2013. I have configured it to connect to the domain via script which worked absolutely perfectly But the issue has come when I’m trying…
asked 2020-08-14T15:48:46.303+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 92%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAB%3C/text%3E%3C/svg%3E)
Aran Billen
721
Reputation points
answered 2020-08-26T08:23:52.81+00:00
Vicky Wang
2,646
Reputation points
5 answers
How to achieve high availability for Active Directory LDAPS (Secure LDAP)
We have around 50 applications currently configured with LDAP and we have around 20 Domain Controllers. As per the security best practice we have to migrate all these applications from LDAP to LDPAS. Currently, all applications are connected using…
asked 2020-08-12T15:03:42.897+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 90%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDJ%3C/text%3E%3C/svg%3E)
Dileep Jose
1
Reputation point
answered 2020-08-26T08:23:25.39+00:00
Vicky Wang
2,646
Reputation points
1 answer
Remove OLD CA certificate in AD
If i use Enterprise PKI > Manage AD containers and remove a certificate let say in AIA container will that also delete that certificate in Site and Services PKI Services container? Can i do that using just a domain admin rights or do i need an…
asked 2020-08-19T09:31:52.637+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 81%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EB%3C/text%3E%3C/svg%3E)
bizcntradmin
191
Reputation points
commented 2020-08-26T02:35:51.963+00:00
Hannah Xiong
6,241
Reputation points
1 answer
Issue with AD Connect (user called CHECK@company.onmicrosoft.com)
Hey there, We have a very strange problem with an on premise AD Domain Controller with AD Connect installed for sync to Azure/365. Some users appear in 365/Exchange Online as CHECK@Anonymous .onmicrosoft.com. If i take a look in the on premise…
asked 2020-08-20T09:26:50.01+00:00
Justin Verstijnen
201
Reputation points
commented 2020-08-25T22:51:22.123+00:00
JamesTran-MSFT
36,496
Reputation points Microsoft Employee
1 answer
Bulk Modify Attributes
Hell Everyone i created an excel sheet to bulk update some attributes for example Display Name , UPN, Addres , Office Number , Mobile Number, country , city, title, company. But i cannot seem to get a powershell command to work. Would anyone have any…
asked 2020-08-24T20:54:27.557+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(307.2, 87%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
stavros mitchell
56
Reputation points
commented 2020-08-25T15:33:14.69+00:00
Rich Matheisen
45,416
Reputation points
1 answer
One of the answers was accepted by the question author.
Trying to setup my first S2008 R2 Server
I have added my roles: ADDS, DHCP, DNS and I can't resolve any of them. Can someone guide me in the right direction?
asked 2020-08-24T08:57:18.223+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(73.60000000000001, 34%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EC%3C/text%3E%3C/svg%3E)
Carl_Haley
41
Reputation points
commented 2020-08-25T06:06:01.187+00:00
Carl_Haley
41
Reputation points