Auditing NTLMv1
Hi, I have enabled NTLM auditing to discover any use of NTLMv1. As I understand I can look for events under Applications and Services Log\Microsoft\Windows\NTLM I do see the following events but not sure if there is NTLMv1 traffic blocked here. From the…
Microsoft Windows Server has detected that NTLM authentication. Event ID: 6038
Why this warning comes up?
SuccessFactors AD Integration with Azure
Hi Gurus, I'm encountering a scenario with the SuccessFactors and AD Integration and seeking for solutions. I have a user called John Smith, he has an account in Active Directory. One day, his laptop got stolen ( or hacked ), then John rang the security…
Using Group Managed Service Accounts (gMSA) to set and forget the Service Accounts.
Hi Everyone, I have the requirement to use gMSA (Group Managed Service Accounts) to replace the statically assigned service account in my AD domain joined Servers that is already members of highly privileged groups like: Domain Admins, Enterprise…
GPO "Enable automatic MDM enrollment using default Azure AD credentials" Missing from Group Policy Editor
GPO "Enable automatic MDM enrollment using default Azure AD credentials" Missing from Group Policy Editor
Persistent Proxy Authentication Issue Following User-Specific Computer Assignment
On my Active directory server, I assign a predefined computer to a user, and they can only log in on that machine. Currently, I’m using the automatic proxy configuration in Windows, which uses an automatic configuration script. This script is set up on…
Roaming profile keeps disconnecting (losing desktop icons)
I have roaming profiles set up and I've been testing it before deploying. Something keeps causing my test profile to lose connection with the server and my desktop icons disappear until I log off and back on again. My taskbar icons also break and I am…
Set default directory in Azure
Is it possible to set a directory in Azure as the default? I was added to a university's directory when I did a course a while back, now every time I open Azure Portal it opens under that directory without access to any resources. It's impossible to get…
Getting event 1000 error during import the gpo
Hi getting below attached error during import the gpo in target domain, for the GPO in which don't have any settings configure GPO import is working fine. But for the GPO in which settings are configured unable to import and PowerShell ISE automatically…
Active Directory unlock account problem
Hello I have a problem, one of our users locks their account on daily basis, usually they have 10 attempts but now after I unlock the account from Active Directory they only have 1 attempt and then its back to Lock, also is there a way to automatically…
Need a way to leave client's directory ogranization ASAP
Need to unsubscribe from client's directory / organizaiton unit. I ve been working for this client, amd ever somce I receive couple of spam email , EVERY DAY . like this: Azure: Deactivated Severity: 3 cpu greater than 60 Need a way to leave client's…
Entra joined device does not receive Kerberos ticket for "custom" SPN
Hi everyone, I am currently trying to make our mail system's (not Outlook) SSO work with an Azure/Entra joined device. So the device is not domain joined, it is only Entra joined. But has line of sight to the on prem domain controllers so it actually…
LAN Manager authentication level Default Value for Windows 10 and Windows 11 client Machines.
Hello, In my Active Directory Domain environment, I have Windows 10 and Windows 11 client machines. These machines do not have the "Network security: LAN Manager authentication level" configured. I want to understand the default value that my…
How to Activate windows which is showing in bottom right corner?
Hey there! I'm Mohit Singla, a skilled software engineer at Lets Rentz Every time I open my PC i see Activate Windows does anyone know how to fix this issue?
why local domain AD user does not sync with the Azure AD user with same UPN
we have recently syncrohnized the the local AD users and groups to Azure AD tenant. Most of the users are synced but one user in the local AD user scope does not sync with the existing Azure AD user with same UPN which was already existing but the sync…
Fix Root AD CA certificate on Win Server 2022 for Apache Tomcat 9 website not loading?
We setup a Windows Active Directory Certificate Authority on our Windows Server 2022 and issued a certificate for an Apache Tomcat 9 server website. When a user accesses the website, logging in with a valid AD logon, the website will show the website…
Unable to create the synchronization service account for Azure Active Directory.
Unable to create the synchronization service account for Azure Active Directory.
Windows Hello For Business - Elevate to domain admin
I have recently implemented Windows Hello for Business on a couple of test users. I have deployed via a GPO and have a hybrid environment using Entra kerberos. I require two factors for authentication with the following options: pin, face, fingerprint…
Active Directory Replication
I am trying to speed up AD replication by going off this article https://social.technet.microsoft.com/wiki/contents/articles/16929.set-active-directory-to-use-notify-replication.aspx I have changed the Inter-Site Transports > IP option to 1, but…
Unable to add Office 365 Exchange Online API permissions
Hello Team, I am trying to configure EBS workflow mailer with office365, we need Azure setup for this. I am unable to add the Office 365 Exchange Online API permissions to get the Imap.AccessAsApp . Do we need to add premium licensing as per the link…