Adding legacy computers to the domain
We have approx 20 Mazak milling machines running either Win 95, Win 2000 Pro or Win XP. Since the beginning of the year I've not been able to re-add them back onto the domain (functional level 2016). As they are old a hard drive replacement is often…
Azure policy
I am testing a azure policy that I just successfully deployed. The policy works and it has been deployed at a device level. The thing is the policy is not working for local accounts only the cloud accounts that sign into the device have been affected…
Delete User from AD
Hi I have a question. I have a user which is created on On-premise AD and synced to Azure AD. This user has exchange online, teams and one drive license. I want to remove this user. What is the best way to remove this user? If I will remove it from…
Improper permissions for Azure ad connect sync?
So we have our azure ad synced with our on prem. We have an issue where our sync agent service stops. We have had this multiple times. I noticed that the "Log On As" is listed as "ourdomain\adconnectuser" instead of NT Service\System …
How to fix The directory name is invalid. 0x8007010b (WIN32/HTTP: 267 ERROR_DIRECTORY) in Certificate Authority
Certificate Authority has the following error. Active Directory Certificate Services could not publish a Delta CRL for key 0 to the following location: file://\publiccert\CRLD$\AGC Internal Issuing+.crl. The directory name is invalid. 0x8007010b…
Improper permissions for Azure ad connect sync?
So we have our azure ad synced with our on prem. We have an issue where our sync agent service stops. We have had this multiple times. I noticed that the "Log On As" is listed as "ourdomain\adconnectuser" instead of NT Service\System …
Authenticate with Graph API and send code to Microsoft Authenticator
I'm looking for a way to verify a user is doing certain operations. And when the user approves something in a c# solution we'd like to confirm the user via Microsoft Authenticator. Basically we'd liek to display a code (similar to the Multi Factor…
Access to Azure Active Directory, will be disabled on May 2, 2024
Received this email form Microsoft. No idea What I'm supposed to do. Your subscription offer, Access to Azure Active Directory, will be disabled on May 2, 2024 Access to Azure Active Directory subscriptions were subscriptions that were used to connect to…
Icone raccourci par GPO blanche windows 11
Bonjour, Dans notre infrastructure, nous avons des postes sous Windows 11 et Windows 10. Nous avons un serveur 2016 qui héberge le DC et donc les GPO. Nous avons différents raccourcis vers des pages web avec l'icône de l'application, l'icône est hébergée…
Risk and consequence when executing Kerberos password reset in a Hybrid Azure AD - OnPremise AD DS?
What are the risks and consequences of resetting the Kerberos krbtgt account during business hours using the steps defined…
The processing of Group Policy failed in Active Directory.
Hello everyone, I've installed admx file for MDM Automatic Enrollment gpo on Active Directory for Microsoft Intune Enrollment for Entra Hybrid Joined Device and applied that GPO to OU. When I want to gpo update using gpupdate /force, it shown : The…
Unable to Access Windows Server 2019 Datacenter Using Azure Active Directory User
I am facing an issue while attempting to access a Windows Server 2019 Datacenter instance using an Azure Active Directory (Azure AD) user. Despite configuring various settings on the server, I encounter an error stating "the username or password is…
Regarding access token generation using REST API
We are using Azure subscription with the Standard Tier. We have a requirement to use Cost Details API in our application. For that, we need to generate access token for Cost Details API authorization. Is there any REST API available to generate access…
what are setting in GPO Should be applied for implementing tiering in AD
hello Experts, Wants to implement tiering model in AD ,what are settings we can implement in GPO point to implement tier. Any supported links and examples of GPO would be helpful. thanks Richa
how accurate is the email address attribute from get-aduser
If you use Exchange Online (ExO) for your organisations email system (and perhaps previously used on-prem Exchange Server), how accurate & current is a user’s email attribute that would be produced if you ran a get-aduser PowerShell command on the…
After Azure AD Hard-Match, users outlook will prompt "The Microsoft Exchange administrator has made a change that requires you quit and restart Outlook" occasionally
Hi all, I got a tenant with cloud users, they are disconnected from previous AD domain (let say abc.com). I changed all cloud users primary domain from abc.com to xyz.com. Then I created a new local domain AD with xyz.com, users are exactly same name…
How to onboard On-premise Windows Servers on Azure Arc on scale using PowerShell (PSSession)
We are planning to onboard our on-premises Windows Server (lowest version is 2012 R2) to Azure Arc on a scale (Approx. 400 Servers). We downloaded PS script from Azure Arc and ran from one of the servers to other remote servers using PS Session to…
audits logs
Hello Please i need your help on this issue When trying to run audits, results are not showing
File Server - Folder AD Group Permissions Overwritten by User Permissions.
We have a series of departmental folders. Each department has an AD group with department members within to control access. Finance folder only has Finance people, HR folder only has HR people, etc. The root folder for each department is owned by Domain…