667 questions
667 questions with Windows for business | Windows Server | Directory services | Active Directory tags
0 answers
DFSR SYSVOL: Primary Domain Controller not generating required AD objects (Windows Server 2022)
I’m running a Windows Server 2022 domain with a single domain controller (DC1) hosting corp.example.uk. After preparing and confirming a clean system state, I attempted to promote a second DC (DC2) into the domain. Promotion succeeded, but SYSVOL…
Windows for business | Windows Server | Directory services | Active Directory
asked 2025-07-04T22:31:34.38+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(83.2, 99%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKB%3C/text%3E%3C/svg%3E)
Ken Baldwin
0
Reputation points
asked 2025-07-04T22:31:34.38+00:00
Ken Baldwin
0
Reputation points
0 answers
Rebooting Error after Joining Domain Windows Server 2025
Dear Microsoft Support Team, I installed Active Directory using Windows Server 2025, and then joined another Windows Server 2025 machine to the domain and installed the Horizon Connection Server on it. The CS worked fine at first. However, after…
Windows for business | Windows Server | Directory services | Active Directory
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 62%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
0 answers
How to fix VSS Writers services failed for DFS Replication service writer and NTDS services
I am having windows server 2022 and daily I am getting alert about the e VSS services failed for DFS Replication service writer NTDS. I tried restarting the services. It says the services are started. But when I run vssadmin list writers command, the…
Windows for business | Windows Server | Directory services | Active Directory
asked 2025-07-04T16:44:33.7933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(243.2, 16%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Sanket Mahindrakar
0
Reputation points
asked 2025-07-04T16:44:33.7933333+00:00
Sanket Mahindrakar
0
Reputation points
0 answers
Active Directory issue with deleted user accounts still appearing in ADUC
Certain user accounts that have already been deleted from the domain controller are still appearing as active users in Active Directory Users and Computers (ADUC). When attempting to delete the object “User”, the following error is encountered: Windows…
Windows for business | Windows Server | Directory services | Active Directory
asked 2025-07-04T04:01:27.0433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(144, 63%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESG%3C/text%3E%3C/svg%3E)
Swaroop Gowda D
25
Reputation points
edited the question 2025-07-04T04:02:49.5+00:00
Swaroop Gowda D
25
Reputation points
0 answers
I can't connect to my AD domain
Hey, I have AD configured on Windows Server 2022 server. Everything works fine on old computers with Windows 10. I bought a new computer and installed Windows 11 on it, whenever I try to connect to the domain I get a message that the domain does not…
Windows for business | Windows Server | Directory services | Active Directory
asked 2025-07-03T12:06:16.74+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 26%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EWG%3C/text%3E%3C/svg%3E)
Wojciech Guse
0
Reputation points
edited the question 2025-07-03T13:21:39.16+00:00
Wojciech Guse
0
Reputation points
0 answers
Setup SAML2 with Moodle and ADFS
We are trying to configure Moodle and ADFS to use the SAML 2 login. We keep getting the following error messages Exception - Failure Signing Data: error:25078067:DSO support routines:win32_load:could not load the shared library - SHA256 Stack trace: · …
Windows for business | Windows Server | Directory services | Active Directory
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 48%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
1 answer
Domin users unable to login through RDP session though users added in the Restricted Group
We have security group 'Remote Users' in Active Directory.This group is also a member of 'Remote Desktop Users' group. The users which are required for remote server login has been added to the 'Remote users group' and 'Remote Desktop Users' group also.…
Windows for business | Windows Server | Directory services | Active Directory
asked 2025-07-03T07:45:37.67+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(246.4, 10%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESH%3C/text%3E%3C/svg%3E)
Surodeep Hazra
0
Reputation points
answered 2025-07-03T07:55:36.05+00:00
Surodeep Hazra
0
Reputation points
1 answer
Active Directory Replication Failure & NTDS Corruption (Single DC/GC Environment)
Hi Community, We're encountering a critical Active Directory replication issue after migrating Exchange Server from Windows Server 2016 to Windows Server 2022, and we would greatly appreciate your insights and suggestions. 🖥️ Environment…
Windows for business | Windows Server | Directory services | Active Directory
asked 2025-07-01T04:45:21.09+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(115.19999999999999, 84%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAK%3C/text%3E%3C/svg%3E)
Ashok Kumar
0
Reputation points
edited an answer 2025-07-02T17:57:29.1+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(313.6, 95%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHP%3C/text%3E%3C/svg%3E)
Hoang Phan0701
0
Reputation points
0 answers
Disable service/system accounts based on lastLogonTimestamp
Hi, We have planned to disable service/system accounts based on the lastLogonTimestamp. However, we’re concerned that we might accidentally disable an account that is still being used — just not in a way that updates the lastLogonTimestamp. For example,…
Windows for business | Windows Server | Directory services | Active Directory
asked 2025-07-02T17:16:00.0966667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(243.2, 33%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKK%3C/text%3E%3C/svg%3E)
Khushboo Kumari
20
Reputation points
asked 2025-07-02T17:16:00.0966667+00:00
Khushboo Kumari
20
Reputation points
0 answers
Intermittent secure channel failure issue
We have site with 172.20.0.0/16 as its local subnets. The local subnets are on a Palo Alto 440 . The palo alto is connected to Peplink MAX BR2 Pro. Peplink MAX BR2 Pro is connected to Fusion hub in Azure and Fusion hub runs OSPF to reach the subnets in…
Windows for business | Windows Server | Directory services | Active Directory
asked 2025-07-02T14:46:01.1266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(54.400000000000006, 62%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERP%3C/text%3E%3C/svg%3E)
Ranji Prem Andrew
0
Reputation points
asked 2025-07-02T14:46:01.1266667+00:00
Ranji Prem Andrew
0
Reputation points
1 answer
One of the answers was accepted by the question author.
How to share user's data between PCs under a Domain (Active Directory) & tools for transfer data (files and softwares) between local and domain account
Hi, We've recently moved from a workgroup to a domain network (we are a bunch of friends trying to understand AD). I've ran into a 2 problems: How to move all the user's data from the local account to the domain account? I mean softwares first of all. …
Windows for business | Windows Server | Directory services | Active Directory
asked 2025-07-01T17:26:00.38+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(156.8, 57.99999999999999%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
Christian Monaldi
20
Reputation points
commented 2025-07-01T18:38:30.3733333+00:00
Christian Monaldi
20
Reputation points
1 answer
whoami still returning old username after surname change, SSMS not able to recognize the windows authentication user
Hello, After a surname change in users profile we are experiencing some issues when running SSMS and trying to log to any database. Old username: firstname.lastname @ company.com - monika.wozniak New username: firstname.newlastname @ company.com -…
Windows for business | Windows Server | Directory services | Active Directory
asked 2025-06-25T12:31:34.1933333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 13%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETS%3C/text%3E%3C/svg%3E)
Tomasz Sobotka
35
Reputation points
commented 2025-07-01T01:54:56.61+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(220.8, 47%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMS%3C/text%3E%3C/svg%3E)
Mallaiah Sangi
1,145
Reputation points Microsoft External Staff
Moderator
1 answer
Windows 10 Clients can't join AD domain (AD DNS/DC woes)
So two DC/DNS servers via site-site VPN with a client in a third location that can ping/see them both.. The client can FQDN and hostname values for the servers.. - Dcdiag shows the DNS servers are clean. - The whole…
Windows for business | Windows Server | Directory services | Active Directory
asked 2025-06-27T19:11:55.3133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 5%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDM%3C/text%3E%3C/svg%3E)
Doc Miller
0
Reputation points
answered 2025-06-27T19:18:37.7433333+00:00
Doc Miller
0
Reputation points
1 answer
Unable to change CNO Security
In a failover cluster, in Windows Server 2025, if I change security of the CNO, after about 1 hour, the security settings rollback and inheritance disabled. This cause access denied when CNO try to change password every hour. If I add the correct…
Windows for business | Windows Server | Directory services | Active Directory
asked 2025-05-07T15:22:07.21+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 26%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDP%3C/text%3E%3C/svg%3E)
Domenico Pozza
0
Reputation points
commented 2025-06-06T11:52:00.8733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(102.4, 66%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDP%3C/text%3E%3C/svg%3E)
Domenico Pozza
0
Reputation points
1 answer
Workstation Password Change on Next Logon Issue with Domain Users
Hey Community, In a domain environment with approximately 1200 users, an issue arises when resetting a user's password. Despite checking the "Password change on next logon" checkbox, the option to change the password does not appear during…
Windows for business | Windows Server | Directory services | Active Directory
asked 2025-05-28T10:03:44.8266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 15%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMM%3C/text%3E%3C/svg%3E)
Moshiur (Moshiur Khan)
80
Reputation points
answered 2025-06-03T08:46:34.68+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 19%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBW%3C/text%3E%3C/svg%3E)
Benjamin Wang
75
Reputation points Microsoft External Staff
Moderator
1 answer
One of the answers was accepted by the question author.
Window server 2025: limit the number of concurrent logins from members of a security group
We have a few hundred security groups with different numbers of members. We need to limit the use of our infrastructure to each group according to their needs and budget, so that each group has a limit of simultaneous logins available for their users.…
Windows for business | Windows Server | Directory services | Active Directory
asked 2025-06-02T16:32:46.59+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(115.19999999999999, 5%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERF%3C/text%3E%3C/svg%3E)
Rafael Funes
20
Reputation points
commented 2025-06-02T17:43:14.0766667+00:00
Rafael Funes
20
Reputation points
0 answers
Can I pass login_hint to a saml Clams Provider Trust in ADFS?
Hi, I have configured Keycloak as a Claims Provider Trust on ADFS. However, I'd like to pass a login_hint so that the username is prefilled. Is that possible at all?
Windows for business | Windows Server | Directory services | Active Directory
asked 2025-05-30T16:14:54.4433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(9.6, 97%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EFA%3C/text%3E%3C/svg%3E)
Francis Augusto Medeiros-Logeay
20
Reputation points
asked 2025-05-30T16:14:54.4433333+00:00
Francis Augusto Medeiros-Logeay
20
Reputation points
0 answers
ADFS Claim Rule: Multi-valued Claim Unexpected Behavior UPN (Web API + Application Group) — Possible Bug
Hello, I’m seeing a very odd behavior in ADFS Claim Issuance, and after a lot of testing I suspect this could be a bug in the way ADFS merges claims across Web API Applications and Application Groups. ✅ Environment ADFS Version: (example: ADFS 2019 /…
Windows for business | Windows Server | Directory services | Active Directory
asked 2025-05-30T13:31:08.88+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(204.8, 78%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EG%3C/text%3E%3C/svg%3E)
gabilan0022
0
Reputation points
asked 2025-05-30T13:31:08.88+00:00
gabilan0022
0
Reputation points
1 answer
adfs autocertificaterollover generated certificate
Adfs server had autocertificaterollover enabled and it generated new token-signing and token-decrypting certificate 15 days before the expiry date, This caused authentication issue and we had to roll back to the previous certificate setting it to…
Windows for business | Windows Server | Directory services | Active Directory
asked 2025-05-14T14:39:41.6466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 14.000000000000002%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBA%3C/text%3E%3C/svg%3E)
Basharat Ali Mir
0
Reputation points
answered 2025-05-30T08:10:29.89+00:00
Benjamin Wang
75
Reputation points Microsoft External Staff
Moderator
1 answer
One of the answers was accepted by the question author.
Is it possible to change the time window when a GMSA account password is rotated every 30 days
Hi I am aware that for Group Managed Service Accounts (gMSA), the Active Directory rotates password every 30 days by default. I am trying to find some info on How is the time window for that password rotation determined (either precise timing or rough…
Windows for business | Windows Server | Directory services | Active Directory
asked 2025-05-28T06:13:29.1266667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(294.40000000000003, 47%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMK%3C/text%3E%3C/svg%3E)
Murali Kumar
65
Reputation points
accepted 2025-05-29T15:45:31.1233333+00:00
Murali Kumar
65
Reputation points