5,728 questions with Active Directory tags

Sort by: Updated
1 answer

Azure Active Directory (AAD) authentication or aad B2C authentication within a PHP application

My PHP application, which is built on WordPress, currently utilizes WordPress AAD authentication with client ID and client secrets. However, I am looking to discontinue the use of client secrets. Presently, I am using the functionality available on…

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
10,306 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,728 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,177 questions
Microsoft Entra
asked 2024-03-29T11:58:05.8533333+00:00
Arun Pradhan (MINDTREE LIMITED) 0 Reputation points Microsoft Vendor
edited the question 2024-03-29T14:29:26.1166667+00:00
PRADEEPCHEEKATLA-MSFT 75,286 Reputation points Microsoft Employee
1 answer

Windows 11 23H2 "View Wi-Fi Security Key"

Windows 11 23H2 recently introduced a new function "View Wi-Fi Security Key" within the "Manage Known Networks" Settings location. With some deployments auto-configuring Wi-Fi via GPO and Intune, is there a way to disable this new…

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,728 questions
Microsoft Intune Security
Microsoft Intune Security
Microsoft Intune: A Microsoft cloud-based management solution that offers mobile device management, mobile application management, and PC management capabilities.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
320 questions
asked 2024-03-26T16:55:18.0633333+00:00
Lloyd Severence 5 Reputation points
commented 2024-03-29T11:51:38.0066667+00:00
Lloyd Severence 5 Reputation points
1 answer

Domain Users replication rights

Hi, We just found out our Domain Users security group has the following rights: Replicate Directory Changes, Replicate Directory Changes All and Replicate Directory Changes In Filtered Set I read about DCSync attacks. Is it safe to remove these…

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,728 questions
asked 2024-03-29T01:46:17.14+00:00
Janus Bariñan 1,106 Reputation points
answered 2024-03-29T09:16:41.05+00:00
Yanhong Liu 550 Reputation points Microsoft Vendor
0 answers

MBAM decommissioning: solutions

Hi everyone, one of my clients has MBAM for managing the encryption of laptops and removable disks, MBAM server + SQL database and Web Portal for key management. MBAM will be decommissioned and the customer would like to replace it, they already have…

Azure Disk Encryption
Azure Disk Encryption
An Azure service for virtual machines (VMs) that helps address organizational security and compliance requirements by encrypting the VM boot and data disks with keys and policies that are controlled in Azure Key Vault.
158 questions
Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
11,937 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,728 questions
asked 2024-03-29T08:40:20.18+00:00
49885604 125 Reputation points
1 answer

Unable to create the synchronization service account for Azure Active Directory.

Unable to create the synchronization service account for Azure Active Directory.

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,728 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,111 questions
asked 2024-03-28T15:54:22.7533333+00:00
adminmtsaglik 0 Reputation points
commented 2024-03-29T07:33:47.2833333+00:00
Givary-MSFT 27,001 Reputation points Microsoft Employee
1 answer

Domain Users replication rights

We just found out our Domain Users security group has the following permissions: Replicate Directory Changes, Replicate Directory Changes All and Replicate Directory Changes In Filtered Set Is it safe to remove these permissions from the Domain Users and…

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
11,937 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,728 questions
asked 2024-03-29T01:48:38.0166667+00:00
Janus Bariñan 1,106 Reputation points
answered 2024-03-29T03:30:34.63+00:00
Marcin Policht 4,615 Reputation points MVP
1 answer

Force RDP Gateway to request verification twice, for GW and separately for the target server

Hello, please help me with RDP GW. Here's a question: can I force it to request double authentication on the server? So that the RDP GW would request authentication and then the target server would request a separate authentication. Why this is needed:…

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,728 questions
Remote Desktop
Remote Desktop
A Microsoft app that connects remotely to computers and to virtual apps and desktops.
4,190 questions
asked 2024-03-27T15:56:10.76+00:00
Mountain Pond 1,061 Reputation points
answered 2024-03-29T01:40:19.35+00:00
Karlie Weng 13,241 Reputation points Microsoft Vendor
1 answer

Problems to connect Terminal Server - RemoteApp after join a 3rd DC

I have troubles connecting to Terminal Server with RemoteApp. There are 2 DC (Win2008R2 STD) and 1 TS-RemoteApp Server (Win2019 STD). Clients Win11 Pro. Domain Functional Level Windows 2008 (not 2008R2) – All has being working great for years so far…. I…

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
11,937 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,728 questions
Remote Desktop
Remote Desktop
A Microsoft app that connects remotely to computers and to virtual apps and desktops.
4,190 questions
Windows Server Security
Windows Server Security
Windows Server: A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
1,701 questions
asked 2023-11-10T10:11:16.8633333+00:00
Víctor Martínez 6 Reputation points
answered 2024-03-29T01:06:28.79+00:00
mpls 80 Reputation points
1 answer One of the answers was accepted by the question author.

Acquiring id tokens via IWA: Error Code 3400073293, 'Account type is unknown.'

Hi guys. I'm using WAM in MSAL.NET, and I'm hoping to perform a silent id token acquisition via IWA specifically - based off windows credentials, before a user has manually entered their credentials into a wam broker prompt. The machine is domain-joined,…

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,728 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,111 questions
asked 2024-03-27T14:46:01.13+00:00
Sam 20 Reputation points
commented 2024-03-28T22:18:23.1566667+00:00
Marilee Turscak-MSFT 33,211 Reputation points Microsoft Employee
4 answers

Permissions required to change Computer Name in AD

We have delegated "Write All" properties for the service desk on OU where all PCs located. While renaming the computer we get message "Access is Denied". Looking for support to fix this issue Thanks in advance

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,728 questions
asked 2024-02-05T07:20:23.07+00:00
LMS 1 Reputation point
answered 2024-03-28T18:48:13.5766667+00:00
Megas, Nick - OASAM OCIO CTR 0 Reputation points
1 answer

Graph API - How to handle empty manager of CEO?

Hello, I have the use case where I query the manager of a given user. But when the given user is our CEO then I get an error, since he doesn't have a manager. Because I want to avoid hardcoding his user to skip this query, what are the options to handle…

Microsoft Graph
Microsoft Graph
A Microsoft programmability model that exposes REST APIs and client libraries to access data on Microsoft 365 services.
10,306 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,728 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,111 questions
asked 2024-03-28T10:34:09.1766667+00:00
Grethler, Niklas (TIS, KIZ, IT) 0 Reputation points
answered 2024-03-28T18:13:51.7866667+00:00
Vasil Michev 92,596 Reputation points MVP
1 answer One of the answers was accepted by the question author.

Needed guidance to rename a computer joined to a Domain

Hi All, There is a requirement to rename a computer already joined to a Domain to a new name. This computer (Laptop) is connected to Domain through VPN when the user is working from remote location, so it has linked VPN certificate with the existing…

Windows 10
Windows 10
A Microsoft operating system that runs on personal computers and tablets.
10,421 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,728 questions
asked 2023-05-19T21:10:45.7166667+00:00
Techshan 216 Reputation points
commented 2024-03-28T17:53:45.1933333+00:00
Andrew Hawes 0 Reputation points
3 answers One of the answers was accepted by the question author.

Unable to add user from child domain

I am trying to add a user from a child domain to a group in the root domain, but I am receiving this error: The specified user was not found. If the user exists on another active directory Domain controller in the enterprise, it may take 15 minutes or…

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,728 questions
asked 2024-03-27T14:57:30.6366667+00:00
MamadouCoulibali-4946 446 Reputation points
accepted 2024-03-28T16:27:45.3733333+00:00
MamadouCoulibali-4946 446 Reputation points
2 answers One of the answers was accepted by the question author.

Restore VIP user data after deleting synced account

My team accidentally deleted an important user's synced account. We attempted to restore it on active directory, but the user is still unable to access their history, such as Teams and Exchange Online mailbox. How can we restore their data?

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,728 questions
Microsoft Entra
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,111 questions
asked 2024-03-28T08:02:15.8533333+00:00
MamadouCoulibali-4946 446 Reputation points
accepted 2024-03-28T16:26:36.6533333+00:00
MamadouCoulibali-4946 446 Reputation points
0 answers

Entra joined device does not receive Kerberos ticket for "custom" SPN

Hi everyone, I am currently trying to make our mail system's (not Outlook) SSO work with an Azure/Entra joined device. So the device is not domain joined, it is only Entra joined. But has line of sight to the on prem domain controllers so it actually…

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,728 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,111 questions
asked 2024-03-26T19:07:42.9333333+00:00
Philipp Näther 0 Reputation points
edited a comment 2024-03-28T16:20:12.68+00:00
Givary-MSFT 27,001 Reputation points Microsoft Employee
2 answers

active directory -grant permission to undelete user only move and create

I try to give user permission in an active directory to create users and move between them, but do not delete them. When I delegate control to some group, I do not have the option to undelete users.

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,728 questions
asked 2024-03-27T08:46:42.31+00:00
jihad majed 250 Reputation points
commented 2024-03-28T15:31:58.7366667+00:00
Thameur-BOURBITA 31,916 Reputation points
1 answer One of the answers was accepted by the question author.

How to trigger webhooks in Azure Microsoft Entra ID?

Hey, I need to add webhooks to Microsoft Entra ID in Azure, such that events occuring in Entra will trigger the sending of arequest to a URL of my specification. Something of the following sort: A user is being added to some group or, A new user is…

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,728 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,111 questions
asked 2024-03-26T16:09:20.5166667+00:00
Leonid Roubbakh 20 Reputation points
commented 2024-03-28T09:07:11.93+00:00
Leonid Roubbakh 0 Reputation points
1 answer

How to enable push notifications for azure AD B2C MFA

Hi Team, I would like to know if push notification feature has implemented for ADB2C MFA? Thanks, Sukeerthi

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,728 questions
asked 2024-03-27T08:44:47.47+00:00
Sukeerthi 1 Reputation point
commented 2024-03-28T08:46:49.45+00:00
Sukeerthi 1 Reputation point
1 answer One of the answers was accepted by the question author.

AD DNS manager records duplication with SQL always on failover cluster

Hi, We are managing our SQL Always On listeners records in 2 active directory servers (they are syncing each other) and we came across an issue which we couldn't pinpoint the cause for. We are testing MSSQL failovers on our windows DB servers and after…

SQL Server
SQL Server
A family of Microsoft relational database management and analysis systems for e-commerce, line-of-business, and data warehousing solutions.
12,490 questions
Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
11,937 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,728 questions
asked 2024-03-26T08:11:05.92+00:00
Yishai Neeman 20 Reputation points
accepted 2024-03-28T07:18:32.7666667+00:00
Yishai Neeman 20 Reputation points
1 answer One of the answers was accepted by the question author.

Why Event ID 4776 / 0xc00006a events login name is workstation but not account id ?

In the event log of the DC server, there is a significant occurrence of Event 4776 (100 events per second) when a workstation powers on. The login account displayed is the workstation name (e.g., “john$”) rather than the actual account name. However, the…

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,728 questions
asked 2024-03-27T06:55:53.98+00:00
Ahui Lin 20 Reputation points
accepted 2024-03-28T03:56:39.8166667+00:00
Ahui Lin 20 Reputation points