Newest 'domain-controller' Questions

Q&A for system and network administrators

Domain controller not able to join client to domain

This is my environment: DC1 (PDC) - IP: 192.168.1.11/24 DC2 - IP 192.168.1.12/24 DC3 - IP 192.168.2.10/24 Subnet 192.168.1.x/24 is connected to subnet 192.168.2.x/24, and domain controllers are ...

Samba Active Directory: restricting domain user access to specfic linux servers

Environment: Samba 4.5.1 active directory domain controller CentOS 7 Linux servers that are members of the domain We use the Microsoft Active Directory Users and Computers (MADUC) snap-in to ...

Can't shutdown on UPS Power

I have very strange problem. I can't shutdown, pm-suspend, reboot my computer on UPS power. It just freeze, when I am executing these commands. Computer continue working, I can close programs. UPS ...

Altaro backup warning

I have a VM, which was originally running on Windows Server 2008 R2 with the Hyper-V role. The guest was a Server 2012 which was just serving as a domain controller (a backup one to the SBS 2011 ...

DC Stuck in Promotion Limbo

I have a Windows Server 2012 R2 Standard box that I was trying to set as a second domain controller, but ran into some problem and now it's stuck in promotion limbo. I cannot promote it because I get ...

There is no Domain Controller in Add/Remove role

Recently i faced a very strange problem with my Active directory (Windows server 2003) and i asked a question here but nobody could help: Domain Controller not working till i make a ipconfig /renew ...

How to configure DNS for single forest multiple domain environment

I am needing help with configuring a new server ADDS deployment configuration. I have an existing server which is running ADDS, DHCP, and DNS for a domain ctrlbk.com. I am now needing to add a second ...

Samba primary domain controller issues with migrated system

I have a server running Ubuntu 16 at home. It has been with me a while and started out at the time of Ubuntu 12. It has been migrated by simply moving the drives to a new server hardware setup a ...

kinit: Cannot find KDC for realm

I'm trying config samba4 as domain controller following samba wiki /etc/resolv.conf : domain transbekk.lan nameserver 192.168.1.1 nameserver 192.168.1.254 /etc/hostname : domain.transbekk.lan /...

Can Alfresco join a domain (or use cifs without typing passwords)?

I have a windows 2012 domain. I am trying Alfresco 5.1 COMMUNITY that should be able to show windows servers a passwordless cifs share. I first would like to ask if it is really possible. Then I would ...

Domain controller with Active Directory local user account

I am setting up a domain controller and active directory at my job. I have everything working great (for the most part)... I have policies in place. I am getting a lot of static from the upper ups ...

Cannot Join to AD DC via samba

I'm trying to join my CentOS 7,64 bit server to an AD DC and I'm using the following command: # net ads join -U <username> -S <target server> Enter <username's> password: But after ...

Setting Up multiple domain in LDAP server

I am trying to setup an LDAP server from scratch on a CENTOS 7 server. I was able to install it properly, but when it came to configuring it I am a bit stuck on the initial part. The thing is the ...

Azure active directory integration with azure app services.

I am not a Azure and Microsoft guy but there is a friend of mine who is stuck in a situation where he need user attributes like, phone, email, address, etc from Azure active directory for his ...

Windows Server 2012 R2/Hyper-V - Restoring virtualized domain controllers

It appears as if there is a large amount of conflicting or old (pertaining to Server 2008) information regarding backing up and restoring domain controllers hosted in Hyper-V. I have two domain ...

Exchange - use all domain controller servers

We have an environment with 3 domain controllers (let’s call them DC1, DC2 and DC3). DC1 and DC2 are Windows 2008r2, DC3 is a Windows 2016. Lately I realized that my Exchange 2010 doesn’t work when I ...

Moved DC Server and all FSMO Roles, Demoted old DC, but now it can't connect

I moved the DC FSMO roles to a new DC (2012 R2) server, seemed like everything was fine, then I demoted the old one as I was having issues. Then once it was demoted, I can no longer connect to the AD ...

How to share a folder on windows server 2008?

I have a Windows Server 2008 on my virtual machine. I created a domain controller and want to share one folder with one user. If I try to connect to the folder, I should enter the Username, Password ...

problems with printing out from a program that are on networkdrive

we have a issue with 4 of our computers can not print out from our program that are on a network drive an is giving us a definition invalid exception \\SINDALSQL\app\Resources\rdls\tntexpresslabel....

Domain Controller was not recognized when trying demote another domain controller

When I try show the domain controllers with the command: nltest /dclist:domain.local I'm getting the following in the command prompt: DC1.domain.local [DS] Site: .... DC2.domain.local ...

Start (spare) stand alone Windows 2012 R2 Essentials after long offline period

A stand alone windows 2012 R2 essentials server was used to control a technical installation. Essentials was used (afaik) because of license reasons. The server is its own domain controller (and is an ...

Can't join AD Domain, DCs DNS entries faulty

I have a AD-DC (Windows 2012 R2, 172.16.4.1/21), which manages a local domain. I've tried joining that domain with a client (Windows Server 2012 R2, 172.16.5.130), but get the following error message (...

Adding a physical secondary domain controller backup to our virtual engineering environment

Here's a fun one. I have a secondary domain controller that I have taken a backup of and converted to a virtual machine. I've added this to our cloud engineering environment (an exact mirror of the ...

Backup, Modify and Restore of Active Directory

Is there an easy way to do a backup, modify and restore of an active directory instance? More specifically, I'm looking to do a backup, then change all references of DC=foo,DC=com to DC=foo,DC=dev so ...

Server DNS Resolve issue

So I'm currently using VMware Pro 12 for the purpose of a lab environment. The problem I have now is that on my domain controller I can't ping my client, although the client is configured properly. ...

Putting a backup AD domain controller as a VM on a workstation

As a small shop (~10 PCs), we have only one physical server machine. This physical server machine runs the following two virtual machines: one AD domain controller and one "production server" (file ...

Is it possible to change the NetBIOS Uppercase and Lowercase letters?

During the domain setup process we accidentally put the NetNIOS as OURCOMPANY. the management requested us to make it as OurCompany instead. is that possible or we need to reinstall everything again!...

Recover from accidental Sysprep on only AD DC

Being total "genius" on newly deployed environment I ran: sysprep /oobe /generalize /mode:vm /shutdown on the wrong VM during creation of a new AD environment. To make matters worse it was run on ...

LmCompatibilityLevel to be applied to client, domain controller or both?

I'd like to apply LmCompatibilityLevel = 5 to my domain but I am not sure if this is to be applied to all clients (via GPO), domain controllers only or to both. I am a little confused as the TechNet ...

Creating transportable servers (Windows Server 2008 R2)

Question: What would be the best way to achieve the desired situation? RODC's? Current situation: We have two domain controllers both with OS in RAID1 and DATA in RAID5. We also have two extra HP ...

Samba4 - Active Directory Domain Controller: migrate to a lower version of Samba4?

I have Samba 4.5.1 running as an Active Directory Domain Controller. To date I have been manually compiling the latest version of Samba to keep getting the latest AD features, however it appears ...

Tips on setting up AD Infrastructure for two disjoint networks for a classroom environment

I'm doing a class which involves security\malware testing and therefore want to isolate my labs to their own network with no routing to the main site. I want to be able to set policies, create users, ...

Is it possible to use AWS Microsoft AD as one DC in a multi-master setup?

Have an on-premise network with two AD servers already. Want to add one more AD server to the AWS cloud. Instead of setting up a Windows VM running AD, I'm wondering if I can use AWS Microsoft AD ...

MS DNS permissions on zones script add/remove/query

Anyone know an easy way to modify security across many zones? For example I have a hundred or so reverse pointer zones and I want to make sure a group has certain permission level on all zones. Is ...

In-bound traffic dropped to domain controller after RDP connection attempt on Azure

Using Azure IaaS (via ARM) I have a configuration which has some non-domain authenticated RDP gateways. These devices are used as a stepping stone onto the virtual network, which then allows onward ...

Can a workstation be added to a domain without granting local administrator rights?

The question is specifically about whether a domain admin can be restricted by local system security policy. We've been asked by a client if our closed systems (Windows 10 Pro) can be added to their ...

Giving permissions to Virtual Service Accounts on domain controllers

The service I'm implementing will run on a domain controller, so I'd like it to have minimal privileges. Ideally, it would simply run as Local Service. However, it needs to be able to: monitor ...

Both Domain Controllers believe that they are the PDC and FSMO owners

We have 2 DC's in the environment, 1 VM in Hyper-V and 1 Physical Server for redundancy and backup fail over. Last week the (C:) OS HDD in the Physical Server just died and the Server crashed. The ...

Domain users cannot change password if domain name is written before username

we have multiple sites every site has RODC and Headoffice has two RWDC 2008 r2 and 2012 std . clients are win 7 and win 10 . domain users cannot change their domain password error the security ...

Active Directory Security Identifier

What is meant by an "Identifier Authority" in the SID in Active Directory? In an object's SID in my domain controller denotes 5 which is an NT-Authority. So what actually meant by the Identifier ...

Samba AD: Bind9 won't load DLZ library anymore

I currently got a Problem with the Bind9 Backend on my Samba Domain Controller. Bind refuses to open the library Samba provides. But i can't figure out how to resolv this issu. Here is the SysLog: ...

If we add a domain or forest functionality in the main DC then will it be replicated to the secondary DC as well?

I added a recycle bin functionality in my primary domain controller, after that i tried to add that functionality on another domain controller connected to it. But an error shows that "the specified ...

How does Windows decide which IP address to use with AD DC communication?

I have a weird problem. I am working on setting up "Sites and Subnets" properly, so that my AD clients connect to proper DC (instead of one on opposite side of the globe). To do this, I started ...

Which Ports need to be accessible on a Domain Controller for Clients to logon? continued

With reference to one of the questions asked "Which Ports need to be accessible on a Domain Controller for Clients to logon?" I have a aligned issue being faced. Please see the following ports which ...

No internet connection on Synology DSM and no connection between diskstations (using active directory)

I have connected our new Synology Diskstation to our active directory according to the FAQ/tutorial. It gets connected and seems to work fine. I can ping the machine in the network and I can see the ...

Domain computers read policies from different domain controllers

While performing gpresult /r from command line I have noticed that the computer domain labs read policies from 2 domain controllers . The computer configuration is being read from the DC1 which is a ...

Unable to ping domain name without FQDN

The domain name consists of numbers only, example 300010100. If I try pinging the name only without FQDN, it responds back with a very odd IP address, 0.154.29.62 and giving transmit failed errors. If ...

How does Windows behave when its DC is unavailable?

I'm in the middle of upgrading a small business domain and my favoured option is switching to Azure AD and removing the on-premise DC. However, I'm concerned that if connectivity drops (ISP ...

Can you create a DC replication partner with different versions of Windows Server?

We currently have three servers, two running 2008 r2 and one running 2012. These servers currently run separate Domains. I would like to operate a single domain across a VPN. Is it possible to have ...

Server 2012 R2 DC promotion fails with NTDS Replication

I am in process of trying to promote a Member server as a DC in a remote site. there is a firewall between the sites that has all the correct rules in place according to How to configure a firewall ...
Translating... 0%