Newest 'domain-controller' Questions

Q&A for system and network administrators

Extending my network in Azure - Client authentication

Please advise me with extending my network in Azure Company that I am working for has one domain with DC on premises but we have some external employees (in India) that we would like to have under a ...

Can't join AD Domain, DCs DNS entries faulty

I have a AD-DC (Windows 2012 R2, 172.16.4.1/21), which manages a local domain. I've tried joining that domain with a client (Windows Server 2012 R2, 172.16.5.130), but get the following error message (...

Tips on setting up AD Infrastructure for two disjoint networks for a classroom environment

I'm doing a class which involves security\malware testing and therefore want to isolate my labs to their own network with no routing to the main site. I want to be able to set policies, create users, ...

Is it possible to create a folder inside the group policy objects folders in Active Directory Domain Controller

By default all active directory GPOs are created inside Group Policy Objects folder in the group policy management. I was wondering if there was a way to make sub folders inside of group policy ...

Cannot Join to AD DC via samba

I'm trying to join my CentOS 7,64 bit server to an AD DC and I'm using the following command: # net ads join -U <username> -S <target server> Enter <username's> password: But after ...

Newly created users cannot log into Windows

The manager can't log onto their account any more. We aren't doing anything fancy. They just need to log into windows. When trying to log into windows, it gives the following error: "there are ...

User GPO not showing in gpresult

I have a GPO that maps a drive for users. I have tested it and it works for a newly created test user. Settings are: User Configurations > Pref > Windows Settings > Drive Maps : SETTINGS The issue: ...

Windows DC replacement options 2000 to 2016

I didn't create this environment/mess - just trying to "fix" it. Currently only DC in network is a 2000 server. Just purchased two 2016 servers, getting ready to install/config. I know I can't join ...

How to prevent Users in Domain installing and removing software?

I am using ADDS in my Company, using Windows server 2012 r2. Like the tittle, how to prevent instaling, removing any software for my users in their computer? I want to protect company's computers. ...

Domain computers read policies from different domain controllers

While performing gpresult /r from command line I have noticed that the computer domain labs read policies from 2 domain controllers . The computer configuration is being read from the DC1 which is a ...

Windows Server 2012 Performance Counter Data Error

I am trying to get a W2012 R2 AD server up and running on my company's local network. I configured it as a local server for file sharing and domain controller where users could log on to their ...

DC Stuck in Promotion Limbo

I have a Windows Server 2012 R2 Standard box that I was trying to set as a second domain controller, but ran into some problem and now it's stuck in promotion limbo. I cannot promote it because I get ...

Domain Controller not working till i make a ipconfig /renew

I have a strange problem that i can't undrestand why it is happening, the problem is my Domain Controller doesn't response and i can't access the host by local domain for example: nagios.amd.local ...

How to resolve LDAP bind errors “The server is not operational” and “The directory service is unavailable”

We've an application that uses LDAP for authentication. The application is deployed on four MiddleWare servers in a load balanced configuration using F5. Though there are 8 domain controllers in the ...

Putting a backup AD domain controller as a VM on a workstation

As a small shop (~10 PCs), we have only one physical server machine. This physical server machine runs the following two virtual machines: one AD domain controller and one "production server" (file ...

Cannot sign into domain - The User Profile Service failed the logon

I recently added an Active Directory Domain Controller to our network on Windows Server 2012. The domain name is software.eng.apl. I can join a Windows 10 computer to the software.eng.apl domain by ...

How to allow an user to modify any system settings in Domain with Windows Server 2012?

I created a domain with windows server 2012. I logged in with an user account. And with default, this account cant access to Remote Desktop setting, LAN setting, ... and any system settings. I don'...

MS DNS permissions on zones script add/remove/query

Anyone know an easy way to modify security across many zones? For example I have a hundred or so reverse pointer zones and I want to make sure a group has certain permission level on all zones. Is ...

Primary Domain Controller Doesn't Work after adding DC

I have added two 2012 R2 DCs (Server B and C) to an existing domain with one 2008 R2 DC (Server A). After that I transfered all master roles from A to B and checked it (netdom query fsmo) replication ...

How does Windows decide which IP address to use with AD DC communication?

I have a weird problem. I am working on setting up "Sites and Subnets" properly, so that my AD clients connect to proper DC (instead of one on opposite side of the globe). To do this, I started ...

Samba AD: Bind9 won't load DLZ library anymore

I currently got a Problem with the Bind9 Backend on my Samba Domain Controller. Bind refuses to open the library Samba provides. But i can't figure out how to resolv this issu. Here is the SysLog: ...

Which Ports need to be accessible on a Domain Controller for Clients to logon? continued

With reference to one of the questions asked "Which Ports need to be accessible on a Domain Controller for Clients to logon?" I have a aligned issue being faced. Please see the following ports which ...

Windows 2008 AD DC across two subnets

I have two private subnets 10.9.1.0/24 10.9.137.0/24 The 10.9.1.0/24 was there at first and I created an Active Directory Domain Controller using MS Windows 2008R2 with the IP 10.9.1.10. The router ...

BlackList and WhiteList with windows server 2012r2 in Domain?

I'm trying to create Blacklist and Whitelist which dissallow or allow users in my domain installing certain softwares, programs. I just create a GPO in Company A OU, didn't modify anything. When I ...

Active Directory Domain Controller not contacted OpenLDAP Windows Server

I am trying to understand why some of our Windows servers are not joining the Domain we have. We are using OpenLDAP (+Samba) configured on a Ubuntu 16.04 server. We have approximately 30 servers and ...

How to kick users from Windows Server 2012 R2

I need to migrate some databases from one server to another to decommission the first one. This server is sharing a network share and a database. Prior to migration and to ensure data integrity, I ...

exchange 2010 server will not connect to new domain controller

Our environment has 3 servers. One running server 2008 standard. One running 2008 R2 hosting exchange 2010 and a new 2016 standard. Our old 2008 standard which was the DC and GC has become ...

Recover from accidental Sysprep on only AD DC

Being total "genius" on newly deployed environment I ran: sysprep /oobe /generalize /mode:vm /shutdown on the wrong VM during creation of a new AD environment. To make matters worse it was run on ...

Samba4 - Active Directory Domain Controller: migrate to a lower version of Samba4?

I have Samba 4.5.1 running as an Active Directory Domain Controller. To date I have been manually compiling the latest version of Samba to keep getting the latest AD features, however it appears ...

No internet connection on Synology DSM and no connection between diskstations (using active directory)

I have connected our new Synology Diskstation to our active directory according to the FAQ/tutorial. It gets connected and seems to work fine. I can ping the machine in the network and I can see the ...

Moving computer to new domain with same users

We currently have an Active Directory setup which was synced to our Azure AD. We are trying to migrate that to use Azure AD Directory Services which provide the domain controllers in the cloud. I did ...

Windows server authentication login based on specific Active directory groups

I have an Active directory Domain services (AD DS) running inside a Virtual Network, and i have a windows VM which is domain joined using domain admin account. Now, I have a new AD group for a ...

Backup, Modify and Restore of Active Directory

Is there an easy way to do a backup, modify and restore of an active directory instance? More specifically, I'm looking to do a backup, then change all references of DC=foo,DC=com to DC=foo,DC=dev so ...

There is no Domain Controller in Add/Remove role

Recently i faced a very strange problem with my Active directory (Windows server 2003) and i asked a question here but nobody could help: Domain Controller not working till i make a ipconfig /renew ...

Virtualization, DC,Exchange and RDS Advise

We currently have two servers which we are looking to upgrade, one is Small business server, runs exchange and hosts all our files, and the second server is a remote desktop services machine which ...

How to share a folder on windows server 2008?

I have a Windows Server 2008 on my virtual machine. I created a domain controller and want to share one folder with one user. If I try to connect to the folder, I should enter the Username, Password ...

How to assign user is a local admin of corresponding computer through GPO?

I'm trying to assign user is a local admin of corresponding computer through GPO. My case is I have 3 computers: A, B, C. And 3 users : a, b, c. I need assign a, b, c is local admin of corresponding ...

In-bound traffic dropped to domain controller after RDP connection attempt on Azure

Using Azure IaaS (via ARM) I have a configuration which has some non-domain authenticated RDP gateways. These devices are used as a stepping stone onto the virtual network, which then allows onward ...

Domain controller not able to join client to domain

This is my environment: DC1 (PDC) - IP: 192.168.1.11/24 DC2 - IP 192.168.1.12/24 DC3 - IP 192.168.2.10/24 Subnet 192.168.1.x/24 is connected to subnet 192.168.2.x/24, and domain controllers are ...

AD Domain Controller for the domain could not be contacted

So I have been trying to bind my desktop (Windows 10) to my virtual server (Server 2016 Datacenter hosted in ESXi 6.0) that is currently running DNS, AD, and file storage (this is a new install about ...

Best Way to transfer Domain Clients to Domain Contollers

What would be the best way to rejoin my machines to the AD02 and AD01. Background: Previously we have 3 domain controllers(AD01,AD02,AD03), running in redundancy all machines are connected to the ...

Win Server 2012 - Backup Domain Controller Failure

Recently our PDC, which was windows server 2003, failed. The backup dc was possibly not setup correctly before this failure happened. The backup dc, which is now our PDC is not functioning correctly ...

Is it possible to change the NetBIOS Uppercase and Lowercase letters?

During the domain setup process we accidentally put the NetNIOS as OURCOMPANY. the management requested us to make it as OurCompany instead. is that possible or we need to reinstall everything again!...

Error recovering Local SID

What is fine : LDAP is alright, and can be accessed with phpLdapadmin without problem. LDAP hybris95home.local contains "dn=admin,dc=hybris95home,dc=local" value. What is wrong: Using net ...

Adding a physical secondary domain controller backup to our virtual engineering environment

Here's a fun one. I have a secondary domain controller that I have taken a backup of and converted to a virtual machine. I've added this to our cloud engineering environment (an exact mirror of the ...

authenticate external DC with two way trust using local DC, using asp.net ActiveDirectoryMembershipProvider

I am trying to authenticate users from two DCs ( there are a two way trust between them) by using one DC connection. Details our local DC is 2way trusted with external DC, all our applications are ...

Error installing SQL Server 2016: “The specified user does not exist”

It's been a whole saturday since I'm trying to install SQL Server 2016 without success. My procedure has been the following (I always start by uninstalling all sql server instances before trying ...

Are Windows 2016 DNS Policies / Split DNS possible on AD integrated zones with older DCs?

Windows Server 2016 supports DNS Policies, which provide support for split-brain DNS among other scenarios: You can configure DNS policies to specify how a DNS server responds to DNS queries. DNS ...

Samba Active Directory: restricting domain user access to specfic linux servers

Environment: Samba 4.5.1 active directory domain controller CentOS 7 Linux servers that are members of the domain We use the Microsoft Active Directory Users and Computers (MADUC) snap-in to ...

LmCompatibilityLevel to be applied to client, domain controller or both?

I'd like to apply LmCompatibilityLevel = 5 to my domain but I am not sure if this is to be applied to all clients (via GPO), domain controllers only or to both. I am a little confused as the TechNet ...
Translating... 0%