7,055 questions with Windows for business | Windows Client for IT Pros | Directory services | Active Directory tags
New Users email is different when syncing to Azure.
I added a new user in active directory and list ******@xyz.com in the general tab. A few minutes later, AD Connect Sync did it work but the user has a ******@xyz.onmicrosoft.com email address. I can't change it in Azure because it is synced with anβ¦
How to manage shorter certificate life time in Remote Desktop Services Connection Broker Publishing role
Hi I'm looking for a way to handle certificates in Remote Desktop Services when lifetime is getting shorter. There are many ways of renewing the certificates so that's not the issue. My concern is how to get the clients to open the RDP file receivedβ¦
Certificate auto-renewal
Hi, certificate auto-renewal period started a few days ago and still certificate has not been auto-renewed (log is clear without any errors/info/warnings). In the past, certificate was always auto-renewed on the very first day of auto-renewal period.β¦
Can We disable Lanmanserver service in order to avoid the Null sesssions in ONE Domain controller ?
Hi There, In the production environment, in order to avoid the potential attack using null session in servers, can we disable Lanmanserver services in one Domain Controller? As we can see the netlogon services rely on this services in one DC. β¦
TCP and UD ports required for communication between Domain Controllers and Windows clients
I need to open ports for the communication between DC and Windows Clients, what I understand from this article: https://learn.microsoft.com/en-us/troubleshoot/windows-server/identity/config-firewall-for-ad-domains-and-trusts I just need to open theseβ¦
GPO password minimum length limited to 14 characters
I've dug through threads where this question has been asked before but found no answers to this question. We have a Windows 2016 domain running with an extensive set of group policies. The domain controllers are running Windows Server 2016 Versionβ¦
How to set msExchMailboxGuid with Set-ADUser command
Hi all, I get users information (PrimarySMTPAddress,Alias,SamAccountName,FirstName,LastName,DisplayName,Name,ExchangeGuid,ArchiveGuid,LegacyExchangeDn,EmailAddresses) by Get-Mailbox command Then export them to XML file (Export-Clixml) or CSV fileβ¦
Is there a way to know when the users are added to a Security group?
I wanted to confirm if it's possible to retrieve user data, such as the date and time a user was added to a Security Group.
multi-factor authentication
Steps on how to set up windows hello to work together with ad for multi-factor authentication in the sense that the users with be prompted to enter passwords and windows hello(biometrics) in the same login session.
Export Groups and its members
How to export groups and its members information into .csv
Shared windows 11 domain desktop with multiple users, having log in issues.
Hello, We recently refreshed all our machines to windows 11. I have 2 desktops that are shared that 4 individual users log into each, ie PC 1 is on the domain and 4 users log into it. PC 2 is also on the domain and 4 different users log into it. PC1 isβ¦
Show all domain users on logon screen
hi there, i have three users, who share a PC. PC is in a local windows domain. all three users a domain users and already logged in on this PC successfully. PC has a local admin account. How can i show all three users on the bottom left list in theβ¦
Windows LAPS not rotating local admin passwords automatically
We recently migrated to the built-in Windows LAPS for Entra ID. The initial password generates and saves to the cloud perfectly. But the auto-rotation after 30 days just... isn't happening. I can manually force a rotation from the portal, but it refusesβ¦
How to perform the GPO testing after domain controller migration from win2012 R2 to 2022
How to perform the GPO testing after domain controller migration from win2012 R2 to 2022. Please advise the steps need to perform GPO health status and working fine after dc migration . Thanks.
ActiveDirectory - custom attribute addition
Hello Team, We would like to add custom attribute in AD and also those attributes hast to syn with entra ID using entra ID connect. the attribute willbe added in AD thenin the entra ID we have to add the attrbiute to sync to entra ID . do we need toβ¦
User constantly getting locked out
Hi All, I've got user where she constantly getting locked out, I believe to be it's related to Outlook. I did reimage her computer once but it didn't resolve the issue. Account is getting locked every 30 min. Need your suggestions.
How to use cmdlet BackupToAAD-BitLockerKeyProtector for standard users?
When I run the PowerShell script to backup Bitlocker keys to Azure Ad on machines with Bitlocker already enabled, I get this error: BackupToAAD-BitLockerKeyProtector : Exception from HRESULT: 0x801C0450 At line:1 char:1 +β¦
User account getting deleted from on prem AD when any change is made to their properties
I have a user account in on prem AD that gets deleted when any changes are made to the account preferences such as adding or removing group membership etc. It's also getting randomly deleted periodically. All other accounts are fine. It's repeatableβ¦
Can't join domain - name already exist.
When joining a domain I keep getting error message that "The join operation was not successful. This could be because an existing computer account have name was previously created using a different set of credentials. Use a different computer name,β¦
How to configure isolated domain controller with win 2022 os for legacy clients and applications
How can I configure an isolated domain controller with Windows Server 2022 DC for legacy clients (Windows 7, 2008 OS) and applications? I plan to activate older protocols, such as SMB version 1, NTLM versions 1 and 2, TLS versions 1.0 and 1.1, RC4, andβ¦