Tag Archive: Windows Domains

Oct 03 2017

Migrating from FRS to DFSR

You’ve migrated your domain to the latest version, but did you really? I’m asking this question because I’ve seen a lot of Active Directory environments migrated but not at 100%. Before making my point here, let me start with a little refresher for those that forgot about SYSVOL.

Continue reading »

Sep 27 2016

Creating Active Directory Forest Trusts

Most companies nowadays have, or they prepare having multiple Active Directory forests in their environment, and as you know, forests are a completely different entity compared to an additional domain or tree. One forest does not trust another one, and can’t share information with another forest, unless a trust is created between the two. Usually …

Continue reading »

Sep 07 2016

How to reset forgotten Active Directory Domain Administrator password

It happens. Not so often, but it happens when you just can’t remember your domain/enterprise administrator password anymore. This is a big deal since you are the Active Directory God. Just imagine not being able to log in to your domain controllers for a day and you get my point. And since everything nowadays is …

Continue reading »

May 21 2015

How to transfer or seize Flexible Single Master Operations (FSMO) roles

As you probably know, when you promote the first domain controller in a forest, is granted five Operations Master or Flexible Single Master Operations (FSMO) roles, pronounced “fizz-moe”. Two of the roles are forest wide and the rest of them are domain specific, meaning if you have multiple domains, every domain will get the three domain specific …

Continue reading »

Feb 18 2015

Restoring failed Active Directory Domain Controllers

Just when you think everything is going well, disaster happens, and one or more of your domain controllers gets offline. This can happen due to a hard disk crash, a bad network card, file system corruption or corruption of the Active Directory database. Even if you have good backups somewhere on the shelf that’s only …

Continue reading »

Sep 17 2014

Configuring Hyper-V Replica using Certificate-Based Authentication (HTTPS)

You know that starting with Windows Server 2012 Hyper-V has a new feature that replicates VMs from one host to another for a disaster recovery scenario! I talked about it in this article; but configuring replication that way over non-trusted networks

Continue reading »

Sep 02 2014

Enabling the Active Directory Recycle Bin in Server 2012/R2

I don’t wanna be wrong here, but I think that one of the most common Active Directory disasters that administrators face is the accidentally deleted object(s). Even if you put a strong security in place, there comes a time when you need to delegate permissions and with that accidents happen.

Continue reading »

Aug 06 2014

Set Up Automatic Certificate Enrollment (Autoenroll)

Managing certificates usually does not need to much intervention. Issuing and enrolling for certificates, again is a piece-of-cake… in a small environment. But if you are running more than let’s say 50 workstations and servers enrolling for certificates is a week job, if not more.

Continue reading »

Jul 25 2014

Changing the Directory Services Restore Mode (DSRM) Admin Password

We all know how important passwords are especially those for domain administrators accounts, because those accounts have rights to log in to domain controllers. If the password of one of those accounts is compromised, access to your domain controllers is granted. You know what could happen next.

Continue reading »

Oct 27 2013

Installing and configuring a Microsoft Online Certificate Status Protocol (OCSP) Responder

Starting with Windows 2008 Microsoft has an Online Certification Status Protocol (OCSP) Responder feature. Many of you wonder what this is, and I’m going to explain this the best I can. Until OCSP came out, those companies that have their own Certification Authority had to publish to a web server or a LDAP path the …

Continue reading »

Older posts «

css.php