Active Directory // Posts tagged as "Active Directory"
Restoring Users and Groups from a Server 2008 R2 Recycle Bin
Server 2008 R2 brings the Recycle Bin feature for Active Directory. You can think of it as the recycle bin in Windows you move your documents and spreadsheets in – just for Active Directory. With the recycle bin enabled (note: you’ll need Server 2008 R2 forest functional level enabled) objects deleted from a partition aren’t...
The “Return deactivated links” control in LDAP
I’ve blogged about the Recycle Bin feature in Server 2008 R2 and was wondering how group membership of users was stored, when groups were deleted (or vice versa). In general, forward- and backlinks are stripped of an object once it becomes a tombstone (gets deleted without the recycle bin feature). In Server 2008 R2, this...
How to check whether changes to an NC have replicated to a DC
You made changes (accidentally or not) to a NC on a DC and want to check whether these changes have replicated to a specific DC? One possible solution here is repadmin /showrepl: repadmin /showchanges. For me, it becomes: repadmin /showchanges dc3 0471c1d5-9e2c-47c8-847a-f002a1d023ce DC=intern,DC=frickelsoft,DC=net. I want to check whether changes made to intern.frickelsoft.net on dc1 (whose...
How to Build an AD Replication Delay (Lag) Site
To prevent having to restore objects from Active Directory due to accidentally deleting an object, you can have a remote DC which only sends/receives replication on a limited basis. You also want to prevent users from authenticating against, as well as services being used by other machines, since the metadata on this DC is aging...
How to Extend the Active Directory schema in Windows Server 2008
Before extending your Active Directory, make sure to have considered the possible implications of doing so, for example if something does go wrong during the procedure then you’ll want to have a backup in place for your Active Directory Schema. SCCM needs the Active Directory schema to be extended, so to do so we’ll need...
How to Create the System Management Container in Active Directory
Using Adsiedit, Create a container in AD, CN=System called System Management by right clicking on CN=System and choose New Object, scroll down to container from the list. Click “Next”, give it a value of System Management. In Active Directory Users and Computers expand the System container, and right click click on System Management. Choose “Delegate...
Account Operators Group and AD Computer Accounts
Account Operators is a default groups located in the Builtin container. Members of this group can create, modify, and delete accounts for users, groups, and computers located in the Users or Computers containers and organizational units in the domain, except the Domain Controllers organizational unit. Members of this group do not have permission to modify...
The DHCP Service could not contact Active Directory
.gif&w=566&h=133&zc=1)
When attempting to Authorize a DHCP Server in your Domain you receive the error message: The DHCP Service could not contact Active Directory. This is a result of you not having permission to access the Active Directory Configuration Container. Check that you are logged on using a Domain Account and not a local account, or...
Object is Protected from Accidental Deletion
If you attempt to delete an Object from Active Directory on your Windows 2008 Server and you receive the message: You do not have sufficient privileges to delete “the object”, or this object is protected from accidental deletion. The solution is to click the View Menu in Active Directory Users and Computers and then select...
Categories
Archives
Love your site, it's helped me out more than once.
Jordan
Recent Posts
-
Windows Commands
Ever wondered what that pesky Windows Command does? Or perhaps ...
-
Sdk Service has not yet initialized
When you attempt to load the Operators Console on SCOM ...
-
800706BA: The RPC Server is unavailable SCOM 2007
When you get this error trying to install a SCOM ...
-
The group can not be modified because there is no group population rule defined for this group
When you attempt to add clients to one of your ...
Copyright © 2010 Tim the Tech.com All rights reserved.