One of the Domain Controller DNS entries pointing to wrong IP Address (resolving with the wrong IP address) which is affected Active Directory authentication and other services. This is a unique issue which I have come across It’s a single forest with multiple child domains as the architecture, when try to resolve one of the… Read More »
On active directory auditing we want to know who, when and where the Active Directory Attributes are changed, like who removed the group from an Active directory user account, who changed the account description or any other Active directory object attribute changes All Active directory object changes are stored in object Meta and can be… Read More »
Find Duplicate SPN: A Service Principal Name (SPN) is a concept from Kerberos. To find a particular service offered by a particular host within the domain. General Syntax of SPNs is service class/fqdn@REALM , There are also User Principal Names which identify users, in form of user@Domain Kerberos requires that the SPN be unique and there should be a single SPN configured… Read More »
How client computer/member server find the logon Domain Controller from Cress Fores in an Active Directory envirnment or How secure channel determine the Domain controller in cross-forest If you are worked on troubleshooting the authentication issues between forests, you might be used NLTEST tool to check the secure channel Domain controller, did you ever try… Read More »
Straightforward answer is NO, Any change done in the schema can’t be revert back by deletion or restore, however we can deactivate the change (like attribute), there is no supported way of restoring schema from the backup and you can’t do authoritative restore of schema partition, the only option is to do the forest recovery… Read More »
AD Slow Authentication and prompting for credentials again and again (Active directory Troubleshooting – Part 2) It’s a most common issue in a complicated Active Directory environment, before am going to discuss about the authentication issues, I would like to discuss about the Active Directory basics like Pass through authentication, AD secure channel, NTLM and… Read More »
How do I find what is accessing my LDAP Server and what LDAP query used and how many queries for a period of time? Troubleshooting Active Directory issues like authentication failures, performance issues and logon issues, we can use different methods to monitor the AD, I will discuss more about enabling diagnostics logging, adding related… Read More »
If you try to kill the process from task manager, it failed with Access Denied error, I have used schedule task to run the batch file (batch file uses the repadmin command) schedule task failed with could not start, because the repadmin command stuck in task manager I have used task manager to end the… Read More »
Active Directory 2012 features on Windows Server 2012 and R2: I am going to discuss about Windows Server 2012 Active Directory feature, as per my understanding newer version has not have many new features however Microsoft has improved the features of Active Directory 2008 in Active Directory 2012 List of improvement compare to the earlier… Read More »
