All Questions
Tagged with windows-server-2012-r2 active-directory
566
questions
0
votes
0
answers
9
views
server 2012Rd backup domain controller not communicating with PDC
I have client with a server with four vm's One is primary dc and another backup dc. There was an error generated with windows time service. The recommendation was to add/ change the logon to ...
- 1
0
votes
1
answer
45
views
Cannot remove alternate computername after in-place upgrade from 2008 R2 to 2012 R2
We have some servers that were upgraded in-place from 2008 R2 to 2012 R2. While they were running 2008 R2 alternate computer names were added to them with netdom computername <computer> /add:<...
1
vote
1
answer
46
views
Windows Group Policy Management - Session host limit group policy doesn't work as expected
I have created a group policy to end the sessions which are disconnected automatically & the settings of RDP session timeouts are located in the following GPO section Computer Configuration -> ...
- 11
1
vote
1
answer
157
views
Promoting a domain controller fails prerequisites
I'm replacing my domain controller with another domain controller with more efficient hardware and migrate from Server 2012 R2 to Windows Server 2019.
The first step I joined the new server to the ...
- 11
0
votes
1
answer
192
views
Changing name/ip of Domain Controller/DNS/DHCP Server after migrating from 2012 to 2019
We are prepping a migration of our AD server (DNS/DHCP/Print/Azure AD Connect) from 2012 to 2019. I can't find a definitive answer on changing a DC's ip/computer name post-migration.
Prep:
spun up ...
- 3
0
votes
0
answers
308
views
New DC - AD Domain Services did not perform an authenticated remote procedure call (RPC) to another directory server because the desired (SPN) f
I recently added a Windows Serevr 2019 DC to my domain which already has three DCs across two sites.
The three existing DCs are Server 2012 R2 and the Domain and Forest levels are 2008 R2.
The new DC ...
- 1
0
votes
0
answers
429
views
Active Directory LDAP logon failure
I'm at the end of my wits with this issue and I'm hoping some genius here can assist. Background: We have a client (a hospital) with 3 sites in AD and two DCs at each site. These DCs are 2012 and we'...
0
votes
1
answer
302
views
The WSMan Provider host process did not return a proper response >> trying to move AD from one server to another
I am currently in the process of moving an domain controller from one Server > Windows Server 2012R2 to Windows Server 2022.
I am currently working my way through the Active Directory Domain ...
0
votes
0
answers
28
views
AD reverse DNS zone sharing between subdomains
We have Active Directory infrastructure with one domain and several subdomains. Each subdomain has its dedicated subnets. All DNS servers on DCs have appropriate reverse zones, integrated in Active ...
0
votes
1
answer
535
views
Could not establish WMI connection access is denied
I set up a lab to test domain joining multiple computers with a script from Microsoft.
After I ran the script it came back with could not establish a WMI connection with the computer with the ...
- 1
1
vote
1
answer
106
views
Why is Windows Restarting my Service which I've Manually Stopped?
We have three servers - Windows 2012 R2 - in Azure, running a variety of our own custom developed services. These services are configured to start automatically, so naturally, on startup or after a ...
- 139
0
votes
0
answers
277
views
Domain workstations randomly get "desktop is not accessible. you might not have permission to use this network resource"
In our local network, based on a Microsoft Active Directory Domain, running two servers and multiple Windows 10 clients(from a broad range of of producers/models), users are noticing an increase of ...
- 253
0
votes
0
answers
49
views
On some servers, my users have to use <username>@<domainname> to login and on other servers they have to use the domainname\username ormat
On some servers, my users have to use username@domainname to login and on other servers they have to use the domainname\username format. All the servers are in the same domain, and running Windows ...
- 103
1
vote
1
answer
161
views
Openvpn ldap configuration
I have installed openvpn and i have configured LDAP with microsoft active direcoty. Eevrything is OK.
But now, I want to setup encrypted connection to this Active Directory server.
When I turn on TLS ...
- 25
0
votes
0
answers
69
views
Member servers pull Group Policy from only 1 (of 2) domain controllers?
Environment overview: AWS
DC1 = Win2k12 instance in region1 - AZ1
DC2 = Win2k12 instance in region1 - AZ2
~ 60 Member servers = all within region1
Replication set up between the two DCs for GPO, DNS, ...
-1
votes
1
answer
864
views
Migrate WinServer 2012R2 to 2022 + Exch 2013 to 19
Friends, I have an environment with Windows Server 2012 R2 + MS Exchange 2013. I need to migrate 2012R2 to 2022 and migrate Exchange 2013 to 2019. Is it possible to migrate 2012R2 to 2022 and then ...
- 1
1
vote
1
answer
519
views
Transferring PDCEmulator FSMO role from Windows Server 2012R2 to 2022
I'm upgrading my AD by adding new Windows Server 2022 Domain Controllers and will be demoting the existing Server 2012R2 DCs once the new servers are up and I see that things seem to be working ...
- 117
2
votes
1
answer
2k
views
Domain Upgrade from 2012R2 to 2019 Exchange Compatibility
According to Microsoft, Exchange 2013 (highest CU) isn't compatible with a domain controller level of 2019. At least if I'm reading this matrix correctly:
https://docs.microsoft.com/en-us/Exchange/...
- 319
0
votes
1
answer
428
views
Migrating Old Active directory Forest with two domains
We have single AD forest with two domains as follows:
Domain A:
Contains nearly 30 servers (7 physicals and 23 VMs) all hosted on Microsoft Hyper-V server
Nearly 500 Active user accounts
A huge file ...
0
votes
1
answer
1k
views
Fine Grained Password Policy Not Taking Effect - have to wait for next password change?
I have set a Fine Grained Password Policy with maximum password age of 180 days along with other settings that are similar to existing password policies.
I set the precedence number to a lower number ...
- 325
0
votes
0
answers
196
views
Why is member server not able to find domain controler on its site, showing events 2084 and 2085 in event viewer?
This is raised at a point where I need to uninstall Exchange 2010 from a member server after migrating to a newer server. Uninstall fails with error "Could not find any available Global Catalog ...
- 163
4
votes
2
answers
3k
views
Upgrading Windows Server + Domain Controller to Windows Server 2019 - Fails On "ADPrep.exe"
I'm am using the instructions here to upgrade my Windows Server 2012 AD Controller to Windows Server 2019. This server is a isolated AD controller that has no other server/clients connected to it in ...
- 215
1
vote
1
answer
1k
views
Is it OK to rename server name after configuring the domain controller in it?
I have Windows Server 2012 R2 and there is domain controller inside of it. Now I need to rename the server name, is it OK rename it directly ?
0
votes
1
answer
61
views
How to add users and computers back to server 2012
I have windows 2012 server which I had to nuke due to virus issue, which has active directory setup with users and computers. Now I have installed fresh windows server and setup ad & dc with same ...
- 1
-1
votes
1
answer
2k
views
Directory-Service-SAM Error
In the Windows System event log, there are errors from Directory-Services-SAM. It is saying "The request for a new account-identifier pool failed. The operation will be retried until the request ...
1
vote
1
answer
3k
views
Windows DHCP not showing the accurate leases
In Windows System Event log, there are DHCP server warnings that IP address range of a scope (10.40.0.0) that available is low.
Windows Event Log
But in the DHCP program, the Address Leases is only ...
0
votes
1
answer
4k
views
Parent domain vs Child domain
As far as I know,
a child domain's fully-qualified domain name (FQDN) must be a subdomain of the parent domain's FQDN.
Also an implicit trust (two way - transitive) is established between them.
Are ...
- 15
0
votes
1
answer
276
views
Can I add a child domain to an existing child domain?
Under a root domain i have 2 child domains. What I want to do is to create a child domain using an existing child domain as its parent domain, but it's currently giving me credential errors. Do I need ...
0
votes
1
answer
1k
views
Using AD server as NTP server for non-windows hosts (rhel hosts). ntpstat continues to state unsynchronized but ntpdate works. Is this possible?
We currently have an AD server that we are using as a time source.
Our AD server is setup to host time locally and the windows domain clients sync up to this machine fine. We have the firewall ...
- 210
0
votes
0
answers
218
views
Can I use AD CS to Authenticate Domain Users Instead of a Password?
I have a number of Active Directory Domain User Accounts, which function essentially as service accounts. I'd like to avoid having to rotate the passwords for all of those domain user accounts, and ...
0
votes
1
answer
185
views
Domain controller failover fails unidirectionaly
The problem I am having is that if I take one of my two writable domain controllers offline, nobody seems to "fail over" to using the other domain controller like they're supposed to - ...
- 341
1
vote
1
answer
101
views
Unable to rename the DN using trusted domain user credentials
I have two AD in which two-way trusts relationship(forest and transitive) exists. Trusted domain are trust1.com and trust2.com.
I created a AD-User(TEST1) in trust2.com using administrator ...
- 11
-1
votes
1
answer
188
views
let teachers reset passwords of students in Active Directory
I am at a school that runs ActiveDirectory (Windows Server 2012 actually) and our teachers want to be able to reset students passwords, they won't use the ticket system in case a student forgets their ...
- 1
-1
votes
1
answer
256
views
Windows AD OU Block (Read/List) Objects from other OU
I have a Root OU that has an OU called "Clients" and under I have multiple OU's and the client's PC's/User Accounts in sub-OU's.
The issue is, my clients can see other groups' user accounts/...
- 1
0
votes
1
answer
1k
views
PowerShell - Remove User/Group from Security Permissions
I have an AD group called "Admins" and it has specific members but under the Security Tab, how can I use Powershell to remove certain users/groups from the Security list and/or modify the ...
- 1
0
votes
1
answer
118
views
I cannot join machines to domains when primary DC fails, everything else works fine
So we have two domain controllers on our little network and they both have DHCP and DNS replication.
Active Directory was set up with replication betweens these two.
Information that is created on any ...
- 1
0
votes
1
answer
1k
views
How to find recently joined computers in ActiveDirectory through a PowerShell command?
How can I find recently joined computers in ActiveDirectory with a PowerShell command?
0
votes
0
answers
34
views
Join PCs that were on old Windows 2012 server to new server AND new domain without breaking SIDS and trust
Background: Had a small 4 PC office on Server 2012r2 with domain named OLD-DOMAIN. Server was old and wonky and had to restore from full system image backup that was recent (as in a few days old).
...
- 61
0
votes
1
answer
1k
views
Windows AD CA Code Signing Cert Request for Wrong User
I am having an odd problem with a Code Signing certificate request from my Windows 10 workstation. We have a Windows Server 2012R2 CA setup with the Code Signing template and everything works fine if ...
- 444
1
vote
1
answer
4k
views
Demoted domain controller still in Domain Controllers OU and AD Sites & Services
I did all of the below while logged in as the domain administrator.
I had two AD sites, each with it's own domain controller. The "backup" domain controller was over a site-to-site VPN, all ...
- 123
0
votes
1
answer
67
views
2x Windows Server for 2 labs in different parts of a building - what kind of failover to use
I have two servers and two labs in different parts of the building with Hyper-V 2019 with VMs for Windows Server Standard (2012 R2, will be upgrading in a few years). I want to:
configure ServerA for ...
1
vote
0
answers
33
views
Is this ok, if computers form domain B cannot access (trusted) domain controller A?
We have a situation where we have (simplifying a bit) domain controllers for domain A on one subnet and domain controllers for domain B on another subnet. Most of the VMs joined to domain B is also on ...
- 526
0
votes
0
answers
514
views
Deploy a PowerShell Script through a GPO
I have created a PowerShell Script that creates a VPN profile and applied it to a computer through a computer based GPO using a Security filtering.
Through Gpresult on the target computer I can see ...
- 53
1
vote
0
answers
48
views
Is it possible to create a child domain and migrate workstations to it in Windows 2012 AD?
I have a client that was initially setup as domain.com in Windows 2012 AD. For whatever reason they are migrating to a hosted Exchange server (instead of O365, which would be the better choice IMHO). ...
- 11
-2
votes
1
answer
468
views
Widows 10 Active directory user profile desktop not responding after restart and login in outside domain network
Windows Server 2012 R2 active directory profile has been configured in windows 10 pro-64-bit laptop and was working fine early days and recently noticed when we restarted the laptop in outside domain ...
1
vote
3
answers
3k
views
Does Default Domain Policy always win? Different password policies in production domain
All the time I thought the Default Domain Policy overwrites other policies as it is the most important. I also known that having 2 Password GPO is not correct. The way to have different policies is to ...
- 63
2
votes
1
answer
648
views
Adding a UPN, when I log in using that UPN it doesn't use the same profile
I added a UPN to our AD Domain and to test I logged in using the new UPN as my user. Unfortunately, this for some reason used a new profile and I lost all of the bookmarks, cookies, settings, etc that ...
- 1,449
0
votes
0
answers
29
views
I cannot reliably access the shared domain directory on my Server 2012R2 domain controllers
I have two Virtual Domain Controllers, each one hosted on a separate physical server, in my domain. A few weeks ago, everything seemed to be all well. Recently, however, I have noticed that when I try ...
- 341
1
vote
1
answer
36
views
Info about Event logs (Active directory)
Recently 3 of my Active directory admins are unable to login to AD server through RDP.
After we cross checked everything, we found these 3 users are added in one security group called "Deny RDP ...
- 11
0
votes
1
answer
373
views
Authorize an user to use a permission-required software downloaded in program file(x86)
There are several permission-required software downloaded in program file(x86) in my company. Every time users need to use them, I have to go to their computers and type the password of administrator ...
- 1