Questions tagged [active-directory]

A Microsoft technology that constitutes an LDAP directory service with centralized management functionality for user accounts, computer accounts, groups, and configuration management across many Windows servers and desktops.

Active Directory is a directory service created by Microsoft for managing Windows environments.

It is used for:

A centralized Authentication/Authorization source for Kerberos and NTLM protocols.
Providing a single authentication/authorization domain for member servers and workstations.
Providing LDAP services.
Providing centralized configuration methods of Windows workstations and servers through Group Policy and other methods.
Multi-site replication of directory-database data.

Non-Windows support is generally provided through the Samba package on POSIX operating systems (Linux, macOS, BSD, Solaris, etc). All modern Samba releases allow machines to join a domain as if they were a Windows machine.

For a list of ports which must be open in a firewall for AD to work properly, see http://serverfault.com/questions/304484/what-firewall-ports-need-to-be-open-for-active-directory.

Some useful links are below

10115 questions

votes

1 answer

Creating a new AD LDS instance without the Setup Wizard?

Is the installation of a new unique instance of AD LDS (using either cmd or PowerShell) possible? All resources I can find online just use the Active Directory Lightweight Directory Services Setup Wizard. PowerShell has the Active Directory Module…

asked Nov 29 '18 at 15:18

Josh Withee

votes

1 answer

How do I put a computer into an Active Directory machine group?

How do I put a computer into an Active Directory machine group? I have server INTRANET1 and it needs to be in the intranet.gpo.mg machine group. ** EDIT ** So, I used the dsa.msc tool to search for my computer name. I right-clicked on the computer,…

active-directory

asked May 18 '09 at 13:38

Jim

1,555
7
25
30

votes

1 answer

Error when installing remote access role: There may be a version mismatch between this computer and the destination server

I am getting an error when I attempt to select the Remote Access role on a Windows 2016 Server. I have been unable to find this error mentioned anywhere. I am installing the role on the local server, so I don't understand the error.

active-directory windows-server-2016

asked Nov 21 '18 at 15:13

Steven Deam

votes

1 answer

Why should the IP address of a Domain Controller map to the site it serves?

I have questions related to this specific event: Index : 865 EntryType : Warning InstanceId : 5802 Message : None of the IP addresses (192.168.254.17) of this Domain Controller map to the configured site…

active-directory domain-controller

asked Nov 12 '18 at 02:51

Anderson Medeiros Gomes

2,477
9
20

votes

1 answer

Active Directory shortcut failing to create

Background: I am making a GPO with desktop shortcuts for users. The GPO has a few links to websites like our help desk that it places. It also has a shortcut to a network location for a file share. The Issue: The shortcuts that go to URLs apply…

active-directory group-policy shortcut

asked Nov 09 '18 at 18:44

hairydresden

votes

3 answers

Windows: How to tell where policies listed in auditpol are coming from?

I'll preface this with: I am a Linux admin. Windows to me is like me driving a UK car -- mostly operates the same but the steering wheel, buttons, and levers are in the wrong place and labels are spelled funny. I have a server that is a domain…

active-directory group-policy windows-server-2016

asked Nov 02 '18 at 15:27

JDS

2,598
4
30
49

votes

2 answers

How can I view the mapping between GPOs and registry settings?

As far as I know, GPOs function as a high-level view of registry settings, i.e., setting a GPO directly corresponds to setting some registry keys and/or values. I would like to know exactly what registry settings a certain GPO changes. Is there some…

windows active-directory

asked Oct 31 '18 at 08:31

Shuzheng

votes

0 answers

Is there any way to get an AD bound linux system to mount home directories from a Windows server?

We've been experimenting with integrating linux systems into what is largely a Windows domain, with a Windows-based Active Directory server. After considerable trial and error, we have successfully configured sssd (on RHEL, CentOS, and Ubuntu) to…

linux active-directory kerberos sssd automount

asked Oct 30 '18 at 21:13

pgoetz

votes

3 answers

AD users in Snow Leopard with admin privileges

I've just authenticated my first Apple machine onto the active directory infrastructure. Yay! The only thing I'm having problems with is specifying that the AD user is an administrator, and able to make changes. I don't see any interface for that.…

active-directory mac-osx osx-snow-leopard apple

asked Dec 11 '09 at 16:02

Matt Simmons

20,396
10
68
116

votes

1 answer

All DCs fail VerifyEnterpriseReferences and DNS RReg Test - Everything else works including replication to a brand new DC

So, we recently added a new DC to our domain (Win 2008 R2 Enterprise) with the idea to replace our Win 2008 R2 Standard DC with a second Enterprise one - which will give us the 2 DCs on 2008 R2 Enterprise. While adding this DC we also ended up…

windows-server-2008 active-directory domain-controller file-replication-services

asked Sep 26 '18 at 17:01

Sam K

votes

3 answers

Enable ssh for CentOS system bound to Active Directory?

I have a CentOS 5.4 system successfully bound to Active Directory. "net ads testjoin" says it's OK. I can run "id username" for AD users and see their accounts. However, I cannot log in remotely via SSH. /var/log/secure says the password is…

active-directory centos rhel5

asked Dec 10 '09 at 22:11

royco

votes

2 answers

Windows AD DNS is automatically adding PTR records for CNAMEs and I want this to stop

Preface: I am not a Windows admin. I am a Linux admin. I have a Windows 2016 server with AD DNS that handles internal DNS forward and reverse lookups. Somewhere, somehow, some process is automatically adding PTR reverse lookup records for CNAMEs.…

active-directory windows-server-2012-r2 cname-record reverse-dns ptr-record

asked Aug 31 '18 at 15:03

JDS

2,598
4
30
49

votes

2 answers

Domain Controller time is 7 minutes fast

I have a Server 2008 R2 domain controller running in VM on Hyper-V that is 7 minutes fast which I need to fix. I understand that this maybe down to the DC running in VM's. What I would like to know is how I can correct it? I believe I can setup…

active-directory domain-controller time ntp time-synchronization

asked Dec 09 '09 at 15:22

stead1984

votes

2 answers

Can I "allow logon locally" for ALL local accounts and some domain accounts?

I have used a "Allow logon locally" GPO on a few machines to restrict who can use them. It is annoying that I have to create/link a separate GPO for each set of machines/users (Where is item-level targeting when you need it?), but now I'm running…

windows active-directory group-policy login user-permissions

asked Jul 25 '18 at 20:12

Teknowledgist

votes

1 answer

Is it a bad idea to make roaming profile share available offline?

This is regarding a Windows 2008 R2 domain. The Documents, Desktop, Application Data folders are all redirected to users' home directory (mapped as Z:). The users home directory is configured to be offline for mobile users. User profiles are…

windows active-directory roaming-profile folder-redirection offline-files

asked Dec 08 '09 at 10:28

Bryan

7,628
15
69
94

Prev 1 2 3

…

100