Problem on our AD: deactivation of Roaming Profiles
We have a problem on our AD: the deactivation of Roaming Profiles These are the roaming profiles that we activated via a GPO: • Some users, the GPO has no effect, my roaming profile was not created at all • Some users have their roaming profile created,…
How to apply GPO Domain controller: Allow computer account re-use during domain join
Hello, I experienced an issue during domain join using SCCM OSD, if the machine exist and try to rejoin with the same name with other service account it fails with error unable to rejoin due security policy, i have searched for the issue i found that i…
Can I install RSAT for Windows 11 with the same "KB2693643" used for RSAT for Windows 10
The users in our environment are not local admins and therefore, can't access optional features to download and install RSAT components. Can I download and install RSAT using the same KB provided for Windows 10, on Windows 11 devices? Are there other…
cannot log in after computer name change setting up active directory server 2022
I recently installed server 2022 and configured AD DS in the domain "GP" on two computers named CPCS-Server-01 and Server-02. I finished adding Server-02 as a second DC. When looking at the two, I wanted the server names to match so I changed…
Problems with MS Teams logging in from browser (but works on mobile)
During login to MS Teams a user in our AD gets the following unspecific error: When we examined the Dev console we saw that error, that might be relevant - "Unrecognized Content-Security-Policy directive 'prefetch-src'" and "AuthZ Token…
GPO is not applying
Hi All i am applying the below GPO on an OU, this OU has Windows 2019/2016 Servers. My domain controllers are a mix of Windows 2019/2016. On the member server when i check RSOP i am seeing that the GPO is applied but when i check from gpedit.msc the gpo…
Unable to contact Active Directory to access or verify claim types
Hey Guys, In the AD domain environment. I want to update a user's "Special Permissions" for a folder on a server. The advanced permissions are however grey. I see the error at the bottom "Unable to contact Active Directory to access or…
Azure Active Directory Connect - First run, users synced from AD to Entra, but with different UPN. Example - AD = user@local.contoso.com. Entra = user@contoso.com. How do I fix this?
I'm running Azure Active Directory Connect for the first time to sync users from our local on prem AD to Entra ID. I limited it to a single OU and only members of a test group I created. This was just supposed to sync password hashes. I ran the sync and…
How to sync my AD and setup mailboxes for migration
Hello, Our company has Business Standard license but an on prem exchange server. We want to migrate to exchange online and eliminate our on prem server. We were using the old AD sync tool but that no longer works. What is the best way for me to sync my…
We encountered an 'invalid_grant' error connecting to the identity provider. Please try again later
Category : Azure AD B2C We have added federated login(Sign in with Google) to our application. Google IDP is working well for users having @gmail domain users but non gmail users , some of the users we are getting below error. "We encountered an…
The trust relationship between this workstation and the primary domain failed
Good day, I have some issue which is this error will appear when try to login the PC that has been joined the domain. The error was "The trust relationship between this workstation and the primary domain failed". I try several solution which is…
Windows defender (MsMpEng.exe is consuming high CPU)
Windows defender (MsMpEng.exe is consuming high CPU) I have added msmpeng.exe in defender exclusion list as well. disable all Scanning. Tried disable through registry change as well. Any other suggestion, please.
I enabled Web Socketing on my IIS and now old ASPX page get error 404, what can I do to fix that?
I was building a server side .NET application for my company. I enabled web socketing, which fixed my blazer webserver, however the old ASPX web file are no longer working. Any ideas on how I can fix this?
Frequent Account Lockout | Steps and validation for clearing stale password
Hi all, Due to stale passwords some of the domain users face frequent lockout. let me know the steps for clearing the stale password in Windows 10 and Windows 11. I know only a few areas for clearing the stale password. let me know the complete list of…
Using gMSA for Task scheduler and Service account scenario?
Based on: https://learn.microsoft.com/en-us/azure/active-directory/fundamentals/service-accounts-group-managed I'm trying to implement the gMSA for the following scenario: Task Scheduler account Service account (Failover Cluster, SQL Server, ADFS,…
Icone raccourci par GPO blanche windows 11
Bonjour, Dans notre infrastructure, nous avons des postes sous Windows 11 et Windows 10. Nous avons un serveur 2016 qui héberge le DC et donc les GPO. Nous avons différents raccourcis vers des pages web avec l'icône de l'application, l'icône est hébergée…
Directory server not available
Hello, I have two AD servers one 2016 and one 2022, I migrated the FSMO, DNS and DHSCP Roles from the 2016 to the 2022, the 2016 is now secondary controller. From the 2022 controller, when I go to user and computer Active directory and I right-click on…
Windows 11 domain users cannot change password "insufficient system resources exist to complete the requested service"
About 90% of our Windows 11 Pro Users are unable to change their domain passwords. They receive "insufficient system resources exist to complete the requested service" This is only effecting Windows 11 users, all Windows 10 users are…
Can i prevent a win10 client from mounting the home drive for AD users on logon?
Hi, i'm testing FSLogix to replace our roaming profiles. My users are AD users from another domain, and they have their home folder connected as H:\ to a network share in the AD user object. I cannot change that at the AD user level. When such a user…
File level authentication with MSAL via web browser
Legacy app currently using secure Basic Authentication to establish file level access permission. How is file level access permission established using MSAL?