Active Directory
A set of directory-based technologies included in Windows Server.
5,975 questions
1 answer
Entra Connect cloudsync (entra ID -> AD sync)
Dear, I am trying to do cloud syncronization from Entra ID to Active Directory via entra website. However this is not working. In the opposite direction it does (AD -> entra ID). Does anyone have any idea how I can solve this? I can press the…
asked 2024-05-21T16:26:52.3566667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(208, 81%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EU%3C/text%3E%3C/svg%3E)
User
0
Reputation points
answered 2024-05-22T02:43:42.4033333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(291.2, 38%, 38%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMP%3C/text%3E%3C/svg%3E)
Marcin Policht
13,175
Reputation points MVP
1 answer
"BitLocker Recovery" tab disappeared from Server 2019 ADUC
We've got a pair of 2019 DCs. Until this week, we were able to see BitLocker recovery keys for our assets in ADUC. That tab is just gone now. It's not a GPO issue. Our Group Policy doesn't even allow endpoints to encrypt until after the recovery key has…
asked 2024-05-21T20:46:23.2766667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(137.6, 68%, 23%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELJ%3C/text%3E%3C/svg%3E)
Logan Jones
0
Reputation points
edited an answer 2024-05-22T02:17:22.98+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(313.6, 55.00000000000001%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EHL%3C/text%3E%3C/svg%3E)
Hania Lian
8,541
Reputation points Microsoft Vendor
1 answer
I am getting error, When I am trying to update the GPO by executing gpupdate /force.
Hi Experts, I have applied the GPO to disable windows auto update and Trying to update the GPO. But I am getting below error while I am trying to update the GPO. "Windows failed to applied the {F312195E-sD90-447A-A3F5-08DFFA24735E) settings .…
asked 2024-05-21T06:21:54.51+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 62%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJA%3C/text%3E%3C/svg%3E)
Jimmy Afflick
20
Reputation points
commented 2024-05-21T21:06:19.8433333+00:00
Jimmy Afflick
20
Reputation points
1 answer
One of the answers was accepted by the question author.
AzureAD group membership
Hi All In our hybrid environment, all users are initially created on-premises and then synced to Azure AD. I've created five security groups within Azure AD. Specifically, I've granted ownership of these five AD groups to a user, let's call them user1.…
asked 2024-05-10T05:37:17.0433333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 7.000000000000001%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EGM%3C/text%3E%3C/svg%3E)
Glenn Maxwell
10,186
Reputation points
accepted 2024-05-21T19:54:57.64+00:00
Glenn Maxwell
10,186
Reputation points
5 answers
One of the answers was accepted by the question author.
Unable to join Windows Server 2022 to domain using Microsoft Entra domain services
I am trying to join my Windows Server 2022 to my domain using Microsoft Entra domain services. However, I am unable to find the correct DNS server addresses to join my device to the domain. I have searched online extensively but have not found any useful…
2 answers
One of the answers was accepted by the question author.
Can you virtualize all domain controllers in your organization?
Can you have all of your domain controllers in your environment virtualized. Once upon a time I recall it was recommended at least 1 DC be physical, is that still the case or has Azure changed how that works?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(262.40000000000003, 74%, 35%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EH%3C/text%3E%3C/svg%3E)
1 answer
We have plan to move on-premise AD to Entra ID, how to move the windows file server to Entra ID?
We have a plan to move on-premise AD to Entra ID. The target is: Remove all local AD DC servers, move devices/users to Intune/Entra ID, all users have M365 now. Move on-premies fileservers to the cloud Join Windows servers (on AWS) to Entra ID The…
asked 2024-05-20T20:14:24.8533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(121.6, 45%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPH%3C/text%3E%3C/svg%3E)
Peter Huang
0
Reputation points
commented 2024-05-21T16:09:44.7733333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(57.599999999999994, 51%, 15%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDV%3C/text%3E%3C/svg%3E)
Damon Villar
60
Reputation points
1 answer
One of the answers was accepted by the question author.
Query on Group policy
Hi All, I want to capture Scheduled Task Event logs, i.e., when a scheduled task is created, updated, modified, or deleted. Can I achieve this using the below GPO? Computer Configuration --> Policies --> Windows Settings --> Security Settings…
asked 2024-05-21T13:14:03.46+00:00
Glenn Maxwell
10,186
Reputation points
accepted 2024-05-21T15:29:09.8833333+00:00
Glenn Maxwell
10,186
Reputation points
1 answer
Couldn't access member attribute of "Domain Computers" even if full control is present
The member attribute data cannot be fetched using the administrator credential for the group "Domain Computers/Users". The credential has full control access to this group. Any specific access needs to be provided to get the members of this…
asked 2024-05-21T12:54:48.98+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 75%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EES%3C/text%3E%3C/svg%3E)
Esakki Selvaraj
0
Reputation points
answered 2024-05-21T13:59:43.83+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 62%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDZ%3C/text%3E%3C/svg%3E)
Daisy Zhou
19,031
Reputation points Microsoft Vendor
0 answers
Problems with MS Teams logging in from browser (but works on mobile)
During login to MS Teams a user in our AD gets the following unspecific error: When we examined the Dev console we saw that error, that might be relevant - "Unrecognized Content-Security-Policy directive 'prefetch-src'" and "AuthZ Token…
Microsoft Teams
Microsoft Teams
A Microsoft customizable chat-based workspace.
9,224 questions
Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,975 questions
asked 2024-05-21T10:50:28.86+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(224.00000000000003, 66%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAK%3C/text%3E%3C/svg%3E)
Alexander Kyumurkov
0
Reputation points
asked 2024-05-21T10:50:28.86+00:00
Alexander Kyumurkov
0
Reputation points
0 answers
Azure Single Sign On with SAML - IDX10214: Audience validation failed issue
Hello, I have a sample application that is trying to facilitate single sign on using SAML and I am able to authenticate the user, but when I am getting the SAML response back from Azure, I am facing the below error: IDX10214: Audience validation failed.…
asked 2024-05-15T21:47:31.7533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(80, 47%, 17%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECK%3C/text%3E%3C/svg%3E)
CHIRAG KALIA
0
Reputation points
commented 2024-05-21T09:32:04.2833333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 26%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EN%3C/text%3E%3C/svg%3E)
Navya
4,470
Reputation points Microsoft Vendor
1 answer
enable domain user group to enable the network adaptor
Dear team, I am looking for an option available to enable domain users (non-admin) to make changes to the network adaptor e.g enable/disable or change IP Domain users be default cannot make changes to the network adaptor unless they use elevated…
asked 2024-05-13T11:43:30.26+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(51.2, 76%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ECM%3C/text%3E%3C/svg%3E)
Census Mathebula
0
Reputation points
commented 2024-05-21T09:09:53.65+00:00
Daisy Zhou
19,031
Reputation points Microsoft Vendor
1 answer
When attempting to modify files within the Netlogon folder in Active Directory, I've encountered instances where files are use and cannot be change
Dear Experts, I'm seeking assistance with aspects of Active Directory (AD) management and troubleshooting. Specifically, I am encountering a error that the files are in use and cannot be change in the Netlogon folder. When attempting to modify files…
asked 2024-05-13T04:19:37.46+00:00
Dipto Adhikary
20
Reputation points
commented 2024-05-21T09:09:13.5633333+00:00
Daisy Zhou
19,031
Reputation points Microsoft Vendor
2 answers
How to sync my AD and setup mailboxes for migration
Hello, Our company has Business Standard license but an on prem exchange server. We want to migrate to exchange online and eliminate our on prem server. We were using the old AD sync tool but that no longer works. What is the best way for me to sync my…
asked 2024-05-13T15:51:47.4466667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(160, 99%, 25%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EML%3C/text%3E%3C/svg%3E)
Marcus Lund (mlund@crowdergulf.com)
0
Reputation points
commented 2024-05-21T07:19:10.3133333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(44.800000000000004, 43%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBJ%3C/text%3E%3C/svg%3E)
Bruce Jing-MSFT
1,075
Reputation points Microsoft Vendor
1 answer
LSA Auditing
Hi All I have the following requirement to enable (Enforce LSA Auditing) through GPO on all my servers. I have an OU with a couple of test VMs, and I have created a GPO and enabled the two policies below: Computer Configuration > Administrative…
asked 2024-05-20T19:43:17.6+00:00
Glenn Maxwell
10,186
Reputation points
answered 2024-05-21T06:00:23.88+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 92%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYL%3C/text%3E%3C/svg%3E)
Yanhong Liu
2,950
Reputation points Microsoft Vendor
1 answer
On Premise Server Using Azure AD?
Hi, I've recently purchased a server running 2022. My plan with this is to run VM's for RDS users. We currently run an Azure only estate where we have Azure AD running all our computers & email logins etc. I need help understanding how I can use…
asked 2024-05-14T11:16:43.18+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(275.2, 59%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJP%3C/text%3E%3C/svg%3E)
Joshua Porter
0
Reputation points
commented 2024-05-21T05:18:21.5966667+00:00
Navya
4,470
Reputation points Microsoft Vendor
2 answers
One of the answers was accepted by the question author.
gpresult /r report shows user as a domain admin when he is not
I was troubleshooting a GPO for a windows user when i stubble into something weird. The gpresults /r show he is a member of Domain Admins, Enterprise Admins and Schema Admins. I have check AD for those groups and he is not a member of any listed above.…
asked 2024-05-17T21:57:44.9533333+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(278.4, 78%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EOG%3C/text%3E%3C/svg%3E)
Orlando Guerra
20
Reputation points
accepted 2024-05-20T21:58:29.2733333+00:00
Orlando Guerra
20
Reputation points
0 answers
Enable Logging
Hi All I have a requirement to enable PowerShell/WinRM/WMI logging on my servers. I will enable this through the GPOs listed below. The requirement is that I need to generate event IDs or logs to show management that I have configured the GPO properly.…
asked 2024-05-20T19:38:43.1033333+00:00
Glenn Maxwell
10,186
Reputation points
asked 2024-05-20T19:38:43.1033333+00:00
Glenn Maxwell
10,186
Reputation points
1 answer
How to test SCIM User provisioning for non gallery applications on client credentials authorization mode?
I am doing SCIM User Provisioning. For that I have developed SCIM APIs which supports client credentials authorization mode as well as long lived token in the form of API Key. When I was testing Azure AD SCIM Provisioning, I can see Azure supports long…
asked 2024-05-16T05:29:55.5166667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(86.4, 41%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESA%3C/text%3E%3C/svg%3E)
SHIVANK AGARWAL
20
Reputation points
edited an answer 2024-05-20T17:52:28.92+00:00
Danny Zollner
9,531
Reputation points Microsoft Employee
1 answer
Can we control non-interactive sign-in logs in Azure AD
Hi folks, I have a quick question; can we control non-interactive sign-ins in Azure AD i.e. can we stop interactive/ non- interactive sign-ins for any account. Thanks in advance!
asked 2024-05-08T14:17:23.6766667+00:00
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(0, 7.000000000000001%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAP%3C/text%3E%3C/svg%3E)
Apurva Pathak
315
Reputation points
commented 2024-05-20T14:36:35.6433333+00:00
Apurva Pathak
315
Reputation points