How to fix virtual machine connection unknown to On-Prem Active Directory on VM start?
I have an On-Prem Active Directory connected to my Azure subscription via VPN Gateway. All the Virtual Machines in Azure have successfully joined the Active Directory and work fine in terms of AD policy, rules, users, etc. The VMs in Azure are…
How to hide users in GAL
Hi! I am scratching my head on this after looking at several posts.. Issue: We have leavers which we disable, remove licenses, convert mailboxes to shared ones and so on. We also moved the users to a non-synchronized OU in AD. However, they still…
Start menu item not pinning
Hi, I am experiencing an issue with Windows 11 autopilot machines not pinning items to the Start menu. Despite checking all policies, only one seems to be applied for the Start menu item. Could this policy setting be blocking the Start menu, or could…
audit public folders
Hello Please i need your help on this issue. When trying to run audits, results are not showing. I would like to know how to audit public folders. Also i am not getting the desire results when i try to search for audit logs for compliance…
Windows 11 connecting to Active Directory via Cisco AnyConnect
I'm going to start with the question here and if I need to move this elsewhere, I can. We have just started deploying Windows 11. We have a couple of users that it is working well for, however, just this week two new computers were unable to access…
WHfB "I forgot my PIN" logon option not functional
Hey guys, Just deployed WHfB and have it working well. One thing I noticed is when a user clicks the I forgot my PIN link, nothing happens. Nothing happens after logon as well. Any idea what's going on with this? If it's presented to the end-user, I'd…
Roaming profile keeps disconnecting (losing desktop icons)
I have roaming profiles set up and I've been testing it before deploying. Something keeps causing my test profile to lose connection with the server and my desktop icons disappear until I log off and back on again. My taskbar icons also break and I am…
I want to configure LDAP over Active directory, over internet, but its not accessible
I reffered the provided Documvslientation Created Extra ID Created USer wit ADmin Group Created and configured Azure AD domain Service Enabled Secure LDAP with SSL self certificate. Allow port 636 for over inrternet access Port is also enabled but…
How to Prompt for Credentials while accessing Network Shared Folder in a Domain environment
I'm currently tasked with maintaining our internal file server in an SMB company. Our setup includes a Windows Server 2012 R2 machine serving as both a file server and a domain controller. We have around 40 computers joined to the domain, with some users…
Custom policy - Forgot Password flow not working in Terms of Use custom policy
We are making use of the sample custom policy given for SignUp-SignIn with terms of use. Terms of use & sign-in/sign-up works fine but the forgot password flow is not working anymore. The policy that we used -…
LAN Manager authentication level Default Value for Windows 10 and Windows 11 client Machines.
Hello, In my Active Directory Domain environment, I have Windows 10 and Windows 11 client machines. These machines do not have the "Network security: LAN Manager authentication level" configured. I want to understand the default value that my…
Fix Root AD CA certificate on Win Server 2022 for Apache Tomcat 9 website not loading?
We setup a Windows Active Directory Certificate Authority on our Windows Server 2022 and issued a certificate for an Apache Tomcat 9 server website. When a user accesses the website, logging in with a valid AD logon, the website will show the website…
Event id 4740 caller computer name blank
I have configured AD policy and alerts email for account lockout when event id 4740 is triggered. But many times we get blank called computer name in the alert doesnt even show IP address of the lockout source.
Client authentication to local domain controller
Dear All, Request you to help me to address below issue. We have 4 domain controller 2 in local (primary and secondary) and 2 in Far site (primary and secondary). However, most of systems are not authenticating login from local domain controller and i…
Windows Hello for Business Entra ID Sync Issue
SOLVED: See my answer below. Hi all, Interesting issue we're running into while trying to deploy Windows Hello for Business. I've noticed in our Azure AD Synchronization Service Manager, during export from Entra to on-prem DC, the…
Missing XboxLive.signin and XboxLive.offline_access scopes
Hello, I am trying to setup a registered app in Azure Active Directory for a web application to authenticate with using OIDC. However, the two scopes I am looking for, XboxLive.signin and XboxLive.offline_access, seem to be missing? Whenever I do request…
CA Web enrollment(certsrv) behind VIP , load balancer
Hello Team, Is it a good recommendataion to move the CA WEB Enrollment role behind VIP , load balancer? I am getting an error while using the CA WEB Enrollement behind VIP , I am unable to request a certificate using…
Unable to install service account (gMSA) after Provisioning Agent installation.
Hello, After installing AADConnectProvisioningAgentSetup.exe I am unable to finish the configuration. gMSA is created in our AD but it still says it fails; Error while creating group managed service account (gMSA). Error: Unable to install service…
Raise DFL and FFL level from 2008R2 to 2016
Hello Everyone, I have been working on an AD Modernization Project. Currently, in the environment, the Domain and Forest Functional levels are in 2008R2. I would like to raise the DFL and FFL level to Windows Server 2016. Since this is an irreversible…
Exchange server 2016, How to fix Users of newly created mailboxes cannot log in ?
I have two Exchange Server 2016 on-premises that are configured with DAG, and replication is working fine. However, recently, I’ve been unable to log in when I create a new mailbox. Every user who had a mailbox before is functional. Users of newly…