New Active Directory Documents for IT Pros Browse by Tags - Active Directory Documentation Team - Site Home - TechNet Blogs

Active Directory Documentation Team

Information for IT Professionals who work with Active Directory. All blog posts are provided "AS IS" with no warranties, and confer no rights.

Browse by Tags

Related Posts
  • Blog Post: Active Directory Troubleshooting

    We are developing an Active Directory troubleshooting guide on the TechNet Wiki. Been working on it since February, so it is ready for some feedback and feel free to help us out with comments, feedback, and so on. del.icio.us Tags: Active Directory troubleshooting , AD DS , AD troubleshooting , troubleshooting...
  • Blog Post: Using PowerShell to clear or remove all AIA and CDP entries in Active Directory Certificate Services for Windows Server 2012

    You may have already seen that you can deploy most Windows Server 2012 role services with Windows PowerShell. If you are interested in Active Directory Certificate Services (AD CS), you've probably noticed the PowerShell commands for deploying all six available CA roles: AD CS Deployment Cmdlets in Windows...
  • Blog Post: Troubleshooting Certificate Autoenrollment field notes posted on TechNet Wiki

    If you have trouble with Certificate Autoenrollment or have ever had issues troubleshooting certificate autoenrollment in Active Directory Certificate Services (AD CS), take a look at the notes compiled by Roger Grimes and turned into a TechNet Wiki article: Troubleshooting Certificate Autoenrollment...
  • Blog Post: Windows Azure AD Windows PowerShell vanity URL created

    I have created this URL for Windows Azure AD cmdlets http://aka.ms/aadposh Some people might be searching for them under the name: AAD PowerShell or WAAD PowerShell , but those are not official titles or names. Other URLs created: Windows Azure Active Directory Community Information Center http...
  • Blog Post: Introducing Active Directory Recycle Bin

    Accidental deletion of Active Directory objects is a common occurrence for users of Active Directory Domain Services (AD DS) and Active Directory Lightweight Directory Services (AD LDS). In Windows Server 2008 Active Directory domains, you could recover accidentally deleted objects from backups of...
  • Blog Post: DSForum: Event ID 5719 source Netlogon

    The DS forum posts, Netlogon error 5719 and Event 5719 Netlogon Problem , have been consolidated into the following TechNet Wiki article: Event ID 5719 source Netlogon (dsforum2wiki) Please look the article over and let us know what you think. You can edit the Wiki article directly or...
  • Blog Post: Producing a list of multivalued linked attributes

    Active Directory objects can have several different types of attributes. The two basic types are single valued and multivalued. The most frequently asked question regarding attributes that I have seen is that regarding the member attribute because it comes into play when discussing the maximum number...
  • Blog Post: TechMentor Conference Orlando 2009 (June 22-26)

    Kurt Hudson from the Active Directory documentation team will be presenting the session Best Practices for Virtual Domain Controllers at TechMentor in Orlando . See the conference ad video . LiveJournal Tags: conference , Active Directory Domain Services , Hyper-V , virtual directory services , best...
  • Blog Post: Updates made to Certificates How To. based on your feedback

    I just went through and updated 16 or more resources that were posted online a while ago regarding Windows Server 2003. Seems there was not enough context with the information that was appearing in TechNet regarding the Certificates Console (certmgr.msc). I also realized that the information would be...
  • Blog Post: Finding the RIDs in your domain video

    Here is a video I shot a while back that demonstrates how to use ADSI Edit to find the number of RIDs remaining in your domain. However, you can do this more quickly by running the following command: dcdiag /test:ridmanager /v | find /i "available RID" How to find the RIDs left in your domain...
  • Blog Post: Deploying Active Directory Certificate Services (AD CS) PKI two-tier hierarchy

    When I was first learning about Active Directory Certificate Services (AD CS), a colleague told me that I should search on Step-by-Step Guide with AD CS. He was right, that was a good place to get started. Starting with Windows Server 2008 R2, the Test Lab Guide concept was introduced. So, if you want...
  • Blog Post: Introducing AD DS Best Practices Analyzer

    Active Directory Domain Services (AD DS) Best Practices Analyzer (BPA) is a server management tool that can help you implement best practices in the configuration of your Active Directory environment. AD DS BPA scans the AD DS server role as it is installed on your Windows Server 2008 R2 domain controllers...
  • Blog Post: Other places to find good information

    I want to take the opportunity to thank the people who are out there providing information everyday to people using Active Directory. As I say thank you, I will link to their sites, so our readers can find them easily: ActiveDir.org Ask DS (Active Directory Customer Support Services blog) del.icio.us...
  • Blog Post: PKI Design "Brief Overview"

    I am really trying to make this TechNet Wiki article PKI Design Brief Overview a place from which we can answer the basic questions regarding PKI design and then point off to the more detailed information. http://social.technet.microsoft.com/wiki/contents/articles/pki-design-brief-overview.aspx Feel...
  • Blog Post: Registering and Troubleshooting Service Principal Names (SPNs)

    Last night I published an article titled Service Principal Names (SPNs) on the TechNet Wiki. Actually, I've been working on it on and off this entire week. This is something I was asked to do a while ago by Customer Support Services (CSS). The goal of the article is help administrators resolve issues...
  • Blog Post: A delegation for this DNS server cannot be created because the authoritative parent zone cannot be found or it does not run Windows DNS server.

    A common warning message for anyone who has installed Active Directory on Windows Server 2008 or Windows 2008 R2, especially on the first domain controller in a forest or domain is: A delegation for this DNS server cannot be created because the authoritative parent zone cannot be found or it does not...
  • Blog Post: Alternate Credentials

    Launching Tools Using Alternate Credentials from a Command Prompt Window One of the easiest ways to launch tools using alternate credentials is to first launch a Command Prompt with the credentials you want to use. Once the Command Prompt is launched using the alternate credentials, all subsequent...
  • Blog Post: How many RIDs are left in your domain?

    del.icio.us Tags: RID , SID , Active Directory , maximum number of accounts Are you in danger of running out of relative identifiers (RIDs) in your domain? If you have not heard of this before, you should see Active Directory Maximum Limits - Scalability and read the section Maximum Number of Security...
  • Blog Post: Introducing Active Directory Administrative Center

    Active Directory Administrative Center provides network administrators with an enhanced Active Directory data management experience and a rich graphical user interface (GUI). Administrators can use Active Directory Administrative Center to perform common Active Directory object management tasks (such...
  • Blog Post: Why do people use offline root certification authorities?

    To get the answer to that and other questions, like "How do I patch an offline root CA?" see the new TechNet Wiki article Offline Root Certification Authority (CA). del.icio.us Tags: certification authority , CA , AD CS , Active Directory Certificate Services , PKI Design , offline root CA , CA hierarchy...
  • Blog Post: How do I install Active Directory Certificate Services (AD CS)?

    Be sure that you've planned your PKI . Then, see Offline Root CA . del.icio.us Tags: Active Directory Certificate Services , AD CS design , installing AD CS , PKI design , CA hierarchy , installing Active Directory Certificate Services (AD CS)
  • Blog Post: Updates just posted to Active Directory Certificate Services (AD CS) documentation

    A few updates were just posted, so I am putting out an FYI post. I should do this more often, so I will! Anyways, here goes: 1. Slowly, but surely, the AD CS documentation is being consolidated into a single download center page: Active Directory Certificate Services (AD CS) http://go.microsoft.com/fwlink...
  • Blog Post: Forest schema version 47: Windows Server 2008 R2 Adprep /forestprep

    When you run adprep /forestprep, you are updating the Active Directory schema forest version. Several people have asked, what is the forest schema version for Windows Server 2008 R2. To learn more about adprep and forestprep and schema versions, read Running Adprep.exe ( http://technet.microsoft.com...
  • Blog Post: Important Security Update that affects sample pages in AD CS

    An important security update, described in MS11-051 ( http://go.microsoft.com/fwlink/?LinkId=217101 ) was released today. The update fixes a cross-site scripting vulnerability in the sample web enrollment ASP pages that are part of Active Directory Certificate Services Web Enrollment in Windows Server...
  • Blog Post: Parent Child Differencing Disks in Hyper-V

    I searched and I could not find a step-by-step process that described how to setup a Parent Child configuration using Differencing disks in Hyper-V. I was first taught about this trick in the Connectix / Virtual PC days. The VMWare parlance is linked clones, I believe. Anyways, I started a TechNet Wiki...