New Active Directory Documents for IT Pros
Browse by Tags - Active Directory Documentation Team - Site Home - TechNet Blogs
Active Directory Documentation Team
Information for IT Professionals who work with Active Directory. All blog posts are provided "AS IS" with no warranties, and confer no rights.
"Active Directory" "Active Directory Domain Services"
"Active Directory" "Read-only domain controller" RODC "Branch Office"
"Active Directory" PowerShell
Active Directory Certificate Services (AD CS)
Active Directory Domain Services
Active Directory errors
Active Directory Maximum Limits
Active Directory Maximums
Active Directory PowerShell
Active Directory troubleshooting
Active Directory User Assistance
AD DS scalability
applicaiton access management
can't join domain
Create Active Directory Site
cross site scripting
DC Locator DNS Records
Djoin.exe Provisioning "Domain Join" "Active Directory"
event id 26
find missing AD DS subnets
Forefront Identity Manager
Group Policy Preferences
limits of Active Directory
public key infrastructure
Service Principal Name
Windows Server 2008
Windows Server 2008 R2
Windows Server 2012
Browse by Tags
Active Directory Documentation Team
Tagged Content List
Windows Azure AD Windows PowerShell vanity URL created
Kurt L Hudson MSFT
I have created this URL for Windows Azure AD cmdlets http://aka.ms/aadposh Some people might be searching for them under the name: AAD PowerShell or WAAD PowerShell , but those are not official titles or names. Other URLs created: Windows Azure Active Directory Community Information Center http...
21 Mar 2013
Using PowerShell to clear or remove all AIA and CDP entries in Active Directory Certificate Services for Windows Server 2012
You may have already seen that you can deploy most Windows Server 2012 role services with Windows PowerShell. If you are interested in Active Directory Certificate Services (AD CS), you've probably noticed the PowerShell commands for deploying all six available CA roles: AD CS Deployment Cmdlets in Windows...
9 May 2012
Deploying Active Directory Certificate Services (AD CS) PKI two-tier hierarchy
When I was first learning about Active Directory Certificate Services (AD CS), a colleague told me that I should search on Step-by-Step Guide with AD CS. He was right, that was a good place to get started. Starting with Windows Server 2008 R2, the Test Lab Guide concept was introduced. So, if you want...
30 Mar 2012
Updates just posted to Active Directory Certificate Services (AD CS) documentation
A few updates were just posted, so I am putting out an FYI post. I should do this more often, so I will! Anyways, here goes: 1. Slowly, but surely, the AD CS documentation is being consolidated into a single download center page: Active Directory Certificate Services (AD CS) http://go.microsoft.com/fwlink...
3 Aug 2011
Finding the RIDs in your domain video
Here is a video I shot a while back that demonstrates how to use ADSI Edit to find the number of RIDs remaining in your domain. However, you can do this more quickly by running the following command: dcdiag /test:ridmanager /v | find /i "available RID" How to find the RIDs left in your domain...
12 Jul 2011
Forest schema version 47: Windows Server 2008 R2 Adprep /forestprep
When you run adprep /forestprep, you are updating the Active Directory schema forest version. Several people have asked, what is the forest schema version for Windows Server 2008 R2. To learn more about adprep and forestprep and schema versions, read Running Adprep.exe ( http://technet.microsoft.com...
7 Jul 2011
A delegation for this DNS server cannot be created because the authoritative parent zone cannot be found or it does not run Windows DNS server.
A common warning message for anyone who has installed Active Directory on Windows Server 2008 or Windows 2008 R2, especially on the first domain controller in a forest or domain is: A delegation for this DNS server cannot be created because the authoritative parent zone cannot be found or it does not...
7 Jul 2011
Important Security Update that affects sample pages in AD CS
An important security update, described in MS11-051 ( http://go.microsoft.com/fwlink/?LinkId=217101 ) was released today. The update fixes a cross-site scripting vulnerability in the sample web enrollment ASP pages that are part of Active Directory Certificate Services Web Enrollment in Windows Server...
14 Jun 2011
PKI Design "Brief Overview"
I am really trying to make this TechNet Wiki article PKI Design Brief Overview a place from which we can answer the basic questions regarding PKI design and then point off to the more detailed information. http://social.technet.microsoft.com/wiki/contents/articles/pki-design-brief-overview.aspx Feel...
5 May 2011
Troubleshooting Certificate Autoenrollment field notes posted on TechNet Wiki
If you have trouble with Certificate Autoenrollment or have ever had issues troubleshooting certificate autoenrollment in Active Directory Certificate Services (AD CS), take a look at the notes compiled by Roger Grimes and turned into a TechNet Wiki article: Troubleshooting Certificate Autoenrollment...
29 Apr 2011
Active Directory Troubleshooting
We are developing an Active Directory troubleshooting guide on the TechNet Wiki. Been working on it since February, so it is ready for some feedback and feel free to help us out with comments, feedback, and so on. del.icio.us Tags: Active Directory troubleshooting , AD DS , AD troubleshooting , troubleshooting...
28 Apr 2011
Updates made to Certificates How To. based on your feedback
I just went through and updated 16 or more resources that were posted online a while ago regarding Windows Server 2003. Seems there was not enough context with the information that was appearing in TechNet regarding the Certificates Console (certmgr.msc). I also realized that the information would be...
28 Apr 2011
How do I install Active Directory Certificate Services (AD CS)?
Be sure that you've planned your PKI . Then, see Offline Root CA . del.icio.us Tags: Active Directory Certificate Services , AD CS design , installing AD CS , PKI design , CA hierarchy , installing Active Directory Certificate Services (AD CS)
28 Apr 2011
Why do people use offline root certification authorities?
To get the answer to that and other questions, like "How do I patch an offline root CA?" see the new TechNet Wiki article Offline Root Certification Authority (CA). del.icio.us Tags: certification authority , CA , AD CS , Active Directory Certificate Services , PKI Design , offline root CA , CA hierarchy...
28 Apr 2011
DSForum: Event ID 5719 source Netlogon
Justin Hall MSFT
The DS forum posts, Netlogon error 5719 and Event 5719 Netlogon Problem , have been consolidated into the following TechNet Wiki article: Event ID 5719 source Netlogon (dsforum2wiki) Please look the article over and let us know what you think. You can edit the Wiki article directly or...
15 Mar 2011
A new test lab guide (TLG) about securing DC communication was just published.
Test Lab Guide - Deploy Windows Firewall with Advanced Security to Protect Network Communication to a Domain Controller Description: This Test Lab Guide contains an introduction to Windows Firewall with Advanced Security (WFAS) and step-by-step instructions for extending the Base Configuration test lab...
25 Feb 2011
Parent Child Differencing Disks in Hyper-V
I searched and I could not find a step-by-step process that described how to setup a Parent Child configuration using Differencing disks in Hyper-V. I was first taught about this trick in the Connectix / Virtual PC days. The VMWare parlance is linked clones, I believe. Anyways, I started a TechNet Wiki...
16 Sep 2010
Registering and Troubleshooting Service Principal Names (SPNs)
Last night I published an article titled Service Principal Names (SPNs) on the TechNet Wiki. Actually, I've been working on it on and off this entire week. This is something I was asked to do a while ago by Customer Support Services (CSS). The goal of the article is help administrators resolve issues...
16 Apr 2010
Other places to find good information
I want to take the opportunity to thank the people who are out there providing information everyday to people using Active Directory. As I say thank you, I will link to their sites, so our readers can find them easily: ActiveDir.org Ask DS (Active Directory Customer Support Services blog) del.icio.us...
9 Apr 2010
How many RIDs are left in your domain?
del.icio.us Tags: RID , SID , Active Directory , maximum number of accounts Are you in danger of running out of relative identifiers (RIDs) in your domain? If you have not heard of this before, you should see Active Directory Maximum Limits - Scalability and read the section Maximum Number of Security...
8 Apr 2009
TechMentor Conference Orlando 2009 (June 22-26)
Kurt Hudson from the Active Directory documentation team will be presenting the session Best Practices for Virtual Domain Controllers at TechMentor in Orlando . See the conference ad video . LiveJournal Tags: conference , Active Directory Domain Services , Hyper-V , virtual directory services , best...
16 Mar 2009
Producing a list of multivalued linked attributes
Active Directory objects can have several different types of attributes. The two basic types are single valued and multivalued. The most frequently asked question regarding attributes that I have seen is that regarding the member attribute because it comes into play when discussing the maximum number...
24 Feb 2009
Launching Tools Using Alternate Credentials from a Command Prompt Window One of the easiest ways to launch tools using alternate credentials is to first launch a Command Prompt with the credentials you want to use. Once the Command Prompt is launched using the alternate credentials, all subsequent...
20 Feb 2009
Introducing Active Directory Administrative Center
Active Directory Administrative Center provides network administrators with an enhanced Active Directory data management experience and a rich graphical user interface (GUI). Administrators can use Active Directory Administrative Center to perform common Active Directory object management tasks (such...
30 Jan 2009
Introducing AD DS Best Practices Analyzer
Active Directory Domain Services (AD DS) Best Practices Analyzer (BPA) is a server management tool that can help you implement best practices in the configuration of your Active Directory environment. AD DS BPA scans the AD DS server role as it is installed on your Windows Server 2008 R2 domain controllers...
30 Jan 2009
Page 1 of 2 (26 items)
© 2013 Microsoft Corporation.
Privacy & Cookies