In a large enterprise an admin would need to keep track of all the domains in a AD forest, the domain names, the domain controllers (DC) , their IPs, and what FSMO roles does a DC hold. Wrote a little script to just do that…
Ran into a situation at a client location where in Active Directory, the security permissions applied to an OU were not getting inherited permissions on to the objects. Basically, security inheritance was broken.This causes a problem when the administrative accounts or groups needing to modify an attribute on the AD object throw errors, or are … Read moreFix Active Directory broken security inheritance problem
If you want to replicate all Domain Controllers, then you have to start replication on each of them separately. This may take a while. To save time there is an easier way to force replication on all Domain Controllers of all Active Directory Sites. Log on to one of your Domain Controllers. Start Windows PowerShell … Read moreForce Replication of all Domain Controllers on all Sites
Working on a security project and I needed a reference guide as to what cipher suites are supported on what OS. So I have documented a list of the default cipher suites and their preferred order for every Windows Server version. These were gathered from fully patched operating systems.
Since SCCM is our configuration management tool of choice, the SCCM client needs to get installed on all of our newly provisioned VMs. I created a service account that only has read permission to the \\sccmserver\sms_sitecode\client share on the SCCM server. The client is installed from this location to ensure that we are always using the latest … Read moreDeploying the SCCM Client with VMware Client Windows Guest Customization
So had an interesting issue today where a Domain Controller (DC) was demoted yet the IP of the demoted DC was still showing up when running nslookup internaldomain.local Demoted DC:Â MWDC04 / IP: 10.14.111.111 I had done the metadata cleanup and tried many suggestions when googling the subject. To my surprise none of the solutions I … Read moreNSLookup still showing IP of demoted Domain Controller
Ran into this issue with ConfigMgr 2012 R2 where it was unable to synchronize Software Update Point with the WSUS server. A review of the component status messages for the SMS_WSUS_SYNC_MANAGER component on the primary site server reveals errors related to WSUS synchronization which are similar to the following: Got the following error when trying … Read moreConfigMgr 2012 R2 – WSUS sync fails with HTTP 503 errors
As of June 8, 2017, it was announced that when when users try to sign up for Amazon Drive they will not be able to select an unlimited cloud storage option. Instead they can choose either 100 GB for $11.99 per year, or 1 TB for $59.99, with up to 30 TB available for an … Read moreGoing back to the basics….moving out of Amazon Drive!
Make sure you are using the latest version of PowerShell. On Windows 8/10 run it as administrator and type the following:
|
1 |
New-PSDrive –Name “Z†–PSProvider FileSystem –Root “\\fileserver01\share†–Persist |
Where: Z – is the Drive Letter Within ” ” is the path of the network share that will be presented as the root of the drive letter Z The -Persist parameter so … Read moreMap a network drive using PowerShell
Using the standard GUI Microsoft Management Consoles to make the change to speed up Active Directory replication is not possible. The best result of using administrator consoles will be to increase domain replication between domain controllers to 15 minutes. These large time values were instituted into Active Directory at version 1 because inter-site connections during that era of computing and networking were much lower in bandwidth with the most common being frame-relay or … Read moreSpeed up Active Directory & DNS replication between Sites