Chris Beams’s Blog

Active Directory and more….

Posts Tagged ‘Active Directory’

Active Directory Troubleshooting Survival Guide

Posted by chrisbeams on February 22, 2011

this looks interesting

“This page categorizes the Active Directory troubleshooting information that is spread all over the Internet, so you can get to resource you need to solve your specific issue.”

http://social.technet.microsoft.com/wiki/contents/articles/active-directory-troubleshooting-survival-guide.aspx

Advertisements

Posted in Active Directory | Tagged: | 1 Comment »

Active Directory to Active Directory synchronization. (Quick Connect Express for Active Directory)

Posted by chrisbeams on December 13, 2010

This looks pretty cool , its a free tool from Quest to sync AD to AD or AD to AD LDS

http://www.quest.com/activeroles-server/quickconnect-express-for-active-directory.aspx

I havent checked it out yet but looks good for UAT work etc.

Posted in Active Directory, Quest, Quick Connect Express | Tagged: , | Leave a Comment »

Windows Server Core Configurator V 2.0

Posted by chrisbeams on July 30, 2010

Just noticed this on Jorge’s blog and is something that i think helps ease the pain and concern around using Server Core. Basically its an enhanced version of the codeplex application for Windows 2008 R2 Server Core called Windows Server Core Configurator.

You can manage computer settings, control panel settings etc from a GUI on a Server Core which has no GUI 🙂

Posted in Active Directory, Windows 2008R2 | Tagged: , | Leave a Comment »

Exchange Schema – What gets changed?

Posted by chrisbeams on May 20, 2010

Nice document from MS

http://www.microsoft.com/downloads/details.aspx?familyid=3D44DE93-3F21-44D0-A0A1-35FF5DBABD0B&displaylang=en

Posted in Active Directory, Exchange, Exchange 2010 | Tagged: , , , | Leave a Comment »

AD Recovery doc updated

Posted by chrisbeams on March 15, 2010

http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=afe436fa-8e8a-443a-9027-c522dee35d85

Posted in Active Directory | Tagged: , | Leave a Comment »

PowerShell – Create Server Account in Specific OU

Posted by chrisbeams on March 13, 2010

Another easy one

New-ADComputer -Name “LDNSRV1” -Path “OU=Servers,DC=W2K8R2,DC=NET” -enabled $True

Posted in PowerShell | Tagged: , | Leave a Comment »

PowerShell – protect objects from accidental deletion

Posted by chrisbeams on March 10, 2010

Using PowerShell V2 and the new AD Cmdlets

in the below example on an OU

Get-ADOrganizationalUnit  -filter * | Set-ADOrganizationalUnit -ProtectedFromAccidentalDeletion $true

and to do the reverse to one OU

Set-ADOrganizationalUnit “OU=London,DC=W2K8R2,DC=NET -ProtectedFromAccidentalDeletion $False

Posted in Active Directory, PowerShell | Tagged: , | 1 Comment »

PowerShell V2 out

Posted by chrisbeams on November 9, 2009

Somehow missed this one, but spotted it on Jorge’s Blog

PowerShell V2 released for all Operating Systems… so time for me to start looking at the Active Directory cmdlets.

As Jorge mentiongs  “If you are having a hard time finding those, that’s because it is in included in the Windows Management Framework.”

Windows Management Framework Core (WinRM 2.0 and Windows PowerShell 2.0)

 

 

Posted in Active Directory, PowerShell | Tagged: , | 2 Comments »

Password policies

Posted by chrisbeams on May 26, 2009

Good high level blog form the ASKDS team:

http://blogs.technet.com/askds/archive/2009/05/19/understanding-password-policies.aspx

plus a link to a white paper you should read:

http://www.microsoft.com/downloads/details.aspx?FamilyID=8C8E0D90-A13B-4977-A4FC-3E2B67E3748E&displaylang=en

Posted in Active Directory | Tagged: , | Leave a Comment »

Server Core – DC Promotion

Posted by chrisbeams on May 17, 2009

I have attached a simple answer.txt file below that I have used before for Server Core Promotion:

To set the network up you need the network ID (which tends to be 2)

netsh interface ipv4 show interfaces (this gives you the network id)
netsh interface ipv4 set address name=”2″ source=static address=192.168.100.202 mask=255.255.255.0 gateway=192.168.100.1
netsh interface ipv4 add dnsserver name=”2″ address=192.168.100.201 index=1

If you need RDP Access you need to do the following:

  • WMIC RDTOGGLE Where ServerName=”%COMPUTERNAME%” Call SetAllowTSConnections  AllowTSConnections=”1″
  • NetSH FireWall Set PortOpening TCP 3389 “Remote Desktop”

Dont forget to  Rename the machine to something more useful:

  • WMIC ComputerSystem Where Name=”%COMPUTERNAME% Call Rename Name =”NewNameYouWant”

And then the answer.txt file

This one would create a normal DC with DNS thats also a GC in an existing Domain,

[DCINSTALL]
InstallDNS=Yes
ConfirmGc=Yes
CriticalReplicationOnly=No
DisableCancelForDnsInstall=No
Password=P@ssw0rd
RebootOnCompletion=No
ReplicaDomainDNSName=W2K8.COM
ReplicaOrNewDomain=Replica
SafeModeAdminPassword=P@ssw0rd
SiteName=London
UserDomain=W2K8.COM
Username=administrator

Posted in Active Directory | Tagged: , | Leave a Comment »