No support for Protected Users in Microsoft Entra Domain Services?
I have been loooking into mapping best practices about configuring hardening / tiering model from on-premises Active Directory to Microsoft Entra Domain Services (MEDS). I'm well aware that MEDS is NOT a replacemenet for AD DS and have many restrictions and missing features, but that does not stop me from wanting to make it as secure as possible for member servers to be joined to. Since MEDS is a PaaS in Azure, deployed from within Azure and managed in another way than Active Directory, of course there are different ways of implementering a good tiering model. In my study I wanted to see if I could enable Protected Users feature (join users to Protected Users Group). However I find this group to be present but not possible to add members to (feature greyed out). I have a member server in the MEDS instance and have installed AD DS Tools. My user is member of AD DDS Administrators group. I would like to know if anyone have some knowledge on the subject to share?
Proactive private share #microsoft
Many comapanies is part of my job last two year. I desade to implement and create new public communty group at microsoft, with public share. Like universal patch insade giant org and partner companes ,microsoft deside lead postiton. Proacticve and future plan is constructed to grow on world network with client and our partnersHow to Reset Windows Server 2008 R2 Administrator Password?
I am struggling to reset the administrator password on my Windows Server 2008 R2 machine. Unfortunately, I do not remember the password and cannot access the system. I have tried use a password reset disk or access the built-in administrator account, but have been unsuccessful thus far. I am worried about losing access to critical files and applications as a result of being unable to log in. Therefore, I am seeking advice and guidance on the most effective and secure way to reset administrator password for Windows Server 2008 R2. I am hoping that other forum members who have encountered similar issues in the past can share their experiences and offer tips and solutions. Thanks.Server 2025 Domain Join Error ASN.1
hallo we wanna join an appliance (cisco ISE) to our domain/forest and get an error. Domain Controllers was updated from Server 2022 to Server 2025 preview it was ok with the appliance in ad. With Server 2025 final we get this error: Test Name :Kerberos test obtaining join point TGT Description :Tests TGT Obtaining in joint point Instance :CCLOUD-AD Status :Failed Start Time :10:13:54 22.11.2024 MET End Time :10:13:54 22.11.2024 MET Duration :<1 sec Result and Remedy... Could not obtain TGT : ASN.1 failed call to system time library. Check Kerberos related AD configuration What we done in troubleshooting, yet: DNS Resoluion works. domain is resolvable NTP is ok and correct time from pdc and synced to all other DCs and Clients/Servers domain join user credentials and permission are correct We tested also with an Domain Admin User/Cred Container/OU and Computer Object Permissions/Owner rights are set to the join account. Delete and let the Appliance create a new Object did not work can anyone help with ideas?
Getting Prompted for Username and Password on Internal Web Site, HTTP Error 401.2 - Unauthorized.
I have an internal web site that uses Windows Authentication. This works perfectly on my Microsoft Windows Server 2022 Datacenter Azure Edition which is my developer server. When I tried to put this site out on our test Microsoft Windows Server 2022 Datacenter Azure Edition, with the exact same setup, I get prompted for my Username and Password. It does not matter what I have tried to enter for Username and Password, nothing is ever accepted and it I hit cancel, I get the dreaded HTTP Error 401.2 - Unauthorized. I don't understand why this would work on 1 server, but not the other server. HTTP Error 401.2 - Unauthorized You are not authorized to view this page due to invalid authentication headers.
ACPI/INTC1085 driver is not installed
Hello. I have a server platform ASUS RS300-E12-RS4 with Intel(R) Xeon(R) E E-2478. After installation microsoft hyper-v server 2019 and install all drivers from asus site, i have 1 not installed device. ACPI\INTC1085\2&DABA3FF&1 driver "INTEL_Serial_IO_V30.100.2237.26.zip" not compatible for this device. BIOS version is 0803 BMC version is 1.0.9 The support of the hardware manufacturer could not help me, they recommended to contact the OS manufacturer.feature Installation Error
I am facing this issue in Windows Server 2019 STD. i am also tried to solve this issue to select sources\sxs path from the OS media but still i am getting the same error. Mistakenly i have removed .Net framework from this server and after that i am facing this issue. please help me to solve this issue.
Configure Certificate for LDAPS and Others
Hi, Thought I already posted this question but can't locate it now, so I guess it didn't work. Let's try again... I've been asked to setup secure LDAP on our network, and this is something completely new to me. I've been searching around for tutorials and have found some but none of them go into how to create the certificate using Certificate Services. I have been searching but all I'm finding is information on how to install a certificate authority, but that's as far as they go. What I've learned so far is that we have a Certificate Authority (CA) and an Intermediate Authority (IA), all installed by an ex-colleague, who didn't leave any notes or instructions on how to use them. I have learned somethings, like the CA should be protected and is powered down, I guess you power it up when you need it? And when I look in Certificates on our Domain Controller, I see a certificate under Local Computer\Personal\Certificates but it was issued by the CA, not the IA and it expired last summer. Not sure how to go about renewing it or creating a new one from the IA. If someone can point me in the direction of an easy-to-follow tutorial on how to manually create certificates, I'd appreciate it. So far, I'm not having any luck finding one. Thanks in advance!
