LAPS GPO's are not found within GPM
I am working to implement LAPS. The domain controller has been updated with the latest rollup. When I navigate to Computer>admin templates>system> There is no LAPS folder. I already checked %windir%\PolicyDefinitions\ and the ADMX file…
WARNING: The object "AD Account" has been corrupted, and it's in an inconsistent state. The following validation errors happened:
The following validation errors happened: WARNING: The property value username is invalid. The value can contain only 'a', 'b', 'c', 'd', 'e', 'f', 'g', 'h', 'i', 'j', 'k', 'l', 'm', 'n', 'o', 'p', 'q', 'r', 's', 't', 'u', 'v', 'w', 'x', 'y', 'z', 'A',…
Windows 2012 R2 DC to Windows 2022 DC Migration
Dears We're planning Domain Controller migration from 2012 R2 to 2022. We have 2 DCs 2012 R2 that must be migrated on 2 others DC 2022. We'll keep the same IP of old DCs because of dns dhcp settings on all of our devices We do not have this patch…
Add a domain user to a group in another domain in another forest
Hello - I have a query here. How do I add a user - usera from a domain in a forest to another domain in another forest. Scenario - usera is in x.local forest, groupa is in x.local. DC of domain/ forest - y.local has WriteProperty access on groupa. I want…
LSA Auditing
Hi All I have the following requirement to enable (Enforce LSA Auditing) through GPO on all my servers. I have an OU with a couple of test VMs, and I have created a GPO and enabled the two policies below: Computer Configuration > Administrative…
How to configure auto-login to One drive for users on On-Prem AD joined devices?
Hi All, I have received requests from users to sync their files and folders directly to the OneDrive app. The users want that once they log in to the On-Prem AD joined workstations, they automatically get logged in to the OneDrive Application and their…
I am getting error, When I am trying to update the GPO by executing gpupdate /force.
Hi Experts, I have applied the GPO to disable windows auto update and Trying to update the GPO. But I am getting below error while I am trying to update the GPO. "Windows failed to applied the {F312195E-sD90-447A-A3F5-08DFFA24735E) settings .…
How to Retain User Settings When Converting from a Local Account to an AD Account?
Hi there, I would like to know if we can retain the same settings and configuration of the account profile when converting from a local account to an AD account. Is there any migration tool available for this conversion?
Do i really need CAL licenses to have Active Directory?
Do we need to purchase user/device CALs for those users/devices that will be managed by Windows Server? In other words, do we need to purchase both the Microsoft Server core license + the user/device CALs license? I have googled around saying that it is…
Unable to Read/Write B2C Custom Domain Settings in Entra Admin Center
I'm following along the Azure Add your custom domain name steps and trying to navigate to the Settings>Domain name. I have global admin for the tenant which is also linked to an active subscription But there is no Setting under Identity.
Screen Saver & GPO
I've created a screen saver to be run across the domain, and placed in C:\Windows\System32 of the domain controller. Then I created a GPO and enabled screen saver in User Configuration > Policies > Administrative Templates > Control Panel >…
We have plan to move on-premise AD to Entra ID, how to move the windows file server to Entra ID?
We have a plan to move on-premise AD to Entra ID. The target is: Remove all local AD DC servers, move devices/users to Intune/Entra ID, all users have M365 now. Move on-premies fileservers to the cloud Join Windows servers (on AWS) to Entra ID The…
Forwarding Windows Server firewall logs to other location like syslog server?
Would it be possible to forward or configure the Windows server firewall logs to a SIEM or SYSLOG server? Currently, using the official method through Group Policy only allows me to create the log on a specific server locally.…
[DELETED][DELETED]
[DELETED] [DELETED]
On Premise Server Using Azure AD?
Hi, I've recently purchased a server running 2022. My plan with this is to run VM's for RDS users. We currently run an Azure only estate where we have Azure AD running all our computers & email logins etc. I need help understanding how I can use…
Modify Office's settings via Registry/GPO
Good afternoon! In your company, you’re using Office 2016 Professional Plus. Recently, you’ve collected all the user configurations to create group policies. While some settings could be changed using Administrative Templates, there are still some that…
How to administer Windows 11 Enterprise computer to allow local user sign-in via MS 365 credentials?
Hi all, I work for a small non-profit organization and am entirely new to IT and system administration. I am beta-testing computer configuration on a Windows machine that I have upgraded to the Windows 11 Enterprise operating system. I have created MS…
Is is possible to make code token shorter?
Hello, we are experiencing an issue with our Azure Static Web App related to the length of the redirect URL generated by the login.microsoftonline.com authentication process. The response includes a long code token in the redirect URL…
Multiple Shortcuts for Same Folder
Hi, All of my domain pcs are having two shortcuts on their desktop screens for the same folder after I created a group policy for it. Any suggestions? Thanks.
"BitLocker Recovery" tab disappeared from Server 2019 ADUC
We've got a pair of 2019 DCs. Until this week, we were able to see BitLocker recovery keys for our assets in ADUC. That tab is just gone now. It's not a GPO issue. Our Group Policy doesn't even allow endpoints to encrypt until after the recovery key has…