can we have two Globel catlog server in single forest
Hi Team, i have PDC and ADC all the are showing GC is that right...Regards, Kumar.V
View ArticleHow to register a custom policy module for AD CS
HiI migrated an enterprise CA from Windows Server 2003 to Windows Server 2008 R2 und migrated also from CLM 2007 to FIM 2010 CM.We had a custom policy module running on the old server and i want to run...
View ArticleAD CS issuing client auth cert for local user account
Can anyone point me in the direction of a step-by-step guide for issuing a user certificate to a non-domain user account such as you would find on a non-domain joined computer in a DMZ environment?The...
View ArticleWindows Firewall - Allow Specific Computers Access to File Shares
This question has been asked, but never fully answered. So I'm going to bring it up again, and share my work-arounds, and why I can no longer use a work-aroundNecessity:I need to be able to allow...
View Article3 tier PKI - best way to accommodate longer certificate validity periods for...
Hi Everyone,Our PKI is 3 tier with offline root and subordinate tiers and an online issuing tier.The root CA certificate has a 20 year validity, the subordinate CA certificates have 10 year validity...
View ArticleCleanup renewed CA certificates
HiI currently renewed the Issuing CA (Win 2k8) because the organisation wanted to change the validity from 10 years to 20 years. Hence I took a simpler approach renewing the Issuing CA.Now the computer...
View ArticleHow to fix user AD account
Is there a way to repair a users active directory account. I wanted to avoid having to delete the AD account and email account associated.This account have some security issues, user don't receive AD...
View ArticleSetup of Multiple Issuing CA's
There are lots of comments regarding the use of multiple Issuing CA's in an ADCS infrastructure, even comments about you need multiple Issuing CA's with Server 2003 to achieve resiliency. However,...
View ArticleHow to Repair user AD account.
Is there a way to repair a users active directory account. I wanted to avoid having to delete the AD account and email account associated.This account have some security issues, user don't receive AD...
View Articlehow to block wimax devices in AD network?
i'm designer/administrator for a network with 500 clients/users. here we use extreme/cisco (mostly 2960) switches & cisco (mostly 3750) routers... we have 3 DCs running server 2k8 (not R2 yet) ,...
View Article2008 R2 - The user profile service failed to logon.
I manually deleted my profile from c:\users. I then started getting the error "The user profile service failed to logon.I logged in as local Admin and deleted the .bak key associated with deleted...
View ArticleWindows 2012 Security Checklist
Hello All, Good Day. I am looking for Windows 2012 server security checklist, would you kindly assist me by providing Wintel 2012 standard/recommended check-list ASAP? Thanks in advance.
View ArticleLost Password
My 9-year-old granddaughter has forgotten the password she used for her Windows system. Now she is locked out of it and family members don't know how to correct the problem as we are not...
View ArticleAccess to a networked server using a local login
Hi thereWe have 2 networked servers, and we remotely login onto the machines using a local login, is it possible to access a drive on one of these from the other?Thanks
View Articlecredential roaming over the long term
Hello,I understandhow thecredentialroamingworks.Spite of everythingI stillseveral question.I have made some test to implement credential roaming. My certificates are made for use Smime.When a...
View ArticleHKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\safer\codeidentifiers\...
For some reason, every time our Windows Server 2008 R2 SQL servers reboot, the value for the 'transparentenabled' DWORD changes back to '2', which prevents our SQL database service from starting....
View ArticleDisable UAC on one application for a standard user.
Hi,Now I've seen many different attempted fixes for this ridiculous issue but nothing short of installing extra software has worked. The OS being used is Windows Server 2008 R2 and this on our TS - so...
View ArticleSDDL in wecutil.exe example
Looking here: http://msdn.microsoft.com/en-us/library/windows/desktop/bb870973(v=vs.85).aspxThere is an example of an XML file for configuration...
View ArticleCross Forest Enrollment question
Hello i've a couple of question regarding Cross Forest Enrollment.I've setup a Enterprise Failover Cluster CA in Domain A.I want to deploy Certificates to Domain B which is a Multidomain. I copy the...
View ArticleGet a DC back into the domain after toumbstone event
I had an issue where my cmos battery died which caused my Exchange server which was a DC and GC to get toumbstoned out of the domain. How can I get it back into the domain? The exchange server is still...
View Article