ADPrep cannot modify security descriptor - Promote DC issues
Hello, I'm trying to promote a 2016 server to a DC in an existing forest. The current DC is a 2016 server. When I attempt to do this, it states that ADprep cannot modify security descriptor CN=Keys And to grant access to infrastructure master. The…
How to block the 'Add Account' option in Microsoft Edge using GPOs
Currently working on our group policy for switching over from Chrome to Microsoft Edge to better utilize some of the O365 features with profile syncing. Have most of what I need setup but it has been requested to block signing in to additional accounts…
AWS workspace pool error: SAMLRequest or SAMLResponse must be present as query string parameters in HTTP request for SAML Redirect binding
trying to configure AWS workspace pool with directory pool to Azure Entra ID. I added the enterprise application "AWS Single-Account" and setup the AWS directory to user login URL. from the test page in Azure I managed to login with the…
Active Directory permission for shared folder issue
Hello, I am trying to make the permission so that the user cannot delete the Parent folder, but can delete all folders and files inside. If I set the permission to Folder1 folder to "this folder, subfolders and files", and then give them full…
my screen is black when i login to remote desktop for opening active directory that i have created with azzure..What to do please?
hello,i have created a virtual machine on my azzure and in the moment i insert my credentials to open iot the screen apears black.Can somebody help me ???
Azure Arc fails to connect because NT SERVICES\himds is not allowed to log on as a service
The short version: How do I get Azure Arc to connect to Azure if GPO is limiting which accounts are allowed to log on as a service and the himds service requires "NT SERVICE\himds" to log in as a service? (I am unable to add "NT…
Using AD Activation on Windows 2019 Server
I installed the Volume Activation role on a 2019 server and added a Windows 10 Enterprise key, went through the wizard and saw it listed in AD using ADSI edit.. "perfect" I then tried to add a Windows 11 key and it added it but removed the…
Entra Connect and AD DS having a weird LDAP error
Hello, I am working to configure and install Azure Active Directory Connect 2.3.20.0 on a new domain with a relatively stock Azure tenant and am struggling with the first sync. The Azure user is global admin, and the directory user is the administrator…
Windows Hello on premises ne fonctionne pas
Hi, I have an Active Directory on a Windows Server 2016 I tried to set up Windows hello for business for my users with these policy : Use Windows Hello for Business Use certificate for on-premises authentication Windows Hello is well activated but…
Email Attribute mapping for SuccessFactors to AD
Can we setup a email mapping for all countries from source excluding 2-3 countries using any existing Function and Expression?
Error while configuring Microsoft Provisioning Agent
I'm setting up a provisioning agent in a new server which doesnt has AD confirgured . While configuring provisioning agent for the DC AD . It triggers a error saying "Error while creating group managed service account (gMSA). Error: There is no such…
Azure Function App - https activity authentication type is "Active Directory OAuth", it contains Tenant, ClientId, Credential Type, Secret value. how to store all these four values in Azure Keyvalut and pass to https securely without exposing secrets
Hi All, I want to secure Logic Apps - HTTPS activity connectivity details . Currently i am following authentication type is "Active Directory OAuth". It has Tenant Detail, Client ID, Credential Type and Secret Value. in Key vault need to…
RAS VPN Server issue
CoId={6942DD14-092E-0006-1B9E-55692E09DB01}: The user user@domain.com connected from 156.185.34.64 but failed an authentication attempt due to the following reason: The connection was prevented because of a policy configured on your RAS/VPN server.…
I am not able to switch my directory
I am not able to switch my directory. Authenticator app is working from company side as I am able to use it for other things but app is not generating codes for azure portal.
SSO with Windows 11 version 2H22 and above
Dear Micosoft Team, After Greeting kindly be informed that we have an application working based on SSO (Singal Sign On) but after upgrading Windows to Windlows 11 Pro version 2H22 & above, the SSO is not working, even after follow the steps shared by…
Index Quota Exceeded – Unable to Create 'sitecontent' Index in 'aressaisearch' Service
This is a part of chat bot that was developed for a company's website, however i guess the bot was not being used from a long time. Now that i am running the backend code, it is throwing the below error after entering a prompt. search' could not be…
When opening Azure Document Intelligence, it opens in external directory. Then its impossible to change to the right one.
I created an external directory in Entra ID to add B2B customers to my App. Now I have two directories/ tenants in my Azure Portal. My main one and my external one. The problem is, that when I open Document Intelligence Studio I get logged in the…
restoring AD onprem
Hello, Let say i have 2 domain controller (primary and secondary) and all 5 FSMO roles handle by PDC. The i have hardware issue on my PDC and must be restored from our backup (image backup using veeam). Let we assume the restoration need time until 48…
no-start-ma on Synchronization Service Management
When I check on Azure AD It says password hash. Both on-prem and cloud using the hash password. So not sure what is the issue. Can anyone help me. Check on the solution give didn't work at all.
anyone check GPOAdmin.dll eventID 1000 ???
anyone check GPOAdmin.dll eventID 1000 ??? my AD server able to check AD user&computers. but when i start gpmc.msc i cant find my domain. and check event viewer, i find GPOAdmin.dll eventID 1000. anyone see same issue??