Thought Exercise: AD Greenfield As a though exercise and to improve my mental model of AD security & resilience, I tasked myself to plan a ...Read more
WindowsTechno Community Latest Questions
I’m setting up AD (WS2016) at home to admin my kids PCs. What would anyone recommend for limiting their accounts, I’ve blocked the Control Panel and CLI and limiting logon times. I would describe their tech knowledge as enough to be ...Read more
Hi, I’m wondering if it’s a good idea to remove the DNS role from domain controllers and use something like Infoblox or Efficient IP exclusively for a production DNS setup. So it would be hardened appliances, clustered, virtual IP that in ...Read more
What is Orphaned GPOs?? Orphaned GPOs are objects that are deleted from GMPC console but for different reasons, their corresponding folder is not removed. So in this case the folder remains in SYSVOL folder, however there is no GPO associated to ...Read more
Can’t connect to Azure VMs, unsure how to connect Long story short, we have inherited an Azure environment which has a couple of DCs and DNS servers. Tried connecting via RDP, SSH and Bastion with no luck so far. ...Read more
Team, In AGPM, the controlled GPO is not visible. Any ideas on how to solve this problem? It was previously there, but now it is unable to locate the GPO in a controlled GPO environment, even though that it is visible in ...Read more
AD Replication error 8477: The replication request has been posted; waiting for reply Please help on this .
Hello, I have a new Windows 2022 server. If I install active directory on it I can run “Set-ADForestMode –Identity “acme.com” –ForestMode Windows2012R2Forest” – however at that point it requires me to have AD already on it and joined to a ...Read more
Please do advise if I am posting in the wrong place, I have not found this the easiest site to navigate (or maybe it is me…). I have been tasked with auditing and fixing our privileged accounts after a Microsoft CSAT ...Read more
I made a mistake and removed read access to “everyone” for a certain OU. Naturally, I became unable to see the OU at all. I was able to go to the administration console and change the setting to allow read ...Read more