Picture this scenario: You have a SharePoint farm and its associated Active Directory domain (Domain Controller A) in a traditional perimeter network, sandwiched between an external and internal firewall. Similar to the following diagram”   However, you want to authenticate against the SharePoint web server (which is a member of domain A) using your internal [...]

In Windows Server 2000, and Server 2003 Active Directory, you were limited to one password Group Policy per domain. If you wanted a separate password policy for specific users or groups, you either had to create a custom filter, create another domain for those users, or buy 3rd party software. However, with Server 2008 Active [...]

If you have been doing systems administration for any length of time, you have probably dealt with the disgruntled employee “termination” situation. Typically, you, your boss, or the Help Desk gets a call from HR (probably outside of normal account termination/offboarding processes), requesting all access for a specific account to be disabled immediately. Sometimes, the [...]

This afternoon I was getting ready to promote a Windows 2008 R2 server to be the second domain controller in a new domain when I started experiencing some really strange IP related issues. I had already configured TCP/IP settings properly, configured DNS to point to the existing domain controller, and properly tested name resolution. I [...]

This is a follow up to my Time Synchronizzation in Windows 2000 Active Directory Domains post. In that post, I should have mentioned that net time commands have been deprecated and you should now be using w32tm.exe instead when using Windows 2003 and 2008 AD domains with Windows Server 2003/2008 and XP, Vista, or Windows [...]