Active Directory Port Requirements

A few days ago we posted a document to TechNet that outlines some of the various port requirements for Active Directory.  We gathered the port information from various KB articles and consolidated them into one document.  I think it should serve as a great reference guide for those of you configuring Active Directory communication through…


New Djoin.exe utility in Windows Server 2008 R2

Windows Server 2008 R2 domain controllers include a new feature named Offline Domain Join. A new utility named Djoin.exe lets you join a computer to a domain, without contacting a domain controller while completing the domain join operation, by obtaining a blob from a Windows Server 2008 R2 domain controller at an earlier point in time. The computer is…


How many RIDs are left in your domain?

del.icio.us Tags: RID,SID,Active Directory,maximum number of accounts Are you in danger of running out of relative identifiers (RIDs) in your domain? If you have not heard of this before, you should see Active Directory Maximum Limits – Scalability and read the section Maximum Number of Security Identifiers. Then, come back here to see how to…

1

Active Directory Quotas

You can use Active Directory and Active Directory Domain Services (AD DS) to implement limitations on the number of objects that a security principal (a user, computer, and group) can create in a directory node. You can define these limitations through Active Directory quotas.  Quotas have been around since the days of Windows Server 2003 and are very…


TechMentor Conference Orlando 2009 (June 22-26)

Kurt Hudson from the Active Directory documentation team will be presenting the session Best Practices for Virtual Domain Controllers at TechMentor in Orlando. See the conference ad video. LiveJournal Tags: conference,Active Directory Domain Services,Hyper-V,virtual directory services,best practices This posting is provided “AS IS” with no warranties, and confers no rights.

0

Producing a list of multivalued linked attributes

Active Directory objects can have several different types of attributes. The two basic types are single valued and multivalued. The most frequently asked question regarding attributes that I have seen is that regarding the member attribute because it comes into play when discussing the maximum number of members (users) you can have in a group….

0

Alternate Credentials

Launching Tools Using Alternate Credentials from a Command Prompt Window One of the easiest ways to launch tools using alternate credentials is to first launch a Command Prompt with the credentials you want to use. Once the Command Prompt is launched using the alternate credentials, all subsequent commands and tools run from that Command Prompt…

1

Introducing Active Directory Administrative Center

Active Directory Administrative Center provides network administrators with an enhanced Active Directory data management experience and a rich graphical user interface (GUI). Administrators can use Active Directory Administrative Center to perform common Active Directory object management tasks (such as user, computer, group, and organization units management) through both data-driven and task-oriented navigation. Administrators can use the enhanced Active Directory Administrative…

20

Introducing AD DS Best Practices Analyzer

Active Directory Domain Services (AD DS) Best Practices Analyzer (BPA) is a server management tool that can help you implement best practices in the configuration of your Active Directory environment. AD DS BPA scans the AD DS server role as it is installed on your Windows Server 2008 R2 domain controllers, and it reports best practice violations. You can filter or…

4

Introducing Active Directory Recycle Bin

Accidental deletion of Active Directory objects is a common occurrence for users of Active Directory Domain Services (AD DS) and Active Directory Lightweight Directory Services (AD LDS). In Windows Server 2008 Active Directory domains, you could recover accidentally deleted objects from backups of AD DS that were taken by Windows Server Backup. Or you could recover deleted Active Directory objects through tombstone reanimation. The drawback to the…

4