Advertisements
Feeds:
Posts
Comments

KRBTGT account cannot be enabled


The KRBTGT account is a local default account that acts as a service account for the Key Distribution Center (KDC) service. This account cannot be deleted, and the account name cannot be changed. The KRBTGT account cannot be enabled in Active Directory.

KRBTGT is also the security principal name used by the KDC for a Windows Server domain, as specified by RFC 4120. The KRBTGT account is the entity for the KRBTGT security principal, and it is created automatically when a new domain is created.

Windows Server Kerberos authentication is achieved by the use of a special Kerberos ticket-granting ticket (TGT) enciphered with a symmetric key. This key is derived from the password of the server or service to which access is requested. The TGT password of the KRBTGT account is known only by the Kerberos service. In order to request a session ticket, the TGT must be presented to the KDC. The TGT is issued to the Kerberos client from the KDC.

Ref: https://technet.microsoft.com/en-us/library/dn745899.aspx#Sec_KRBTGT

Advertisements

How to get the SPN of any server

And how to know the Service needed name

Setspn

First, open the active directory administrative center

Continue Reading »


Display Exchange Online mailbox information with Office 365 PowerShell

https://technet.microsoft.com/en-us/library/mt771881(v=exchg.160).aspx

$UserCredential = Get-Credential
$Session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri https://outlook.office365.com/powershell-liveid/ -Credential $UserCredential -Authentication Basic –AllowRedirection
Import-PSSession $Session
Remove-PSSession $Session

Display Microsoft Exchange Online mailbox information with Office 365 PowerShell
Continue Reading »


How-To connect Content DB to a SharePoint
Web application
How to restore SharePoint to another farm

The scenario we will use is that we have a web application and we need to attach another Database to it

First copy the database the two files of the content

MDF and LDF files of the content

Copy them to the new farm

In addition, it will be better to disable the web application server

Then right click the databases and right click attach

Then add the MDF file

Then it will be attached with the following name

rollbackSnapshotTempGUID

Continue Reading »


SharePoint Application Proxy Group

Proxy group

is the relationship between web application and the service application connection (Proxy) or connection for a service application

It enables the web application to associate with just the application services needed

EX: my site web application doesn’t need to be associated with all service applications

By default, there is only one Application Proxy Group

Go to central admin

Then

Application Management

Manage web application

Then service connection  

 

 

To create new application Proxy Group

New-SPServiceApplicationProxyGroup -Name “new name of your proxy group”

In my case I will create one for the Project server only

New-SPServiceApplicationProxyGroup –Name MSproj_Group

Before command



After command


Now assign service application connection (Proxy) to the Proxy group

Use the following command to get list of Proxies

You need the ID of the required servie

Get-SPServiceApplicationProxy | FT -AutoSize -Property ID, DIs*


Add-SPServiceApplicationProxyGroupMember <Proxygroupname> -Member <ID>

Alternatively, you can run the following command to get list of all services with project name

Get-SPServiceApplicationProxy | where { $_.Name -like “*projec*” }



 


Now its connected

 

 

I will assing another proxy the Usage and health data collection Proxy

 


Now it is connected



Creating Project server on SharePoint 2016

Enable the license

After enabling the server license

Enable-ProjectServerLicense -Key

https://profadmins.com/2017/03/05/project-server-installation/

create service and service proxy connection

Project Server Service Application

Create the service application and start the service

Make sure the proxy connection has been created if not review your topology

https://docs.com/officeitpro/4609/minrole-for-sharepoint-server-2016?c=ca4UTZ

Continue Reading »


What is the Sarbanes-Oxley Act and how does AD auditing help with compliance?

The Sarbanes-Oxley Act of 2002, is one of the most consequential set of mandates involving business ethics, and applies to all publicly traded companies, including subsidiaries of foreign companies, in the US.

Continue Reading »

%d bloggers like this: