How to get the SPN of any server
And how to know the Service needed name
Setspn
First, open the active directory administrative center
Advertisements
Archive for the ‘Active Directory 2012’ Category
How to know the SPN needed name
Posted in Active Directory, Active Directory 2012, tagged SPN on March 29, 2017| Leave a Comment »
Authorizing DHCP Server by a non-enterprise administrator
Posted in Active Directory 2012, Delegation on October 13, 2015| Leave a Comment »
Authorizing DHCP Server by a non-enterprise administrator
By default, only a administrator which is member of “Enterprise Admins” group can authorize the DHCP which is installed in domain environment. If the other accounts would like to authorize the DHCP server which is a member server in child domain, you may get “Access is denied“.
To solve this problem, I try to grant the permission for child domain administrator.
1. At the forest root domain controller, log in as Domain Administrator.
2. Launch “Active Directory Sites and Services“.
3. On the menu, click “View > Show Services Mode.
4. Expand “Services > NetServices“.
5. Right-click “NetServices“, select “Delegate Control“.
6. On “Delegation of Control Wizard” screen, click “Next“.
7. On “Users or Groups” screen, add an user or group which you want to grant permission for authorizing DHCP servers to.
8. Click “Next“.
9. On “Tasks to Delegate” screen, select “Create a custom task to delegate“.
10. Click “Next“.
11. On “Active Directory Object Type” screen, select “This folder, existing objects in this folder, and creation of new objects in this folder“.
12. Click “Next“.
13. On “Permissions” screen, check “Full Control“.
14. Click “Next” .
15. Click “Finish“.
Now, the non-enterprise administrator user account can authorize the DHCP Server which is installed in Child Domain.
Ref: http://terrytlslau.tls1.cc/2011/11/authroizing-dhcp-server-by-child-domain.html
https://technet.microsoft.com/en-us/library/cc786474(WS.10).aspx
Active Directory Security, Permission and ACL Analysis
Posted in Active Directory 2012 on July 15, 2014| Leave a Comment »
Active Directory Security, Permission and ACL Analysis
http://www.ldapexplorer.com/en/liza.htm
Bottom of Form
LIZA
|
|
|
Liza is a free tool for Active Directory environments which allows you to display and analyse object rights in the directory hierarchy. You could use the tool for example to perform security permission analysis in an AD domain or the AD Configuration Partition. |
Top of Form Bottom of Form |
I always found the out-of-the-box possibilities to examine the object security in Active Directory environments rather unwieldy to handle for complex permission settings. So with the LIZA development, i tried to display most of the permission ACE (Access Control Entry) information as simple as possible so you have an almost complete overview at the first sight.
The following topics are available for the LIZA online manual:
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Configuring Internet explorer using Group policy preferences
Posted in Active Directory 2012 on May 27, 2014| Leave a Comment »
Group Policy Internet options for Server 2012 and IE 10
GP Preferences not working for you? Probably F5-F6-F7-F8
I noticed that some of my policy’s where not applying via the Internet Explorer GPO Preferences,
And after much digging around on the internet I found out why.
If you notice below each setting has a red dotted line and a green line, the ones with the green lines are enabled and the ones with the red dotted lines are not enabled or ignored.
User Configuration
└ Preferences
└ Control Panel Settings
└ Internet Settings
To simply enable and disable, click on the section you are about to change and press F6, this will configure/enable just this setting-The red dotted line should turn green.
The other options are as follows;
F5 Configure all of these settings
F6 Configure just this setting
F7 Ignore just this setting
F8 Ignore all these settings
The same goes for settings and advanced settings – Green to apply the setting, Red to ignore the Setting 
The same goes for your LAN settings, un-tick automatically detect settings and enable with F6 this will make sure the policy is applied, if you disable/ignore (F7) the setting the policy with not check with the local machine policy’s.
Enter the URL of the Home page you wish to set, and select start with home page. Notice the red dots underlining the home page entry.
You must press F5 (or F6), to confirm the entry. If you do not the setting will not be applied. Once you have done so, the entry turns green.
Function keys:
F5 – Enable all settings on the current tab.
F6 – Enable the currently selected setting.
F7 – Disable the currently selected setting.
F8 – Disable all settings on the current tab.
Setting a Proxy with Group Policy Preferences
Create or modify an existing Internet Settings policy as explained above, this time head over the connection tab -> Lan Settings.
Specify the proxy, again note the red dots showing that the setting have not been confirmed. Press F5 to confirm.
Ref: http://www.grouppolicy.biz/2010/03/how-to-use-group-policy-to-configure-home-page-settings-part-2/
http://blog.thesysadmins.co.uk/group-policy-internet-explorer-10-death-iem.html
http://technet.microsoft.com/en-us/library/cc754299.aspx
Internet Explorer Maintenance go away when IE 10 is installed
Posted in Active Directory 2012 on March 3, 2014| Leave a Comment »
Internet Explorer Maintenance go away when IE 10 is installed
Missing Internet Explorer Maintenance option from GPMC with Windows 7 / 2008 R2
IEM(Internet explorer maintenance) data and directives inside the GPO are still there. But when IE 10 is placed upon that machine, it promptly ignores those directives.
Restore Deleted items from Active Directory 2012
Posted in Active Directory 2012 on December 26, 2013| Leave a Comment »
Go to Server Manager
The go to tools and open
Active directory administrative Center
Go to Deleted Objects OU Open the deleted Objects OU
Then choose the object you want to restore and the location
Note: you must enable the Recycle bin Option before you deleted the object
For enabling the Recycle Bin
https://profadmins.com/2013/02/28/enable-the-recycle-bin-on-server-2012/
Upgrade Domain Controllers From 2008 R2 to Windows Server 2012
Posted in Active Directory, Active Directory 2008, Active Directory 2012, tagged ADPREP in server 2012, and Infrastructure Master, export DHCP from server 2008 to server 2012, exporting DHCP, importing DHCP to server 2012, Install Active Directory Domain Services on Windows Server 2012 with PowerShell, Install Active Directory Domain Services on Windows Server 2012 with Server Manager, move roles from server 2008 to server 2012, moving roles from 2008 domain controller to 2012 domain controller, PDC, Promote a Server to a Domain Controller in Windows Server 2012 with Server Manager, Roles on server 2012, Transferring the Domain-Specific Roles: RID, Transferring the Root FSMO, upgrade Domain controller to server 2012, upgrade server 2008, upgrade to server server 2012 on April 10, 2013| 5 Comments »
| Upgrade Domain Controllers From 2008 R2 to Windows Server 2012 | April 10 2013 |
|
| This topic provides background information about Active Directory Domain Services in Windows Server 2012 and explains the process for upgrading domain controllers from Windows Server 2008 or Windows Server 2008 R2. | UPGRADE FROM SERVER 2008 R2 TO Windows server 2012 | |
Table of Contents
1. Considerations for using Adprep.exe in Windows Server 2012 2
1-1 Install Active Directory Domain Services on Windows Server 2012 with PowerShell 2
2-1 Install Active Directory Domain Services on Windows Server 2012 with Server Manager 2
3-1 Promote a Server to a Domain Controller in Windows Server 2012 with Server Manager 2
2.1.1 Check the Functional level 3
5-1 Change the DHCP setting in the server scope to the new DNS 6
6-1 Transferring the Root FSMO 6
3.1.1 Transferring the Domain-Specific Roles: RID, PDC, and Infrastructure Master 6
4.1.1 Transferring the Domain Naming Master role 7
5.1.1 Transferring the Schema Master Role 7
6.1.1 Transferring the Schema Master Role 7
7-1 Move a DHCP Database to another Server 8
8-1 Back up the DHCP database (at the source server) 8
9-1 Install the DHCP server service on the server that is running Windows Server 2012 8
9.1.1 Import the DHCP database 9
10-1 Authorize the DHCP server 9
10.1.1 After installing and removing Roles 9
-
Prerequisites check (more…)
Advertisements
Search
Blog Stats
- 151,258 hits
System Admin
Categories
- Active Directory (43)
- Active Directory 2008 (34)
- Delegation (5)
- Disaster Recovery (3)
- Global Catalog (1)
- Upgrading and Migration (3)
- Active Directory 2012 (9)
- Active Directory 2008 (34)
- AZURE (1)
- Exchange (5)
- HardWare (3)
- hybrid (2)
- Hyper-v (2)
- IIS (1)
- Lync Server (1)
- Office 365 (25)
- Exchange online (4)
- Hybrid Exchange (2)
- OneDrive for Business (1)
- SharePoint Online (2)
- outlook 2010 (1)
- PowerShell (1)
- ProjectServer (1)
- Sharepoint (120)
- Sharepoint 2010 (49)
- Add features to sharepoint (1)
- Administration Tasks (10)
- Application services (1)
- Backup and Restore (5)
- creating and configuring (5)
- Enable Audit on SharePoint 2010 (1)
- Health analyzer (3)
- PDF Issues (2)
- Ribbon (1)
- Search,idexing and crawling (3)
- Stsadm (1)
- WebParts (1)
- Sharepoint 2013 (59)
- SharePoint 2016 (8)
- Sharepoint 2010 (49)
- Uncategorized (7)
- Active Directory (43)
Archives
- May 2017 (1)
- March 2017 (12)
- February 2017 (1)
- January 2017 (4)
- December 2016 (7)
- September 2016 (1)
- August 2016 (9)
- April 2016 (2)
- March 2016 (1)
- January 2016 (5)
- December 2015 (3)
- November 2015 (7)
- October 2015 (2)
- June 2015 (3)
- March 2015 (3)
- December 2014 (2)
- November 2014 (3)
- October 2014 (3)
- July 2014 (10)
- June 2014 (1)
- May 2014 (2)
- April 2014 (2)
- March 2014 (4)
- January 2014 (2)
- December 2013 (16)
- November 2013 (2)
- August 2013 (1)
- July 2013 (2)
- June 2013 (3)
- April 2013 (7)
- March 2013 (6)
- February 2013 (11)
- January 2013 (10)
- December 2012 (4)
- June 2012 (9)
- April 2012 (7)
- March 2012 (20)
- June 2011 (1)
Tags
-
Gallery
kazaki82