• Q: Impact of running DCPROMO without installing AD DS role-base in windows server 2008

    I once came across this question “Impact of running DCPROMO without installing AD DS role in Windows Server 2008 or 2008R2“. Lots of people gave their own views of how DCPROMO relates to AD DS. I see this as simply understanding what actions DCPROMO & AD DS role does when ran. DCPROMO is simply the […]
    • by
    • 4 Years ago
    • 0
  • Transfer FSMO roles from Windows Server 2008 R2 DC to Windows Server 2012 DC

    In an earlier post, we looked at introducing a Windows Server 2012 Domain Controller in an existing Windows Server 2008R2 domain. Next action is moving the FSMO roles off the Windows Server 2008R2 DC to Windows Server 2012 Dc in preparation of decommissioning the Windows Server 2008R2 DC which will be dealt with in later […]
    • by
    • 4 Years ago
    • 1
  • Checking Windows Server 2012 Active Directory Schema Version

    There are two ways to determine your Active Directory Schema version; one is via the dsquery command-let and the other by ‘adsiedit.msc’ tool. 1. Using the dsquery commandlet – Run the following command from within the command prompt: dsquery * cn=schema,cn=configuration,dc=<domainname>,dc=<local> -scope base -attr objectVersion Replace ‘<domainname>‘ and ‘<local>‘ with your domain name details The […]
    • by
    • 4 Years ago
    • 0
  • Installing Windows Server 2008 (64bit) Domain Controller in an existing Windows Server 2003 (32bit) domain

    In this post, I will show us how to install a new Windows Server 2008 R2 (64bit) domain controller in an existing Windows Server 2003 domain (32bit). Sorry that I am not able to provide any screenshots at this point in time but if you simply follow the steps, you won’t miss it 🙂 If this domain controller […]
    • by
    • 5 Years ago
    • 0
  • Active Directory Firewall Ports

    Have you ever wondered what firewall ports needs to be opened to your AD network if you have a segmented environment. I have below a simple firewall rule that you need to configure to allow all needed AD ports as listed: 1. Create Service-Object: ASA# object-group service AD-Ports service-object tcp-udp eq 389 (LDAP (Lightweight Directory […]
    • by
    • 5 Years ago
    • 0