Active Directory Archive
How to Check Active Directory Group Membership?
Active Directory security groups used to grant users’ permissions to various domain services and resources. Therefore, to understand what permissions are assigned to a specific user in the AD domain, it is enough to look at the groups in which the user’s account is a member of. The easiest...
How to Restore Deleted Active Directory User?
If you accidentally deleted an Active Directory user, you can easily restore it. The fact is that when you delete any object from Active Directory, it is not deleted immediately. First, the value of the isDeleted = true attribute is set for the object, then it is moved to...
Non-authoritative Restore of AD Domain Controller from Backup
If your Active Directory domain controller fails and you have a DC backup (created using Windows Server Backup or other backup tools), you can restore a single domain controller or the entire AD domain. In this article, we will show you how to perform a non-authoritative AD DS recovery...
How to Disable Active Directory Account Using PowerShell?
An Active Directory administrator must periodically disable user and computer domain accounts that are not used for a long time. Disabled accounts cannot be used to log on the domain, even if the user knows the password for the account and it is not expired. You can disable a...
How to Sync Active Directory to Office 365?
You can integrate your Office 365 subscription with your existing local (on-premises) directory service based on Active Directory Domain Services (AD DS). You can configure automatic synchronization of AD user accounts, groups, and contacts with Azure. As a result, you can manage your user accounts for both environments. Office...
Adding an Additional Domain Controller on Windows Server 2016
In this article, we will show you how to deploy an additional domain controller in an existing Active Directory forest based on Windows Server 2016. An additional domain controller can be used to increase domain resiliency, used for load balancing between AD sites, and reduce the load on WAN...
Deploying Active Directory Federation Services on Windows Server
ADFS (Active Directory Federation Services) is a component of Windows Server that provides the functionality of an authentication provider for web applications. Federation Services are used to authenticate external users in different applications. Why do I need ADFS if I have an Active Directory deployed? The fact is that...
How to Backup Active Directory on Windows Server 2016?
In this article, we will take a look on how to backup an Active Directory domain controller running on Windows Server 2016. This backup will allow you to restore both individual AD objects and the entire AD domain in case of problems. Although Active Directory services are designed with...
AD Account Keeps Locking Out
Sometimes there are situations when AD user account keeps locking out, this happens when you try to log on to a domain computer and getting an error on the login screen: The referenced account is currently locked out and may not be logged on to. This notification means that...
Join Domain and Login over a VPN Connection
This is a short tutorial on how to join a computer to a domain over a VPN connection. This was very useful for us this weekend. We had to reformat a computer, and needed to setup their profile again under their login. Join Domain over VPN Note, you will...
