Active Directory Archive

Using DCPromo to Promote AD Domain Controllers

The DCPROMO console utility is used on Windows Server to install the ADDS (Active Directory Domain Services) role, promoting a member server to the AD domain controller or demoting it. dcpromo /unattend[:filename] /adv /uninstallBinaries /CreateDCAccount /UseExistingAccount:Attach [:{Promotion | CreateDcAccount | UseExistingAccount | Demotion}] /?:Promotion, /?:CreateDCAccount, /?:UseExistingAccount, and /?:Demotion Dcpromo

Repadmin Tool: Checking Active Directory Replication Status

To keep your Active Directory domain in a healthy state, you should periodically check the replication between domain controllers using the repadmin and dcdiag tools (we looked at using the dcdiag utility in a previous post. The Active Directory replication is fully automated, and proper planning and configuration of

The Processing of Group Policy Failed

There are a number of reasons why The processing of Group Policy failed error could happen. When you try to run gpupdate /force you receive the following error: User policy could not be updated successfully. The following errors were encountered. The processing of Group Policy failed. Windows attempted to

Viewing Active Directory Groups Using DSGet Group

The dsget utility can be used to view various information about Active Directory catalog objects. In this article we will show how to use the dsget group command to list info about different groups in the AD domain. To use the dsget command, the Microsoft Windows Administration Tools Pack

Changing Local and Active Directory User Password Using PowerShell

The administrator can change the password of the local users on the computer using the Local Users and Groups (lusrmgr.msc) graphic snap-in. To change the password of an AD domain user, the Active Directory Users and Computer (ADUC) GUI console is mainly used. However, in some cases, the administrator

Installing Active Directory Users and Computers MMC Snap-in on Windows 10

One of the main Active Directory domain management tools is the MMC snap-in Active Directory Users and Computers (ADUC). The ADUC snap-in is used to perform typical domain administration tasks and manage users, groups, computers, and organizational units in the Active Directory domain. By default, the Active Directory Users

Using Quest Active Directory Cmdlets for PowerShell

Almost 10 years ago Quest Software released a free set of cmdlets to simplify interaction with Active Directory. This set of cmdlets provides quite flexible options for administering Active Directory, managing AD objects, AD ACLs, password settings, and security. Up to version 1.5.1 Quest Active Directory cmdlets were provided

Active Directory Organizational Unit (OU)

Organizational Unit (OU) is a container in Active Directory domain that can contain different objects from the same AD domain: other containers, groups, user and computer accounts. Active Directory OU is a simple administrative unit within a domain on which an administrator can link Group Policy objects and assign

How to Install and Import PowerShell Active Directory Module

Today we’ll show you how to install and use the Windows PowerShell Active Directory Module. You can use the cmdlets of this module to retrieve information and manage Active Directory. This module in the server OS is installed as a separate feature. On the desktop OS (Windows 10, 8.1,

Active Directory Groups Types

The Active Directory groups is a collection of Active Directory objects. The group can include users, computers, other groups and other AD objects. The administrator manages the group as a single object. In Windows there are 7 types of groups: two domain groups types with three scope in each