Today I want to write about Office 365 and On-Premise with Federation and DirSync.As I think functionality and typical questions are the most interesting for you, I want to focus on that. The following picture shows the architecture of an Office 365 environment. It is connected to an On-Premise environment with a federation and a […]
Problem with moving files to NTFS volume: – Files disappear after moving– Denial of access when user is only authorized in the target-directory Here, we provide you with a detailed solution including an example, screenshots and the ACL settings.
For the configuration of a Microsoft Online Tenant in the Microsoft Cloud (e.g. for Office 365) you need additional Powershell modules.To get them, just install ‘SharePoint Online Management Shell’.I want to introduce you Connect-MsolService and how to troubleshoot the Error “Unable to authenticate your credentials”
I reviewed the AD configuration at a customer’s lately and had to deal the option “Bridge all site links”. You can find the option in the Active Directory Sites and Services configuration. Here is my brief summary for you:
I am planning to expand a VMWare ESX farm. What are the requirements the new host has to fulfill.
How to deal with SharePoint service accounts? The following questions always come up at the beginning of a SharePoint project: Which accounts are needed? When does it make sense to use dedicated accounts for special tasks? Which permissions are necessary? Who does really need the right ‘logon as a service’?
Last week I faced the easy task to activate LDAPs on Windows Server 2008 R2 domain controllers. One of the applications required an encrypted LDAP connection, because password changes are done via LDAP. I thought: Hey, that’s easy – just create a server certificate for the DC, import the certificate for the computer account under […]
What many administrators do not know:Authenticated domain users can add up to 10 new computer objects to the domain by default. In some environments this may not be wanted though for security reasons.
I was looking for a possibility to check and supervise the synchronization of user-objects with Quest Migration Manager for Active Directory. In addition, I was missing a good overview to answer the question: Were new user-accounts created in the target-domain? Both problems could be solved with a little Powershell script.
Infrastructure Master Role and Global Catalog Microsoft recommends not making the domain controller with the infrastructural master role the Global Catalog server. But this recommendation applies only for these cases: There are several domains in the forest There are domain controllers in the same domain which are not global catalog servers.
- Nesting groups in Active Directory
- Create home directory and grant permissions with PowerShell
- Creating an individual random password with PowerShell
- Retrieve Active Directory subnets with PowerShell
- Editing users of other domains – with PowerShell
- Azure Basics: Connecting with Azure (PowerShell)
- PowerShell Custom Objects
- Logon Script does not start on Windows Server 2012 R2 domain
- IsMember – Check group membership in Active Directory
- Dynamic OU Groups – Assign Permissions to OUs