Azure AD Connect | Verify password sync for single user

I recently received a query from a customer asking if there was a way to determine when last a user’s password was synchronized. Upon receiving further details, it became clear that they suspected an issue with password synchronization for a specific user. There is an easy way to verify password synchronization for a single user.

Microsoft Edge: Configure IE Mode (Part 2)

IE Mode on Microsoft Edge provides compatibility for legacy sites that require Internet Explorer 11. IE Mode enables users to access modern and legacy sites using a single browser. Users no longer need to switch between browsers to access legacy intranet sites. IE mode supports ActiveX controls such as Java and Silverlight, and it also supports Internet Explorer settings and group policies that affect Protected Mode and security zone settings. In this final post of the two-part series, I will create the Enterprise Site Mode List XML file and test the configured sites to confirm that the specified sites can be successfully opened in IE Mode on Microsoft Edge.

Roll over Kerberos decryption key for Seamless SSO computer account

Updating the Kerberos decryption key for the Azure AD SSO computer account is a fairly simple process. In this blog post I walk through the steps to perform an update of the Kerberos decryption key.

Microsoft Edge: Configure IE Mode (Part 1)

IE Mode on Microsoft Edge provides compatibility for legacy sites that require Internet Explorer 11. IE Mode enables users to access modern and legacy sites using a single browser. Users no longer need to switch between browsers to access legacy intranet sites. IE mode supports ActiveX controls such as Java and Silverlight, and it also supports Internet Explorer settings and group policies that affect Protected Mode and security zone settings. In part one of this two-part series, I will configure IE Mode using Group Policy and Microsoft Intune.

Active Directory Overlapping subnets and conflicting sites

Overlapping subnets and conflicting sites in AD can create unexpected scenarios. Here is how to clean them up.

Mapping IP Addresses to Active Directory Sites and Subnets

Service Map can show you which clients are connecting to your DC, now how do we find which sites they belong to?

Infrastructure – Hybrid Cloud Print – Publish Printers Powershell

The Issue I recently had the opportunity to build a Hybrid Cloud Print Solution. If you have never built this before, it isn't hard but there are a lot of moving parts. Stay close to our official document - https://docs.microsoft.com/en-us/windows-server/administration/hybrid-cloud-print/hybrid-cloud-print-deploy By not deviating from the above document you not only make your own life easier, … Continue reading Infrastructure – Hybrid Cloud Print – Publish Printers Powershell →

How to reset the Directory Service Restore Mode (DSRM) password

The Directory Services Restore Mode (DSRM) password is first set when promoting a new Domain Controller. I have encountered many Active Directory environments where the DSRM password for the Domain Controllers is not known or safely stored for retrieval when needed. In this article I revisit the options to reset the DSRM password.

Azure AD Alternate Login ID – Use your e-mail address (preview).

Introduction For logging into office 365 services, and you are syncing your users from on premises AD via Azure AD Connect, Microsoft has always recommended changing your users UPNs to match their e-mail address. 2 of the main reasons for this are: You can not use non routable domains in Azure AD. So domain.local will … Continue reading Azure AD Alternate Login ID – Use your e-mail address (preview). →

Machine account password expiry while working remotely

Due to the COVID-19 outbreak, most employees are now working from home. Many of these employees are not making use of any VPN solutions to connect to the corporate network. Some of the most frequent questions we receive since the shift to remote work are related to secure channel / machine account password changes.