The Directory Services Restore Mode (DSRM) password is first set when promoting a new Domain Controller. I have encountered many Active Directory environments where the DSRM password for the Domain Controllers is not known or safely stored for retrieval when needed. In this article I revisit the options to reset the DSRM password.
Hi, I am Jyoti Prakash, part of SI IGD, based out of Bangalore, India. This blog gives you a glimpse of what Intune Graph API is all about and how to use it. What is Graph API? The Microsoft Graph API for Intune enables programmatic access to Intune information for your tenant; the API provides … Continue reading How To: Graph API to export Intune Managed Devices
Due to the COVID-19 outbreak, most employees are now working from home. Many of these employees are not making use of any VPN solutions to connect to the corporate network. Some of the most frequent questions we receive since the shift to remote work are related to secure channel / machine account password changes.
A blog on how to automate creation and upload of Intune Win32 (.IntuneWin) packages
Recently, one of our bigger clients had request to migrate from old to new Print servers. This task also involved re-mapping printers on user side. So far the printers had been mapped manually and in the company with 10000+ users and over 1000 print queues spread over 3 Print servers this would be very difficult … Continue reading Re-mapping large number of printers with PowerShell
Introduction Way back when your AD integrated DNS zone data lived inside of the naming context in AD (next to your users and computers) you could protect it from accidental deletion just like any other object. But this can cause a problem years later when you want to move these zones to their own application … Continue reading Field Notes: Error when changing DNS replication scope
I have been using Group Managed Service Accounts (gMSA) more frequently and decided to post a refresher on the creation of gMSA accounts. I still find that customers are not making use of these service accounts and use standard accounts with fixed passwords instead. In this blog I will highlight the benefits of using a gMSA account and show the steps to create and update a gMSA account
Learn how to use PowerShell to dump a full list of possible EventID's from many Windows logs
In this blog post, we will deal with March 10 Windows Update and its expected changes regarding LDAP Channel Binding and LDAP Signing. What is LDAP Signing? Is it safe to configure Channel Binding Token? And how can I be sure that LDAP clients will continue to work properly after installing the update? Let's try to answer all of these questions.
Introduction I was working with a customer recently who could not get clients or servers at a new remote site to activate using Active Directory Based Activation (ADBA). They were getting event ID 8214 as in the image below. Notice in the above where I bold the computer name Client1.Child1.Contoso.local. This means that Client1 is … Continue reading Active Directory Based Activation (ADBA) Fails with Error: 0x8007202B