Disable NTLM
Jul02

Disable NTLM

Disable NTLM KB ID 0001880 Problem NTLM (NT LAN Manager) is a suite of Microsoft security protocols intended to provide authentication, integrity, and confidentiality to users in a network. It is an older protocol that has been largely replaced by Kerberos, (since Server 2008 and windows Vista!) In modern Windows environments due to its enhanced security features. NTLM is a challenge-response authentication protocol used to...

Read More
Domain Replication Issues – Fix Replication Issues
Jun27

Domain Replication Issues – Fix Replication Issues

Fix Replication KB ID 0000301 Problem You have one or more domain controllers in your Windows domain that is not replicating to one or more replication partners. Fix Replication Issues: Solutions Fix Replication Issues Step 1 DNS First! Before you start make sure all the domain controllers are pointing the PDC emulator ONLY for their DNS settings. 1. On the PDC emulator > Start > run > dnsmgmt.msc {enter}. 2. Expand...

Read More
Remove Failed DC from Active Directory
Mar26

Remove Failed DC from Active Directory

Remove Failed DC KB ID 0001860 Problem To remove a ‘dead’ domain controller from Active directory you need to perform a metadata cleanup. In the context of Microsoft’s Active Directory, metadata cleanup refers to the process of removing remnants of a failed or improperly demoted domain controller from the Active Directory database. Active Directory is a directory service that stores information about objects on a...

Read More
Migrate to Microsoft Entra Connect
Mar14

Migrate to Microsoft Entra Connect

 Migrate to Microsoft Entra Connect KB ID 0001857 Problem You want to migrate from Microsoft Azure AD Connect to Microsoft Entra ID connect. Let me let you into a secret, (at time of writing) Entra ID connect and Azure AD connect ARE THE SAME THING, if you go to download Entra ID connect, the file you will download is called AzureADConnect.msi. So what you want to do is, upgrade Azure AD Connect. If your existing Azure AD connect is...

Read More
Exclude One Computer from GPO
Feb12

Exclude One Computer from GPO

Exclude One Computer from GPO KB ID 0001852 Problem You have a requirement that you want one computer (or a group of computers) NOT to have a specific GPO applied. If that is the case, then this is how to simply achieve that goal Note: The same procedure can be used to Exclude a GPO from one user (or a group of users). Solution : Exclude One Computer from GPO Let’s find the computer in question, in my case it’s called PNL-ZERTO-2022,...

Read More
Considerations Before Upgrading Functional Levels
Feb06

Considerations Before Upgrading Functional Levels

Upgrading Functional Levels KB ID 0001851 Problem For over twenty years, I’ve been involved with domain migrations, and I’ve had to upgrade both domain and forest functional levels thousands of times. I’ve also had to deal with many clients who were somewhat nervous when they knew that I was updating, their forest and the domain functional levels. I’m not sure if it’s just embedded in IT folklore that something horrible might happen,...

Read More