An Invalid Directory Pathname Was Passed
Jul28

An Invalid Directory Pathname Was Passed

KB ID 0001338 Dtd 28/07/17 Problem While attempting to delegate administration of an OU, I got this error; Delegation of Control Wizard The wizard cannot retrieve security information from the Active Directory. An invalid directory pathname was passed. Solution Took a while to figure out! The OU in question has a ‘slash’ in the name of it; Once I changed this to a hyphen, the error ceased. Related Articles, References,...

Read More
Using LDP to Find an Objects ‘Distinguished Name’ in Active Directory
Jul27

Using LDP to Find an Objects ‘Distinguished Name’ in Active Directory

KB ID 0001337 Dtd 27/07/17 Problem There are a few occasions when you need to know an objects ‘Distinguished Name’ (DN). For me it’s usually when I’ve got a device that needs to do LDAP/LDAPS lookups, (RSA Appliance, Netscaler, Cisco FirePOWER, etc). Today someone needed to ‘bind’ a Checkpoint firewall to Active Directory, and asked me to create user, and give them the DN and password. I’ve...

Read More
Windows – Unable to Move an OU
Jul26

Windows – Unable to Move an OU

KB ID 0001336 Dtd 26/07/17 Problem I was doing some AD redesign work for a client this week, and I needed to move an Organisational Unit (OU). However the domain had other ideas; Active Directory Domain Services Windows cannot move object {OU-Name} because: Access is denied. It wasn’t a rights issue, (I was an Enterprise Administrator).    Solution As it turns out, it was the same problem I’d had back when Server 2008...

Read More
Windows 10 – Disable / Remove OneDrive
Jul17

Windows 10 – Disable / Remove OneDrive

KB ID 0001328 Dtd 17/07/17 Problem Microsoft have done a good job of embedding OneDrive into Windows 10. While Ive got nothing against OneDrive, for some admins the thought of users storing data out of their networks is quite worrying. So how do you ‘un-couple’ OneDrive from Windows 10? Solutions Option 1: Remove OneDrive ‘Quick and Dirty’ Open ‘Regedit’ and navigate to; HKEY_CLASSES_ROOT > CLSID...

Read More
Cisco FirePOWER Management Center Appliance – Allowing Domain Authentication
Jun28

Cisco FirePOWER Management Center Appliance – Allowing Domain Authentication

KB ID 0001117 Dtd 28/06/17 Problem Once deployed, authentication is handled by the appliances own internal user database, in larger organisations this is a little impractical. So the ability to create an Active Directory Group, and delegate access to Firesight to members of that group is a little more versatile. Solution I’m making the assumption that the appliance does not already have external authentication setup at all, so...

Read More
Microsoft PKI Planning and Deploying Certificate Services Part 3
May15

Microsoft PKI Planning and Deploying Certificate Services Part 3

KB ID 0001312 Dtd 15/05/17 Problem Following on from Part Two, now we have an offline Root CA, and a CRL server, our next step is defined by our PKI design, are we three tier, or two tier? (Look in Part One for a definition). Solution As previously mentioned, Microsoft just treats Intermediate CAs and Issuing CA’s as the same thing (SubCAs). So the next step is identical for either. But I would suggest one difference, If I was...

Read More