Deny RDS
Deny RDS KB ID 0001825 Problem Way back when I started doing tech (in the days of Novell 4 and NT4), my mantra was, if you must deny something then you’ve done something wrong. Now I work for a UK based MSP that offers SPLA licensing to clients. Unlike typical RDS licensing, With SPLA this requires every ‘capable’ AD user that ‘can’ RDP onto a server (regardless of it’s a Session Host RDS Server or...
Auto Update ADMX Files
Auto Update ADMX KB ID 0001824 Problem It’s been a long time since I ran through setting up a central policy definitiosn store. In that time, you’ve probably had to copy ADMX (and ADML) files into your central store manually. Microsoft updates typically DO download updates but puts them (usually) in C:\Windows\PolicyDefinitions, There’s probably a sensible reason for that. When someone cleverer than I has scripted...
Windows LAPS
Windows LAPS KB ID 0001822 Problem We used to have Microsoft LAPS, now we have Windows LAPS! LAPS is a solution that lets’ you store admin passwords ‘elsewhere’ be that in your local Active Directory or Azure Active Directory*. Unlike previously, where you had to deploy/install client software, it’s now built into Windows from the following versions. Windows 11 22H2 – April 11 2023 Update Windows 11 21H2...
NameSpace ‘Microsoft.Policies.WindowsStore’ Error
Microsoft.Policies.WindowsStore KB ID 0001817 Problem While working in the Group Policy Management tool, upon expanding administrative templates I got this error. Namespace ‘Microsoft.Policies.WindowsStore’ is already defined as the target namespace for another file in the store. Solution: Microsoft.Policies.WindowsStore Error This is because in your policy definitions there are two (four actually) files that are pointing...
Restore AD Objects
Restore AD Objects KB ID 0000096 Problem Ever since we had Server 2008 R2 we have had the AD recycle bin (which is not enabled by default). Even if you have not enabled the AD Recycle bin, when objects are deleted from AD they are not completely ‘deleted’ they are simply tombstoned, and they can be restored (for 180 days). Note: Those object’s when restored WILL lose some of their attributes though! CAN I RESTORE AD...
Upgrade Azure AD Connect
Upgrade Azure AD Connect KB ID 0001813 Problem On 15th March 2023 support for the following Azure AD Connect sync versions will be removed; 2.0.91.0 2.0.89. 2.0.88.0 2.0.28.0 2.0.25.1 2.0.10.0 2.0.9.0 2.0.8.0 2.0.3.0 So plan in some maintenence and upgrade yours, at time of writing the current version is 2.1.20.0, so you can still upgrade if you running an older version. Upgrade Azure AD Connect: Solution Before you start it’s...