Cisco ASA Domain Authentication and Trust (Allowing)
ASA Domain Authentication KB ID 0000973 Problem I cringed this morning when I was asked about this, last time I had to get a client to authenticate to a domain through a firewall, it was ‘entertaining’. The problem is Windows loves to use RPC, which likes to use random ports, so to make it work you either had to open TCP ports 49152 and 65535 (Yes I’m Serious). Or you had to registry hack all your domain controllers...
Add a 2012 Domain Controller to a 2008 Domain
KB ID 0000680 Problem This is considerably less painfull than adding a 2008/2008 R2 domain controller to a 2003 domain was. You dont have to maually prep the schema on the schema master, or run forestprep and domainprep. The wizard does everything for you. Solution 1. Launch server manager from the taskbar > Select Local Server > Manage > Add Roles and Features. 2. Role Based… > Next. 3. Select local server >...
Locate your FSMO Role Servers
KB ID 0000221 Problem You would like to know which servers are holding which roles. To move your FSMO Servers CLICK HERE Solution FSMO Servers There are five FSMO (Flexible Single Master Operations) Roles that need to Exist in a Windows AD Forest. PDC Emulator (One per domain) RID Master (One per domain) Schema Master (One per forest) Domain Naming Master (One per forest) Infrastructure Master (One per domain) But I’ve Googled...
Deploying a Windows Server 2008 Domain Controller in a Windows 2003 Domain
KB ID 0000239 Problem Before you can add a Windows Server 2008 Domain Controller to a Windows Server 2003 Domain you need to carry out some preparation, this can be done during working hours, as the process only has a slight performance hit no one will notice there is work going on. Solution Before you start, have a good look round your existing domain controllers, get the latest service packs and updates installed. Have a good look...
Transferring Your FSMO Roles
FSMO Roles KB ID 0000240 Problem Note: This article is still valid, but this procedure can now be done simply with PowerShell. Windows Server – Locating, Transferring, and Seizing FSMO Roles If you are replacing a domain controller, or simply taking one offline for a while, you might want to transfer its FSMO roles to another Domain Controller. There are 5 FSMO roles which are, · Schema master – Forest-wide and one per forest. ·...