Password hash synchronization is not working
I am switching from ADFS authentication to Password Hash Synchronization. I have enable the PHS successfully on AAD Connect sync and it was successful. I have changed the authentication method to PHS. However, when I tried to login to M365 portal, I get…
Microsoft 365 keeps Ask Password Prompt
Hi, We use Microsoft 365 business apps and have over 150 on-premises systems that are Joined in Active Directory Domain. The majority of systems require a password every time they are rebooted. It started a few days ago, and it happened repeatedly. when…
AZUREADSSOACC Key Rollover no longer works using Hybrid Identity Administrator creds
Hi I use a PowerShell script in an Azure Hybrid Worker Runbook to automate the rollover of the Kerberos decryption key for the AZUREADSSOACC computer account. It uses a service account in Entra ID which is assigned the Hybrid Identity Administrator…
Need to get access token using azure function app to run the SharePoint Rest API
Hi, I have created Azure app and provided all the required application permissions to the app Eg: Sites.ReadWrite.All. below is the code where i am using the in the function app I need to get the Obtained_code from the authoraizationURL. and it should…
Need some help to target the Group Policy to enable the NTLM audit?
I must audit any computers still using NTLM v1 in my AD Domain. Do I need to enable these group policies for all Windows servers and workstations in my AD Domain or just the Domain Controllers? Computer Configuration\Windows Settings\Security…
Procedure for enabling and configuring the LDAPs feature for the existing Domain Controllers globally.
I need to globally configure the LDAPS feature in over 20 on-premises Domain Controllers/Global Catalogs to support new security software integration. My existing AD Domain controllers are Windows Server 2016 with Windows Server 2016 FFL/DFL. What steps…
Add Manager Attribute with different Domain Active Directory
Hi Everyone and Support, Really need your help to solve this solution. Two domains already fully trusted and Authentication in all forest, permission already verify. I have two domains. As example Domain A and Domain B, some users in Domain B need to…
How to renew/request a new certificate with same key if the active directory certificate is expired without impacting any services?
How to renew/request a new certificate with same key if the active directory certificate is expired without impacting any services?--
IIS and Domain Certificate
Hi, I am currently in training and working on a LAB (Hyper-V) in a Microsoft environment. I am encountering an issue with SSL certificate validation on an IIS server running on Windows Server 2019 and 2022 (I have tested both). Two virtual machines,…
Azure AD B2C: Multi-Tenant Entra ID automatically enable accounts
I have followed this tutorial to set up sign-in for multitenant Microsoft Entra ID using custom policies in Azure Active Directory B2C. Everything is working except all newly created accounts are disabled by default. I would like to have all new…
Stuck with AD DS Config Wizard
Hi, There are 2 AD DS in a domain X. One is left over from a previous AD DS FSMO in domain X that is no longer existing. The other is a new AD DS to be built in the same domain X. Since days I'm stuck at the AD DS Config Wizard - "Select the…
How connect from AWS DMS to a remote Microsoft SQL Server using windows authentication as login method
Hi I need to connect to a remote server, this server allows only windows authentication, when I try to connect usign python Im able to log in and run queries using pymssql from my computer on the company domain. import pymssql conn = pymssql.connect( …
Hybrid environemtn - SSO not working
Hi, We have a Hybrid environment, and are trying to auto enroll our Hybrid joined machines to Intune. I have created a GPO and linked it to the machines It seems to work for some, but many fails. When I check dsregcmd I get the following EntraID…
No renewal event (1001) - Key Vault Virtual machine extension
How can I troubleshoot linkOnRenewal (IIS Certificate Rebind) using the Windows version of KV virtual machine extension? When I create a new version of the certificate in KV, then it installs cert but there is no renewal (1001) event in Windows Event…
Remove Exchange 2019
Hi, I had exchange 2019 in my network, but for some reason, I had to install a new exchange 2019 in my network and all mailboxes moved from the previous exchange to the new exchange. the previous exchange has been powered off for some months. so how can…
No persons returned from SuccessFactors. Ensure that the account used has sufficient permissions to query the PerPerson entity.
Hello, Team I have a problem with the provisioning with SAP SuccessFactor with Active Directory Integration, rigth now I have this message in the Audit Logs when restarting the provisioning service. First Message: No persons returned from…
DFSR File server replicating same files. Weird problem!
Hello everyone, I am facing a very weird problem. I had a file server called FS01 in Azure with a 6TB share in windows server 2012 r2 and a new one FS02 on prem with windows serve 2019. I added the FS02 on the DFSR and the folder replicated from FS01. I…
How to migrate mail from mdaemon to office 365
Dear team, My client want to migrate mail service from MDaemon to Office 365. With existing environtment have active directory windows server 2012 that sync with mdaemon and sso they don't want to upgrade active directory for now and expect they will…
Unable to Access Windows Server 2019 Datacenter Using Azure Active Directory User
I am facing an issue while attempting to access a Windows Server 2019 Datacenter instance using an Azure Active Directory (Azure AD) user. Despite configuring various settings on the server, I encounter an error stating "the username or password is…
Users are not synching well from on-premise to Entra connect(Azure) and can't apply soft matching
I have an Office 365 with its services including the Azure, and I have an on-premise server with a Windows server and applied an AD with the same domain as the one on our office 365. I want to sync between the users from on-premise to Azure, so when make…