Great news the Directory Services team has released ADMT for Server 2012/2012 R2. http://www.microsoft.com/en-us/download/details.aspx?id=19188
See also Part 1: A New Beginning When using Zarafa there are several possible directory services you can use for authentication. I will restrict this post to situations relevant to Active Directory (AD) integration. Even if you did not use Active Directory (or Zarafa for that matter) previously, I believe this post still contains valuable … Continue reading "From open source groupware solution Zarafa to Exchange: Part 2, Active Directory"
Recently I was given a server in a rush situation to promote a new DC. When I attempted to add the DC role the following error popped up "Update DirectoryServices-DomainController of package DirectoryServices-DomainController-Package failed to be turned on. Status: 0x80070bc9."
This blog series will describe my experiences and lessons learned from migrating the Zarafa Groupware solution to Microsoft Exchange, specifically Exchange Server 2013. I've done this twice now and although some things are quite obvious, there are some gotchas and it might be a daunting endeavor. A normal transition from Exchange to Exchange already requires … Continue reading "From open source groupware solution Zarafa to Exchange: Part 1, A New Beginning"
I ran across an issue the other day that had me scratching my head and calling PSS to try and track down the problem. For some reason we had members of a security group that were inconsistently being denied access to RDP to our SQL servers. There is a special group the SQL DB's belonged … Continue reading "Inconsistent Membership of a Security Group"
If you have ever run dcDiag and ended up with the error output as follows
So I have been banging my head against a wall trying to figure out why I have been getting these crazy errors in dcDiag. From all that I can tell replication is working as expected but yet I am getting errors that are mostly undocumented and difficult to find out any real information on. Starting … Continue reading "Unexplained dcDiag Errors"
To prevent having to restore objects from Active Directory due to accidentally deleting an object, you can have a remote DC which only sends/receives replication on a limited basis. You also want to prevent users from authenticating against, as well as services being used by other machines, since the metadata on this DC is aging … Continue reading "How to Build an AD Replication Delay (Lag) Site"
— (Note: This is a copy from another site and at this time my snapshots are missing)— Microsoft’s Preupgrade check list Before upgrading AD verify all current applications are compatible Verify you are on the correct version for 2008 For example, does your SAN at its current release support 2008 Does the version of Exchange you … Continue reading "Upgrading AD from 2003 to 2008"
If you have a hub and spoke site topology, it may not be a good idea for certain (Or all) spoke dc’s to be advertising, via dns services, the ability to provide authentications services. If you have a remote site with a dc that fails it is usually best that the spoke send its users … Continue reading "Preventing Spoke DC’s from Advertising in the Hub Site for Authentication Availability"