Skip to Content

Category Archives: Migration and Integration

Migration and Integration

Knowledgebase: In-place Upgrading Domain Controllers to Windows Server 2019 while still using NTFRS breaks SYSVOL Replication and DSLocator

Written on April 10, 2019 at 1:29 PM, by

In a domain that is configured to use the File Replication Service, the SYSVOL folder is not shared after you in-place upgrade a Windows Server 2019-based Domain Controller from an earlier version of Windows. Until this directory is shared, Domain Controllers do not respond to DCLOCATOR requests for LDAP, Kerberos, and other Domain Controller workloads. […]

Default checks to perform when implementing Hybrid Identity, Part 4: Groups with large memberships

Written on July 14, 2016 at 7:00 PM, by

Microsoft has introduced an impressive array of technologies and an awesome vision on Hybrid Identity: Their vision entails seamless access to corporate resources, services and applications for people, no matter where these resources, services and apps are located (either on-premises or in the cloud) while in the mean time allowing for strong authentication and granular […]

Default checks when implementing Hybrid Identity, Part 3: Linked Mailboxes

Written on March 14, 2016 at 7:46 AM, by

Microsoft has introduced an impressive array of technologies and an awesome vision on Hybrid Identity: One of the parts of your organization’s journey in implementing Hybrid Identity, might be to migrate from DirSync to Azure AD Connect with Azure AD Sync. After you export and import the configuration,  you might expect to see the same […]

KnowledgeBase: Important Issues in Windows Server 2016 Technical Preview 2 (Release Notes)

Written on May 5, 2015 at 10:29 AM, by

At the same time Microsoft released the Windows Server 2016 Technical Preview 2 bits to MSDN subscribers, they also released the Release Notes on a page on the Microsoft Download Center. On this page you can view the critical issues, that have currently been identified, that might require avoidance or workaround to get Windows Server […]

Checking replication of raising the Domain Functional Level to Windows Server 2008 in a pragmatic and programmatic way

Written on April 3, 2015 at 3:01 PM, by

I’ve referred to the Windows Server 2003 Domain Functional Level (DFL) as the ‘golden’ functional level a couple of times. Dave has a blogpost where he concludes the same from an Exchange Server point of view. However, from an Active Directory point of view, the Windows Server 2008 Domain Functional Level (DFL) gains much traction […]

Advances in Active Directory since Windows Server 2003

Written on January 12, 2015 at 10:25 AM, by

In six months time, on July 14 2015, Microsoft ends the extended support for Windows Server 2003. After 11 years and 6 months (Windows Server 2003 became generally available on May 28th, 2003) the plug is pulled on updates to the product and the support information on TechNet, MSDN and its KnowledgeBase. Running Active Directory on Operating […]

Is your organization ready for Windows 8.1? Part 15, Roaming Profile incompatibilities

Written on April 23, 2014 at 2:36 PM, by

In extensively managed networking environments, devices are generally domain-joined and employees gain mobility across these devices through folder redirection, offline files and roaming profiles. VPN access is mostly available, but when looking closely you might distinguish the occasional DirectAccess implementation. In these environments, mobility over several devices, for instance a desktop and a laptop, often, […]

I’m still an ADPrep kinda guy

Written on January 24, 2014 at 11:40 AM, by

In Windows Server 2012, Microsoft introduced the new streamlined Active Directory Domain Services Configuration Wizard, that in most Microsoft documentation is labeled the successor to dcpromo.exe. I’m a big fan of the new wizard, but there’s one feature I don’t use: the automatic Active Directory preparation steps it can perform for you to update the […]

Transitioning your Windows Server 2003 Domain Controllers to Windows Server 2012

Written on January 21, 2014 at 9:06 PM, by

Your organization might still be running their Active Directory Domain Services on top of Windows Server 2003-based Domain Controllers. You might be looking to replace these servers with Windows Server 2012-based Domain Controllers, either to utilize the new features, make the most out of your virtualization project or to simply do away with the aging […]

Cross-forest Migrating Dynamic Access Control

Written on December 30, 2013 at 1:25 PM, by

Six months ago, I wrote on 10 Things you need to be aware of before deploying Dynamic Access Control. As point 8, I told that the Active Directory Migration Tool (ADMT) does not support cross-forest migrating Dynamic Access Control (DAC). As an Active Directory admin, ADMT, obviously, would be the first tool to look you […]