With the advent of Read Only Domain Controllers (RODC) remote offices no longer have to present a risk for your Active Directory (AD) enterprise secrets. RODC's by default do not cache ANY user or computer passwords. This can present a problem if there is a loss of connectivity between the remote site's RODC and a Read … Continue reading "RODC – Password Replication Policy and Password Cache Management"
Better known as MCITP
It’s been quiet on this blog these last few months. I feel I still have many interesting stuff to share with you, but I decided to put that on hold and focus on some other areas. My certifications really needed attention, since my latest Microsoft certification dated back to 2001.
Active Directory Time Sync (broken by default)
Active Directory relies on accurate time for a number of reasons. One of this reasons is Kerberos authentication, which by nature can only cope with a difference in time (time skew) of five minutes between the Kerberos server and client. Now, don’t get me wrong. I think the time skew limitation and the overall Kerberos … Continue reading "Active Directory Time Sync (broken by default)"
KMS Server won't activate additional servers
I have had my KMS server up and running for several years without any problems. Recently I was working on a new 2008 Standard Server and it wouldn't activate. I attempted to first use the standard GUI on the Windows Activation screen. I was even surprised it popped up since KMS usually just works. I selelcted … Continue reading "KMS Server won't activate additional servers"
NGN Windows Server 2008 R2 Day
On Wednesday October 13, 2010 the Dutch Networking User Group (NGN) organizes a day filled with sessions on Windows Server 2008 R2. Of course, (being down-to-earth Dutch guys) they call the event the Windows Server 2008 R2 day. I’m proud to be selected as one of the four speakers. I’ll be speaking on Active Directory, … Continue reading "NGN Windows Server 2008 R2 Day"
I’m attending Tech·Ed Europe 2010, are you?
Since I’ve shared some key information on Tech·Ed Europe 2010 earlier, I guess you’ve already concluded I’ll be attending Tech·Ed Europe this year. Together with two colleagues (Roland Zenhorst and Dave Stork) I’ll be staying in a triple room at the abba Berlin hotel ****. We’re flying in on Sunday November 7, and flying back … Continue reading "I’m attending Tech·Ed Europe 2010, are you?"
Vote for your favorite new Windows 8 features!
With Microsoft planning for the next version of the Windows Desktop, collectively referred to as Windows 8, promising to supersede Windows 7 and Windows XP together, some of us feel a need to chip in. Here’s your chance! Together with Michael Pietroforte and a bunch of other Microsoft MVPs and insiders, we’re running … Continue reading "Vote for your favorite new Windows 8 features!"
Adding claim mapping to existing provider in SPS 2010, part deux
While ago I wrote short entry about adding new claim mapping to existing definition of identity token provider. After this post I got following comment from one of readers (good that I still have some of them here 🙂
Changing the Weight and Priority of a Domain Controller Within a Site
If you have multiple domain controllers (dc) within a site and you would like to have one of these dc's refered to more often or only if no other dc is available. Selection of a dc within a site is controlled by both the weight and priority. Weight of a Domain Controller By default all dc's … Continue reading "Changing the Weight and Priority of a Domain Controller Within a Site"
Server Manager in Windows Server 2008 R2, Part 3
What started with the Configure your Server wizard and the introduction of Server Roles in Microsoft Windows 2000 Server, resulted in the tangible value of the Initial Configuration Tasks wizard (oobe.exe) and the Server Manager (servermanager.msc) in Windows Server 2008 and Windows Server 2008 R2. Part 1 and Part 2 of this series focused on … Continue reading "Server Manager in Windows Server 2008 R2, Part 3"