Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [domain-controller]

A domain controller is a server in a Microsoft Active Directory or NT4 domain that is responsible for central authentication.

In Microsoft Active Directory and NT4 domains, a domain controller is the central repository for all of the user account authorization information. It allows a person to sign on once and be allowed access to many different resources.

1589 questions
10
votes
2 answers

Demoted domain controller still authenticating users

Why is a demoted domain controller still authenticating users? Whenever users log onto workstations with domain accounts, this demoted DC authenticates them. Its security log shows their logons, logoffs, and special logons. Our new DCs' security…
Eric Eskildsen
  • 243
  • 3
  • 14
10
votes
1 answer

In a multi-domain forest, what EXACTLY happens when some, but not all, of the Infrastructure Masters are on Global Catalogs?

There are plenty of TechNet articles, like this one that say that phantom object don't get updated if an Infrastructure Master is also a Global Catalog, but other than that there isn't a lot of in depth information on what actually happens in this…
MDMarra
  • 100,734
  • 32
  • 197
  • 329
10
votes
7 answers

Can a Linux server serve as a Domain Controller for Windows Machines?

In a small office setup (5-6 employees) we have seven Windows XP and Windows Vista clients, as well as a couple of linux servers. Is it possible to set up a linux machine to act as the domain controller to provide single signon and AD-like…
kdmurray
  • 549
  • 3
  • 8
  • 19
9
votes
2 answers

Backing up DC for a catastrophic case

I've been setting up off-site backups for the most critical elements of the company I work at. One of these critical elements is the DC. Now, the company is fairly small, so has only a single forest, and two DC servers on separate physical machines…
MBender
  • 381
  • 2
  • 8
  • 25
9
votes
2 answers

Domain Controller offline for a few days

My primary domain controller died over the weekend, its motherboard is being replaced tomorrow. I have been told that the mac address of the server may change once the new motherboard is installed. What issues should I be concerned about before I…
Simon Foster
  • 2,622
  • 6
  • 38
  • 55
9
votes
2 answers

How do Windows domain clients behave if the domain controller is offline?

If I have Windows PCs that are joined to a domain and the domain controller goes offline, what kind of behavior can I expect on the clients (assuming there is no second DC?) Will users be able log on? Or perhaps a better question, how does login…
user189133
9
votes
1 answer

Procedure for rebooting Domain Controllers?

We have several servers running as Domain Controllers, "DC01", "DC02", and "DC03". For some reasons, we need to reboot them. Is there a specific procedure to follow? Additional info: "DC01" currently holds all FSMO roles. Should I transfer the roles…
pepoluan
  • 5,038
  • 4
  • 47
  • 72
9
votes
3 answers

How to temporarily stop time syncing with domain controller?

I wish to do some testing on my local machine which requires me to put the date forward a year. So I can test some stuff in SQL Server (i've found it not possible to override the sql server time). However because I'm connected to a domain, I believe…
Alex KeySmith
  • 721
  • 2
  • 10
  • 19
9
votes
2 answers

Force Windows server to use specific Domain Controller

Is there a way I can set an OWA server in my DMZ to talk to a DC in the local site? The DMZ is located at the same (physical) site as a LAN with DCs on it. (There is no DC in the DMZ.) Can I force it to use a DC on this (local) subnet, as its…
Ben
  • 1,137
  • 9
  • 26
  • 44
8
votes
1 answer

AD Replica DC Promotion Stall

I recently inherited infrastructure duties for a small startup I am working with. My traditional role has been development, so bear with me... I was hoping to start off on the right foot, and get Active Directory up and running in Azure. I have…
Mark L
  • 81
  • 4
8
votes
3 answers

Server 2012 R2 Active Directory Domain SRV dns records suddenly disappeared

I have a test domain that I recently configured. All of a sudden, no users can log in except those with cached credentials. The domain includes two domain controllers that are both global catalogs that replicate to each other. After investigating…
Super1337
  • 474
  • 2
  • 4
  • 9
8
votes
2 answers

Resetting DC Password from DSRM

How can I reset my DC's password? I am able to login to the server in Directory Services Restore Mode. I tried pulling up AD DS Users and Computers from there, but it does not appear that it will load anything about domain users.
cmorris14
  • 181
  • 2
  • 3
  • 11
8
votes
1 answer

Why would a domain controller encouter a USN rollback after an unclean shutdown?

I have this Windows Server 2008 R2 domain controller running on a physical Dell server, model PowerEdge R510. There are some electrical problems around here, thus a black-out is, unfortunately, quite a common occurrence; there are UPSes, but they…
Massimo
  • 70,200
  • 57
  • 200
  • 323
8
votes
1 answer

Which firewall ports do I need to open in order for a domain trust to work?

I have two Active Directory domains in two different forests; each domain has two DCs (all of them Windows Server 2008 R2). The domains are also in different networks, with a firewall connecting them. I need to create a two-way forest trust between…
Massimo
  • 70,200
  • 57
  • 200
  • 323
8
votes
2 answers

Use Google Apps/Cloud Services as a Domain Controller Replacement

This is a Canonical Question about Cloud Services replacing Active Directory. Is it possible to use Google Apps or another Cloud Service as a replacement for a Windows Domain Controller (replacing my whole AD infrastructure)? Specifically, I want…
user124548
1 2
3
99 100