Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [domain-controller]

A domain controller is a server in a Microsoft Active Directory or NT4 domain that is responsible for central authentication.

In Microsoft Active Directory and NT4 domains, a domain controller is the central repository for all of the user account authorization information. It allows a person to sign on once and be allowed access to many different resources.

1589 questions
6
votes
4 answers

Risks of having only one domain controller

Are there any risks besides downtimes, if there is only a single domain controller for a small company? I did some research and everyone recommends at least two domain controllers, but I can't find a real reason why it is so important to have more…
JPS
  • 121
  • 1
  • 5
6
votes
5 answers

Problem when trying to change to a different DNS source for Active Directory

This may be a completely stupid question, but I'm really new to Windows Server 2003. If this is something I should be able to figure out on my own, just point me in the right direction. I have no idea where to start though. Right, our domain…
umiwangu
  • 61
  • 3
6
votes
3 answers

What are the drawbacks of making all of my windows servers domain controllers?

As the question states, what are the drawbacks of making every capable Windows 2003 or 2008 Server in my organization a domain controller for the domain? Is it just overkill? Will many 3rd party applications explode? Something else I'm not…
NinjaBomb
  • 159
  • 2
  • 5
  • 17
6
votes
1 answer

DC Replication Broken - RC4

We recently changed the Group Policy setting "Network security: Configure encryption types allowed for Kerberos" to only include AES-128, AES-256, and Future Encryption types, removing the old selection that had RC4 enabled. The domain is a 2008 R2…
m314
  • 63
  • 3
5
votes
2 answers

Multiple AD domains for different hotels of the same chain?

I am inheriting existing infrastructure for a hotel group, and trying to overhaul said infrastructure. The hotels (HotelA, HotelB, etc) were initially set up with one domain (and one domain controller) each. This is somewhat difficult to manage…
ryanswj
  • 71
  • 1
  • 2
5
votes
1 answer

Moving domain controller to private AWS subnet. It'll have a new IP address. How will member servers find it?

I have five AWS servers on a public subnet of a single VPC, each with its own elastic IP address. The subnet is 10.0.0.0/24. One server is a Win2016 domain controller. The remaining four are Win2016 members of that domain. I'd like to reorganize…
Festus Martingale
  • 225
  • 1
  • 7
5
votes
1 answer

What to use on Windows Server 2008 since NETDIAG isn't supported?

I need to troubleshoot some DNS issues on a Windows 2008 domain controller, but I see that NETDIAG isn't supplied or supported anymore. I could just copy it from a Server 2003 DC, but it looks like the output wouldn't be reliable. Everywhere I look…
SqlRyan
  • 906
  • 5
  • 14
  • 22
5
votes
3 answers

Is a Samba PDC a reasonable choice for small business?

I recently had somebody ask me for advice about setting up a Samba PDC for their small business with 5 Windows Vista PCs. The owner is not very technical, and just wants something that is "set and forget". After doing a trial run with Ubuntu Hardy…
Nic
  • 13,425
  • 17
  • 61
  • 104
5
votes
5 answers

Finding closest Domain Controller through LDAP

I am on a Unix host and am looking for a programatic way to determine the closest DC. Microsoft has an excellent article explaining how to perform the DNS lookup, and I am able to find the list of available DCs easily like this: dig -t SRV…
Rob Napier
  • 210
  • 1
  • 3
  • 9
5
votes
1 answer

Preferred vs alternate DNS, DNS failover with Active Directory

Question. I have a Windows AD Domain with two DCs. I find that name resolution becomes very unreliable when my "primary" Domain server is offline. How can I fix this? I am running two Windows Server 2012 Standard servers, and both are Domain…
Daniel
  • 1,614
  • 9
  • 29
  • 47
5
votes
3 answers

Windows Domain Controller: Create a test environment from a production environment

I need to create a working test environment of a domain we have. I need to have all the data from the production environment in the test environment. What is the best way to go about doing this? Here are some ideas I have but I am not sure if…
Robert Coggins
  • 63
  • 1
  • 5
5
votes
1 answer

How do I fix a non-starting "Microsoft Key Distribution Service"? (not to be confused with Kerberos KDS)

The Microsoft Key Distribution Service is not starting on my DC (kdssvc.dll) and when I look at the event log under Microsoft\Kdssvc, I see the events: Event ID 4001 Group Key Distribution Service failed to start. Status 0x80070020. Event ID…
makerofthings7
  • 8,911
  • 34
  • 121
  • 197
5
votes
2 answers

Must the root domain name be registered when creating a new forest in Active Directory?

When creating a new forest in Active Directory on my domain controller running Windows Server 2012 R2, I was prompted to specify a root domain name. Must the domain name be registered and owned by me? What would happen if I enter a domain registered…
Aaron
  • 53
  • 1
  • 1
  • 3
5
votes
1 answer

Cannot transfer controller operations master role or demote a domain controller

Server 2012 R2, Server 2012, Domain Controller role After experiencing some permissions problems on my domain I noticed that my 2nd domain controller appears to be corrupted in some way (I'm sorry the naming is confusing. When I say the 2nd DC, it…
Alan
  • 1,003
  • 2
  • 20
  • 36
5
votes
3 answers

The requested operation requires elevation

We have about 15 PCs on our network. I can make changes to all the PCs except one. I keep getting the message "The requested operation requires elevation". When I try to run a program as an admin, it asks for my username and password. After I hit…
Lumo5
  • 213
  • 1
  • 3
  • 8
1 2 3
99 100