-
Recent Posts
Categories
Topics
Archives
Tag Archives: Active Directory
How to use Sort Keys in LDP
I knocked up an example PowerShell one liner for a colleague to get the oldest item in the Deleted Objects container because of a need to identify the default tombstone lifetime (i.e. when there’s no value on the nTDSService object’s … Continue reading →
Posted in Active Directory, Scripting
|
Tagged Active Directory, AD, Help, LDAP, LDP, PowerShell, Tip
|
Leave a comment
Delegating the minimum set of permissions for mailbox-enabled user and linked mailbox provisioning
In my previous post I described the minimum set of permissions required by the ADMA account to provision an AD DS user object. In this post I’d like to expand on that and provide the minimum set of permissions required … Continue reading →
Posted in Active Directory, FIM, FIM 2010, FIM 2010 R2
|
Tagged Active Directory, Active Directory Domain Services, AD, AD DS, AD DS provisioning, AD MA, ADMA, Exchange, Exchange provisioning, FIM, FIM 2010, FIM 2010 R2, Forefront Identity Manager, Forefront Identity Manager 2010, Forefront Identity Manager 2010 R2, Identity Lifecycle Manager, ILM, MIIS, Permissions, Provisioning
|
2 Comments
How to update unicodePwd in LDP
Quick and cheerful reminder –if you want to perform a password set operation in LDP there’s two main ways of doing it: You can supply a string value to userPassword (providing the domain functional level is Windows Server 2003 or … Continue reading →
Posted in Active Directory
|
Tagged Active Directory, AD DS, Example, Tip, Troubleshooting
|
Leave a comment
Querying AD DS 64-bit integer (date time as ticks) using LDP (or anything else)
I hacked together a .NET command line application for a customer yesterday that basically resets the password of all users within scope to two random passwords. Such functionality was required because we’d P2V’d a production DC into the lab. I … Continue reading →
Posted in Active Directory, Scripting, Troubleshooting
|
Tagged Active Directory, AD DS, Help, Layer-8, PowerShell, PS, Script, Scripting, Tip, Troubleshooting
|
Leave a comment
Setting Boolean attributes using LDP
Quick and gentle reminder. LDP expects you to replace a Boolean attribute with either TRUE or FALSE. True, False, true or false don’t cut it… If you try and use True, False, true or false you’ll get this error: ***Call … Continue reading →
Posted in Active Directory, Troubleshooting
|
Tagged Active Directory, AD DS, Help, Layer-8, Tip, Troubleshooting
|
Leave a comment
How to setup a load balanced FIM Portal and service deployment
Whether in production behind a hardware load balancer or in a virtualised lab running on your laptop one thing that everyone designing and playing with FIM should be doing is utilising a virtual, or load balanced, hostname for the portal … Continue reading →
Posted in FIM, SharePoint
|
Tagged Active Directory, AD DS, Configuration, FIM, Forefront Identity Manager, Forefront Identity Manager 2010, IIS, Installation, Internet Information Services, Kerberos, Service Principal Name, SETSPN, Setup, SharePoint, SPN, WSS
|
7 Comments
Resetting an AD DS password and honouring password history and age using the LDAP_SERVER_POLICY_HINTS control
I recently had to do some frantic experimenting around the area of password reset. I was working with a customer on a convoluted solution that necessitated a password synchronisation operation from the DMZ into a production network without a trust. … Continue reading →
Posted in Active Directory, Programming
|
Tagged .NET, Active Directory, Active Directory Domain Services, AD, AD DS, LDAP, S.DS, S.DS.P, System.DirectoryServices.Protocols
|
6 Comments
