Archive for 'Active Directory' Category

Repair KMS errors: 0xc004e002 and 0xc004f012

By SuperG - Last updated: Tuesday, April 3, 2012

Repair KMS errors: 0xc004e002 and 0xc004f012 When trying to activate Windows using a KMS server you may see the following error. It looks like the Licensing Store might have gotten corrupted – Try the below steps to recreate the Store. Open an Administrator Command Prompt (CMD.exe) stop the Software Licensing Service by running: net stop […]

Mass Power Shell AD update from CSV file

By SuperG - Last updated: Tuesday, April 3, 2012

Make mass changes to AD using Power Shell AD and CSV file You can update almost anything in AD using power shell. Here I will show how to update the company field of a user object. First look at this page for information if your power shell script does not work with the following error: […]

Deleted AD Objects

By SuperG - Last updated: Tuesday, April 3, 2012

When an object is deleted in AD (2008R2 with recycle Bin installed), that object is marked as being deleted and moved to a special OU. You can find this object using Active Directory for Windows PowerShell. Get-ADObject -Filter ‘samaccountname -eq “<Account name>“‘ -IncludeDeletedObjects Example: Get-ADObject -Filter ‘samaccountname -eq “ThompsonDA”‘ -IncludeDeletedObjects Deleted : True DistinguishedName : […]

Logon troubleshooting

By SuperG - Last updated: Tuesday, April 3, 2012

Ok so today I had a problem with an account that kept getting locked out due to bad passwords. The user had just changed their password. To try and find out where the issues is, I turned up the debug on netlogon on the DC. This way I can see where the logon event is […]

Troubleshooting CAC Login

By SuperG - Last updated: Tuesday, April 3, 2012

So we use smartcards to log onto the network, and i have a lot of users who call and say they are having problems logging on. When asked what the error is they state “its the system cannot log you on error”. Well there are around 20 different “the system cannot log you on errors”. […]

Event Forwarding of Security Logs

By SuperG - Last updated: Tuesday, April 3, 2012

This is a long one, sorry but there is a lot in information here. So recently, where I work, we decided to collect a lot of the security events from all of our domain controllers. We are going to use the built-in “Windows Event Collector” service to do this. I am assuming you already have […]

AD Undelete 2008R2 (Access is Denied)

By SuperG - Last updated: Tuesday, April 3, 2012

In a previous blog I wrote about Deleted AD Objects and this one touches on that a little. This morning a colleague of mine had a request to undelete a computer that had been deleted from the network. Using powershell he attempted to recover the object but got an “Access is Denied” error. Now, he […]