In previous post I explain about the different groups we can create in a domain environment. In an organization some time you may need to grant permissions for different users to manage these groups and its memberships. But some time it is better if we can lock some of these memberships for security reasons. For example let’s assume you have a group which have access to financial records of…
In an active directory environment some time you need to apply same set of changes to group of users. For example let’s assume company domain prefix changed. You need to change UPN prefix for all users from abc.com to xyz.com. If you do one at a time how long it will take? If it large environment how much man power it will take and how much mistakes can happen?
Well, using active directory…
I am sure every on who uses active directory heard about the groups. Even in stand-alone pc you can see set of groups. But it is important to know how these groups are working and what each type of groups really do.
In windows server 2012 have two types of groups in place.
Distributed Group – This is non-security related group and purpose of it to distribute information to a group of…
If a proper DR (Disaster Recovery) plan is in place, an engineer will not needs to consider about this option at all. But it’s not a perfect IT world we living on, some business can’t afford to invest on DR. anyway, as we know AD runs with FSMO roles. Depend on the design these roles may be located on different servers and sometime all runs from one DC (which is not recommended). If…
