What is your recommendation for ensuring that the DNS server
in a branch Office can update and resolve DNS queries for a primary DNS
zone even in the event of a WAN link failure?
In order to with stand the WAN unreliability issues, one has to have the ability to update the DNS entries even when disconnected from Primary DNS Zone servers. This can be achieved through configuring DNS zones as AD-Integrated DNS. Thus my recommendation is to convert the existing primary/secondary DNS zones into AD integrated DNS zones.
How do you configure IIS Security Settings in GPO?
How do you login to an external domain for which a AD Trust has been setup?
One has to login using the User Principal Name (UPN) like username@domain.suffix to an external domain that trusts your domain.
How do you fix “This user account has Expired”?
Modify the properties of the user account to set account never expires
What Forest level is required to support Active Directory Recycle Bin feature?
One has to run Windows Server 2008 R2 Forest Functional Level for the support of Active Directory Recycle Bin. That means all your Domain Controllers should be running Windows Server 2008 R2.
Where do you manage the Password Replication Policy for a Read Only Domain Controller (RODC) ?
In Active Directory Users and Computers, Go to Domain Controllers OU, Select the RODC server object, Under the properties control the list of user/group objects that are configured for password replication to that RODC server.
In order to with stand the WAN unreliability issues, one has to have the ability to update the DNS entries even when disconnected from Primary DNS Zone servers. This can be achieved through configuring DNS zones as AD-Integrated DNS. Thus my recommendation is to convert the existing primary/secondary DNS zones into AD integrated DNS zones.
How do you configure IIS Security Settings in GPO?
- Export the settings on IIS server to create a security template.
- Import the Security template into the GPO
- Link the GPO to required IIS servers OU
How do you login to an external domain for which a AD Trust has been setup?
One has to login using the User Principal Name (UPN) like username@domain.suffix to an external domain that trusts your domain.
How do you fix “This user account has Expired”?
Modify the properties of the user account to set account never expires
What Forest level is required to support Active Directory Recycle Bin feature?
One has to run Windows Server 2008 R2 Forest Functional Level for the support of Active Directory Recycle Bin. That means all your Domain Controllers should be running Windows Server 2008 R2.
Where do you manage the Password Replication Policy for a Read Only Domain Controller (RODC) ?
In Active Directory Users and Computers, Go to Domain Controllers OU, Select the RODC server object, Under the properties control the list of user/group objects that are configured for password replication to that RODC server.
