Archive

Archive for the ‘Active Directory’ Category

how to reset forgot password domain administrator without logon to AD

June 12, 2015 Leave a comment

hi guys, here this articles I want to share of you, how to reset password domain administrator without logon to Active directory,

I write this article because I have experience with my lab, when I want to logon on Server Active directory, the windows always prompt password, the password incorrect. I’ve been along time to used my lab because I have still busy in my client,

ok, let’s we go to try reset password administrator domain.

  1. The first you must be prepare to source installer windows, here I try to using windows server 2012 R2 because I forgot the password using Active Directory 2012 R2.
  2. Insert source Installer windows 2012R2 to DVDRom, if you have using virtualization you only attached ISO File or DVDrom
  3. reboot the server and start booting using DVD, Click Install Now

step1

4. Click Repair your computer

step2-1

5. You will now be taken to the Repair section of Windows.
Some options there but troubleshoot is the most logical to choose, so click troubleshoot.

step2

6. We’ve now come to the Advanced options section where you have to options, system image recovery and a command prompt. Hey that was what I was looking for, click it.

step3

7. The command prompt opens… with X:\Sources. Your Windows installation is now secondary so you will have to change to D:\Windows\System32 to get to the system files.

When you are in D:\Windows\System32 you have to executer the following commands.

Copy UTILMAN.EXE UTILMAN.EXE.BAK

Move CMD.EXE UTILMAN.EXE

Press Y when asked to replace the file.

Now you can start the server normally and wait for the logon screen.

step4

7. After you see the welcome screen, you hit the Windows key and press "U"

NET USER Administrator "new password"

below picture to change password

step5

8. now you can testing to open Active directory

step6

Ref: http://vthoughtsofit.blogspot.com/2013/03/reset-your-domain-administrator.html

Categories: Active Directory

How to Back Up and Restore NTFS and Share Permissions


 

Sometime we need backup sharing Permission and restore while you upgrade server to another server or upgrade from Old Windows 2003 to 2008 R2. you can backup using Image ghost and restore to target server, permission security will be installed after you upgrade to new server. but sometime you will be experience when doing restore. it’s impossible you add one by one security permission.

Backup and Restore of Share Permissions

1. Open Regedit to the following location:  HKLM\SYSTEM\CurrentControlSet\Services\LanmanServer\Shares

2. Right-click the Shares registry key and select Export. Give it a file name such as Sharebackup.reg

When you want to restore the permissions, double-click sharebackup.reg to import it back into the registry.

Backup and Restore of NTFS Permissions

Use this command to backup NTFS permissions:

icacls d:\data /save ntfsperms.txt /t /c

The /T switch allows it to get subfolder permissions too. The /C switch allows it to continue even if errors are encountered (although errors will still be displayed).

Use this command to restore them:

icacls d:\ /restore ntfsperms.txt

 

d:\data are the target folder contain all NTFS Permission. icacls will be backup all contain NTFS permission include subfolder in folder data.  to restore you only point to target the folder.

Categories: Active Directory

“Network Path is Not found” while you access file sharing

May 6, 2014 6 comments

many customer want to access file sharing, but the error “Network Path is not found” whereas you have enable file sharing on the folder. but the error still issued.

If you’re having this issue, try these things:

 

Check the status of these services and make sure they’re running on both ends:

  • Remote Registry Service
  • Server
  • Workstation
  • Computer Browser
  • Remote Procedure Call
  • TCP/IP NetBIOS Helper Service
Categories: Active Directory

Unable to take ownership of files in Win 2K8 R2 server


I have one of client in my company, they are complain to me after file server is upgrade to windows 2008 R2, the user cannot access the file server although administrator. the error is access denied. I try to take to ownership permission security on the folder sharing. but the notify still get error  “ Unable to set new owner on <one of the folders>” Access Denied.

you can solve this problem only add take owner permission administrator on GPO.

1. Open Secpol.msc

2. Local Policies

3. User Right Assignment

4. Take ownership of file or other object

now you can add administrators group. default permission on administrators

image

Categories: Active Directory

how to Sync Time windows Client to Domain Controller

June 4, 2012 3 comments

Sometimes time windows client not sync with domain controller and it make cause functionality server not work properly. here command use CMD to sync your PC or Server to Synchronize with domain controller.

net time \\domain controller /set /y

for Example

net time \\dmg-dc001.demagnum.com /set y

Categories: Active Directory

Value was Either too large or too small for an int64

January 5, 2012 4 comments

One of my client in was problem in event viewer, while I open event viewer > windows log > system

I got the error like picture below:

MMC has detected an error a snap-in and unload it

image

if I click OK, the error is Value was either too large or too small for an int64

image

 

Read more…

Categories: Active Directory

The Operation Failed Because: The Active Directory Installation Wizard was unable to convert the computer account “computer name” to domain controller account. “Access is denied”

January 4, 2012 4 comments

I was implement domain controller additional  in one of my client in aviation company, while replicating domain controller additional I got the error is

 The Operation Failed Because: The Active Directory Installation Wizard was unable to convert the computer account DMG-DC002$ to domain controller account. “Access is denied”

the picture like below

image

Read more…

Categories: Active Directory