MahadevNitture

Issue: Unable to transfer Schema master role from PDC to ADC. Symptoms: You will get below error while transferring Schema master using NTDSUTIL fsmo maintenance: seize schema master Attempting safe transfer of schema FSMO before seizure. ldap_modify_sW error 0x32(50 (Insufficient Rights). Ldap extended error message is 00002098: SecErr: DSID-0315137D, problem 4003 (INSUFF_ACCESS_RIGHTS), data 0 Resolution: Add your user to Enterprise admin  group in Active directory to resolve this issue.

Active Directory Domain Services: Before proceeding with AD we will know something about Domain and Workgroup. What is Domain? Domain is a logical group of computers which shares the common directory database. What is workgroup? Workgroup is an standalone computer which use the own database. for example our home pc Coming to Active Directory, Active Directory is a directory database which stores information about the active directory objects like users, computers, groups, Organizational unit and group policies. we have two types of structure in Active Directory as below. Logical strcture and Physical Structure . In logical Strcture we have domains, tree, organizational unit and forest. Domain: As I mentioned above domain is a logical group of computers which shares common directory database. Tree:  A hierarchy of domains with a contiguous namespace as below. Domain Tree Forest:  Group of one or more trees, and they don't share contiguous namespace as be

Creating a group policy object in windows server 2008: Perform the below steps to create new GPO Go to start menu -> administrative tools -> group policy management -> Expand forest -> Expand domains -> Expand your domain -> Right click on Group policy objects and select new -> type name for new GPO and click ok to create a new GPO. Once after creating new GPO you can link it to Entire forest or Domain or OU and sites as well. To link a GPO to domain, Domain controllers and OU follow the below steps Perform the below steps to create new GPO Linking a GPO to Domain: Go to gpmc.msc -> Expand Forest -> Expand domain and right click on your domain and click on link existing GPO, you will get a window as below, select the appropriate GPO and click on ok to link a gpo. To link a GPO to domain controller, right click on Domain controllers and select Link existing GPO and select the appropriate GPO and click ok to complete the process. To link

Symptoms of the Issue : Getting the below errors after clicking on WDS server. ERROR 1 : Failed to Start Windows Deployment Services Error, the service changed to an unexpexted state. ERROR 2: The service did not respond to the start or control in a timely fashion. Reason for Issue: This issue will occur if we configure WDS and DHCP on the same server, in this situation WDS service tries to use the port 67. However, the DHCP server already uses this Port. Solution : Try below steps to check the issue Method 1 At the command prompt, type the following command, and then press ENTER: wdsutil /set-Server /UseDhcpPorts:No Method 2 1.Click Start, click Run, type wdsmgmt.msc, and then press OK. 2.In the Windows Deployment Services window, expand Servers, right-click the WDS server name, and then click Properties. 3.In the Server Properties dialog box, click the DHCP tab. 4.Click to select the Do not listen on port 67 check box, and then click Apply. Once done che