Migrating Active Directory from 2008 R2 to 2016

For this post I just wanted to note down my thoughts and plan that I recently used to migrate a client from Active Directory 2008 R2 to Active Directory 2016.  For this work the servers involved were four Windows 2008 R2 servers which all ran AD, DNS, DHCP and NPS.  These roles were being migrated to four Windows 2016 servers.  The servers are spread out geographically and are on different networks but are all part of a single AD domain.  All of the servers are Global Catalog servers.  This is not designed to be low-level guide with all the intricate details but more of an overview (with some useful commands thrown in).

Continue reading “Migrating Active Directory from 2008 R2 to 2016”

Active Directory could not transfer the remaining data in directory partition

Just recently I was asked by a client to migrate their Active Directory 2008 R2 servers to Windows Server 2016. All was going well until I needed to demote the old domain controllers and ran DCPROMO.  I was presented with the error Active Directory could not transfer the remaining data in directory partition.  Then below it stated The directory service is missing mandatory configuration information, and is unable to determine the ownership of floating single-master operation roles.  Before starting with the fix I would just note that every step here is important.  Missing some of the details and skipping over things (you may think you know) will slow you down in the long run.

Continue reading “Active Directory could not transfer the remaining data in directory partition”

Configure 802.1x certificate based authentication on Meraki wireless access points with Microsoft NPS authentication

Problem:
I wanted to enable full network access to company users via the existing Cisco Meraki wireless access points. The problem is that these traditionally have only been used for guest Wi-Fi access and I need to be 100% certain that it will be secure.

Continue reading “Configure 802.1x certificate based authentication on Meraki wireless access points with Microsoft NPS authentication”

Register an application with Azure in your Office 365 instance

Problem:
You have developed an application to work with one of your online Office 365 applications and need to be able to access the api to the Office 365 application programmatically

Continue reading “Register an application with Azure in your Office 365 instance”

How do I seize the Active Directory Roles from a failed Domain Controller?

Problem:
Your Active Directory Domain Controller has failed and it held FSMO or Flexible Single Master of Operations roles.

Solution:
I’m certain that any System Administrator you ask will have been here at some point in their career.  A Domain Controller has failed and is beyond repair, we have a backup domain controller or built a new one but now need to transfer the FSMO roles over.  This is how you do it:

Continue reading “How do I seize the Active Directory Roles from a failed Domain Controller?”