Category Active Directory

remove stuck mailbox move


When Remove-moverequest fails 1. Open ADSIEDIT and navigate to the OU where your broken user account is stored. (Under: Default Naming Context) 2. Locate the user account, right-click on it and then choose “Properties”. 3. Click on the “Filter” button and make sure “Show only attributes that have values” is checked. 4. Scroll down the […]

Force removing Exchange 2010 database – ADSIEDIT.MSC


Run Get-Mailbox -Database “Database Name” –Arbitration command to find all the arbitration mailboxes If there are some arbitration mailboxes, move them to different databases and then delete the database again If all above don’t work, you can use ADSIEDIT tool to delete mailbox database: 1. Open Adsiedit.msc 2. Connect to the configuration partition. 3. Expand […]

Windows 2008 Security Events


Events Windows 2008 Security Group Management Event ID Title 4727 A security-enabled global group was created. 4728 A member was added to a security-enabled global group. 4729 A member was removed from a security-enabled global group. 4730 A security-enabled global group was deleted. 4731 A security-enabled local group was created. 4732 A member was added […]

Parameter replacement during creation of the alert failed.


So we have SCOM scours through our Domain Controllers in event logs in Agentless mode to look for security event IDs such as account lockout, deletion, creation, etc. Recently, we ran into an issue where SCOM was throwing caution alerts in the monitor view of SCOM with the following description: Parameter replacement during creation of […]

Creating multiple users using a batch file


This is probably an old topic but I’ll blog it anyways in case someone might find it useful. This article is about how to create a list of new users in a specific OU. So here are the requirements: Users are required to change password at first log on User accounts are enabled Username would […]

Making AD accounts in an OU “mail-enabled” using powershell


Exchange 2007 If you have a number of users in an OU that are not mail-enabled. You can use the following command to look for all users in a specific OU and then make them mail-enabled: Get-User -OrganizationalUnit “pnlab.com/pnlab/users/needmailenabled” | Enable-Mailbox -Database “PNLAB storage group\mailbox database” Explaination: Get-User -OrganizationalUnit “pnlab.com/pnlab/users/needmailenabled” | lists all users in the pnlab.com […]

Building a Windows 2008 Server Core Domain Controller Step by Step


Below are the steps of configuring a Windows 2008 Server Core from scratch to a secondary Domain Controller To set the server with a static IP address 1. At a command prompt, type the following: netsh interface ipv4 show interfaces 2. Look at the number in the “Idx”  column. Take note of the Idx number […]