Session: VIRT1374BU: Matt Liebowitz AD Replication -Update sequence number (USN) tracks updates and are globally unique -InvocationID - Identifies DC's instance in the AD database -USN + InvocationID = Replicable transaction Why Virtualize AD? -Fully supported by Microsoft -AD is friendly towards virtualization (low I/O, low resource) -Physical DCs waste...
Now that the SSO service and web client are installed, it's time to do a little SSO configuration. In this installment we will configure the SSO STS certificate chain, add an Active Directory identity and source, and delegate SSO administrative rights to a AD group. If you recall the vCenter...
Windows Server 2012 generation ID is a great new feature that will allow use to safely virtualize a domain controller, on specific hypervisors. One of the really great features that hypervisors have had for ages is the ability to perform snapshots, then roll back to a prior state with a click...
Dean Wells, Active Directory Product Group, Microsoft This was another killer session, with a super dynamic speaker that only rivals Mark Minassi in presention and content. Dean could double as a stand up IT comedian. Although it may have not gotten a lot of press, there are a number of...
As most Windows administrators know when you logon to any system locally or remotely Windows generates a token that contains a list of security identifiers of all the groups the user belongs to. In large environments or where you have implemented granular role-based security, top-tier users could be a member...
This session, Active Directory Recycle Bin, was presented by Mark Minasi, which is always a riot to listen to. In addition to really knowing his stuff, he's probably in the the top two TechEd presenters for style. Guaranteed laughs! Prior to Windows Server 2008 R2, when you delete an object it's...
There is a feature/bug in the Windows Server 2008 R2 managed service account PowerShell command that limits the account name to 15 characters or less. First, let's create a managed service account called SVC_SQL01_LongName using PowerShell. The service account is 18 characters long. You can run the following command on...