Force Azure AD Connect DirSync to sync with Office365 Azure AD


With build 6862 the PowerShell module has moved.  The location for this module is now:

C:\program Files\Windows Azure Active Directory Sync\DirSync\ImportModules.ps1

To allow us to execute the Start-OnlineCoexistenceSync cmdlet we can either:

Integrate Macs into a Windows Active Directory domain

OS X: Verifying DNS consistency for Active Directory binding

Original article can be located here:

Active Directory integration is dependent on locating and identifying both domain controllers (DC's) and Global Catalog servers (GC's) via DNS. In order for this functionality to work as expected, the DNS system hosting Active Directory must be complete, correct, and consistent.

OS X Mavericks: Using advanced Active Directory options in a configuration profile


Original article can be found here:

A configuration profile can be used to configure OS X to join an Active Directory (AD) domain.

Active Directory: LDAP Syntax Filters

How to create container objects in Active Directory

By default, Active Directory will not give a option for creating "Container" objects. It only allows you to create Organization units for grouping the AD objects. However, if your situation demands, you can create a container objects by following the below procedure.

  • Open adsiedit.msc and navigate to schema partition
  • Select Cn=Schema,CN=Configuration, DC=domain,DC=com in left plane

LDAP and Active Directory tools

Using LDIFDE to export Active Directory Objects: Start > All Programs > ADAM > ADAM Tools Command Prompt. vbtools adfind 
adfind –b dc=mycompany,dc=com –s subtree -f


Add SSL Certificates in Active Directory

For CAs that are not well known, you must add the root CA certificate and intermediate certificate in Active Directory. These steps allow the root CA certificate to be installed in your client systems' Trusted Root stores. For example, you might need to take these steps if your organization uses an internal certificate service.

Adding vCenter template deployed VMs into a specific Active Directory OU

Use the WMIC.EXE with an example command as below:

wmic.exe /interactive:off ComputerSystem Where “name = ‘%computername%’” call JoinDomainOrWorkgroup AccountOU=”OU=XP Workstations;DC=my;DC=domain;DC=com” FJoinOptions=1 Name=”” Password=”xyz” UserName=”


We had the same issue here. We solved it using the customization spezification with sysprep functionality to add the VM`s to a specific OU.


Delegate a User to Join a Computer to an Active Directory Domain

1. Click Start, click Run, type dsa.msc, and then click OK.
2. In the task pane, expand the domain node.
3. Locate and right-click the OU that you want to modify, and then click Delegate Control.

4. In the Delegation of Control Wizard, click Next.
5. Click Add to add a specific user or a specific group to the Selected users and groups list, and then click Next.
6. In the Tasks to Delegate page, click Create a custom task to delegate, and then click Next.


Subscribe to RSS - active