serverfault.com

I have several Windows 11 Pro machines joined to a domain. The domain controller is currently offline, but users can still log in using cached credentials. We temporarily moved some shared folders to a standalone Windows 11 Pro machine (not joined to the domain). Access is done using local accounts on that server. This works fine from most clients, but a few specific Windows 11 machines suddenly stopped working. From the affected clients: net use \\192.168.0.6\share /user:192.168.0.6\user System error 86 has occurred. The specified network password is not correct. The same credentials work: From other Windows 11 clients Against the same server For the same share What I already tried on the failing clients: Remove all stored credentials (cmdkey, Credential Manager) Use explicit local credentials with net use (server\user, IP\user) Test from a local account on the

hope you're all well. I've recently joined a company as a solo IT, that has offices in couple of geographical location, quite distant from one another. I am not a senior with 20 years of experience, but I do believe am decent and resourceful. I'm setting the local domain and got the domain controller that I joined to the domain. Next step I setup the "Sites and Services", so the devices know which is the closest DC for them. I set up the ADSS with the local subnet 10.151.0.0/16, and also 10.151.1.0/24 and 10.151.5.0/24 which are office client subnet and server subnet respectively. However, the clients do not use the local DC and always go to another site. I believe the DC in this subnet is PDC. I looked through the subnets, none falls within this range so there is no conflict. DNS is on DC (primary self, secondary some other DC - tried swapping these too, no changes), and WiFi controllers are set to point to the local DC as DNS for

I want an Entra ID group and the users in the group to be able to logon to assigned Entra ID joined machines and assign them a certain role (user, admin, ...). The problem: the Entra ID joined virtual machines are not hosted within Azure, and I am unable to do this conveniently by vm user role assignment in Azure. How would I be able to automate such a process? In summary: by adding an Entra ID User to group -> Entra ID user is able to logon to selected machines and has selected rights (user or admin)

I have two VLANs in my home network: iot (for anything i consider an IoT device) main (for everything else) I am using OpenWRT. Each VLAN has its own subnet. iot: 192.168.1.0/24 main: 192.168.0.0/24 And each VLAN/subnet has its own SSID (WiFi) Devices in main are trusted and can access the Internet and each other. Devices in iot are untrusted and cannot access each other and sometimes not even the Internet. The issue i have is that this split breaks certain apps. I tried: phone also on iot (works until i leave iot) forwarding rules to allow forwarding to specific IPs in the iot subnet This works for some devices, for some for a while. Sometimes not at all (when switching phone back to main) nDNS relays (works for apps that use this method but not generic) My question is: How can i a

I have a COTS software I have had to move to a custom location. That location is in a secured file area limiting who can access the folder. When I go to the webpage it shows me all the titles for everything like "login-btn" or "box.signin.label" and also pops up a UAC window. When I authenticate with the UAC window it refreshes the page with the page looking correctly with the correct data, wording, and pictures. When looking at developer tools it, it says on initial load it says it can't access 2 folders within the same folder as the webpage (i.e. "assets" and "resources" folders). If this webpage is serving the webpage from IIS and pointing to a specific folder, why is it popping UAC to access the resources and what permissions do I need to give the folder be able to access the webpage without UAC? Update: Current Permissions Of The Folder: ALL APPLICATION PACKAGES: Read & Ex

I need to skip a line in my pam stack for sshd - if and only if - the $PAM_USER is a member of a group called linux_svc_accts. I'm using Rocky Linux. I've tried: auth [success=1] pam_succeed_if.so user ingroup linux_svc_accts auth required pam_google_authenticator.so nullok What I'm running into only when there is a jump condition in the second column is the "fatal: PAM: pam_setcred(): Permission denied" error that I think is referenced in #583 (https://github.com/linux-pam/linux-pam/issues/583). What is a workaround in order to solve my problem in PAM that is caused by how sshd works?

This is a common question that I cannot seem to find anything on. How do I add an existing catalog to a linked server? I have read through the "you have to add a login to the catalog you need to access from the linked server". But, very little guidance past that. Are there some references or third-party books that I can obtain that actually discuss this?

We have a Domino server that runs for a few hours or a day, then displays error on the console "HTTP Server: Open Error, unexpected error returned from NTI subsystem". The server stops responding to HTTP requests and displays "Insufficient memory" for some other Domino server task. After restarting the server, the issue reoccursagain. From console: 01/11/2026 01:09:12 PM HTTP Server: Open Error, unexpected error returned from NTI subsystem 01/11/2026 01:29:34 PM Directory Cataloger Finished processing entitlements.nsf: Insufficient memory. 01/11/2026 01:29:34 PM Directory Cataloger shutdown: Insufficient memory. Domino release 12.0.2FP7 HF26 for Windows/64. Using ACME/LetsEncrypt or TLS web. SMTP is not running on the server I have Domino running on three servers. An in house physical Windows Server 2019, a VPS running Windows Serve

We are setting up a captive portal for guest users using our Cisco ISE servers, and we have a Linux box running BIND just for those users. All OSes work fine and redirect to the ISE guest login page to allow users to sign up for guest access, but Apple does not. Cisco said we need to redirect captive.apple.com back to the ISE server to get the portal splash screen, but BIND fails to recognise an apple.com configuration file in the named directory. How might this be able to be done?

First, let's share some context. I have been tasked to design a new development environment for the team I work in. Most details of the constraints don't matter for this question, though. After a bit of research, I have come to the conclusion that the best base would be an immutable Linux distribution. In my case, Fedora Kionite. From my understanding, the whole root FS is built as a set of image, the base image is provided by fedora, and we can add more layers if we ever need to touch the root FS. I would like to preinstall some tools and software into the system and I have three options : Automate the entire installation through scripts. Connect as the user (with a default password before they touch the computer) and install all tools for their users. Do the installation in a layer and then ship this layer to all of the systems. The two first solutions are ways that I understand and know I can build. The last