I have two problems to integrate with AD:
1) In my website I have set up in AD Integration a Custom OU for users and group but the users for new websites are created by default in the AD Users OU.
2) In the DNS service I checked to Create Zones in Active Directory. But the zones are created as Primary Zone.
In addition to what pythonIT mentions:
Double check the server “Active Directory settings” in the configuration –> servers –> [servername] page
make sure root domain is set, security to none.
The IIS application pool SolidCP Server user needs to have a minimum of Domain Admin membership assigned (if any changes are made to the user permissions make sure to do a iisreset).
A note on AD DC DNS:
DC DNS it’s highly unrecommended to make them publicly facing DNS servers.
The main reason for this is: Recursive queries need to be disabled, together with all root hints deleted to be a safe DNS server that doesn’t get abused to attack others or your self.
This in return means that dns forwarders do not work. so any domain name that’s not in your own AD DC DNS won’t be able to resolve. yet generally you configure all domain joined servers with the AD DC DNS’s. making them unable to connect to google for example.
- Views5416 times
- Answers6 answers