Auth, and netonly authentication

In order to run an ODBC check remote from outside a domain we can run a netonly auth against AD first: runas / /netonly C:WINDOWSSysWOW64odbcad32.exe

DFSR error 4012 on stand-alone DC

In short: The steps: net stop dfsr adsiedit ; msDFSR-Enabled=FALSE net start dfsr adsiedit ; msDFSR-Enabled=TRUE repadmin /syncall /AdP DFSRDIAG POLLAD Look for Event ID

Why not enable AD recycle bin?

Not really any good reason, unless you have a really large org or some policy preventing this. There have been some issues with ntds.dit growing

Upgrade SYSVOL replication to DFSR

When adding newer domain Controllers to a MS network, we might be using the old FRS and we have to upgrade to DFRS