Just installed this on my ds416play today and your tutorial helped me solve a couple of puzzles. Thanks!

Great Stuff! Been wanting to set up a domain like this for our little office for ages now but didn't dare doing it without any tutorials. Thx so much

It would be interesting to have a video talking about the use of Synology in conjunction with Windows Server. For example, using the NAS as a secondary AD on Windows Server, and as a file server for sharing files on the stations.

Nice video, one comment, DO NOT edit your default domain policy, create new ones and link it to your default policy or you will have trouble down the line. Happy New Year :)

Thanks for your video. I have a question: I have 5 DS918+ and I want create an Active Directory. It's possible to add 4 NAS member of this domain, with synchronisation for redundency when a domain controller crash ? Thanks.

Excellent video Willie, starting 2019 with good content, i'm exciting about buy a sinology product

Dude, this has been great. Thank you very veeeery much!

Nice job, this video still applies 2022.

How do I get an Ubiquity hat?

Please do not change the default group policy. It cannot be disabled later if a change goes awry. Best to create and link additional policies.

Hi Willie... as always.. great video! I have a suggestion for next videos...one would be to connect Synology NAS users with Windows server 2013/6 AD and second .. how to make Synbology NAS LUN server and connect it with Windows server 2013/6 and apply some vitrual disks for certain users/departments. Tx

Hi Willie. Consider using ProcMon to show your subscribes how the GPOs change the policy nodes in the registry. Also show where the GPOs are stored on sysvol and in local cache etc. Describe policy vs preference. Can AD be secured with a cert as with a native implementation? Can you have more than one DC for replication and fail-over in the event of a loss with Synology? Will you cover Backup and recovery of AD as well as sysvol? Sorry, this is sort of my wheelhouse. Part of a team that manages client GPOs natively and with a third party tool. Including user profiles.

Anyone know where to find the install file for Windows 7? Looks like the horrid Micro$oft has taken down all download links for the Windows 7 version

Do client gpo policies updated automatically?

Happy new year from Lisbon -Portugal

Looking for a guide on deploying admx templates via rsat tools for Synology Directory server

hi, at profile>home directory. How to sett if a PC want to auto connect to mapping drive more than 1 mapping drive

Where is the GPOs stored? Lets say I log into a windows machine and use GPO to make or change a policy to the domain and I save it. Must that machine with the remote tools still be on for that new GP change to be pushed out?

Willie have you try remove computer after added it to Synology Active Directory.

thank you. could you teach us the best way to deploy printers with GPO with synology AD server? it seems there are many ways to do. just not sure which is the best with Synology.

I am trying this now and i have a test pc connected to the domain. I have made users for family members and this works all fine. But now i want that every member has their own share and that that is automatically mounted as a drive when they log in. So kelly would have k:\ on every pc in our home she logs in to. I am doing something wrong because the k drive doesnt shows up.

Great video. Thanks. Setting up a small home office. Trying to get a linux box to authenticate against Synology Directory Service. Any guides that you have or know about?

Okay.. so this WAS working, but now I am not getting ANYTHING showing up under Administrative templates (other than "All settings).. any help or suggestions?

Can you restrict local login via Synology Directory server on Windows 10? And if so - where do we go to do that?

I still haven't seen whether or not you can migrate an existing domain and demote the server to keep continuity with your domain workstations.

Hey Willie, is it possible to activate AD (setting up, testing) while still running a small business (accessing synology network drives)?

There is no possibility to set "Send expiration notification emails" for Synology AD users... Synology Directory Server don't have such option

how do you add a network printer? last time I tried that, it did not work as it asked for the printer to be installed on the server

Hi Willie...im a usual customer of synology products...there are awesome in sharing duties, external backups, etc....but my biggest concern about using it like an Active Directory are their resources... they have limitation when we talk about specs...processors, memory, etc. In my opinion i will not use this schema in more than 15 users small office... what do you think about it.??

I'm commenting and liking this video for the beard. The AD in Synology is cool too.

Hi Willie, great video & beard. QQ - In the scenario you show, what is the ongoing dependency of the desktop configured with RSAT tools? Is the desktop now activing as Domain Controller or is the Synology somehow importing all of those policies created via RSAT on the desktop and when the Desktop estate is joined to the Synology it receives those Policies without dependency on the desktop at all?

I replaced our ancient server 2003 AD about 4 months ago. Have about 30 users. Been having no problems whatsoever!. Great alternative. Once in a while we do get roaming profile errors though.

Question Willie, If there's multiple PC's on the network how to auto assign the Synology DNS rather than statically to all 50 machines.

Alright Willi - gonna have to address my old Windows 2012R2 servers - I really only use the servers for Authentication, DNS and DHCP and am wondering if one of these could replace my TrueNAS mini and W2012 servers - I'm wondering if the software is the same on all the synology servers? Can I buy a small cheap one to play with to see what it can do before investing in one to replace my TrueNAS mini.

You can only join a domain whit a pro version of Windows

Has anyone worked? On windows 10 it does not update computers with changes in GPO.

very cool. thanks !!!

Hi Willie: HNY! Why is using the Administrator account bad practice, if it is still enabled? could you clarify please?

Q: AD on vlans... I have multiple vlans directing to one active directory. Do I need forward lookup zones to each vlan? Sry for my English :D

very helpful, thank you.

Hi i like to see how to import an admx file for exaplme the admx file for chrome brwoser or FrontMotion Firefox Community Edition. Thanks alot for your videos!!!

Great Experience with your video , i was never expected , can you please let me know in case windows Cal required ?

where is #2, 3 and so on?

When are you going to do your segment on UCRM? This was promised monthssssss ago....

Beard is great. For the record.

Great Video....Tks

Samba does not have 100% support for everything that windows AD has . So maybe 2-3 years later when the company have grown and they have need of functions that samba doesn't support, well when they have to buy a full windows AD server anyway but now they they are stuck until the new windows server is in place. So what does not work? : GPO:s are not supported at 100% , some things work others does not. Just try to change the password policies, IT WILL NOT WORK. You can change them but they will not function. You will have to ssh to the samba server and set the changes with samba-tool in the console to make them work, that the only way. Now have the Synology team made some form of integration so that you can change password setting i that AD app so good on them . But that just show that samba is not a solution/project you can rely on for your company, Trust Support Does Samba AD Supports Trust Relationship? The trust feature is experimental and has several limitations, such as: SID filtering rules are not applied You cannot add users and groups of a trusted domain into domain groups. Why Is the Network Neighbourhood empty or Does Not Show All Machines in the Domain? The Samba AD DC smbd daemon does not support browsing. It is planned to add this feature. However, there are no development resources and thus no date when this feature will be included. No support for sysvol replication ,, that is something you have to setup yourself with rsync. And the list goes on and on ,, I would never recommend samba as a solution for a company. Samba work as a lab project to play around in and maybe as a backup ad server to an existing windows ad server, that's it.

0:43 What kind of person would argue about having a beard? Especially, if talking about tech channel! Arrrrrrgh...