-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Yup, you nailed it that time. I feel bad enough open up extra settings, I don't know if I can deal with an unpatched install of Outlook floating around. I have been burned by silly users too many times.. I appreciate the help on this.. ~John
- -----Original Message----- From: Andy David [mailto:[EMAIL PROTECTED]] Sent: Wednesday, October 31, 2001 10:48 AM To: Exchange Discussions Subject: RE: Outlook Security update over ride and Citrix terminal server Hmmmm. Just so I am clear.. The Security Update works as expected if the remote user accesses Outlook directly, but not if they attempt to access it via the sales app's conduit? Of course, the easiest workaround may be to simply install Outlook w/o the security update on the TSE... - -----Original Message----- From: King, John [mailto:[EMAIL PROTECTED]] Sent: Wednesday, October 31, 2001 10:25 AM To: Exchange Discussions Subject: RE: Outlook Security update over ride and Citrix terminal server - -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 NO. It is not just running Outlook, that works fine, for all users... It is the sales app that is published for remote users. This app users Outlook as a conduit to email quotes via the MAPI engine. The way that this sales program accesses the Outlook MAPI engine violates the default settings of the Outlook security update. I have setup the over ride to 'automatically approve' direct MAPI access, although I didn't want to:(.. This fixed the problem for our LAN users running the client locally, but doing the same for the terminal server users makes no difference. It doesn't even work when running the sales app as administrator through terminal server.. This is beginning to bug the shit out of me.. ~John - - -----Original Message----- From: Andy David [mailto:[EMAIL PROTECTED]] Sent: Wednesday, October 31, 2001 10:11 AM To: Exchange Discussions Subject: RE: Outlook Security update over ride and Citrix terminal server Does it work if you logon as administrator to the TSE server and then open Outlook? - - -----Original Message----- From: King, John [mailto:[EMAIL PROTECTED]] Sent: Wednesday, October 31, 2001 9:36 AM To: Exchange Discussions Subject: RE: Outlook Security update over ride and Citrix terminal server - - -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Ok here is the lowdown.. Windows 2k SP 1 Advanced Server with Terminal Services activated Citrix Metaframe 1.8 sp3 It is part of a Citrix server farm, but the only server with this app published Outlook 2k SR1+security update installed via add remove programs with the command '*:\setup.exe Transforms=c:\temp\termsrvr.mst' where termservr.mst came from ms office resource kit. Outlook works for all users. No roaming profiles.. I checked permissions of the registry key Security with the DWORD value 'CheckAdminSettings' set to 1, everyone has read permissions. I am running out of ideas. It isn't a normal situation, because remote users are client from Terminal server.. Please help..? ~John - - - -----Original Message----- From: Andy David [mailto:[EMAIL PROTECTED]] Sent: Wednesday, October 31, 2001 9:09 AM To: Exchange Discussions Subject: RE: Outlook Security update over ride and Citrix terminal server What version of Outlook, TSE and MetaFrame (SP level as well) are you using? Also, how did you Originally install Outlook? Do you use roaming profiles? - - - -----Original Message----- From: King, John [mailto:[EMAIL PROTECTED]] Sent: Wednesday, October 31, 2001 8:10 AM To: Exchange Discussions Subject: Outlook Security update over ride and Citrix terminal server - - - -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello, I am new to this list so please bear with me. I have already searched the archive and found nothing on this issue.. I have deployed the Outlook security update to my users here. Sales runs a custom app that uses MAPI functions, which needs special security update over ride features set per users. I have done this and it works fine. I downloaded the adminpack.exe setup the proper form, set the client registry key and so on.. My local LAN users work fine. I have a handful of sales users connecting through a WAN to a Terminal Citrix server farm.. They need the same over ride access to email a quote from the same app that is published and run from the Citrix server. Outlook is installed and I have done the same registry key modifications, but it will not work. The only difference here is that the remote users are running this app through terminal server.. I have not rebooted the server since adding the registry values, I am under the impression that it is an on the fly check performed when over ride access is needed..? Does anyone have any ideas? Has this been done before.? I am sorry if this is an already discussed issue.. Any help would be greatly appreciated.. Uh also it is Exchange 5.5 sp4.. Sorry if this comes through twice.. Thanks, ~John - - - -----BEGIN PGP SIGNATURE----- Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com> iQA/AwUBO9/4U7lMSqGNvpxoEQJohgCfUsxKxe/XCmp9zNSplW9zZbHFn2sAoNeb KTYvrI5mfWf5zb+uaIq24Ofp =Rl8B - - - -----END PGP SIGNATURE----- _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] - - -----BEGIN PGP SIGNATURE----- Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com> iQA/AwUBO+AMYrlMSqGNvpxoEQJT8QCg4QDlIJXaJ/q59jS8VfhroWx7yU0An2XB 09ClqDRpgjbtv7cmIw+kp5+p =Ztdh - - -----END PGP SIGNATURE----- _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] - -----BEGIN PGP SIGNATURE----- Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com> iQA/AwUBO+AX7blMSqGNvpxoEQJ18QCfR+Kj2w61Kqhjvfm/ptPcJ3hSnZ0AoOPQ kBCfFkjF93RPvlL4StRIK3aI =mdat - -----END PGP SIGNATURE----- _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] -----BEGIN PGP SIGNATURE----- Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com> iQA/AwUBO+AfLLlMSqGNvpxoEQLdOwCgntgo6W2oX5G3dcJ20cFGeasu1asAoNJg /GKcSZ5+kIS8+v8qZ34bP85T =cBne -----END PGP SIGNATURE----- _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED]