Full Armor's GPO Repository would be a good choice.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of Darren Mar-Elia
Sent: Wednesday, July 07, 2004 12:33 PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Question on Auditing GPO Changes
David-
It depends upo
DISABLE_OUTBOUND_REPL will just refuse the sync request. If you want it to
override it you can use /force option.
- Original Message -
From: "Graham Turner" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, July 07, 2004 10:59 AM
Subject: [ActiveDir] disable_outbound_repl
>
Confused a little:
How can DHCP manage IP addresses it considers out of scope? Or are you
referring to the idea that DHCP is allowed to register DNS addresses
perhaps?
As for the differences? Having used both, I'd say both have plusses and
minusses.
On the plus side, QIP is pretty feature rich
Hi there,
I have a customer who where we implemented the least permissions
necessary for each group fulfilling administrative tasks. One of those
tasks is that they are required that just a small group has the
permissions to grant RAS permissions, and every useraccount is forced
to be
test
_
Get tips for maintaining your PC, notebook accessories and reviews in
Technology 101. http://special.msn.com/tech/technology101.armx
List info : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/l
We used to use both MetaIP DNS and DHCP along with a plethora of Netware
server. When we migrated to Active Directory we dropped MetaIP DNS and
Netware DNS and went to Microsoft AD-integrated DNS exclusively. We did
keep MetaIP DHCP because of the nice-to-have features such as automatic
failover
We currently have a mish-mash of Microsoft DNS and DHCP in use as well as QIP
(outdated and not supported) for these services. Our network group is strongly in
favor of an overall IP address management tool such as QIP or MetaIP for DNS and DHCP
as these are just part of the capability of the t
just doing some planning work for schema update to applying exchange 2003
forestprep
have viewed the equivalent docs for adprep on win2k3 -
i like very much the concept of disabling outbound repl from the schema
master server to which the update is applied using repadmin
/disable_outbound_repl co
David-
It depends upon what you are really interested in seeing. There is no
good way, out-of-the-box, to audit what change was actually made to a
particular GPO setting in either Win2K or Win2k3. If you just want to
see that "somebody" made "some" change to a GPO, then you can use DS
auditing to l
What's the best way to audit for GPO changes? I enabled "Audit directory
service access", which causes an audit event to occur, but it also does the
same for other kinds of DS changes, which make it a bit more cumbersome.
This is for Windows 2000, btw. Is it easier to do with W2K3?
I thought per
Greetings everyone, Happy 4th.
Got a question for you all. I got an Event ID 11 saying that I had a
duplicate SPN in the AD for a record. So I followed the instructions on
Eventid.net to identify the source. Using LDP, I discovered that several
GC's in domains seemed to have the dorked up SPN r
Ok, Thanks all for your input!!!
John Parker, MCSE
IS Admin.
Senior Technical Specialist
Alpha Display Systems.
Alpha Video
7711 Computer Ave.
Edina, MN. 55435
952-896-9898 Local
800-388-0008 Watts
952-896-9899 Fax
612-804-8769 Cell
952-841-3327 Direct
[EMAIL PROTECTED]
"Be excel
> I seem to remember that I talked with Microsoft Support about this
awhile
> back, and they indicated there was a way to force deleted objects to
> retain additional attributes than those retained by default.
0x8 in searchFlags on the attribute in question in the schema.
This is a forest-wide set
To be completely; you can indeed do exactly that assuming the object in
question remains on the DC in the desired state. The NTBACKUP (or whatever
software you're using) component of the restore is merely putting the data
back locally which is unnecessary if we already have what we want.
The au
14 matches
Mail list logo