n (ES: \\srvprinter01\HPLASERJ3)
or IP / Netbios resolution
(ES: \\172.16.16.1\HPLASERJ3)
I hope that is useful
>From: Bjelke John A Contr AFRL/VSIO <[EMAIL PROTECTED]>
>Reply-To: [EMAIL PROTECTED]
>To: "'[EMAIL PROTECTED]'" <[EMAIL PROTECTED]>
>Subject: RE: [Act
TNG, SYmantec,
packet to run on every machine.
If you need of a creator of MSI look at your Win2k CD in support and search
for winstle product.
Is very easier to use.
Good Luke
>From: Bjelke John A Contr AFRL/VSIO <[EMAIL PROTECTED]>
>Reply-To: [EMAIL PROTECTED]
>To:
Can one of the resident Aelita gurus please contact me off list? I have some
questions resulting from a few test migrations in our production
environments that we would like to ask before the "go-live" date, which is
almost upon us. Thanks!
John A. Bjelke
Unisys
5
Last logon is kept in the registry on the local machine, unless your
policies prevent that being kept, as DefaultUserName. Take a look @
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\DefaultUserName.
You could write it to a log as part of the login script, along with current
time and c
If you do have a lot of BDC's, you might want to look at Upromote...
http://www.algintech.com/UTools/UPromote.asp
-Original Message-
From: Jimmy Andersson [mailto:jimmy@;mvps.org]
Sent: Friday, November 08, 2002 8:31 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Switching Mixed mode t
BTW, you can also pull the last domain name logged into from the
DefaultDomainName under that same reg key. You might need to do this,
judging from your description of what you're trying to do. Otherwise, you
may drive yourself nuts trying to match local account logins with
non-existant DC records
Title: Script for publishing printers?
Hey folks!
quick question, and one I hope there is a relatively easy answer to:
Print servers migrated to AD via Aelita tools. Need to publish all of the printers on the server. Is there a way to script this, or do I need to manually go through
al Message ------
From: Bjelke John A Contr AFRL/VSIO <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
Date: Tue, 19 Nov 2002 15:26:31 -
Hey folks!
quick question, and one I hope there is a relatively easy answer to:
Print servers migrated to AD via Aelit
uot; setting
from scriptso on to next bit :)
You can also use a group policy setting on the
print server to force publishing of printers in AD:
http://support.microsoft.com/default.aspx?scid=kb;EN-US;234270
HTH
Glenn
- Original Message -
From:
ox pq.Name & " is a " & pq.Model
> Next P
>
> Unfortunately havent figured out how to set the "Publish in AD"
> setting
from scriptso on to next bit :)
>
>
> You can also use a group policy setting on the print server to force
publishing of pr
Chris, create a new email profile in Outlook. I have seen this behaviour
when the user profile is corrupted and will not establish a proper
authentication token. Out of curiousity, do the multiple logon failures in
outlook trigger your account lockout policy against her domain account? If
it doesn'
Title: Message
UserAdmin.pl from the resource kit... export from one, delete,
create and import to the other?
-Original Message-From:
Salandra, Justin A. [mailto:[EMAIL PROTECTED]] Sent: Tuesday,
December 10, 2002 2:18 PMTo:
'[EMAIL PROTECTED]'Subject: RE: [ActiveDir] Moving user
Chris,
you may want to create an ldap query in your vb script to what ever
container you are trying to enumerate and run through each object in that
container, write that to a csv (or text, whatever you need), and then move
on to the next container. Nested "for" loops would probably be the
I second that. Antigen is very good. I would suggest keeping different
vendor's AV solutions on your SMTP Gateway vs. your Exchange servers... If
one of them doesn't catch it, the heuristics of the other AV engine (or the
newer defs that one vendor releases before the other) might, increasing your
Title: Message
Really? Do they have a ritual for server cleansing and consecration?
Maybe a psalm to ward off PHB's? :^)
-Original Message-From: Leney, Justin
[mailto:[EMAIL PROTECTED]] Sent: Friday, December 27, 2002 9:25
AMTo: '[EMAIL PROTECTED]'Subject: RE:
[ActiveD
We have used the Winternals Linux-based pwd recovery disks with much
success. Another alternative, but one of last resort IMHO, is to boot to
either a *nix cd or diskette with NTFS support (there are numerous *nix
distros out there that can be burned to cd and booted to for forensics and
other disa
Thom, I've never heard of such a tool, but if one does exist it will
probably not save you time in this scenario... you will still have to back
up this large amount of data prior to using any disk editor tool that
purports to do this or risk losing it entirely. I would strongly suggest
going with t
Title: Message
Java
debug manager/registrar. Little teddy bear icon, right? http://support.microsoft.com/default.aspx?scid=kb;en-us;Q322993
-Original Message-From: bobo
[mailto:[EMAIL PROTECTED]] Sent: Wednesday, January 08, 2003 5:22
AMTo: [EMAIL PROTECTED]Subject: [ActiveD
Greg is correct... If the mail store that the outlook profile is pointing to
no longer exists or is no longer contactable by the client, outlook will
never get repointed to the new location. In this case, you would have to
manually repoint the outlook profile to the new mail store to resolve the
ma
Title: Message
Their
Mini-Remote Control program is pretty handy as well.
-Original Message-From: Weston Rogers
[mailto:[EMAIL PROTECTED]] Sent: Wednesday, January 15, 2003
7:40 AMTo: [EMAIL PROTECTED]Subject: RE:
[ActiveDir] ADSI and RAS
woh, dameware is pretty
sweet
Title: Message
Manual
drive mappings with old passwords..
-Original Message-From: John F. Hann
[mailto:[EMAIL PROTECTED]] Sent: Wednesday, January 15, 2003 8:05
AMTo: [EMAIL PROTECTED]Subject: RE:
[ActiveDir] User's Account Locked out Every morning
Logged in another PC
Title: Message
John,
FWIW, I have heard from a few "white
hats" that VNC is easy to hack because it stores passwords in known encryption
algorythms in the regsitry. http://online.securityfocus.com/bid/854/discussion
and http://www.kb.cert.org/vuls/id/197477 show
some more detail on this
Justin,
while I have not heard that either, if MS stops selling 2K to OEM's,
which would be the most likely scenario in the case of any moratorium on 2K,
my understanding is that the licensing agreement should allow you to legally
install 2K on a box under the XP or 2K3 OEM license. That i
Jimmy, great link. I hadn't seen this. Thanks!
-Original Message-
From: Jimmy Andersson [mailto:[EMAIL PROTECTED]]
Sent: Friday, January 31, 2003 11:52 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Question
See the License Availability Roadmap at:
http://www.microsoft.com/windows/li
http://www.quakenbush.com/ Password Appraiser is good. Anaxis Password
Policy Enforcer is useful as well:
http://www.tpis.com.au/products/ppe/default.htm
-Original Message-
From: Thommes, Michael M. [mailto:[EMAIL PROTECTED]]
Sent: Friday, January 31, 2003 2:02 PM
To: '[EMAIL PROTECTED]'
One possible solution would be to disconnect the network cable and try
logging on as the user who encrypted them, assuming that their are
credentials cached on the machine.
-Original Message-
From: Roger Seielstad [mailto:[EMAIL PROTECTED]]
Sent: Monday, February 03, 2003 10:14 AM
To: '[E
Title: Message
Can
you use Group.vbs from the Resource Kit? You can use the /S to specify remote
servers, and perhaps you could wrap this in another script to loop through all
of your servers.
-Original Message-From: Brad Martin
[mailto:[EMAIL PROTECTED]] Sent: Monday, Februa
Title: Message
Or
perhaps the "Global Groups" from res kit?
Displays members of global groups on remote servers or
domains.
GLOBAL
group_name domain_name | \\server
group_name The name of the global group to list the members
of. domain_name The name of a network domain. \\server
Mike,
Now, this peaks my interest. Can you elaborate on how
RestrictAnonymous of 2 would effect changing of passwords?
John A. Bjelke
Unisys
[EMAIL PROTECTED]
-Original Message-
From: Thommes, Michael M. [mailto:[EMAIL PROTECTED]]
Sent: Wednesday,
Rob,
Does this same behavior exhibit if she logs on to another system?
Does it exhibit if you log on to her system as yourself?
-Original Message-
From: Rob Freeman [mailto:[EMAIL PROTECTED]]
Sent: Thursday, February 20, 2003 9:07 AM
To: [EMAIL PROTECTED]
Subject: [ActiveDir] Sin
Yes, it exists on different machines that she logs onto within the domain.
Yes, if I log into her machine, I can run the task manager and the batch
file.
- Original Message -
From: "Bjelke John A Contr AFRL/VSIO" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Th
Clyde,
Can you parse security logs on the DC's forEvent ID: 629 Type:
Success Audit
Description: User Account Disabled?
-Original Message-
From: Burns, Clyde [mailto:[EMAIL PROTECTED]]
Sent: Thursday, February 20, 2003 10:47 AM
To: [EMAIL PROTECTED]
Subject: [ActiveDir] Dete
r the
user.
Is GPResults.exe on the Resource kit?
Thanks
Rob
- Original Message -
From: "Bjelke John A Contr AFRL/VSIO" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, February 20, 2003 11:12 AM
Subject: RE: [ActiveDir] Single user problem in AD
&g
D]
Subject: Re: [ActiveDir] Single user problem in AD
Yes, it exists on different machines that she logs onto within the domain.
Yes, if I log into her machine, I can run the task manager and the batch
file.
- Original Message -----
From: "Bjelke John A Contr AFRL/VSIO" <[EMAIL
hen a user account was disabled.
Unfortunately the event logs dont go back that far.
And something else is touching the accounts and updating the whenchanged
value.
-Original Message-----
From: Bjelke John A Contr AFRL/VSIO [mailto:[EMAIL PROTECTED]]
Sent: Thursday, February 20, 2003 12:57 PM
T
If certain OU's need to not get the domain policies pushed down upon them,
you would want to block inheritance. Perhaps your domain policies aren't as
strict as the Finance folks want their security to be. Put them in their own
OU and block inheritance, then set up a policy on that OU specifically.
Greg,
If you restrict it so that no one except the user your web script
runs as can create accts and are specifying the container in your script,
then they will still be able to create accts, they will just be forced to
use your web script to do so. This would achive your stated goal, woul
--Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Bjelke John A Contr
AFRL/VSIO
Sent: Wednesday, February 26, 2003 3:40 PM
To: '[EMAIL PROTECTED]'
Subject: RE: [ActiveDir] Remove the ability to create computer accounts in
the computer container
Greg,
Title: OT: Identifying laptops on domain
Perhaps someone here might know:
Is there any machine attribute or registry value that can be queried to differentiate workstations and laptops on a domain? We have a circumstance that requires laptops to be addressed differently from worksta
in
You can do this with segmentation on a DHCP network.
Martial
-Message d'origine-----
De: Bjelke John A Contr AFRL/VSIO [mailto:[EMAIL PROTECTED]
Date: vendredi 7 mars 2003 16:04
À: '[EMAIL PROTECTED]'
Objet: [ActiveDir] OT: Identifying laptops on domain
Perhaps someone
process to break them out.
R/Bill
-Original Message-
From: Bjelke John A Contr AFRL/VSIO [mailto:[EMAIL PROTECTED]
Sent: Friday, March 07, 2003 10:32 AM
To: '[EMAIL PROTECTED]'
Subject:RE: [ActiveDir] OT: Identifying laptops on domain
Existing IP scheme is st
24 possible values. Seems like this might be
the magic bullet, but I definately need to test. Thanks for the suggestion!
Regards,
John A. Bjelke
-Original Message-
From: Bjelke John A Contr AFRL/VSIO [mailto:[EMAIL PROTECTED]
Sent: Friday, March 07, 20
Title: Anybody see Gil's article?
March issue of Windows & .NET magazine has an article by Gil Kirkpatrick on AD Authentication Topology that is definitely worth a read.
http://www.winnetmag.com/Articles/Index.cfm?ArticleID=37935 is the article online. Good stuff Gil!
John A. Bjel
-Original Message-
From: PERRIN Martial (EURIWARE) [mailto:[EMAIL PROTECTED]
Sent: Friday, March 07, 2003 8:16 AM
To: '[EMAIL PROTECTED]'
Subject: RE: [ActiveDir] OT: Identifying laptops on domain
You can do this with segmentation on a DHCP network.
Martial
-Message d'or
Title: Message
Mike,
I would transfer any roles to servers
in the site that will be retained, then demote all of the dc's in the sites
to be excised from AD to member servers. Then remove the site links. If
your email site is exchange 5.5, you should remove any mail
servers th
Mark,
I have seen that happen after making security policy changes,
specifically "Prevent users from installing printer drivers". Are you trying
this as yourself, or as the local administrator account?
-Original Message-
From: Abbiss, Mark [mailto:[EMAIL PROTECTED]
Sent: Thursda
Title: Message
Another possibility is that manual mappings to shared drives were done
under an old password, and the system stored that in the registry. Disconnect
the network drives and then reconnect. We do our standard mappings in the login
script, and strongly discourage manual mappings t
Sounds like you have a "ghosted" adapter that was setup running a private IP
address at some point and still exists in the registry. Try this:
Click Start, click Run, type cmd.exe, and then press ENTER.
Type set devmgr_show_nonpresent_devices=1, and then press ENTER.
Type Start DEVMGMT.MSC, and the
Title: OT: Tivoli
Thanks Larry! That'll do nicely. As for not furthering the cause, I'm with ya brother. Not my choice, but I can only salute and move on. Eric, thanks as well. I just wish we were using framework 4.1 instead of 3.7. *sigh*
John A. Bjelke
Unisys
was
driving him crazy. Scratch the chicken off the list of how to win friends
and influence people.
-gil
-Original Message-----
From: Bjelke John A Contr AFRL/VSIO [mailto:[EMAIL PROTECTED]
Sent: Tuesday, August 05, 2003 12:01 PM
To: '[EMAIL PROTECTED]'
Subject: RE: [ActiveDir] WOT
ar in the
hearts of dogs, cats, and small children.
Are you coming to DEC Ottawa? I can give it to you there, along with your
free beer. Otherwise, send me your shipping info offlist, and no beer for
you.
-gil
-----Original Message-
From: Bjelke John A Contr AFRL/VSIO [mailto:[EMAIL PROT
prints a table of primes, formatting it into columns. What's my prize :^)
John A. Bjelke
Unisys
505.853.6774
[EMAIL PROTECTED]
If it's as difficult as pulling teeth through an elephants rump, then the
approach needs to be reevaluated.
-Original Message---
Title: Message
One
way to go about it would be to turn up the auditing and query the event log
on the machine for login success/failure events.
John A. Bjelke
Unisys 505.853.6774
[EMAIL PROTECTED]
"Many of life's failures are people who did not
realize
James,
I had similar issues on my home network from my desktop firewall
blocking on netbios resolution. The other possibility is that who ever is
the browse master has gone stupid and needs a reboot :^)
John A. Bjelke
Unisys
505.853.6774
[EMAIL PROTECTE
http://www.microsoft.com/WindowsXP/pro/techinfo/productdoc/gpss.asp
John A. Bjelke
Unisys
505.853.6774
[EMAIL PROTECTED]
Computers are like Old Testament gods; lots of rules and no mercy. - Joseph
Campbell
-Original Message-
From: Ellis, Debbie [mai
"When I spoke at the 2002 AFITC, a general from ACC (I've forgotten his
name) told me that someone in his office had received one and the noise was
driving him crazy. Scratch the chicken off the list of how to win friends
and influence people."
LOL! That's great Gil! Thanks!
John A. Bj
EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Bjelke John A Contr
AFRL/VSIO
Sent: Tuesday, August 05, 2003 1:39 PM
To: '[EMAIL PROTECTED]'
Subject: RE: [ActiveDir] WOT Unreadable code (was Connection String)
prints a table of primes, formatting it into columns.
Dennis,
He's not looking to set this through policy, methinks.
Erick, try this link for how to do this through script:
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/netdir/adsi
/winnt_account_expiration.asp
Watch the word wrap, and good luck!
John A.
c 'them' versus specifically 'her' as indicated by
the gender of the pronoun...
:o)
joe
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Bjelke John A Contr
AFRL/VSIO
Sent: Friday, August 08, 2003 10:21 AM
To: '[EMAIL PROTECTED]'
(I've forgotten his name)
told me that someone in his office had received one and the noise was
driving him crazy. Scratch the chicken off the list of how to win friends
and influence people.
-gil
-Original Message-
From: Bjelke John A Contr AFRL/VSIO [mailto:[EMAIL PROTECTED]
Sent:
efore.
I think I've created a monster.
Tony -- Original Message
---------- From: Bjelke John A
Contr AFRL/VSIO <[EMAIL PROTECTED]> Reply-To: [EMAIL PROTECTED] Date: Tue, 19 Aug 2003 19:34:43 +0100
Gil,
received one screamin rub
Title: Message
Man, I
must be havin a ball.
John A. Bjelke
Unisys 505.853.6774
[EMAIL PROTECTED]
"Many of life's failures are people who did not
realize how close they were to success when they gave
up."
-Thomas Edison
Title: Message
Probaby a bad driver... Download new one and reinstall the printer.
Also, there are some viruses that cause things like this... either macro
viruses that replace the Normal.dot to corrupt your office settings, or ones
that actually corrupt the printer driver. Rename your norma
Cindy, here's the link to the sizer tool.
http://www.microsoft.com/windows2000/downloads/tools/sizer/default.asp
John A. Bjelke AFRL\VSIO
Business Support Analyst
UNISYS
Supporting AFRL
Kirtland AFB, NM
505.853.6087
[EMAIL PROTECTED]
-Original Message-
From: Rittenhouse, Ci
ntp2.usno.navy.mil at
192.5.41.209
tock.usno.navy.mil at
192.5.41.41
John A. Bjelke AFRL\VSIO Business Support Analyst UNISYS
Supporting AFRL Kirtland AFB, NM
505.853.6087 [EMAIL PROTECTED] === "Oh, you hate you
Here
is a page with a pretty up to date list of public primary NTP servers:
http://www.eecis.udel.edu/~mills/ntp/clock1.htm
-Original Message-From: Joe Baird
[mailto:[EMAIL PROTECTED]]Sent: Wednesday, August 15, 2001
9:05 AMTo: [EMAIL PROTECTED]Subject:
[ActiveDir] Time Clock
C
For general list information including unsubscribe procedure see:
http://www.activedir.org/mail_list.htm
-Original Message-
From: Mark Abbiss [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, October 30, 2001 3:42 AM
To: [EMAIL PROTECTED]
Subject: [ActiveDir] Please
I want to unsubscribe
*hoists another pint of Guiness and smiles beatifically at the ringing email
support lines*
-Original Message-
From: Elizabeth Farrell [mailto:[EMAIL PROTECTED]]
Sent: Thursday, November 29, 2001 12:04 PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Exchange SP2 out today
/me marvels
Actually, we have seen similar issues in our mixed mode domain. Sometimes,
it seems that there is a sync problem between pdc and bdc's. Other times, we
have no clue why it is occuring to an individual over and over again. We
have even gone so far as to delete and recreate accounts in AD for users
James,
unfortunately, the bulk of our experince
has been in using SMS to push patches and updates. I really don't think building
a new .msi file is the way you want to go. Slip-streaming the patches into the
original installs has worked very well for us, and has allowed us to k
I have seen incorrect path statements in the environment settings cause vbs
login scripts to bomb out. Compare the path statements on the ones that work
to the ones that don't. This would especially be indicative if it is a "it
used to work and now it doesn't" situation. Software installs often ad
There are a number of internet tracking applications out there that will
track the ammount of time connected to a given URL. I believe some proxies
can be configured to do this as well. Have fun parsing those logs... I
wouldn't want to do it. Sessionwall from SSi will do this and much much
more...
Title: OT: Data Recovery
Lost&Found is a pretty good recovery tool from
PowerQuest software. The time frame doesn't matter, what matters is subsequent
drive activity since the deleteion. If those sectors have been written to, write
off the data as a loss.
John A. Bjelke AFRL\VSIO Business
You mean made by Execusoft, who also makes Diskeeper :^)
-Original Message-
From: Tom Meunier [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, January 22, 2002 8:27 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] OT: Data Recovery
sorry, I said Diskeeper; I meant Undelete(tm) which is made b
Did you slip-stream the service pack and hot fixes prior to the ris, or
after you have pushed the image to the system? I belive that if you apply
SP2 AFTER the install through ris, the image will NOt match the install.
-Original Message-
From: Morgan, Joshua [mailto:[EMAIL PROTECTED]]
Sen
471-9938 512-619-9016
-Original Message----- From:
Bjelke John A Contr AFRL/VSIO [mailto:[EMAIL PROTECTED]]
Sent: Thursday, January 24, 2002 9:27 AM
To: '[EMAIL PROTECTED]' Subject: RE: [ActiveDir] RIS and RipRep
Did you slip-stream the service pack and hot fixes p
This is the only things I can find on this issue. Q179483. Hope it helps!
Error Msg: No More Connections Can Be Made At This Time
--
The information in this article applies to:
Microsoft Windows 2000 , Professional
Mi
Title: Message
Is the
computer browser service started?
-Original Message-From: Dipowarga Wirawan
[mailto:[EMAIL PROTECTED]]Sent: Friday, February 15, 2002 9:47
AMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir]
VPN W2K Cannot See Other Computers Except the Server
I
just found out tha
DHCP is going to work on a "first available" basis.. i.e., the first DHCP
server that a system can contact when it looks for a lease will issue an IP
and register the connection in dynamic DNS. This could cause managing
computer domain accounts to get ugly, unless you are willing to keep all
compu
dsniff can sniff a switched network... runs on Uni*
systems... I'm sure you will find it on
insecure.org or really any 'security' site out on the web .
Good luck!
-JB
John A. Bjelke AFRL\VSIO Business Support Analyst UNISYS Supporting AFRL
Kirtland AFB,
NM 505.853
James,
The rough instructions are in Q296723, but the
specific outline is something like this:
1. Copy the Windows 2000 CD-ROM onto
the HD
2. Slipstream SP2 into it (update
-s:path)
3. Extract the SRP1 files somewhere
(sp2srp1 -x:path)
From this point, what you have to do is
remove matchin
Another thing to note on HP jetdirect.. there are servers turned on by
default with blank passwords that could allow a malicious user to change
things, such as IP config. Imagine the havoc caused by someone setting the
IP on an unsecured HP printer to the same as the gateway on that subnet...
-
Well, the XP version of 2KAdvancedServer is .Net Server, which I don't
believe has been fully released yet. XP workstations should integrate nicely
in a 2K AD environment.
Good luck! -JB
John A. Bjelke AFRL\VSIO
Business Support Analyst
UNISYS
Supporting AFRL
Kirtland AFB,
Well, I would use a registry snap-shot tool and take a snap before change an
compare it to after. Keep in mind that not all of the registry entries may
be captured, however...
We just had an instance where we were trying to programatically set a check
in a box in the file and print sharing under
Scott,
I can only assume you are looking to programatically change this
setting in your environment. Here is a snippet of the vbs code we use to
toggle this off. Best of luck!
John A. Bjelke AFRL\VSIO
Business Support Analyst
UNISYS
Supporting AFRL
Kirtland A
I always thought UTC in relation to computing was the number of non-leap
seconds that have elapsed since 00:00:00 January 1, 1970. I find the choice
of Jan 01, 1601 to be a little bizarre in this context. Was this a typo? Or
is that how UTC is now measured in AD?
-Original Message-
From:
Do you
use Outlook Web Access on Exchange? There is a password change applet
built-in there that should work for what you need.
-John
-Original Message-From: Izzy
[mailto:[EMAIL PROTECTED]]Sent: Friday, May 17, 2002 12:46
PMTo: '[EMAIL PROTECTED]'Subject: [ActiveDir]
Simple Passwor
ot; person can reset another user's password or unlock
their account, assuming they forgot their password.
-Original
Message-From: Bjelke John
A Contr AFRL/VSIO [mailto:[EMAIL PROTECTED]] Sent: Friday, May 17,
2002 1:55
PMTo:
'[EMAIL PROTECTED]'Subject: RE: [Active
Don,
Check for policy changes. The "you are not authorized to change your
password" error message appears to be the default error message. Our users
see this error all the time if they are not meeting the length and
complexity requirements. Hope this helps!
John A. Bjelke AFRL\VSIO
Bus
David,
the way to best reduce total cost of ownership on any network (and
the amount of work you have to put in on it) is to go to a standardized
desktop environment where possible. The fewer hardware and software
configurations an organization has, the easier, theoretically at least, it
What about using hosts files as a fail over for DNS? Seems like less work to
me.
John A. Bjelke
UNISYS
Systems administrator
505.846.5894
[EMAIL PROTECTED]
-Original Message-
From: Morgan, Joshua [mailto:[EMAIL PROTECTED]]
Sent: Thursday, July 18, 20
Yusuf,
we wrestled with the same issue for a while and Microsoft addressed
it on Technet
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q301381 ...it was a
problem with the version of msgina.dll. SP3 is supposed to correct this,
though when we had the issue it was pre-sp3 releas
Why not block his web-mail site @ the firewall? He might have legitimate
project related need for web access, but if you can point to virus
infections from his web-based email you should be able to justify blocking
the site for everyone.
John A. Bjelke
Unisys
505.85
Heh. I like it. And of course, thumbcuffs would work wonders to prevent
inapropriate surfing... :^)
-Original Message-
From: Puckett, Richard [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, October 15, 2002 4:03 PM
To: '[EMAIL PROTECTED]'
Subject: RE: [ActiveDir] Disable IE via GPO
If you w
go there. But I certainly
have considered the idea along with blocking IM traffic.
Jim Liddil
> -Original Message-
> From: Bjelke John A Contr AFRL/VSIO
> [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, October 15, 2002 4:22 PM
> To: '[EMAIL PROTECTED]'
> Subje
[EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]] On Behalf Of
> Bjelke John A Contr AFRL/VSIO
> Sent: Wednesday, October 16, 2002 12:12 PM
> To: '[EMAIL PROTECTED]'
> Subject: RE: [ActiveDir] Disable IE via GPO
>
>
> Well, you *could* write code into his login sc
What if you create a less restricted service acct, something like
Backflip_service, and a script to allow users to open this site only as this
service acct... would that accomplish your goals?
John A. Bjelke
Unisys
505.853.6774
[EMAIL PROTECTED]
The more corrupt
Hey folks...
I need to automate repointing print queues on ~2000 clients to a
different print server and retain user settings on each queue... does anyone
know how to RENAME a registry key, either in VB, Perl, C++, or WSH? I can
pull the value and create a new key to the same printer name
;s
books covers that in detail.
--
Roger D. Seielstad - MCSE
Sr. Systems Administrator
Inovis - Formerly Harbinger and Extricity
Atlanta, GA
> -----Original Message-
> From: Bjelke John A Contr AFRL/VSIO
> [mailto:John.Bjelke@;kirtland.af.mil]
> Sent: Thursday, Octobe
ubject: RE: [ActiveDir] OT: Scripting question
I don't think there is a rename. You would just read the old, write the new
with that info and then delete the old.
-Original Message-----
From: Bjelke John A Contr AFRL/VSIO [mailto:John.Bjelke@;kirtland.af.mil]
Sent: Thursday, October 24, 2002 11:09
1 - 100 of 104 matches
Mail list logo
