RE: [ActiveDir] Identify STATIC records in AD DNS

[Grillenmeier, Guido]

usually static records also have different ACLs - i.e. 
records that were registered by machineX have an ACL which grant machineX write 
privs to the respective DNS AD object.
 
note that by default in Win2000 a static record added to 
DNS by an administrator was granting Authenticated Users write privs to the 
record => which means it can be overwritten by any machine or use. Not so 
static afterall...  You may want to check your ACLs.
 
This was changed in Win2003 (I'm not sure, but I think 
it was also changed in 2000 SP4).
 
/Guido


From: [EMAIL PROTECTED] 
[mailto:[EMAIL PROTECTED] On Behalf Of Deji 
AkomolafeSent: Dienstag, 8. Juni 2004 05:23To: 
[EMAIL PROTECTED]Subject: RE: [ActiveDir] Identify STATIC 
records in AD DNS


Have you tried parsing the 
output of "dnscmd DNSServerName /ZonePrint ZoneName /Detail" ?
 
Records without scavenging timestamp will 
have the following clue: "dwTimeStamp  = 0 ([ 0: 0: 0] [ 1/ 
1/1601])"
 
HTH


 
Sincerely,Dèjì Akómöláfé, 
MCSE MCSA MCP+I
Microsoft MVP 
- Directory Services
www.readymaids.com - we know 
ITwww.akomolafe.comDo you now realize that Today is 
the Tomorrow you were worried about Yesterday?  
-anon


From: JefSent: Mon 6/7/2004 6:44 
PMTo: [EMAIL PROTECTED]Subject: [ActiveDir] 
Identify STATIC records in AD DNS
Hi there,

Does anyone know of a way to programmatically identify STATIC records within
an AD integrated DNS zone?

The DNS manager gui can show if a record has a timestamp or not, but with
100's of thousands of records you can't check them all.

I've looked for a property I can search on using ADSI or WMI, but have not
found anything consistent.

The closest I found is the AD property dnsIsTombstoned.  It appears to have
3 values:

TRUE = Already tombstoned and will be replicated
FALSE = Not tombstoned yet, but can be
 = Will not be scavenged.

This is not 100% though, so I think I am missing something else.

Thanks,

Jef Kazimer



List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] AD Design on a Highspeed Network considerations

[Depp, Dennis M.]

Murray,

I like to follow the KISS principle.  I would go with one AD site.  At
my core site, I would place two DCs and make them both GCs.  I would
pick at least one additional site where I would place a DC/GC.  This
machine will server as the disaster recover for my core site.  If I have
any sites where the 10MB link is close to being saturated, I would
install a DC/GC there as well.  (Assuming I can keep the machine
physically secured.)  I think you can support this configuration with 2
DCs.  The additional machines I would add would be for disaster recovery
and increased reliability.

Do you have the option on upgrading to Outlook 2003?  If so this will
greatly decrease the amount of MAPI traffic across your network.

Denny

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Murray Wall
Sent: Monday, June 07, 2004 10:40 PM
To: [EMAIL PROTECTED]
Subject: [ActiveDir] AD Design on a Highspeed Network considerations

We are doing an AD site design and I wanted to know some thoughts of the
group here.
Assumptions
1) Single forest, Single Domain
2) Highspeed Network links to sites, 10mb, 100mb and 1GB
Available for AD/exchange
3) Centralized service provider/organization
4) Exchange 2003 SP1
5) 16000 users in 16 sites with above network speeds

Design Questions
1) Do you centralize into 1 centralized site and back haul all
network logon and exchange traffic to 1 site?
2) What are the base numbers of DC's / GC's you would need
support this config (what are the metrics of dc gc
logons/server/processor)
3) what is the typical traffic usage used during an xp network
logon session? (DHCP, DNS, Kerberos TGT, and outlook 2002 mapi logon)

Thoughts on pulling this off?

Murray Wall, MCSE, B.Ed CCNA/DA Master ASE Messaging
[EMAIL PROTECTED]
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive:
http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Setting Desktop Settings via Group Policy

[Roger Seielstad]

I remember discussing an alternate option with some people at the
Windows and Exchange Connections conference in Orlando last year.

You could use something like WinInstall LE to build an MSI, which really
just applies various registry settings and places files (like background
images) in the correct places. Then simply assign it to the users.

That should make it both self healing and significantly cleaner than ADM
files or tattooing the registry.

Roger
--
Roger D. Seielstad - MTS MCSE MS-MVP
Sr. Systems Administrator
Inovis Inc.
 

> -Original Message-
> From: Rick Kingslan [mailto:[EMAIL PROTECTED] 
> Sent: Monday, June 07, 2004 7:55 PM
> To: [EMAIL PROTECTED]
> Subject: RE: [ActiveDir] Setting Desktop Settings via Group Policy
> 
> Sadly, Raymond - most things of that ilk (background, colors, icon
> placement, etc.) are held in the profile of the user and are 
> not affected by
> current GP settings.  However, that doesn't mean that you 
> CAN'T set them via
> GP, it does mean in most cases that you will be:
> 
> 1.  Writing custom .ADM files
> 2.  Tattooing the registry
> 
> But it can be done.  Me, I'd stick with a mandatory profile 
> with permissions
> set to 'Everyone' and let it apply, then let each user 'own' 
> it (change it
> back to a local or roaming) and then use GP to lock it down. 
> 
> Rick Kingslan  MCSE, MCSA, MCT, CISSP
> Microsoft MVP:
> Windows Server / Directory Services
> Windows Server / Rights Management
> Windows Security (Affiliate)
> Associate Expert
> Expert Zone - www.microsoft.com/windowsxp/expertzone
> WebLog - www.msmvps.com/willhack4food
>  
> 
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of 
> Raymond McClinnis
> Sent: Monday, June 07, 2004 6:47 PM
> To: [EMAIL PROTECTED]
> Subject: [ActiveDir] Setting Desktop Settings via Group Policy
> 
> Hi all,
> 
> I need to push out a standard desktop to all users in my 
> company.  I found
> where to set up the Active Desktop and the like, but I can't 
> find where to
> set things like background color and pattern.  I remember in 
> the good ol'
> days (under NT4) you could set these things up (or at least I 
> thought I
> remembered).  
> 
> 
> Thanks in Advance,
> Raymond McClinnis
> 
> List info   : http://www.activedir.org/mail_list.htm
> List FAQ: http://www.activedir.org/list_faq.htm
> List archive: 
> http://www.mail-archive.com/activedir%40mail.activedir.org/
> 
> List info   : http://www.activedir.org/mail_list.htm
> List FAQ: http://www.activedir.org/list_faq.htm
> List archive: 
> http://www.mail-archive.com/activedir%40mail.activedir.org/
> 
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

[ActiveDir] OT: Compaq Servers

[Rutherford, Robert]

Title: OT: Compaq Servers






I'm sorry this is off topic but just thought I'd throw it out to see if I get a bite….


It must be that time of year again…… a large number of new servers coming in.I don't want to, or have anyone else build numerours DL360's/380's .. All with more or less the same spec and o/s build. Has anyone ever actually got the things to work with the scripting toolkit? 

TIA


Rob


This e-mail and the information it contains are confidential and may be privileged. If you have received this e-mail in error please notify the sender immediately and delete the material from any computer. Unless you are the intended recipient, you should not copy this e-mail for any purpose, or disclose its contents to any other person. The MCPS-PRS Alliance is not responsible for the completeness or accuracy of this communication as it has been transmitted over a public network. Whilst the MCPS-PRS Alliance monitors all communications for potential viruses, we accept no responsibility for any loss or damage caused by this e-mail and the information it contains.It is the recipient's responsibility to scan this e-mail and any attachments for viruses. Any e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for quality control and other purposes.The MCPS-PRS Alliance Limited is a limited company registered in England under company number 03444246 whose registered office is at c/o 29-33 Berners Street, London, W1T 3AB.

RE: [ActiveDir] AD Design on a Highspeed Network considerations

[Roger Seielstad]

>   1) Do you centralize into 1 centralized site and back haul all
> network logon and exchange traffic to 1 site?

I'd suggest different sites - the number of which is really dependent on
how your physical topology is laid out. For instance, we've got 7
offices, connected by some fairly fat WAN links (with VPN and demand
dial backup), but each physical localation is still a separate site.

Generally, I do site design based on physical network design, with site
boundaries aligned with the least reliable connections. However, there's
no harm (and possibly some good) that can come from creating sites even
within well connected, high bandwidth sites. It's a fairly detailed
process based on expected traffic patterns and if you're doing things
like site linked GPO's.

>   2) What are the base numbers of DC's / GC's you would need
> support this config (what are the metrics of dc gc
> logons/server/processor)

That's a very difficult question to accurately answer. Generally, I use
two per "major" site - a site where I want all authentication to be
local. Then again, the largest site I've got is 250 users, but my DC's
aren't even working hard.

With regards to Exchange, the typical recommendation is to use 1 DC/GC
processor per 4 Exchange processors. I'd extend that to be plus an extra
box for redundancy purposes.

Roger
--
Roger D. Seielstad - MTS MCSE MS-MVP
Sr. Systems Administrator
Inovis Inc.
 

> -Original Message-
> From: Murray Wall [mailto:[EMAIL PROTECTED] 
> Sent: Monday, June 07, 2004 10:40 PM
> To: [EMAIL PROTECTED]
> Subject: [ActiveDir] AD Design on a Highspeed Network considerations
> 
> We are doing an AD site design and I wanted to know some 
> thoughts of the
> group here.
>   Assumptions
>   1) Single forest, Single Domain
>   2) Highspeed Network links to sites, 10mb, 100mb and 1GB
> Available for AD/exchange
>   3) Centralized service provider/organization
>   4) Exchange 2003 SP1
>   5) 16000 users in 16 sites with above network speeds
> 
>   Design Questions
>   1) Do you centralize into 1 centralized site and back haul all
> network logon and exchange traffic to 1 site?
>   2) What are the base numbers of DC's / GC's you would need
> support this config (what are the metrics of dc gc
> logons/server/processor)
>   3) what is the typical traffic usage used during an xp network
> logon session? (DHCP, DNS, Kerberos TGT, and outlook 2002 mapi logon)
> 
> Thoughts on pulling this off?
> 
> Murray Wall, MCSE, B.Ed CCNA/DA Master ASE Messaging
> [EMAIL PROTECTED]
> List info   : http://www.activedir.org/mail_list.htm
> List FAQ: http://www.activedir.org/list_faq.htm
> List archive: 
> http://www.mail-archive.com/activedir%40mail.activedir.org/
> 
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] OT: Compaq Servers

[Roger Seielstad]

Title: OT: Compaq Servers



Have you considered something like the Automated Deployment 
System? Its part of the Dynamic Systems Initiative and its geared towards this 
kind of deployment. Its also more or less free.
http://www.microsoft.com/windowsserver2003/technologies/management/ads/default.mspx
 
Roger
-- 
Roger D. Seielstad - 
MTS MCSE MS-MVP Sr. Systems Administrator Inovis Inc. 

 

  
  
  From: Rutherford, Robert 
  [mailto:[EMAIL PROTECTED] Sent: Tuesday, 
  June 08, 2004 8:42 AMTo: 
  [EMAIL PROTECTED]Subject: [ActiveDir] OT: Compaq 
  Servers
  
  I'm sorry this is off topic but just thought I'd 
  throw it out to see if I get a bite…. 
  It must be that time of year again…… a large number 
  of new servers coming in.I don't want to, or have anyone else build numerours 
  DL360's/380's .. All with more or less the same spec and o/s build. Has anyone 
  ever actually got the things to work with the scripting toolkit? 
  TIA 
  Rob This e-mail and the information 
  it contains are confidential and may be privileged. If you have received this 
  e-mail in error please notify the sender immediately and delete the material 
  from any computer. Unless you are the intended recipient, you should not copy 
  this e-mail for any purpose, or disclose its contents to any other person. 
  The MCPS-PRS Alliance is not responsible for the completeness or accuracy 
  of this communication as it has been transmitted over a public network. Whilst 
  the MCPS-PRS Alliance monitors all communications for potential viruses, we 
  accept no responsibility for any loss or damage caused by this e-mail and the 
  information it contains.It is the recipient's responsibility to scan this 
  e-mail and any attachments for viruses. Any e-mails sent to and from the 
  MCPS-PRS Alliance servers may be monitored for quality control and other 
  purposes.The MCPS-PRS Alliance Limited is a limited company registered 
  in England under company number 03444246 whose registered office is at c/o 
  29-33 Berners Street, London, W1T 3AB.

RE: [ActiveDir] OT: Compaq Servers

[Rutherford, Robert]

Title: Message



Thanks 
Roger,
 
ADS 
does look sxy.problem is that we are still mainly W2K 
:O(
 

  
  -Original Message-From: Roger Seielstad 
  [mailto:[EMAIL PROTECTED] Sent: 08 June 2004 
  14:16To: [EMAIL PROTECTED]Subject: RE:
  [ActiveDir] OT: Compaq Servers
  Have you considered something like the Automated 
  Deployment System? Its part of the Dynamic Systems Initiative and its geared 
  towards this kind of deployment. Its also more or less 
  free.
  http://www.microsoft.com/windowsserver2003/technologies/management/ads/default.mspx
   
  Roger
  -- 
  Roger D. Seielstad 
  - MTS MCSE MS-MVP Sr. Systems Administrator Inovis Inc. 
  
   
  


From: Rutherford, Robert 
[mailto:[EMAIL PROTECTED] Sent: Tuesday, 
June 08, 2004 8:42 AMTo: 
[EMAIL PROTECTED]Subject: [ActiveDir] OT: Compaq
Servers

I'm sorry this is off topic but just thought I'd 
throw it out to see if I get a bite…. 
It must be that time of year again…… a large 
number of new servers coming in.I don't want to, or have anyone else build 
numerours DL360's/380's .. All with more or less the same spec and o/s
build. Has anyone ever actually got the things to work with the scripting 
toolkit? 
TIA 
Rob This e-mail and the
information it contains are confidential and may be privileged. If you have 
received this e-mail in error please notify the sender immediately and
delete the material from any computer. Unless you are the intended 
recipient, you should not copy this e-mail for any purpose, or disclose its 
contents to any other person. The MCPS-PRS Alliance is not responsible 
for the completeness or accuracy of this communication as it has been
transmitted over a public network. Whilst the MCPS-PRS Alliance monitors all 
communications for potential viruses, we accept no responsibility for any 
loss or damage caused by this e-mail and the information it contains.It 
is the recipient's responsibility to scan this e-mail and any attachments 
for viruses. Any e-mails sent to and from the MCPS-PRS Alliance servers 
may be monitored for quality control and other purposes.The MCPS-PRS 
Alliance Limited is a limited company registered in England under company 
number 03444246 whose registered office is at c/o 29-33 Berners Street, 
London, W1T 3AB.This e-mail and the information it contains are confidential and may be privileged. If you have received this e-mail in error please notify the sender immediately and delete the material from any computer. Unless you are the intended recipient, you should not copy this e-mail for any purpose, or disclose its contents to any other person. The MCPS-PRS Alliance is not responsible for the completeness or accuracy of this communication as it has been transmitted over a public network. Whilst the MCPS-PRS Alliance monitors all communications for potential viruses, we accept no responsibility for any loss or damage caused by this e-mail and the information it contains.It is the recipient's responsibility to scan this e-mail and any attachments for viruses. Any e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for quality control and other purposes.The MCPS-PRS Alliance Limited is a limited company registered in England under company number 03444246 whose registered office is at c/o 29-33 Berners Street, London, W1T 3AB.

RE: [ActiveDir] OT: Compaq Servers

[simon.geary]

Title: Message



Never 
used the scripting toolkit but I have deployed many a Compaq server with their 
Rapid Deployment Pack which can build a new server in a few minutes with a 
couple of mouse clicks.
http://h18004.www1.hp.com/products/servers/management/rdp.html

  
  -Original Message-From: 
  [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] 
  On Behalf Of Rutherford, RobertSent: 08 June 2004 
  13:42To: [EMAIL PROTECTED]Subject: 
  [ActiveDir] OT: Compaq Servers
  I'm sorry this is off topic but just thought I'd 
  throw it out to see if I get a bite…. 
  It must be that time of year again…… a large number 
  of new servers coming in.I don't want to, or have anyone else build numerours 
  DL360's/380's .. All with more or less the same spec and o/s build. Has anyone 
  ever actually got the things to work with the scripting toolkit? 
  TIA 
  Rob This e-mail and the information 
  it contains are confidential and may be privileged. If you have received this 
  e-mail in error please notify the sender immediately and delete the material 
  from any computer. Unless you are the intended recipient, you should not copy 
  this e-mail for any purpose, or disclose its contents to any other person. 
  The MCPS-PRS Alliance is not responsible for the completeness or accuracy 
  of this communication as it has been transmitted over a public network. Whilst 
  the MCPS-PRS Alliance monitors all communications for potential viruses, we 
  accept no responsibility for any loss or damage caused by this e-mail and the 
  information it contains.It is the recipient's responsibility to scan this 
  e-mail and any attachments for viruses. Any e-mails sent to and from the 
  MCPS-PRS Alliance servers may be monitored for quality control and other 
  purposes.The MCPS-PRS Alliance Limited is a limited company registered 
  in England under company number 03444246 whose registered office is at c/o 
  29-33 Berners Street, London, W1T 3AB.

RE: [ActiveDir] OT: Exchange 2000 upgrade woes

[Hunter, Laura E.]

> 
> Let's reset: If I understand correctly, when you set the app 
> to send email, you get the following ONLY in the log:
> 2004-06-07 18:12:32 %IP-ADDRESS-OF-WEB-SERVER% localhost.localdomain
> SMTPSVC1 HELO 250
> 2004-06-07 18:12:32 %IP-ADDRESS-OF-WEB-SERVER% localhost.localdomain
> SMTPSVC1 QUIT 240 
> 

Correct.

> 
> So your web server contacts Exchange, presents HELO and gets 
> a 250 response. So far so good.  Then it suddenly issues a quit
command?  

Correct again.  This occurs no matter how I have relaying configured
within the Exchange System Manager.

> What happens if you telnet directly and issue the commands 
> (in the web servers context?)
> 

So I telnetted to port 25 and issued the following commands:

HELO
MAIL FROM: %valid-email-addy-on-my-domain%
RCPT TO: %my-throwaway-aol-account%
DATA:
Bah!
.
QUIT

Contents of SMTP log files when telnetting...

>From my workstation:

2004-06-08 13:13:59 %MY-IP% - SMTPSVC1 HELO 250
2004-06-08 13:14:06 %MY-IP% - SMTPSVC1 MAIL 501 - (I think this was a
typo on my part)
2004-06-08 13:14:12 %MY-IP% - SMTPSVC1 MAIL 250
2004-06-08 13:14:20 %MY-IP% - SMTPSVC1 RCPT 250
2004-06-08 13:14:35 %MY-IP% - SMTPSVC1 DATA 250
2004-06-08 13:14:51 %MY-IP% - SMTPSVC1 QUIT 240

>From the web server:

2004-06-08 13:31:46 %WEB-SERVER-IP% - SMTPSVC1 HELO 250
2004-06-08 13:31:57 %WEB-SERVER-IP% - SMTPSVC1 MAIL 250
2004-06-08 13:32:08 %WEB-SERVER-IP% - SMTPSVC1 RCPT 250
2004-06-08 13:32:24 %WEB-SERVER-IP% - SMTPSVC1 DATA 250
2004-06-08 13:32:27 %WEB-SERVER-IP% - SMTPSVC1 QUIT 240

(...and both messages were delivered successfully.)
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] OT: Compaq Servers

[Frost . David]

Title: Message



I used Ghost to distribute Sysprep'd  images either by 
Multicast or IP connections on DL380's.  After the first build, each server 
was up and ready to run DCPromo within 10-15 minutes including the time to load 
the image over 100BaseT.  You can save a lot of time with the Sysprep.inf 
file for many of the tedious settings, but I found running DCPromo from the 
sysprep.inf to be hit and miss because of network configuration, so I opted to 
do that manually.


From: [EMAIL PROTECTED] 
[mailto:[EMAIL PROTECTED] On Behalf Of Rutherford, 
RobertSent: Tuesday, June 8, 2004 9:26 AMTo: 
[EMAIL PROTECTED]Subject: RE: [ActiveDir] OT: Compaq 
Servers

Thanks 
Roger,
 
ADS 
does look sxy.problem is that we are still mainly W2K 
:O(
 

  
  -Original Message-From: Roger Seielstad 
  [mailto:[EMAIL PROTECTED] Sent: 08 June 2004 
  14:16To: [EMAIL PROTECTED]Subject: RE: 
  [ActiveDir] OT: Compaq Servers
  Have you considered something like the Automated 
  Deployment System? Its part of the Dynamic Systems Initiative and its geared 
  towards this kind of deployment. Its also more or less 
  free.
  http://www.microsoft.com/windowsserver2003/technologies/management/ads/default.mspx
   
  Roger
  -- 
  Roger D. Seielstad 
  - MTS MCSE MS-MVP Sr. Systems Administrator Inovis Inc. 
  
   
  


From: Rutherford, Robert 
[mailto:[EMAIL PROTECTED] Sent: Tuesday, 
June 08, 2004 8:42 AMTo: 
[EMAIL PROTECTED]Subject: [ActiveDir] OT: Compaq 
Servers

I'm sorry this is off topic but just thought I'd 
throw it out to see if I get a bite…. 
It must be that time of year again…… a large 
number of new servers coming in.I don't want to, or have anyone else build 
numerours DL360's/380's .. All with more or less the same spec and o/s 
build. Has anyone ever actually got the things to work with the scripting 
toolkit? 
TIA 
Rob This e-mail and the 
information it contains are confidential and may be privileged. If you have 
received this e-mail in error please notify the sender immediately and 
delete the material from any computer. Unless you are the intended 
recipient, you should not copy this e-mail for any purpose, or disclose its 
contents to any other person. The MCPS-PRS Alliance is not responsible 
for the completeness or accuracy of this communication as it has been 
transmitted over a public network. Whilst the MCPS-PRS Alliance monitors all 
communications for potential viruses, we accept no responsibility for any 
loss or damage caused by this e-mail and the information it contains.It 
is the recipient's responsibility to scan this e-mail and any attachments 
for viruses. Any e-mails sent to and from the MCPS-PRS Alliance servers 
may be monitored for quality control and other purposes.The MCPS-PRS 
Alliance Limited is a limited company registered in England under company 
number 03444246 whose registered office is at c/o 29-33 Berners Street, 
London, W1T 3AB.This e-mail and the 
information it contains are confidential and may be privileged. If you have 
received this e-mail in error please notify the sender immediately and delete 
the material from any computer. Unless you are the intended recipient, you 
should not copy this e-mail for any purpose, or disclose its contents to any 
other person. The MCPS-PRS Alliance is not responsible for the completeness 
or accuracy of this communication as it has been transmitted over a public 
network. Whilst the MCPS-PRS Alliance monitors all communications for potential 
viruses, we accept no responsibility for any loss or damage caused by this 
e-mail and the information it contains.It is the recipient's responsibility 
to scan this e-mail and any attachments for viruses. Any e-mails sent to and 
from the MCPS-PRS Alliance servers may be monitored for quality control and 
other purposes.The MCPS-PRS Alliance Limited is a limited company 
registered in England under company number 03444246 whose registered office is 
at c/o 29-33 Berners Street, London, W1T 3AB.

RE: [ActiveDir] Very OT

[Kern, Tom]

I get "unterminated string constant" at the end of the first line of your script. I'm 
a perl guy, not vbs, so I don't quite know where I'm supposed to terminate(quote) the 
line.

Thanks, sorry to be a pest.

-Original Message-
From: Steve Patrick [mailto:[EMAIL PROTECTED]
Sent: Friday, June 04, 2004 3:58 PM
To: [EMAIL PROTECTED]
Subject: Re: [ActiveDir] Very OT


Here is a (cheap hack) way:

copy the text below to a script:

'
set events = getobject("winmgmts:\\.").ExecNotificationQuery("select * from
__instancedeletionevent within 2 where targetinstance isa 'win32_process'
and targetinstance.name = 'notepad.exe'")

Do
set NTevent = events.nextevent
If Err <> 0 then
msgbox "it was not = to 0"
else
msgbox "Notepad was closed"
exit do
end if
Loop

'

Now start the script "monitor.vbs"
Now start notepad.
Wait for some random time.. close notepad.exe


You should get a popup - change this to whatever action you deem necessary.

For your situation you change  notepad.exe to  your app.
Note that you can do this to a remote machine as well... substitute the
machine name like so:

("winmgmts:\\mymachine")


This is a polling process so there is some minor overhead.

-steve




- Original Message - 
From: "Mulnick, Al" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, June 07, 2004 1:53 PM
Subject: RE: [ActiveDir] Very OT


> Haven't tried it, but this looks like it might be a way
>
>
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/wmisdk/wmi/
> win32_perfrawdata_perfproc_thread.asp?frame=true
>
> You'd want to monitor thread state on a regular interval.
>
> Another option might be to use the scheduler or re-write the code to alert
> if it encounters an error.
>
> Al
>
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Kern, Tom
> Sent: Monday, June 07, 2004 4:35 PM
> To: ActiveDir (E-mail)
> Subject: [ActiveDir] Very OT
>
> Hi, I have a devloper who wrote a vb exe(not a service) that runs on start
> up on an AD DC and stays in memory in the backround.
> My question is, is there anyway to monitor if this process has stopped?
> Perhaps with a perl script. Since its not a service, I don't really know
how
> to do this.
> Also, it doesn't log anything to the event log.
>
> i couldn't find anything on my perl groups and you guys seem pretty
> knowldgable on scripting so i just thought i'd take a shot in the dark and
> post here.
> thanks and my apologies for the way OT.
> List info   : http://www.activedir.org/mail_list.htm
> List FAQ: http://www.activedir.org/list_faq.htm
> List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
> List info   : http://www.activedir.org/mail_list.htm
> List FAQ: http://www.activedir.org/list_faq.htm
> List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Very OT

[Lou Vega]

This part:
'
set events = getobject("winmgmts:\\.").ExecNotificationQuery("select * from
__instancedeletionevent within 2 where targetinstance isa 'win32_process'
and targetinstance.name = 'notepad.exe'")

Should all be on one line - no carriage returns until after the
'notepad.exe'")

The wrapping in the e-mail client goofs it all up :)



-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Kern, Tom
Sent: Tuesday, June 08, 2004 9:56 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Very OT

I get "unterminated string constant" at the end of the first line of your
script. I'm a perl guy, not vbs, so I don't quite know where I'm supposed to
terminate(quote) the line.

Thanks, sorry to be a pest.

-Original Message-
From: Steve Patrick [mailto:[EMAIL PROTECTED]
Sent: Friday, June 04, 2004 3:58 PM
To: [EMAIL PROTECTED]
Subject: Re: [ActiveDir] Very OT


Here is a (cheap hack) way:

copy the text below to a script:

'
set events = getobject("winmgmts:\\.").ExecNotificationQuery("select * from
__instancedeletionevent within 2 where targetinstance isa 'win32_process'
and targetinstance.name = 'notepad.exe'")

Do
set NTevent = events.nextevent
If Err <> 0 then
msgbox "it was not = to 0"
else
msgbox "Notepad was closed"
exit do
end if
Loop

'

Now start the script "monitor.vbs"
Now start notepad.
Wait for some random time.. close notepad.exe


You should get a popup - change this to whatever action you deem necessary.

For your situation you change  notepad.exe to  your app.
Note that you can do this to a remote machine as well... substitute the
machine name like so:

("winmgmts:\\mymachine")


This is a polling process so there is some minor overhead.

-steve




- Original Message - 
From: "Mulnick, Al" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, June 07, 2004 1:53 PM
Subject: RE: [ActiveDir] Very OT


> Haven't tried it, but this looks like it might be a way
>
>
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/wmisdk/wmi/
> win32_perfrawdata_perfproc_thread.asp?frame=true
>
> You'd want to monitor thread state on a regular interval.
>
> Another option might be to use the scheduler or re-write the code to alert
> if it encounters an error.
>
> Al
>
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Kern, Tom
> Sent: Monday, June 07, 2004 4:35 PM
> To: ActiveDir (E-mail)
> Subject: [ActiveDir] Very OT
>
> Hi, I have a devloper who wrote a vb exe(not a service) that runs on start
> up on an AD DC and stays in memory in the backround.
> My question is, is there anyway to monitor if this process has stopped?
> Perhaps with a perl script. Since its not a service, I don't really know
how
> to do this.
> Also, it doesn't log anything to the event log.
>
> i couldn't find anything on my perl groups and you guys seem pretty
> knowldgable on scripting so i just thought i'd take a shot in the dark and
> post here.
> thanks and my apologies for the way OT.
> List info   : http://www.activedir.org/mail_list.htm
> List FAQ: http://www.activedir.org/list_faq.htm
> List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
> List info   : http://www.activedir.org/mail_list.htm
> List FAQ: http://www.activedir.org/list_faq.htm
> List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] OT: Compaq Servers

[volker . seyboldt]

You can use also our tool RemoteDeploymentPackage
(http://h18013.www1.hp.com/products/servers/management/rdp.html).
RDP offers templates to deploy,image and re-deploy servers-images and also
additional software. RDP is based on Altiris solution

> I used Ghost to distribute Sysprep'd  images either by Multicast or IP
> connections on DL380's.  After the first build, each server was up and
> ready
> to run DCPromo within 10-15 minutes including the time to load the image
> over 100BaseT.  You can save a lot of time with the Sysprep.inf file for
> many of the tedious settings, but I found running DCPromo from the
> sysprep.inf to be hit and miss because of network configuration, so I
> opted
> to do that manually.
>
>   _
>
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Rutherford,
> Robert
> Sent: Tuesday, June 8, 2004 9:26 AM
> To: [EMAIL PROTECTED]
> Subject: RE: [ActiveDir] OT: Compaq Servers
>
>
> Thanks Roger,
>
> ADS does look sxy.problem is that we are still mainly W2K :O(
>
>
> -Original Message-
> From: Roger Seielstad [mailto:[EMAIL PROTECTED]
> Sent: 08 June 2004 14:16
> To: [EMAIL PROTECTED]
> Subject: RE: [ActiveDir] OT: Compaq Servers
>
>
> Have you considered something like the Automated Deployment System? Its
> part
> of the Dynamic Systems Initiative and its geared towards this kind of
> deployment. Its also more or less free.
> http://www.microsoft.com/windowsserver2003/technologies/management/ads/defau
> lt.mspx
>  ult.mspx>
>
> Roger
> --
> Roger D. Seielstad - MTS MCSE MS-MVP
> Sr. Systems Administrator
> Inovis Inc.
>
>
>
>   _
>
> From: Rutherford, Robert
> [mailto:[EMAIL PROTECTED]
> Sent: Tuesday, June 08, 2004 8:42 AM
> To: [EMAIL PROTECTED]
> Subject: [ActiveDir] OT: Compaq Servers
>
>
>
> I'm sorry this is off topic but just thought I'd throw it out to see if I
> get a bite
>
> It must be that time of year again.. a large number of new servers
> coming in.I don't want to, or have anyone else build numerours
> DL360's/380's
> .. All with more or less the same spec and o/s build. Has anyone ever
> actually got the things to work with the scripting toolkit?
>
> TIA
>
> Rob
>
>
> This e-mail and the information it contains are confidential and may be
> privileged. If you have received this e-mail in error please notify the
> sender immediately and delete the material from any computer. Unless you
> are
> the intended recipient, you should not copy this e-mail for any purpose,
> or
> disclose its contents to any other person.
> The MCPS-PRS Alliance is not responsible for the completeness or accuracy
> of
> this communication as it has been transmitted over a public network.
> Whilst
> the MCPS-PRS Alliance monitors all communications for potential viruses,
> we
> accept no responsibility for any loss or damage caused by this e-mail and
> the information it contains.
> It is the recipient's responsibility to scan this e-mail and any
> attachments
> for viruses. Any
> e-mails sent to and from the MCPS-PRS Alliance servers may be monitored
> for
> quality control and other purposes.
>
> The MCPS-PRS Alliance Limited is a limited company registered in England
> under company number 03444246 whose registered office is at c/o 29-33
> Berners Street, London, W1T 3AB.
>
>
>
> This e-mail and the information it contains are confidential and may be
> privileged. If you have received this e-mail in error please notify the
> sender immediately and delete the material from any computer. Unless you
> are
> the intended recipient, you should not copy this e-mail for any purpose,
> or
> disclose its contents to any other person.
> The MCPS-PRS Alliance is not responsible for the completeness or accuracy
> of
> this communication as it has been transmitted over a public network.
> Whilst
> the MCPS-PRS Alliance monitors all communications for potential viruses,
> we
> accept no responsibility for any loss or damage caused by this e-mail and
> the information it contains.
> It is the recipient's responsibility to scan this e-mail and any
> attachments
> for viruses. Any
> e-mails sent to and from the MCPS-PRS Alliance servers may be monitored
> for
> quality control and other purposes.
>
> The MCPS-PRS Alliance Limited is a limited company registered in England
> under company number 03444246 whose registered office is at c/o 29-33
> Berners Street, London, W1T 3AB.
>
>

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Very OT

[Marcus.Oh]

It's the word wrap Ken... that first line should be all one line or each
line terminated with an underscore.

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Kern, Tom
Sent: Tuesday, June 08, 2004 9:56 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Very OT

I get "unterminated string constant" at the end of the first line of
your script. I'm a perl guy, not vbs, so I don't quite know where I'm
supposed to terminate(quote) the line.

Thanks, sorry to be a pest.

-Original Message-
From: Steve Patrick [mailto:[EMAIL PROTECTED]
Sent: Friday, June 04, 2004 3:58 PM
To: [EMAIL PROTECTED]
Subject: Re: [ActiveDir] Very OT


Here is a (cheap hack) way:

copy the text below to a script:

'
set events = getobject("winmgmts:\\.").ExecNotificationQuery("select *
from
__instancedeletionevent within 2 where targetinstance isa
'win32_process'
and targetinstance.name = 'notepad.exe'")

Do
set NTevent = events.nextevent
If Err <> 0 then
msgbox "it was not = to 0"
else
msgbox "Notepad was closed"
exit do
end if
Loop

'

Now start the script "monitor.vbs"
Now start notepad.
Wait for some random time.. close notepad.exe


You should get a popup - change this to whatever action you deem
necessary.

For your situation you change  notepad.exe to  your app.
Note that you can do this to a remote machine as well... substitute the
machine name like so:

("winmgmts:\\mymachine")


This is a polling process so there is some minor overhead.

-steve




- Original Message - 
From: "Mulnick, Al" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, June 07, 2004 1:53 PM
Subject: RE: [ActiveDir] Very OT


> Haven't tried it, but this looks like it might be a way
>
>
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/wmisdk/
wmi/
> win32_perfrawdata_perfproc_thread.asp?frame=true
>
> You'd want to monitor thread state on a regular interval.
>
> Another option might be to use the scheduler or re-write the code to
alert
> if it encounters an error.
>
> Al
>
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Kern, Tom
> Sent: Monday, June 07, 2004 4:35 PM
> To: ActiveDir (E-mail)
> Subject: [ActiveDir] Very OT
>
> Hi, I have a devloper who wrote a vb exe(not a service) that runs on
start
> up on an AD DC and stays in memory in the backround.
> My question is, is there anyway to monitor if this process has
stopped?
> Perhaps with a perl script. Since its not a service, I don't really
know
how
> to do this.
> Also, it doesn't log anything to the event log.
>
> i couldn't find anything on my perl groups and you guys seem pretty
> knowldgable on scripting so i just thought i'd take a shot in the dark
and
> post here.
> thanks and my apologies for the way OT.
> List info   : http://www.activedir.org/mail_list.htm
> List FAQ: http://www.activedir.org/list_faq.htm
> List archive:
http://www.mail-archive.com/activedir%40mail.activedir.org/
> List info   : http://www.activedir.org/mail_list.htm
> List FAQ: http://www.activedir.org/list_faq.htm
> List archive:
http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive:
http://www.mail-archive.com/activedir%40mail.activedir.org/
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive:
http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Very OT

[Roger Seielstad]

Its quoted correctly, but you need to combine the first three lines into
one - the CRLFs added by the mail systems are tanking it.

--
Roger D. Seielstad - MTS MCSE MS-MVP
Sr. Systems Administrator
Inovis Inc.
 

> -Original Message-
> From: Kern, Tom [mailto:[EMAIL PROTECTED] 
> Sent: Tuesday, June 08, 2004 9:56 AM
> To: [EMAIL PROTECTED]
> Subject: RE: [ActiveDir] Very OT
> 
> I get "unterminated string constant" at the end of the first 
> line of your script. I'm a perl guy, not vbs, so I don't 
> quite know where I'm supposed to terminate(quote) the line.
> 
> Thanks, sorry to be a pest.
> 
> -Original Message-
> From: Steve Patrick [mailto:[EMAIL PROTECTED]
> Sent: Friday, June 04, 2004 3:58 PM
> To: [EMAIL PROTECTED]
> Subject: Re: [ActiveDir] Very OT
> 
> 
> Here is a (cheap hack) way:
> 
> copy the text below to a script:
> 
> '
> set events = 
> getobject("winmgmts:\\.").ExecNotificationQuery("select * from
> __instancedeletionevent within 2 where targetinstance isa 
> 'win32_process'
> and targetinstance.name = 'notepad.exe'")
> 
> Do
> set NTevent = events.nextevent
> If Err <> 0 then
> msgbox "it was not = to 0"
> else
> msgbox "Notepad was closed"
> exit do
> end if
> Loop
> 
> '
> 
> Now start the script "monitor.vbs"
> Now start notepad.
> Wait for some random time.. close notepad.exe
> 
> 
> You should get a popup - change this to whatever action you 
> deem necessary.
> 
> For your situation you change  notepad.exe to  your app.
> Note that you can do this to a remote machine as well... 
> substitute the
> machine name like so:
> 
> ("winmgmts:\\mymachine")
> 
> 
> This is a polling process so there is some minor overhead.
> 
> -steve
> 
> 
> 
> 
> - Original Message - 
> From: "Mulnick, Al" <[EMAIL PROTECTED]>
> To: <[EMAIL PROTECTED]>
> Sent: Monday, June 07, 2004 1:53 PM
> Subject: RE: [ActiveDir] Very OT
> 
> 
> > Haven't tried it, but this looks like it might be a way
> >
> >
> http://msdn.microsoft.com/library/default.asp?url=/library/en-
> us/wmisdk/wmi/
> > win32_perfrawdata_perfproc_thread.asp?frame=true
> >
> > You'd want to monitor thread state on a regular interval.
> >
> > Another option might be to use the scheduler or re-write 
> the code to alert
> > if it encounters an error.
> >
> > Al
> >
> > -Original Message-
> > From: [EMAIL PROTECTED]
> > [mailto:[EMAIL PROTECTED] On Behalf Of Kern, Tom
> > Sent: Monday, June 07, 2004 4:35 PM
> > To: ActiveDir (E-mail)
> > Subject: [ActiveDir] Very OT
> >
> > Hi, I have a devloper who wrote a vb exe(not a service) 
> that runs on start
> > up on an AD DC and stays in memory in the backround.
> > My question is, is there anyway to monitor if this process 
> has stopped?
> > Perhaps with a perl script. Since its not a service, I 
> don't really know
> how
> > to do this.
> > Also, it doesn't log anything to the event log.
> >
> > i couldn't find anything on my perl groups and you guys seem pretty
> > knowldgable on scripting so i just thought i'd take a shot 
> in the dark and
> > post here.
> > thanks and my apologies for the way OT.
> > List info   : http://www.activedir.org/mail_list.htm
> > List FAQ: http://www.activedir.org/list_faq.htm
> > List archive: 
> http://www.mail-archive.com/activedir%40mail.activedir.org/
> > List info   : http://www.activedir.org/mail_list.htm
> > List FAQ: http://www.activedir.org/list_faq.htm
> > List archive: 
> http://www.mail-archive.com/activedir%40mail.activedir.org/
> 
> List info   : http://www.activedir.org/mail_list.htm
> List FAQ: http://www.activedir.org/list_faq.htm
> List archive: 
> http://www.mail-archive.com/activedir%40mail.activedir.org/
> List info   : http://www.activedir.org/mail_list.htm
> List FAQ: http://www.activedir.org/list_faq.htm
> List archive: 
> http://www.mail-archive.com/activedir%40mail.activedir.org/
> 
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] OT: Compaq Servers

[Rutherford, Robert]

I've spied the RDP tool before and it does look like a quality system, but can't 
really warrant the £££. If I remember it was expensive.

**drifts off to dreamland**

Oh how I wish HP would provide me with a simple and free tool... Or a good old gui 
based front end to produce a script.

**wakes to reality**

Thud!

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] 
Sent: 08 June 2004 15:09
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] OT: Compaq Servers


You can use also our tool RemoteDeploymentPackage 
(http://h18013.www1.hp.com/products/servers/management/rdp.html).
RDP offers templates to deploy,image and re-deploy servers-images and also additional 
software. RDP is based on Altiris solution

> I used Ghost to distribute Sysprep'd  images either by Multicast or IP
> connections on DL380's.  After the first build, each server was up and
> ready to run DCPromo within 10-15 minutes including the time to load 
> the image over 100BaseT.  You can save a lot of time with the 
> Sysprep.inf file for many of the tedious settings, but I found running
> DCPromo from the sysprep.inf to be hit and miss because of network 
> configuration, so I opted
> to do that manually.
>
>   _
>
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Rutherford, 
> Robert
> Sent: Tuesday, June 8, 2004 9:26 AM
> To: [EMAIL PROTECTED]
> Subject: RE: [ActiveDir] OT: Compaq Servers
>
>
> Thanks Roger,
>
> ADS does look sxy.problem is that we are still mainly W2K :O(
>
>
> -Original Message-
> From: Roger Seielstad [mailto:[EMAIL PROTECTED]
> Sent: 08 June 2004 14:16
> To: [EMAIL PROTECTED]
> Subject: RE: [ActiveDir] OT: Compaq Servers
>
>
> Have you considered something like the Automated Deployment System? 
> Its part of the Dynamic Systems Initiative and its geared towards this
> kind of deployment. Its also more or less free.
> http://www.microsoft.com/windowsserver2003/technologies/management/ads/defau
> lt.mspx
>  ult.mspx>
>
> Roger
> --
> Roger D. Seielstad - MTS MCSE MS-MVP
> Sr. Systems Administrator
> Inovis Inc.
>
>
>
>   _
>
> From: Rutherford, Robert 
> [mailto:[EMAIL PROTECTED]
> Sent: Tuesday, June 08, 2004 8:42 AM
> To: [EMAIL PROTECTED]
> Subject: [ActiveDir] OT: Compaq Servers
>
>
>
> I'm sorry this is off topic but just thought I'd throw it out to see 
> if I get a bite
>
> It must be that time of year again.. a large number of new servers
> coming in.I don't want to, or have anyone else build numerours 
> DL360's/380's .. All with more or less the same spec and o/s build. 
> Has anyone ever actually got the things to work with the scripting 
> toolkit?
>
> TIA
>
> Rob
>
>
> This e-mail and the information it contains are confidential and may 
> be privileged. If you have received this e-mail in error please notify
> the sender immediately and delete the material from any computer. 
> Unless you are the intended recipient, you should not copy this e-mail
> for any purpose, or
> disclose its contents to any other person.
> The MCPS-PRS Alliance is not responsible for the completeness or accuracy
> of
> this communication as it has been transmitted over a public network.
> Whilst
> the MCPS-PRS Alliance monitors all communications for potential viruses,
> we
> accept no responsibility for any loss or damage caused by this e-mail and
> the information it contains.
> It is the recipient's responsibility to scan this e-mail and any
> attachments
> for viruses. Any
> e-mails sent to and from the MCPS-PRS Alliance servers may be monitored
> for
> quality control and other purposes.
>
> The MCPS-PRS Alliance Limited is a limited company registered in 
> England under company number 03444246 whose registered office is at 
> c/o 29-33 Berners Street, London, W1T 3AB.
>
>
>
> This e-mail and the information it contains are confidential and may 
> be privileged. If you have received this e-mail in error please notify
> the sender immediately and delete the material from any computer. 
> Unless you are the intended recipient, you should not copy this e-mail
> for any purpose, or
> disclose its contents to any other person.
> The MCPS-PRS Alliance is not responsible for the completeness or accuracy
> of
> this communication as it has been transmitted over a public network.
> Whilst
> the MCPS-PRS Alliance monitors all communications for potential viruses,
> we
> accept no responsibility for any loss or damage caused by this e-mail and
> the information it contains.
> It is the recipient's responsibility to scan this e-mail and any
> attachments
> for viruses. Any
> e-mails sent to and from the MCPS-PRS Alliance servers may be monitored
> for
> quality control and other purposes.
>
> The MCPS-PRS Alliance Limited is a limited company registered in 
> England under company number 03444246 whose reg

RE: [ActiveDir] OT: Compaq Servers

[Kitchens Arthur E]

Title: RE: [ActiveDir] OT: Compaq Servers





I believe RDP is free. The smartstart cd *is* free and you could build a master image with that then distribute/implement with any of the methods/tools previously mentioned in this thread. You can also get a 30 day eval license for the altiris deployment server (what utilizes the RDP tool set) so I don't see any money invovled with exploration of that either.  It may also be the case the one of the Insight Manager flavors would be useful for you. At least one (4.something) was free by download a few weeks ago.  Just my 2 cents. 

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Rutherford, Robert
Sent: Tuesday, June 08, 2004 10:30 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] OT: Compaq Servers


I've spied the RDP tool before and it does look like a quality system, but can't really warrant the £££. If I remember it was expensive.

**drifts off to dreamland**


Oh how I wish HP would provide me with a simple and free tool... Or a good old gui based front end to produce a script.


**wakes to reality**


Thud!


-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: 08 June 2004 15:09
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] OT: Compaq Servers



You can use also our tool RemoteDeploymentPackage (http://h18013.www1.hp.com/products/servers/management/rdp.html).
RDP offers templates to deploy,image and re-deploy servers-images and also additional software. RDP is based on Altiris solution

> I used Ghost to distribute Sysprep'd  images either by Multicast or IP 
> connections on DL380's.  After the first build, each server was up and 
> ready to run DCPromo within 10-15 minutes including the time to load 
> the image over 100BaseT.  You can save a lot of time with the 
> Sysprep.inf file for many of the tedious settings, but I found running 
> DCPromo from the sysprep.inf to be hit and miss because of network 
> configuration, so I opted
> to do that manually.
>
>   _
>
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED]] On Behalf Of Rutherford, 
> Robert
> Sent: Tuesday, June 8, 2004 9:26 AM
> To: [EMAIL PROTECTED]
> Subject: RE: [ActiveDir] OT: Compaq Servers
>
>
> Thanks Roger,
>
> ADS does look sxy.problem is that we are still mainly W2K :O(
>
>
> -Original Message-
> From: Roger Seielstad [mailto:[EMAIL PROTECTED]]
> Sent: 08 June 2004 14:16
> To: [EMAIL PROTECTED]
> Subject: RE: [ActiveDir] OT: Compaq Servers
>
>
> Have you considered something like the Automated Deployment System? 
> Its part of the Dynamic Systems Initiative and its geared towards this 
> kind of deployment. Its also more or less free.
> http://www.microsoft.com/windowsserver2003/technologies/management/ads/defau
> lt.mspx
>  ult.mspx>
>
> Roger
> --
> Roger D. Seielstad - MTS MCSE MS-MVP
> Sr. Systems Administrator
> Inovis Inc.
>
>
>
>   _
>
> From: Rutherford, Robert 
> [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, June 08, 2004 8:42 AM
> To: [EMAIL PROTECTED]
> Subject: [ActiveDir] OT: Compaq Servers
>
>
>
> I'm sorry this is off topic but just thought I'd throw it out to see 
> if I get a bite
>
> It must be that time of year again.. a large number of new servers 
> coming in.I don't want to, or have anyone else build numerours 
> DL360's/380's .. All with more or less the same spec and o/s build. 
> Has anyone ever actually got the things to work with the scripting 
> toolkit?
>
> TIA
>
> Rob
>
>
> This e-mail and the information it contains are confidential and may 
> be privileged. If you have received this e-mail in error please notify 
> the sender immediately and delete the material from any computer. 
> Unless you are the intended recipient, you should not copy this e-mail 
> for any purpose, or
> disclose its contents to any other person.
> The MCPS-PRS Alliance is not responsible for the completeness or accuracy
> of
> this communication as it has been transmitted over a public network.
> Whilst
> the MCPS-PRS Alliance monitors all communications for potential viruses,
> we
> accept no responsibility for any loss or damage caused by this e-mail and
> the information it contains.
> It is the recipient's responsibility to scan this e-mail and any
> attachments
> for viruses. Any
> e-mails sent to and from the MCPS-PRS Alliance servers may be monitored
> for
> quality control and other purposes.
>
> The MCPS-PRS Alliance Limited is a limited company registered in 
> England under company number 03444246 whose registered office is at 
> c/o 29-33 Berners Street, London, W1T 3AB.
>
>
>
> This e-mail and the information it contains are confidential and may 
> be privileged. If you have received this e-mail in error please notify 
> the sender immediately and delete the material from any computer. 
> Unless you a

RE: [ActiveDir] OT: Compaq Servers

[Ken Cornetet]

How about building your "gold" system, run sysprep, mirror the drive, then break the 
mirror (you are talking about systems with integrated RAID, right?) Then, use this 
gold disk as a master for each new system - insert master disk and blank disk, power 
up to raid config, rebuild mirror, remove master.

Boot to os and answer the post-sysprep questions. Insert blank disk so the mirror can 
rebuild, or run RAID utility to reconfigure if you don't want mirroring.

This is just theory, although I use a similar process to create new virtual servers 
under VMWare.

I know the Compaq RAID array isn't as flexible/forgiving as the old HP NETRaid, but I 
think as long as there are no other drives installed, this *might* work.



-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Rutherford, Robert
Sent: Tuesday, June 08, 2004 9:30 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] OT: Compaq Servers


I've spied the RDP tool before and it does look like a quality system, but can't 
really warrant the £££. If I remember it was expensive.

**drifts off to dreamland**

Oh how I wish HP would provide me with a simple and free tool... Or a good old gui 
based front end to produce a script.

**wakes to reality**

Thud!

-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] 
Sent: 08 June 2004 15:09
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] OT: Compaq Servers


You can use also our tool RemoteDeploymentPackage 
(http://h18013.www1.hp.com/products/servers/management/rdp.html).
RDP offers templates to deploy,image and re-deploy servers-images and also additional 
software. RDP is based on Altiris solution

> I used Ghost to distribute Sysprep'd  images either by Multicast or IP
> connections on DL380's.  After the first build, each server was up and 
> ready to run DCPromo within 10-15 minutes including the time to load 
> the image over 100BaseT.  You can save a lot of time with the 
> Sysprep.inf file for many of the tedious settings, but I found running 
> DCPromo from the sysprep.inf to be hit and miss because of network 
> configuration, so I opted
> to do that manually.
>
>   _
>
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Rutherford,
> Robert
> Sent: Tuesday, June 8, 2004 9:26 AM
> To: [EMAIL PROTECTED]
> Subject: RE: [ActiveDir] OT: Compaq Servers
>
>
> Thanks Roger,
>
> ADS does look sxy.problem is that we are still mainly W2K :O(
>
>
> -Original Message-
> From: Roger Seielstad [mailto:[EMAIL PROTECTED]
> Sent: 08 June 2004 14:16
> To: [EMAIL PROTECTED]
> Subject: RE: [ActiveDir] OT: Compaq Servers
>
>
> Have you considered something like the Automated Deployment System?
> Its part of the Dynamic Systems Initiative and its geared towards this 
> kind of deployment. Its also more or less free.
> http://www.microsoft.com/windowsserver2003/technologies/management/ads/defau
> lt.mspx
>  ult.mspx>
>
> Roger
> --
> Roger D. Seielstad - MTS MCSE MS-MVP
> Sr. Systems Administrator
> Inovis Inc.
>
>
>
>   _
>
> From: Rutherford, Robert
> [mailto:[EMAIL PROTECTED]
> Sent: Tuesday, June 08, 2004 8:42 AM
> To: [EMAIL PROTECTED]
> Subject: [ActiveDir] OT: Compaq Servers
>
>
>
> I'm sorry this is off topic but just thought I'd throw it out to see
> if I get a bite
>
> It must be that time of year again.. a large number of new servers
> coming in.I don't want to, or have anyone else build numerours 
> DL360's/380's .. All with more or less the same spec and o/s build. 
> Has anyone ever actually got the things to work with the scripting 
> toolkit?
>
> TIA
>
> Rob
>
>
> This e-mail and the information it contains are confidential and may
> be privileged. If you have received this e-mail in error please notify 
> the sender immediately and delete the material from any computer. 
> Unless you are the intended recipient, you should not copy this e-mail 
> for any purpose, or
> disclose its contents to any other person.
> The MCPS-PRS Alliance is not responsible for the completeness or accuracy
> of
> this communication as it has been transmitted over a public network.
> Whilst
> the MCPS-PRS Alliance monitors all communications for potential viruses,
> we
> accept no responsibility for any loss or damage caused by this e-mail and
> the information it contains.
> It is the recipient's responsibility to scan this e-mail and any
> attachments
> for viruses. Any
> e-mails sent to and from the MCPS-PRS Alliance servers may be monitored
> for
> quality control and other purposes.
>
> The MCPS-PRS Alliance Limited is a limited company registered in
> England under company number 03444246 whose registered office is at 
> c/o 29-33 Berners Street, London, W1T 3AB.
>
>
>
> This e-mail and the information it contains are confidential and may
> be privileged. If you 

[ActiveDir] DNS Question

[John Parker]

Hey all.

I am running win2k fully spacked on a win2k active directory domain.
I have one machine... (Mine) that has the following issue

When I go to save a document and I click the Drop down to select a location,
My system takes up to 30 seconds to display the tree.
And when using my browser, it takes roughly the same amount of time
When I type in a URL.

I have gone through my settings but cannot find anything obviously amis.

Thank you in advance.

John Parker, MCSE 
IS Admin. 
Senior Technical Specialist 
Alpha Display Systems. 
---End of Line---



List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] DNS Question

[Rutherford, Robert]

Have you got an old invalid share mapped? This will cause both issues
you mention.

-Original Message-
From: John Parker [mailto:[EMAIL PROTECTED] 
Sent: 08 June 2004 15:51
To: [EMAIL PROTECTED]
Subject: [ActiveDir] DNS Question


Hey all.

I am running win2k fully spacked on a win2k active directory domain. I
have one machine... (Mine) that has the following issue

When I go to save a document and I click the Drop down to select a
location, My system takes up to 30 seconds to display the tree. And when
using my browser, it takes roughly the same amount of time When I type
in a URL.

I have gone through my settings but cannot find anything obviously amis.

Thank you in advance.

John Parker, MCSE 
IS Admin. 
Senior Technical Specialist 
Alpha Display Systems. 
---End of Line---



List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive:
http://www.mail-archive.com/activedir%40mail.activedir.org/

This e-mail and the information it contains are confidential and may be privileged. If 
you have received this e-mail in error please notify the sender immediately and delete 
the material from any computer. Unless you are the intended recipient, you should not 
copy this e-mail for any purpose, or disclose its contents to any other person. 
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of this 
communication as it has been transmitted over a public network. Whilst the MCPS-PRS 
Alliance monitors all communications for potential viruses, we accept no 
responsibility for any loss or damage caused by this e-mail and the information it 
contains.
It is the recipient's responsibility to scan this e-mail and any attachments for 
viruses. Any 
e-mails sent to and from the MCPS-PRS Alliance servers may be monitored for quality 
control and other purposes.

The MCPS-PRS Alliance Limited is a limited company registered in England under company 
number 03444246 whose registered office is at c/o 29-33 Berners Street, London, W1T 
3AB.

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

Re: [ActiveDir] DNS Question

[James Payne]

I had the same problem with 3 workstations in a similar environment.  It
was because we still had a mapped drive that did not exist anymore.  Not
saying that is your resolution but just throwing in my experiences.



   
 "John Parker" 
 <[EMAIL PROTECTED] 
 m> To 
 Sent by:  <[EMAIL PROTECTED]>  
 [EMAIL PROTECTED]  cc 
 ail.activedir.org 
   Subject 
   [ActiveDir] DNS Question
 06/08/2004 10:50  
 AM
   
   
 Please respond to 
 [EMAIL PROTECTED] 
tivedir.org
   
   




Hey all.

I am running win2k fully spacked on a win2k active directory domain.
I have one machine... (Mine) that has the following issue

When I go to save a document and I click the Drop down to select a
location,
My system takes up to 30 seconds to display the tree.
And when using my browser, it takes roughly the same amount of time
When I type in a URL.

I have gone through my settings but cannot find anything obviously amis.

Thank you in advance.

John Parker, MCSE
IS Admin.
Senior Technical Specialist
Alpha Display Systems.
---End of Line---



List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/


List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] DNS Question

[John Parker]

That was it.
Thanks guys...

John Parker, MCSE 
IS Admin. 
Senior Technical Specialist 
Alpha Display Systems. 
Alpha Video 
7711 Computer Ave. 
Edina, MN. 55435 
  
952-896-9898 Local 
800-388-0008 Watts 
952-896-9899 Fax 
612-804-8769 Cell 
952-841-3327 Direct 
[EMAIL PROTECTED] 
"Be excellent to each other" 
---End of Line---

 -Original Message-
From:   James Payne [mailto:[EMAIL PROTECTED] 
Sent:   Tuesday, June 08, 2004 10:04 AM
To: [EMAIL PROTECTED]
Subject:Re: [ActiveDir] DNS Question






I had the same problem with 3 workstations in a similar environment.  It
was because we still had a mapped drive that did not exist anymore.  Not
saying that is your resolution but just throwing in my experiences.



   
 "John Parker" 
 <[EMAIL PROTECTED] 
 m> To 
 Sent by:  <[EMAIL PROTECTED]>  
 [EMAIL PROTECTED]  cc 
 ail.activedir.org 
   Subject 
   [ActiveDir] DNS Question
 06/08/2004 10:50  
 AM
   
   
 Please respond to 
 [EMAIL PROTECTED] 
tivedir.org
   
   




Hey all.

I am running win2k fully spacked on a win2k active directory domain.
I have one machine... (Mine) that has the following issue

When I go to save a document and I click the Drop down to select a
location,
My system takes up to 30 seconds to display the tree.
And when using my browser, it takes roughly the same amount of time
When I type in a URL.

I have gone through my settings but cannot find anything obviously amis.

Thank you in advance.

John Parker, MCSE
IS Admin.
Senior Technical Specialist
Alpha Display Systems.
---End of Line---



List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/


List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/


List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Exchange and Server 2003 Management

[Salandra, Justin A.]

To install the exchange tools on a server
other then the exchange server, you need to install IIS first.

 

-Original Message-
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Douglas M. Long
Sent: Friday, June 04, 2004 4:25
PM
To: [EMAIL PROTECTED]
Subject: [ActiveDir] Exchange and
Server 2003 Management

 



What in the world. I have
one DC running in 2003 native mode AD with SFU 3.5 installed on it. Two
back-end Exchange 2003 servers (Server 2003), and one front-end Exchange 2003
server (Server 2003).





 





On my first test
(installing everything on one machine: Server 2003+Exchange 2003+ SFU 3.5),
everything showed up in ADUC. UNIX attributes and Exchange attributes. 





 





Well, now in my current
setup, I can't get both in ADUC. From the DC, the only extended attributes I
see are the UNIX attributes. From the Exchange Servers, the only extended
attributes I see are exchange attributes (regardless if I use the adminpak
ADUC, or the Exchange ADUC). 





 





I tried to install the
exchange management tools on the DC but get an error saying that "Internet
Information Services Snap-in" is not present or disabled. Why in the world
would the snap-in not me there? I cant find it to download seperately for 2003
(only XP). 





 





What in the world am I
doing wrong? What is the correct way to get all the attributes showing in the
same management console? 

RE: [ActiveDir] OT: Exchange 2000 upgrade woes

[Mulnick, Al]

Then that sounds like your app is doing something it shouldn't.  Can you get
logging on the app else a netmon cap of the conversation?

Al 

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Hunter, Laura E.
Sent: Tuesday, June 08, 2004 9:43 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] OT: Exchange 2000 upgrade woes

> 
> Let's reset: If I understand correctly, when you set the app to send 
> email, you get the following ONLY in the log:
> 2004-06-07 18:12:32 %IP-ADDRESS-OF-WEB-SERVER% localhost.localdomain
> SMTPSVC1 HELO 250
> 2004-06-07 18:12:32 %IP-ADDRESS-OF-WEB-SERVER% localhost.localdomain
> SMTPSVC1 QUIT 240
> 

Correct.

> 
> So your web server contacts Exchange, presents HELO and gets 
> a 250 response. So far so good.  Then it suddenly issues a quit
command?  

Correct again.  This occurs no matter how I have relaying configured
within the Exchange System Manager.

> What happens if you telnet directly and issue the commands 
> (in the web servers context?)
> 

So I telnetted to port 25 and issued the following commands:

HELO
MAIL FROM: %valid-email-addy-on-my-domain%
RCPT TO: %my-throwaway-aol-account%
DATA:
Bah!
.
QUIT

Contents of SMTP log files when telnetting...

>From my workstation:

2004-06-08 13:13:59 %MY-IP% - SMTPSVC1 HELO 250
2004-06-08 13:14:06 %MY-IP% - SMTPSVC1 MAIL 501 - (I think this was a
typo on my part)
2004-06-08 13:14:12 %MY-IP% - SMTPSVC1 MAIL 250
2004-06-08 13:14:20 %MY-IP% - SMTPSVC1 RCPT 250
2004-06-08 13:14:35 %MY-IP% - SMTPSVC1 DATA 250
2004-06-08 13:14:51 %MY-IP% - SMTPSVC1 QUIT 240

>From the web server:

2004-06-08 13:31:46 %WEB-SERVER-IP% - SMTPSVC1 HELO 250
2004-06-08 13:31:57 %WEB-SERVER-IP% - SMTPSVC1 MAIL 250
2004-06-08 13:32:08 %WEB-SERVER-IP% - SMTPSVC1 RCPT 250
2004-06-08 13:32:24 %WEB-SERVER-IP% - SMTPSVC1 DATA 250
2004-06-08 13:32:27 %WEB-SERVER-IP% - SMTPSVC1 QUIT 240

(...and both messages were delivered successfully.)
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

Re: [ActiveDir] Very OT

[support]

Hi,

I presume you actually want to know that it is still operational, rather
than whether it still exists as a task.

The standard way I do this is to put a heartbeat in the program to write
status info to the registry every (say) minute including the current time.
You then monitor the registry key whenever you want to know what is
happening.


Alan Cuthbertson


Policy Management Software:- http://www.sysprosoft.com/pol_summary.shtml
ADM Template Editor:-  http://www.sysprosoft.com/adm_summary.shtml




- Original Message - 
From: "Kern, Tom" <[EMAIL PROTECTED]>
To: "ActiveDir (E-mail)" <[EMAIL PROTECTED]>
Sent: Tuesday, June 08, 2004 6:35 AM
Subject: [ActiveDir] Very OT


Hi, I have a devloper who wrote a vb exe(not a service) that runs on start
up on an AD DC and stays in memory in the backround.
My question is, is there anyway to monitor if this process has stopped?
Perhaps with a perl script. Since its not a service, I don't really know how
to do this.
Also, it doesn't log anything to the event log.

i couldn't find anything on my perl groups and you guys seem pretty
knowldgable on scripting so i just thought i'd take a shot in the dark and
post here.
thanks and my apologies for the way OT.
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/


List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Very OT

[Kern, Tom]

I would actually  want to monitor 3 programs and be emailed(cdo) rather than msgboxed 
if one or all dissapeared from the task manager process list.
I can't change the program to write to the registry as i didn't write it and i would 
be stepping on some toes.
more importantly, my knowldge of VB is pretty limited, anyhoo.
I would rather just rig this script to do the above mentioned things.

thanks



-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: Tuesday, June 08, 2004 6:15 AM
To: [EMAIL PROTECTED]
Subject: Re: [ActiveDir] Very OT


Hi,

I presume you actually want to know that it is still operational, rather
than whether it still exists as a task.

The standard way I do this is to put a heartbeat in the program to write
status info to the registry every (say) minute including the current time.
You then monitor the registry key whenever you want to know what is
happening.


Alan Cuthbertson


Policy Management Software:- http://www.sysprosoft.com/pol_summary.shtml
ADM Template Editor:-  http://www.sysprosoft.com/adm_summary.shtml




- Original Message - 
From: "Kern, Tom" <[EMAIL PROTECTED]>
To: "ActiveDir (E-mail)" <[EMAIL PROTECTED]>
Sent: Tuesday, June 08, 2004 6:35 AM
Subject: [ActiveDir] Very OT


Hi, I have a devloper who wrote a vb exe(not a service) that runs on start
up on an AD DC and stays in memory in the backround.
My question is, is there anyway to monitor if this process has stopped?
Perhaps with a perl script. Since its not a service, I don't really know how
to do this.
Also, it doesn't log anything to the event log.

i couldn't find anything on my perl groups and you guys seem pretty
knowldgable on scripting so i just thought i'd take a shot in the dark and
post here.
thanks and my apologies for the way OT.
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/


List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Very OT

[Lou Vega]

If you want Tom - e-mail me off list and I'll do what I can to help you
customize this script.

r/
Lou


-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Kern, Tom
Sent: Tuesday, June 08, 2004 3:42 PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Very OT

I would actually  want to monitor 3 programs and be emailed(cdo) rather than
msgboxed if one or all dissapeared from the task manager process list.
I can't change the program to write to the registry as i didn't write it and
i would be stepping on some toes.
more importantly, my knowldge of VB is pretty limited, anyhoo.
I would rather just rig this script to do the above mentioned things.

thanks



-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: Tuesday, June 08, 2004 6:15 AM
To: [EMAIL PROTECTED]
Subject: Re: [ActiveDir] Very OT


Hi,

I presume you actually want to know that it is still operational, rather
than whether it still exists as a task.

The standard way I do this is to put a heartbeat in the program to write
status info to the registry every (say) minute including the current time.
You then monitor the registry key whenever you want to know what is
happening.


Alan Cuthbertson


Policy Management Software:- http://www.sysprosoft.com/pol_summary.shtml
ADM Template Editor:-  http://www.sysprosoft.com/adm_summary.shtml




- Original Message - 
From: "Kern, Tom" <[EMAIL PROTECTED]>
To: "ActiveDir (E-mail)" <[EMAIL PROTECTED]>
Sent: Tuesday, June 08, 2004 6:35 AM
Subject: [ActiveDir] Very OT


Hi, I have a devloper who wrote a vb exe(not a service) that runs on start
up on an AD DC and stays in memory in the backround.
My question is, is there anyway to monitor if this process has stopped?
Perhaps with a perl script. Since its not a service, I don't really know how
to do this.
Also, it doesn't log anything to the event log.

i couldn't find anything on my perl groups and you guys seem pretty
knowldgable on scripting so i just thought i'd take a shot in the dark and
post here.
thanks and my apologies for the way OT.
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/


List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Very OT

[joe]

Hey I think I pointed you here before Tom but seriously... Go look at
hostmon at www.ks-soft.com, a lot of the stuff you have asked for plus much
more this product will do. I like this product. His prices are starting to
go up, but it makes sense, he has a great product and the prices are still
incredibly competitive.


  joe 

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Kern, Tom
Sent: Tuesday, June 08, 2004 3:42 PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Very OT

I would actually  want to monitor 3 programs and be emailed(cdo) rather than
msgboxed if one or all dissapeared from the task manager process list.
I can't change the program to write to the registry as i didn't write it and
i would be stepping on some toes.
more importantly, my knowldge of VB is pretty limited, anyhoo.
I would rather just rig this script to do the above mentioned things.

thanks



-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Sent: Tuesday, June 08, 2004 6:15 AM
To: [EMAIL PROTECTED]
Subject: Re: [ActiveDir] Very OT


Hi,

I presume you actually want to know that it is still operational, rather
than whether it still exists as a task.

The standard way I do this is to put a heartbeat in the program to write
status info to the registry every (say) minute including the current time.
You then monitor the registry key whenever you want to know what is
happening.


Alan Cuthbertson


Policy Management Software:- http://www.sysprosoft.com/pol_summary.shtml
ADM Template Editor:-  http://www.sysprosoft.com/adm_summary.shtml




- Original Message -
From: "Kern, Tom" <[EMAIL PROTECTED]>
To: "ActiveDir (E-mail)" <[EMAIL PROTECTED]>
Sent: Tuesday, June 08, 2004 6:35 AM
Subject: [ActiveDir] Very OT


Hi, I have a devloper who wrote a vb exe(not a service) that runs on start
up on an AD DC and stays in memory in the backround.
My question is, is there anyway to monitor if this process has stopped?
Perhaps with a perl script. Since its not a service, I don't really know how
to do this.
Also, it doesn't log anything to the event log.

i couldn't find anything on my perl groups and you guys seem pretty
knowldgable on scripting so i just thought i'd take a shot in the dark and
post here.
thanks and my apologies for the way OT.
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/


List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

[ActiveDir] OT again

[Kern, Tom]

Anyone know of a really good book on using perl for Win32 admining. Stuff that covers 
adsi,wmi,wsh,etc? Stuff thats up to date.
I've used Dave Roth's Win32 Perl scripting:the administrators handbook, but found it 
alittle out of date and lacking in alot of repects.
I've also downloaded robbie allen's perl code for the ad cookbook, which i thought was 
great. 
I'm looking for something specifically for AD/Exchange 2k that assumes you know those 
topics and have a grasp of perl on *nix systems and want to combine your knowldge of 
both(Perl and Windows).
I guess i'm looking for a perl verison of MS windows scripting guide.
I assume you can do in perl on win32 anything you could do in VBscript?

Thanks
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

[ActiveDir] Root Hints

[Rimmerman, Russ]

We keep wiping out our root hints from our Win2k DNS servers, and they keep
repopulating.  Is this something that replicates between DNS servers, or
will it just not allow our root hints to be blank?  Our firewall is a DNSD
server and so we forward everything to the firewall for external DNS
lookups, but since the roothints keep populating on our Win2k DNS servers,
the firewall is generating huge amounts of logs from the internal Win2k
servers trying to do external lookups.  Any ideas?

~~
This e-mail is confidential, may contain proprietary information
of the Cooper Cameron Corporation and its operating Divisions
and may be confidential or privileged.

This e-mail should be read, copied, disseminated and/or used only
by the addressee. If you have received this message in error please
delete it, together with any attachments, from your system.
~~
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Root Hints

[Dean Wells]

Check the "Do not use recursion" box on the Forwarders tab to prevent the
further use of recursion.  The root hints are being repopulated by the DNS
servers, you can get rid of them if you're prepared for a fight but they're
there for a good reason.  The check box I mentioned achieves a more
desirable end result.

Dean

--
Dean Wells
MSEtechnology
* Tel: +1 (954) 501-4307
* Email: [EMAIL PROTECTED]
http://msetechnology.com


-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Rimmerman, Russ
Sent: Tuesday, June 08, 2004 4:49 PM
To: '[EMAIL PROTECTED]'
Subject: [ActiveDir] Root Hints


We keep wiping out our root hints from our Win2k DNS servers, and they keep
repopulating.  Is this something that replicates between DNS servers, or
will it just not allow our root hints to be blank?  Our firewall is a DNSD
server and so we forward everything to the firewall for external DNS
lookups, but since the roothints keep populating on our Win2k DNS servers,
the firewall is generating huge amounts of logs from the internal Win2k
servers trying to do external lookups.  Any ideas?

~~
This e-mail is confidential, may contain proprietary information of the
Cooper Cameron Corporation and its operating Divisions and may be
confidential or privileged.

This e-mail should be read, copied, disseminated and/or used only by the
addressee. If you have received this message in error please delete it,
together with any attachments, from your system.
~~
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/



List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

[ActiveDir] Preventing a DC from authenticating users

[Fugleberg, David A]

I want to stop a specific DC from authenticating users as part of a test.  The server 
also provides DNS for the clients, so I don't want to shut down the box during the 
test - I just want it to be 'invisible' to clients looking for a DC for the duration 
of the test (a couple of days max).  

Is 'net stop netlogon' and deleting the appropriate GC and LDAP SRV records a 
reasonable way to go about this ? Will this prevent replication? Any other ideas to 
accomplish this ?  Thanks!

Dave Fugleberg
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

[ActiveDir] Checklist for changing IP Address on DC

[Devan Pala]

Hi all, 

I have 2 DC's in a site that need IP's to be updated to reflect network changes. 
Both DC's are DNS servers (ADI), DHCP servers (with manual redundant scopes, which are not changing). Each point to themselves for DNS and the other for secondary, with forwarding enabled to the forest root DNS servers. 

Here's my plan: 


On DC2: 


Change the primary (P) DNS server to point to DC1 and secondary (S) to itself 
Change all IP configuration (to reflect new IP segment & physically move the cable) 
Test connectivity (pinging loopback adapter, IP, GW etc.) 
Flush the DNS resolver cache
Re-register DNS names 
Check DNS entry for DC2 on DC1's DNS server
Test name resolution on DC1 and subsequently DC2
Change the P & S DNS server settings to point to itself and its replication partner or DC2
Bounce the DNS and Netlogon services on DC2 
Check DNS entry on DC2 to verify correct name to IP entry (for DC2)
Test name resolution on DC2  
Change the DHCP client parameters (to reflect new DNS server and DHCP server) on both DC1 and DC2, restart DHCP server service on DC2
Update secondary zone transfers for forest-wide locator records on master server (DC1)
Repeat steps for DC1 when DC2 is operational with new IP configuration, except for few different things like master server for DC1 (for secondary zone transfers etc.)

I am just trying to verify my steps and see if I'm missing anything or any gotchas before proceeding...










 
Thanks,
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] AD Design on a Highspeed Network considerations

[Mulnick, Al]

>   Design Questions
>   1) Do you centralize into 1 centralized site and back haul all 
> network logon and exchange traffic to 1 site?
I don't think that's a requirement.  I like Roger's thinking on this, but
I'd be concerned with available bandwidth and not just the amount of
potential bandwidth mentioned in your original post.  Bandwidth needs will
depend on the client type, the usage patterns (concurrency etc), and how you
use Active Directory (DFS?, file/print?, GPO settings etc).



>   2) What are the base numbers of DC's / GC's you would need support 
> this config (what are the metrics of dc gc
> logons/server/processor)

Two's the bare minimum for any installation IMHO.  I think you may need more
for the Exchange support, but that's up to you. The rule of thumb
recommendation is to have one GC proc per 4 Exchange procs.(see Roger's
comment).  However, it's not that cut and dry.  What the rule of thumb
recommendation is getting at is to have one to four MHZ on initial
deployment indicating performance is a factor and that you're using MAPI
clients.  Keep in mind that 2002 and above clients will all use GC's for
their directory.  Exchange uses the directory for lookups, so keeping GC's
in the same site is a good idea.

>   3) what is the typical traffic usage used during an xp network logon

> session? (DHCP, DNS, Kerberos TGT, and outlook 2002 mapi logon)

DHCP is minimal and can be configured to stay low impact on your network.
DNS can also be minimal depending on usage.  Kerberos is a little more, but
it's usually not too terribly bad.  Outlook 2002 is more than 2003 version
unless you use cached mode.  Then it's about equal from what I've seen.  If
you use it in MAPI mode, you get some enhancements in 2003 that make the
bandwidth a little less. The best way to see this is to pilot it and get a
feel for how it looks in your environment since no two companies (or sites
for that matter) have the same usage pattern.  

Keep in mind that you can look at your 5.5 implementation to get a general
feel for how it would look with centralized 2003.  That's because you'd be
reinventing 5.5 with separate directory servers (GC's) in the same location.
Take a look at your current bandwidth to get an estimate of how Exchange
would look in your environment.  You can look on Microsoft's site or
bandwidth expectations of Active Directory, but I'd be more comfortable with
a pilot myself.

Al

 

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Roger Seielstad
Sent: Tuesday, June 08, 2004 9:14 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] AD Design on a Highspeed Network considerations

>   1) Do you centralize into 1 centralized site and back haul all 
> network logon and exchange traffic to 1 site?

I'd suggest different sites - the number of which is really dependent on how
your physical topology is laid out. For instance, we've got 7 offices,
connected by some fairly fat WAN links (with VPN and demand dial backup),
but each physical localation is still a separate site.

Generally, I do site design based on physical network design, with site
boundaries aligned with the least reliable connections. However, there's no
harm (and possibly some good) that can come from creating sites even within
well connected, high bandwidth sites. It's a fairly detailed process based
on expected traffic patterns and if you're doing things like site linked
GPO's.

>   2) What are the base numbers of DC's / GC's you would need support 
> this config (what are the metrics of dc gc
> logons/server/processor)

That's a very difficult question to accurately answer. Generally, I use two
per "major" site - a site where I want all authentication to be local. Then
again, the largest site I've got is 250 users, but my DC's aren't even
working hard.

With regards to Exchange, the typical recommendation is to use 1 DC/GC
processor per 4 Exchange processors. I'd extend that to be plus an extra box
for redundancy purposes.

Roger
--
Roger D. Seielstad - MTS MCSE MS-MVP
Sr. Systems Administrator
Inovis Inc.
 

> -Original Message-
> From: Murray Wall [mailto:[EMAIL PROTECTED]
> Sent: Monday, June 07, 2004 10:40 PM
> To: [EMAIL PROTECTED]
> Subject: [ActiveDir] AD Design on a Highspeed Network considerations
> 
> We are doing an AD site design and I wanted to know some thoughts of 
> the group here.
>   Assumptions
>   1) Single forest, Single Domain
>   2) Highspeed Network links to sites, 10mb, 100mb and 1GB Available 
> for AD/exchange
>   3) Centralized service provider/organization
>   4) Exchange 2003 SP1
>   5) 16000 users in 16 sites with above network speeds
> 
>   Design Questions
>   1) Do you centralize into 1 centralized site and back haul all 
> network logon and exchange traffic to 1 site?
>   2) What are the base numbers of DC's / GC's you wo

[ActiveDir] Root Hints question

[Rimmerman, Russ]

When you modify root hints on one domain controller, does it replicate to
other domain controllers?  It seems like whenever someone changes root hints
on one of our DCs, the other DCs get the same root hints.  Is that possible?

~~
This e-mail is confidential, may contain proprietary information
of the Cooper Cameron Corporation and its operating Divisions
and may be confidential or privileged.

This e-mail should be read, copied, disseminated and/or used only
by the addressee. If you have received this message in error please
delete it, together with any attachments, from your system.
~~
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Preventing a DC from authenticating users

[deji]

net stop netlogon should do it for you. Of course, your other DCs and KCC
will be screaming at you, but you already know there's an intentional
outtage.
 
 
Sincerely,

Dèjì Akómöláfé, MCSE MCSA MCP+I
Microsoft MVP - Directory Services
www.readymaids.com - we know IT
www.akomolafe.com
Do you now realize that Today is the Tomorrow you were worried about
Yesterday?  -anon



From: [EMAIL PROTECTED] on behalf of Fugleberg, David A
Sent: Tue 6/8/2004 2:06 PM
To: [EMAIL PROTECTED]
Subject: [ActiveDir] Preventing a DC from authenticating users



I want to stop a specific DC from authenticating users as part of a test.
The server also provides DNS for the clients, so I don't want to shut down
the box during the test - I just want it to be 'invisible' to clients looking
for a DC for the duration of the test (a couple of days max). 

Is 'net stop netlogon' and deleting the appropriate GC and LDAP SRV records a
reasonable way to go about this ? Will this prevent replication? Any other
ideas to accomplish this ?  Thanks!

Dave Fugleberg
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/


List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Setting Desktop Settings via Group Policy

[Rick Kingslan]

Yep - that, too, is a good solution.  The only bad thing is that most folks
don't have the skills (No offense, Raymond, as I don't know you) to
build MSI packs.  Microsoft, nor most of the third party vendors have made
this overly easy.

That said, yes - the MSI pack and setting all of the keys, images, etc. the
way that you want is a great solution.  I've used this as well, and
successfully.  But, then - I have a guy on my team that does nothing but SMS
and MOM.  Fully half of his time is building MSI packs to push out whatever
cruel and unusual punishment that we wish to deal on our unsuspecting user
base...  ;op

Rick Kingslan  MCSE, MCSA, MCT, CISSP
Microsoft MVP:
Windows Server / Directory Services
Windows Server / Rights Management
Windows Security (Affiliate)
Associate Expert
Expert Zone - www.microsoft.com/windowsxp/expertzone
WebLog - www.msmvps.com/willhack4food
  

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Roger Seielstad
Sent: Tuesday, June 08, 2004 7:13 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Setting Desktop Settings via Group Policy

I remember discussing an alternate option with some people at the Windows
and Exchange Connections conference in Orlando last year.

You could use something like WinInstall LE to build an MSI, which really
just applies various registry settings and places files (like background
images) in the correct places. Then simply assign it to the users.

That should make it both self healing and significantly cleaner than ADM
files or tattooing the registry.

Roger
--
Roger D. Seielstad - MTS MCSE MS-MVP
Sr. Systems Administrator
Inovis Inc.
 

> -Original Message-
> From: Rick Kingslan [mailto:[EMAIL PROTECTED]
> Sent: Monday, June 07, 2004 7:55 PM
> To: [EMAIL PROTECTED]
> Subject: RE: [ActiveDir] Setting Desktop Settings via Group Policy
> 
> Sadly, Raymond - most things of that ilk (background, colors, icon 
> placement, etc.) are held in the profile of the user and are not 
> affected by current GP settings.  However, that doesn't mean that you 
> CAN'T set them via GP, it does mean in most cases that you will be:
> 
> 1.  Writing custom .ADM files
> 2.  Tattooing the registry
> 
> But it can be done.  Me, I'd stick with a mandatory profile with 
> permissions set to 'Everyone' and let it apply, then let each user 
> 'own'
> it (change it
> back to a local or roaming) and then use GP to lock it down. 
> 
> Rick Kingslan  MCSE, MCSA, MCT, CISSP
> Microsoft MVP:
> Windows Server / Directory Services
> Windows Server / Rights Management
> Windows Security (Affiliate)
> Associate Expert
> Expert Zone - www.microsoft.com/windowsxp/expertzone
> WebLog - www.msmvps.com/willhack4food
>  
> 
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Raymond 
> McClinnis
> Sent: Monday, June 07, 2004 6:47 PM
> To: [EMAIL PROTECTED]
> Subject: [ActiveDir] Setting Desktop Settings via Group Policy
> 
> Hi all,
> 
> I need to push out a standard desktop to all users in my company.  I 
> found where to set up the Active Desktop and the like, but I can't 
> find where to set things like background color and pattern.  I 
> remember in the good ol'
> days (under NT4) you could set these things up (or at least I thought 
> I remembered).
> 
> 
> Thanks in Advance,
> Raymond McClinnis
> 
> List info   : http://www.activedir.org/mail_list.htm
> List FAQ: http://www.activedir.org/list_faq.htm
> List archive: 
> http://www.mail-archive.com/activedir%40mail.activedir.org/
> 
> List info   : http://www.activedir.org/mail_list.htm
> List FAQ: http://www.activedir.org/list_faq.htm
> List archive: 
> http://www.mail-archive.com/activedir%40mail.activedir.org/
> 
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] OT: Compaq Servers

[Rick Kingslan]

Title: OT: Compaq Servers



Rob,
 
Being completely hardware agnostic, look at the Automated 
Deployment tools (ADS).  Look at it as like a RIS for servers - on 
steroids.
 

Rick Kingslan  MCSE, MCSA, MCT, CISSPMicrosoft 
MVP:Windows Server / Directory ServicesWindows Server / Rights 
ManagementWindows Security (Affiliate)Associate ExpertExpert Zone - 
www.microsoft.com/windowsxp/expertzoneWebLog - 
www.msmvps.com/willhack4food  


From: [EMAIL PROTECTED] 
[mailto:[EMAIL PROTECTED] On Behalf Of Rutherford, 
RobertSent: Tuesday, June 08, 2004 7:42 AMTo: 
[EMAIL PROTECTED]Subject: [ActiveDir] OT: Compaq 
Servers

I'm sorry this is off topic but just thought I'd 
throw it out to see if I get a bite…. 
It must be that time of year again…… a large number 
of new servers coming in.I don't want to, or have anyone else build numerours 
DL360's/380's .. All with more or less the same spec and o/s build. Has anyone 
ever actually got the things to work with the scripting toolkit? 
TIA 
Rob This e-mail and the information it 
contains are confidential and may be privileged. If you have received this 
e-mail in error please notify the sender immediately and delete the material 
from any computer. Unless you are the intended recipient, you should not copy 
this e-mail for any purpose, or disclose its contents to any other person. 
The MCPS-PRS Alliance is not responsible for the completeness or accuracy of 
this communication as it has been transmitted over a public network. Whilst the 
MCPS-PRS Alliance monitors all communications for potential viruses, we accept 
no responsibility for any loss or damage caused by this e-mail and the 
information it contains.It is the recipient's responsibility to scan this 
e-mail and any attachments for viruses. Any e-mails sent to and from the 
MCPS-PRS Alliance servers may be monitored for quality control and other 
purposes.The MCPS-PRS Alliance Limited is a limited company registered 
in England under company number 03444246 whose registered office is at c/o 29-33 
Berners Street, London, W1T 3AB.

RE: [ActiveDir] OT: Compaq Servers

[Rick Kingslan]

Title: RE: [ActiveDir] OT: Compaq Servers



Sadly, HP/Compaq flat pissed me off with orphaning all of 
my '2nd gen' systems to Windows 2000, unless I don't want to use SmartStart for 
anything other than coasters.  So, I really have no need for the 6.0 stuff 
that they keep sending me that DOES support Windows Server 2003, but not my 
still quite useful but somewhat dinosaur-ish (according to HP/Compaq, I 
suppose)
 
To me - dumb 
move.  But, I'm sure that they had a great reason for it.  Like, not 
having any interest in customers who weren't buying brand new machines for 
Windows Server 2003
 
Rick Kingslan  MCSE, MCSA, MCT, 
CISSPMicrosoft MVP:Windows Server / Directory ServicesWindows Server 
/ Rights ManagementWindows Security (Affiliate)Associate 
ExpertExpert Zone - www.microsoft.com/windowsxp/expertzoneWebLog - 
www.msmvps.com/willhack4food  



From: [EMAIL PROTECTED] 
[mailto:[EMAIL PROTECTED] On Behalf Of Kitchens Arthur 
ESent: Tuesday, June 08, 2004 9:38 AMTo: 
[EMAIL PROTECTED]Subject: RE: [ActiveDir] OT: Compaq 
Servers

I believe RDP is free. The smartstart cd *is* free and you could 
build a master image with that then distribute/implement with any of the 
methods/tools previously mentioned in this thread. You can also get a 30 day 
eval license for the altiris deployment server (what utilizes the RDP tool set) 
so I don't see any money invovled with exploration of that either.  It may 
also be the case the one of the Insight Manager flavors would be useful for you. 
At least one (4.something) was free by download a few weeks ago.  Just my 2 
cents. 
-Original Message- From: 
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] 
On Behalf Of Rutherford, Robert Sent: Tuesday, June 08, 
2004 10:30 AM To: [EMAIL PROTECTED] 
Subject: RE: [ActiveDir] OT: Compaq Servers 
I've spied the RDP tool before and it does look like a quality 
system, but can't really warrant the £££. If I remember it was 
expensive.
**drifts off to dreamland** 
Oh how I wish HP would provide me with a simple and free tool... 
Or a good old gui based front end to produce a script. 
**wakes to reality** 
Thud! 
-Original Message- From: 
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] 
Sent: 08 June 2004 15:09 To: 
[EMAIL PROTECTED] Cc: 
[EMAIL PROTECTED] Subject: RE: [ActiveDir] 
OT: Compaq Servers 
You can use also our tool RemoteDeploymentPackage (http://h18013.www1.hp.com/products/servers/management/rdp.html). 
RDP offers templates to deploy,image and re-deploy 
servers-images and also additional software. RDP is based on Altiris 
solution
> I used Ghost to distribute Sysprep'd  images either by 
Multicast or IP > connections on DL380's.  After 
the first build, each server was up and > ready to 
run DCPromo within 10-15 minutes including the time to load > the image over 100BaseT.  You can save a lot of time with the 
> Sysprep.inf file for many of the tedious settings, 
but I found running > DCPromo from the sysprep.inf to 
be hit and miss because of network > configuration, 
so I opted > to do that manually. > >   _ > > From: 
[EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED]] 
On Behalf Of Rutherford, > Robert > Sent: Tuesday, June 8, 2004 9:26 AM > To: 
[EMAIL PROTECTED] > Subject: RE: 
[ActiveDir] OT: Compaq Servers > > > Thanks Roger, > > ADS does look sxy.problem is that 
we are still mainly W2K :O( > > > -Original Message- 
> From: Roger Seielstad [mailto:[EMAIL PROTECTED]] 
> Sent: 08 June 2004 14:16 > To: 
[EMAIL PROTECTED] > Subject: RE: 
[ActiveDir] OT: Compaq Servers > > > Have you considered something like the 
Automated Deployment System? > Its part of the 
Dynamic Systems Initiative and its geared towards this > kind of deployment. Its also more or less free. > http://www.microsoft.com/windowsserver2003/technologies/management/ads/defau 
> lt.mspx >  ult.mspx> > > Roger > 
-- > Roger D. Seielstad - MTS MCSE MS-MVP > 
Sr. Systems Administrator > Inovis Inc. 
> > > >   _ > > From: Rutherford, Robert 
> [mailto:[EMAIL PROTECTED]] 
> Sent: Tuesday, June 08, 2004 8:42 AM > To: [EMAIL PROTECTED] > 
Subject: [ActiveDir] OT: Compaq Servers > 
> > > 
I'm sorry this is off topic but just thought I'd throw it out to see 
> if I get a bite > > It must be that time of year 
again.. a large number of new servers > coming 
in.I don't want to, or have anyone else build numerours > DL360's/380's .. All with more or less the same spec and o/s build. 
> Has anyone ever actually got the things to work 
with the scripting > toolkit? > > TIA > 
> Rob > > > This e-mail and the information it 
contains are confidential and may > be privileged. If 
you have received this e-mail in error please notify > the sender immediately and delete the material from any computer. 
> Unless you are the intended recipient, you should 
not copy this e-mail > for any

RE: [ActiveDir] Checklist for changing IP Address on DC

[Rick Kingslan]

Devan,
 
Looking over your plan - it all looks fine.  You 
should be quite successful with getting the IP update done.
 
However, I would like to submit and suggest that instead of 
DC1 DNS being set as:
 
Primary: DC1
Secondary: DC2
 
Set it like this:
 
Primary: DC2
Secondary DC1
 
If you have more than one DNS server, it's always a good 
idea to look at your peer for your lookups rather than yourself - especially if 
you are AD Integrated.  Reasoning for this is to prevent the DNS servers 
from becoming 'islands' for the CNAME _msdcs.ForestDNSName records in your name 
resolution infrastructure.
 
See this KB for more info.  http://support.microsoft.com/default.aspx?scid=kb;en-us;275278
 

Rick Kingslan  MCSE, MCSA, MCT, CISSPMicrosoft 
MVP:Windows Server / Directory ServicesWindows Server / Rights 
ManagementWindows Security (Affiliate)Associate ExpertExpert Zone - 
www.microsoft.com/windowsxp/expertzoneWebLog - 
www.msmvps.com/willhack4food  


From: [EMAIL PROTECTED] 
[mailto:[EMAIL PROTECTED] On Behalf Of Devan 
PalaSent: Tuesday, June 08, 2004 4:19 PMTo: 
[EMAIL PROTECTED]Subject: [ActiveDir] Checklist for 
changing IP Address on DC


Hi all, 

I have 2 DC's in a site that need IP's to be updated to reflect network 
changes. 
Both DC's are DNS servers (ADI), DHCP servers (with manual redundant scopes, 
which are not changing). Each point to themselves for DNS and the other for 
secondary, with forwarding enabled to the forest root DNS servers. 

Here's my plan: 


On DC2: 


  Change the primary (P) DNS server to point to DC1 and secondary (S) to 
  itself 
  Change all IP configuration (to reflect new IP segment & physically 
  move the cable)  
  Test connectivity (pinging loopback adapter, IP, GW etc.) 
  Flush the DNS resolver cache 
  Re-register DNS names 
  Check DNS entry for DC2 on DC1's DNS server 
  Test name resolution on DC1 and subsequently DC2 
  Change the P & S DNS server settings to point to itself and its 
  replication partner or DC2 
  Bounce the DNS and Netlogon services on DC2 
  Check DNS entry on DC2 to verify correct name to IP entry (for 
  DC2) 
  Test name resolution on DC2  
  Change the DHCP client parameters (to reflect new DNS server and DHCP 
  server) on both DC1 and DC2, restart DHCP server service on DC2 
  Update secondary zone transfers for forest-wide locator records on master 
  server (DC1) 
  Repeat steps for DC1 when DC2 is operational with new IP configuration, 
  except for few different things like master server for DC1 (for secondary zone 
  transfers etc.)

I am just trying to verify my steps and see if I'm missing 
anything or any gotchas before proceeding... 










 
Thanks,List info : http://www.activedir.org/mail_list.htm List 
FAQ : http://www.activedir.org/list_faq.htm List archive: 
http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Checklist for changing IP Address on DC

[Devan Pala]

Hi Rick,
Ah yes, the 'Island' issue...fortunately these are the child domain 
controllers (NOT authoritative for the _msdcs.ForestDNSName zone) the root 
domain controllers at our hub site are setup as you suggested 8-)). That is 
why I have this particular zone setup as secondaries on all child DC's to 
help with replication issues.

Thank You for your reply.
Devan.
Original Message Follows
From: "Rick Kingslan" <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
To: <[EMAIL PROTECTED]>
Subject: RE: [ActiveDir] Checklist for changing IP Address on DC
Date: Tue, 8 Jun 2004 20:46:43 -0500
Devan,
Looking over your plan - it all looks fine.  You should be quite successful
with getting the IP update done.
However, I would like to submit and suggest that instead of DC1 DNS being
set as:
Primary: DC1
Secondary: DC2
Set it like this:
Primary: DC2
Secondary DC1
If you have more than one DNS server, it's always a good idea to look at
your peer for your lookups rather than yourself - especially if you are AD
Integrated.  Reasoning for this is to prevent the DNS servers from becoming
'islands' for the CNAME _msdcs.ForestDNSName records in your name resolution
infrastructure.
See this KB for more info.
http://support.microsoft.com/default.aspx?scid=kb;en-us;275278
Rick Kingslan  MCSE, MCSA, MCT, CISSP
Microsoft MVP:
Windows Server / Directory Services
Windows Server / Rights Management
Windows Security (Affiliate)
Associate Expert
Expert Zone - www.microsoft.com/windowsxp/expertzone
WebLog - www.msmvps.com/willhack4food

  _
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Devan Pala
Sent: Tuesday, June 08, 2004 4:19 PM
To: [EMAIL PROTECTED]
Subject: [ActiveDir] Checklist for changing IP Address on DC

Hi all,
I have 2 DC's in a site that need IP's to be updated to reflect network
changes.
Both DC's are DNS servers (ADI), DHCP servers (with manual redundant scopes,
which are not changing). Each point to themselves for DNS and the other for
secondary, with forwarding enabled to the forest root DNS servers.
Here's my plan:
On DC2:
1.  Change the primary (P) DNS server to point to DC1 and secondary (S)
to itself
2.  Change all IP configuration (to reflect new IP segment & physically
move the cable)
3.  Test connectivity (pinging loopback adapter, IP, GW etc.)
4.  Flush the DNS resolver cache
5.  Re-register DNS names
6.  Check DNS entry for DC2 on DC1's DNS server
7.  Test name resolution on DC1 and subsequently DC2
8.  Change the P & S DNS server settings to point to itself and its
replication partner or DC2
9.  Bounce the DNS and Netlogon services on DC2
10. Check DNS entry on DC2 to verify correct name to IP entry (for DC2)
11. Test name resolution on DC2
12. Change the DHCP client parameters (to reflect new DNS server and
DHCP server) on both DC1 and DC2, restart DHCP server service on DC2
13. Update secondary zone transfers for forest-wide locator records on
master server (DC1)
14. Repeat steps for DC1 when DC2 is operational with new IP
configuration, except for few different things like master server for DC1
(for secondary zone transfers etc.)
I am just trying to verify my steps and see if I'm missing anything or any
gotchas before proceeding...
Thanks,
List info : http://www.activedir.org/mail_list.htm List FAQ :
http://www.activedir.org/list_faq.htm List archive:
http://www.mail-archive.com/activedir%40mail.activedir.org/
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

RE: [ActiveDir] Root Hints question

[Bernard, Aric]

If I remember correctly, the root hints entries are stored in AD if DNS
is installed on a DC.

- Aric

-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Rimmerman, Russ
Sent: Tuesday, June 08, 2004 3:47 PM
To: '[EMAIL PROTECTED]'
Subject: [ActiveDir] Root Hints question


When you modify root hints on one domain controller, does it replicate
to
other domain controllers?  It seems like whenever someone changes root
hints
on one of our DCs, the other DCs get the same root hints.  Is that
possible?

~~
This e-mail is confidential, may contain proprietary information
of the Cooper Cameron Corporation and its operating Divisions
and may be confidential or privileged.

This e-mail should be read, copied, disseminated and/or used only
by the addressee. If you have received this message in error please
delete it, together with any attachments, from your system.
~~
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive:
http://www.mail-archive.com/activedir%40mail.activedir.org/
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

AW: [ActiveDir] Setting Desktop Settings via Group Policy

[Ulf B. Simon-Weidner]

Hi Raymond,

one thing that didn't get mentioned:

If your users don’t have a profile right now, you can change the default
profile as well instead of assigning a mandatory (where the changes a user
make will be lost after every session). The default profile is being used if
a profile of the users doesn't exists yet. There are two places where you
are able to put your default profile: on every machine or once on the
domain. On every machine it's stored underneath documents and settings, but
you're also able to store it in the Netlogon-Share on your DCs and the
clients will pull that if they don't find a profile for the user.

Gruesse - Sincerely,
 
Ulf B. Simon-Weidner

-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Im Auftrag von Raymond McClinnis
Gesendet: Dienstag, 8. Juni 2004 01:47
An: [EMAIL PROTECTED]
Betreff: [ActiveDir] Setting Desktop Settings via Group Policy

Hi all,

I need to push out a standard desktop to all users in my company.  I found
where to set up the Active Desktop and the like, but I can't find where to
set things like background color and pattern.  I remember in the good ol'
days (under NT4) you could set these things up (or at least I thought I
remembered).  


Thanks in Advance,
Raymond McClinnis

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

AW: [ActiveDir] Root Hints

[Ulf B. Simon-Weidner]

Hello Russ,

they just get repopulated if you delete all of them (keep one and it doesn't
get repopulated). There are multiple instances where you need to change to
keep them from repopulating. One instance to change that is the checkbox
Dean pointed out, but what I also like is just putting in your internal
roothints, e.g. I put the forwarder to the next higher DNS-Servers in the
domain hierarchy and put in root hints to the nameservers responsible to the
root of the company. Then I'm also able to get rid of the default roothint
server, as long as there are entries they won't repopulate. This is even
easy to script with dnscmd.

Gruesse - Sincerely,
 
Ulf B. Simon-Weidner

-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Im Auftrag von Rimmerman, Russ
Gesendet: Dienstag, 8. Juni 2004 22:49
An: '[EMAIL PROTECTED]'
Betreff: [ActiveDir] Root Hints


We keep wiping out our root hints from our Win2k DNS servers, and they keep
repopulating.  Is this something that replicates between DNS servers, or
will it just not allow our root hints to be blank?  Our firewall is a DNSD
server and so we forward everything to the firewall for external DNS
lookups, but since the roothints keep populating on our Win2k DNS servers,
the firewall is generating huge amounts of logs from the internal Win2k
servers trying to do external lookups.  Any ideas?

~~
This e-mail is confidential, may contain proprietary information
of the Cooper Cameron Corporation and its operating Divisions
and may be confidential or privileged.

This e-mail should be read, copied, disseminated and/or used only
by the addressee. If you have received this message in error please
delete it, together with any attachments, from your system.
~~
List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/

List info   : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/