RE: [ActiveDir] sample vbs script
Take a look at the source code for chapter 6.1 in this excellent (fish) book. http://rallenhome.com/books/adcookbook/code.html Clyde Burns From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Antonio ArandaSent: Tuesday, June 06, 2006 3:29 PMTo: ActiveDir@mail.activedir.orgSubject: [ActiveDir] sample vbs script Could some one send me a sample vbs script that creates AD user accounts? Thanks Antonio This message is confidential, intended only for the named recipient(s) and may contain information that is privileged or exempt from disclosure under applicable law. Any patient health information must be delivered immediately to intended recipient(s). If you are not the intended recipient(s), you are notified that the dissemination, distribution or copying of this message is strictly prohibited. If you receive this message in error, or are not the named recipient(s), please notify the sender at either the e-mail address or telephone number above and discard this e-mail. Thank you.
RE: [ActiveDir] Robocopy(VERY OT)
Other ways... Dos bootdisk with Fdisk - www.bootdisk.com And theres also this. http://www.semshred.com/contentmgr/showdetails.php/id/680/tp/VE1HUj0xLHRpZD02NzIs Clyde Burns Louisville Ky. The one guy in the office who didn't go the track on Oaks day. From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Brian DesmondSent: Friday, May 05, 2006 10:53 AMTo: ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] Robocopy(OT) Cacls Xcacls Subinacl Format –q c: rm –rf / a consultant google set ownership tools perhaps too Thanks,Brian Desmond [EMAIL PROTECTED] c - 312.731.3132 From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Tom KernSent: Friday, May 05, 2006 9:14 AMTo: ActiveDir@mail.activedir.orgSubject: Re: [ActiveDir] Robocopy(OT) How can I take ownership of it? It doesn't have a security tab and xcacls doesn't "see" the folder.. Thanks On 5/4/06, joe <[EMAIL PROTECTED]> wrote: Wonder if you have a dorked up ACL, what happens if you try to take ownership of it? -- O'Reilly Active Directory Third Edition - http://www.joeware.net/win/ad3e.htm From: [EMAIL PROTECTED] [mailto: [EMAIL PROTECTED]] On Behalf Of Tom Kern Sent: Sunday, April 30, 2006 8:58 AM To: ActiveDir@mail.activedir.org Subject: Re: [ActiveDir] Robocopy(OT) Well, I've rebooted the server,ran a chkdsk, and still the dir will not disappear. I've run Process Explorer and Filemon and nothing is acessing this dir. Yet I can delete it and its missing the security tab(its on an ntfs vol). How the heck can I get rid of this dir? Has anyone had an issue like this? Thanks again 4/6/06, Bruyere, Michel <[EMAIL PROTECTED] > wrote: Hi, I got something similar but with a PDF file. The solution was to reboot the server… From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Tom KernSent: Thursday, April 06, 2006 9:18 AM To: ActiveDir@mail.activedir.org Subject: Re: [ActiveDir] Robocopy(OT) No one has this folder open. I've run Process Explorer and Filemon and nothing is accessing this folder. I can't delete it or share it out and its missing the security tab. anything else I should look for? Thanks On 4/5/06, Mark Parris < [EMAIL PROTECTED]> wrote: I have seen this if another PC has explorer open on that folder and you try and delete from another.Mark-Original Message-From: "Steve Rochford" < [EMAIL PROTECTED]>Date: Wed, 5 Apr 2006 16:37:03To:< ActiveDir@mail.activedir.org>Subject: RE: [ActiveDir] Robocopy(OT)This seems to happen when the folder is in the process of being deleted but hasn't quite gone. Sometimes, just waiting a while will clear the problem - I suspect that a process is holding open the folder (or, possibly, a file in the folder). More than once I've hit this and gone to use Sysinternals process explorer to find out which process is guilty. By the time I've run up the program and searched for the folder name there's nothing there. going back to the folder finds that it's either gone or can now be deleted. In your case, I'd guess that robocopy had started creating folders and when it got interrupted, something took a while for things to get tidied up - if the helpdesk guy hasn't yet unmapped the drives he was using then I think that this might help. SteveFrom: [EMAIL PROTECTED] [mailto: [EMAIL PROTECTED] ] On Behalf Of Tom KernSent: 05 April 2006 15:45To: activedirectory Subject: [ActiveDir] Robocopy(OT)I have a strange issue.I had a help desk admin robocopy a dir from one server to another. During the copy, for whatever reason, he canceled the robocopy job.When he went to the target server a empty dir was created which now cannot be deleted.I can't delete it through explorer or the command console at the server and get an error of "cannot delete file:cannot read from the source file or disk". If i do a RD /s, i get "The system cannot find the file specified."However the dir shows up in a dir listing or explorer.The weird thing is also, the dir has no "security" tab(and its on an ntfs file system). Some backround on the robocopy job-the admin mapped 2 drives from his local box(win2k).One drive to the root of the volume on the source server and another to the root on the target.he then CD'ed to the source and ran robocopy with the "/E" and "/V" switches. after sometime, he killed the job and now I'm stuck with this undeletable DIR.Any insight would be great.thanks This message is confidential, intended only for the named recipient(s) and may contain information that is privileged or exempt from disclosure under applicable law. Any patient health information must be delivered immediately to in
[ActiveDir] AD sites and subnet questions
I am planning a move of our exchange servers and two domain controllers out of our current single site to a new separate site. We had MS come in and do a healthcheck on Exchange, and its one of their recommendations. We don't have all the subnets in our network added into the current site yet. Before I break out the netsh and AD cookbook scripts and go to the lab I wanted to first see if there are simpler ways of doing this. Question 1. If I have say, 25 class C networks like 192.168.1.0/24 thru 192.168.25.0/24 in site 1. Can I put 192.168.0.0/16 under site 1 and it work the same as explicitly defining the 25 separate subnets? Question 2. The computers going to site 2 are part of a subnet in site 1 currently. Can I get away with adding individual computers to site 2 that are subset of a subnet defined in site 1? Site 1 - 192.168.1.0/24 Site 2 - 192.168.1.10/32 192.168.1.11/32 192.168.1.12/32 192.168.1.13/32 Or do I need to move them into their own subnet for the separate site? Thank you for any insight and/or recommendations you have. Clyde Burns Norton Healthcare - This message is confidential, intended only for the named recipient(s) and may contain information that is privileged or exempt from disclosure under applicable law. Any patient health information must be delivered immediately to intended recipient(s). If you are not the intended recipient(s), you are notified that the dissemination, distribution or copying of this message is strictly prohibited. If you receive this message in error, or are not the named recipient(s), please notify the sender at either the e-mail address or telephone number above and discard this e-mail. Thank you. List info : http://www.activedir.org/List.aspx List FAQ: http://www.activedir.org/ListFAQ.aspx List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
RE: [ActiveDir] Hiding in the Directory
I would also watch out for scripts tucked away that elevate some other users privileges using a domain admins credentials upon login. Places I would check Startup folder(s) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run win.ini - multiple entries on the "shell=" line. (on NT4 and older OS's) Possibly a gpo attached to accounts that will remain domain admins? Its very easy to ask an admin "can you log into this ... and see whats going on?" once the permission tightening was over and the consultant was gone. Then business as usual. Clyde Burns From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Grillenmeier, GuidoSent: Friday, February 10, 2006 1:43 PMTo: ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] Hiding in the Directory good points - usually the hardest ones to figure out. and if you knew AD well and the forest is setup "appropriately", you might also want to leverage SIDhistory. From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Bahta, Nathaniel V Contractor NASIC/SCNASent: Freitag, 10. Februar 2006 18:19To: ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] Hiding in the Directory If I were wanting to hide out in the directory, and didnt know much about Active Directory, but had a fair amount of general knowledge about computers, I would check into the Active Directory hotel under a fake name with the Mrs and I. I would call myself Intrasite Topology Generation Account or something sounding official and then use that as my runas buddy. Or I could just create a group called Federated Forest Knowledge Consistency Checker's and then give the Topology Generation account membership to it, and then give the Federated Forest Knowledge Consistency Checker all the user rights of whatever kind of admin I would hope to be. I might even install some services and make them sound official like Directory Services Cylic Redundancy Checker and make the Topology generation Account the service account it runs under as well. Why try to create a backdoor when you can just create another front door? Kinda like the fake laundry service gag to break out of prison you always see in the movies. Nate From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Noah EigerSent: Friday, February 10, 2006 11:54 AMTo: ActiveDir@mail.activedir.orgSubject: [ActiveDir] Hiding in the Directory I have been asked by a company to help them tighten what is currently a very loose security model. Now, several non-IT-but-computer-adept employees have accounts with full Domain Admin privileges. Many of these folks are programmer types and pretty savvy (which leads them to think they know what they are doing – that’s another story). They are also aware that we are going to tighten things down. For political reasons, we could not just yank their admin access. So the question is: if you were one of these folks and were inclined to mischief (or simply ensuring your continued access), how might you hide yourself in the Directory? More to the point: where should I look beyond the obvious group memberships? Thanks. -- nme --No virus found in this outgoing message.Checked by AVG Free Edition.Version: 7.1.375 / Virus Database: 267.15.5/256 - Release Date: 2/10/2006 This message is confidential, intended only for the named recipient(s) and may contain information that is privileged or exempt from disclosure under applicable law. Any patient health information must be delivered immediately to intended recipient(s). If you are not the intended recipient(s), you are notified that the dissemination, distribution or copying of this message is strictly prohibited. If you receive this message in error, or are not the named recipient(s), please notify the sender at either the e-mail address or telephone number above and discard this e-mail. Thank you.
RE: [ActiveDir] Exchange store size
Take a look at this link http://gsexdev.blogspot.com/2004/12/listing-file-sizes-of-all-exchange.html Listing the file sizes of all Exchange Stores on all Exchange Servers in a Domain Ive been using it for a while. I think its going to get you what your looking for. Clyde Burns From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Robert N. LealiSent: Friday, January 06, 2006 4:28 PMTo: ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] Exchange store size Miss read your post initially but I think you might not have dug down deep enough in the ExBPA tool. I think the info is there by server ... Admin Group - First Admin Group Exchange Sevrers Name of Server Information Store First Storage Group MailBox Store (server name) CIM_DataFile.name -path to store File Size = Robert From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Robert N. LealiSent: Friday, January 06, 2006 3:08 PMTo: ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] Exchange store size Lazy way to do it ... run the Microsoft Exchange Best Practices Analyzer Tool against all your servers and stores. When you view the report under detailed view under statistics summary, it will give you number of mailboxes and size of the store for both public and private mailboxes. Robert From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Eric RasmusonSent: Friday, January 06, 2006 2:40 PMTo: ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] Exchange store size This script should do exactly what you're looking for. http://gsexdev.blogspot.com/2004/12/listing-file-sizes-of-all-exchange.html I've used some of Glen Scale's other scripts. His is a very useful Exchange blog. Eric From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Tom KernSent: Friday, January 06, 2006 12:47 PMTo: ActiveDir@mail.activedir.orgSubject: Re: [ActiveDir] Exchange store size I checked Google and all I get are links to check the size of one mailbox. I'm trying to avoid explorer. I have a lot of exchange servers and i'd just like to get the size of each store in each storage group on each server. Explorer would kill me and ESM only gives you per mailbox size. I'm not profficent in CDO. ExBPA actually gives you the size of every store together in your entire Org without giving you a per server or store stat. I just thought there was a tool that can do something this basic already available. Deji, sorry for how basic this question sounds. I wouldn't bug this list(the way i used to) without doing some research first and i honestly couldn't come up with anything. My apologies. Thanks alot On 1/6/06, Joe Pochedley <[EMAIL PROTECTED]> wrote: Windows Explorer? From: [EMAIL PROTECTED] [mailto: [EMAIL PROTECTED]] On Behalf Of Tom KernSent: Friday, January 06, 2006 2:29 PMTo: activedirectorySubject: [ActiveDir] Exchange store size Is there any quick easy way to get the size of all your Exchange 2k mailbox/public stores in your Org? Thanks The information contained in this e-mail transmittal, including any attached document(s) is confidential. The information is intended only for the use of the named recipient. If you are not the named recipient, you are hereby notified that any use, disclosure, copying, or distribution of the contents hereof is strictly prohibited. This message is confidential, intended only for the named recipient(s)and may contain information that is privileged or exempt fromdisclosure under applicable law. Any patient health information must bedelivered immediately to intended recipient(s). If you are not theintended recipient(s), you are notified that the dissemination,distribution or copying of this message is strictly prohibited. If youreceive this message in error, or are not the named recipient(s),please notify the sender at either the e-mail address or telephonenumber above and discard this e-mail. Thank you.