RE: Home Antivirus

[James Hill]

Lol!   It's still an issue if the keyboard and mouse are plugged in though J

 

From: James Rankin [mailto:kz2...@googlemail.com] 
Sent: Friday, 17 February 2012 7:28 AM
To: NT System Admin Issues
Subject: Re: Home Antivirus

 

You forgot "get a Mac" :-)

On 16 February 2012 20:56, James Hill  wrote:

Which seems to be the current trick of some of the malware these days.  I've
seen a Win 7 machine with the user not a local admin and UAC enabled appear
to be "hosed" by malware.  It is only for the current profile though.  But
tricks like setting the hidden flag on every folder and file it can make for
a confusing time for the user.

 

Running as non-admin does make a huge difference though.  It stops the
majority (for now) of malware and reduces the impact to the current user
profile.  I think it is still the single most effective security option
apart from disconnecting the network cable and taking away the keyboard and
mouse J

 

From: Carl Houseman [mailto:c.house...@gmail.com] 
Sent: Tuesday, 14 February 2012 5:04 PM


To: NT System Admin Issues

Subject: RE: Home Antivirus

 

One doesn't have to be an admin to infect one's own user profile.   That's
also why non-admins can install Chrome - it installs into the user profile.
But a non-admin has a better chance of avoiding a rootkit.

 

Carl

 

From: ntsysadmin [mailto:ntsysad...@rccs.org] 
Sent: Monday, February 13, 2012 10:10 PM


To: NT System Admin Issues

Subject: RE: Home Antivirus

 

How much less likely is one to get infected running as a non-admin? Does it
depend on the OS? I ask because I've cleaned up infections on Windows7 Pro
PCs where the user was definitely not running as an admin. One PC in
question was also set up to require additional credentials for any software
installation. We never did determine the source of the malware.

 

Thanks,

 

Mike

 

From: Jon Harris [mailto:jk.har...@gmail.com] 
Sent: Monday, February 13, 2012 9:42 PM


To: NT System Admin Issues
Subject: Re: Home Antivirus

 

>From personal experience it does not matter how good the anti-malware
software is if you have users (home or corp) that run as administrators
regularly, fight you tooth and nail on patching the machine, and
download/install all the "neat" stuff on the web they will get hit by
something.  Previous $dayjob$ once I got administration approval to pull
admin privileges, start patching on a regular basis, and require proof of
need to install anything not on the standard software list with proof that
it was not going to open up the internal network to a virus most of the
anti-malware software will keep things under control.  Most homeowners
prefer to run with admin privileges, fight patching, and install all kinds
of garbage they really don't need.  Those are the ones that get hit
repeatably but malware.

 

Jon

On Mon, Feb 13, 2012 at 8:55 PM, MMF  wrote:

Any comments on AVG? I've been using it for several years and it hasn't
failed me yet!

 

MMF

 

From: Cynicalgeek   

Sent: Monday, February 13, 2012 7:27 PM

To: NT System Admin Issues   

Subject: Re: Home Antivirus

 

The same things that infect MSSE also infect McAfee, Norton, et al. 

 

If you're going the paid route, supposedly Kaspersky is the absolute best.

 

I've been using MSSE for almost 2.5 years and have been very pleased.

 

 

On Mon, Feb 13, 2012 at 8:03 PM, Ben Scott  wrote:

On Mon, Feb 13, 2012 at 7:45 PM, Richard Stovall  wrote:
> Hurry up!  Time's almost out on the deal to get McAfee free for 3PCs.
> http://preview.tinyurl.com/77u2zry

"Receive a $55 prepaid card by mail from McAfee! Expires on 2/15/12 "



So in two days, the Internet will be a safer place.  ;-)

If I'm going the free AV route, I'd prolly go MS Security
Essentials.  While it's limited in features, it does stop malware and
spyware, and updates happen with Windows Update.  For all of WU's
problems, other things all seem to suck more.


-- Ben


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin





 

-- 

-cynicalgeek-
cynicalgeekgmail.com
--

~ Finally, powerful endpoint security that ISN'T a resource hog! ~


~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubs

RE: Odd Network Problem MAC Booted inWin7

[Ken Schaefer]

What does your switch say about the port status?

Cheers
Ken

-Original Message-
From: James Edwards [mailto:jedwa...@mail.sdsu.edu] 
Sent: Friday, 17 February 2012 4:18 AM
To: NT System Admin Issues
Subject: Re: Odd Network Problem MAC Booted inWin7

Wake on LAN is enabled, Low Power is disabled.

That right??

Jim


On 2/16/12 12:00 PM, John C Owen wrote:
> Have you checked the Power management for the nic cards
>



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Odd Network Problem MAC Booted inWin7

[Jon Harris]

Since you are running this on a Mac (I am assuming you are since running
iOS on anything else is not legal) look in the Mac's BIOS and see if it is
set to disconnect the NIC when not in use.  If you are running Windows in
as a VM look in the iOS config to see if it might be turning the NIC's off.

Jon

On Thu, Feb 16, 2012 at 5:29 PM, James Edwards wrote:

> Steven;
>
> THANKS, but no joy, it's unchecked. Also, usually people notice when they
> try to go to a Web site of a print job fails.
>
> Jim
>
>
>
> On 2/16/12 2:03 PM, Steven Peck wrote:
>
>> That won't necessarily do it for you.
>> Go into your Local Area Connection properties.
>> Then under the 'Connect using' click configure.
>> The power management tab there.  If it is checked
>> 'Allow the computer to turn off this deivce to save power' then you will
>> have odd, intermittant network connection issues.
>> A client initated connection, such as an email check, will 'wake the
>> connection' long enough to do something then power management will sleep
>> it.  Combine this with a Cisco spanning tree protocol on the switch and you
>> haev a recipe for really irritating logon times or strange Outlook issues'
>> in the XP days.
>> Steven Peck
>> http://www.blkmtn.org
>>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ 
> 
> **>  ~
>
> ---
> To manage subscriptions click here: http://lyris.sunbelt-software.**
> com/read/my_forums/ 
> or send an email to 
> listmanager@lyris.**sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Self-Service Account Unlock

[Ken Schaefer]

With Vista onwards this can be done via a Credential Provider plug-in. No need 
to replace the GINA anymore.

Cheers
Ken

From: Michael B. Smith [mailto:mich...@smithcons.com]
Sent: Friday, 17 February 2012 2:54 AM
To: NT System Admin Issues
Subject: RE: Self-Service Account Unlock

There are a couple of them out there - but they aren't cheap - and I don't 
recommend it.

Putting the recovery button on the logon screen requires a "custom GINA". A new 
custom GINA is required every time specific pieces of the Windows kernel are 
updated (I think it's lsass.exe, but I'm not 100% on that and can't investigate 
right now). Which definitely happens by each service pack and may happen many 
patch Tuesdays.

I think it's better for someone to walk to the office next door, or borrow 
their neighbor's computer for a couple of minutes.

From: Sean Rector 
[mailto:sean.rec...@vaopera.org]
Sent: Thursday, February 16, 2012 1:45 PM
To: NT System Admin Issues
Subject: Self-Service Account Unlock

I've been looking through the multitude of options, but they all seem to be 
web-portal-based.  Is there one that puts the Unlock option on the Logon Screen?

My point is - what's the use of a web-portal version when they can't log on to 
their machine?  A kiosk-type user account doesn't seem the safest route to go.

Sean Rector, MCSE



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: [OT] How to troubleshoot Kerberos issues on windows server 2003 against windows server 2008?

[Ken Schaefer]

Your packet capture should be able to tell you why it's not working (if it's a 
Kerberos problem).

My first question: why do you think it's a Kerberos problem?

I also have a detailed set of Kerberos posts on my blog: 
www.adopenstatic.com/faq has a list - you can 
use that (there are some sample packet captures for the more advanced scenarios 
that you can reference)

Cheers
Ken

From: Boaz Galil [mailto:boa...@gmail.com]
Sent: Friday, 17 February 2012 3:42 AM
To: NT System Admin Issues
Subject: [OT] How to troubleshoot Kerberos issues on windows server 2003 
against windows server 2008?

Dear experts,
This is kind of out of topic question but I will try my luck as I know that 
there are some top players here.
One of our customers has installed our enterprise solution:

1.   Server A: Windows server 2003 with application service 1.

2.   Server B: Windows server 2003 with application service 2 (identical to 
application service 1 / same code).

3.   Server C:  Windows server 2008 with IIS and  application 3 webservice 
that both server A and B connects.

All services are running with the same credentials (same domain user/pass) and 
running on the same domain . The communication between Server A and Server C is 
working fine, or in other words server A is working as design.
The problem is that server B for some reason is getting authentication failures 
when trying to "work" with Server C (with the web application running on the 
IIS).

>From what it seems, the Kerberos is failing and there is fallback to NTLM - 
>and NTLM is failing as well.
My main question is how can I investigate why the Kerberos is failing?  I 
checked clocks, event viewer (doesn't see anything interesting), and compared 
packet capture between the working and the non working server but couldn't get 
into conclusion of the issue.
Bottom line, Is there any log that I can enable to troubleshoot further more 
Kerberos issues?
I have asked the customer to remove Server B from the domain and rejoin it 
(read some articles that it may resolve the issue as a "Voodoo" trick).
Tomorrow morning, I will have access again to the customer site, in case that 
the issue will not be resolved.
I would appreciate any suggestion on what I should check or how to troubleshoot 
this scenario...
Thanks in advance,
Boaz.


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Self-Service Account Unlock

[Harry Singh]

500+ users here and am a big fan of account lockout durations of less than
5 minutes. Our annual security assessment advisor didn't like that very
much, for reasons i'm still attempting to figure out. I've read several
pieces of documentation suggesting keeping the lockout duration to even
about 1 minute would be secure, but I'm far from an info sec expert. I'm
eager to hear from the folks on this list who disagree with the lockout
duration being set to anything higher than 5 minutes (for arguments sake).

Harry.


On Thu, Feb 16, 2012 at 7:22 PM, Kurt Buff  wrote:

> Well, since you're that understaffed, I'd personally set the timeout
> to 5 minutes, and let the students deal with it. I say that wearing my
> BOFH hat, but I don't think that it's all that unreasonable.
>
> On Thu, Feb 16, 2012 at 14:50, Blackman, Woody 
> wrote:
> > Well, in an academic environment, we have 35,000 students per semester
> using about 2,000 resources (computers in labs) and about 6 people per
> shift to "help" them.  They need access and we need automation/self-service
> wherever there is opportunity.
> >
> > -Original Message-
> > From: Kurt Buff [mailto:kurt.b...@gmail.com]
> > Sent: Thursday, February 16, 2012 2:37 PM
> > To: NT System Admin Issues
> > Subject: Re: Self-Service Account Unlock
> >
> > So, I have some questions regarding this:
> >
> > What is the rush on the part of the end user to have this done? They
> can't wait 5 or 10 minutes for the unlock to happen automagically?
> >
> > How often do account lockouts happen that this is something worth
> spending time and money on a solution?
> >
> > Frankly, with my user base of about 250 staff, I consider it unusual to
> get as many as three requests in a month for account unlocks.
> >
> > Kurt
> >
> > On Thu, Feb 16, 2012 at 10:44, Sean Rector 
> wrote:
> >> I’ve been looking through the multitude of options, but they all seem
> >> to be web-portal-based.  Is there one that puts the Unlock option on
> >> the Logon Screen?
> >>
> >>
> >>
> >> My point is – what’s the use of a web-portal version when they can’t
> >> log on to their machine?  A kiosk-type user account doesn’t seem the
> >> safest route to go.
> >>
> >>
> >>
> >> Sean Rector, MCSE
> >>
> >>
> >>
> >> Information Technology Manager
> >> Virginia Opera Association
> >>
> >> E-Mail: sean.rec...@vaopera.org
> >> Phone:(757) 213-4548 (direct line) {+}
> >>
> >> Tickets and Subscriptions On Sale Now!
> >> Orphée | The Mikado
> >> Visit us online at www.VaOpera.org or call 1-866-OPERA-VA
> >>
> >> Experience the Beauty, Power & Passion of Virginia Opera.
> >>
> >> 
> >>
> >> This e-mail and any attached files are confidential and intended
> >> solely for the intended recipient(s). Unless otherwise specified,
> >> persons unnamed as recipients may not read, distribute, copy or alter
> >> this e-mail. Any views or opinions expressed in this e-mail belong to
> >> the author and may not necessarily represent those of Virginia Opera.
> >> Although precautions have been taken to ensure no viruses are present,
> >> Virginia Opera cannot accept responsibility for any loss or damage
> >> that may arise from the use of this e-mail or attachments.
> >>
> >> {*}
> >>
> >> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
> >>   ~
> >>
> >> ---
> >> To manage subscriptions click here:
> >> http://lyris.sunbelt-software.com/read/my_forums/
> >> or send an email to listmana...@lyris.sunbeltsoftware.com
> >> with the body: unsubscribe ntsysadmin
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <
> http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
> >
> > ---
> > To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> > or send an email to listmana...@lyris.sunbeltsoftware.com
> > with the body: unsubscribe ntsysadmin
> >
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > ~   ~
> >
> > ---
> > To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> > or send an email to listmana...@lyris.sunbeltsoftware.com
> > with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Group Policy problem

[Jim Dandy]

Thanks all for your suggestions.  I tried the always wait for network at
computer startup but that didn't seem to solve the problem.  Eventually
though, it started working.  I'm not sure what fixed it but thanks for
all your suggestions.

 

Curt

 

From: Jim Dandy [mailto:jda...@asmail.ucdavis.edu] 
Sent: Wednesday, February 15, 2012 1:37 PM
To: NT System Admin Issues
Subject: RE: Group Policy problem

 

I might also mention that the computer is on a very slow link.  However,
I don't think that's the issue because this computer has been able to
install software from GPs in the past.

 

Curt

 

From: Jim Dandy [mailto:jda...@asmail.ucdavis.edu] 
Sent: Wednesday, February 15, 2012 1:28 PM
To: NT System Admin Issues
Subject: Group Policy problem

 

I'm trying to install software via group policy.  If I do resultant set
of policy, it shows the group policies but there is a yellow triangle
with an exclamation point on all of the policies assigning the software
packages.  In RSoP, if I look at the Error Information tab on the
Properties for the group policy, it only shows the date and time. There
are no errors in the system event log indicating the software failed to
install - it just doesn't install when the system is booted.  The issue
only occurs on this one (Vista) computer.  The GPs are working perfectly
on other computers in the OU.  How can I track down the problem?  Thanks
for your help.

 

Curt Finley

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Self-Service Account Unlock

[Kurt Buff]

Well, since you're that understaffed, I'd personally set the timeout
to 5 minutes, and let the students deal with it. I say that wearing my
BOFH hat, but I don't think that it's all that unreasonable.

On Thu, Feb 16, 2012 at 14:50, Blackman, Woody  wrote:
> Well, in an academic environment, we have 35,000 students per semester using 
> about 2,000 resources (computers in labs) and about 6 people per shift to 
> "help" them.  They need access and we need automation/self-service wherever 
> there is opportunity.
>
> -Original Message-
> From: Kurt Buff [mailto:kurt.b...@gmail.com]
> Sent: Thursday, February 16, 2012 2:37 PM
> To: NT System Admin Issues
> Subject: Re: Self-Service Account Unlock
>
> So, I have some questions regarding this:
>
> What is the rush on the part of the end user to have this done? They can't 
> wait 5 or 10 minutes for the unlock to happen automagically?
>
> How often do account lockouts happen that this is something worth spending 
> time and money on a solution?
>
> Frankly, with my user base of about 250 staff, I consider it unusual to get 
> as many as three requests in a month for account unlocks.
>
> Kurt
>
> On Thu, Feb 16, 2012 at 10:44, Sean Rector  wrote:
>> I’ve been looking through the multitude of options, but they all seem
>> to be web-portal-based.  Is there one that puts the Unlock option on
>> the Logon Screen?
>>
>>
>>
>> My point is – what’s the use of a web-portal version when they can’t
>> log on to their machine?  A kiosk-type user account doesn’t seem the
>> safest route to go.
>>
>>
>>
>> Sean Rector, MCSE
>>
>>
>>
>> Information Technology Manager
>> Virginia Opera Association
>>
>> E-Mail: sean.rec...@vaopera.org
>> Phone:    (757) 213-4548 (direct line) {+}
>>
>> Tickets and Subscriptions On Sale Now!
>> Orphée | The Mikado
>> Visit us online at www.VaOpera.org or call 1-866-OPERA-VA
>>
>> Experience the Beauty, Power & Passion of Virginia Opera.
>>
>> 
>>
>> This e-mail and any attached files are confidential and intended
>> solely for the intended recipient(s). Unless otherwise specified,
>> persons unnamed as recipients may not read, distribute, copy or alter
>> this e-mail. Any views or opinions expressed in this e-mail belong to
>> the author and may not necessarily represent those of Virginia Opera.
>> Although precautions have been taken to ensure no viruses are present,
>> Virginia Opera cannot accept responsibility for any loss or damage
>> that may arise from the use of this e-mail or attachments.
>>
>> {*}
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>>   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
>   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Cert Error - Reason Code 295

[Michael B. Smith]

What kind of a certificate is it and does it contain a valid userid AS A UPN?

From: Troy Adkins [mailto:tadk...@house.virginia.gov]
Sent: Thursday, February 16, 2012 5:22 PM
To: NT System Admin Issues
Subject: RE: Cert Error - Reason Code 295

When I view the certificate nothing shows that indicates a trust problem.
No "red x's" on the properties, if that makes sense to you.

Troy Adkins
Network Administrator
Virginia House of Delegates
General Assembly Bldg. Room 815
804.698.1567 (O)
804.771.7917 (F)
tadk...@house.virginia.gov
http://legis.virginia.gov



From:"Michael B. Smith" 
mailto:mich...@smithcons.com>>
To:"NT System Admin Issues" 
mailto:ntsysadmin@lyris.sunbelt-software.com>>
Date:02/16/2012 04:23 PM
Subject:RE: Cert Error - Reason Code 295




View the certificate and see which isn’t trusted?

Use certutil to do the same?

From: Troy Adkins [mailto:tadk...@house.virginia.gov]
Sent: Thursday, February 16, 2012 3:01 PM
To: NT System Admin Issues
Subject: Cert Error - Reason Code 295

I have a CA in one Forest and a Sub CA in another Forest that I validate certs. 
 The cert in the Sub CA expired and I'm trying to issue a new one.
The tech in the Sub CA creates a request for a cert in his Forest/Domain.   I 
get it and create the cert for him and send it back.  This is for our wireless 
network.
We have Forest Trusts set between the 2 Forests...

When he tries to use it, the below error is recorded in the Event logs, on my 
IAS server.

I/We can't seem to put our fingers on what is the problem.
I've added the sub cert to the Trusted Root of Authority and it is verified.

Reason-Code = 295
Reason = A certification chain processed correctly, but one of the CA
certificates is not trusted by the policy provider


Troy Adkins
Network Administrator
Virginia House of Delegates
General Assembly Bldg. Room 815
804.698.1567 (O)
804.771.7917 (F)
tadk...@house.virginia.gov
http://legis.virginia.gov

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Reverse Proxy

[Kurt Buff]

Thread sidejack...

I'm on top of doing a pilot for DA/UAG, which depends on TMG. I wonder
where this leaves UAG?

Kurt

On Thu, Feb 16, 2012 at 12:40, James Hill  wrote:
> I’d recommend TMG.  As you are mainly a MS shop you’ll find most
> documentation will cover the relevant configuration on TMG/ISA so that makes
> life a lot easier.
>
>
>
> Be aware that TMG’s future is a little unknown though.  It will be supported
> for the full ten year cycle but at this stage there is no publicly known
> replacement/new version on the way.
>
>
>
> http://blogs.isaserver.org/shinder/2011/05/27/death-of-tmg/
>
>
>
>
>
>
>
>
>
>
>
> From: Kevin Lundy [mailto:klu...@gmail.com]
> Sent: Thursday, 16 February 2012 3:22 AM
> To: NT System Admin Issues
> Subject: Reverse Proxy
>
>
>
> Hi all,
>
>
>
> We are starting to look at a reverse proxy to publish select internal
> resources.  Besides MS TMG, what other products are you using out there?  We
> are still working on the requirements definition, but I thought I could at
> lease start the product list.
>
>
>
> We will want to publish OWA, CWA and then our time card system which is
> built on Weblogic.
>
>
>
> Squid on Linux works, but we are 99% a MS shop so would prefer to go with a
> platform we know best.  That is why TMG will be on the short list.  Any
> other MS based solutions, or appliances, or VM based appliances?
>
>
>
> Thanks
>
> Kevin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Self-Service Account Unlock

[Blackman, Woody]

Well, in an academic environment, we have 35,000 students per semester using 
about 2,000 resources (computers in labs) and about 6 people per shift to 
"help" them.  They need access and we need automation/self-service wherever 
there is opportunity.

-Original Message-
From: Kurt Buff [mailto:kurt.b...@gmail.com] 
Sent: Thursday, February 16, 2012 2:37 PM
To: NT System Admin Issues
Subject: Re: Self-Service Account Unlock

So, I have some questions regarding this:

What is the rush on the part of the end user to have this done? They can't wait 
5 or 10 minutes for the unlock to happen automagically?

How often do account lockouts happen that this is something worth spending time 
and money on a solution?

Frankly, with my user base of about 250 staff, I consider it unusual to get as 
many as three requests in a month for account unlocks.

Kurt

On Thu, Feb 16, 2012 at 10:44, Sean Rector  wrote:
> I’ve been looking through the multitude of options, but they all seem 
> to be web-portal-based.  Is there one that puts the Unlock option on 
> the Logon Screen?
>
>
>
> My point is – what’s the use of a web-portal version when they can’t 
> log on to their machine?  A kiosk-type user account doesn’t seem the 
> safest route to go.
>
>
>
> Sean Rector, MCSE
>
>
>
> Information Technology Manager
> Virginia Opera Association
>
> E-Mail: sean.rec...@vaopera.org
> Phone:    (757) 213-4548 (direct line) {+}
>
> Tickets and Subscriptions On Sale Now!
> Orphée | The Mikado
> Visit us online at www.VaOpera.org or call 1-866-OPERA-VA
>
> Experience the Beauty, Power & Passion of Virginia Opera.
>
> 
>
> This e-mail and any attached files are confidential and intended 
> solely for the intended recipient(s). Unless otherwise specified, 
> persons unnamed as recipients may not read, distribute, copy or alter 
> this e-mail. Any views or opinions expressed in this e-mail belong to 
> the author and may not necessarily represent those of Virginia Opera. 
> Although precautions have been taken to ensure no viruses are present, 
> Virginia Opera cannot accept responsibility for any loss or damage 
> that may arise from the use of this e-mail or attachments.
>
> {*}
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
>   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Self-Service Account Unlock

[Kurt Buff]

So, I have some questions regarding this:

What is the rush on the part of the end user to have this done? They
can't wait 5 or 10 minutes for the unlock to happen automagically?

How often do account lockouts happen that this is something worth
spending time and money on a solution?

Frankly, with my user base of about 250 staff, I consider it unusual
to get as many as three requests in a month for account unlocks.

Kurt

On Thu, Feb 16, 2012 at 10:44, Sean Rector  wrote:
> I’ve been looking through the multitude of options, but they all seem to be
> web-portal-based.  Is there one that puts the Unlock option on the Logon
> Screen?
>
>
>
> My point is – what’s the use of a web-portal version when they can’t log on
> to their machine?  A kiosk-type user account doesn’t seem the safest route
> to go.
>
>
>
> Sean Rector, MCSE
>
>
>
> Information Technology Manager
> Virginia Opera Association
>
> E-Mail: sean.rec...@vaopera.org
> Phone:    (757) 213-4548 (direct line)
> {+}
>
> Tickets and Subscriptions On Sale Now!
> Orphée | The Mikado
> Visit us online at www.VaOpera.org or call 1-866-OPERA-VA
>
> Experience the Beauty, Power & Passion of Virginia Opera.
>
> 
>
> This e-mail and any attached files are confidential and intended solely for
> the intended recipient(s). Unless otherwise specified, persons unnamed as
> recipients may not read, distribute, copy or alter this e-mail. Any views or
> opinions expressed in this e-mail belong to the author and may not
> necessarily represent those of Virginia Opera. Although precautions have
> been taken to ensure no viruses are present, Virginia Opera cannot accept
> responsibility for any loss or damage that may arise from the use of this
> e-mail or attachments.
>
> {*}
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Odd Network Problem MAC Booted inWin7

[James Edwards]

Steven;

THANKS, but no joy, it's unchecked. Also, usually people notice when 
they try to go to a Web site of a print job fails.


Jim


On 2/16/12 2:03 PM, Steven Peck wrote:

That won't necessarily do it for you.
Go into your Local Area Connection properties.
Then under the 'Connect using' click configure.
The power management tab there.  If it is checked
'Allow the computer to turn off this deivce to save power' then you 
will have odd, intermittant network connection issues.
A client initated connection, such as an email check, will 'wake the 
connection' long enough to do something then power management will 
sleep it.  Combine this with a Cisco spanning tree protocol on the 
switch and you haev a recipe for really irritating logon times or 
strange Outlook issues' in the XP days.

Steven Peck
http://www.blkmtn.org



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Cert Error - Reason Code 295

[Troy Adkins]

When I view the certificate nothing shows that indicates a trust problem.
No "red x's" on the properties, if that makes sense to you.

Troy Adkins
Network Administrator
Virginia House of Delegates
General Assembly Bldg. Room 815
804.698.1567 (O)
804.771.7917 (F)
tadk...@house.virginia.gov
http://legis.virginia.gov



From:   "Michael B. Smith" 
To: "NT System Admin Issues" 
Date:   02/16/2012 04:23 PM
Subject:RE: Cert Error - Reason Code 295



View the certificate and see which isn’t trusted?
 
Use certutil to do the same?
 
From: Troy Adkins [mailto:tadk...@house.virginia.gov] 
Sent: Thursday, February 16, 2012 3:01 PM
To: NT System Admin Issues
Subject: Cert Error - Reason Code 295
 
I have a CA in one Forest and a Sub CA in another Forest that I validate 
certs.  The cert in the Sub CA expired and I'm trying to issue a new one. 
The tech in the Sub CA creates a request for a cert in his Forest/Domain.  
I get it and create the cert for him and send it back.  This is for our 
wireless network. 
We have Forest Trusts set between the 2 Forests... 

When he tries to use it, the below error is recorded in the Event logs, on 
my IAS server.   

I/We can't seem to put our fingers on what is the problem. 
I've added the sub cert to the Trusted Root of Authority and it is 
verified. 

Reason-Code = 295 
Reason = A certification chain processed correctly, but one of the CA 
certificates is not trusted by the policy provider 


Troy Adkins
Network Administrator
Virginia House of Delegates
General Assembly Bldg. Room 815
804.698.1567 (O)
804.771.7917 (F)
tadk...@house.virginia.gov
http://legis.virginia.gov 
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Odd Network Problem MAC Booted inWin7

[Steven Peck]

That won't necessarily do it for you.
Go into your Local Area Connection properties.
Then under the 'Connect using' click configure.

The power management tab there.  If it is checked
'Allow the computer to turn off this deivce to save power' then you will
have odd, intermittant network connection issues.

A client initated connection, such as an email check, will 'wake the
connection' long enough to do something then power management will sleep
it.  Combine this with a Cisco spanning tree protocol on the switch and you
haev a recipe for really irritating logon times or strange Outlook issues'
in the XP days.

Steven Peck
http://www.blkmtn.org


On Thu, Feb 16, 2012 at 1:39 PM, James Edwards wrote:

> Nope no WoL here. I just checked a "real" Win7 system and it has the same
> settings. This system doesn't lose network, even when it sleeps, I know
> this because I have email from the evening when I get in in the morning.
>
> Jim
>
>
> On 2/16/12 12:29 PM, John C Owen wrote:
>
>> If WOL is used in your Organization, then keep it on - we don't use it
>> here
>>
>> -Original Message-
>> From: James Edwards [mailto:jedwa...@mail.sdsu.edu**]
>> Sent: Thursday, February 16, 2012 3:18 PM
>> To: NT System Admin Issues
>> Subject: Re: Odd Network Problem MAC Booted inWin7
>>
>> Wake on LAN is enabled, Low Power is disabled.
>>
>> That right??
>>
>> Jim
>>
>>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ 
> 
> **>  ~
>
> ---
> To manage subscriptions click here: http://lyris.sunbelt-software.**
> com/read/my_forums/ 
> or send an email to 
> listmanager@lyris.**sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Odd Network Problem MAC Booted inWin7

[James Edwards]

Nope no WoL here. I just checked a "real" Win7 system and it has the 
same settings. This system doesn't lose network, even when it sleeps, I 
know this because I have email from the evening when I get in in the 
morning.


Jim

On 2/16/12 12:29 PM, John C Owen wrote:

If WOL is used in your Organization, then keep it on - we don't use it here

-Original Message-
From: James Edwards [mailto:jedwa...@mail.sdsu.edu]
Sent: Thursday, February 16, 2012 3:18 PM
To: NT System Admin Issues
Subject: Re: Odd Network Problem MAC Booted inWin7

Wake on LAN is enabled, Low Power is disabled.

That right??

Jim




~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Home Antivirus

[James Rankin]

You forgot "get a Mac" :-)

On 16 February 2012 20:56, James Hill  wrote:

> Which seems to be the current trick of some of the malware these days.
> I’ve seen a Win 7 machine with the user not a local admin and UAC enabled
> appear to be “hosed” by malware.  It is only for the current profile
> though.  But tricks like setting the hidden flag on every folder and file
> it can make for a confusing time for the user.
>
> ** **
>
> Running as non-admin does make a huge difference though.  It stops the
> majority (for now) of malware and reduces the impact to the current user
> profile.  I think it is still the single most effective security option
> apart from disconnecting the network cable and taking away the keyboard and
> mouse J
>
> ** **
>
> *From:* Carl Houseman [mailto:c.house...@gmail.com]
> *Sent:* Tuesday, 14 February 2012 5:04 PM
>
> *To:* NT System Admin Issues
> *Subject:* RE: Home Antivirus
>
> ** **
>
> One doesn't have to be an admin to infect one's own user profile.   That's
> also why non-admins can install Chrome – it installs into the user
> profile.   But a non-admin has a better chance of avoiding a rootkit.
>
> ** **
>
> Carl
>
> ** **
>
> *From:* ntsysadmin [mailto:ntsysad...@rccs.org]
> *Sent:* Monday, February 13, 2012 10:10 PM
>
> *To:* NT System Admin Issues
> *Subject:* RE: Home Antivirus
>
> ** **
>
> How much less likely is one to get infected running as a non-admin? Does
> it depend on the OS? I ask because I’ve cleaned up infections on Windows7
> Pro PCs where the user was definitely not running as an admin. One PC in
> question was also set up to require additional credentials for any software
> installation. We never did determine the source of the malware.
>
> ** **
>
> Thanks,
>
> ** **
>
> Mike
>
> ** **
>
> *From:* Jon Harris [mailto:jk.har...@gmail.com]
> *Sent:* Monday, February 13, 2012 9:42 PM
>
> *To:* NT System Admin Issues
> *Subject:* Re: Home Antivirus
>
> ** **
>
> From personal experience it does not matter how good the anti-malware
> software is if you have users (home or corp) that run as administrators
> regularly, fight you tooth and nail on patching the machine, and
> download/install all the "neat" stuff on the web they will get hit by
> something.  Previous $dayjob$ once I got administration approval to pull
> admin privileges, start patching on a regular basis, and require proof of
> need to install anything not on the standard software list with proof that
> it was not going to open up the internal network to a virus most of the
> anti-malware software will keep things under control.  Most homeowners
> prefer to run with admin privileges, fight patching, and install all kinds
> of garbage they really don't need.  Those are the ones that get hit
> repeatably but malware.
>
>  
>
> Jon
>
> On Mon, Feb 13, 2012 at 8:55 PM, MMF  wrote:
>
> Any comments on AVG? I’ve been using it for several years and it hasn’t
> failed me yet!
>
>  
>
> MMF
>
>  
>
> *From:* Cynicalgeek  
>
> *Sent:* Monday, February 13, 2012 7:27 PM
>
> *To:* NT System Admin Issues  
>
> *Subject:* Re: Home Antivirus
>
>  
>
> The same things that infect MSSE also infect McAfee, Norton, et al. 
>
>  
>
> If you're going the paid route, supposedly Kaspersky is the absolute best.
> 
>
>  
>
> I've been using MSSE for almost 2.5 years and have been very pleased.
>
> ** **
>
> ** **
>
> On Mon, Feb 13, 2012 at 8:03 PM, Ben Scott  wrote:**
> **
>
> On Mon, Feb 13, 2012 at 7:45 PM, Richard Stovall 
> wrote:
> > Hurry up!  Time's almost out on the deal to get McAfee free for 3PCs.
> > http://preview.tinyurl.com/77u2zry
>
> "Receive a $55 prepaid card by mail from McAfee! Expires on 2/15/12 "
>
>
> So in two days, the Internet will be a safer place.  ;-)
>
> If I'm going the free AV route, I'd prolly go MS Security
> Essentials.  While it's limited in features, it does stop malware and
> spyware, and updates happen with Windows Update.  For all of WU's
> problems, other things all seem to suck more.
>
> -- Ben
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
>
> 
>
>  
>
> --
> -cynicalgeek-
> cynicalgeekgmail.com
> --
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ 

RE: Cert Error - Reason Code 295

[Michael B. Smith]

View the certificate and see which isn't trusted?

Use certutil to do the same?

From: Troy Adkins [mailto:tadk...@house.virginia.gov]
Sent: Thursday, February 16, 2012 3:01 PM
To: NT System Admin Issues
Subject: Cert Error - Reason Code 295

I have a CA in one Forest and a Sub CA in another Forest that I validate certs. 
 The cert in the Sub CA expired and I'm trying to issue a new one.
The tech in the Sub CA creates a request for a cert in his Forest/Domain.   I 
get it and create the cert for him and send it back.  This is for our wireless 
network.
We have Forest Trusts set between the 2 Forests...

When he tries to use it, the below error is recorded in the Event logs, on my 
IAS server.

I/We can't seem to put our fingers on what is the problem.
I've added the sub cert to the Trusted Root of Authority and it is verified.

Reason-Code = 295
Reason = A certification chain processed correctly, but one of the CA
certificates is not trusted by the policy provider


Troy Adkins
Network Administrator
Virginia House of Delegates
General Assembly Bldg. Room 815
804.698.1567 (O)
804.771.7917 (F)
tadk...@house.virginia.gov
http://legis.virginia.gov

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Home Antivirus

[James Hill]

Which seems to be the current trick of some of the malware these days.  I've
seen a Win 7 machine with the user not a local admin and UAC enabled appear
to be "hosed" by malware.  It is only for the current profile though.  But
tricks like setting the hidden flag on every folder and file it can make for
a confusing time for the user.

 

Running as non-admin does make a huge difference though.  It stops the
majority (for now) of malware and reduces the impact to the current user
profile.  I think it is still the single most effective security option
apart from disconnecting the network cable and taking away the keyboard and
mouse J

 

From: Carl Houseman [mailto:c.house...@gmail.com] 
Sent: Tuesday, 14 February 2012 5:04 PM
To: NT System Admin Issues
Subject: RE: Home Antivirus

 

One doesn't have to be an admin to infect one's own user profile.   That's
also why non-admins can install Chrome - it installs into the user profile.
But a non-admin has a better chance of avoiding a rootkit.

 

Carl

 

From: ntsysadmin [mailto:ntsysad...@rccs.org] 
Sent: Monday, February 13, 2012 10:10 PM
To: NT System Admin Issues
Subject: RE: Home Antivirus

 

How much less likely is one to get infected running as a non-admin? Does it
depend on the OS? I ask because I've cleaned up infections on Windows7 Pro
PCs where the user was definitely not running as an admin. One PC in
question was also set up to require additional credentials for any software
installation. We never did determine the source of the malware.

 

Thanks,

 

Mike

 

From: Jon Harris [mailto:jk.har...@gmail.com] 
Sent: Monday, February 13, 2012 9:42 PM
To: NT System Admin Issues
Subject: Re: Home Antivirus

 

>From personal experience it does not matter how good the anti-malware
software is if you have users (home or corp) that run as administrators
regularly, fight you tooth and nail on patching the machine, and
download/install all the "neat" stuff on the web they will get hit by
something.  Previous $dayjob$ once I got administration approval to pull
admin privileges, start patching on a regular basis, and require proof of
need to install anything not on the standard software list with proof that
it was not going to open up the internal network to a virus most of the
anti-malware software will keep things under control.  Most homeowners
prefer to run with admin privileges, fight patching, and install all kinds
of garbage they really don't need.  Those are the ones that get hit
repeatably but malware.

 

Jon

On Mon, Feb 13, 2012 at 8:55 PM, MMF  wrote:

Any comments on AVG? I've been using it for several years and it hasn't
failed me yet!

 

MMF

 

From: Cynicalgeek   

Sent: Monday, February 13, 2012 7:27 PM

To: NT System Admin Issues   

Subject: Re: Home Antivirus

 

The same things that infect MSSE also infect McAfee, Norton, et al. 

 

If you're going the paid route, supposedly Kaspersky is the absolute best.

 

I've been using MSSE for almost 2.5 years and have been very pleased.

 

 

On Mon, Feb 13, 2012 at 8:03 PM, Ben Scott  wrote:

On Mon, Feb 13, 2012 at 7:45 PM, Richard Stovall  wrote:
> Hurry up!  Time's almost out on the deal to get McAfee free for 3PCs.
> http://preview.tinyurl.com/77u2zry

"Receive a $55 prepaid card by mail from McAfee! Expires on 2/15/12 "

So in two days, the Internet will be a safer place.  ;-)

If I'm going the free AV route, I'd prolly go MS Security
Essentials.  While it's limited in features, it does stop malware and
spyware, and updates happen with Windows Update.  For all of WU's
problems, other things all seem to suck more.

-- Ben


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin





 

-- 
-cynicalgeek-
cynicalgeekgmail.com
--

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: un

RE: Self-Service Account Unlock

[Joseph L. Casale]

Alright,
This might be the first and only time I disagree with MBS:)

The Hitachi option can be done in XP with a service without affecting the GINA.
The Cred Provider in later versions supports this trivially without a hack.

In all options, that software has an MSI which can be auto deployed and removed 
easy.

Watch that video I posted, its very cool...
jlc

From: Michael B. Smith [mich...@smithcons.com]
Sent: Thursday, February 16, 2012 11:54 AM
To: NT System Admin Issues
Subject: RE: Self-Service Account Unlock

There are a couple of them out there – but they aren’t cheap – and I don’t 
recommend it.

Putting the recovery button on the logon screen requires a “custom GINA”. A new 
custom GINA is required every time specific pieces of the Windows kernel are 
updated (I think it’s lsass.exe, but I’m not 100% on that and can’t investigate 
right now). Which definitely happens by each service pack and may happen many 
patch Tuesdays.

I think it’s better for someone to walk to the office next door, or borrow 
their neighbor’s computer for a couple of minutes.

From: Sean Rector [mailto:sean.rec...@vaopera.org]
Sent: Thursday, February 16, 2012 1:45 PM
To: NT System Admin Issues
Subject: Self-Service Account Unlock

I’ve been looking through the multitude of options, but they all seem to be 
web-portal-based.  Is there one that puts the Unlock option on the Logon Screen?

My point is – what’s the use of a web-portal version when they can’t log on to 
their machine?  A kiosk-type user account doesn’t seem the safest route to go.

Sean Rector, MCSE

Information Technology Manager
Virginia Opera Association

E-Mail: sean.rec...@vaopera.org
Phone:(757) 213-4548 (direct line)
{+}

Tickets and Subscriptions On Sale Now!
Orphée | The Mikado
Visit us online at www.VaOpera.org or call 
1-866-OPERA-VA

Experience the Beauty, Power & Passion of Virginia Opera.



This e-mail and any attached files are confidential and intended solely for the 
intended recipient(s). Unless otherwise specified, persons unnamed as 
recipients may not read, distribute, copy or alter this e-mail. Any views or 
opinions expressed in this e-mail belong to the author and may not necessarily 
represent those of Virginia Opera. Although precautions have been taken to 
ensure no viruses are present, Virginia Opera cannot accept responsibility for 
any loss or damage that may arise from the use of this e-mail or attachments.

{*}

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: supereseded patches/hotfixes

[ed ziots]

NO worries, that one is a gold-mine for the M$ patches, I wish Oracle and 
Redhat and others had something similar. 
 
Z

Edward E. Ziots 
Senior Informational Security Engineer
CISSP,Security +,Network+ 

 



Date: Thu, 16 Feb 2012 13:17:32 -0500
Subject: Re: supereseded patches/hotfixes
From: bunting.j...@gmail.com
To: ntsysadmin@lyris.sunbelt-software.com

Thanks, Ed.  I didn't realize that info was included, and nicely highlighted.  
Very nice!


However, I was primarily interested in KB2553549, which I suppose is a 
non-security hotfix.  I thought there had been an update released late last 
year that corrected this problem, but I'm beginning to think I may be wrong.


Jeff





On Thu, Feb 16, 2012 at 12:55 PM, ed ziots  wrote:



http://technet.microsoft.com/en-us/security/bulletin
 
You can query what you need across all the platforms there. Been using that for 
a while to keep my patching specifications up to date. 
 
Z

Edward E. Ziots 
Senior Informational Security Engineer
CISSP,Security +,Network+ 

 




Date: Thu, 16 Feb 2012 11:34:28 -0500
Subject: supereseded patches/hotfixes
From: bunting.j...@gmail.com
To: ntsysadmin@lyris.sunbelt-software.com




Wondering if anyone knows of a queryable online resource that would let me know 
if a particular windows update or hotfix has been superseded by something 
newer?  I know WSUS used to show this info, but we're not using it in this 
environment, and IIRC, it isn't searchable.   


I know KB articles will mention when an update supersedes a previous one, but 
I've found that searching doesn't necessarily return the most current one.



Thanks,
Jeff~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin




~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin 
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Self-Service Account Unlock

[Joseph L. Casale]

Yes, the Hitachi ID Password Manager has a GINA addon for XP and a Credential 
Provider for Vista+...

http://hitachi-id.com/presentation/idan/test/start.html

Cool stuff,
jlc


From: James Rankin [kz2...@googlemail.com]
Sent: Thursday, February 16, 2012 11:54 AM
To: NT System Admin Issues
Subject: Re: Self-Service Account Unlock

Citrix Single Sign-On integrates into the logon and lock screens.

On 16 February 2012 18:44, Sean Rector 
mailto:sean.rec...@vaopera.org>> wrote:
I’ve been looking through the multitude of options, but they all seem to be 
web-portal-based.  Is there one that puts the Unlock option on the Logon Screen?

My point is – what’s the use of a web-portal version when they can’t log on to 
their machine?  A kiosk-type user account doesn’t seem the safest route to go.

Sean Rector, MCSE

Information Technology Manager
Virginia Opera Association

E-Mail: sean.rec...@vaopera.org
Phone:(757) 213-4548 (direct line)
{+}

Tickets and Subscriptions On Sale Now!
Orphée | The Mikado
Visit us online at www.VaOpera.org or call 
1-866-OPERA-VA

Experience the Beauty, Power & Passion of Virginia Opera.



This e-mail and any attached files are confidential and intended solely for the 
intended recipient(s). Unless otherwise specified, persons unnamed as 
recipients may not read, distribute, copy or alter this e-mail. Any views or 
opinions expressed in this e-mail belong to the author and may not necessarily 
represent those of Virginia Opera. Although precautions have been taken to 
ensure no viruses are present, Virginia Opera cannot accept responsibility for 
any loss or damage that may arise from the use of this e-mail or attachments.

{*}

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin



--
"On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into the 
machine wrong figures, will the right answers come out?' I am not able rightly 
to apprehend the kind of confusion of ideas that could provoke such a question."

* IMPORTANT INFORMATION/DISCLAIMER *

This document should be read only by those persons to whom it is addressed. If 
you have received this message it was obviously addressed to you and therefore 
you can read it, even it we didn't mean to send it to you. However, if the 
contents of this email make no sense whatsoever then you probably were not the 
intended recipient, or, alternatively, you are a mindless cretin; either way, 
you should immediately kill yourself and destroy your computer (not necessarily 
in that order). Once you have taken this action, please contact us.. no, sorry, 
you can't use your computer, because you just destroyed it, and possibly also 
committed suicide afterwards, but I am starting to digress..

The originator of this email is not liable for the transmission of the 
information contained in this communication. Or are they? Either way it's a 
pretty dull legal query and frankly one I'm not going to dwell on. But should 
you have nothing better to do, please feel free to ruminate on it, and please 
pass on any concrete conclusions should you find them. However, if you pass 
them on via email, be sure to include a disclaimer regarding liability for 
transmission.

In the event that the originator did not send this email to you, then please 
return it to us and attach a scanned-in picture of your mother's brother's wife 
wearing nothing but a kangaroo suit, and we will immediately refund you exactly 
half of what you paid for the can of Whiskas you bought when you went to Pets 
At Home yesterday.

We take no responsibility for non-receipt of this email because we are running 
Exchange 5.5 and everyone knows how glitchy that can be. In the event that you 
do get this message then please note that we take no responsibility for that 
either. Nor will we accept any liability, tacit or implied, for any damage you 
may or may not incur as a result of receiving, or not, as the case may be, from 
time to time, notwithstanding all liabilities implied or otherwise, ummm, hell, 
where was I...umm, no matter what happens, it is NOT, and NEVER WILL BE, OUR 
FAULT!

The comments and opinions expressed herein are my own and NOT those of my 
employer, who, if he knew I was sending emails and surfing the seamier side of 
the Internet, would cut off my manhood and feed it to me for afternoon tea.



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com

RE: [OT] How to troubleshoot Kerberos issues on windows server 2003 against windows server 2008?

[Miller Bonnie L .]

http://support.microsoft.com/kb/262177 might help

From: Boaz Galil [mailto:boa...@gmail.com]
Sent: Thursday, February 16, 2012 11:42 AM
To: NT System Admin Issues
Subject: [OT] How to troubleshoot Kerberos issues on windows server 2003 
against windows server 2008?

Dear experts,
This is kind of out of topic question but I will try my luck as I know that 
there are some top players here.
One of our customers has installed our enterprise solution:

1.   Server A: Windows server 2003 with application service 1.

2.   Server B: Windows server 2003 with application service 2 (identical to 
application service 1 / same code).

3.   Server C:  Windows server 2008 with IIS and  application 3 webservice 
that both server A and B connects.

All services are running with the same credentials (same domain user/pass) and 
running on the same domain . The communication between Server A and Server C is 
working fine, or in other words server A is working as design.
The problem is that server B for some reason is getting authentication failures 
when trying to "work" with Server C (with the web application running on the 
IIS).

>From what it seems, the Kerberos is failing and there is fallback to NTLM - 
>and NTLM is failing as well.
My main question is how can I investigate why the Kerberos is failing?  I 
checked clocks, event viewer (doesn't see anything interesting), and compared 
packet capture between the working and the non working server but couldn't get 
into conclusion of the issue.
Bottom line, Is there any log that I can enable to troubleshoot further more 
Kerberos issues?
I have asked the customer to remove Server B from the domain and rejoin it 
(read some articles that it may resolve the issue as a "Voodoo" trick).
Tomorrow morning, I will have access again to the customer site, in case that 
the issue will not be resolved.
I would appreciate any suggestion on what I should check or how to troubleshoot 
this scenario...
Thanks in advance,
Boaz.


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Odd Network Problem MAC Booted inWin7

[John C Owen]

If WOL is used in your Organization, then keep it on - we don't use it here

-Original Message-
From: James Edwards [mailto:jedwa...@mail.sdsu.edu] 
Sent: Thursday, February 16, 2012 3:18 PM
To: NT System Admin Issues
Subject: Re: Odd Network Problem MAC Booted inWin7

Wake on LAN is enabled, Low Power is disabled.

That right??

Jim


On 2/16/12 12:00 PM, John C Owen wrote:
> Have you checked the Power management for the nic cards
>
>



~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Odd Network Problem MAC Booted inWin7

[James Edwards]

Wake on LAN is enabled, Low Power is disabled.

That right??

Jim


On 2/16/12 12:00 PM, John C Owen wrote:

Have you checked the Power management for the nic cards






~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Odd Network Problem MAC Booted inWin7

[John C Owen]

Have you checked the Power management for the nic cards

-Original Message-
From: James Edwards [mailto:jedwa...@mail.sdsu.edu] 
Sent: Thursday, February 16, 2012 2:53 PM
To: NT System Admin Issues
Subject: Odd Network Problem MAC Booted inWin7

Hi All;

We are seeing an odd network problem with some duel boot Mackintoshes. 
When booted in Win7, but not in OSX,  they periodically drop their
(wired) network connection. We can either run the network diagnostics, which 
finds no problems but restores the connection, or unplug the cable and 
reconnect it which restores the connection.

Can't figure out what is going on, has anyone else seen a similar problem??

TIA


Jim

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Cert Error - Reason Code 295

[Troy Adkins]

I have a CA in one Forest and a Sub CA in another Forest that I validate 
certs.  The cert in the Sub CA expired and I'm trying to issue a new one.
The tech in the Sub CA creates a request for a cert in his Forest/Domain.  
I get it and create the cert for him and send it back.  This is for our 
wireless network.
We have Forest Trusts set between the 2 Forests...

When he tries to use it, the below error is recorded in the Event logs, on 
my IAS server. 

I/We can't seem to put our fingers on what is the problem.
I've added the sub cert to the Trusted Root of Authority and it is 
verified.

Reason-Code = 295
Reason = A certification chain processed correctly, but one of the CA
certificates is not trusted by the policy provider


Troy Adkins
Network Administrator
Virginia House of Delegates
General Assembly Bldg. Room 815
804.698.1567 (O)
804.771.7917 (F)
tadk...@house.virginia.gov
http://legis.virginia.gov
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Odd Network Problem MAC Booted inWin7

[James Edwards]

Hi All;

We are seeing an odd network problem with some duel boot Mackintoshes. 
When booted in Win7, but not in OSX,  they periodically drop their 
(wired) network connection. We can either run the network diagnostics, 
which finds no problems but restores the connection, or unplug the cable 
and reconnect it which restores the connection.


Can't figure out what is going on, has anyone else seen a similar problem??

TIA


Jim

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Self-Service Account Unlock

[Blackman, Woody]

We historically have used Avatier (with Gina replacement/web interface and not 
cheap), but are now looking at implementing FIM 2010's self-service password 
management (also with modified Gina - and can be affordable with right 
enterprise agreements)

http://blogs.technet.com/b/aho/archive/2009/11/09/forefront-identity-manager-credential-management-part-4.aspx


From: James Rankin [mailto:kz2...@googlemail.com]
Sent: Thursday, February 16, 2012 11:11 AM
To: NT System Admin Issues
Subject: Re: Self-Service Account Unlock

Which is why Citrix can do it, as they have their own GINA. Which, as I forgot 
to add and MBS has pointed out, don't make it cheap.
On 16 February 2012 18:54, Michael B. Smith 
mailto:mich...@smithcons.com>> wrote:
There are a couple of them out there - but they aren't cheap - and I don't 
recommend it.

Putting the recovery button on the logon screen requires a "custom GINA". A new 
custom GINA is required every time specific pieces of the Windows kernel are 
updated (I think it's lsass.exe, but I'm not 100% on that and can't investigate 
right now). Which definitely happens by each service pack and may happen many 
patch Tuesdays.

I think it's better for someone to walk to the office next door, or borrow 
their neighbor's computer for a couple of minutes.

From: Sean Rector 
[mailto:sean.rec...@vaopera.org]
Sent: Thursday, February 16, 2012 1:45 PM
To: NT System Admin Issues
Subject: Self-Service Account Unlock

I've been looking through the multitude of options, but they all seem to be 
web-portal-based.  Is there one that puts the Unlock option on the Logon Screen?

My point is - what's the use of a web-portal version when they can't log on to 
their machine?  A kiosk-type user account doesn't seem the safest route to go.

Sean Rector, MCSE

Information Technology Manager
Virginia Opera Association

E-Mail: sean.rec...@vaopera.org
Phone:(757) 213-4548 (direct line)
{+}

Tickets and Subscriptions On Sale Now!
Orphée | The Mikado
Visit us online at www.VaOpera.org or call 
1-866-OPERA-VA

Experience the Beauty, Power & Passion of Virginia Opera.



This e-mail and any attached files are confidential and intended solely for the 
intended recipient(s). Unless otherwise specified, persons unnamed as 
recipients may not read, distribute, copy or alter this e-mail. Any views or 
opinions expressed in this e-mail belong to the author and may not necessarily 
represent those of Virginia Opera. Although precautions have been taken to 
ensure no viruses are present, Virginia Opera cannot accept responsibility for 
any loss or damage that may arise from the use of this e-mail or attachments.

{*}

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin



--
"On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into the 
machine wrong figures, will the right answers come out?' I am not able rightly 
to apprehend the kind of confusion of ideas that could provoke such a question."

* IMPORTANT INFORMATION/DISCLAIMER *

This document should be read only by those persons to whom it is addressed. If 
you have received this message it was obviously addressed to you and therefore 
you can read it, even it we didn't mean to send it to you. However, if the 
contents of this email make no sense whatsoever then you probably were not the 
intended recipient, or, alternatively, you are a mindless cretin; either way, 
you should immediately kill yourself and destroy your computer (not necessarily 
in that order). Once you have taken this action, please contact us.. no, sorry, 
you can't use your computer, because you just destroyed it, and possibly also 
committed suicide afterwards, but I am starting to digress..

The originator of this email is not liable for the transmission of the 
information contained in this communication. Or are they? Either way it's a 
pretty dull legal query and frankly one I'm not going to dwell on. But should 
you have nothing better to do, please feel free to ruminate on it, and please 
pass on any concrete conclusions should you find them. However, if you pass 
them on via email, be sure to include a disclaimer regarding liability for 
transmission.

Re: Self-Service Account Unlock

[James Rankin]

Which is why Citrix can do it, as they have their own GINA. Which, as I
forgot to add and MBS has pointed out, don't make it cheap.

On 16 February 2012 18:54, Michael B. Smith  wrote:

>  There are a couple of them out there – but they aren’t cheap – and I
> don’t recommend it.
>
> ** **
>
> Putting the recovery button on the logon screen requires a “custom GINA”.
> A new custom GINA is required every time specific pieces of the Windows
> kernel are updated (I think it’s lsass.exe, but I’m not 100% on that and
> can’t investigate right now). Which definitely happens by each service pack
> and may happen many patch Tuesdays.
>
> ** **
>
> I think it’s better for someone to walk to the office next door, or borrow
> their neighbor’s computer for a couple of minutes.
>
> ** **
>
> *From:* Sean Rector [mailto:sean.rec...@vaopera.org]
> *Sent:* Thursday, February 16, 2012 1:45 PM
> *To:* NT System Admin Issues
> *Subject:* Self-Service Account Unlock
>
> ** **
>
> I’ve been looking through the multitude of options, but they all seem to
> be web-portal-based.  Is there one that puts the Unlock option on the Logon
> Screen?
>
> ** **
>
> My point is – what’s the use of a web-portal version when they can’t log
> on to their machine?  A kiosk-type user account doesn’t seem the safest
> route to go.
>
> ** **
>
> Sean Rector, MCSE
>
> ** **
>
> Information Technology Manager
> Virginia Opera Association 
>
> E-Mail: sean.rec...@vaopera.org
> Phone:(757) 213-4548 (direct line)
> {+}
>
> Tickets and Subscriptions *On Sale Now!*
> Orphée | The Mikado
> *Visit us online at www.VaOpera.org  or call
> 1-866-OPERA-VA*
>
> *Experience the Beauty, Power & Passion of Virginia Opera.*
>  --
>
> This e-mail and any attached files are confidential and intended solely
> for the intended recipient(s). Unless otherwise specified, persons unnamed
> as recipients may not read, distribute, copy or alter this e-mail. Any
> views or opinions expressed in this e-mail belong to the author and may not
> necessarily represent those of Virginia Opera. Although precautions have
> been taken to ensure no viruses are present, Virginia Opera cannot accept
> responsibility for any loss or damage that may arise from the use of this
> e-mail or attachments.
>
> {*}
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>



-- 
"On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into
the machine wrong figures, will the right answers come out?' I am not able
rightly to apprehend the kind of confusion of ideas that could provoke such
a question."

** IMPORTANT INFORMATION/DISCLAIMER *

This document should be read only by those persons to whom it is addressed.
If you have received this message it was obviously addressed to you and
therefore you can read it, even it we didn't mean to send it to you.
However, if the contents of this email make no sense whatsoever then you
probably were not the intended recipient, or, alternatively, you are a
mindless cretin; either way, you should immediately kill yourself and
destroy your computer (not necessarily in that order). Once you have taken
this action, please contact us.. no, sorry, you can't use your computer,
because you just destroyed it, and possibly also committed suicide
afterwards, but I am starting to digress.. *

* The originator of this email is not liable for the transmission of the
information contained in this communication. Or are they? Either way it's a
pretty dull legal query and frankly one I'm not going to dwell on. But
should you have nothing better to do, please feel free to ruminate on it,
and please pass on any concrete conclusions should you find them. However,
if you pass them on via email, be sure to include a disclaimer regarding
liability for transmission.
*

* In the event that the originator did not send this email to you, then
please return it to us and attach a scanned-in picture of your mother's
brother's wife wearing nothing but a kangaroo suit, and we will immediately
refund you exactly half of what you paid for the can of Whiskas you bought
when you went to Pets** ** At Home yesterday. *

* We take no responsibility for non-receipt of this email because we are
running Exchange 5.5 and everyone knows how glitchy that c

RE: Installing software on a server

[Michael B. Smith]

I can think of several places where this would be required since operations are 
not ALWAYS performed by the same task that requested the operation.

One I ran into just yesterday was loading a certificate into the Trusted Root 
Certification Authorities.

From: David Lum [mailto:david@nwea.org]
Sent: Thursday, February 16, 2012 1:48 PM
To: NT System Admin Issues
Subject: Installing software on a server

Have you guys seen this before?

This error occurs when the installation is performed using a non-administrative 
account. To resolve the error, you must log onto the server with elevated 
privileges, since using a domain account that is considered a local 
administrator will not be sufficient. There are two ways to gain the necessary 
elevated privileges:

Method 1: Log on as the built-in Administrator on that machine (the local 
account named Administrator).

Method 2: Disable UAC (User Account Control)."

The user is even right-clicking and choosing run as administrator which I 
thought was UAC's way of not forcing a log off/log on as local admin.
David Lum
Systems Engineer // NWEATM
Office 503.548.5229 // Cell (voice/text) 503.267.9764


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Installing software on a server

[Kennedy, Jim]

Right click run as an administrator only works if you are logged in as an 
administrator.  Shift right click run as a different user and supply the creds.

From: David Lum [mailto:david@nwea.org]
Sent: Thursday, February 16, 2012 1:48 PM
To: NT System Admin Issues
Subject: Installing software on a server

Have you guys seen this before?

This error occurs when the installation is performed using a non-administrative 
account. To resolve the error, you must log onto the server with elevated 
privileges, since using a domain account that is considered a local 
administrator will not be sufficient. There are two ways to gain the necessary 
elevated privileges:

Method 1: Log on as the built-in Administrator on that machine (the local 
account named Administrator).

Method 2: Disable UAC (User Account Control)."

The user is even right-clicking and choosing run as administrator which I 
thought was UAC's way of not forcing a log off/log on as local admin.
David Lum
Systems Engineer // NWEATM
Office 503.548.5229 // Cell (voice/text) 503.267.9764


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Self-Service Account Unlock

[James Rankin]

Citrix Single Sign-On integrates into the logon and lock screens.

On 16 February 2012 18:44, Sean Rector  wrote:

> I’ve been looking through the multitude of options, but they all seem to
> be web-portal-based.  Is there one that puts the Unlock option on the Logon
> Screen?
>
> ** **
>
> My point is – what’s the use of a web-portal version when they can’t log
> on to their machine?  A kiosk-type user account doesn’t seem the safest
> route to go.
>
> ** **
>
> Sean Rector, MCSE
>
> ** **
> Information Technology Manager
> Virginia Opera Association**
>
>  E-Mail: sean.rec...@vaopera.org
> Phone:(757) 213-4548 (direct line)
> {+}
>
> Tickets and Subscriptions *On Sale Now!*
> Orphée | The Mikado
> *Visit us online at www.VaOpera.org ** or call
> 1-866-OPERA-VA*
>
> *Experience the Beauty, Power & Passion of Virginia Opera.*
>  --
>
> This e-mail and any attached files are confidential and intended solely
> for the intended recipient(s). Unless otherwise specified, persons unnamed
> as recipients may not read, distribute, copy or alter this e-mail. Any
> views or opinions expressed in this e-mail belong to the author and may not
> necessarily represent those of Virginia Opera. Although precautions have
> been taken to ensure no viruses are present, Virginia Opera cannot accept
> responsibility for any loss or damage that may arise from the use of this
> e-mail or attachments.
>
> {*}
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>



-- 
"On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into
the machine wrong figures, will the right answers come out?' I am not able
rightly to apprehend the kind of confusion of ideas that could provoke such
a question."

** IMPORTANT INFORMATION/DISCLAIMER *

This document should be read only by those persons to whom it is addressed.
If you have received this message it was obviously addressed to you and
therefore you can read it, even it we didn't mean to send it to you.
However, if the contents of this email make no sense whatsoever then you
probably were not the intended recipient, or, alternatively, you are a
mindless cretin; either way, you should immediately kill yourself and
destroy your computer (not necessarily in that order). Once you have taken
this action, please contact us.. no, sorry, you can't use your computer,
because you just destroyed it, and possibly also committed suicide
afterwards, but I am starting to digress.. *

* The originator of this email is not liable for the transmission of the
information contained in this communication. Or are they? Either way it's a
pretty dull legal query and frankly one I'm not going to dwell on. But
should you have nothing better to do, please feel free to ruminate on it,
and please pass on any concrete conclusions should you find them. However,
if you pass them on via email, be sure to include a disclaimer regarding
liability for transmission.
*

* In the event that the originator did not send this email to you, then
please return it to us and attach a scanned-in picture of your mother's
brother's wife wearing nothing but a kangaroo suit, and we will immediately
refund you exactly half of what you paid for the can of Whiskas you bought
when you went to Pets** ** At Home yesterday. *

* We take no responsibility for non-receipt of this email because we are
running Exchange 5.5 and everyone knows how glitchy that can be. In the
event that you do get this message then please note that we take no
responsibility for that either. Nor will we accept any liability, tacit or
implied, for any damage you may or may not incur as a result of receiving,
or not, as the case may be, from time to time, notwithstanding all
liabilities implied or otherwise, ummm, hell, where was I...umm, no matter
what happens, it is NOT, and NEVER WILL BE, OUR FAULT! *

* The comments and opinions expressed herein are my own and NOT those of my
employer, who, if he knew I was sending emails and surfing the seamier side
of the Internet, would cut off my manhood and feed it to me for afternoon
tea. *

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: supereseded patches/hotfixes

[Jeff Bunting]

Thanks, Phil!  That's very useful.

Jeff

On Thu, Feb 16, 2012 at 1:28 PM, Randal, Phil
wrote:

>  This one’s cool as well:
>
>
>
> http://www.mskbfiles.com/tcpip.sys.php
>
>
>
> Cheers,
>
>
> Phil
>
>
>
> --
>
> *Phil Randal*
>
> *Infrastructure Engineer*
> *Hoople Ltd | Thorn Office Centre | Hereford HR2 6JT*
>
> Tel: 01432 260415 | Email: phil.ran...@hoopleltd.co.uk
>
>
>
> *From:* Jeff Bunting [mailto:bunting.j...@gmail.com]
> *Sent:* 16 February 2012 18:18
> *To:* NT System Admin Issues
> *Subject:* Re: supereseded patches/hotfixes
>
>
>
> Thanks, Ed.  I didn't realize that info was included, and nicely
> highlighted.  Very nice!
>
>
>
> However, I was primarily interested in KB2553549, which I suppose is a
> non-security hotfix.  I thought there had been an update released late last
> year that corrected this problem, but I'm beginning to think I may be wrong.
>
>
>
> Jeff
>
>
>
>
>
> On Thu, Feb 16, 2012 at 12:55 PM, ed ziots  wrote:
>
> http://technet.microsoft.com/en-us/security/bulletin
>
> You can query what you need across all the platforms there. Been using
> that for a while to keep my patching specifications up to date.
>
> Z
>
> Edward E. Ziots
> Senior Informational Security Engineer
> CISSP,Security +,Network+
>
>
>  --
>
> Date: Thu, 16 Feb 2012 11:34:28 -0500
> Subject: supereseded patches/hotfixes
> From: bunting.j...@gmail.com
> To: ntsysadmin@lyris.sunbelt-software.com
>
>
>
> Wondering if anyone knows of a queryable online resource that would let me
> know if a particular windows update or hotfix has been superseded by
> something newer?  I know WSUS used to show this info, but we're not using
> it in this environment, and IIRC, it isn't searchable.
>
>
>
> I know KB articles will mention when an update supersedes a previous one,
> but I've found that searching doesn't necessarily return the most current
> one.
>
>
>
> Thanks,
>
> Jeff
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>  “Any opinion expressed in this e-mail or any attached files are those of
> the individual and not necessarily those of Hoople Ltd. You should be aware
> that Hoople Ltd. monitors its email service. This e-mail and any attached
> files are confidential and intended solely for the use of the addressee.
> This communication may contain material protected by law from being passed
> on. If you are not the intended recipient and have received this e-mail in
> error, you are advised that any use, dissemination, forwarding, printing or
> copying of this e-mail is strictly prohibited. If you have received this
> e-mail in error please contact the sender immediately and destroy all
> copies of it.
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: supereseded patches/hotfixes

[Randal, Phil]

This one's cool as well:

http://www.mskbfiles.com/tcpip.sys.php

Cheers,

Phil

--
Phil Randal
Infrastructure Engineer
Hoople Ltd | Thorn Office Centre | Hereford HR2 6JT
Tel: 01432 260415 | Email: phil.ran...@hoopleltd.co.uk

From: Jeff Bunting [mailto:bunting.j...@gmail.com]
Sent: 16 February 2012 18:18
To: NT System Admin Issues
Subject: Re: supereseded patches/hotfixes

Thanks, Ed.  I didn't realize that info was included, and nicely highlighted.  
Very nice!

However, I was primarily interested in KB2553549, which I suppose is a 
non-security hotfix.  I thought there had been an update released late last 
year that corrected this problem, but I'm beginning to think I may be wrong.

Jeff


On Thu, Feb 16, 2012 at 12:55 PM, ed ziots 
mailto:ezi...@hotmail.com>> wrote:
http://technet.microsoft.com/en-us/security/bulletin

You can query what you need across all the platforms there. Been using that for 
a while to keep my patching specifications up to date.

Z

Edward E. Ziots
Senior Informational Security Engineer
CISSP,Security +,Network+



Date: Thu, 16 Feb 2012 11:34:28 -0500
Subject: supereseded patches/hotfixes
From: bunting.j...@gmail.com
To: 
ntsysadmin@lyris.sunbelt-software.com


Wondering if anyone knows of a queryable online resource that would let me know 
if a particular windows update or hotfix has been superseded by something 
newer?  I know WSUS used to show this info, but we're not using it in this 
environment, and IIRC, it isn't searchable.

I know KB articles will mention when an update supersedes a previous one, but 
I've found that searching doesn't necessarily return the most current one.

Thanks,
Jeff
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

"Any opinion expressed in this e-mail or any attached files are those of the 
individual and not necessarily those of Hoople Ltd. You should be aware that 
Hoople Ltd. monitors its email service. This e-mail and any attached files are 
confidential and intended solely for the use of the addressee. This 
communication may contain material protected by law from being passed on. If 
you are not the intended recipient and have received this e-mail in error, you 
are advised that any use, dissemination, forwarding, printing or copying of 
this e-mail is strictly prohibited. If you have received this e-mail in error 
please contact the sender immediately and destroy all copies of it.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: supereseded patches/hotfixes

[Jeff Bunting]

Thanks, Ed.  I didn't realize that info was included, and nicely
highlighted.  Very nice!

However, I was primarily interested in KB2553549, which I suppose is a
non-security hotfix.  I thought there had been an update released late last
year that corrected this problem, but I'm beginning to think I may be wrong.

Jeff


On Thu, Feb 16, 2012 at 12:55 PM, ed ziots  wrote:

>  http://technet.microsoft.com/en-us/security/bulletin
>
> You can query what you need across all the platforms there. Been using
> that for a while to keep my patching specifications up to date.
>
> Z
>
> Edward E. Ziots
> Senior Informational Security Engineer
> CISSP,Security +,Network+
>
>
>  --
> Date: Thu, 16 Feb 2012 11:34:28 -0500
> Subject: supereseded patches/hotfixes
> From: bunting.j...@gmail.com
> To: ntsysadmin@lyris.sunbelt-software.com
>
>
> Wondering if anyone knows of a queryable online resource that would let me
> know if a particular windows update or hotfix has been superseded by
> something newer?  I know WSUS used to show this info, but we're not using
> it in this environment, and IIRC, it isn't searchable.
>
> I know KB articles will mention when an update supersedes a previous one,
> but I've found that searching doesn't necessarily return the most current
> one.
>
> Thanks,
> Jeff
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: utility to output service status

[ed ziots]

sc query alerter | findstr /i "STATE"
STATE  : 1  STOPPED
 
Can probably do this with a batch file with the servers to check echoed and 
then the services you want to check. Probably be easier to buy a cheap tool and 
set up the alerts to email you when things are up down..
 
Z

Edward E. Ziots 
Senior Informational Security Engineer
CISSP,Security +,Network+ 

 



Date: Thu, 16 Feb 2012 10:12:55 -0500
Subject: Re: utility to output service status
From: egold...@gmail.com
To: ntsysadmin@lyris.sunbelt-software.com


to be clear, not wanting a list of ALL services running, we want to provide a 
short list of services we want to check, hopefully with simple output like :
 
service1 - running
service2 - stopped
service3 - paused
service4 - running 
 


 
On Thu, Feb 16, 2012 at 10:09 AM, Erik Goldoff  wrote:


Looking to run a batch/command on a series of servers, with the goal of a 
simple text file listing the service name and status (running/paused/stopped) 
to be emailed to a monitoring mailbox via scheduled task.
 
PSService and SC seem a bit too verbose for this  simple output, wondering if 
anyone has a favorite utility that might fit this need.
 
Thanks in advance,
 
Erik

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin 
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: supereseded patches/hotfixes

[ed ziots]

http://technet.microsoft.com/en-us/security/bulletin
 
You can query what you need across all the platforms there. Been using that for 
a while to keep my patching specifications up to date. 
 
Z

Edward E. Ziots 
Senior Informational Security Engineer
CISSP,Security +,Network+ 

 



Date: Thu, 16 Feb 2012 11:34:28 -0500
Subject: supereseded patches/hotfixes
From: bunting.j...@gmail.com
To: ntsysadmin@lyris.sunbelt-software.com

Wondering if anyone knows of a queryable online resource that would let me know 
if a particular windows update or hotfix has been superseded by something 
newer?  I know WSUS used to show this info, but we're not using it in this 
environment, and IIRC, it isn't searchable.  


I know KB articles will mention when an update supersedes a previous one, but 
I've found that searching doesn't necessarily return the most current one.



Thanks,
Jeff
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin 
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: utility to output service status

[Christopher Bodnar]

Something like this in PowerShell should get you started:

$Computers = Get-Content -Path "C:\temp\servers1.txt" 
foreach ($Computer in $computers) 
{
Get-Service | where {$_.Name -match "server" }|select name,status
}



Christopher Bodnar 
Enterprise Achitect I, Corporate Office of Technology 
Tel 610-807-6459 
3900 Burgess Place, Bethlehem, PA 18017 
christopher_bod...@glic.com 




The Guardian Life Insurance Company of America

www.guardianlife.com 







From:   Erik Goldoff 
To: "NT System Admin Issues" 
Date:   02/16/2012 10:13 AM
Subject:utility to output service status



Looking to run a batch/command on a series of servers, with the goal of a 
simple text file listing the service name and status 
(running/paused/stopped) to be emailed to a monitoring mailbox via 
scheduled task.
 
PSService and SC seem a bit too verbose for this  simple output, wondering 
if anyone has a favorite utility that might fit this need.
 
Thanks in advance,
 
Erik
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


-
This message, and any attachments to it, may contain information
that is privileged, confidential, and exempt from disclosure under
applicable law.  If the reader of this message is not the intended
recipient, you are notified that any use, dissemination,
distribution, copying, or communication of this message is strictly
prohibited.  If you have received this message in error, please
notify the sender immediately by return e-mail and delete the
message and any attachments.  Thank you.
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin<>

RE: Help w/TFTP

[Kennedy, Jim]

More people should try them. The really make that OS fly!!

From: James Rankin [mailto:kz2...@googlemail.com]
Sent: Thursday, February 16, 2012 11:36 AM
To: NT System Admin Issues
Subject: Re: Help w/TFTP

Windows Feathers are cool
On 16 February 2012 16:17, Kennedy, Jim 
mailto:kennedy...@elyriaschools.org>> wrote:
Programs and features then turn windows feathers on/off. You have to add it, it 
isn't installed by default.

From: Richard McClary 
[mailto:richard.mccl...@aspca.org]
Sent: Thursday, February 16, 2012 11:12 AM
To: NT System Admin Issues
Subject: Help w/TFTP

Greetings!

I need to copy some router firmware from my PC (well, any node within my 
network) to our main internet router.

The router is outside our firewall.  So, it would seem simplest to use "tftp -I 
put..." from inside my network.  The alternative would seem to be have a tftp 
server mip'd through the firewall and issue "tftp -I get..." from the router.

Although I have the SolarWinds TFTP server on my workstation, I do not seem to 
have a command line "tftp".  (My workstation is Win7 Professional.)

Suggestions?  Thanks...
--
Richard D. McClary
Jr Infrastructure Architect, Information Technology Group
ASPCA(r)
1717 S. Philo Rd, Ste 36
Urbana, IL 61802
richard.mccl...@aspca.org
P: 217-337-9761
C: 217-417-1182
F: 217-337-9761
www.aspca.org



The information contained in this e-mail, and any attachments hereto, is from 
The American Society for the Prevention of Cruelty to Animals(r) (ASPCA(r)) and 
is intended only for use by the addressee(s) named herein and may contain 
legally privileged and/or confidential information. If you are not the intended 
recipient of this e-mail, you are hereby notified that any dissemination, 
distribution, copying or use of the contents of this e-mail, and any 
attachments hereto, is strictly prohibited. If you have received this e-mail in 
error, please immediately notify me by reply email and permanently delete the 
original and any copy of this e-mail and any printout thereof.


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin



--
"On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into the 
machine wrong figures, will the right answers come out?' I am not able rightly 
to apprehend the kind of confusion of ideas that could provoke such a question."

* IMPORTANT INFORMATION/DISCLAIMER *

This document should be read only by those persons to whom it is addressed. If 
you have received this message it was obviously addressed to you and therefore 
you can read it, even it we didn't mean to send it to you. However, if the 
contents of this email make no sense whatsoever then you probably were not the 
intended recipient, or, alternatively, you are a mindless cretin; either way, 
you should immediately kill yourself and destroy your computer (not necessarily 
in that order). Once you have taken this action, please contact us.. no, sorry, 
you can't use your computer, because you just destroyed it, and possibly also 
committed suicide afterwards, but I am starting to digress..

The originator of this email is not liable for the transmission of the 
information contained in this communication. Or are they? Either way it's a 
pretty dull legal query and frankly one I'm not going to dwell on. But should 
you have nothing better to do, please feel free to ruminate on it, and please 
pass on any concrete conclusions should you find them. However, if you pass 
them on via email, be sure to include a disclaimer regarding liability for 
transmission.

In the event that the originator did not send this email to you, then please 
return it to us and attach a scanned-in picture of your mother's brother's wife 
wearing nothing but a kangaroo suit, and we will immediately refund you exactly 
half of what you paid for the can of Whiskas you bought when you went to Pets 
At Home yesterday.

We take no responsibility for non-receipt of this email because we are running 
Exchange 5.5 and everyone knows how glitchy that can be. In the event that you 
do get this message then please note that we take no responsibility for that 
either. Nor will we accept any liability, tacit or implied, for any damage you 
may or may not incur as

RE: Help w/TFTP

[Richard McClary]

Simple enough - thanks!
--
richard

From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org]
Sent: Thursday, February 16, 2012 10:18 AM
To: NT System Admin Issues
Subject: RE: Help w/TFTP

Programs and features then turn windows feathers on/off. You have to add it, it 
isn't installed by default.

From: Richard McClary [mailto:richard.mccl...@aspca.org]
Sent: Thursday, February 16, 2012 11:12 AM
To: NT System Admin Issues
Subject: Help w/TFTP

Greetings!

I need to copy some router firmware from my PC (well, any node within my 
network) to our main internet router.

The router is outside our firewall.  So, it would seem simplest to use "tftp -I 
put..." from inside my network.  The alternative would seem to be have a tftp 
server mip'd through the firewall and issue "tftp -I get..." from the router.

Although I have the SolarWinds TFTP server on my workstation, I do not seem to 
have a command line "tftp".  (My workstation is Win7 Professional.)

Suggestions?  Thanks...
--
Richard D. McClary
Jr Infrastructure Architect, Information Technology Group
ASPCA(r)
1717 S. Philo Rd, Ste 36
Urbana, IL 61802
richard.mccl...@aspca.org
P: 217-337-9761
C: 217-417-1182
F: 217-337-9761
www.aspca.org



The information contained in this e-mail, and any attachments hereto, is from 
The American Society for the Prevention of Cruelty to Animals(r) (ASPCA(r)) and 
is intended only for use by the addressee(s) named herein and may contain 
legally privileged and/or confidential information. If you are not the intended 
recipient of this e-mail, you are hereby notified that any dissemination, 
distribution, copying or use of the contents of this e-mail, and any 
attachments hereto, is strictly prohibited. If you have received this e-mail in 
error, please immediately notify me by reply email and permanently delete the 
original and any copy of this e-mail and any printout thereof.


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


The information contained in this e-mail, and any attachments hereto, is from 
The American Society for the Prevention of Cruelty to Animals® (ASPCA®) and 
is intended only for use by the addressee(s) named herein and may contain 
legally privileged and/or confidential information. If you are not the intended 
recipient of this e-mail, you are hereby notified that any dissemination, 
distribution, copying or use of the contents of this e-mail, and any 
attachments hereto, is strictly prohibited. If you have received this e-mail in 
error, please immediately notify me by reply email and permanently delete the 
original and any copy of this e-mail and any printout thereof.
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Help w/TFTP

[James Rankin]

Windows Feathers are cool

On 16 February 2012 16:17, Kennedy, Jim wrote:

> Programs and features then turn windows feathers on/off. You have to add
> it, it isn’t installed by default.
>
> ** **
>
> *From:* Richard McClary [mailto:richard.mccl...@aspca.org]
> *Sent:* Thursday, February 16, 2012 11:12 AM
> *To:* NT System Admin Issues
> *Subject:* Help w/TFTP
>
> ** **
>
> Greetings!
>
> ** **
>
> I need to copy some router firmware from my PC (well, any node within my
> network) to our main internet router.
>
> ** **
>
> The router is outside our firewall.  So, it would seem simplest to use
> “tftp –I put…” from inside my network.  The alternative would seem to be
> have a tftp server mip’d through the firewall and issue “tftp –I get…” from
> the router.
>
> ** **
>
> Although I have the SolarWinds TFTP server on my workstation, I do not
> seem to have a command line “tftp”.  (My workstation is Win7 Professional.)
> 
>
> ** **
>
> Suggestions?  Thanks…
>
> --
>
> Richard D. McClary
>
> Jr Infrastructure Architect, Information Technology Group 
>
> *ASPCA®*
>
> 1717 S. Philo Rd, Ste 36
>
> Urbana, IL 61802
>
> richard.mccl...@aspca.org
>
> P: 217-337-9761
>
> C: 217-417-1182
>
> F: 217-337-9761
>
> www.aspca.org
>
> ** **
>
> ** **
>
>
> The information contained in this e-mail, and any attachments hereto, is
> from The American Society for the Prevention of Cruelty to Animals®
> (ASPCA®) and is intended only for use by the addressee(s) named herein and
> may contain legally privileged and/or confidential information. If you are
> not the intended recipient of this e-mail, you are hereby notified that any
> dissemination, distribution, copying or use of the contents of this e-mail,
> and any attachments hereto, is strictly prohibited. If you have received
> this e-mail in error, please immediately notify me by reply email and
> permanently delete the original and any copy of this e-mail and any
> printout thereof. 
>
> ** **
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>



-- 
"On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into
the machine wrong figures, will the right answers come out?' I am not able
rightly to apprehend the kind of confusion of ideas that could provoke such
a question."

** IMPORTANT INFORMATION/DISCLAIMER *

This document should be read only by those persons to whom it is addressed.
If you have received this message it was obviously addressed to you and
therefore you can read it, even it we didn't mean to send it to you.
However, if the contents of this email make no sense whatsoever then you
probably were not the intended recipient, or, alternatively, you are a
mindless cretin; either way, you should immediately kill yourself and
destroy your computer (not necessarily in that order). Once you have taken
this action, please contact us.. no, sorry, you can't use your computer,
because you just destroyed it, and possibly also committed suicide
afterwards, but I am starting to digress.. *

* The originator of this email is not liable for the transmission of the
information contained in this communication. Or are they? Either way it's a
pretty dull legal query and frankly one I'm not going to dwell on. But
should you have nothing better to do, please feel free to ruminate on it,
and please pass on any concrete conclusions should you find them. However,
if you pass them on via email, be sure to include a disclaimer regarding
liability for transmission.
*

* In the event that the originator did not send this email to you, then
please return it to us and attach a scanned-in picture of your mother's
brother's wife wearing nothing but a kangaroo suit, and we will immediately
refund you exactly half of what you paid for the can of Whiskas you bought
when you went to Pets** ** At Home yesterday. *

* We take no responsibility for non-receipt of this email because we are
running Exchange 5.5 and everyone knows how glitchy that can be. In the
event that you do get this message then please note that we take no
responsibility for that either. Nor will we accept any liability, tacit or
implied, for any damage you may or may not incur as a result of receiving,
or not, as the case may be, from time to time, notwithstanding all
liabilities implied or otherwise, ummm, hell, where w

supereseded patches/hotfixes

[Jeff Bunting]

Wondering if anyone knows of a queryable online resource that would let me
know if a particular windows update or hotfix has been superseded by
something newer?  I know WSUS used to show this info, but we're not using
it in this environment, and IIRC, it isn't searchable.

I know KB articles will mention when an update supersedes a previous one,
but I've found that searching doesn't necessarily return the most current
one.

Thanks,
Jeff

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Allowing or not Allowing iTunes on corporate computers????

[Steven Peck]

My wife's iTouch after the last round of upgrades just sort of had a
useless backup.  I know 2 others who also had huge issues late last year
with the iOS upgrades.  It's not just the admin but that last go around of
updates with weird issues and useless backups.

On Thu, Feb 16, 2012 at 5:45 AM, Mayo, Bill  wrote:

> iTunes always performs a backup before it upgrades any device.  If you
> cancel the backup, the upgrade won’t even continue.  That said, I do not
> believe the backup contains the Contacts, rather, it re-syncs them after
> the upgrade is complete.  That may be different if the setting in iTunes is
> to not sync contacts.
>
> ** **
>
> *From:* justino garcia [mailto:jgarciaitl...@gmail.com]
> *Sent:* Thursday, February 16, 2012 8:33 AM
> *To:* NT System Admin Issues
> *Subject:* Re: Allowing or not Allowing iTunes on corporate computers*
> ***
>
> ** **
>
> I had a admin assistant hand IT her idevice, and support went to upgrade
> her to ios 5, and bamn lost her contacts, and the backup that the itunes on
> the support staff PC, created a backup, but did not backup her personal
> contacts WHY WHY
>
> I would wish that a none itunes soultion  would allow for Backups of
> Idevices (ios), like  you can with blackberries...
>
> And she is to blame, for not using a cloud solution to backup her personal
> contacts... But apple also to blame in not creating a full backup before a
> major OS update..
>
> On Wed, Feb 15, 2012 at 3:48 PM, Ben Scott  wrote:**
> **
>
> On Wed, Feb 15, 2012 at 11:40 AM, Matthew W. Ross
>
>  wrote:
> >>  What about creating an Apple ID and "registering" the iDevice?  Is
> >> that all possible natively, now?  (I haven't kept up.)
> >
> > As of iOS 5.0, it's all on the device.
>
>  Good to know.  Thanks.  :)
>
>
> -- Ben
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
>
>
> --
> Justin
> IT-TECH
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Help w/TFTP

[Jeff Bunting]

Richard,

You need to add a tftp client from windows.  Look in control panel,
programs & features, add windows components.

Jeff

On Thu, Feb 16, 2012 at 11:11 AM, Richard McClary  wrote:

>  Greetings!
>
> ** **
>
> I need to copy some router firmware from my PC (well, any node within my
> network) to our main internet router.
>
> ** **
>
> The router is outside our firewall.  So, it would seem simplest to use
> “tftp –I put…” from inside my network.  The alternative would seem to be
> have a tftp server mip’d through the firewall and issue “tftp –I get…” from
> the router.
>
> ** **
>
> Although I have the SolarWinds TFTP server on my workstation, I do not
> seem to have a command line “tftp”.  (My workstation is Win7 Professional.)
> 
>
> ** **
>
> Suggestions?  Thanks…
>
> --
>
> Richard D. McClary
>
> Jr Infrastructure Architect, Information Technology Group 
>
> *ASPCA®*
>
> 1717 S. Philo Rd, Ste 36
>
> Urbana, IL 61802
>
> richard.mccl...@aspca.org
>
> P: 217-337-9761
>
> C: 217-417-1182
>
> F: 217-337-9761
>
> www.aspca.org
>
> ** **
>
>
> The information contained in this e-mail, and any attachments hereto, is
> from The American Society for the Prevention of Cruelty to Animals®
> (ASPCA®) and is intended only for use by the addressee(s) named herein and
> may contain legally privileged and/or confidential information. If you are
> not the intended recipient of this e-mail, you are hereby notified that any
> dissemination, distribution, copying or use of the contents of this e-mail,
> and any attachments hereto, is strictly prohibited. If you have received
> this e-mail in error, please immediately notify me by reply email and
> permanently delete the original and any copy of this e-mail and any
> printout thereof.
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Help w/TFTP

[Kennedy, Jim]

Programs and features then turn windows feathers on/off. You have to add it, it 
isn't installed by default.

From: Richard McClary [mailto:richard.mccl...@aspca.org]
Sent: Thursday, February 16, 2012 11:12 AM
To: NT System Admin Issues
Subject: Help w/TFTP

Greetings!

I need to copy some router firmware from my PC (well, any node within my 
network) to our main internet router.

The router is outside our firewall.  So, it would seem simplest to use "tftp -I 
put..." from inside my network.  The alternative would seem to be have a tftp 
server mip'd through the firewall and issue "tftp -I get..." from the router.

Although I have the SolarWinds TFTP server on my workstation, I do not seem to 
have a command line "tftp".  (My workstation is Win7 Professional.)

Suggestions?  Thanks...
--
Richard D. McClary
Jr Infrastructure Architect, Information Technology Group
ASPCA(r)
1717 S. Philo Rd, Ste 36
Urbana, IL 61802
richard.mccl...@aspca.org
P: 217-337-9761
C: 217-417-1182
F: 217-337-9761
www.aspca.org



The information contained in this e-mail, and any attachments hereto, is from 
The American Society for the Prevention of Cruelty to Animals(r) (ASPCA(r)) and 
is intended only for use by the addressee(s) named herein and may contain 
legally privileged and/or confidential information. If you are not the intended 
recipient of this e-mail, you are hereby notified that any dissemination, 
distribution, copying or use of the contents of this e-mail, and any 
attachments hereto, is strictly prohibited. If you have received this e-mail in 
error, please immediately notify me by reply email and permanently delete the 
original and any copy of this e-mail and any printout thereof.


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: UPN Setup

[Michael B. Smith]

Here ya go:

http://theessentialexchange.com/blogs/michael/archive/2009/04/07/handling-the-userprincipalname-in-powershell.aspx
http://theessentialexchange.com/blogs/michael/archive/2007/11/13/the-user-principle-name-and-you.aspx

From: Troy Adkins [mailto:tadk...@house.virginia.gov]
Sent: Thursday, February 16, 2012 10:41 AM
To: NT System Admin Issues
Subject: UPN Setup

There is a need for us to use the "User Principal Name" feature in Microsoft 
Active Directory.

Looking for some guidelines as to setup.  I've searched online and found some 
Microsoft KB articles, etc.

Would be good to hear from the "experts", on this list, who have done 
this!!!   :-)

Troy Adkins
Network Administrator
Virginia House of Delegates
General Assembly Bldg. Room 815
804.698.1567 (O)
804.771.7917 (F)
tadk...@house.virginia.gov
http://legis.virginia.gov

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Help w/TFTP

[Richard McClary]

Greetings!

I need to copy some router firmware from my PC (well, any node within my 
network) to our main internet router.

The router is outside our firewall.  So, it would seem simplest to use "tftp -I 
put..." from inside my network.  The alternative would seem to be have a tftp 
server mip'd through the firewall and issue "tftp -I get..." from the router.

Although I have the SolarWinds TFTP server on my workstation, I do not seem to 
have a command line "tftp".  (My workstation is Win7 Professional.)

Suggestions?  Thanks...
--
Richard D. McClary
Jr Infrastructure Architect, Information Technology Group
ASPCA(r)
1717 S. Philo Rd, Ste 36
Urbana, IL 61802
richard.mccl...@aspca.org
P: 217-337-9761
C: 217-417-1182
F: 217-337-9761
www.aspca.org



The information contained in this e-mail, and any attachments hereto, is from 
The American Society for the Prevention of Cruelty to Animals® (ASPCA®) and 
is intended only for use by the addressee(s) named herein and may contain 
legally privileged and/or confidential information. If you are not the intended 
recipient of this e-mail, you are hereby notified that any dissemination, 
distribution, copying or use of the contents of this e-mail, and any 
attachments hereto, is strictly prohibited. If you have received this e-mail in 
error, please immediately notify me by reply email and permanently delete the 
original and any copy of this e-mail and any printout thereof.
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

UPN Setup

[Troy Adkins]

There is a need for us to use the "User Principal Name" feature in 
Microsoft Active Directory.

Looking for some guidelines as to setup.  I've searched online and found 
some Microsoft KB articles, etc.

Would be good to hear from the "experts", on this list, who have done 
this!!!   :-)

Troy Adkins
Network Administrator
Virginia House of Delegates
General Assembly Bldg. Room 815
804.698.1567 (O)
804.771.7917 (F)
tadk...@house.virginia.gov
http://legis.virginia.gov
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: utility to output service status

[KenM]

You can use Powershell

get-service "Spooler" | Select Name, Status


For multiple computers and service

$Computers = "comp2", "comp1"
$Computers | Foreach {
Get-Service "Spooler", "W32Time" -computername $_
} | Select Name, Status | Export-Csv d:\temp\ser.csv -NoTypeInformation





On Thu, Feb 16, 2012 at 10:12 AM, Erik Goldoff  wrote:

> to be clear, not wanting a list of ALL services running, we want to
> provide a short list of services we want to check, hopefully with simple
> output like :
>
> service1 - running
> service2 - stopped
> service3 - paused
> service4 - running
>
>
>
>
> On Thu, Feb 16, 2012 at 10:09 AM, Erik Goldoff  wrote:
>
>> Looking to run a batch/command on a series of servers, with the goal of a
>> simple text file listing the service name and status
>> (running/paused/stopped) to be emailed to a monitoring mailbox via
>> scheduled task.
>>
>> PSService and SC seem a bit too verbose for this  simple output,
>> wondering if anyone has a favorite utility that might fit this need.
>>
>> Thanks in advance,
>>
>> Erik
>>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: utility to output service status

[James Rankin]

netsvc.exe


On 16 February 2012 15:09, Erik Goldoff  wrote:

> Looking to run a batch/command on a series of servers, with the goal of a
> simple text file listing the service name and status
> (running/paused/stopped) to be emailed to a monitoring mailbox via
> scheduled task.
>
> PSService and SC seem a bit too verbose for this  simple output, wondering
> if anyone has a favorite utility that might fit this need.
>
> Thanks in advance,
>
> Erik
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>



-- 
"On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into
the machine wrong figures, will the right answers come out?' I am not able
rightly to apprehend the kind of confusion of ideas that could provoke such
a question."

** IMPORTANT INFORMATION/DISCLAIMER *

This document should be read only by those persons to whom it is addressed.
If you have received this message it was obviously addressed to you and
therefore you can read it, even it we didn't mean to send it to you.
However, if the contents of this email make no sense whatsoever then you
probably were not the intended recipient, or, alternatively, you are a
mindless cretin; either way, you should immediately kill yourself and
destroy your computer (not necessarily in that order). Once you have taken
this action, please contact us.. no, sorry, you can't use your computer,
because you just destroyed it, and possibly also committed suicide
afterwards, but I am starting to digress.. *

* The originator of this email is not liable for the transmission of the
information contained in this communication. Or are they? Either way it's a
pretty dull legal query and frankly one I'm not going to dwell on. But
should you have nothing better to do, please feel free to ruminate on it,
and please pass on any concrete conclusions should you find them. However,
if you pass them on via email, be sure to include a disclaimer regarding
liability for transmission.
*

* In the event that the originator did not send this email to you, then
please return it to us and attach a scanned-in picture of your mother's
brother's wife wearing nothing but a kangaroo suit, and we will immediately
refund you exactly half of what you paid for the can of Whiskas you bought
when you went to Pets** ** At Home yesterday. *

* We take no responsibility for non-receipt of this email because we are
running Exchange 5.5 and everyone knows how glitchy that can be. In the
event that you do get this message then please note that we take no
responsibility for that either. Nor will we accept any liability, tacit or
implied, for any damage you may or may not incur as a result of receiving,
or not, as the case may be, from time to time, notwithstanding all
liabilities implied or otherwise, ummm, hell, where was I...umm, no matter
what happens, it is NOT, and NEVER WILL BE, OUR FAULT! *

* The comments and opinions expressed herein are my own and NOT those of my
employer, who, if he knew I was sending emails and surfing the seamier side
of the Internet, would cut off my manhood and feed it to me for afternoon
tea. *

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: utility to output service status

[Damien Solodow]

This would be pretty easy to do in Powershell. :)

DAMIEN SOLODOW
Systems Engineer
317.447.6033 (office)
317.447.6014 (fax)
HARRISON COLLEGE

From: Erik Goldoff [mailto:egold...@gmail.com]
Sent: Thursday, February 16, 2012 10:09 AM
To: NT System Admin Issues
Subject: utility to output service status

Looking to run a batch/command on a series of servers, with the goal of a 
simple text file listing the service name and status (running/paused/stopped) 
to be emailed to a monitoring mailbox via scheduled task.

PSService and SC seem a bit too verbose for this  simple output, wondering if 
anyone has a favorite utility that might fit this need.

Thanks in advance,

Erik

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: utility to output service status

[Erik Goldoff]

to be clear, not wanting a list of ALL services running, we want to provide
a short list of services we want to check, hopefully with simple output
like :

service1 - running
service2 - stopped
service3 - paused
service4 - running




On Thu, Feb 16, 2012 at 10:09 AM, Erik Goldoff  wrote:

> Looking to run a batch/command on a series of servers, with the goal of a
> simple text file listing the service name and status
> (running/paused/stopped) to be emailed to a monitoring mailbox via
> scheduled task.
>
> PSService and SC seem a bit too verbose for this  simple output, wondering
> if anyone has a favorite utility that might fit this need.
>
> Thanks in advance,
>
> Erik
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Early Friday Funnny

[James Rankin]

I once knew an idiotic server support guy who "tested" the AV with real
malware. Moron.

On 16 February 2012 14:38, Maglinger, Paul  wrote:

>  Of course he was just “testing” to see if you could really monitor that
> type of usage.  Something had to show up in the report to prove it was
> working, right?  ;-)
>
> ** **
>
> ** **
>
> *From:* Graeme Carstairs [mailto:loonyto...@gmail.com]
> *Sent:* Thursday, February 16, 2012 8:26 AM
>
> *To:* NT System Admin Issues
> *Subject:* Re: Early Friday Funnny
>
> ** **
>
> At a previous company,
>
> ** **
>
> We were invited in by the FD to install web monitoring, to see who was
> misusing the company internet, wasting time, that sort of thing.
>
> ** **
>
> What did we find on analasys, 
>
> ** **
>
> the only recurring and actionable misuse was someone on the FD's computer,
> using the Fd's login name and password, on the nights the FD worked light
> cos his wife had a bridge night, searching through the local working girls
> review site, and several message posted about hooing up later that evening.
> 
>
> ** **
>
> needless to say, we were paid and were never invited back to do any work
> for that company.
>
> ** **
>
> :)
>
> ** **
>
> ** **
>
> On 16 February 2012 13:48, Guyer, Donald  wrote:
>
> Yeah, nothing happened in my case, that I know of.
>
> Either way, neither myself or my boss could look at him the same way again.
>
> To make it worse, he was high maintenance and always coming in with that
> laptop.
>
> I cringed every time I had to touch it.
>
> Regards,
>
> Don Guyer
> Directory and Messaging Services
> Catholic Health East, ITSS
>
> -Original Message-
> From: Rankin, James R [mailto:kz2...@googlemail.com]
> Sent: Wednesday, February 15, 2012 5:26 PM
> To: NT System Admin Issues
> Subject: Re: Early Friday Funnny
>
> Our IronPort highlighted someone rather senior organising an affair in
> graphic fashion. I reported my findings, but nothing ever seemed to come of
> it. Probably filed away for political ammo.
>
> Sent from my SR-71 Blackbird
>
> -Original Message-
> From: Kurt Buff 
> Date: Wed, 15 Feb 2012 14:21:11
> To: NT System Admin Issues
> Reply-To: "NT System Admin Issues" 
> Subject:
> Re: Early Friday Funnny
>
> I'll bet that got your heart going pitty-pat (the reporting, not the pr0n).
>
> It'd make me nervous, too, but I'd do it for sure.
>
> Kurt
>
> On Wed, Feb 15, 2012 at 12:53, Guyer, Donald  wrote:
> > At a previous gig, I had to report Pr0n on a Board Members
> > company-owned laptop.
> >
> >
> >
> > Regards,
> >
> >
> >
> > Don Guyer
> >
> > Directory and Messaging Services
> > Catholic Health East, ITSS
> >
> >
> >
> > From: Roger Wright [mailto:rhw...@gmail.com]
> > Sent: Wednesday, February 15, 2012 1:29 PM
> > To: NT System Admin Issues
> > Subject: OT: Early Friday Funnny
> >
> >
> >
> > http://preview.tinyurl.com/6q577bu
> >
> >
> > Roger Wright
> > ___
> >
> > "See what will happen if you don't stop biting your fingernails?" -
> > Will Rogers, to his niece on seeing the Venus de Milo
> >
> >
> >
> >
> >
> >
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
> >   ~
> >
> > ---
> > To manage subscriptions click here:
> > http://lyris.sunbelt-software.com/read/my_forums/
> > or send an email to listmana...@lyris.sunbeltsoftware.com
> > with the body: unsubscribe ntsysadmin
> >
> > Confidentiality Notice:
> > This e-mail, including any attachments is the property of Catholic
> > Health East and is intended for the sole use of the intended
> > recipient(s).
> > It may contain information that is privileged and confidential.  Any
> > unauthorized review, use, disclosure, or distribution is prohibited.
> > If you are not the intended recipient, please delete this message, and
> > reply to the sender regarding the error in a separate email.
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
> >   ~
> >
> > ---
> > To manage subscriptions click here:
> > http://lyris.sunbelt-software.com/read/my_forums/
> > or send an email to listmana...@lyris.sunbeltsoftware.com
> > with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <
> http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <
> http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
> Confidentiality Notice:
> This e-mail, in

RE: Early Friday Funnny

[Maglinger, Paul]

Of course he was just "testing" to see if you could really monitor that type of 
usage.  Something had to show up in the report to prove it was working, right?  
;-)


From: Graeme Carstairs [mailto:loonyto...@gmail.com]
Sent: Thursday, February 16, 2012 8:26 AM
To: NT System Admin Issues
Subject: Re: Early Friday Funnny

At a previous company,

We were invited in by the FD to install web monitoring, to see who was misusing 
the company internet, wasting time, that sort of thing.

What did we find on analasys,

the only recurring and actionable misuse was someone on the FD's computer, 
using the Fd's login name and password, on the nights the FD worked light cos 
his wife had a bridge night, searching through the local working girls review 
site, and several message posted about hooing up later that evening.

needless to say, we were paid and were never invited back to do any work for 
that company.

:)


On 16 February 2012 13:48, Guyer, Donald 
mailto:dgu...@che.org>> wrote:
Yeah, nothing happened in my case, that I know of.

Either way, neither myself or my boss could look at him the same way again.

To make it worse, he was high maintenance and always coming in with that laptop.

I cringed every time I had to touch it.

Regards,

Don Guyer
Directory and Messaging Services
Catholic Health East, ITSS

-Original Message-
From: Rankin, James R 
[mailto:kz2...@googlemail.com]
Sent: Wednesday, February 15, 2012 5:26 PM
To: NT System Admin Issues
Subject: Re: Early Friday Funnny

Our IronPort highlighted someone rather senior organising an affair in graphic 
fashion. I reported my findings, but nothing ever seemed to come of it. 
Probably filed away for political ammo.

Sent from my SR-71 Blackbird

-Original Message-
From: Kurt Buff mailto:kurt.b...@gmail.com>>
Date: Wed, 15 Feb 2012 14:21:11
To: NT System Admin 
Issuesmailto:ntsysadmin@lyris.sunbelt-software.com>>
Reply-To: "NT System Admin Issues" 
mailto:ntsysadmin@lyris.sunbelt-software.com>>Subject:
 Re: Early Friday Funnny

I'll bet that got your heart going pitty-pat (the reporting, not the pr0n).

It'd make me nervous, too, but I'd do it for sure.

Kurt

On Wed, Feb 15, 2012 at 12:53, Guyer, Donald 
mailto:dgu...@che.org>> wrote:
> At a previous gig, I had to report Pr0n on a Board Members
> company-owned laptop.
>
>
>
> Regards,
>
>
>
> Don Guyer
>
> Directory and Messaging Services
> Catholic Health East, ITSS
>
>
>
> From: Roger Wright [mailto:rhw...@gmail.com]
> Sent: Wednesday, February 15, 2012 1:29 PM
> To: NT System Admin Issues
> Subject: OT: Early Friday Funnny
>
>
>
> http://preview.tinyurl.com/6q577bu
>
>
> Roger Wright
> ___
>
> "See what will happen if you don't stop biting your fingernails?" -
> Will Rogers, to his niece on seeing the Venus de Milo
>
>
>
>
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to 
> listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> Confidentiality Notice:
> This e-mail, including any attachments is the property of Catholic
> Health East and is intended for the sole use of the intended
> recipient(s).
> It may contain information that is privileged and confidential.  Any
> unauthorized review, use, disclosure, or distribution is prohibited.
> If you are not the intended recipient, please delete this message, and
> reply to the sender regarding the error in a separate email.
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to 
> listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin
Confidentiality Notice:
This e-mail, including any attachments is the
property of Catholic Health East and is intended
for the sole use of the intended recipient(s).
It may contain inf

Re: Early Friday Funnny

[Graeme Carstairs]

At a previous company,

We were invited in by the FD to install web monitoring, to see who was
misusing the company internet, wasting time, that sort of thing.

What did we find on analasys,

the only recurring and actionable misuse was someone on the FD's computer,
using the Fd's login name and password, on the nights the FD worked light
cos his wife had a bridge night, searching through the local working girls
review site, and several message posted about hooing up later that evening.

needless to say, we were paid and were never invited back to do any work
for that company.

:)



On 16 February 2012 13:48, Guyer, Donald  wrote:

> Yeah, nothing happened in my case, that I know of.
>
> Either way, neither myself or my boss could look at him the same way again.
>
> To make it worse, he was high maintenance and always coming in with that
> laptop.
>
> I cringed every time I had to touch it.
>
> Regards,
>
> Don Guyer
> Directory and Messaging Services
> Catholic Health East, ITSS
>
> -Original Message-
> From: Rankin, James R [mailto:kz2...@googlemail.com]
> Sent: Wednesday, February 15, 2012 5:26 PM
> To: NT System Admin Issues
> Subject: Re: Early Friday Funnny
>
> Our IronPort highlighted someone rather senior organising an affair in
> graphic fashion. I reported my findings, but nothing ever seemed to come of
> it. Probably filed away for political ammo.
>
> Sent from my SR-71 Blackbird
>
> -Original Message-
> From: Kurt Buff 
> Date: Wed, 15 Feb 2012 14:21:11
> To: NT System Admin Issues
> Reply-To: "NT System Admin Issues" 
> Subject:
> Re: Early Friday Funnny
>
> I'll bet that got your heart going pitty-pat (the reporting, not the pr0n).
>
> It'd make me nervous, too, but I'd do it for sure.
>
> Kurt
>
> On Wed, Feb 15, 2012 at 12:53, Guyer, Donald  wrote:
> > At a previous gig, I had to report Pr0n on a Board Members
> > company-owned laptop.
> >
> >
> >
> > Regards,
> >
> >
> >
> > Don Guyer
> >
> > Directory and Messaging Services
> > Catholic Health East, ITSS
> >
> >
> >
> > From: Roger Wright [mailto:rhw...@gmail.com]
> > Sent: Wednesday, February 15, 2012 1:29 PM
> > To: NT System Admin Issues
> > Subject: OT: Early Friday Funnny
> >
> >
> >
> > http://preview.tinyurl.com/6q577bu
> >
> >
> > Roger Wright
> > ___
> >
> > "See what will happen if you don't stop biting your fingernails?" -
> > Will Rogers, to his niece on seeing the Venus de Milo
> >
> >
> >
> >
> >
> >
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
> >   ~
> >
> > ---
> > To manage subscriptions click here:
> > http://lyris.sunbelt-software.com/read/my_forums/
> > or send an email to listmana...@lyris.sunbeltsoftware.com
> > with the body: unsubscribe ntsysadmin
> >
> > Confidentiality Notice:
> > This e-mail, including any attachments is the property of Catholic
> > Health East and is intended for the sole use of the intended
> > recipient(s).
> > It may contain information that is privileged and confidential.  Any
> > unauthorized review, use, disclosure, or distribution is prohibited.
> > If you are not the intended recipient, please delete this message, and
> > reply to the sender regarding the error in a separate email.
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
> >   ~
> >
> > ---
> > To manage subscriptions click here:
> > http://lyris.sunbelt-software.com/read/my_forums/
> > or send an email to listmana...@lyris.sunbeltsoftware.com
> > with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <
> http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <
> http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
> Confidentiality Notice:
> This e-mail, including any attachments is the
> property of Catholic Health East and is intended
> for the sole use of the intended recipient(s).
> It may contain information that is privileged and
> confidential.  Any unauthorized review, use,
> disclosure, or distribution is prohibited. If you are
> not the intended recipient, please delete this message, and
> reply to the sender regarding the error in a separate email.
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send

RE: Early Friday Funnny

[Guyer, Donald]

Yeah, nothing happened in my case, that I know of.

Either way, neither myself or my boss could look at him the same way again.

To make it worse, he was high maintenance and always coming in with that 
laptop. 

I cringed every time I had to touch it.

Regards,

Don Guyer
Directory and Messaging Services
Catholic Health East, ITSS

-Original Message-
From: Rankin, James R [mailto:kz2...@googlemail.com] 
Sent: Wednesday, February 15, 2012 5:26 PM
To: NT System Admin Issues
Subject: Re: Early Friday Funnny

Our IronPort highlighted someone rather senior organising an affair in graphic 
fashion. I reported my findings, but nothing ever seemed to come of it. 
Probably filed away for political ammo.

Sent from my SR-71 Blackbird

-Original Message-
From: Kurt Buff 
Date: Wed, 15 Feb 2012 14:21:11
To: NT System Admin Issues
Reply-To: "NT System Admin Issues" 
Subject: Re: Early Friday Funnny

I'll bet that got your heart going pitty-pat (the reporting, not the pr0n).

It'd make me nervous, too, but I'd do it for sure.

Kurt

On Wed, Feb 15, 2012 at 12:53, Guyer, Donald  wrote:
> At a previous gig, I had to report Pr0n on a Board Members 
> company-owned laptop.
>
>
>
> Regards,
>
>
>
> Don Guyer
>
> Directory and Messaging Services
> Catholic Health East, ITSS
>
>
>
> From: Roger Wright [mailto:rhw...@gmail.com]
> Sent: Wednesday, February 15, 2012 1:29 PM
> To: NT System Admin Issues
> Subject: OT: Early Friday Funnny
>
>
>
> http://preview.tinyurl.com/6q577bu
>
>
> Roger Wright
> ___
>
> "See what will happen if you don't stop biting your fingernails?" - 
> Will Rogers, to his niece on seeing the Venus de Milo
>
>
>
>
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
>   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> Confidentiality Notice:
> This e-mail, including any attachments is the property of Catholic 
> Health East and is intended for the sole use of the intended 
> recipient(s).
> It may contain information that is privileged and confidential.  Any 
> unauthorized review, use, disclosure, or distribution is prohibited. 
> If you are not the intended recipient, please delete this message, and 
> reply to the sender regarding the error in a separate email.
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
>   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin
Confidentiality Notice:
This e-mail, including any attachments is the 
property of Catholic Health East and is intended 
for the sole use of the intended recipient(s).  
It may contain information that is privileged and 
confidential.  Any unauthorized review, use,
disclosure, or distribution is prohibited. If you are 
not the intended recipient, please delete this message, and 
reply to the sender regarding the error in a separate email. 
 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Allowing or not Allowing iTunes on corporate computers????

[Mayo, Bill]

iTunes always performs a backup before it upgrades any device.  If you
cancel the backup, the upgrade won't even continue.  That said, I do not
believe the backup contains the Contacts, rather, it re-syncs them after
the upgrade is complete.  That may be different if the setting in iTunes
is to not sync contacts.

 

From: justino garcia [mailto:jgarciaitl...@gmail.com] 
Sent: Thursday, February 16, 2012 8:33 AM
To: NT System Admin Issues
Subject: Re: Allowing or not Allowing iTunes on corporate computers

 

I had a admin assistant hand IT her idevice, and support went to upgrade
her to ios 5, and bamn lost her contacts, and the backup that the itunes
on the support staff PC, created a backup, but did not backup her
personal contacts WHY WHY

I would wish that a none itunes soultion  would allow for Backups of
Idevices (ios), like  you can with blackberries...

And she is to blame, for not using a cloud solution to backup her
personal contacts... But apple also to blame in not creating a full
backup before a major OS update..

On Wed, Feb 15, 2012 at 3:48 PM, Ben Scott  wrote:

On Wed, Feb 15, 2012 at 11:40 AM, Matthew W. Ross

 wrote:
>>  What about creating an Apple ID and "registering" the iDevice?  Is
>> that all possible natively, now?  (I haven't kept up.)
>
> As of iOS 5.0, it's all on the device.

 Good to know.  Thanks.  :)


-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin




-- 
Justin
IT-TECH

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Allowing or not Allowing iTunes on corporate computers????

[justino garcia]

I had a admin assistant hand IT her idevice, and support went to upgrade
her to ios 5, and bamn lost her contacts, and the backup that the itunes on
the support staff PC, created a backup, but did not backup her personal
contacts WHY WHY

I would wish that a none itunes soultion  would allow for Backups of
Idevices (ios), like  you can with blackberries...

And she is to blame, for not using a cloud solution to backup her personal
contacts... But apple also to blame in not creating a full backup before a
major OS update..

On Wed, Feb 15, 2012 at 3:48 PM, Ben Scott  wrote:

> On Wed, Feb 15, 2012 at 11:40 AM, Matthew W. Ross
>  wrote:
> >>  What about creating an Apple ID and "registering" the iDevice?  Is
> >> that all possible natively, now?  (I haven't kept up.)
> >
> > As of iOS 5.0, it's all on the device.
>
>   Good to know.  Thanks.  :)
>
> -- Ben
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>


-- 
Justin
IT-TECH

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Group Policy problem

[Kennedy, Jim]

+1  'always wait for network at computer startup' ftw.

From: N Parr [mailto:npar...@mortonind.com]
Sent: Thursday, February 16, 2012 8:15 AM
To: NT System Admin Issues
Subject: RE: Group Policy problem

I had a very similar problem a couple weeks ago.  We only have one little 
application we push to all computers via GPO, it's been the same app for the 
past 3 years.  All the sudden it just stopped installing for no reason I can 
understand, maybe something in last round of windows updates since that was the 
only common change.  I did some searching and turned on the old "always wait 
for network at computer startup" and it starts working again.   I was getting 
RPC and DC not available errors in the event log which helped me narrow down 
the problem.  But why now after years and across 03-08 domain upgrades.


From: Tom Miller [mailto:tmil...@hnncsb.org]
Sent: Thursday, February 16, 2012 6:17 AM
To: NT System Admin Issues
Subject: Re: Group Policy problem
Yes, that's it.

>>> James Rankin mailto:kz2...@googlemail.com>> 
>>> 2/16/2012 6:43 AM >>>
Aha, the old "always wait for network at computer startup" option?
On 16 February 2012 11:36, Tom Miller 
mailto:tmil...@hnncsb.org>> wrote:
I've had issues with this sort of thing on Windows XP. There is a setting in 
the GPO - can dig for it if you need it - that does something like waits for 
Windows to completely load before the GPO completes, and I found that helpful 
for scripts. It delays the logon process by a few seconds, but our users don't 
notice since I've used it since we migrated from another file and print system.
If you don't need the script to run at logon, consider a scheduled task via 
GPO. I have a task that runs every few hours to check for A/V software (task 
executes a script on a share). If the software is present, the script exits, if 
not, a silent install runs. (That's very helpful when Vipre has major upgrades, 
the old agent gets uninstalled, but the new agent fails to install.) Since this 
PC is over a WAN link, you could have the script copy whatever locally, then 
execute. Just an alternative.
Tom

>>> "Rankin, James R" mailto:kz2...@googlemail.com>> 
>>> 2/16/2012 3:25 AM >>>

Its just some strangeness I saw before, some pcs unable to get install files 
from shares on DCs.
Sent from my SR-71 Blackbird

From: "Jim Dandy" mailto:jda...@asmail.ucdavis.edu>>
Date: Wed, 15 Feb 2012 14:57:21 -0800
To: NT System Admin 
Issuesmailto:ntsysadmin@lyris.sunbelt-software.com>>
ReplyTo: "NT System Admin Issues" 
mailto:ntsysadmin@lyris.sunbelt-software.com>>
Subject: RE: Group Policy problem

No, It's 32-bit. I wouldn't think it could be a problem with the share since 
other computers are able to apply the policy. Am I wrong?
Curt
From: James Rankin [mailto:kz2...@googlemail.com]
Sent: Wednesday, February 15, 2012 1:37 PM
To: NT System Admin Issues
Subject: Re: Group Policy problem
It's not an x64 system is it?

Also where are the installation files stored? I had a lot of problems when 
someone stored the install files in the netlogon share, moving them out sorted 
things.
On 15 February 2012 21:28, Jim Dandy 
mailto:jda...@asmail.ucdavis.edu>> wrote:
I'm trying to install software via group policy. If I do resultant set of 
policy, it shows the group policies but there is a yellow triangle with an 
exclamation point on all of the policies assigning the software packages. In 
RSoP, if I look at the Error Information tab on the Properties for the group 
policy, it only shows the date and time. There are no errors in the system 
event log indicating the software failed to install - it just doesn't install 
when the system is booted. The issue only occurs on this one (Vista) computer. 
The GPs are working perfectly on other computers in the OU. How can I track 
down the problem? Thanks for your help.
Curt Finley

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin



--
"On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into the 
machine wrong figures, will the right answers come out?' I am not able rightly 
to apprehend the kind of confusion of ideas that could provoke such a question."

* IMPORTANT INFORMATION/DISCLAIMER *

This document should be read only by those persons to whom it is addressed. If 
you have received this message it was obviously addressed to you and therefore 
you can read it, even it we didn't mean to send it to you. However, if the 
contents of this email make no sense whatsoever then you probably were not the 
intended recipient, or, alternatively, you are a 

RE: Group Policy problem

[N Parr]

I had a very similar problem a couple weeks ago.  We only have one little 
application we push to all computers via GPO, it's been the same app for the 
past 3 years.  All the sudden it just stopped installing for no reason I can 
understand, maybe something in last round of windows updates since that was the 
only common change.  I did some searching and turned on the old "always wait 
for network at computer startup" and it starts working again.   I was getting 
RPC and DC not available errors in the event log which helped me narrow down 
the problem.  But why now after years and across 03-08 domain upgrades.


From: Tom Miller [mailto:tmil...@hnncsb.org]
Sent: Thursday, February 16, 2012 6:17 AM
To: NT System Admin Issues
Subject: Re: Group Policy problem

Yes, that's it.

>>> James Rankin  2/16/2012 6:43 AM >>>
Aha, the old "always wait for network at computer startup" option?

On 16 February 2012 11:36, Tom Miller 
mailto:tmil...@hnncsb.org>> wrote:
I've had issues with this sort of thing on Windows XP. There is a setting in 
the GPO - can dig for it if you need it - that does something like waits for 
Windows to completely load before the GPO completes, and I found that helpful 
for scripts. It delays the logon process by a few seconds, but our users don't 
notice since I've used it since we migrated from another file and print system.
If you don't need the script to run at logon, consider a scheduled task via 
GPO. I have a task that runs every few hours to check for A/V software (task 
executes a script on a share). If the software is present, the script exits, if 
not, a silent install runs. (That's very helpful when Vipre has major upgrades, 
the old agent gets uninstalled, but the new agent fails to install.) Since this 
PC is over a WAN link, you could have the script copy whatever locally, then 
execute. Just an alternative.
Tom

>>> "Rankin, James R" mailto:kz2...@googlemail.com>> 
>>> 2/16/2012 3:25 AM >>>

Its just some strangeness I saw before, some pcs unable to get install files 
from shares on DCs.
Sent from my SR-71 Blackbird

From: "Jim Dandy" mailto:jda...@asmail.ucdavis.edu>>
Date: Wed, 15 Feb 2012 14:57:21 -0800
To: NT System Admin 
Issuesmailto:ntsysadmin@lyris.sunbelt-software.com>>
ReplyTo: "NT System Admin Issues" 
mailto:ntsysadmin@lyris.sunbelt-software.com>>
Subject: RE: Group Policy problem

No, It's 32-bit. I wouldn't think it could be a problem with the share since 
other computers are able to apply the policy. Am I wrong?
Curt
From: James Rankin [mailto:kz2...@googlemail.com]
Sent: Wednesday, February 15, 2012 1:37 PM
To: NT System Admin Issues
Subject: Re: Group Policy problem
It's not an x64 system is it?

Also where are the installation files stored? I had a lot of problems when 
someone stored the install files in the netlogon share, moving them out sorted 
things.
On 15 February 2012 21:28, Jim Dandy 
mailto:jda...@asmail.ucdavis.edu>> wrote:
I'm trying to install software via group policy. If I do resultant set of 
policy, it shows the group policies but there is a yellow triangle with an 
exclamation point on all of the policies assigning the software packages. In 
RSoP, if I look at the Error Information tab on the Properties for the group 
policy, it only shows the date and time. There are no errors in the system 
event log indicating the software failed to install - it just doesn't install 
when the system is booted. The issue only occurs on this one (Vista) computer. 
The GPs are working perfectly on other computers in the OU. How can I track 
down the problem? Thanks for your help.
Curt Finley

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin



--
"On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into the 
machine wrong figures, will the right answers come out?' I am not able rightly 
to apprehend the kind of confusion of ideas that could provoke such a question."

* IMPORTANT INFORMATION/DISCLAIMER *

This document should be read only by those persons to whom it is addressed. If 
you have received this message it was obviously addressed to you and therefore 
you can read it, even it we didn't mean to send it to you. However, if the 
contents of this email make no sense whatsoever then you probably were not the 
intended recipient, or, alternatively, you are a mindless cretin; either way, 
you should immediately kill yourself and destroy your computer (not necessarily 
in that order). Once you have taken this action, please contact us.. no, sorry, 
you can't use your computer, because you just destroyed it, and possibly also 
co

Re: Group Policy problem

[Tom Miller]

Yes, that's it.

>>> James Rankin  2/16/2012 6:43 AM >>>
Aha, the old "always wait for network at computer startup" option?

On 16 February 2012 11:36, Tom Miller  wrote:


I've had issues with this sort of thing on Windows XP. There is a
setting in the GPO - can dig for it if you need it - that does something
like waits for Windows to completely load before the GPO completes, and
I found that helpful for scripts. It delays the logon process by a few
seconds, but our users don't notice since I've used it since we migrated
from another file and print system.
If you don't need the script to run at logon, consider a scheduled task
via GPO. I have a task that runs every few hours to check for A/V
software (task executes a script on a share). If the software is
present, the script exits, if not, a silent install runs. (That's very
helpful when Vipre has major upgrades, the old agent gets uninstalled,
but the new agent fails to install.) Since this PC is over a WAN link,
you could have the script copy whatever locally, then execute. Just an
alternative.
Tom

>>> "Rankin, James R"  2/16/2012 3:25 AM >>>

Its just some strangeness I saw before, some pcs unable to get install
files from shares on DCs.
Sent from my SR-71 Blackbird
From: "Jim Dandy"  
Date: Wed, 15 Feb 2012 14:57:21 -0800
To: NT System Admin Issues
ReplyTo: "NT System Admin Issues"

Subject: RE: Group Policy problem


No, It’s 32-bit. I wouldn’t think it could be a problem with the share
since other computers are able to apply the policy. Am I wrong?

Curt

From:James Rankin [mailto:kz2...@googlemail.com] 
Sent: Wednesday, February 15, 2012 1:37 PM
To: NT System Admin Issues
Subject: Re: Group Policy problem

It's not an x64 system is it?

Also where are the installation files stored? I had a lot of problems
when someone stored the install files in the netlogon share, moving them
out sorted things.

On 15 February 2012 21:28, Jim Dandy 
wrote:

I’m trying to install software via group policy. If I do resultant set
of policy, it shows the group policies but there is a yellow triangle
with an exclamation point on all of the policies assigning the software
packages. In RSoP, if I look at the Error Information tab on the
Properties for the group policy, it only shows the date and time. There
are no errors in the system event log indicating the software failed to
install – it just doesn’t install when the system is booted. The issue
only occurs on this one (Vista) computer. The GPs are working perfectly
on other computers in the OU. How can I track down the problem? Thanks
for your help.

Curt Finley

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin




-- 
"On two occasions...I have been asked, 'Pray, Mr Babbage, if you put
into the machine wrong figures, will the right answers come out?' I am
not able rightly to apprehend the kind of confusion of ideas that could
provoke such a question."

* IMPORTANT INFORMATION/DISCLAIMER *

This document should be read only by those persons to whom it is
addressed. If you have received this message it was obviously addressed
to you and therefore you can read it, even it we didn't mean to send it
to you. However, if the contents of this email make no sense whatsoever
then you probably were not the intended recipient, or, alternatively,
you are a mindless cretin; either way, you should immediately kill
yourself and destroy your computer (not necessarily in that order). Once
you have taken this action, please contact us.. no, sorry, you can't use
your computer, because you just destroyed it, and possibly also
committed suicide afterwards, but I am starting to digress.. 
The originator of this email is not liable for the transmission of the
information contained in this communication. Or are they? Either way
it's a pretty dull legal query and frankly one I'm not going to dwell
on. But should you have nothing better to do, please feel free to
ruminate on it, and please pass on any concrete conclusions should you
find them. However, if you pass them on via email, be sure to include a
disclaimer regarding liability for transmission.
In the event that the originator did not send this email to you, then
please return it to us and attach a scanned-in picture of your mother's
brother's wife wearing nothing but a kangaroo suit, and we will
immediately refund you exactly half of what you paid for the can of
Whiskas you bought when you went to Pets At Home yesterday. 
We take no responsibility for non-receipt of this email because we are
running Exchange 5.5 and everyone knows how glitchy that can be. In the
event that you do get this message then please note that we take no
responsibility for that either. Nor will we accept any liability, tacit
or implie

Re: Group Policy problem

[James Rankin]

Aha, the old "always wait for network at computer startup" option?

On 16 February 2012 11:36, Tom Miller  wrote:

>  I've had issues with this sort of thing on Windows XP.  There is a
> setting in the GPO - can dig for it if you need it - that does something
> like waits for Windows to completely load before the GPO completes, and I
> found that helpful for scripts.  It delays the logon process by a few
> seconds, but our users don't notice since I've used it since we migrated
> from another file and print system.
>
> If you don't need the script to run at logon, consider a scheduled task
> via GPO.  I have a task that runs every few hours to check for A/V software
> (task executes a script on a share).  If the software is present, the
> script exits, if not, a silent install runs.  (That's very helpful when
> Vipre has major upgrades, the old agent gets uninstalled, but the new agent
> fails to install.)  Since this PC is over a WAN link, you could have the
> script copy whatever locally, then execute.  Just an alternative.
>
> Tom
>
> >>> "Rankin, James R"  2/16/2012 3:25 AM >>>
>
> Its just some strangeness I saw before, some pcs unable to get install
> files from shares on DCs.
> Sent from my SR-71 Blackbird
> --
> *From: *"Jim Dandy" 
> *Date: *Wed, 15 Feb 2012 14:57:21 -0800
> *To: *NT System Admin Issues
> *ReplyTo: *"NT System Admin Issues"  >
> *Subject: *RE: Group Policy problem
>
>  No, It’s 32-bit.  I wouldn’t think it could be a problem with the share
> since other computers are able to apply the policy.  Am I wrong?
>
> ** **
>
> Curt
>
> ** **
>
> *From:* James Rankin [mailto:kz2...@googlemail.com]
> *Sent:* Wednesday, February 15, 2012 1:37 PM
> *To:* NT System Admin Issues
> *Subject:* Re: Group Policy problem
>
> ** **
>
> It's not an x64 system is it?
>
> Also where are the installation files stored? I had a lot of problems when
> someone stored the install files in the netlogon share, moving them out
> sorted things.
>
> On 15 February 2012 21:28, Jim Dandy  wrote:***
> *
>
> I’m trying to install software via group policy.  If I do resultant set of
> policy, it shows the group policies but there is a yellow triangle with an
> exclamation point on all of the policies assigning the software packages.
> In RSoP, if I look at the Error Information tab on the Properties for the
> group policy, it only shows the date and time. There are no errors in the
> system event log indicating the software failed to install – it just
> doesn’t install when the system is booted.  The issue only occurs on this
> one (Vista) computer.  The GPs are working perfectly on other computers in
> the OU.  How can I track down the problem?  Thanks for your help.
>
>  
>
> Curt Finley
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
>
>
> --
> "On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into
> the machine wrong figures, will the right answers come out?' I am not able
> rightly to apprehend the kind of confusion of ideas that could provoke such
> a question."
>
> ** IMPORTANT INFORMATION/DISCLAIMER *
>
> This document should be read only by those persons to whom it is
> addressed. If you have received this message it was obviously addressed to
> you and therefore you can read it, even it we didn't mean to send it to
> you. However, if the contents of this email make no sense whatsoever then
> you probably were not the intended recipient, or, alternatively, you are a
> mindless cretin; either way, you should immediately kill yourself and
> destroy your computer (not necessarily in that order). Once you have taken
> this action, please contact us.. no, sorry, you can't use your computer,
> because you just destroyed it, and possibly also committed suicide
> afterwards, but I am starting to digress.. *
>
> *The originator of this email is not liable for the transmission of the
> information contained in this communication. Or are they? Either way it's a
> pretty dull legal query and frankly one I'm not going to dwell on. But
> should you have nothing better to do, please feel free to ruminate on it,
> and please pass on any concrete conclusions should you find them. However,
> if you pass them on via email, be sure to include a disclaimer regarding
> liability for transmission.*
>
> *In the event that the originator did not send this email to you, then
> please return it to us and attach a scanned-in picture of your mother's
> brother's wife wearing nothing but a kangaroo suit, and we will immediately
> refund you exactly half of what you paid for the can of Whiskas you bought
> when you went to Pets At Home yesterday. *
>
> 

Re: Group Policy problem

[Tom Miller]

I've had issues with this sort of thing on Windows XP.  There is a
setting in the GPO - can dig for it if you need it - that does something
like waits for Windows to completely load before the GPO completes, and
I found that helpful for scripts.  It delays the logon process by a few
seconds, but our users don't notice since I've used it since we migrated
from another file and print system.
 
If you don't need the script to run at logon, consider a scheduled task
via GPO.  I have a task that runs every few hours to check for A/V
software (task executes a script on a share).  If the software is
present, the script exits, if not, a silent install runs.  (That's very
helpful when Vipre has major upgrades, the old agent gets uninstalled,
but the new agent fails to install.)  Since this PC is over a WAN link,
you could have the script copy whatever locally, then execute.  Just an
alternative.
 
Tom

>>> "Rankin, James R"  2/16/2012 3:25 AM >>>
Its just some strangeness I saw before, some pcs unable to get install
files from shares on DCs.
Sent from my SR-71 Blackbird
From: "Jim Dandy"  
Date: Wed, 15 Feb 2012 14:57:21 -0800
To: NT System Admin Issues
ReplyTo: "NT System Admin Issues"

Subject: RE: Group Policy problem


No, It’s 32-bit.  I wouldn’t think it could be a problem with the share
since other computers are able to apply the policy.  Am I wrong?
 
Curt
 
From:James Rankin [mailto:kz2...@googlemail.com] 
Sent: Wednesday, February 15, 2012 1:37 PM
To: NT System Admin Issues
Subject: Re: Group Policy problem
 
It's not an x64 system is it?

Also where are the installation files stored? I had a lot of problems
when someone stored the install files in the netlogon share, moving them
out sorted things.

On 15 February 2012 21:28, Jim Dandy 
wrote:

I’m trying to install software via group policy.  If I do resultant set
of policy, it shows the group policies but there is a yellow triangle
with an exclamation point on all of the policies assigning the software
packages.  In RSoP, if I look at the Error Information tab on the
Properties for the group policy, it only shows the date and time. There
are no errors in the system event log indicating the software failed to
install – it just doesn’t install when the system is booted.  The issue
only occurs on this one (Vista) computer.  The GPs are working perfectly
on other computers in the OU.  How can I track down the problem?  Thanks
for your help.
 
Curt Finley

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin




-- 
"On two occasions...I have been asked, 'Pray, Mr Babbage, if you put
into the machine wrong figures, will the right answers come out?' I am
not able rightly to apprehend the kind of confusion of ideas that could
provoke such a question."

* IMPORTANT INFORMATION/DISCLAIMER *

This document should be read only by those persons to whom it is
addressed. If you have received this message it was obviously addressed
to you and therefore you can read it, even it we didn't mean to send it
to you. However, if the contents of this email make no sense whatsoever
then you probably were not the intended recipient, or, alternatively,
you are a mindless cretin; either way, you should immediately kill
yourself and destroy your computer (not necessarily in that order). Once
you have taken this action, please contact us.. no, sorry, you can't use
your computer, because you just destroyed it, and possibly also
committed suicide afterwards, but I am starting to digress.. 
The originator of this email is not liable for the transmission of the
information contained in this communication. Or are they? Either way
it's a pretty dull legal query and frankly one I'm not going to dwell
on. But should you have nothing better to do, please feel free to
ruminate on it, and please pass on any concrete conclusions should you
find them. However, if you pass them on via email, be sure to include a
disclaimer regarding liability for transmission.
In the event that the originator did not send this email to you, then
please return it to us and attach a scanned-in picture of your mother's
brother's wife wearing nothing but a kangaroo suit, and we will
immediately refund you exactly half of what you paid for the can of
Whiskas you bought when you went to Pets At Home yesterday. 
We take no responsibility for non-receipt of this email because we are
running Exchange 5.5 and everyone knows how glitchy that can be. In the
event that you do get this message then please note that we take no
responsibility for that either. Nor will we accept any liability, tacit
or implied, for any damage you may or may not incur as a result of
receiving, or not, as the case may be, from time to time,
notwithstanding all liabilities im

Re: Group Policy problem

[Rankin, James R]

Its just some strangeness I saw before, some pcs unable to get install files 
from shares on DCs.

Sent from my SR-71 Blackbird

-Original Message-
From: "Jim Dandy" 
Date: Wed, 15 Feb 2012 14:57:21 
To: NT System Admin Issues
Reply-To: "NT System Admin Issues" 
Subject: RE: Group Policy problem

No, It's 32-bit.  I wouldn't think it could be a problem with the share
since other computers are able to apply the policy.  Am I wrong?

 

Curt

 

From: James Rankin [mailto:kz2...@googlemail.com] 
Sent: Wednesday, February 15, 2012 1:37 PM
To: NT System Admin Issues
Subject: Re: Group Policy problem

 

It's not an x64 system is it?

Also where are the installation files stored? I had a lot of problems
when someone stored the install files in the netlogon share, moving them
out sorted things.

On 15 February 2012 21:28, Jim Dandy  wrote:

I'm trying to install software via group policy.  If I do resultant set
of policy, it shows the group policies but there is a yellow triangle
with an exclamation point on all of the policies assigning the software
packages.  In RSoP, if I look at the Error Information tab on the
Properties for the group policy, it only shows the date and time. There
are no errors in the system event log indicating the software failed to
install - it just doesn't install when the system is booted.  The issue
only occurs on this one (Vista) computer.  The GPs are working perfectly
on other computers in the OU.  How can I track down the problem?  Thanks
for your help.

 

Curt Finley

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin




-- 
"On two occasions...I have been asked, 'Pray, Mr Babbage, if you put
into the machine wrong figures, will the right answers come out?' I am
not able rightly to apprehend the kind of confusion of ideas that could
provoke such a question."

* IMPORTANT INFORMATION/DISCLAIMER *

This document should be read only by those persons to whom it is
addressed. If you have received this message it was obviously addressed
to you and therefore you can read it, even it we didn't mean to send it
to you. However, if the contents of this email make no sense whatsoever
then you probably were not the intended recipient, or, alternatively,
you are a mindless cretin; either way, you should immediately kill
yourself and destroy your computer (not necessarily in that order). Once
you have taken this action, please contact us.. no, sorry, you can't use
your computer, because you just destroyed it, and possibly also
committed suicide afterwards, but I am starting to digress.. 

The originator of this email is not liable for the transmission of the
information contained in this communication. Or are they? Either way
it's a pretty dull legal query and frankly one I'm not going to dwell
on. But should you have nothing better to do, please feel free to
ruminate on it, and please pass on any concrete conclusions should you
find them. However, if you pass them on via email, be sure to include a
disclaimer regarding liability for transmission.

In the event that the originator did not send this email to you, then
please return it to us and attach a scanned-in picture of your mother's
brother's wife wearing nothing but a kangaroo suit, and we will
immediately refund you exactly half of what you paid for the can of
Whiskas you bought when you went to Pets At Home yesterday. 

We take no responsibility for non-receipt of this email because we are
running Exchange 5.5 and everyone knows how glitchy that can be. In the
event that you do get this message then please note that we take no
responsibility for that either. Nor will we accept any liability, tacit
or implied, for any damage you may or may not incur as a result of
receiving, or not, as the case may be, from time to time,
notwithstanding all liabilities implied or otherwise, ummm, hell, where
was I...umm, no matter what happens, it is NOT, and NEVER WILL BE, OUR
FAULT! 

The comments and opinions expressed herein are my own and NOT those of
my employer, who, if he knew I was sending emails and surfing the
seamier side of the Internet, would cut off my manhood and feed it to me
for afternoon tea. 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to