RE: 2008R2 DNS, Network Location issue
Second NIC and only one default gateway. What you are doing is inherently non-deterministic in Windows. From: Greg Sweers [mailto:gswe...@acts360.com] Sent: Monday, September 10, 2012 12:58 PM To: NT System Admin Issues Subject: 2008R2 DNS, Network Location issue How do you handle servers that have 2 IP ranges on them and you get the wonderful Private network setting which really does not allow anything to communicate properly. We have a secondary IP range listed on these boxes to communicate to an app. The Domain Controllers also have this secondary IP range on their virtual adapter. While this is present, it all works just fine. When you remove this secondary IP range from the DC's virtual adapter, none of the guest machines continue working properly and if you reboot it takes like 20 mins for anything to happen while NLA just holds up everything. Eventually the server comes up but things like Exchange, SQL, DFS don't work. All resolution internally is fine. If we remove the secondary IP range from an affected server, it immediately goes to domain network and most everything works. A reboot and we are back in business on that box. Should I split that secondary IP to a separate NIC across all of our boxes? I know its something do to with how NLA is finding the DC's on that secondary range. I just don't know if I am going to have the same problem with just adding another NIC? Greg Sweers CEO ACTS360.comhttp://www.acts360.com/ P.O. Box 1193 Brandon, FL 33509 813-657-0849 Office 813-758-6850 Cell ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: OT Humor: Apple iPhone 5 Announcement Preview!
That's funny right there, don't care who you are! ; ) Regards, Don Guyer Catholic Health East - Information Technology Enterprise Directory Messaging Services 3805 West Chester Pike, Suite 100, Newtown Square, Pa 19073 email: dgu...@che.orgmailto:dgu...@che.org Office: 610.550.3595 | Cell: 610.955.6528 | Fax: 610.271.9440 For immediate assistance, please open a Service Desk ticket or call the helpdesk @ 610-492-3839. [cid:image001.jpg@01CD900E.1AB7AFC0] From: Roger Wright [mailto:rhw...@gmail.com] Sent: Tuesday, September 11, 2012 10:54 AM To: NT System Admin Issues Subject: OT Humor: Apple iPhone 5 Announcement Preview! http://blogtown.portlandmercury.com/BlogtownPDX/archives/2012/09/10/apple-iphone-5-announcement-preview Roger Wright ___ Congressional Mantra: Spending will continue increase until deficits improve. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin Confidentiality Notice: This e-mail, including any attachments is the property of Catholic Health East and is intended for the sole use of the intended recipient(s). It may contain information that is privileged and confidential. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please delete this message, and reply to the sender regarding the error in a separate email. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmininline: image001.jpg
RE: New Domain Controllers
We usually always keep 1 DC physical but have had the rest virtualized for a while without any major issues. Your sites are well connected T3, so how many sites do you have defined in AD (One per network and then the 2 DC's assigned to that site?) Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.org From: Robert Peterson [mailto:robert.peter...@prin.edu] Sent: Tuesday, September 11, 2012 11:36 AM To: NT System Admin Issues Subject: New Domain Controllers Does anyone have Best Practices for the type and number of DCs they would recommend for the following environment? Happy to hear ideas and receive links to further reading. Thx, Robert Current environment... Two sites with a T3 connecting both. Current DCs: (Qty- 4) Hard server Server 2003, two at each site. 20 various system servers each site. 700 users each site. Each site, has (2) Hyper-V hosts with High Availability within the site. Questions: Should I replace all 4 - hard DCs, with VMs? I was thinking a DC on each Hyper-V host, but not in the Fail-Over cluster...? Do I need 4 DCs, 2 on each site? Should I build at least one hard DC at each site? Been thinking Server 2008R2, should I jump to Server 2012 for the new DCs? Again, would love to hear everyone's ideas, and/or be pointed at some good reading. All the best! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: New Domain Controllers
One domain, two defined sites in AD, two DCs per site, one DC replicates with a DC on the other site, the other two DC do the same. -thx From: Ziots, Edward [mailto:ezi...@lifespan.org] Sent: Tuesday, September 11, 2012 11:23 AM To: NT System Admin Issues Subject: RE: New Domain Controllers We usually always keep 1 DC physical but have had the rest virtualized for a while without any major issues. Your sites are well connected T3, so how many sites do you have defined in AD (One per network and then the 2 DC's assigned to that site?) Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.orgmailto:ezi...@lifespan.org From: Robert Peterson [mailto:robert.peter...@prin.edu]mailto:[mailto:robert.peter...@prin.edu] Sent: Tuesday, September 11, 2012 11:36 AM To: NT System Admin Issues Subject: New Domain Controllers Does anyone have Best Practices for the type and number of DCs they would recommend for the following environment? Happy to hear ideas and receive links to further reading. Thx, Robert Current environment... Two sites with a T3 connecting both. Current DCs: (Qty- 4) Hard server Server 2003, two at each site. 20 various system servers each site. 700 users each site. Each site, has (2) Hyper-V hosts with High Availability within the site. Questions: Should I replace all 4 - hard DCs, with VMs? I was thinking a DC on each Hyper-V host, but not in the Fail-Over cluster...? Do I need 4 DCs, 2 on each site? Should I build at least one hard DC at each site? Been thinking Server 2008R2, should I jump to Server 2012 for the new DCs? Again, would love to hear everyone's ideas, and/or be pointed at some good reading. All the best! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: New Domain Controllers
1 physical DC - isn't this legacy thinking nowadays? From: Ziots, Edward [mailto:ezi...@lifespan.org] Sent: Tuesday, September 11, 2012 9:23 AM To: NT System Admin Issues Subject: RE: New Domain Controllers We usually always keep 1 DC physical but have had the rest virtualized for a while without any major issues. Your sites are well connected T3, so how many sites do you have defined in AD (One per network and then the 2 DC's assigned to that site?) Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.orgmailto:ezi...@lifespan.org From: Robert Peterson [mailto:robert.peter...@prin.edu]mailto:[mailto:robert.peter...@prin.edu] Sent: Tuesday, September 11, 2012 11:36 AM To: NT System Admin Issues Subject: New Domain Controllers Does anyone have Best Practices for the type and number of DCs they would recommend for the following environment? Happy to hear ideas and receive links to further reading. Thx, Robert Current environment... Two sites with a T3 connecting both. Current DCs: (Qty- 4) Hard server Server 2003, two at each site. 20 various system servers each site. 700 users each site. Each site, has (2) Hyper-V hosts with High Availability within the site. Questions: Should I replace all 4 - hard DCs, with VMs? I was thinking a DC on each Hyper-V host, but not in the Fail-Over cluster...? Do I need 4 DCs, 2 on each site? Should I build at least one hard DC at each site? Been thinking Server 2008R2, should I jump to Server 2012 for the new DCs? Again, would love to hear everyone's ideas, and/or be pointed at some good reading. All the best! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: New Domain Controllers
My first question is why are you looking to replace your domain controllers right now? What's the driver? Old hardware at EOL? Off lease? Moving to 2008 FFL/DFL? Single Forest ? Single domain? Going under the assumption that you have a business driver, I would suggest having one physical DC at each site, and one virtual at each site. Christopher Bodnar Enterprise Architect I, Corporate Office of Technology:Enterprise Architecture and Engineering Services Tel 610-807-6459 3900 Burgess Place, Bethlehem, PA 18017 christopher_bod...@glic.com The Guardian Life Insurance Company of America www.guardianlife.com From: Robert Peterson robert.peter...@prin.edu To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Date: 09/11/2012 11:36 AM Subject:New Domain Controllers Does anyone have Best Practices for the type and number of DCs they would recommend for the following environment? Happy to hear ideas and receive links to further reading. Thx, Robert Current environment… Two sites with a T3 connecting both. Current DCs: (Qty- 4) “Hard server” Server 2003, two at each site. 20 various system servers each site. 700 users each site. Each site, has (2) Hyper-V hosts with High Availability within the site. Questions: Should I replace all 4 – “hard” DCs, with VMs? I was thinking a DC on each Hyper-V host, but not in the Fail-Over cluster…? Do I need 4 DCs, 2 on each site? Should I build at least one “hard” DC at each site? Been thinking Server 2008R2, should I jump to Server 2012 for the new DCs? Again, would love to hear everyone’s ideas, and/or be pointed at some good reading. All the best! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin - This message, and any attachments to it, may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are notified that any use, dissemination, distribution, copying, or communication of this message is strictly prohibited. If you have received this message in error, please notify the sender immediately by return e-mail and delete the message and any attachments. Thank you. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin image/jpeg
RE: New Domain Controllers
It has not happened often, but we have experienced both our Hyper-V hosts on one site unable to make quorum until a physical restart of both. My hope would be a DC on the other site would allow domain authentication, but I am not sure I want to put all that trust in our T3. Thus some of my questioning. -Robert From: David Lum [mailto:david@nwea.org] Sent: Tuesday, September 11, 2012 11:38 AM To: NT System Admin Issues Subject: RE: New Domain Controllers 1 physical DC - isn't this legacy thinking nowadays? From: Ziots, Edward [mailto:ezi...@lifespan.org]mailto:[mailto:ezi...@lifespan.org] Sent: Tuesday, September 11, 2012 9:23 AM To: NT System Admin Issues Subject: RE: New Domain Controllers We usually always keep 1 DC physical but have had the rest virtualized for a while without any major issues. Your sites are well connected T3, so how many sites do you have defined in AD (One per network and then the 2 DC's assigned to that site?) Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.orgmailto:ezi...@lifespan.org From: Robert Peterson [mailto:robert.peter...@prin.edu]mailto:[mailto:robert.peter...@prin.edu] Sent: Tuesday, September 11, 2012 11:36 AM To: NT System Admin Issues Subject: New Domain Controllers Does anyone have Best Practices for the type and number of DCs they would recommend for the following environment? Happy to hear ideas and receive links to further reading. Thx, Robert Current environment... Two sites with a T3 connecting both. Current DCs: (Qty- 4) Hard server Server 2003, two at each site. 20 various system servers each site. 700 users each site. Each site, has (2) Hyper-V hosts with High Availability within the site. Questions: Should I replace all 4 - hard DCs, with VMs? I was thinking a DC on each Hyper-V host, but not in the Fail-Over cluster...? Do I need 4 DCs, 2 on each site? Should I build at least one hard DC at each site? Been thinking Server 2008R2, should I jump to Server 2012 for the new DCs? Again, would love to hear everyone's ideas, and/or be pointed at some good reading. All the best! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: New Domain Controllers
Says who? From: David Lum [mailto:david@nwea.org] Sent: Tuesday, September 11, 2012 12:38 PM To: NT System Admin Issues Subject: RE: New Domain Controllers 1 physical DC - isn't this legacy thinking nowadays? From: Ziots, Edward [mailto:ezi...@lifespan.org]mailto:[mailto:ezi...@lifespan.org] Sent: Tuesday, September 11, 2012 9:23 AM To: NT System Admin Issues Subject: RE: New Domain Controllers We usually always keep 1 DC physical but have had the rest virtualized for a while without any major issues. Your sites are well connected T3, so how many sites do you have defined in AD (One per network and then the 2 DC's assigned to that site?) Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.orgmailto:ezi...@lifespan.org From: Robert Peterson [mailto:robert.peter...@prin.edu]mailto:[mailto:robert.peter...@prin.edu] Sent: Tuesday, September 11, 2012 11:36 AM To: NT System Admin Issues Subject: New Domain Controllers Does anyone have Best Practices for the type and number of DCs they would recommend for the following environment? Happy to hear ideas and receive links to further reading. Thx, Robert Current environment... Two sites with a T3 connecting both. Current DCs: (Qty- 4) Hard server Server 2003, two at each site. 20 various system servers each site. 700 users each site. Each site, has (2) Hyper-V hosts with High Availability within the site. Questions: Should I replace all 4 - hard DCs, with VMs? I was thinking a DC on each Hyper-V host, but not in the Fail-Over cluster...? Do I need 4 DCs, 2 on each site? Should I build at least one hard DC at each site? Been thinking Server 2008R2, should I jump to Server 2012 for the new DCs? Again, would love to hear everyone's ideas, and/or be pointed at some good reading. All the best! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: New Domain Controllers
Right. The main concern I know about VM's DC's is to make sure the PDC emulator gets it's time from an external source and that the rest of the forest/domain structure rely on the PDCe. PDC VM getting it's time from the host isn't how MS suggests how to do it. Also make sure you can get into the host systems with local credentials! I have just made it habit to log into my Hyper-V hosts with local credentials so if the DC's are down/disconnected I'm not in a panic of crap...how do I get in? Dave From: Heaton, Joseph@DFG [mailto:jhea...@dfg.ca.gov] Sent: Tuesday, September 11, 2012 9:41 AM To: NT System Admin Issues Subject: RE: New Domain Controllers We've had all our DCs virtualized here for more than the 3 years I've been here. Just have to make sure they don't end up on the same host, and you should be ok. Physical DC does remove any worries about your virtual environment blowing up. As far as the upgrade, I personally would go with 2008R2, since 2012 just came out. We're going to be standing up a couple of 2012 boxes, but only for features that 2012 is supposed to do a lot better and easier than 2008R2 (DA for one). 2 DCs per site sounds like it may be overkill, but redundancy is a good thing too, if it's affordable for you. Joe Heaton ITB - Enterprise Server Support From: Robert Peterson [mailto:robert.peter...@prin.edu]mailto:[mailto:robert.peter...@prin.edu] Sent: Tuesday, September 11, 2012 8:36 AM To: Heaton, Joseph@DFG; NT System Admin Issues Subject: New Domain Controllers Does anyone have Best Practices for the type and number of DCs they would recommend for the following environment? Happy to hear ideas and receive links to further reading. Thx, Robert Current environment... Two sites with a T3 connecting both. Current DCs: (Qty- 4) Hard server Server 2003, two at each site. 20 various system servers each site. 700 users each site. Each site, has (2) Hyper-V hosts with High Availability within the site. Questions: Should I replace all 4 - hard DCs, with VMs? I was thinking a DC on each Hyper-V host, but not in the Fail-Over cluster...? Do I need 4 DCs, 2 on each site? Should I build at least one hard DC at each site? Been thinking Server 2008R2, should I jump to Server 2012 for the new DCs? Again, would love to hear everyone's ideas, and/or be pointed at some good reading. All the best! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: I don't see any problems with this
LOL - nothing big brother about that AT ALL. How can we spin having control of everything and make it sound like a good idea? All your base are belong to us. -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Tuesday, September 11, 2012 9:48 AM To: NT System Admin Issues Subject: I don't see any problems with this Do you? Kurt http://www.nextgov.com/emerging-tech/2012/09/get-ready-computers-worldwide-automatically-smother-cyber-strikes/57977/ By Aliya Sternstein Nextgov September 10, 2012 The federal government is strategizing to build a virtual community that would prompt computers worldwide to instantly, en mass, suppress cyberattacks, sometimes without humans at the keyboard. The so-called cyber ecosystem would take “collective action” to galvanize cooperation among networks, external devices, and consumers, the Obama administration announced today. “Computer systems, devices, applications and users will automatically work together in near real time to anticipate and prevent cyberattacks, automatically respond to attacks while continuing normal operations, evolve to address new threats, limit the spread of attacks across participating devices,” as well as share timely security information, a government research solicitation stated. The Homeland Security Department and National Institute of Standards and Technology are seeking public input on the potential benefits and challenges of the approach before forging ahead with construction. [...] ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: New Domain Controllers
Biggest driver is Old Hardware, the schema has been updated quite a few times, since Server 2003, to enable Exchange 2010, SCCM, SharePoint, etc. Local system disks are getting tight for space. Thanks for the idea. From: Christopher Bodnar [mailto:christopher_bod...@glic.com] Sent: Tuesday, September 11, 2012 11:44 AM To: NT System Admin Issues Subject: Re: New Domain Controllers My first question is why are you looking to replace your domain controllers right now? What's the driver? Old hardware at EOL? Off lease? Moving to 2008 FFL/DFL? Single Forest ? Single domain? Going under the assumption that you have a business driver, I would suggest having one physical DC at each site, and one virtual at each site. Christopher Bodnar Enterprise Architect I, Corporate Office of Technology:Enterprise Architecture and Engineering Services Tel 610-807-6459 3900 Burgess Place, Bethlehem, PA 18017 christopher_bod...@glic.commailto: [cid:image001.jpg@01CD9015.9631EE20] The Guardian Life Insurance Company of America www.guardianlife.comhttp://www.guardianlife.com/ From:Robert Peterson robert.peter...@prin.edumailto:robert.peter...@prin.edu To:NT System Admin Issues ntsysadmin@lyris.sunbelt-software.commailto:ntsysadmin@lyris.sunbelt-software.com Date:09/11/2012 11:36 AM Subject:New Domain Controllers Does anyone have Best Practices for the type and number of DCs they would recommend for the following environment? Happy to hear ideas and receive links to further reading. Thx, Robert Current environment… Two sites with a T3 connecting both. Current DCs: (Qty- 4) “Hard server” Server 2003, two at each site. 20 various system servers each site. 700 users each site. Each site, has (2) Hyper-V hosts with High Availability within the site. Questions: Should I replace all 4 – “hard” DCs, with VMs? I was thinking a DC on each Hyper-V host, but not in the Fail-Over cluster…? Do I need 4 DCs, 2 on each site? Should I build at least one “hard” DC at each site? Been thinking Server 2008R2, should I jump to Server 2012 for the new DCs? Again, would love to hear everyone’s ideas, and/or be pointed at some good reading. All the best! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin - This message, and any attachments to it, may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are notified that any use, dissemination, distribution, copying, or communication of this message is strictly prohibited. If you have received this message in error, please notify the sender immediately by return e-mail and delete the message and any attachments. Thank you. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin inline: image001.jpg
RE: I don't see any problems with this
You are joking, right? -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Tuesday, September 11, 2012 12:48 PM To: NT System Admin Issues Subject: I don't see any problems with this Do you? Kurt http://www.nextgov.com/emerging-tech/2012/09/get-ready-computers-worldwide-automatically-smother-cyber-strikes/57977/ By Aliya Sternstein Nextgov September 10, 2012 The federal government is strategizing to build a virtual community that would prompt computers worldwide to instantly, en mass, suppress cyberattacks, sometimes without humans at the keyboard. The so-called cyber ecosystem would take “collective action” to galvanize cooperation among networks, external devices, and consumers, the Obama administration announced today. “Computer systems, devices, applications and users will automatically work together in near real time to anticipate and prevent cyberattacks, automatically respond to attacks while continuing normal operations, evolve to address new threats, limit the spread of attacks across participating devices,” as well as share timely security information, a government research solicitation stated. The Homeland Security Department and National Institute of Standards and Technology are seeking public input on the potential benefits and challenges of the approach before forging ahead with construction. [...] ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: New Domain Controllers
Don't know, hence the ? From: Michael B. Smith [mailto:mich...@smithcons.com] Sent: Tuesday, September 11, 2012 9:52 AM To: NT System Admin Issues Subject: RE: New Domain Controllers Says who? From: David Lum [mailto:david@nwea.org]mailto:[mailto:david@nwea.org] Sent: Tuesday, September 11, 2012 12:38 PM To: NT System Admin Issues Subject: RE: New Domain Controllers 1 physical DC - isn't this legacy thinking nowadays? From: Ziots, Edward [mailto:ezi...@lifespan.org]mailto:[mailto:ezi...@lifespan.org] Sent: Tuesday, September 11, 2012 9:23 AM To: NT System Admin Issues Subject: RE: New Domain Controllers We usually always keep 1 DC physical but have had the rest virtualized for a while without any major issues. Your sites are well connected T3, so how many sites do you have defined in AD (One per network and then the 2 DC's assigned to that site?) Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.orgmailto:ezi...@lifespan.org From: Robert Peterson [mailto:robert.peter...@prin.edu]mailto:[mailto:robert.peter...@prin.edu] Sent: Tuesday, September 11, 2012 11:36 AM To: NT System Admin Issues Subject: New Domain Controllers Does anyone have Best Practices for the type and number of DCs they would recommend for the following environment? Happy to hear ideas and receive links to further reading. Thx, Robert Current environment... Two sites with a T3 connecting both. Current DCs: (Qty- 4) Hard server Server 2003, two at each site. 20 various system servers each site. 700 users each site. Each site, has (2) Hyper-V hosts with High Availability within the site. Questions: Should I replace all 4 - hard DCs, with VMs? I was thinking a DC on each Hyper-V host, but not in the Fail-Over cluster...? Do I need 4 DCs, 2 on each site? Should I build at least one hard DC at each site? Been thinking Server 2008R2, should I jump to Server 2012 for the new DCs? Again, would love to hear everyone's ideas, and/or be pointed at some good reading. All the best! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: New Domain Controllers
Agreed, I've usually leaned towards at least one physical DC for DNS resolution in the event of a full virtual shutdown/restart (which doesn't necessarily have to be a DC, but usually is), but it's nice to have some AD authentication available for people to log on to workstations and fire up the virtualization console you're using without any hassle in the same situation. On 11 September 2012 17:51, Michael B. Smith mich...@smithcons.com wrote: Says who? ** ** *From:* David Lum [mailto:david@nwea.org] *Sent:* Tuesday, September 11, 2012 12:38 PM *To:* NT System Admin Issues *Subject:* RE: New Domain Controllers ** ** 1 physical DC – isn’t this legacy thinking nowadays? ** ** *From:* Ziots, Edward [mailto:ezi...@lifespan.org] *Sent:* Tuesday, September 11, 2012 9:23 AM *To:* NT System Admin Issues *Subject:* RE: New Domain Controllers ** ** We usually always keep 1 DC physical but have had the rest virtualized for a while without any major issues. Your sites are well connected T3, so how many sites do you have defined in AD (One per network and then the 2 DC’s assigned to that site?) ** ** Z ** ** Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.org ** ** *From:* Robert Peterson [mailto:robert.peter...@prin.edu] *Sent:* Tuesday, September 11, 2012 11:36 AM *To:* NT System Admin Issues *Subject:* New Domain Controllers ** ** Does anyone have Best Practices for the type and number of DCs they would recommend for the following environment? Happy to hear ideas and receive links to further reading. Thx, Robert ** ** Current environment… Two sites with a T3 connecting both. Current DCs: (Qty- 4) “Hard server” Server 2003, *two at each site*. 20 various system servers each site. 700 users each site. ** ** Each site, has (2) Hyper-V hosts with High Availability within the site.** ** ** ** Questions: Should I replace all 4 – “hard” DCs, with VMs? I was thinking a DC on each Hyper-V host, but not in the Fail-Over cluster…? Do I need 4 DCs, 2 on each site? Should I build at least one “hard” DC at each site? ** ** Been thinking Server 2008R2, should I jump to Server 2012 for the new DCs? ** ** ** ** Again, would love to hear everyone’s ideas, and/or be pointed at some good reading. All the best! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin -- http://appsensebigot.blogspot.co.uk IMPORTANT INFORMATION/DISCLAIMER I certainly don't have time to monitor the content of e-mail sent and received via this account for the purposes of ensuring compliance with anyone's policies and procedures. I am pretty sure that somewhere in UK legislation there is some politically-correct drivel that stipulates I must never send or store e-mails or attachments that are obscene, indecent, sexist, racist, defamatory, abusive, in breach of copyright, encrypted, amusing, overly long, slightly opinionated, anonymous, likely to harm animals or hurt the feelings of an as-yet-unspecified or as-yet-nonexistent minority (such as extraterrestrial eggplants). Emails of this nature sent in or out of this account may be intercepted and stopped by the system, but it's a long shot. This being the UK, even if I was prosecuted for breach of said email guidelines, I'd probably walk with a suspended sentence anyway, but if I'd forgotten to pay my car insurance, I'd most certainly be hung, drawn and quartered. I am not responsible for any changes made to the message after it has been sent, in more or less the same way that cyclozine
RE: I don't see any problems with this
Nope - it will be just like all the other botnets -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Tuesday, September 11, 2012 11:48 AM To: NT System Admin Issues Subject: I don't see any problems with this Do you? Kurt http://www.nextgov.com/emerging-tech/2012/09/get-ready-computers-worldwide-automatically-smother-cyber-strikes/57977/ By Aliya Sternstein Nextgov September 10, 2012 The federal government is strategizing to build a virtual community that would prompt computers worldwide to instantly, en mass, suppress cyberattacks, sometimes without humans at the keyboard. The so-called cyber ecosystem would take “collective action” to galvanize cooperation among networks, external devices, and consumers, the Obama administration announced today. “Computer systems, devices, applications and users will automatically work together in near real time to anticipate and prevent cyberattacks, automatically respond to attacks while continuing normal operations, evolve to address new threats, limit the spread of attacks across participating devices,” as well as share timely security information, a government research solicitation stated. The Homeland Security Department and National Institute of Standards and Technology are seeking public input on the potential benefits and challenges of the approach before forging ahead with construction. [...] ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin The information contained in this e-mail, and any attachments hereto, is from The American Society for the Prevention of Cruelty to Animals® (ASPCA®) and is intended only for use by the addressee(s) named herein and may contain legally privileged and/or confidential information. If you are not the intended recipient of this e-mail, you are hereby notified that any dissemination, distribution, copying or use of the contents of this e-mail, and any attachments hereto, is strictly prohibited. If you have received this e-mail in error, please immediately notify me by reply email and permanently delete the original and any copy of this e-mail and any printout thereof. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: I don't see any problems with this
And SkyNet is born... - Sean On Sep 11, 2012, at 8:47 AM, Kurt Buff kurt.b...@gmail.com wrote: Do you? Kurt http://www.nextgov.com/emerging-tech/2012/09/get-ready-computers-worldwide-automatically-smother-cyber-strikes/57977/ By Aliya Sternstein Nextgov September 10, 2012 The federal government is strategizing to build a virtual community that would prompt computers worldwide to instantly, en mass, suppress cyberattacks, sometimes without humans at the keyboard. The so-called cyber ecosystem would take “collective action” to galvanize cooperation among networks, external devices, and consumers, the Obama administration announced today. “Computer systems, devices, applications and users will automatically work together in near real time to anticipate and prevent cyberattacks, automatically respond to attacks while continuing normal operations, evolve to address new threats, limit the spread of attacks across participating devices,” as well as share timely security information, a government research solicitation stated. The Homeland Security Department and National Institute of Standards and Technology are seeking public input on the potential benefits and challenges of the approach before forging ahead with construction. [...] ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: I don't see any problems with this
No, not until that system gets hacked... -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Tuesday, September 11, 2012 11:48 AM To: NT System Admin Issues Subject: I don't see any problems with this Do you? Kurt http://www.nextgov.com/emerging-tech/2012/09/get-ready-computers-worldwide- automatically-smother-cyber-strikes/57977/ By Aliya Sternstein Nextgov September 10, 2012 The federal government is strategizing to build a virtual community that would prompt computers worldwide to instantly, en mass, suppress cyberattacks, sometimes without humans at the keyboard. The so-called cyber ecosystem would take “collective action” to galvanize cooperation among networks, external devices, and consumers, the Obama administration announced today. “Computer systems, devices, applications and users will automatically work together in near real time to anticipate and prevent cyberattacks, automatically respond to attacks while continuing normal operations, evolve to address new threats, limit the spread of attacks across participating devices,” as well as share timely security information, a government research solicitation stated. The Homeland Security Department and National Institute of Standards and Technology are seeking public input on the potential benefits and challenges of the approach before forging ahead with construction. [...] ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: I don't see any problems with this
Skynet, here we come. Joe Heaton ITB – Enterprise Server Support -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Tuesday, September 11, 2012 9:48 AM To: Heaton, Joseph@DFG; NT System Admin Issues Subject: I don't see any problems with this Do you? Kurt http://www.nextgov.com/emerging-tech/2012/09/get-ready-computers-worldwide-automatically-smother-cyber-strikes/57977/ By Aliya Sternstein Nextgov September 10, 2012 The federal government is strategizing to build a virtual community that would prompt computers worldwide to instantly, en mass, suppress cyberattacks, sometimes without humans at the keyboard. The so-called cyber ecosystem would take “collective action” to galvanize cooperation among networks, external devices, and consumers, the Obama administration announced today. “Computer systems, devices, applications and users will automatically work together in near real time to anticipate and prevent cyberattacks, automatically respond to attacks while continuing normal operations, evolve to address new threats, limit the spread of attacks across participating devices,” as well as share timely security information, a government research solicitation stated. The Homeland Security Department and National Institute of Standards and Technology are seeking public input on the potential benefits and challenges of the approach before forging ahead with construction. [...] ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: New Domain Controllers
It's not legacy thinking IMO. From: David Lum [mailto:david@nwea.org] Sent: Tuesday, September 11, 2012 1:14 PM To: NT System Admin Issues Subject: RE: New Domain Controllers Don't know, hence the ? From: Michael B. Smith [mailto:mich...@smithcons.com]mailto:[mailto:mich...@smithcons.com] Sent: Tuesday, September 11, 2012 9:52 AM To: NT System Admin Issues Subject: RE: New Domain Controllers Says who? From: David Lum [mailto:david@nwea.org]mailto:[mailto:david@nwea.org] Sent: Tuesday, September 11, 2012 12:38 PM To: NT System Admin Issues Subject: RE: New Domain Controllers 1 physical DC - isn't this legacy thinking nowadays? From: Ziots, Edward [mailto:ezi...@lifespan.org]mailto:[mailto:ezi...@lifespan.org] Sent: Tuesday, September 11, 2012 9:23 AM To: NT System Admin Issues Subject: RE: New Domain Controllers We usually always keep 1 DC physical but have had the rest virtualized for a while without any major issues. Your sites are well connected T3, so how many sites do you have defined in AD (One per network and then the 2 DC's assigned to that site?) Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.orgmailto:ezi...@lifespan.org From: Robert Peterson [mailto:robert.peter...@prin.edu]mailto:[mailto:robert.peter...@prin.edu] Sent: Tuesday, September 11, 2012 11:36 AM To: NT System Admin Issues Subject: New Domain Controllers Does anyone have Best Practices for the type and number of DCs they would recommend for the following environment? Happy to hear ideas and receive links to further reading. Thx, Robert Current environment... Two sites with a T3 connecting both. Current DCs: (Qty- 4) Hard server Server 2003, two at each site. 20 various system servers each site. 700 users each site. Each site, has (2) Hyper-V hosts with High Availability within the site. Questions: Should I replace all 4 - hard DCs, with VMs? I was thinking a DC on each Hyper-V host, but not in the Fail-Over cluster...? Do I need 4 DCs, 2 on each site? Should I build at least one hard DC at each site? Been thinking Server 2008R2, should I jump to Server 2012 for the new DCs? Again, would love to hear everyone's ideas, and/or be pointed at some good reading. All the best! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: I don't see any problems with this
Not at all... In other news, I'm moving to Montana, living off the land and going off the grid... On Tue, Sep 11, 2012 at 12:47 PM, Kurt Buff kurt.b...@gmail.com wrote: Do you? Kurt http://www.nextgov.com/emerging-tech/2012/09/get-ready-computers-worldwide-automatically-smother-cyber-strikes/57977/ By Aliya Sternstein Nextgov September 10, 2012 The federal government is strategizing to build a virtual community that would prompt computers worldwide to instantly, en mass, suppress cyberattacks, sometimes without humans at the keyboard. The so-called cyber ecosystem would take “collective action” to galvanize cooperation among networks, external devices, and consumers, the Obama administration announced today. “Computer systems, devices, applications and users will automatically work together in near real time to anticipate and prevent cyberattacks, automatically respond to attacks while continuing normal operations, evolve to address new threats, limit the spread of attacks across participating devices,” as well as share timely security information, a government research solicitation stated. The Homeland Security Department and National Institute of Standards and Technology are seeking public input on the potential benefits and challenges of the approach before forging ahead with construction. [...] ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: I don't see any problems with this
Having the government control everything is a good thing, right? It would never be used for evil because governments always do the right thing. And they could never mistake things some might deem to be a good thing as an attack, would they? Nor would they use it to control us, or use it to suppress alternate thoughts. Nah, I love the thought. /sarcasm -Original Message- From: David Lum [mailto:david@nwea.org] Sent: Tuesday, September 11, 2012 10:02 AM To: NT System Admin Issues Subject: RE: I don't see any problems with this LOL - nothing big brother about that AT ALL. How can we spin having control of everything and make it sound like a good idea? All your base are belong to us. -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Tuesday, September 11, 2012 9:48 AM To: NT System Admin Issues Subject: I don't see any problems with this Do you? Kurt http://www.nextgov.com/emerging-tech/2012/09/get-ready-computers-worldwide-automatically-smother-cyber-strikes/57977/ By Aliya Sternstein Nextgov September 10, 2012 The federal government is strategizing to build a virtual community that would prompt computers worldwide to instantly, en mass, suppress cyberattacks, sometimes without humans at the keyboard. The so-called cyber ecosystem would take collective action to galvanize cooperation among networks, external devices, and consumers, the Obama administration announced today. Computer systems, devices, applications and users will automatically work together in near real time to anticipate and prevent cyberattacks, automatically respond to attacks while continuing normal operations, evolve to address new threats, limit the spread of attacks across participating devices, as well as share timely security information, a government research solicitation stated. The Homeland Security Department and National Institute of Standards and Technology are seeking public input on the potential benefits and challenges of the approach before forging ahead with construction. [...] ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin -- For more information about Lewis and Roca LLP, please go to www.lewisandroca.com. Phoenix (602)262-5311 Reno (775)823-2900 Tucson (520)622-2090Albuquerque (505)764-5400 Las Vegas (702)949-8200 Silicon Valley (650)391-1380 This message is intended only for the use of the individual or entity to which it is addressed. If the reader of this message is not the intended recipient, or the employee or agent responsible for delivering the message to the intended recipient, you are hereby notified that any dissemination, distribution or copying of this message is strictly prohibited. If you have received this communication in error, please notify us immediately by replying to the sender of this E-Mail by return E-Mail or by telephone. In accordance with Internal Revenue Service Circular 230, we advise you that if this email contains any tax advice, such tax advice was not intended or written to be used, and it cannot be used, by any taxpayer for the purpose of avoiding penalties that may be imposed on the taxpayer ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: I don't see any problems with this
Sorry - forgot the sarcasm tags. On Tue, Sep 11, 2012 at 10:04 AM, Michael B. Smith mich...@smithcons.com wrote: You are joking, right? -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Tuesday, September 11, 2012 12:48 PM To: NT System Admin Issues Subject: I don't see any problems with this Do you? Kurt http://www.nextgov.com/emerging-tech/2012/09/get-ready-computers-worldwide-automatically-smother-cyber-strikes/57977/ By Aliya Sternstein Nextgov September 10, 2012 The federal government is strategizing to build a virtual community that would prompt computers worldwide to instantly, en mass, suppress cyberattacks, sometimes without humans at the keyboard. The so-called cyber ecosystem would take “collective action” to galvanize cooperation among networks, external devices, and consumers, the Obama administration announced today. “Computer systems, devices, applications and users will automatically work together in near real time to anticipate and prevent cyberattacks, automatically respond to attacks while continuing normal operations, evolve to address new threats, limit the spread of attacks across participating devices,” as well as share timely security information, a government research solicitation stated. The Homeland Security Department and National Institute of Standards and Technology are seeking public input on the potential benefits and challenges of the approach before forging ahead with construction. [...] ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: I don't see any problems with this
Oh yes - the pre-crime unit will be by your office today to escort you to the kindness facility for thought retraining. Please be prepared. Kurt On Tue, Sep 11, 2012 at 10:04 AM, Michael B. Smith mich...@smithcons.com wrote: You are joking, right? -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Tuesday, September 11, 2012 12:48 PM To: NT System Admin Issues Subject: I don't see any problems with this Do you? Kurt http://www.nextgov.com/emerging-tech/2012/09/get-ready-computers-worldwide-automatically-smother-cyber-strikes/57977/ By Aliya Sternstein Nextgov September 10, 2012 The federal government is strategizing to build a virtual community that would prompt computers worldwide to instantly, en mass, suppress cyberattacks, sometimes without humans at the keyboard. The so-called cyber ecosystem would take “collective action” to galvanize cooperation among networks, external devices, and consumers, the Obama administration announced today. “Computer systems, devices, applications and users will automatically work together in near real time to anticipate and prevent cyberattacks, automatically respond to attacks while continuing normal operations, evolve to address new threats, limit the spread of attacks across participating devices,” as well as share timely security information, a government research solicitation stated. The Homeland Security Department and National Institute of Standards and Technology are seeking public input on the potential benefits and challenges of the approach before forging ahead with construction. [...] ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: IIS tricks
Several ways to accomplish this, but one way is to put a default.asp in the root folder that contains -snip-- % If Request.ServerVariables(HTTP_HOST) = http://hostname.mydomain.com; Then Response.Redirect (http://hostname.mydomain.com/thissite/page88;) End If If Request.ServerVariables(HTTP_HOST) = http://hostname2.mydomain.com; Then Response.Redirect (http://hostname.mydomain.com/othersite/page7;) End If % -snip-- You'll need to enable asp in IIS if its not already. I'm sure it's also possible to do in asp.net if that's enabled. You'll also want to make sure that default.asp is the first document returned by the website. From: David Lum [mailto:david@nwea.org] Sent: Tuesday, September 11, 2012 2:57 PM To: NT System Admin Issues Subject: IIS tricks Is it possible for a single IIS7 server to host two web sites and have the following: http://hostname.mydomain.com auto-forward to http://hostname.mydomain.com/thissite/page88 -and- http://hostname2.mydomain.com auto-forward to http://hostname.mydomain.com/othersite/page7 The first one is easy enough, I am not sure I can ALSO do the 2nd one on the same server. David Lum Systems Engineer // NWEATM Office 503.548.5229 // Cell (voice/text) 503.267.9764 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: IIS tricks
Yes it is. Look for HTTP Redirect in IIS under your web app. -T On Tue, Sep 11, 2012 at 12:57 PM, David Lum david@nwea.org wrote: Is it possible for a single IIS7 server to host two web sites and have the following: ** ** http://hostname.mydomain.com auto-forward to http://hostname.mydomain.com/thissite/page88 -and- http://hostname2.mydomain.com auto-forward to http://hostname.mydomain.com/othersite/page7 ** ** The first one is easy enough, I am not sure I can ALSO do the 2nd one on the same server. *David Lum* Systems Engineer // NWEATM Office 503.548.5229 //* *Cell (voice/text) 503.267.9764 ** ** ** ** ** ** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: I don't see any problems with this
I knew that one day it would become criminal to be a libertarian. -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Tuesday, September 11, 2012 3:07 PM To: NT System Admin Issues Subject: Re: I don't see any problems with this Oh yes - the pre-crime unit will be by your office today to escort you to the kindness facility for thought retraining. Please be prepared. Kurt On Tue, Sep 11, 2012 at 10:04 AM, Michael B. Smith mich...@smithcons.com wrote: You are joking, right? -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Tuesday, September 11, 2012 12:48 PM To: NT System Admin Issues Subject: I don't see any problems with this Do you? Kurt http://www.nextgov.com/emerging-tech/2012/09/get-ready-computers-world wide-automatically-smother-cyber-strikes/57977/ By Aliya Sternstein Nextgov September 10, 2012 The federal government is strategizing to build a virtual community that would prompt computers worldwide to instantly, en mass, suppress cyberattacks, sometimes without humans at the keyboard. The so-called cyber ecosystem would take “collective action” to galvanize cooperation among networks, external devices, and consumers, the Obama administration announced today. “Computer systems, devices, applications and users will automatically work together in near real time to anticipate and prevent cyberattacks, automatically respond to attacks while continuing normal operations, evolve to address new threats, limit the spread of attacks across participating devices,” as well as share timely security information, a government research solicitation stated. The Homeland Security Department and National Institute of Standards and Technology are seeking public input on the potential benefits and challenges of the approach before forging ahead with construction. [...] ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: I don't see any problems with this
3 felonies a day... On Tue, Sep 11, 2012 at 4:43 PM, Michael B. Smith mich...@smithcons.comwrote: I knew that one day it would become criminal to be a libertarian. -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Tuesday, September 11, 2012 3:07 PM To: NT System Admin Issues Subject: Re: I don't see any problems with this Oh yes - the pre-crime unit will be by your office today to escort you to the kindness facility for thought retraining. Please be prepared. Kurt On Tue, Sep 11, 2012 at 10:04 AM, Michael B. Smith mich...@smithcons.com wrote: You are joking, right? -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Tuesday, September 11, 2012 12:48 PM To: NT System Admin Issues Subject: I don't see any problems with this Do you? Kurt http://www.nextgov.com/emerging-tech/2012/09/get-ready-computers-world wide-automatically-smother-cyber-strikes/57977/ By Aliya Sternstein Nextgov September 10, 2012 The federal government is strategizing to build a virtual community that would prompt computers worldwide to instantly, en mass, suppress cyberattacks, sometimes without humans at the keyboard. The so-called cyber ecosystem would take “collective action” to galvanize cooperation among networks, external devices, and consumers, the Obama administration announced today. “Computer systems, devices, applications and users will automatically work together in near real time to anticipate and prevent cyberattacks, automatically respond to attacks while continuing normal operations, evolve to address new threats, limit the spread of attacks across participating devices,” as well as share timely security information, a government research solicitation stated. The Homeland Security Department and National Institute of Standards and Technology are seeking public input on the potential benefits and challenges of the approach before forging ahead with construction. [...] ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: IIS tricks
Sure, just set up two virtual hosts, and use the Redirect all requests to this exact destination option on the second one. Either use the Only redirect requests to content in this directory option on the first vhost, or write a redirect into default.aspx. On Tue, Sep 11, 2012 at 3:57 PM, David Lum david@nwea.org wrote: Is it possible for a single IIS7 server to host two web sites and have the following: http://hostname.mydomain.com auto-forward to http://hostname.mydomain.com/thissite/page88 -and- http://hostname2.mydomain.com auto-forward to http://hostname.mydomain.com/othersite/page7 The first one is easy enough, I am not sure I can ALSO do the 2nd one on the same server. David Lum Systems Engineer // NWEATM Office 503.548.5229 // Cell (voice/text) 503.267.9764 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Managing down-level servers using Server Manager from Server 2012
But not the inverse, I see. This will prove interesting... Kurt On Tue, Sep 11, 2012 at 1:52 PM, Michael B. Smith mich...@smithcons.com wrote: I predict this “how do I” question will be asked at least 500 times in the next year. Therefore, I’m posting the solution now. J http://blogs.technet.com/b/servermanager/archive/2012/09/10/managing-downlevel-windows-based-servers-from-server-manager-in-windows-server-2012.aspx ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin