Yes, I have tested this too and what you say is correct. One thing you might want to
bear in mind is that it is not necessary to set Block Inheritance on the OU in
question. You can create a new GPO with different Account Policy settings and link
that GPO to the OU. The new settings will
We are currently running in a mixed Windows 2000 / Novell environment and preparing to
switch to strictly a Windows 2000 environment and all of our clients are running
Windows XP. But we are faced with the problem of delivering the applications similar
to Novell's Delivered Applications. We
We are also a mixed enviroment and are encountering a similiar problem.
It appears Netware is more developed in that area.
Rene
- Original Message -
From: RICHARD HELMS - 5535 [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Tuesday, January 28, 2003 8:05 AM
Subject: [ActiveDir] AD
Tony, et. al. -
I understand this to be the behavior (have observed it - yes, this is
the way that it works), but would someone care to help me understand why
you would NOT want local accounts subject to the same account
restrictions that are placed on domain accounts?
From a security
Your best bet is to try and get a copy of
Windows 2003 Web Server.
This only includes the IIS Component on
the CD.
Thanks,
Yusuf
-Original Message-
From: Snow Brent Civ OO-ALC/MACL
[mailto:[EMAIL PROTECTED]]
Sent: 27 January, 2003 23:03 PM
To: [EMAIL PROTECTED]
Subject:
Title: Message
Not sure I follow what you mean!
-Original Message-
From: Robert Moir
[mailto:[EMAIL PROTECTED]]
Sent: Tuesday, January 28, 2003
7:46 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] IIS 6
Put both CDs in the same
microwave.
Robert Moir
Title: Message
It was a joke
-Original Message-
From: Snow Brent Civ OO-ALC/MACL
[mailto:[EMAIL PROTECTED]]
Sent: Tuesday, January 28, 2003 10:22 AM
To: '[EMAIL PROTECTED]'
Subject: RE: [ActiveDir] IIS 6
Not sure I follow what
you mean!
-Original Message-
From:
Title: Message
HAHAHAHAHA
Hey, thats not helpful!! (Funny
though)
Brad Martin
Go Daddy Software
-Original Message-
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Robert Moir
Sent: Tuesday, January 28, 2003
7:46 AM
To: [EMAIL PROTECTED]
Subject: RE:
Is it possible, or anyone know of any tips on how to get a linux box
with an 8 port modem card (dialin server) to auth via an AD DC to get
permissions, etc? I wanted to try to mess around with this..
Thanks.
List info : http://www.activedir.org/mail_list.htm
List FAQ:
Title: Message
I have
been told that they will not. Also, IIS 6 will only run under W2K3. On the under
hand up grading is easy, and W2K3 is a lot more stable. I just wish they would
stop monkeying around with start menu. I keeping having to change everything
back to the classical.
Robert E
Easiets if you're using Red Hat. Which distro are you using? Anyways
here's the info:
http://online.securityfocus.com/infocus/1563
-Chris
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]] On Behalf Of Weston Rogers
Sent: Tuesday, January 28, 2003 8:46 AM
To: [EMAIL
We need to come up with a service account to use in running
services in the enterprise, but I have a situation where Im going to
need to give that account and password to developers so they can use it too, so
obviously I dont want to just stick it in Domain Admins and forget about
it. Are
Yup.. Redhate.. Thanks!!
-Original Message-
From: Christopher Hummert [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, January 28, 2003 11:54 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Active Directory Authentication via ras
Easiets if you're using Red Hat. Which distro are you using?
Apologies again, I was reviewing old
mail from the list and some of it had the return receipt flagged from the
original sender. I made an agent to remove the RR's from all mail
from this list, so you should not receive Spam from me anymore.
It seems odd though, that some people
would send mail
Our domain service accounts are just members of the Domain Users group, nothing
special there. That's all you need to manage a process token across devices. You can
further restrict them by specifying a list of machines that service accounts are
allowed to log on to.
On the machine
That's useful, thanks.
Brad Martin
Go Daddy Software
-Original Message-
From: Todd Povilaitis [mailto:[EMAIL PROTECTED]] On Behalf
Of Todd Povilaitis
Sent: Tuesday, January 28, 2003 10:42 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Service account
Our domain service
A"service account" only needs rights to logon as a service and rights
to whatever resources theservice needsaccess to, for example; shared
directoriesor printers...
Dave D [EMAIL PROTECTED] 01/28/03 01:08PM
We need to come up with a service
account to use in running services in the
Hello,
Does anyone know how to find out direct replication partners for a domain
controller? ( NTFRS and Global Catalog replication partners too)
Can I use ADSI edit tool for that?
Thanks,
Reva
_
MSN 8 helps eliminate e-mail
You could try to do Radius or perhaps LDAP authentication if your dialin server
software would support it.
We do Radius with a wholesale ISP and it works quite nicely.
===
Arron S. King
Network Systems Administrator
Ohio Dominican University
[EMAIL
KNOCK IT OFF WITH THE GOD DAMN FUCKING READ RECEIPTS..HOW MANY
TIMES DO PEOPLE HAVE TO TELL YOU THIS!
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]] On Behalf Of King, Arron S.
Sent: Tuesday, January 28, 2003 10:05 AM
To: [EMAIL PROTECTED]
I didn't mean to direct it to Arron, just everyone that's requesting
read recipts
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]] On Behalf Of Christopher
Hummert
Sent: Tuesday, January 28, 2003 10:53 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] RAS Auth, Linux
lol
-Original Message-
From: Christopher Hummert [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, January 28, 2003 12:02 PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] RAS Auth, Linux and AD?
I didn't mean to direct it to Arron, just everyone that's requesting
read recipts
-Original
You seriously need some anger management classes. And lessons on
using appropriate language.
And you may want to see about getting that caps lock key unstuck.
Original Message
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED],
Subject: RE: [ActiveDir] RAS Auth, Linux and AD?
Date: Tue,
Writing with the caps lock key on and not using proper punctuation,
tends to get the attention of those that haven't read the multiple turn
off request read receipt replies that have been sent out over the past
few months.
Second off, I don't need anger management classes, people just need to
I have 'em set to never so they don't bug me ;p
-Original Message-
From: Christopher Hummert [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, January 28, 2003 1:53 PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] RAS Auth, Linux and AD?
KNOCK IT OFF WITH THE GOD DAMN FUCKING READ
It is annoying and I think he got his message across..sometimes CAPS
LOCKS are completely necessary
-Original Message-
From: Missy Koslosky [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, January 28, 2003 2:16 PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] RAS Auth, Linux and AD?
You
Man oh man...I really don't think this is 1) appropriate for the list
and 2) appropriate for the list! =) Read receipts are a problem, a lot
of people (including myself) request them for every email we send. I
need it to track who has ready what message, etc. They are VERY handy.
I know that I
Me too - - - set to never as well
-Original Message-
From: Edgington, Jeff [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, January 28, 2003 3:05 PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] RAS Auth, Linux and AD?
Same here and if you don't... what's the big deal... not like
hitting
Try ReplMon. It'll point out who is the target / source of an update to
any of the partitions that a DC can host. Or, RepAdmin if you're more
into the command line thing (both are great in the roles...).
Rick Kingslan MCSE, MCSA, MCT
Microsoft MVP - Active Directory
Associate Expert
Expert
Ok, stop. Everyone.
I just want to make three points here.
1. This list has always been very good at self-regulation. As someone else pointed
out, the signal to noise ratio is generally very good. I'd like everyone to try and
keep it that way.
2. Offensive language is not appropriate
30 matches
Mail list logo
