LOL. :o)
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Brent Westmoreland
Sent: Sunday, May 02, 2004 9:18 PM
To: [EMAIL PROTECTED]
Subject: Re: [ActiveDir] Storage of AD passwords???
Yeah I know, I should have included a goofy emoticon to indicate a
Yep, I agree. 'tiswhy I included their myth's link.
=)
We (and when I say we I mean our UNIX folks, not me) have
been working on kerberos integration with AD for a couple of years now. Massive
issues with cross realm (cross domain) and service location and some small
issues with keytab
I spent over an hour in a bedroom on the top floor of the Westin with
Missy... I will never be the same.
Interestingly, she tells a slightly different story. You did leave after
around an hour, and quite satisfied. However, you never left the
bathroom. And, you were alone.
Small, quiet
Title: Message
Thanks for that, Joe.
Rick has an attention problem. I can't take
responsibility or be accountable for my actions, like most of my fellow citizens
in the US. That would be un-American - and eventually bankrupt the glut of
lawyers in the States, and would have a devastating
reposting this again, as I still can't see it on the
list...
From: Grillenmeier, Guido Sent:
Samstag, 1. Mai 2004 10:20To:
'[EMAIL PROTECTED]'Subject: RE: [ActiveDir] Replication
issues
as Joe already wrote, there is a difference between "out of
band" and "urgent" replication.
Thanks Joe
I do use adfind a lot for ad hoc stuff, but I havent figured out how to
use it within scripts yet. The ADO query Im
setting up is part one of a two-part script. Ultimately, what I want to do is
find all the RPT* groups, and then place the members of each of them into a
Actually, close.
Apparently, a base install of Linux doesn't include things like ping,
traceroute, ssh, nor much else in the way of basic tools.
Roger
--
Roger D. Seielstad - MTS MCSE MS-MVP
Sr. Systems Administrator
Inovis Inc.
Title: Message
I apologize profusely . I will try to do better. My mind
has been focused on looking for career opportunities of late.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Rick
KingslanSent: Monday, May 03, 2004 8:14 AMTo:
[EMAIL PROTECTED]Subject: RE:
LOL... three times I have seen it... Hey Guido, maybe Tony
just kicked you off the list, but didn't do it the usual way, he chopped off
what you see versus what you post so you don't notice he booted you. You should
have heard Tony at the summit anyway... The whole time... "Yeah that Guido
Nope nope nope. There were several people around us, we most definitely
weren't alone. It was interesting because everyone that came into the
bedroom gasped and commented on the tremendous view. (Notice how the English
'you' can be singular or plural, quite unlike Latin which would have been
very
talk about feeling stupid ;-)
I really didn't see my own post but saw others coming in
and after I've been rather busy in the past few weeks I wanted to make sure this
one got through so you know I'm still alive ;-))
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Wow thanks Joe. In fact the disks
on this test system were IDE (and over 137GB).
Interestingly enough even though
this is supposed to affect the system as a whole (both drives are identical),
it only affected the D: volume I had set as the storage for the NTDS logsonce
I had used
You can use dsquery group /?. A tool from Resource Kit
W2K3.-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Ulf B.
Simon-WeidnerSent: Friday, April 30, 2004 6:58 PMTo:
[EMAIL PROTECTED]Subject: AW: [ActiveDir] help querying
for groups
Hi Mark,
first thing which comes
Hello All,
I
have this problem with a handful of machines, they refuse to dynamically
register in the AD DNS. The machines were registering at one point in
time, but at some point they stopped doing so. I stumbled upon this because
I was working on one of these machines and when I would
When you say no error, are you seeing any errors on the DNS
servers? Have you checked the routing tables on these machines? Have
you checked to see what is bound to the nic(s) to see if RRAS is getting in the
way?
Al
From: Wright, T. MR NSSB
[mailto:[EMAIL PROTECTED] Sent: Monday, May
Joe - I certainly agree that LDAP is not a great mechanism for authentication, for the
same reasons. It is, however, available, and meets an immediate need (beats having a
seperate identity store in each app server). Getting everyone to speak Kerberos is
not a small task. Having a single
It sounds like those machines with the RRAS
started are registering the wrong address. This can happen with
multi-homed devices under RRAS. There is an MS fix for only registering a
particular interface. I ran into this with some DCs (yes, that was fun). I can search for the KB numbers if
How can
I get the OU with all objectes restored immediately
�
Unplug a DC before it
replicates
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Grantham,
CaronSent: Monday, May 03, 2004 10:05 AMTo:
[EMAIL PROTECTED]Subject: [ActiveDir] HELP I just deleted
an OU
How can I
get the OU with all objectes restored
immediately
It's not that simple.
To perform an authoritative restore of an OU full of users, here's a rough
step by step:
1) System state restore of a DC; mark OU full of users authoritative (IE
mark
the subtree authoritative)
2) Boot DC on to private network
3) Disable inbound replication on the DC
Microsoft Knowledge Base Article - 241594
-Original Message-From:
[EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]On Behalf Of Grantham,
CaronSent: Monday, May 03, 2004 1:05 PMTo:
[EMAIL PROTECTED]Subject: [ActiveDir] HELP I just
deleted an OU
How can
I
You might try the restore subtree
using NDTSUtil
http://support.microsoft.com/default.aspx?scid=kb;en-us;241594#3
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On
Behalf Of Grantham, Caron
Sent: Monday, May 03, 2004 1:05 PM
To: [EMAIL PROTECTED]
Too late for that
Caron Grantham
Systems Engineer,
ITS Dept
,[EMAIL PROTECTED]
( 312-742- 2731
-Original Message-
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Ayers, Diane
Sent: Monday, May 03, 2004 12:14
PM
To: [EMAIL PROTECTED]
Subject: RE:
I forgot to mention that Im working
in Server 2003 .
Does this KBA apply?
Caron Grantham
Systems Engineer,
ITS Dept
,[EMAIL PROTECTED]
( 312-742- 2731
-Original Message-
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Lou Vega
Sent: Monday, May 03,
Here is a better KB to be reading. This one
is more recent and better discusses the issues in question:
840001 How to restore deleted user accounts
and their group memberships in
http://support.microsoft.com/?id=840001
~Eric
From:
[EMAIL PROTECTED] [mailto:[EMAIL
Al,
No
errors in the event logs on the DNS server either. I did take a look at
the routing tables and everything appears to be normal, I have no problem
getting from the client to the DNS server and back on port 53. The only
thing bound to the NICS is MS File Print Sharing and the
yes, the basic restores in 2003 work the same way as in
2000, however, depending on your forest-functional level and number of domains
in your environment you'll have additional tasks
IF you run at Win2003 forest functional
level AND IF this is NOT a forest that was
upgraded from Win2000
Okay, this is something that I've filed in the I'll live with it column
for awhile:
Windows 2000 Active Directory domain.
Still supporting NT4 clients.
Using BIND DNS that does -not- have dynamic updates enabled: whenever I
create a DC, I am required to manually upload the netlogon.dns into
Russ,
MS04-001 (Q835732):
Windows2000-KB835732-x86-ENU.EXE
http://www.microsoft.com/technet/security/bulletin/MS04-011.mspx
Sasser worm...
http://securityresponse.symantec.com/avcenter/venc/data/w32.sasser.b.worm.html
James
From: Rimmerman, Russ
[mailto:[EMAIL
thanks for the pointer Eric - this article was long
overdue, but at least it's available now and it contains most of the information
required to be prepared for a successful recovery.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Eric
FleischmanSent: Montag, 3. Mai 2004
Hey Laura...
Two things come to mind here. First, do the NT4 clients have the DSClient
installed, and if so, does it make a difference?
Second, are you still running WINS in the environment?
What it sounds like is that you're having a LOT of NetBIOS name resolution
issues. Remember pre-Win2k,
31 matches
Mail list logo
