Title: Message
If you are in mixed mode you can spin up an NT4 BDC and
kill of the 2K DCs and then upgrade from NT4 to 2K and specify a new AD Domain
Name. There is a KB article on that I believe. You will lose AD specific info
though if you don't export it first so you can reimport later
From a reading standpoint or a writing standpoint?
This script should be fairly easy to read though I understand there is a
diff between reading something pre-existing and writing a-fresh.
With reading you just have to work out what someone did. With writing you
have to figure out what you want
Title: Message
According to MS documentation, it is not a
good idea to put Outlook *.pst files in a remote location such as a UNC
path. So what is the alternative if you are using roaming profiles?
The *.pst file does not seem to get copied over into the users Application Data
folder
Answer: POP doesn't understand the concept of folders. IMAP was designed to
overcome this limitation among others. POP won't mark the messages as read
as it really doesn't understand the concept of read; that's a user agent
function. It understands deleted and pretty much that's about it (not
Oh, I can read your code and Robbie's. But not some of the stuff I see
on the 'net.
I meant to write it. I've read the first O'Reilly Perl book (non-Win32)
and bought the other one, but it hasn't made it to the top of the pile
yet.
-Original Message-
From: [EMAIL PROTECTED]
Title: Message
Jack-
You have a perfectly valid point and yet, millions of
people live and die by PSTs, even in large corporations that "should know
better". The reasons vary from inadequate central storage for Exchange to just
plain old user preference. Hell, even I keep emails forever in
You could also do this with a script. NTDSutil
is fine or the GUI choices but to complete Robbies three step approach
that he uses in his AD Cookbook, here is his script. (Man I love this book, it
is lasting a long time although pages are ripped and dog eared.)
-- config
We're still trying
to determine what is the best option for DNS design. Best as far as
security, network load, etc.
Design 1 Put
Win2k DNS server on DMZ with root hints configured. All internal AD root
controllers have forwarder to that box.
Design 2 Put
forwarders on all 4 AD root
Title: Message
Darren,
thanks for the response - I know what you mean... we have
PST's used in places here - I have several because I, like you do not like to
delete stuff however, I'm happy with the fact that it's entirely at my own
risk and I do my own backups periodically (Now I
Title: Message
Well, I definitely do not want to have the
PST file cause a slower logon time. I am aware of the consequences of
using a PST file in a remote location which is why I question it. By that
same token, I guess that is why it is not carried over into the users roaming
profile. I
What are your requirements? I see the suggestions and
several would *work* but makeno sense without
requirements.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Rimmerman,
RussSent: Wednesday, June 23, 2004 10:07 AMTo:
'[EMAIL PROTECTED]'Subject: [ActiveDir] DNS Design
Title: Message
Yes, this is doable once you have your domain all on 2K3.
If you have Exchange you need E2K3 w/ SP1.
joe
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Ken
RinehartSent: Wednesday, June 23, 2004 11:00 AMTo:
[EMAIL PROTECTED]Subject: RE: [ActiveDir] AD
Oh yeah, reading stuff out on the net can be quite a trial, some of that
stuff I can't read given hours. There are some people who take great pride
in perl obfuscation contests. It is code purposely written to be difficult
to read.
See
http://perl.plover.com/obfuscated/
Additionally they
I don't know why things were done the way there were, and some things I
never considered until I was faced with it not working.
I absolutely don't want my internal servers returning on any information. I
don't understand the interrelation of records on my AD servers and the DNS
records. It's a
Title: Message
LOL. No I don't need any more email accounts, but thanks!
Trying to work on reducing what I have now which is
something in the ball park of 20 or so. I actually spun up a cough cough
cough hack cough E2K3SP1machinecough hack cough cough cough at home.
I am going to start
Service Principal Names are basically pointers back to security principals
for kerberos. If you can not uniquely indentify a security principal from a
service principal name you would get some sort of auth failure. The results
of which could be anything depending on how the service trying to
We've recently installed a Barracuda Spam Filter for testing purposes...
One of the features of this device is the ability to do LDAP lookups of
incoming SMTP addresses against Exchange / AD... This sounds like a
good feature because we get a lot of junkmail for users who are no
longer with the
Of course you have access to the LDAP query syntax. It's sent to the domain
controller where you can either pick it up off the wire else get in the logs
(turn up logging). Note this is one way to increase your processor even
more.
As for suggestions, how about moving the query to a dedicated GC
Al,
Thanks for the tip... Yes, this is the Exchange Accelerator stuff...
LDAP lookups to verify the recipient (SMTP address) actually exists in
the org before accepting the mail)...
The server I was using was a GC and the only functions it serves are as
DC/GC and DNS so it's usually very
My preference would be option 3, but more details would
help...
Tyson
From: Rimmerman, Russ
[mailto:[EMAIL PROTECTED] Sent: Wednesday, June 23, 2004
8:07 AMTo: '[EMAIL PROTECTED]'Subject:
[ActiveDir] DNS Design question
We're still trying
to determine what is the best option for DNS
Im
curious what, if any, changes to everyday administration the folks on this list
are making in preparation for Sarbannes Oxley compliance. Specifically, is
anyone making a conscious effort to remove daily admin rights from people whose
job it is to do domain administration, in favor of a
What other details do you need to make an educated
recommendation?
Thanks
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Tyson
LeslieSent: Wednesday, June 23, 2004 12:09 PMTo:
[EMAIL PROTECTED]Subject: RE: [ActiveDir] DNS Design
question
My preference would be option 3,
Title: AD, GPO and Technet
The Active Directory Topology Diagrammer (admap.exe) was, I
believe, developed by a PSS engineer. It's free and does a reasonable
job.
http://www.windows-servers.info/Tools/AdMap.msi
Don't
know if there's a newer version available - I've just mailed the
Exchange, since it uses AD as its directory now, requires access to the
Global Catalog because this is a grouping of attributes from objects all
over the forest and not just to the domain. You can think of it like
this, The GC acts the same way the Exchange 5.5 Directory did when it
comes to
Wow. Go-go-gadget Google-search! Some nice person on OutlookExchange
seems to have written precisely the thing that I need.
http://www.outlookexchange.com/articles/glenscales/mtrackrs.asp
If the author of this article lurks on this list: BLESS YOU! :-)
- Laura
List info :
Thanks Justin,
Didn't give you props for passing on the answer because I didn't know
you were on this list... ;)
I understand that Exch 2k and 2k3 use AD for attributes now... What I
don't understand is why, when I'm searching for attributes that are in
the domain (I don't believe any of the
Title: Re: [ActiveDir] AD domain changes
Hi Ken,
Here is the information page for the 2003 domain rename...
http://www.microsoft.com/windowsserver2003/downloads/domainrename.mspx
I dont think I would ever want to go through it. But, better now than when directory grows larger.
Brent
From:
Really? Based on your original spec that wasn't what you were asking for.
While you're at it, make sure you have patched your server if Exchange 2000
and you want to leave message tracking enabled ;)
Al
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
*re-reads* Yeah, I guess I got excited by the fact that I could make it
work; it -wasn't- where I was originally going. I'm willing to live
with doing message tracking and giving out a restricted view for this
person where [EMAIL PROTECTED], esp. since other folks might end
up using it as well.
First, it was Steve Jobs. Then along came Scott McNealy. Now, Joe Richards
installs Exchange! What is the world coming to??? :)
Congrats, Joe. I'm glad to see you join forces with the hacking cough
taking copious doses of expectorant :) evil ones.
Seriously, with E2K3 and Outlook 2K3,
Heh, you can keep with multigig PSTs, I will kindly refrain. I hate oops,
especially with email. Haven't lost a PST yet that I cared about. :o)
Anyway, they are only in PST until I can find a better format. Possibly some
flat file structure with some keyword database in front of it. That way no
There was one that mentioned having the tracking logs enabled caused issues.
I believe it was in SP2 or post. There were so many fixes, it's hard to
keep them straight ;)
As long as it works for you. Keep one more thing in mind. If you have a
busy server, tracking log is not the way to find
Hmm I sort of got that but I am really sure I have had email systems that
weren't Exchange return messages that were in subfolders of the inbox
(placed there by web interfaces) to POP3 client requests.
I did take a quick peek at the network trace though, definitely no folder
type stuff visible
Mark,
We
opted not to take away rights from the Administrators and turned on auditing
for areas where sensitive data is stored. We have been kicking around
turning on the file system encryption. We have had to comply with Grahm-Leech-Blyley
(GLB) and a California
state bill requiring
I can appreciate the trade-off but if you have to have this
information for an application (such as yours)
it may not be the way to go. The only absolute way to know a message
is in an inbox is to read it
from that inbox. If your server never gets busy, kindly disregard :)
Thanks for the
If you have a single domain, changing from 389 to 3268 really shouldn't have
bought you anything.
joe
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Joe Pochedley
Sent: Wednesday, June 23, 2004 1:05 PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir]
Hey I like that, that is a good title
Scripting for Smart People Who Don't Know How to Script
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Hunter, Laura E.
Sent: Wednesday, June 23, 2004 7:03 PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir]
Some companies may be going overboard but it will be tough
to tell until the first lucky few go to jail to really know for sure. I can
think of a few I wouldn't mind being made examples of. :o)
I think the idea of least permissions is a great idea no
matter if their is a jail term behind it
I thought so too; came up with it on the phone with one of my editors
today. One of those flashes of brilliance that I thought of a second
before it came out of my mouth.
(I call DIBS! ;-) )
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of joe
Sent:
You have seen lookout from the lookoutsoft.com (perhaps you'll have to gogle it -
dunno if that's right)people? It's like Google for your Outlook mailbox. It takes a
while to build the index, but, after that, it's magic. I use it to search a couple
gigs of information store data at school and
Hi,
I hope i would be able to explain my problem.
In my windows 2000 forest organisation, at one of my location my exchange server's database got crashed and we were unable to repair/recover or restore the database.The Exchange server name was MDEE2K20 as per company policy.
ThenWe install a
41 matches
Mail list logo
