A) is built into Windows 2003. If you're not on 2003, write a simple service which
hooks the Shutdown message and logs the active user.
B) You need to audit the file access on the remote server. I don't dawdle in file
auditing much, turn it on, access the file, and then go look.
--Brian
Title: Message
Good
evening everyone,
I was
hoping that someone out there might be able to help me - because this is doing
my head in. I having some problems with a couple of users that have static drive
mappings in Windows XP Pro. I'll try and explain what's
happening.
When the
user
Damm - you stole my idea - I was trying to work out the convesation
view in GMail - trying to find the end of the thread to hit reply at
the right moment - I'm sure it'll be brilliant when I get used to
it... :-)
Lookout is one of the best things I've ever beta tested. google
for your inbox?
I don't know if I've missed the point completely here but I do something
very similar here but by analysing the Exchange log (created in shared
folder servername.log on the server). Early each morning I run a
simple script to parse the log and import it to a SQL database. I can
then query that
Joe,
I should clarify... I do have two domains here, the parent and one
child... But, for the searches I was really only interested in looking
for SMTP addresses in the parent domain...
Hate to sound like a dunce, but what logging should be turned up to
capture the query? Or would a network
hi,
I have active directory installed on my DC. but when i click on it . This gives error:
The list of domain controllers for domain is unavailable because the RPC server is
unavailable.
what is this error and how can i correct it?
any help is appriciated.
roseta
Have you looked at DNS? Can you ping the other domain controllers from this
dc?
-Original Message-
From: Roseta Radfar [mailto:[EMAIL PROTECTED]
Sent: Thursday, June 24, 2004 9:19 AM
To: [EMAIL PROTECTED]
Subject: [ActiveDir] Active directory Error
hi,
I have active directory
This sounds that ad is not installed (correctly) on the server as you
should at least get the local server. Did you get any errors during
dcpromo? Verify DNS settings!
Have you looked at DNS? Can you ping the other domain controllers from
this
dc?
-Original Message-
From: Roseta
This is off topic, but I was hoping someone out there may be looking at
the same thing.
I've been looking at the new firewall global policy that comes with XP
SP2 and it looks pretty cool. In particular, you can define two policies
- one for when you are connected to your DNS domain network, and
Title: Message
With
Netuse, did you try the opting "/Persistent" ?
That
will make the mapped drive not to disconnect, and it shuld reconnect at the
reboot
Hope
this helps!
Athif
-Original Message-From: Caple, Andrew
[mailto:[EMAIL PROTECTED] Sent: Thursday, June 24, 2004
I have a w2k3 server DC and an XP client.
I want to be able to change the default admin account that
appears when I invoke the runat on the client to be the DC Admin rather than
the local Admin account.
Searched for runat in the registry, but didnt get a
single hit.
Is this
Is DNS integrated in AD?
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED]
Sent: Thursday, June 24, 2004 8:35 AM
To: [EMAIL PROTECTED]
Cc: '[EMAIL PROTECTED]'
Subject: RE: [ActiveDir] Active directory Error
This sounds that ad is not
Greetings,
I have a Windows 2000 forest that has been Forest Prepped and had the root
domain of the forest domain prepped as well as another domain tree root
domain prepped.
I plan to follow the recommendations outlined in the article below in order
to upgrade to 2003. My plan is to transfer
Hello all,
for our VPN access I want to allow only computers with a
valid certificate to access the network.
I've installed a CA, enrolled a certificate and also made
an alternative name mapping to this certificate. When the
computer logs on to the network without (deleted) certificate
it works
Title: DNS Issues - ipconfig /flushdns
I just want to verify a behavior of
DDNS registration.
AD integrated, and Primary Zones will
register dynamic registrations directly when requested, with AD integrated DDNS
offering the ability to require that the registration be secured.
If you are familiar with network tracing then that would be the easier way
to go for you.
However for reference see
http://support.microsoft.com/default.aspx?scid=kb;en-us;314980sd=tech
And the bottom of
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnactdir/ht
Title: DNS Issues - ipconfig /flushdns
When you say it always shows old ip
address how long are you waiting? If you try to resolve the hostname
immediately after the box gets a new ip, it is perfectly normal for the other
boxes to have the old address cached. It can take up to 10 minutes
Use the security groups filtering option for applying the policy only to
your help desk group. Enable the apply and read permission only for this
group...
Or -if you only want to remove the admins from applying this policy- use
the deny option in security settings for the admins...
But why don't
There are several archiving tools for Exchange that might be able to do
this. A few that I am aware of are:
KVS
EAS
Legato
I'm sure there are others as well.
Denny
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Tomasz Onyszko
Sent: Thursday, June
I am getting numerous errors in the
Application Event logs that are provided below.
Windows cannot query for the
list of Group Policy objects. Check the event log for possible messages
previously logged by the policy engine that describes the reason for this.
For more information, see
I have two Windows Server 2003 DC's. Every time I reboot
them in a particular order, I get the error. I eliminate the problem by shutting
down both servers, reboot the first DC I created in the domain then start up the
second server. For some reason, one I haven't been able to figure out, if
Is one solution - disable large DNS packet on W2k3
vs.enable large DNS packets on the PIX -better than the
other?
- Original Message -
From:
Michael B.
Smith
To: [EMAIL PROTECTED]
Sent: Tuesday, June 22, 2004 11:22
PM
Subject: RE: [ActiveDir] OT: W2k3's
I fixed this on several servers/serveral clients by running
dfsutil /PurgeMupCache (or something very much like that). I didn't find the fix
on Microsoft's site, but on eventid.net -- take a look there for more specific
information.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On
IMHO, enabling large DNS packets will tend, over time, to
make DNS more efficient over all the Internet. It's what I did.
YMMV.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of John
WitasickSent: Thursday, June 24, 2004 1:07 PMTo:
[EMAIL PROTECTED]Subject: Re: [ActiveDir]
Not sure if this is
OT: I have two Windows 2003 Servers running AD Integrated DNS. I added a static
host record for a printer a while back which I have not been able to delete. I
can delete the entry from the forward lookup zone, but every time I delete the
ptr record it reappears as soon
Edwin-
Where exactly are those errors appearing? On the DC or the
clients that are processing GPO? Also, what version of DC are you running and
what version of client?
The dfsutil /purgemupcache will work on Server 2003 DCs
only.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On
Yeah, you could do that. But remember that the cause of the problem IS the
fact that W2K3 DNS has this large packet size in the first place. It's
RFC-compliant and all, but there are tons of people and devices out there
that simply do not speak this language. This is why Win2K3 DNS barfs
What will encourage those folks with non-compliant implementations to upgrade, then,
eh? :-)
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED]
Sent: Thursday, June 24, 2004 2:41 PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] OT:
Well, it depends on your frame of mind (or mission). For me, I'd prefer that
my DNS is able to communicate with every intended party, regardless of the
party's tardiness or compliance level. If you feel it's incumbent upon you to
enforce RFC compliance, then there is no arguing with that. Just
This worked. I don't remember seeing thisfix when I
was investigating the problem last year.
Thanks.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Michael B.
SmithSent: Thursday, June 24, 2004 1:33 PMTo:
[EMAIL PROTECTED]Subject: RE: [ActiveDir] Application Log
Event
Hmm... I dunno.
The typical issue is that Yahoo or Microsoft or BestBuy's DNS servers provide me a
large DNS packet.
I can't use it because my PIX strips it. My DNS server understands it just fine. Their
DNS servers understand it just fine.
Am I likely to host a zone that is going to need
I am going to ask a really stupid question so bear with me. I want to
confirm because I am getting the opposite information from my coworker -
can windows 9x and NT clients autheniticate against an AD DC in native
mode without the ADCE client installed? (I know that you will be
authenticating in
Title: DNS Issues - ipconfig /flushdns
It takes 2-3 days..
From: Passo, Larry
[mailto:[EMAIL PROTECTED] Sent: Thursday, June 24, 2004 8:57
PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir]
DNS Issues - ipconfig /flushdns
When you say it always
shows old ip address how long are you
You are probably allowing both PPTP and L2TP. I think most clients would negotiate PPTP first, and if that fails, then they'll try L2TP. Since PPTP requires no cert, and your RAS/RADIUS server allows PPTP, then the clients are not negotiating L2TP which is where your cert will come into play.
34 matches
Mail list logo