I just realised that legacyExchangeDN was a bad example to pick in my email
below because the syntax is Case Insensitive String and not Distinguished
Name. I guess this is to support the ADCDisabledMail value, which is clearly
not DN format.
Sorry Joe :-)
Tony
PS. This has been a great
Interesting, I didnt realize HomeMDB
is indexed for free!
Although, as you mentioned, it seems to make
sense to use homeMDBBL.
Thanks for your help!
Matty
From:
Eric Fleischman [mailto:[EMAIL PROTECTED]
Sent: 09 November 2004 20:51
To: [EMAIL PROTECTED]
Cc: [EMAIL
Does anyone have any idea why one of my network drives is always
showing disconnected even though it is connected?
Thank you,
Z.V.
drive.JPG
The employeeID is not one of standard attributes visible in Active Directory
Users and Computers. If you really want to include this then I believe you
need to do some work with display specifiers.
I forgot to mention that the VB script is being applied
through group policy.
Thanks,
Z.V.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Za
VueSent: Wednesday, November 10, 2004 7:27 AMTo:
[EMAIL PROTECTED]Subject: [ActiveDir] Disconnected Network
Drive
Does anyone
I get
that all the time. If you open it, I bet it opens OK.
I
think there is a reg fix that cures that behaviour!
-Original Message-From: Za Vue
[mailto:[EMAIL PROTECTED]Sent: Wednesday, November 10, 2004 12:27
PMTo: [EMAIL PROTECTED]Subject: [ActiveDir]
Disconnected Network
Note what he indicates though. Indexed for free due to the
nature of being a linked attribute, ***but the index isn't used unless it is on
Windows Server 2003 AD***. I actually spoke to ~Eric about this in the past and
it had completely slipped my mind when discussing here. The whole idea
LOL. Humour and knowledge are good. :o)
joe
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Tony Murray
Sent: Wednesday, November 10, 2004 1:05 AM
To: [EMAIL PROTECTED]
Subject: Re: [ActiveDir] Indexing an attribute
I just realised that
I think this is a bug with XP. No problem on Win2K
machines.
-Z.V.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Gavin
WilbySent: Wednesday, November 10, 2004 8:24 AMTo:
[EMAIL PROTECTED]Subject: RE: [ActiveDir] Disconnected
Network Drive
I get
that all the time. If
Here is the fix
if anyone else is having this issue.
http://support.microsoft.com/default.aspx?scid=kb;en-us;306117
-Z.V.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Gavin
WilbySent: Wednesday, November 10, 2004 8:24 AMTo:
[EMAIL PROTECTED]Subject: RE: [ActiveDir]
In our domain we have users with roaming
profiles. I would like to use DFS for redundancy and performance.
I know that when DFS is initially
configured, it creates a share pointing to the DFS root. Does anyone see
any problem with configuring a DFS root to an existing share? The
I remember on NT 4.0Logon information was not
replicated from dc to dc. For example: user1 logs in to the dc2 but
dc1 always sees the account as never logged in. Does that still apply for
AD Controllers?
Thanks,
Mario
In 2K AD, yes. In 2K3 AD, no. In 2K3, there is the lastlogontimestamp
attribute and this is replicated to all DCs. It's not completely real-time,
though.
Sincerely,
Dèjì Akómöláfé, MCSE+M MCSA+M MCP+I
Microsoft MVP - Directory Services
www.readymaids.com - we know IT
www.akomolafe.com
Do you
Return Receipt
Your [ActiveDir] Logon Information
document
:
thanks
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED]
Sent: Wednesday, November 10, 2004 10:22 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Logon Information
In 2K AD, yes. In 2K3 AD, no. In 2K3, there is the lastlogontimestamp
Return Receipt
Your RE: [ActiveDir] Logon Information
document:
Is there a way to use csvde to export all users in all child
domains in a forest?
Devon Harding
Windows Systems Engineer
Southern Wine Spirits
- GSD
954-602-2469
__This message and any attachments are
Really, we should amend that to 'Joe *says* he maintains good hygiene.' Just
to be accurate and all.
Al
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Tony Murray
Sent: Wednesday, November 10, 2004 4:05 AM
To: [EMAIL PROTECTED]
Subject: Re: [ActiveDir]
If anyone is using EAP-TLS, are you using computer certificates or user
certificates? Why?
List info : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
I second that :-p
Sincerely,
Dèjì Akómöláfé, MCSE+M MCSA+M MCP+I
Microsoft MVP - Directory Services
www.readymaids.com - we know IT
www.akomolafe.com
Do you now realize that Today is the Tomorrow you were worried about
Yesterday? -anon
From: [EMAIL
Hi,
I'm new to the list. been working with AD - 2003 for quite a while now.
Just curious if anybody is syncing Active Directory with OpenLDAP and what
process they are using to get it done.
This may have already been discussed to death. Is this an appropriate
subject for this list?
Thanks,
It's been discussed once or twice, but I personally think it's appropriate.
When you say sync with AD and OpenLdap, what do you have in mind? What is
the end result you want to accomplish?
Al
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Matt Brown
Well,
I have an OpenLDAP server
running with all user accounts (approx 14k accounts) in it. Id like
to keep a replica of all the accounts in Active Directory, making appropriate changes
when necessary. (IE: account renames, ou changes, etc.)
I currently have something
in place to do
Anyone?
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Harding,
Devon
Sent: Wednesday, November 10, 2004
12:12 PM
To: [EMAIL PROTECTED]
Subject: [ActiveDir] Using csvde
forests
Is there a way to use csvde to
export all
MIIS or simplesynch come to mind. What level of sync
do you have? For example, are synching passwords, groups, id's
etc?
What kind of process do you have now?
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Matt
BrownSent: Wednesday, November 10, 2004 3:05 PMTo:
[EMAIL
I would say you would use the GC for this by setting the
port option when using CSVDE and making sure that you're using the subtree
scope.
Areyouseeingsomethingdifferentwhenyoutrythis?
If that doesn't do what you want, have you considered
joe's adfind utility?
From: [EMAIL PROTECTED]
Currently I have one way
sync coming from my OpenLDAP server to my AD Domain. The modifications
that happen to the OpenLDAP server are done daily with Perl Scripts
which then create ldife files for AD whenever changes are made to the account.
A batch file is then used to
grab the ldife
So if it's just account data that you're interested in, any
particular reason you want to change it? Are there problems?
One idea that does come to mind is that you could have a
perl script that controls all of it without LDIFDE in the middle. If you wanted
to.
The advantage of something
csvde -r (objectClass=person) -d dc=,dc=
-f allusers.csv -l cn
This should get you all user accounts giving
you:
dn,cn
Thanks,
--
Matt Brown
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On
Behalf Of Harding, Devon
Sent: Wednesday,
November
Im always curious why customers
want to maintain duplicate data/directory services. I firmly believe we can
never get to one enterprise directory but we ought to be able to
reduce the # of directories. Even though I am the product manager for MIIS Id
want to ask why not consolidate around
Quite often its
political more than it is for an actual functional requirement at least
where I come from thats the case.
Thanks.
--Brian
Desmond
[EMAIL PROTECTED]
Payton on the
web! www.wpcp.org
v - 773.534.0034 x135
f - 773.534.8101
From:
[EMAIL PROTECTED]
LOL. You should see my environment and the thinking
at layer-8:)
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jackson
ShawSent: Wednesday, November 10, 2004 4:21 PMTo:
[EMAIL PROTECTED]Subject: RE: [ActiveDir] AD Sync with
OpenLDAP
Im always curious why
customers
I was just going to say working
in a University setting as I am its very much just a
political thing.
We could move to using Active Directory
as our only directory without too much problem using OpenLDAP as our
only directory would have some issues as far as the domain logins but could
Anybody here
actually Syncing OpenLDAP with Active Directory using MIIS?
Thanks,
--
Matt Brown
Information Technology System Specialist
Eastern Washington
University
Title: RE: RE: [ActiveDir] Indexing an attribute
All I said is I take showers.
Didn't say I actually used soap and washed while there. :o)
Mostly I put the shower head on beat and
let it thunk me on the neck in hopes of knocking me out.
joe
From: [EMAIL PROTECTED] on
behalf of
Thats not entirely true either, but
close. A more accurate statement: the index is not used _by query processor_ in 2k, but is in 2k03.
The index is used by other things in AD in 2k, like a simple read of the member
attribute of a group.
~Eric
From: [EMAIL PROTECTED]
I sit corrected.
:o)
I guess what I meant is that a linked
attribute is used as an implied indexed attribute for queries in K3.
Might be interesting to just have the
engine light the indexed flag of any attributes that are linked and clear all
confusion in K3.
On another topic,I
Title: RE: [ActiveDir] 64 Bit?
Actually, from some of my recent research into 64 bit
platforms, there might be some significant benefits from going to a 64 bit
platform (specifically the Opteron based, NOT the Intel EM64T based)
boxen.
Without going into a lengthy chip design discourse, the
Its not a bug at all. Its actually always done that - just
prior to WinXP, you had no indication that it had been
closed.
What's happening is that the TCP connection is being idle
timed out - perfectly normal behavior.
Roger SeielstadE-mail Geek MS-MVP
From: [EMAIL
Using an existing share isn't an issue - in fact I believe
its required. The hidden share could be a problem, however.
Adding and removing DFS roots and links isn't a big deal
and is a non-destructive operation (other than distructing the UNC paths, that
is).
Roger SeielstadE-mail
They let Eric go to Redmond? I thought they kept him chained to
the debugger all day. Did he have one with him? J
And why are you there, anyway?
Joe K.
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of listmail
Sent: Wednesday, November 10, 2004
6:14 PM
To:
41 matches
Mail list logo
