Thanks guys
I will try them all, they do support giga bit right? because when we
upgraded to giga the sniffer I used to use couldn't do me any good.
r.c.
On 4/12/05, Medeiros, Jose [EMAIL PROTECTED] wrote:
Greetings,
Try the demo from http://www.wildpackets.com/ Etherpeek is for Ethernet
I Just wanted to update this post. I have resolved the issue. It turns out that
it was a permissions problem on the spool directory on the cluster. This was
determined by the audit logs. Once I gave full control permissions to Domain
Computers and Local System everything worked fine.
Dan
The scenario I envision for using password complexity requirements is for network admins (Users!!) who I want to force more complex passwords on, but general users (students) do not need this setting.
Are you under the impression that strong password security is not necessary for non-priviledged
I don't believe I've seen something that will show that it performed the
name resolution with local information other than a debug trace (OS debugger
attached to winsock I would guess). Would be cool to have a tool that
showed all of that though. Something that shows:
SuperDupernamelookup.exe:
Thanks. I've fixed it. Thanks for all your help!
-Original Message-
From: Mulnick, Al [mailto:[EMAIL PROTECTED]
Sent: Tuesday, April 12, 2005 4:56 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] VB Script and Group policy
I'm not a great vbscripter, but I play one on the
Title: How to determine which is the default site
At some point in the dim, dark past, the default site was renamed (I assume it was not removed!)
Does anyone have a quick and easy way to determine which of the existing sites was once the default site? [It has been suggested that I look at
I was recently handed a new hardware clock to install into our domain. As the
device needs to be placed in an area with good radio reception I decided to
install it onto a PC. Our server farm is located in a secure bunker with no
reception at all.
I know the usual time sync model is for DC's
Title: How to determine which is the default site
Wouldnt the lowest sequential GUID associated
with the name of the site most likely be the first site created?
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Ruston, Neil
Sent: Wednesday, April 13, 2005
9:54 AM
Following on from my earlier question about time synchronisation, can anyone
please tell me, when you type in the command net time, just where exactly how
does the client determine where to pull this information from ? I ask because I
assumed it would be querying its logon server by default,
Title: How to determine which is the default site
Not elegant, but fairly quick: take Robbie's script (http://www.rallenhome.com/books/adcookbook/src/11.02-list_sites.vbs.txt),
add in objSite.WhenCreated to the output list, and write it out to a file. Then
sort by date...
' This VBScript
I think you need to update your
Group Policy ADM Files.
You can download them from
http://www.microsoft.com/downloads/details.aspx?FamilyID=92759d4b-7112-4b6c-ad4a-bbf3802a5c9bDisplayLang=en
Peter Jessop
List info : http://www.activedir.org/List.aspx
List FAQ:
George Arezina wrote:
Has anyone run into this warning and/or error while using GPMC?
One tip - If You have message box with error statement You don't have to
make screenshoot - just press CTRL+C on this box and error message will
be placed in Your clipboard - then You can past it into e-mail or
Wouldn't it make more sense to have the PDCe use the workstation as your
reliable time source and let the rest of AD do it's thing? It has that
built into the product because of how important time sync is to AD
functionality.
Just curious.
Al
-Original Message-
From: [EMAIL
Hi,
I have a little question as to how you guys would handle this
situation...
I have 2 techs that are adding stations to the domain from time to time.
When they join the stations to the domain, the computer account is
created in the COMPUTERS built-in UO.
I have many UOs that are
Personally...I don't use NET TIME at all. I wish they'd either do away
with it or make some kind of statement about its uselessness (my opinion
-sorry!). Use W32TM to test your 2000 (and up) machines.
You should sync your forest root PDCe to whatever device you have as
your reliable time
I am sure that Wildpackets has the latest driver support for most Gigabit
adapters.
Jose
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Behalf Of rubix cube
Sent: Wednesday, April 13, 2005 12:07 AM
To: ActiveDir@mail.activedir.org
Subject: Re: [ActiveDir] Sniffer
Title: How to determine which is the default site
Why?
Nothing I have seen in my experience would seem to indicate
anything special about that first site, in fact my home test lab has been
running with that first site deleted for some time now and I am running with
other sites.
Someone
Net Time uses the old NetRemoteTOD API, for computers not running the
time service, when they issue a NET TIME command without any parameters
the clients issue a NetServerEnum to enumerate the servers from the
browse list (yuk) with the TS (timesource )flag. Archaic and inaccurate
as compared to
Why do you need to know? You understand there's nothing special about that
particular Site name?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Ruston, Neil
Sent: Wednesday, April 13, 2005 08:54
To: 'ActiveDir@mail.activedir.org'
Subject:
While attempting to complete an Exchange 2003 install on a W2K3
Server (not a dc), we have discovered that we have some AD problems with our W2K
AD. It appears that 2 of our DC servers are missing the shared SYSVol and
Netlogon folders. I have read numerous KB articles, but have found not
Since no details of your clock product were forwarded, perhaps all you
need do is run the following command on your forest PDCE (or domain PDCE
if that's all you have access to):
NET TIME /SETSNTP:workstation FQDN
If the product allows your workstation to respond to the requests from
Instead of giving your techs the permission to add unlimited computers to
the domain, give them the ability to create computer objects in the OU where
they are going to end up. Then, when they create the computer object, they
can assign themselves permissions to add it to the domain. That way,
Title: How to determine which is the default site
The default first site is usually one of
the first objects created after the sites container itself. The USNCreated
attribute should be pretty small. For Windows 2000 it should be less than 3500.
For a fresh Windows 2003 AD, it should be
Title: NTDS Diagnostics
Hello,
Has anyone out there found a book or a web site that contains a comprehensive list of what each of the NTDS debug levels will show you. I'd like to know what information will be revealed if Field Engineering is set to 3 for example.
I know that on a Win2k3 server you are supposed to use the w32tm
utility to verify your time settings (as Joh Policelli has already
mentioned this week) so perhaps it would be better to use that utility
on your workstation as well since in Win2k3 net time will not always
show you accurate
Check out the netdom utility. With that command line util you can join
a computer to the domain and place it in the proper OU right from the
start so I would have the techs use that utility to join the machines
instead of just adding them and moving them manually to the proper OU.
If you follow a
Michel,
If you are running Windows 2003 then the Redircomp.exe may be what you
are looking for.
From:
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/library/DepKit/bf5437ce-389c-4dc9-953c-999f854b98d1.mspx
Redirusr.exe (for user accounts) and Redircomp.exe (for computer
Title: How to determine which is the default site
From the tests Ive run so far, its
been pretty consistent that the first site has a USNCreated of 4112 for an
fresh Window 2003 AD. For forests that started life as Windows 2000, Ive
been seeing 3493, but at least one forest has it at 1171.
Strongly agree on the use of W32TM over NET TIME. Questions though:
So you don't need W32Time running on the XP box to be a time source to the
root PDCe? Will the XP box respond to NTPS from the PDCe without W32Time
running on it? W32Time can be configured to 'NoSync' using W32TM on the XP
Michel,
You asked how we would handle the situation. Rather than a solution that
looks at things done after the fact, my question back to you would be this:
You mention the techs have the ability to add computers to the Domain, but
do not have the ability to move objects from one OU to another
Sorry for not mentioning it... it's a native win2k domain with XP sp2 stations
and laptops.
-Message d'origine-
De : [EMAIL PROTECTED] [mailto:ActiveDir-
[EMAIL PROTECTED] De la part de mike kline
Envoyé : Wednesday, April 13, 2005 2:37 PM
À : ActiveDir@mail.activedir.org
Objet
That's a good idea, I'll check into that option. So simple that I never thought
about it.
-Message d'origine-
De : [EMAIL PROTECTED] [mailto:ActiveDir-
[EMAIL PROTECTED] De la part de David Aragon
Envoyé : Wednesday, April 13, 2005 2:59 PM
À : ActiveDir@mail.activedir.org
Objet :
I'll try to answer to the best of my understanding of the questions-
So you don't need W32Time running on the XP box to be a time source to
the root PDCe?
Not in the scenario I mentioned, the PDCe is just talking to a NTP
provider. Is it possible? Probably, W32time is much more intricate in
Hi,
I have a couple of domain controllers (Windows 2000 Advanced Server, SP4).
When I go to Network and Dialup Connections I cannot see the installed
NIC's.
The only way I can see them is in a command prompt through ipconfig/ all.
Anyone ever experienced anything like this? Everything else is
Title: Re: [ActiveDir] Installed NIC's not displayed
Do you see the network connections and no NIC's listed under properties, or no network connections at all. There is a service, I forget the exact name, Network... something I believe, which if disabled, will prevent any network
Is the Netman service (Network Connections) running?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Devan Pala
Sent: Wednesday, April 13, 2005 2:47 PM
To: ActiveDir@mail.activedir.org
Subject: [ActiveDir] Installed NIC's not displayed
Hi,
I have a
Hi,
my server software crashed and I reinstalled Windows Server 2003 and
Exchange 2003.
(I still have the old drive intact, I can copy files from it to the new
drive.)
What I need to do is to import the old AD to the new server. Is it
possible to do that using the ad database files?
The new
Daniel Kolvik wrote:
I've also a backup, made with MS Backup... But when I want to do a
restore and choose System State I'm not able to just choose Active
Directory in detail view. I don't want the other stuff couse I think
some shit in that coused the crash.
There is no such thing as AD in
On a related note, pressing at-PrtScn will copy the current window only
- in this case, the error message. Makes for much smaller screen
captures.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Tomasz Onyszko
Sent: Wednesday, April 13, 2005 10:19 AM
To:
Hi,
I just did a restore as the KB told. Now I cant even boot. I get this
message:
Windows could not start because of an error in the software.
Please report this problem as:
load needed DLLs for kernel.
Please contact your support person to report this problem.
I cant even start in safe mode..
Daniel Kolvik wrote:
Hi,
I just did a restore as the KB told. Now I cant even boot. I get this
message:
Windows could not start because of an error in the software.
Please report this problem as:
load needed DLLs for kernel.
Please contact your support person to report this problem.
I cant even
Try running dcpromo /adv since you said you have a system state backup
of the previous.
Is that the only domain controller though (none left standing)? If so,
uh-oh from me..
Thank you and have a splendid day!
Kind Regards,
Freddy Hartono
Windows Administrator (ADSM/NT Security)
Spherion
See
http://support.microsoft.com/default.aspx?scid=kb;en-us;329050
I just fixed the same problem on one of my w2k web servers today.
Greg Felzer
MCSE NT4, MCSE 2000, CCA, CCNA, CNA
Senior Systems Engineer
Windows Infrastructure and Security Team Leader
Office of the CIO Medical University of
If you have two domains in separate forests.
Domain 1 has a one way trust with Domain 2 so that it trusts the
accounts from Domain 2. How can I put Users in Domain 2 as admins in
Domain 1.
?
List info : http://www.activedir.org/List.aspx
List FAQ:
My advice is torun net time onyour PDC Emulator role server to point to anatomic clock (US Naval Observatory) by IP address and not to a "hardware clock" locally.
Regards,
Chuck Gafford
Architect 2
Unisys
Imagine It. Done.-Original Message-From: Abbiss, Mark [EMAIL PROTECTED]To:
You can't put users from a trusted domain in the Domain Admins group.
The best thing to do is to either add them to the Administrators group
of Domain1 or to create another group and delegate the permissions
required to that group.
Phil
On 4/13/05, Cothern Jeff D. Team EITC [EMAIL PROTECTED]
Also interesting that this would be happening when the computer was
logged off and not shut down. Once the machine is up and on the
network there shouldn't be anymore issues with the media sensing of
the NIC.
If it fixed the issue then it's all good, but I'm perplexed as to why
this would fix
Title: NTDS Diagnostics
I saw an article showing what you would
get if set to 4 or 5 but not specifically 3. I always look at those levels as
superfluous. If I need to get info I crank it up get what I need and crank it
back down. I guess if you have to leave it running for a while 3 would
Title: NTDS Diagnostics
Id answer this question two ways:
1)
Our general answer to
this for all of the ntds diagnostics logging values is none, a
bit, a good amt, a lot, a whole lot,
yowsers J
Because there is so much logging throughout for each reg value, itd be
very hard to summarize
Title: NTDS Diagnostics
Oh, so basically, my read on levels confirms
what Kevin posted. J
~Eric
From: Eric Fleischman
Sent: Wednesday, April 13, 2005
10:52 PM
To: 'ActiveDir@mail.activedir.org'
Subject: RE: [ActiveDir] NTDS
Diagnostics
Id answer this question two ways:
50 matches
Mail list logo