RE: [ActiveDir] Access DB2 on AIX with AD credentials

Title: [ActiveDir] OT: Netlogon Service You would want to use kerberos for this most likely. I would look at the Centrify and Vintela offerings, I expect that one or other or both will have something.   -- O'Reilly Active Directory Third Edition - http://www.joeware.net/win/ad3e.htm      Fr

RE: [ActiveDir] internet explorer is frozen

Yes, I was able. Regards, -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Olivarez, Sergio J Mr CTNOSC/GD-NS Sent: Wednesday, March 15, 2006 6:18 PM To: ActiveDir@mail.activedir.org Subject: RE: [ActiveDir] internet explorer is frozen Before you delete

RE: [ActiveDir] Access DB2 on AIX with AD credentials

RACF is a mainframe security package, so unless AIX is running on a partition on Z-series hardware, my guess is it uses good old Unix security. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Tomasz Onyszko Sent: Wednesday, March 15, 2006 2:45 PM To: Acti

Re: re[2]: [ActiveDir] Automatic update and Non-Admin Accounts

Shane,   My GPO settings for WSUS   - 4 - Auto download and schedule the install  ==> Scheduled install day: 0 - Every day ==> Scheduled install time: 03:00 - Enable client-side targeting: Enabled - Target group name for this computer: Computers (or Servers in case of Servers GPO) - S

RE: [ActiveDir] Access DB2 on AIX with AD credentials

Vintela Authentication Services has a DB2 plug-in that enables the SSO. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Tomasz Onyszko Sent: Wednesday, March 15, 2006 2:45 PM To: ActiveDir@mail.activedir.org Subject: Re: [ActiveDir] Access DB2 on AIX with

Re: [ActiveDir] Access DB2 on AIX with AD credentials

Rich Milburn wrote: I just got a query from my father-in-law: They have a DB2 database running on AIX. They want to have their users, who are logging into AD, access the DB2 database using their AD credentials. Seems like a fairly straightforward issue, but my limit of knowledge about AI

[ActiveDir] Access DB2 on AIX with AD credentials

Title: [ActiveDir] OT: Netlogon Service I just got a query from my father-in-law:   They have a DB2 database running on AIX.  They want to have their users, who are logging into AD, access the DB2 database using their AD credentials.  Seems like a fairly straightforward issue, but my limi

Re: [ActiveDir] Communication across a trust...with firewalls

When it comes to ironing out (AD/Client) connectivity issues through firewalls I'd also consider using portqry and 'pinging' the member server on the other side... http://www.microsoft.com/downloads/details.aspx?familyid=89811747-C74B-4638-A2D5-AC828BDC6983&displaylang=en

RE: [ActiveDir] Communication across a trust...with firewalls

Keep in mind, there is a reason that UDP was chosen for the standard. It is a lot lighter/skinnier and in probably 95%+ of the cases it works perfectly fine. You don't necessarily want to fatten up all of the traffic for everyone to fight an occasional problem. The problems tend to come in fr

RE: [ActiveDir] Configuring PDC Emulator for time source

Really...   How far off are you seeing the clocks? I understand the requirements for tight timing for financials, the large company I did the work with had a financial division (actually that is the division that makes all of the money for the whole company) but the time was also just as imp

RE: [ActiveDir] Communication across a trust...with firewalls

Something I wish they did when the product was released J   Todd   From: Olivarez, Sergio J Mr CTNOSC/GD-NS [mailto:[EMAIL PROTECTED] Sent: Tuesday, March 14, 2006 5:14 PM To: ActiveDir@mail.activedir.org Subject: RE: [ActiveDir] Communication across a trust...with firewalls

RE: [ActiveDir] Folder redirection exceptions?

I haven't tried to do this with My Pictures, but redirecting My Music required changing both of these keys: My Music under HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders CDRecordPath under HKCU\Software\Microsoft\MediaPlayer\Preferences Apparantly Media Player (versi

RE: [ActiveDir] Configuring PDC Emulator for time source

You picked the word 'burden' and ran with it :)   I agree that the default should work for most but financial institutions often have requirements for time sync which the default hierarchy struggles to attain.   neil From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of joeSent:

Re: [ActiveDir] OT: Virus' Where are they?

From what you describe I think you could actually save money by purchasing Trend Micro NeatSuite or the SMB product as a package with Control Manager and save some money in the long run. I haven't seen much in the past 30-60 days myself and am in a similar situation sizewise: 8 servers, 5 peo

Re: [ActiveDir] OT: Virus' Where are they?

I've seen Clam in mid/large enterprises... I've honestly not seen it in the small sized firms. AdamT wrote: On 3/15/06, Shirley Graver <[EMAIL PROTECTED]> wrote: If I go to them and say I want to buy system wide virus protection that will be more efficient but it will cost $XXX.XX thousand

Re: [ActiveDir] OT: Virus' Where are they?

Sit them down. Tell them they are not saving money with you sneakernetting to make sure that those onesy and twosey are working at they should. Trend CSM also does vulnernability scans (scans for missing patches). www.threadcode.com/antivirus.ppt That's SBSized antivirus products (three of t

RE: [ActiveDir] Configuring PDC Emulator for time source

The time stuff really isn't a terrible burden, a single Exchange server at idle beats a DC more than time syncing. Probably the hardest hit DCs would be the local DCs as all of the clients authenticating against them are also hitting them for time and the auth is far more burdensome than the

RE: [ActiveDir] OT: Virus' Where are they?

It took a while but we sold it to management based on downtime loss of revenue and man hours if the network did become infected. We also pointed out time lost having to wade through spam, and how much they could lose (up to 10K if they can't bid on a job) if they did not receive particular email.

Re: [ActiveDir] OT: Virus' Where are they?

On 3/15/06, Shirley Graver <[EMAIL PROTECTED]> wrote: > If I go to them and say I want to > buy system wide virus protection that will be more efficient but it will > cost $XXX.XX thousand dollars, all they will hear is "THOUSANDS OF > > >DOLLARS". Have you looked at ClamWin? http://www.clamwin

RE: [ActiveDir] OT: Virus' Where are they?

It's has to do with Ownership perception. If I go to them and say I want to buy system wide virus protection that will be more efficient but it will cost $XXX.XX thousand dollars, all they will hear is "THOUSANDS OF DOLLARS". If I go and say that I spent $50.00 on a onesy twosey basis, they don't

Re: [ActiveDir] Automatic update and Non-Admin Accounts

I agree on both points indicated by Susan and Daniel.   For the one of Susan: preciesly what I did!   For the remark of Daniel: I have only XP SP2 in that environment, so no issues there. But ofcourse it is a requirement for automatic updates!   Bart  On 3/15/06, Paessens, Daniel <[EMAIL PROTECTED]

RE: [ActiveDir] internet explorer is frozen

Before you deleted the CNAME record were you able to resolve the CNAME record using nslookup? Thanks... ... ... ... Sergio J. Olivarez - Contractor GD-NS -Original Message- From: Sharif Naser [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 15, 2006 4:01 AM To: ActiveDir@mail.activedir.

RE: [ActiveDir] Automatic update and Non-Admin Accounts

The only thing that you need to verify for these features is that OS are on the minimum service pack level. For example W2K need to be at SP4 for being able to work with the GPO. (In the past you needed to install a client version of it)     Best regards,   Daniel From: [EMAIL PROTECTED] [

Re: [ActiveDir] Automatic update and Non-Admin Accounts

Download it. Play with it in a test network Figure out what server it needs to be installed on and deploy it in your firm. The key to it working it setting a "auto install at ___ insert time" Only if the patches are set to install at say 2 a.m will patches deploy in a nonadmin setup, but it

Re: [ActiveDir] OT: Virus' Where are they?

You use PCCillian in a small LAN? Why not a console/domain based A/V? Shirley Graver wrote: I have a small network, (30 systems 3 servers), two independent email channels. One channel is a web based service, the other hosted at our location. Each workstation and server has its own automatical

Re: re[2]: [ActiveDir] Automatic update and Non-Admin Accounts

I will post the settings I use this evening as I'm working currently on another site.   About WSUS, did you already install a SUS server? It's quiet similar except that WSUS has much more capabilities. And like for settings towards the clients, you can use GPO to push the settings and not WSUS. For

re[2]: [ActiveDir] Automatic update and Non-Admin Accounts

In my scenario the pc are not on constantly (they are only on when the user uses it). Can you send those settings over please. These are the settings I have at the moment: Do not display "Install Updates and Shutdown' option in Shutdown Windows dialog box - Disabled Configure Automatic Updates

Re: [ActiveDir] Folder redirection exceptions?

Indeed a long job to do.   You have nevertheless several options.   1) GPO ==> My Documents redirection with the issues pointed out already 2) GPO to push values in the HKCU registry keys 2) Modify your login script and push values in the HKCU registry keys from there   It's the one you choose ofco

RE: [ActiveDir] Folder redirection exceptions?

Dan, If you'd be so kind to post the answer back to the group when you find it. I'm also interested in knowing how you were able to solve this. Nathan -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Dan Holme Sent: Wednesday, March 15, 2006 2:10 AM To:

Re: [ActiveDir] Automatic update and Non-Admin Accounts

Hi Shane,   No you do not need to log onto each machine and run updates manually :-)   I've configured my WSUS settings through GPO for the clients. They install each night the updates from my WSUS server and if a user is logged on (locked the pc), the pc won't reboot automatically in case it's nee

[ActiveDir] Automatic update and Non-Admin Accounts

Hi, Do automatic updates install automatically with no admin accounts? Or do I have to log onto each machine and run updates manually? What is the best group policy setting for automatic updates? -- Shane De Jager Technical Developer INTERGAGE High-performance, updateable Web sites Switchb

RE: [ActiveDir] OT: Virus' Where are they?

No, we're not relaying mail through our ISP's gateway, though I did choose the web based vendor because it does multiple scans and decompresses and scans compressed files before (www.webmail.us) delivery to webmail boxes. On the locally hosted mail service (Slmail) I am using RBL, reverse DNS and I

Re: [ActiveDir] OT: Virus' Where are they?

On 3/15/06, Shirley Graver <[EMAIL PROTECTED]> wrote: > Zero detections over the past 30 days. Our volume is about 2400 messages a > > > month. So where'd the virus' go? Are you relaying mail through an ISP's gateway before it hits your network? Do you have any other virus scanning software on

RE: [ActiveDir] internet explorer is frozen

Thanks ken I re-started my domain controllers ,deleted alias record from dns added again. I was getting dns errors 4004,4015 and 4016. I'm watching the DNS and see whether those errors will come again or not. Regards, -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]

RE: [ActiveDir] internet explorer is frozen

As mentioned before, please get a packet capture using Ethereal or Netmon. Then we can see what's actually happening on the network. Cheers Ken : -Original Message- : From: [EMAIL PROTECTED] [mailto:ActiveDir- : [EMAIL PROTECTED] On Behalf Of Sharif Naser : Sent: Wednesday, 15 March 2006

RE: [ActiveDir] Configuring PDC Emulator for time source

FWIW: I prefer to synch *all* DCs in the forest with an auth time source. This implies less burden and less dependency on the (root domain) PDC. I work at larger orgs who have internal auth time sources, which are synced from external auth time sources.   In a financial institution, this sho

[ActiveDir] Configuring PDC Emulator for time source

Hi,   I have been looking into configuring with Windows Time Source on our PDCe http://technet2.microsoft.com/WindowsServer/en/Library/f1d8b85d-2b4f-4acd-8c2e-259167b95e481033.mspx   How does everyone else configure their corporate environment? Do you use hardware time clocks? is there any se

[ActiveDir] OT: Virus' Where are they?

I have a small network, (30 systems 3 servers), two independent email channels.  One channel is a web based service, the other hosted at our location.  Each workstation and server has its own automatically updated (daily) virus software (Trend/PcCillin).  All systems get an automated weekly

RE: [ActiveDir] When and how often are EA rights needed?

Granted, they do not come close. My point is that if you can manage sites and subnets and replication etc, then you are acting as tho you were an EA and the custodian of the forest. I would rather have a dedicated team of EA people and that the enterprise wide components (such as the above) ar