Thanks for the explanation Joe. I am currently on chapter three of your book.
Can't read it fast enough.
Do you know if 'deUser.commitchanges' is smart enough not to send an update
request to AD if the collection is not dirty?
Thanks
Y
From: [EMAIL
I have a user with no description attribute.
Anyone know why this works?
User.Invoke(put, New Object() {description, txtBxNewDescription.Text})
User.commitChanges
but this doesn't
User.Properties(Description).Add(txtBxNewDescription.Text)
User.commitChanges
I get the following error
they are not
equivalent?
Y
They aren't equivalent. Try using the .Value property instead:
user.Properties(description).Value =
Description is a funny property in AD in that the schema says that it allows
multiple values, but the DS itself will only allow it to contain a single
value for backward
,
but hopefully it won't require prescription drugs or surgery to replace.
Joe K.
- Original Message -
From: AD [EMAIL PROTECTED]
To: ActiveDir@mail.activedir.org
Sent: Thursday, December 28, 2006 12:06 PM
Subject: RE: [ActiveDir] DirectoryServices vb.net is broken.
It worked. Thanks a million
that must occur with any new LDAP programming project,
but hopefully it won't require prescription drugs or surgery to replace.
Joe K.
- Original Message -
From: AD [EMAIL PROTECTED]
To: ActiveDir@mail.activedir.org
Sent: Thursday, December 28, 2006 12:06 PM
Subject: RE: [ActiveDir
Do you have a reservation for your old DC?
From: [EMAIL PROTECTED] on behalf of Bob Anderson
Sent: Mon 16/10/2006 11:04 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] DHCP Problem
Neil,
When I add a new Authorization record it ads it with
Is there any other reason other then performance to have the Active Directory
log files and database on separate disks?
Opinions are welcome.
Thanks
Yves
List info : http://www.activedir.org/List.aspx
List FAQ: http://www.activedir.org/ListFAQ.aspx
List archive:
Ok ladies and gentlemen,
Once again I need your help. What would be the best query to list all servers
in Active Directory knowing that no additional indexes have been added from the
default install?
1. ((|(operatingSystem=Windows 2000 Server)(operatingSystem=Windows Server
20003))
2.
Hey,
Can anyone tell me how I can force uniqueness on the EmployeeNumber attribute?
I researched it for about 30 minutes but could not find an answer. I usually
would take more time but I am in a hurry.
Thanks
Yves St-Cyr
List info : http://www.activedir.org/List.aspx
List FAQ
: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of AD
Sent: Monday, March 13, 2006 8:12 AM
To: ActiveDir@mail.activedir.org
Subject: [ActiveDir] How to make EmployeeNumber unique?
Hey,
Can anyone tell me how I can force uniqueness on the EmployeeNumber
attribute? I researched it for about 30
You are all right. Thanks for the quick response guys. Once again, this group
came through.
I should have gave a little more background of my problem. We would like to
connect Remedy to AD. Remedy's requirements are unique alpha numeric number and
a maximum of 15 characters. I got it to work
Ok, this is the scenario.I needed to create 123 DNS entries really quick so I decided to use DNSCMD. It ended it being a big mistake.
The mandatory parameters for DNSCMD /RECORDADD are the following:
servername
/RecordAdd
Zone
NodeName
RRType
RRData
[command parameters]
So I typed in the
I concur. I understand why it does not show up in the gui but I do not understand why the server is still caching it. Deleting the object, clearing the pc cache and the server DNS cache does not get rid of the A record.
I was hoping someone can try it in their environment and see if they get
Actually both are valid.
From: WILLIAMS, J.D.Sent: Wed 07/12/2005 2:31 PMTo: 'ActiveDir@mail.activedir.org'Cc: '[EMAIL PROTECTED]'Subject: RE: [ActiveDir] Help with _vbscript_ to map printers
My wsh book shows the command to be
.AddPrinterConnection not .AddWindowsPrinterConnection
HTH
We have workstation that are not added to the domainand are configured to autologin. The username and password are duplicated on our domain which allows the local accountto use network resources.
We would like to join the workstation to the domain (to many advantages to explain why) and
@mail.activedir.orgSubject: Re: [ActiveDir] AD related? not really...
Sysinternals has a free utility that will automate the process:
http://www.sysinternals.com/Utilities/Autologon.html
On 12/1/05, AD [EMAIL PROTECTED] wrote:
We have workstation that are not added to the domainand are configured to autologin
Sorry I had to express myself here. Love the analogy. Well said.
From: joeSent: Tue 29/11/2005 9:12 PMTo: ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] FSMO role transfer
Actually I make all DCs that have a possibility of being the forest root PDC synchronize from an external source.
in AD? if not, where are they stored?
I plan to replacemy DC hardware next year, as long as I bring the new server up withthesame IP/Name etcconfiguration etc, I won't need to move the FSMO roles to another DC when Ireplace the hardware?
Sorry if these seems junior questions, this is my first job
As anyone found any issues in disabling the "distributed link tracking server" onwindows 2000 server domain controllers?
I would like to take a two step approachin disabling this useless service. First on the DCs and them on all workstations. Iwas just wondering if there would be an impact on
Thanks for info the joe and Guido,
Because of our politics where I work, modifiying 4 workstations is not that easy. Changing 20 DCs on the other hand is a walk in the park.
If I do not remove all of the filelinks manually, aren't they going to age out automatically after 60 days?
Thanks
Two words
Option Explicit
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Harding, Devon
Sent: Monday, November 14, 2005
6:05 PM
To: ActiveDir@mail.activedir.org
Subject: [ActiveDir] strGrooup?
I cannot figure this one out. Why doesnt the
following script
=
oFS.CreateTextFile(Computers - Result.txt, True)
' Doing AD Stuff
Set rootDSE =
GetObject(LDAP://RootDSE)
sDomain = rootDSE.Get(defaultNamingContext)
Set objConnection =
CreateObject(ADODB.Connection)
Set objCommand =
CreateObject(ADODB.Command)
objConnection.Provider =
ADsDSOObject
Does anyone have vb.net code they would like to share?
I am looking for an Active Directory object picker written in vb.net. I can
find allot of C++ examples but I am more comfortable with visual basic.
Thanks
Yves
List info : http://www.activedir.org/List.aspx
List FAQ:
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] VB.NET AD object picker?
Robbie Allen's Active Directory Cookbook is full of great examples in VB.
Check out the link to the code here:
http://www.rallenhome.com/books/adcookbook/code.html
I fully recommend purchasing it as well. This book
an issue as I can vpn and auth to AD thru the
RRAS server and term service in app mode to other servers. I just
can't join the domain.
Any help would be great.
thanks
List info : http://www.activedir.org/List.aspx
List FAQ: http://www.activedir.org/ListFAQ.aspx
List archive:
http
Does anyone know why LDP does not return the modifyTimeStamp attribute?
Hmm, I am a little bit confused joe. I did not ask for
msExchAlObjectVersion but it returns it anyways. Isn't LDP suppose to return
every attribute that is set for a an object?
Thanks
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
listmailSent: Tuesday, November 09, 2004
Thanks for the info.
When you say any service could leverage tokens from other users are you referring to services that are running on that box or services running somewhere on the network? If the server is secure and limited people have access to it, wouldn't that make more secure?
Thanks
Y
secedit /refreshpolicy machine_policy /enforce
From: Cothern Jeff D. Team EITCSent: Thu 07/10/2004 5:33 PMTo: [EMAIL PROTECTED]Subject: [ActiveDir] GPO applying.
A server we were working on was inadvertently moved into an OU that had a policy applied to it. That GPO had some settings that
Ladies and Gentlemen,
Can someonetell mewhat exactly happens or what the ramifications are when you enable "Trust Computer for delegation"?
I wrote an ASP.NET app that uses current credentials to authenticate. I know that the web app works when this "Feature" is on, and I know that it doesn't
PROTECTED] On Behalf Of Mukul Joshi
Sent: Sunday, June 06, 2004 2:55 AM
To: ADList
Subject: [ActiveDir] Tracking the machine from which user logs in
Hi,
I am writing an application that would track the login logoff activities
of users. I can get lastlogin and lastlogoff information from AD, but I
://msdn.microsoft.com/library/default.asp?url="">
From: AD [mailto:[EMAIL PROTECTED] Sent:
Thursday, May 13, 2004 5:34 PMTo:
[EMAIL PROTECTED]Subject: RE: [ActiveDir] Enumerating DCs
from a workstation that is not me mber of domain.
The problem with name resolution is the fact t
Hey Guys,
I am looking for a vb script or vb.net code that would return domain controllers
(names or ip addresses) of a specific domain name on a workstation that is NOT member
of the domain.
When you add a computer to a domain (right click my computer, properties, Computer
Name, Change)
Of Mulnick,
AlSent: Thursday, May 13, 2004 4:42 PMTo:
'[EMAIL PROTECTED]'Subject: RE: [ActiveDir] Enumerating
DCs from a workstation that is not me mber of domain.
Huh? Wouldn't thename resolution calls work
better then?
http://msdn.microsoft.com/library/default.asp?url="">
Al
Help,
We have a DNS integrated zone and I have a need to enumerate all reverse lookup records. Unfortunetaly the computer name in saved in a octectstring format attribute called dnsRecord.
Lookup a record in the
DC=xx.in-addr.arpa,CN=MicrosoftDNS,
CN=System,DC=DomainName"
container and you
Hi Al,
Can you elaborate how I can export the entire zone via DNS.
Thanks
Yves
From: Mulnick, AlSent: Fri 26/03/2004 11:57 AMTo: '[EMAIL PROTECTED]'Subject: RE: [ActiveDir] Anyone ever convert dnsRecord attribute?
Why do you want to enumerate via LDAP? Why not via DNS?
From: AD [mailto
the zone to a non-integrated instance and parse the zone file if you really wanted to.
I'd opt for the script, but that's me.
Al
From: AD [mailto:[EMAIL PROTECTED] Sent: Friday, March 26, 2004 1:00 PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] Anyone ever convert dnsRecord attribute?
Hi Al,
Can
really wanted to.
I'd opt for the script, but that's me.
Al
From: AD [mailto:[EMAIL PROTECTED] Sent: Friday, March 26, 2004 1:00 PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir] Anyone ever convert dnsRecord attribute?
Hi Al,
Can you elaborate how I can export the entire zone via DNS.
Thanks
in a loop might be useful but you'd have
to know what you're going after.
Saying all of that, you could transfer the zone to a
non-integrated instance and parse the zone file if you really wanted
to.
I'd opt for the script, but that's
me.
Al
From: AD [mailto
Title: RE: [ActiveDir] OU/Computer accounts reorganization
I
guess one would also have to ask why not just apply the policies to the sites
and not worry about the ou's? Then you don't have to worry about it now or
in the future.
-Original Message-From:
[EMAIL PROTECTED]
reorganization
Because each site needs different GPOs (SUS server at local
site, different desktops, different logon scripts, certain OUs have delegated
administration etc...I agree with the "make it simple, see it working better"
statement, but i wouldn't certainly give up using key Win2000 A
-
From: Joe [mailto:[EMAIL PROTECTED]
Sent: Monday, December 08, 2003 8:51 PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Changing Hardware for DC
Interesting on your demotion experience. I have been running AD and
large
numbers of domain controllers since the bloody oem days and can't say I
have
: Salandra, Justin A. [mailto:[EMAIL PROTECTED]
Posted At: Thursday, September 18, 2003 11:50 AM
Posted To: AD
Conversation: [ActiveDir] Article on SUS
Subject: [ActiveDir] Article on SUS
http://searchwin2000.techtarget.com/originalContent/0,289142,sid1_gci928356,
00.html
http://searchwin2000
In looking at the ADM for the SUS SP1 I found the answer. It is configurable to wait
x minutes after startup if the scheduled time was missed.
-Original Message-
From: AD
Posted At: Thursday, September 18, 2003 2:50 PM
Posted To: AD
Conversation: [ActiveDir] Article on SUS
Subject: RE
Great site - thank you.
-Original Message-
From: Tom Meunier [mailto:[EMAIL PROTECTED]
Posted At: Thursday, September 18, 2003 3:06 PM
Posted To: AD
Conversation: [ActiveDir] Article on SUS
Subject: RE: [ActiveDir] Article on SUS
http://www.susserver.com/FAQs/FAQ-AutoUpdateSettings.asp
CEO Principal Advisor
Microsoft MVP - Active Directory
-- www.qadvice.com --
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of AD
Sent: Friday, August 22, 2003 9:58 PM
To: [EMAIL PROTECTED]
Tony,
I clicked on Browse
in a similar manner. If you
are using LDAP API instead of ADSI you need to encode the sid back into an
octet string and do the search with it. Check out Gil Kirkpatrick's Programming
Active Directory as he has some good info on this type of schtuff. Actually if
you are doing any AD programming, get
CEO Principal Advisor
Microsoft MVP - Active Directory
-- www.qadvice.com --
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of AD
Sent: Friday, August 22, 2003 12:35 AM
To: [EMAIL PROTECTED]
Anyone know how to query AD
P query on ObjectSID attribute
It's not really using an attribute as your Base DN. The starting point for a search can be SID, GUID or DN.
It works as Jimmy describes below.
Tony
-- Original Message ------
From: AD [EMAIL PROTECTED]
Reply-To: [EMAIL PROTECTED
Anyone know how to query AD on the ObjectSID?
My query looks like this:
((ObjectCategory=user)(SamAccountName=*)(ObjectSID=S15-2-4-341234134123412432412344))
Doesnt return anything. I know the sid must converted
but I am not sure what format it should be in.
Thanks
Y
50 matches
Mail list logo