No. GPO's are registry based (At least admin templates), so they should work on XP box
without the need of Windows Server 2003. It is enough if you set them up from XP box
or import them in 2000 DC (adm templates). What policies are we talking about ? Run
gpresult /v to get verbose information
Use restricted groups GPO settingon member servers
and prescribe the membership in local Admin groups from other
domains.
Regards
Matjaz Ladava
MVP Windows server - Directory
Services
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Depp, Dennis
M.Sent:
to run this stuff.
Matja Ladava, MCSA, MCSE, MCT,
MVP
Microsoft MVP Windows Server - Active
Directory
[EMAIL PROTECTED],[EMAIL PROTECTED]
Title: [ActiveDir] maxPwdAge property on AD2003
I have an interesting observation about this one. If by
default your MaxPwd policy is set to 42 days, then you will get (using
theLDAP)0 for LowPart and -8640 for High Part. If you change your
MaxPwd policy to something else (ex. 45 days), then
Can you verify, that RUS (Recipient Update Service) service is
running properly. Also check which server is designated for RUS. See http://support.microsoft.com/?id=288807for RUS
troubleshooting.
Do you get any unusual events in your event log ?
Regards
Matjaz Ladava, MCSE, MCSA, MCT, MVP
RPC errors normally indicate name resolution problems. Can you
verify with nslookup that your name resolution is working as it should ? How are
this sites connected ?
Regards
Matjaz Ladava, MCSE, MCSA, MCT, MVP Microsoft MVP - Active
Directory[EMAIL PROTECTED], [EMAIL
Nup, becuase they have not been written for MMC. That was
the big thing about MMC framework. You would have to distribute them
separately.
Regards
Matjaz Ladava
From: Pararajasingam,Anton
[mailto:[EMAIL PROTECTED] Sent: Wednesday,
November 05, 2003 1:04 PMTo:
'[EMAIL
Title: Message
Sure. When you boot into DSRM network works just fine.
Infact I was TS-ing to one Windows server booted in DSRM and did troubleshooting
AD over the network.
Matjaz
Ladava, MCSA, MCSE, MCT, MVP
Microsoft
MVP Windows Server- Active Directory[EMAIL PROTECTED]
Great to hear that. ADO sometimes behaves strangely. For
example if you take ADO for querying AD. There are several ways to sort ADSI
results, but none works as it should :-(
Matjaz
Ladava, MCSA, MCSE, MCT, MVP
Microsoft
MVP Windows Server- Active Directory[EMAIL PROTECTED]
This is AdminSDHolder object on the work. Active directory protects accounts
that are part of specific systme groups, ba checking their premissions
regullary (this is done py the PDC role owner). If permissions change on
this objects, they are reverted back to what is written in AdminSDHolder
Windows 9x/Me don't have a computer account in AD, so you don't join them to the AD,
you just log in to domain.
Regards
Matjaz Ladava
-Original Message-
From: Chris Blair [mailto:[EMAIL PROTECTED]
Sent: Wednesday, October 29, 2003 5:28 PM
To: [EMAIL PROTECTED]
Subject: [ActiveDir]
But you could still access web servers and others. Not all
network resources are file based ;-)
Regards
Matjaz Ladava
- Original Message -
From:
Rich Milburn
To: [EMAIL PROTECTED]
Sent: Wednesday, October 29, 2003 10:12
PM
Subject: RE: [ActiveDir] Cached
12 matches
Mail list logo
