Do you have 'bridge all site links' disabled? We're currently designing a
similar setup across wan links that use vpns, but the kcc will try to go
through intermediate sites to reach non adjacent ones if you don't disable
this...
Paul
Hello everyone,
After lurking for a week or so, just wanted to send a quick note to
introduce myself. I'm an admin for a firm in London, currently designing an
AD structure for our group, to be rolled out this year, and very nervous
about it! Our AD structure will cover 15 sites, linked via VPN i
Hi everyone,
If I have a user in a group (LondonUsers), which is itself a member of
another group (AllUsers), is there a single ADSI call I can make to test
for membership of the user in AllUsers?
I want to group my users in nested groups, and have logon scripts take
actions based on whether the
Hi guys,
In my forthcoming domain, I will have a series of sites in a
non-fully-routed toplogy, ie, if site links a-b and b-c are defined, a may
not be able to see c directly. I am happy that I can turn off implicit
site-link bridging to accomodate for this in normal replication.
However, does a
I second that - my login scripts on NT4 have been perl based since I joined
- the flexibility is simply awesome.
I've been playing with deploying ActivePerl via GPO to my workstations then
writing GPO scripts in PerlScript (perl inside WSH files) - seems to work a
treat :)
Paul
|+--
an easily be invoked over the network via a UNC. I.e.:
\\YourFileServer\PerlInstall\bin\perl.exe
\\YourFileServer\PerlCode\yourscript.pl
Perl will automatically find it's module libraries on the server it was run
from.
-Original Message-
From: Paul Sobey [mailto:[EMAIL PROTECTED]
Hi guys,
Are there any issues to watch out for in an XP Pro/2K server environment?
We've taken the decision to standardise on XP on desktops with 2K servers.
I've read that there are extended group policy templates, but don't know a
lot about the new capabilities. Any/all advice gratefully receiv
Hi Rick,
Is it an option to rework the script to create the accounts using ADSI?
It's a very nice interface in my experience - a lot prettier than the
NetAdmin stuff IMHO.
Paul
Hi Tom,
AD integrated DNS can use signed DNS updates to stop exactly this sort of
thing. It's a sort of standardish way to do it, but I don't know whether
any other OS supports it. Historically, the various versions of Bind allow
only ip address restrictions on dynamic updates. At least one uni
Hi Guys,
I have finally got a working production domain (hooray!!), and now need to
start migrating users into it. The plan is as follows:
Create users with LDIFDE
Establish 1 way trust so that legacy NT4 domains trust new AD
Populate appropriate local groups in legacy domains with glob
everything? I'd use ADMT (latest beta) for the sidhistory of the old
accounts and to migrate groups.
Darren.
-Original Message-----
From: Paul Sobey [mailto:[EMAIL PROTECTED]]
Sent: 18 June 2002 11:57
To: [EMAIL PROTECTED]
Subject: [ActiveDir] Migration Issues - Advice please :)
Hi Guys,
Hi all,
I can't customise the columns in the XP version of ADUC, e.g. to view
username/email address. Is this a known issue or am I being silly?
Is there a list of known bugs for the XP AdminPak anywhere? I'm about to
start administering my production domain with the tools and want to make
sure
Hi Guys,
For migration purposes I have established a one way trust between my legacy
domain (trusting) and my new AD (trusted). Yesterday, both DCs got powered
off one at a time, and moved to new homes in the comms room. After they
were powered back up, the trust had failed. All attempts to re-es
st failures.
Good luck!
Rick Kingslan - Microsoft MVP [Windows NT/2000]
Microsoft Certified Trainer
MCSA, MCSE+I - Windows NT / 2000
"Any sufficiently advanced technology
is indistinguishable from magic."
--- Arthur C. Clarke
> -Original Message-
> From: [EMAIL PROTECTE
.0
MCSE on Windows 2000
MVP [Windows NT/2000 Server]
"Any sufficiently advanced technology
is indistinguishable from magic."
--- Arthur C. Clarke
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Paul Sobey
Sent: Sunday, July 07, 2002 12:11 PM
To: [EMAIL PROTECT
ly advanced technology
is indistinguishable from magic."
--- Arthur C. Clarke
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]] On Behalf Of Paul Sobey
Sent: Sunday, July 07, 2002 12:11 PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Trusts between AD and NT4 - HELP!!
Hi Ric
x27;[EMAIL PROTECTED]'" <[EMAIL PROTECTED]>
cc:
Subject: RE: [ActiveDir] Trusts between AD and NT4 - HELP!!
So what happened? Did the users have your head this AM?
-Original Message-
From: Paul Sobey [mailto:[EMAIL PROTECTED]]
Sent: Sunday, July
Have you tried VNC? It's not exactly terminal services but it is free. We've used it to support remote NT4 installations for a while, with great success...
P.
"David N. Precht" <[EMAIL PROTECTED]>
Sent by: [EMAIL PROTECTED]
12/07/2002 09:25
Please respond to ActiveDir
To
Hi Rene,
I have a friend who administers a directory for a large university with
approximately double the number of users you mention and quite a few more
servers, across 15 sites. There are no scalability problems with doing
this, but its worth noting that your life will be easier the better yo
I do this with ADSI in a computer startup script, assigned to OUs. This is in perl but it shouldn't be hard to translate into VBScript/JScript!
Paul
sub SetLocalAdminPass {
my $adminpasswd = shift;
my $grp = Win32::OLE->GetObject("WinNT://$ENV{COMPUTERNAME}/Administrator,user");
Hi Guys,
Is there a way of centrally determining where an account was locked out,
short of looking into event log management packages? One of my users has
left himself logged on somewhere, or a drive is mapped, then changed his
password, and his account keeps getting locked. I now have 17 doma
Hi Guys,
I want to configure IE 6 on our XP machines using Group Policy. I have
managed to configure a lot of the restrictions that I want, but now want
to access some of the settings on the 'Advanced' tab. I think these
settings are in the inetset.adm template file, but when I try to add it t
I did this a while back with some perl that looped round and pinged all
the machine accounts in a domain, logging whether they were up or not. I
probably still have the code lying around, but it would need to be
modified to your needs. Contact me off list if you are interested...
Cheers,
Paul
23 matches
Mail list logo
