] on behalf of Paul van Geldrop
Sent: Tue 2006-10-10 17:37
To: ActiveDir
Subject: [ActiveDir] OT: Ello!
Ello!
Just thought I'd at least have the decency to announce my presence on this
list. ;)
Joined today and looking forward to learning from all the grey matter
frequenting this list!
Regards,
Paul
How exactly do you plan to failover to
this server (at least, thats what I presume you want to do) ?
First option that springs to mind is setting
up a two-node cluster, letting the cluster-resources reside on the SAN disks. That
way, if one of the servers fails, everythingll smoothly
Ello!
Just thought Id at least have
the decency to announce my presence
on this list. ;)
Joined today and looking forward to learning
from all the grey matter frequenting this list!
Regards,
Paul
Ehm.. how about just renaming the account
and the user details.. ? You're not so much reinventing the wheel as
trying to reinvent the material needed for it as well.
Regards,
Paul
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Christopher Hummert
Sent:
Title: OT: VERY STRANGE ISSUE - Windows 95 and Long File Names
Oh,
And to add those finest little details:
Same users, same documents on Windows 98.. no problem.
Open a document with a long file name in
the corresponding application, and save as under another long
name.. no
You might want to consider doing some
scripting.
The DSADD command is your friend in this
case.
Regards,
Paul.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On
Behalf Of Rodriguez, Daniel [EPM/SRM]
Sent: Tuesday, February 22, 2005
11:28 PM
To:
Enabling it will require you to compile a C function into a nice little
command.
I plan to do so this weekend, completely forgotten about it.
This is one of the places that explains the process. Enjoy
http://weblogs.asp.net/jhoward/archive/2005/02/11/371080.aspx
Regards,
Paul
PS: If you examine
That is correct. However, if I get the time to get this fixed this
weekend, I'll be happy to share it with you for all your experimental
fun.
Regards,
Paul
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Nathan Casey
Sent: Friday, February 18, 2005
Indeed.. painful meaning:
An authoritative restore from backup. You might not want to follow that
option, but it's the only one leading to your desired solution in this
scenario.
Of course, depending on the situation, you might want to choose for
recreating the group, including its memberships
That's your cunning answer to this problematic situation, eh ? ;)
Actually, it seems the message was sent twice.. either that or my
mailserver has gone bonkers.. both are possible..
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jorge de
Almeida Pinto
To answer your second question:
You might want to consider using a VPN
between the locations and just all VPN traffic go up and down between the sites
without any blocking. Especially handy if you wish to use ISA Server on the
central location or something similar for the site's
) terminating into HQ from branch offices ???
going thorough the document now...
Chandra
On Wed, 2 Feb 2005 16:58:51 +0100, Paul van Geldrop
[EMAIL PROTECTED] wrote:
To answer your second question:
You might want to consider using a VPN between the locations and just
all
VPN
If it's remote admining you wish to
do on servers, then the administrative mode in 2003 mode (enabled by default)
will do nicely and does not require you to purchase TS licenses.. admins will
be able to connect (2 remote and 1 console) and administer the server. If you
want to use
Also check out this specific article:
http://support.microsoft.com/default.aspx?scid=kb;en-us;814590
As you can see in the notes, no TS CAL is
required, but the terminal services are only open to admins.
Regards,
Paul
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
Some more info might be good.. such as location of DCs, GCs, DNS
configuration, etc. I presume you're setting up the VPN with firewalls.. or
are you using ISA Server ?
Regards,
Paul
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Carerros, Charles
looking for. If you need
something else, let me know.
Charlie
-Original Message-
From: Paul van Geldrop [mailto:[EMAIL PROTECTED]
Sent: Monday, January 31, 2005 10:36 AM
To: 'ActiveDir@mail.activedir.org'
Subject: RE: [ActiveDir] VPN Connections with 2003 ADs
Some more info might be good
You know, I was looking forward to seeing piccies of this event, but I'm
starting to get scared now.. ;o)
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jorge de
Almeida Pinto
Sent: Monday, January 31, 2005 11:12 PM
To: ActiveDir@mail.activedir.org
In certain circumstances, a scheduled
reboot with shutdown.exe might give 0x15 code errors, indicating a process is
still running and that the shutdown command cant execute. Even using the
/f switch to force all applications to close wont work. Ive seen
this happen with virusscanning
Personally, I find it easier to let dcpromo create the DNS structure for me.
Then again, I am lazy at times. :)
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Kern, Tom
Sent: woensdag 26 januari 2005 18:07
To: ActiveDir (E-mail)
Subject: [ActiveDir]
Actually, creating two separate domains in one forest should work just
fine.
Access to resources will work just fine due to the two-way transitive
trusts, and the replication will be much less of an issue.
However, what you might want to investigate first if the reason that the
synch capabilities
Hi Aric,
I think you've been deceived slightly by the topic-title.
The title suggests separating the DCs while they stay in the same
domain, the content suggests creating two domains.
Regards,
Paul.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
The size of your public store is the sum
of the priv1.stm and priv1.edb files. Your public store size is the same, but
with the pub1.stm and pub1.edb files.
I do presume youre talking about
Exchange here, right.. ? :o)
Regards,
Paul
-Original Message-
From: [EMAIL
] On Behalf Of Paul van Geldrop
Sent: Tuesday, January 25, 2005 9:57 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir]
Information Store Size question
The size of your public
store is the sum of the priv1.stm and priv1.edb files. Your public store size
is the same, but with the pub1.stm
-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Paul van
Geldrop
Sent: Tuesday, January 25, 2005 12:51 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] Seperating two domain controllers with in the
same domain
Hi Aric,
I think you've been deceived slightly by the topic
Hi Noah,
Unfortunately, it is not possible to 'hide'
folders using NTFS permissions.
All you can do is grant and deny access on
the folders. Users will still see the folders, but they won't be able to
access those that they are not allowed to.
Regards,
Paul
Van:
[EMAIL
Hi Jeff,
There are a few options you could use
here.
First of all, using the logoff.exe command
with the /n option will allow you to logoff the user without them having to
confirm the logoff. However, yes, applications that still have unsaved data
will in this interfere, and using
If you're running Exchange 2000, also take a look at this little jewel, just
to be sure.
http://support.microsoft.com/default.aspx?scid=kb;en-us;314649
Regards,
Paul
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Shawn Hayes
Sent: dinsdag 18 januari
Hi,
Best way would be to set up a site-to-site
VPN and allow only the required AD traffic to pass through.
In case you need to use some service that
runs RPC with a random service port (1024), use the registry key for the
specific service port to use just one port, instead of a random
In the documents shown to you so far, you should find all the services
(including ports, etc) that you need to open up such a configuration.
A good, basic hardening rule is: Shut everything down (apart from the
most basic services, you'll find those in the documents mentioned
earlier) and then
In a nutshell:
Citrix is a server based computing architecture, a more advanced form of
Microsoft Terminal Services, if you will. Using Citrix servers and
Citrix clients one can build a SBC infrastructure that has many
advantages over MS Terminal Services, including advanced reporting,
resource
Not sure if this will work perfectly, but
as a first guess: Create the image with the pagefile
size set to a low number. Before you make the final image, set the pagefile size to be automatically managed.
When the image reboots after distribution,
it should then manage itself to a normal
If I'm not mistaken, it should be
port 636.
Also, keep in mind that FRS uses a
selection of random ports, so make sure to include these if you're going
to configure a firewall to allow for replication.
This article contains a list you might
find helpful:
Copying the ldifde.exe from the C:\Windows\System32 directory to
your workstation should work just fine.
I think it's an OS included utility, but quite frankly, I'd have to
check.
Regards,
Paul.
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Douglas M.
Ahem.
When I said 'copy it over', I
meant from the System32 directory on your server, by the way.
Regards,
Paul.
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Douglas M. Long
Sent: donderdag 9 december 2004
16:53
To: [EMAIL PROTECTED]
Subject: [ActiveDir]
Unless memory is not serving me well (pardon the bad pun), the switch
doesn't actually do that much.
In normal operating mode, the virtual address space of, let's say, a 4
GB machine is split up in 2 blocks, both 2 GB large.
When using the 3GB switch, the virtual address space that is used for
Hmmm, forget brevity.. I'd love to know more about this.. :)
Perhaps you can point me to a place where I can find more information on
this ?
Thanks in advance,
Paul.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Eric Fleischman
Sent: Monday, December
Are there any differences between the schedules, apart from the backup
type ? In theory, full should take longer than differential.
What backup software are you using ? Perhaps you defined different
numbers of media streams for the backup types, or compression, etc, etc.
Some more information
Martin,
If you check out the following link, you will find a white paper on Windows
2003 Terminal Server scaling. You'll find all the information there that you
need.
http://www.microsoft.com/windowsserver2003/techinfo/overview/tsscaling.mspx
Regards,
Paul.
-Original Message-
From:
Am I understanding correctly that the remote clients are already in the
domain ? If so, then what exactly do you want to use RRAS for ? I'm guessing
you're referring to the fact that the machine accounts exist in AD, in which
case they still don't log into the security context of your domain, and
are keeping the same file structures
and just changing the server names can you not setup cnames in DNS to point to
the new servers?
Not tried it myself but thought it might be
worth a suggestion.
Jacqui
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On
Behalf Of Paul van Geldrop
Even though that first line might sound rather amusing, it might just be
the trick to get things done.. it's amazing how management can decide to
.. bend the rules, let us say, when it concerns their own daily
routines.
Consider placing the laptops in a restricted VLAN. This might require
that
Title: Exchange 2003 - New mailboxes not created
Recipient Update Services, you'll
find it in the Exchange Administrator, just above the servers.
Paul.
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Jared Manhat
Sent: vrijdag 19 november 2004
15:56
To: [EMAIL
On a few occasions Ive seen this
give some rather annoying results if the connection between the Ciscos
is not 100% reliable.
But if youre gonna
use the Ciscos in a VPN Server Client config
with a decent line and there arent any restrictions firewall-wise, it
should work decently. (Not
Message-
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Paul van Geldrop
Sent: Monday, November 08, 2004
8:06 PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] AD
Replication over VPN
On a few occasions
Ive seen this give some rather annoying results if the connection
between
Jeff,
GPO would definitely be a good way to do
this, disallowing any change to the desktop.
You could also point the GPO to a specific
desktop with folder redirection so your users would get a predefined desktop,
allowing you to create different GPOs with different
desktops.
That way,
writes:
Some more information on the systems might be handy (service packs,
hotfixes, etc) and what kind of application.. and how are they connected
?
And, perhaps somewhat offtopic, but.. how come you're mailing from our
domainname.. ? (am-ende.net) Regards, Paul van Geldrop. - Original
Message
Jordan,
1) Did you verify that both DNS _and_ WINS resolution are functioning
properly ? You will need both of these to function properly for the
migration to work.
2) Did you add both the Anonymous Logon group as the Everyone group to the
Pre-Windows 2000 Compatible Access group ?
Regards,
Jason,
In the AD Connector's properties, you should be able to select specific
fields on the From Exchange tab.
I'm not sure if that includes the information you specify, but it might be
worth a look.
Good luck,
Paul.
- Original Message -
From: Jason Benway [EMAIL PROTECTED]
To: [EMAIL
As the attribute gets deactivated, the associated data doesn't get accessed
anymore until you reactivate the attribute.
It won't, however, get deleted, as far as I know.
Regards,
Paul.
- Original Message -
From: David Adner [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Friday, September
In the first example, you're logging in straight
into the security context of the domain, authenticating you to the
domain.
In the second example, you're logging into the
workstation's security context, which does notgive you domain-wide
authentication.
And, oh yes, I might be wrong, just
50 matches
Mail list logo