Title: Message
*ding!* *ding!* *ding!*...
my 'joeware' filter alarm just went off (it's set
to alert me when it detects +1.0 blood/alcohol level on a
thread). :-)
Sorry folks, I've been super busy answering to "the
master... yes preciou..." and haven't had lots of time to participa
Well, a couple of solutions exist here:
1. You can set a generic notification at logon time
Start->Programs->Administrative Tools->Local Security Policy->Local
Policies->Security Options-> Message Text/Title for Users Attempting to
Logon
You could say something menacing like "I know wh
Title: Message
Ryan,
If you're asking this because you're doing a
security/password strength analysis sweep, you can use a couple of different
tools to do this (all of which will rely on administrative privileges to
AD). Tools like PWDUMP2 have been updated to pull password hashes from t
While we're slightly OT...
:-)
I've written lots of widgety
types of automation these past couple of weeks (some .VBS, some Perl) for our
internal folks to use while remediating hosts & viruses, as well as to
validate patches on our installed DC base. We actually encountered a
few fail
Stuart,
We originally installed SP4 near the
beginning of August on all of our production Domain Controllers after testing it
in our (mirror of production) lab. Within two production workdays we began
to see the same issues Vladimir mentioned in his BUGTRAQ e-mail and we opened a
case wit
Not to disparage Tony's fine list here ;-), but if you haven't done so
already, a good place to post a notice like this would probably be on one of
the activestate lists for Win32 perl:
[EMAIL PROTECTED]
[EMAIL PROTECTED]
[EMAIL PROTECTED]
Found at: http://aspn.activestate.com/ASPN/Mail/
Richa
Title: Message
Jochen,
There
are a ton of resources that can help you with this. MSFT has quite a
few scripting resources to help you as well. For just mapping drives,
you could use the below example (from the MS Scripting
.CHM):
Dim WshNetworkSet WshNetwork =
WScript.CreateObject(
The Owner SID for a Security Descriptor is most definitely replaceable.
You can initialize a blank security descriptor (SD), fill in the Owner
SID (SetSecurityDescriptorOwner) with your desired new owner, then
overwrite the existing SD (the neat part is during the overwrite the
blank sections of
Justin,
I'd done an earlier posting for someone (w/ source) to view the
whenChanged attribute on objects within a given timeframe. I can repost
it if necessary. Additionally you can use ADSIEDIT.MSC to view that
attribute directly on the desired object, or ENUMPROP.EXE
"LDAP://cn=administrator
Or just specify the attribute you wanted directly...
enumprop /ATTR:WHENCHANGED "LDAP://cn=administrator,...,dc=com";
LDAP://cn=administrator,...,dc=com
1: whenChanged: 9/11/2002 7:41:11 PM
Regards,
Richard
> -Original Message-
> From: Thornley, Dave H [mailto:[EMAIL PROTECTED]]
>
Kit?
>
> Jbl
>
>
>
> -Original Message-
> From: Puckett, Richard [mailto:[EMAIL PROTECTED]]
> Sent: Friday, September 20, 2002 9:35 AM
> To: '[EMAIL PROTECTED]'
> Subject: RE: [ActiveDir] Extended Account Properties (?)
>
>
>
> Just
Title: Message
John,
Not
sure if you're interested in this, but if the hosts support the use of WMI, you
can do some fairly small (and cool) things with WMI, EventSinks and the Event
Log, or with private EventFilters, Consumers (SMTPEventConsumer) &
FilterToConsumerBinding. These will all
Title: Message
Domain Users Cannot Join Workstation or Server to a
Domainhttp://support.microsoft.com/default.aspx?scid=kb;en-us;Q251335
From
the article:
"Windows 2000 grants the "Add workstations to
domain" privilege to the Authenticated Users group by default. When this
privilege is
Dunno if this is useful for anyone, but here it is in Perl...
Regards,
Richard
use strict;
use Win32::OLE 'in';
use Win32::OLE::Const 'Active DS Type Library';
$Win32::OLE::Warn = 3;
# domain, access & quota variables
my $usr = 'DOMAIN\userid';
my $pwd = 'password';
my $dse = 'dc=mycompanyna
-
> -Original Message-
> From: Sullivan, Kevin [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, October 03, 2002 2:54 PM
> To: [EMAIL PROTECTED]
> Subject: RE: [ActiveDir] Joining computers to a domain?
>
>
> That'
Frank,
Have you checked this KB Article?
Error Messages When Using the ClonePrincipal Tool to Migrate User Accounts
http://support.microsoft.com/default.aspx?scid=KB;EN-US;Q283833&;
And do any of the presented scenarios match whats configured in your
environment?
Richard
> -Original Me
Title: Message
I
believe the TSPROF.EXE can do this. While not elegant, you can shell out
to it to handle multiple users.
Windows Terminal Server Documentation: TSPROF
http://www.microsoft.com/windows2000/en/server/help/default.asp?url=/windows2000/en/server/help/ts_cmd_tsprof.htm
If
y
Not sure if you're thinking about it, but if you are planning to use a VBS
script to manage the shutdown, you might want to add logging, or even e-mail
alerting (see below). I modified this slightly from another example in the
script library Rick mentions below. You could possibly use it to se
Michiel,
Make sure you possess the appropriate write access to the object, and check
your code against the below article.
Adding/Removing a Manager Object with ADSI (Visual Basic)
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/wss/wss/_cl
b_adding_removing_a_manager_object_wit
James,
There are a couple of different ways you could approach this.
One quick thought would be a custom logon script that targets this user
specifically at logon and runs a wscript (not cscript) call against the
below code (converted from the MS Script Repository). This creates a
temporary
If you were really evil, you could toss in a wscript.echo statement after
the objLatestProcess.TargetInstance.Terminate line that says "stop
downloading viruses already!" (or a more sensible usage warning).
:-)
Richard
> -Original Message-
> From: Puckett, Richard
Wes,
Funny you should ask :-P
As part of Cisco's 40,000 seat migration to AD, I wrote an Active Directory
migration wizard (called "Immigrant") that - among other things - migrated
workstations, enabled users and allowed them to set their own passwords as
part of the migration process. Amo
Brian,
There's probably a couple of tools/scripts out there, but here's one using
WMI and VBS.
Hope this helps,
Richard
option explicit
' declares
dim strUsrPDC, strUsrDom, strUsrAct, strUsrPwd, strUsrSid, strUsrName
' - target userid information -
' string sid to search for
strUsrSid = "S-1
Title: Message
ahh,
compiled... right... where's the fun it that?
:-p
To augment Rick's suggestion, you might also try Richard
MacDonald's SID Checker v1.0. It converts both ways sid -> username/username
-> sid
http://www.richmac.org/tools/sidchk/sidchk2.html
Regards,
Richard
Title: Message
Tom,
Not sure of any products, but programmatically there
are a number of different ways you might do this. If the server is
using Exchange 2000, you could implement an SMTP Transport Event
Sink on the backend Mailbox Server (or SMTP Bridgehead), possibly
using the ISMTPOnA
ity'} || undef) ?
$linkval->{'Priority'} : ""; print "
Priority:
".$tempval."\n";
if ($linkval->{'RecipientAddress'} || undef)
{ foreach my $mailid (@{$linkval->{'RecipientAddress'}})
{ #$x++; print &quo
Title: Message
Chris,
Below is a script I wrote earlier for someone
posting with the same question. This script is basically designed to do
profile redirection on a remote host, and is based on the assumption that
the credentials identified will possess Administrative access to the targ
Al,
Here's an example of what I think you're looking for. I did something
similar for someone else on this list awhile back for the 'whenChanged'
attribute.
Hope this helps,
Richard
option explicit
dim DNPath, ChangeVal, Com, con, rs
Public Const ADS_SCOPE_BASE = 0
Public Const ADS_SCOPE_
Travis,
Here's an example using VBS (just messing about on a Friday night). Should
do what you want (I think).
Hope this helps,
Richard
option explicit
on error resume next
dim RootDSE, DomainNC, DNPath, ChangeVal, fso, objFile, strLogFile
dim Com, con, rs, strSearch, sDesc, strDes, i
Pub
Andy,
While I'm not aware of any specific products on the market that do exactly
what you are looking for, in it's simplest form what you are asking is
actually pretty easy to do programmatically using ADO and ADSI. However
there are a lot of things to consider if you were going to go the script
honeNumber").Value
wscript.echo
"---"
objFile.WriteBlanklines(1)
objFile.Writeline "user details for: " &
rs.Fields("samAccountName").Value
objFile.Writeline
"--
Mark,
Below is a script I wrote last year as sort of a WMI
proof-of-concept/learning experience that performs user profile redirection.
It points a new userid (in this case, a migrated user in Active Directory)
to an existing profile (their previous profile) on the same host. This may
not be exa
32 matches
Mail list logo
