projects within the firm [no pressure
then!]
Thanks to all for the great feedback.
neil
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mark Parris
Sent: 30 May 2006 16:17
To: ActiveDir.org
Subject: Re: [ActiveDir] AD lag sites and replication
Neil
Return Receipt
Your RE: [ActiveDir] AD lag sites and replication
document:
wasJustin Leney/US/DCI
received
by:
at:05/31/2006 09:37:26 AM
NEW! COSMEO, THE ONLINE HOMEWORK HELP TOOL BROUGHT TO YOU BY DISCOVERY CHANNEL.
FREE TRIAL AT HTTP
:59 AMTo:
ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] AD lag sites and
replication
Joe,
I thought" (and its a long time since I looked) that you needed to
be an enterprise admin to force replication in AD Sites and Services... You can
force replication in the domain context in re
BSimonWeidner
Website: http://www.windowsserverfaq.org
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Dave Wade
Sent: Tuesday, May 30, 2006 12:59 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD lag sites and replication
Neil,
1)
If you start setting f
Title: AD lag sites and replication
You are able to
disable the network interfaces, pretty easy with VMWare or Virtual Server since
you are able to do it from the host via scripting, bit more painfull if you have
to do it from the DC itself since you don't have any remote access when the nic
and policies than use scripts to
disable NICs (or connection objects) at scheduled times :)
neil
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Ulf B.
Simon-WeidnerSent: 30 May 2006 09:01To:
ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] AD lag sites and
replication
You
IL PROTECTED] On Behalf Of
[EMAIL PROTECTED]Sent: Tuesday, May 30, 2006 10:33
AMTo: ActiveDir@mail.activedir.orgSubject: RE:
[ActiveDir] AD lag sites and replication
Thanks Ulf.
I
was hoping to avoid NIC disabling and such like. I was looking for a solution
which would
ehalf Of
[EMAIL PROTECTED]Sent: Tuesday, May 30, 2006 10:33 AMTo: ActiveDir@mail.activedir.orgSubject: RE:
[ActiveDir] AD lag sites and replication
Thanks Ulf.
I
was hoping to avoid NIC disabling and such like. I was looking for a solution
which would enforce the r
Of Ulf B. Simon-Weidner
Sent: 30 May 2006 11:32
To: ActiveDir@mail.activedir.orgSubject:
RE: [ActiveDir] AD lag sites and replication
Hi Neil,
I'd still go for a firewall with scheduled rules. IMHO there's no such thing as locked down replication schedules - as soon as someone is hitting a switch
2006 13:53To:
ActiveDir@mail.activedir.orgSubject: Re: [ActiveDir] AD lag sites and
replication
I think that's point, isn't it? To be able to have a site that lags the
rest of them for replication changes? :)
FWIW, there is no way that I'm aware of to prevent an admin from triggering
o
disable NICs (or connection objects) at scheduled times :)
neil
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Ulf B.
Simon-WeidnerSent: 30 May 2006 09:01To:
ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir] AD lag sites and
replication
You are able to
disable t
Neil,
You could always hack the replication epoch values - but then again..
M
-Original Message-
From: Dave Wade [EMAIL PROTECTED]
Date: Tue, 30 May 2006 14:36:34
To:ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD lag sites and replication
Al,
Sorry, I mis-read it. I
Neil asked...
I'm looking to implement one or more lag sites, with
staggered replication schedules. (i.e. NYC lag replicates
tues and thurs, 2-4 am; LON lag replicates mon, wed and fri 2-4 am).
We're concerned that admins can still force replication
outside of these hours using
it anyway. Another Guinness please..
-Original Message-
From: Molkentin, Steve [EMAIL PROTECTED]
Date: Wed, 31 May 2006 02:52:28
To:ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD lag sites and replication
Neil asked...
I'm looking to implement one or more lag sites
Website: http://www.windowsserverfaq.org
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Mark Parris
Sent: Tuesday, May 30, 2006 7:26 PM
To: ActiveDir.org
Subject: Re: [ActiveDir] AD lag sites and replication
Imagine a glass ceiling with a girl in a skirt
d and do itor they may have no intention of doing so -but have the
interlect of a tibetian Yak and do it anyway. Another Guinnessplease..-Original Message-From: Molkentin, Steve
[EMAIL PROTECTED]Date: Wed, 31 May 2006 02:52:28To:ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir]
Al,
Could you please translate the English into English?
Mark
-Original Message-
From: Al Mulnick [EMAIL PROTECTED]
Date: Tue, 30 May 2006 18:05:06
To:ActiveDir@mail.activedir.org
Subject: Re: [ActiveDir] AD lag sites and replication
While I agree that it could happen by accident, I
Title: RE: [ActiveDir] AD lag sites and replication
In a company that potentially has more users than some small countries - work it out applying the same logic - let's grant the permission to reset any password to any user.
Seriously, if something is being put in place for a reason
]
[mailto:[EMAIL PROTECTED] On Behalf Of Molkentin, Steve
Sent: Tuesday, May 30, 2006 12:52 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] AD lag sites and replication
Neil asked...
I'm looking to implement one or more lag sites, with
staggered replication schedules. (i.e. NYC lag
@mail.activedir.orgSubject: RE: [ActiveDir] AD lag sites and
replication
Neil,
1) If you start setting firewall rules then I am pretty
sure you will break things as you will block urgent replication. What happens if
some one changes their password and then goes to the home site? What about group
Title: AD lag sites and replication
As Al indicated,there isn't anything that is going to
stop an Admin who is determined to force the replication. However if you are
looking to stop accidents you could look at anything that blocks the RPC traffic
(IPSEC/Firewall) or disrupts name res for
21 matches
Mail list logo
