Re: Sonicwall TZ100 content filtering

SonicWall's SSO functionality (AD integration) requires an agent running on a machine somewhere on the network. It doesn't have to be a DC, but it does have to be a Windows OS. The agent does a WMI query against the client IP addresses requesting internet access and determines the logged in user.

RE: Sonicwall TZ100 content filtering

We connected dual Sonicwalls for a 700 client office and did AD integration, it required an app on the DC to run and sync back to the Sonicwall IIRC. It didn't just pull LDAP queries. These were Sonicwall 5000 series on 100MB fiber internet and gig metro-e ports. It did work however, and we did

RE: Different proxy settings under NLASVC

Are proxy settings only delivered via GPO? This kind of sounds like they may be getting picked from a server that has a wpad.dat. Automatically detect needs to be set in the browser for it look for wpad. From: Haritwal, Dhiraj [mailto:dhiraj.harit...@ap.sony.com] Sent: Monday, 9 May 2011 8:37

RE: Antivirus SAAS

Cloud based web and email virus/malware scanning is probably what they were referring to. -Original Message- From: John Aldrich [mailto:jaldr...@blueridgecarpet.com] Sent: Wednesday, 18 May 2011 3:16 AM To: NT System Admin Issues Subject: RE: Antivirus SAAS Well, I got a call today from

Re: WinSxS folder on Server 2008 R2

Microsoft does not appear overly concerned about resource consumption. >>> When a 1tb 7200 rpm 6Gb/s Seagate SATA drive costs less than >>> $150, I can't say I really blame them... >> But, if you're not using DAS... > Or even if you are, and your blade server only has 2.5" 32GB disks... Or

Re: WinSxS folder on Server 2008 R2

Or even if you are, and your blade server only has 2.5" 32GB disks... On Tue, May 17, 2011 at 8:10 PM, Jonathan Link wrote: > But, if you're not using DAS... > > > > On Tue, May 17, 2011 at 7:47 PM, Kurt Buff wrote: > >> On Tue, May 17, 2011 at 15:19, Ben Scott wrote: >> > On Tue, May 17, 2011

Re: WinSxS folder on Server 2008 R2

But, if you're not using DAS... On Tue, May 17, 2011 at 7:47 PM, Kurt Buff wrote: > On Tue, May 17, 2011 at 15:19, Ben Scott wrote: > > On Tue, May 17, 2011 at 4:36 PM, John Cook wrote: > >> Does anyone know what the deal is on this? There is a vsp1cln and > compcln > >> file mentioned in re

Re: WinSxS folder on Server 2008 R2

On Tue, May 17, 2011 at 15:19, Ben Scott wrote: > On Tue, May 17, 2011 at 4:36 PM, John Cook wrote: >> Does anyone know what the deal is on this? There is a vsp1cln and compcln >> file mentioned in reference to Vista/2008 but I’m not finding anything in >> reference to R2 that is helpful in regar

Re: WinSxS folder on Server 2008 R2

On Tue, May 17, 2011 at 4:36 PM, John Cook wrote: > Does anyone know what the deal is on this? There is a vsp1cln and compcln > file mentioned in reference to Vista/2008 but I’m not finding anything in > reference to R2 that is helpful in regards to cleaning up this disk hog. Microsoft's quasi-

Re: Questions on location to download .MSP and .EXE for adobe products

On 17 May 2011 at 14:51, Ziots, Edward wrote: > Folks, which site are you using to get the .EXE and .MSP files to update > the Adobe Suite of Products? (Flash, Reader, Write, Shockwave etc etc) > > I am trying to find where they store the files on the ftp://ftp.adobe.com > site,

Re: connecting TO a XP PC via RDP AND getting multi-monitor support

On 17 May 2011 at 10:49, Ben Serebin wrote: > I'm well aware of the "span" feature in RDC 6.0 for outbound RDP > connections to a multi-monitor environment, BUT I'm trying to do something > DIFFERENT. I need to know and find something documented that says inbound > (yes, inbound) to what lev

RE: WinSxS folder on Server 2008 R2

As the title of that links indicates, it is my understanding the cleanup is only helpful following the application of a service pack. If you are just sitting on the base 2008 R2, I don't think there is anything you can do-unless you upgraded a 2008 machine to 2008 R2. No idea about that one.

RE: WinSxS folder on Server 2008 R2

Something like this perhaps: http://www.sevenforums.com/tutorials/122262-windows-7-sp1-disk-cleanup-tool.html DAMIEN SOLODOW Systems Engineer 317.447.6033 (office) 317.217.6851 (fax) HARRISON COLLEGE From: John Cook [mailto:john.c...@pfsf.org] Sent: Tuesday, May 17, 2011 4:42 PM To: NT System A

RE: WinSxS folder on Server 2008 R2

That much I gathered but there was a one time cleanup process available in Vista/2008 to remove the unnecessary files. John W. Cook System Administrator Partnership For Strong Families 5950 NW 1st Place Gainesville, Fl 32607 Office (352) 244-1610 Cell (352) 215-6944 MCSE, MCP+I, MCTS, CompTI

RE: WinSxS folder on Server 2008 R2

It contains backup copies of Windows files and cannot be deleted. http://blogs.technet.com/b/joscon/archive/2010/08/06/should-you-delete-f iles-in-the-winsxs-directory-and-what-s-the-deal-with-vss.aspx From: John Cook [mailto:john.c...@pfsf.org] Sent: Tuesday, May 17, 2011 4:36 PM To: NT S

WinSxS folder on Server 2008 R2

Does anyone know what the deal is on this? There is a vsp1cln and compcln file mentioned in reference to Vista/2008 but I'm not finding anything in reference to R2 that is helpful in regards to cleaning up this disk hog. TIA John Cook Systems Administrator Partnership for Strong Families _

Re: Recommendations - Laptop for Virtualization

Yeah I would love to have a SSD drive but that is out of my price range at the moment. Jon On Mon, May 16, 2011 at 9:47 PM, Ken Schaefer wrote: > I’m using a Sony Z (which you can’t get anymore unfortunately) > > > > However a lot of the corporate models will have: > > a) Main drive bay >

RE: Questions on location to download .MSP and .EXE for adobe products

Thanks jimmy, I think that was the Jackpot. Z Edward E. Ziots CISSP, Network +, Security + Security Engineer Lifespan Organization Email:ezi...@lifespan.org Cell:401-639-3505 From: Jimmy Tran [mailto:jt...@teachtci.com] Sent: Tuesday, May 17, 2011 3:04 PM To: NT System Admin Issu

RE: Questions on location to download .MSP and .EXE for adobe products

Let me keep digging... Z Edward E. Ziots CISSP, Network +, Security + Security Engineer Lifespan Organization Email:ezi...@lifespan.org Cell:401-639-3505 From: Guyer, Don [mailto:don.gu...@fiserv.com] Sent: Tuesday, May 17, 2011 3:04 PM To: NT System Admin Issues Subject: RE: Ques

RE: Questions on location to download .MSP and .EXE for adobe products

I believe everything can be had there, under "Pub". It's kinda unorganized Surprise there Don Guyer Windows Systems Engineer RIM Operations Engineering Distributed - A Team, Tier 2 Enterprise Technology Group Fiserv don.gu...@fiserv.com Office: 1-800-523-7282 x 1673 Fax:

Questions on location to download .MSP and .EXE for adobe products

Folks, which site are you using to get the .EXE and .MSP files to update the Adobe Suite of Products? (Flash, Reader, Write, Shockwave etc etc) I am trying to find where they store the files on the ftp://ftp.adobe.com site, but not having much luck. I need the .exe and .MSP files so I can extra

Re: Server folder permissions issue

Is there a Deny ACE in any of the directories above the one that the temp is writing into? On Tue, May 17, 2011 at 07:16, wrote: > > It's Win2003 SP2... > > Effective permissions showing (currently) as read/write/execute/delete - > currently all the boxes are checked for this person. > -- > RMc

RE: Questions on WIndows 2008 Terminal Services

+1 And what happened to winipcfg? :) From: Andrew S. Baker [mailto:asbz...@gmail.com] Sent: Tuesday, May 17, 2011 11:41 AM To: NT System Admin Issues Subject: Re: Questions on WIndows 2008 Terminal Services I'll still never get why they just didn't make /console and /admin operate the same way

RE: Antivirus SAAS

Well, I got a call today from a company who handles the hardware maintenance on the AS/400. Seems they also resell McAfee and McAfee just bought another company recently and is trying to sell their antivirus as a service. They were talking about how you just proxy everything and don't have to worry

Re: Sharepoint DocID

well IE8 on xp-64 same thing. it asks to open in infopath. does not open in the browser. - Who'd you rather be, the Beatles or the Rolling Stones? On Tue, May 17, 2011 at 09:15, Cameron wrote: > What about IE8? I'd be curious about that actually as I've found IE9 to > have

RE: Antivirus SAAS

What vendor told you that you didn't have to load something on each machine? Typically, SaaS a/v just means that the management is in the cloud. You still have a local a/v application, that still requires updating... Regards, Michael B. Smith Consultant and Exchange MVP http://TheEssentialExcha

RE: Questions on WIndows 2008 Terminal Services

James/Michael, many thanks. Z Edward E. Ziots CISSP, Network +, Security + Security Engineer Lifespan Organization Email:ezi...@lifespan.org Cell:401-639-3505 From: Michael B. Smith [mailto:mich...@smithcons.com] Sent: Tuesday, May 17, 2011 12:36 PM To: NT System Admin Issues Subje

RE: Questions on WIndows 2008 Terminal Services

Agree, like I said, forgotten more about Terminal Services than I care to admit, again moved on to greener and more important pastures in information security realm, so trying to tie up loose ends before I drop this off my plate also. Z Edward E. Ziots CISSP, Network +, Security + Securi

RE: Sonicwall TZ100 content filtering

Okay, I just got off the phone with the Sales Rep, and he assures me that the new hardware will not run the "Basic" filtering at all, the only option if you want filtering is the Premium. As you say, it's dirt cheap, so that's okay. He also assures me that as long as we hook up the device to an

RE: Questions on WIndows 2008 Terminal Services

Long ago, the PM told me that they needed to ensure that people didn't think that they do the same thing. 'cuz they don't. The other option was to allow /console for 2003 and 2000 connections (downlevel) and disallow it for 2008+ (uplevel) connections; then allow /admin for 2008 (and up) but di

Antivirus SAAS

Anyone here using any sort of SAAS antivirus/anti-malware protection? I've had a couple different vendors cold-call me about that. Call me old-fashioned, but I'd still want something on the local PC to help catch/prevent something from spreading through the PCs, wouldn't I??? I mean "cloud-based" a

Re: Questions on WIndows 2008 Terminal Services

I'll still never get why they just didn't make /console and /admin operate the same way in the new OS, and then deprecate /console *later*. *ASB *(Professional Bio ) *Harnessing the Advantages of Technology for the SMB market... * On Tue, May 17, 2011 at

RE: Smart Card passthru via RDP

Same managed client A/V in the box, but I'll have that double checked. No pattern for machine age. -sc From: Andrew S. Baker [mailto:asbz...@gmail.com] Sent: Tuesday, May 17, 2011 12:37 PM To: NT System Admin Issues Subject: Re: Smart Card passthru via RDP Anything different in the

Re: Smart Card passthru via RDP

Anything different in the AV or host-based security config? Are all the working systems older or newer than the machines that don't work? *ASB *(Professional Bio ) *Harnessing the Advantages of Technology for the SMB market... * On Tue, May 17, 2011 at

RE: Questions on WIndows 2008 Terminal Services

I believe this responds to all your questions and concerns: http://blogs.msdn.com/b/rds/archive/2007/12/17/changes-to-remote-administration-in-windows-server-2008.aspx And no, you don't need the print-server role. Regards, Michael B. Smith Consultant and Exchange MVP http://TheEssentialExchange

Re: Questions on WIndows 2008 Terminal Services

AFAIK you don't need the print role installed Typed frustratingly slowly on my BlackBerry® wireless device -Original Message- From: "Ziots, Edward" Date: Tue, 17 May 2011 12:18:43 To: NT System Admin Issues Reply-To: "NT System Admin Issues" Subject: RE: Questions on WIndows 2008 Term

RE: Questions on WIndows 2008 Terminal Services

The issue is my helpdesk had to Remote into the Terminal Servers in Windows 2003 R2 to fix printer issues, from re-directed sessions, and now that there is no Console Session ( to give the Local Desktop in Windows 2008) they don't have that ability. Also I am wondering for TS easy-print to work in

RE: Sonicwall TZ100 content filtering

Hello Matt, You can whitelist per IP ranges (school admin IPs will get youtube, while kids won't or vice versa) if you get the Premium version. I would only ever recommend the Premium version (skip Standard). Like someone else said, this is the basics, don't expect real reporting, etc.

RE: Questions on WIndows 2008 Terminal Services

Yeah, what I am wondering is if I need to add the print-role also on the server to support printing inside the TS connections, or does the TS Easy Print just work in Windows 2008 when the Terminal Services App role is installed? Z Edward E. Ziots CISSP, Network +, Security + Security Eng

Smart Card passthru via RDP

We have several XP machines that cannot pass Smart Card credentials via an RDP connection to any servers (Win2K8R2). The XP boxes use ActivIdentity client software to enable providing SmartCard services for logon. The local SP login works correctly (I.e- when a SC is inserted, you are prompted

RE: Questions on WIndows 2008 Terminal Services

What is the actual issue? The concept behind a "console session" changed starting with Vista/2008 because of "Session 0 isolation". Regards, Michael B. Smith Consultant and Exchange MVP http://TheEssentialExchange.com From: Ziots, Edward [mailto:ezi...@lifespan.org] Sent: Tuesday, May 17, 2011

RE: Questions on WIndows 2008 Terminal Services

No, Its running in Application mode ( Or Terminal Services App Role in Windows 2008) Seems like access to the local desktop is not allowed now to logon to the console session if you are running a default application on the TS Connection. Z Edward E. Ziots CISSP, Network +, Securi

Re: Sharepoint DocID

What about IE8? I'd be curious about that actually as I've found IE9 to have a couple of issues. On Tue, May 17, 2011 at 11:56 AM, S Powell wrote: > Sharepoint 2010 > > we have DocumentID enabled. > > we've taught users to use the DocID URL for links eg. > http://site/_layouts/DocIdRedir.aspx?

Re: Questions on WIndows 2008 Terminal Services

You could always just install VNC or use an ILO/DRAC/other remote access board, if present. On 17 May 2011 16:55, Ziots, Edward wrote: > I have a question, we have two Terminal servers that are setup to run a > specific application, but with this configuration I can’t use the /console > switch

Re: Questions on WIndows 2008 Terminal Services

Is it not /admin now? On 17 May 2011 16:55, Ziots, Edward wrote: > I have a question, we have two Terminal servers that are setup to run a > specific application, but with this configuration I can’t use the /console > switch to get access to the Local Desktop itself via a Terminal Services > co

Sharepoint DocID

Sharepoint 2010 we have DocumentID enabled. we've taught users to use the DocID URL for links eg. http://site/_layouts/DocIdRedir.aspx?ID=QAN7VXTX3TT5-1-1 and that works great if the URL points to Docx, xlsx or pdfs. however if it links to an infopath xml, the link fails, it offers the user the

Questions on WIndows 2008 Terminal Services

I have a question, we have two Terminal servers that are setup to run a specific application, but with this configuration I can’t use the /console switch to get access to the Local Desktop itself via a Terminal Services connection. Any idea how to get around that accordingly? Z Edw

RE: Sonicwall TZ100 content filtering

The feature we really need is user based access in it's most basic form. Users are able to access sites A, B, and C, but nothing else (your basic whitelist) while letting a privileged user to also go to sites X, Y, and Z while still being filtered from xxx.com. I do not require AD integration or

RE: Mass Import Exchange Contacts

So put all your contact info in a CSV e.g. First,Last,Target Jane,Doe,j...@gmail.com $csv= Import-Csv myCsvFile.csv foreach ($u in $csv) { New-MailContact –ExternalEmailAddress $u.Target –FirstName $u.First –LastName $u.Last –DisplayName ($u.First + “ “ + $u.Last) } I just typed that out in Ou

connecting TO a XP PC via RDP AND getting multi-monitor support

Hello All, I'm well aware of the "span" feature in RDC 6.0 for outbound RDP connections to a multi-monitor environment, BUT I'm trying to do something DIFFERENT. I need to know and find something documented that says inbound (yes, inbound) to what level OS (XP SP3, Vista, 7, e

Re: Server folder permissions issue

Well... This was shared as a folder within a share. Temp could browse to the folder... However, the share-within-a-share had restricted access to it. (Parent share did not have these restrictions.) However, diddling with the permissions on this sub-share seems to have fixed things. Thanks!

Re: Server folder permissions issue

Are there any Share permissions? On 17 May 2011 15:16, wrote: > > It's Win2003 SP2... > > Effective permissions showing (currently) as read/write/execute/delete - > currently all the boxes are checked for this person. > -- > RMc > > James Rankin wrote on 05/17/2011 09:05:25 AM: > > > > Is this

Re: Server folder permissions issue

It's Win2003 SP2... Effective permissions showing (currently) as read/write/execute/delete - currently all the boxes are checked for this person. -- RMc James Rankin wrote on 05/17/2011 09:05:25 AM: > Is this 2003 or 2008? in the Advanced settings, what are the > effective permissions listed

Re: Server folder permissions issue

Why not provide some specific folder completely outside that tree for the temp to write to, and use a background process to sync the files from where the temp is putting them to their permanent home. More moving parts, but *far* less effort overall. *ASB *(Professional Bio

Re: Server folder permissions issue

Is this 2003 or 2008? in the Advanced settings, what are the effective permissions listed for the user? Is there any sort of Deny configured on the ACL? On 17 May 2011 15:03, wrote: > > Greetings! > > We have a file server with a pretty convoluted directory tree... > > Anyway, our HR has hired a

Server folder permissions issue

Greetings! We have a file server with a pretty convoluted directory tree... Anyway, our HR has hired a temp to scan documents and place it into a specific folder. We do not want the temp to be able to write to any other folders. (It would be nice to not have her able to open any files in any

Re: Sonicwall TZ100 content filtering

I have the NSA 240 at work. Assuming the content filtering of the TZ100 is the same, I would rate it just OK. If you need detailed reporting, Viewpoint is a separate install on a server somewhere and is, well, odd. Do you need to allow people to override filtering for brief periods of time? The

RE: Sonicwall TZ100 content filtering

Hello Matt, It works well if all computers are treated equally. Simple, effective, and low cost. If you're trying to do more complex filtering (e.g. whitelisting per AD logged on user, skip it), but if you can whitelist based on IP ranges, it works well (requires CFS Premium version).

Re: Mass Import Exchange Contacts

A little bit more info on the version. It's SP1, roll up 9. Thanks! Scott On Tue, May 17, 2011 at 7:44 AM, Wilhelm, Scott wrote: > I'm on Exchange 2007. Not sure exactly what version of that though. > > > On Fri, May 13, 2011 at 2:29 PM, Brian Desmond wrote: > >> *It would be really easy to

Re: Mass Import Exchange Contacts

I'm on Exchange 2007. Not sure exactly what version of that though. On Fri, May 13, 2011 at 2:29 PM, Brian Desmond wrote: > *It would be really easy to do with PowerShell if you’re on Exchange > 2007+. What version of Exchange do you have? * > > * * > > *Thanks,* > > *Brian Desmond* > > *br...@

Sonicwall TZ100 content filtering

Sorry for the previous blank post, it was sent prematurely. I know some of you guys are fans of the SonicWalls. I'm looking at the TZ100 for a remote lab of 12 workstations. What I'd like your opinion on is the content filtering feature. I'll be getting a sales pitch tomorrow, I'm sure... But

Sonicwall TZ100 con

--Matt Ross Ephrata School District ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@ly