KMS requires a minimum number of either physical or virtual computers in a
network environment. These minimums, called activation thresholds, are set so
that they are easily met by enterprise customers. For computers running:
* Windows Server 2008 and Windows Server 2008 R2 you must have at
Thanks for the clarification.
Regards,
Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com
From: Mike Hoffman [mailto:m...@drumbrae.net]
Sent: Thursday, August 25, 2011 3:58 AM
To: NT System Admin Issues
Subject: RE: Action Pack License Question
KMS requires a minimum
I don't even pretend to fully understand MS licensing, but...
It sounded to me that the OP wanted to know if he could substitute MVL
media for MAP media (and the corresponding license key). KMS or not, I'd
check with an MS license reseller from one of the larger suppliers, such
as CDW or the
This is one area where most resellers have problems as the guys selling the
corp licenses know nothing of the action pack license. You really have to find
the paperwork, and then simply thing what you would say in the event of an
inspection. There is a lot of abuse of the MAP and TechNet out
I thought it was a no-no.
Sean Rector, MCSE
From: Brian Desmond [mailto:br...@briandesmond.com]
Sent: Wednesday, August 24, 2011 6:11 PM
To: NT System Admin Issues
Subject: RE: [Microsoft support] Is it me...
Right - I'm missing what's not best practice about it.
Thanks,
Brian
Thx for replying and that does make sense. But, what kind of environment
does his org work in?
Obviously, what applies to you may not apply to him, and definitely
doesn't apply in my org.
Still, the reimaging info you quoted states Reimaging is permitted if
the copies made from the Volume
I'm curious why not. The more I think about it, the more it seems like a good
idea.
1. It completely negates the issue of virtualizing a DC or having a
separate physical DC
2. Second, a potential problem with running services on the host is that
it could starve the guests for
I've been of the mindset that the Hyper-V host should do basically nothing else
but host, and if they can be server core then even better. I run one full OS
Hyper-V host and all other hosts are server core.
Interesting discussion here though. I love this list.
Dave
From: Crawford, Scott
Re: #1 - Fair point.
Re: #2 - It adds attack surface area, beyond just services that need to be
patched.
Re: #3 - Again, fair enough point, but it does take longer to start up a DC,
and this has an impact on when other services get started up. It probably
complicates a few DR scenarios as
Isn't the attack surface already there if there's a DC at all? I suppose there
could be some vulnerability that's introduced by the combination of Hyper-V and
AD, but that doesn't seem any more likely to me than a vulnerability being
introduced by having a DC run _under_ a hypervisor. So, in
Yeah, 48 hours ago, I woulda said the exact same thing. I'm just trying to
explore the reasons for that mindset.
From: David Lum [mailto:david@nwea.org]
Sent: Thursday, August 25, 2011 9:11 AM
To: NT System Admin Issues
Subject: RE: [Microsoft support] Is it me...
I've been of the mindset
Unless you have a hyper-v cluster - the downtime to patch a DC (and all the
other software you have to protect the DC - HIPS/AV/whatever) means that all
the hosted services go offline as well.
When you have 99.9+ uptime requirements, I think it is better to have a few
physical DCs (the rest
Because of memory and processor loading.
For a VM, you can identify what and how much memory it gets and how many
processors are allocated to it and at what priority.
For the root partition, you cannot.
In the case of AD, it's a critical business function that can, depending on
your
You have individual NIC, VLAN, and firewalls that tend to protect VMs
mitigating the exposure.
Regards,
Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com
From: Crawford, Scott [mailto:crawfo...@evangel.edu]
Sent: Thursday, August 25, 2011 11:38 AM
To: NT System Admin
No...
If there is an exploit in one of the services which allows me to more easily
own the box, then having that service running on the host rather than the
VM, makes for a bigger exploit, since access to all hosts would be granted,
not just a vulnerable VM.
* *
*ASB*
I would definitely plan on a cluster and enough hardware that at least one node
can be taken offline with enough leftover horse power to run things. So, in
that scenario, I would live migrate the guests to other hosts before doing the
maintenance on the host.
From: Ken Schaefer
But, we're talking about owning a DC. If you own my DC, I'm not too concerned
with what else you already own since you can choose to own any of them at any
time. Assuming of course, that all the guests are part of the same forest.
From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent:
Are you saying that AD can over-consume the resources on a box beyond what it
truly needs? If so, then that's definitely a counter to my second point.
From: Michael B. Smith [mailto:mich...@smithcons.com]
Sent: Thursday, August 25, 2011 11:00 AM
To: NT System Admin Issues
Subject: RE:
Who is they?
From: Sam Cayze [mailto:sca...@gmail.com]
Sent: Thursday, August 25, 2011 1:29 PM
To: NT System Admin Issues
Subject: Just a reminder to double check your long distance costs!
Thought I'd do the math on our LD bill. They bumped up our rate from
2.9cent/min to 8.c/m, even though we
So I have one 03DC to remove, all FSMO roles have been moved to 08
servers. I've been doing some research on time server configuration and
it's really confusing me, probably because I'm worrying about it to
much. All my 08DC's, servers and clients are all still referencing my
03DC for their
At my last gig, I sat near the Telecom guy and at least half his time
was going over the corp phone bills.
Not only for errors, over-charges, etc, but also for that office worker
calling Nebraska a few times a day.
Don Guyer
Windows Systems Engineer
RIM Operations Engineering Distributed
This kinda stuff infuriates me. Do they pay penalties on the over charges
sufficient to pay her salary as well?
From: Osborne, Richard [mailto:richard.osbo...@wth.org]
Sent: Thursday, August 25, 2011 12:47 PM
To: NT System Admin Issues
Subject: RE: Just a reminder to double check your long
This should address 99.5% of everyone's needs.
http://theessentialexchange.com/blogs/michael/archive/2010/01/29/a-brief-history-of-time-ok-ok-let-s-go-with-quot-an-introduction-to-the-windows-time-service-quot.aspx
Regards,
Michael B. Smith
Consultant and Exchange MVP
I've written scripts for a couple of customers (in PowerShell of course) that
analyze CDR just for those kinds of things.
Regards,
Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com
From: Guyer, Don [mailto:don.gu...@fiserv.com]
Sent: Thursday, August 25, 2011 1:56 PM
Our dit is only 300 meg so having it in memory isn't that big of a deal, but I
seem to recall joe and other on the AD list basically recommending that you
should have enough RAM to have the entire dit in memory anyway. So, if you've
got the full thing cached, why would it matter if that was in
CenturyLink, fka CenturyTel. I hate to bad mouth them, they provide
excellent service and support, and their uptime is rock solid, but yeah.
From: John Cook [mailto:john.c...@pfsf.org]
Sent: Thursday, August 25, 2011 12:50 PM
To: NT System Admin Issues
Subject: RE: Just a reminder to double
Like I said, you can do it, but I would only advise it in the smallest of
scenarios, such as home network, corporate lab, or small business office.
* *
*ASB* *http://XeeMe.com/AndrewBaker* *Harnessing the Advantages of
Technology for the SMB market…
*
On Thu, Aug 25, 2011 at 2:00 PM,
Apparently they want you to pay for it. :-)
On Thu, Aug 25, 2011 at 2:00 PM, Sam Cayze sca...@gmail.com wrote:
CenturyLink, fka CenturyTel. I hate to bad mouth them, they provide
excellent service and support, and their uptime is rock solid, but yeah…**
**
** **
*From:* John Cook
Thanks again Michael. PDC is set up, at what point will other clients
and servers figure out to reference the new PDC.
From: Michael B. Smith [mailto:mich...@smithcons.com]
Sent: Thursday, August 25, 2011 12:57 PM
To: NT System Admin Issues
Subject: RE: Just a
Michael posts so much I can't keep the treads straight.
Thanks again Michael. PDC is set up, at what point will other clients
and servers figure out to reference the new PDC.
From: Michael B. Smith [mailto:mich...@smithcons.com]
Sent: Thursday, August 25, 2011
As long as they are within 5 minutes to start with, it should happen within a
GP update interval (i.e., 90 minutes by default).
If they aren't within 5 minutes to start with, you may need to apply some
manual kicks in the rear.
Regards,
Michael B. Smith
Consultant and Exchange MVP
Folks,
Anyone care to comment on either of these services? I'm about to purchase a
number of licenses for a pilot here. I looked at the Citrix and Cisco
offerings, and they seem very similar. We just need to be able to do the
standard video conference, maybe show the desktop, maybe
Speaking as a user and supporting a handful of users who use them I have always
found Cisco WebEx to perform better, and be much better for everyone to setup
and get going. I rarely have to get involved in WebEx issues. Citrix seems to
be on my plate fairly often with issues. Minor issues, but
I have to second this, we have both options here as well and I get
occasional issues with GoToMeeting and I really don't recall an issue with
WebEx. I plan on ending the GoToMeeting contract when it comes due just to
make me happy. ;-)
I think most of my users are still on GoToMeeting just to
Hello folks
I have the following szenario:
- 2 trusted AD with Exchange 2007 each
- Users have been migrated with ADMT with SID history
- some users had already an account in the target domain with a different login
name
- After the mailbox migration the users still login to the source domain
I'd focus on ease of use for your customers. I've recently gone through
evaluating what to do about our web conferencing and one very big point is that
depending who you deal with, they may not be able to install or run the
components needed to join a conference.
I believe GoToMeeting does
If the permissions are changing on a fairly predictable interval, start looking
at adminSDHolder:
http://msmvps.com/blogs/ulfbsimonweidner/archive/2005/05/29/49659.aspx
From: Straub, Patrick [mailto:patrick.str...@lanexpert.ch]
Sent: Thursday, August 25, 2011 1:52 PM
To: NT System Admin
Personally I like the GoToMeeting one better as an attendee. I have no idea
what the presenter experience is, though.
Have you look at using Lync? IMO a better experience if it meets your
requirements and it's cheap via Office365.
Thanks,
Brian Desmond
+1 for Lync, though we don't have voice over the PSTN yet. Only pc to pc
voice video, but it works GREAT for video, voice, desktop sharing, and
whiteboarding, and is SUPER easy to use.
Jonathan A+, MCSA, MCSE
Thumb-typed from my HTC Droid Incredible (and yes, it really is) on the
Verizon
Anyone still out there?
I've got 4 boxes that I need to add about 40 IP addresses to the Relay
Restrictions list. I can't find any syntax to do this with ADSUTIL.VBS
This is not Exchange just IIS 6 with an SMTP virtual server. So it's my
understanding that you can't use IpSec.vbs
Really
Just passing through, but netsh might help.
From: Christopher Bodnar [mailto:christopher_bod...@glic.com]
Sent: Thursday, August 25, 2011 5:46 PM
To: NT System Admin Issues
Subject: IIS 6 SMTP virtual server relay restrictions
Anyone still out there?
I've got 4 boxes that I need to add about 40
Same thing I was lead to believe.
Jon
On Thu, Aug 25, 2011 at 8:43 AM, Guyer, Don don.gu...@fiserv.com wrote:
I don’t even pretend to fully understand MS licensing, but…
** **
It sounded to me that the OP wanted to know if he could substitute MVL
media for MAP media (and the
I believe they are referring to you have increased the surface area of
attack by adding AD to the Hyper-V host. I have always tried to maintain a
one server one task with the exception of AD/DNS/DHCP combo on one machine.
That is me and what I learn back with Win 2000. KISS works most of the
If anyone ever needs it, found this:
http://obligatorymoniker.wordpress.com/category/microsoft/
It's the Import Relay IP List.vbs script.
Tested and works perfectly.
Chris Bodnar, MCSE, MCITP
Technical Support III
Distributed Systems Service Delivery - Intel Services
Guardian Life Insurance
My google fu found this
http://h2.www2.hp.com/bizsupport/site/search/r4_0/jsp/search.jsp?lang=encc=usprodTypeId=12454prodSeriesId=3996155tx=HP%20XPe%20Add-On%20
also this
http://h30499.www3.hp.com/t5/Workstations-Thin-Clients/t5740-thinclient-Kiosk-mode-missing/td-p/1144818
what do you
We have a bunch of clients on Comcast Business down here (xfinity). It has
been pretty solid for our clients who have a Fiber-Ethernet or CoE
connection and want some failover bandwidth. We use it as our primary line
in our office for 10 people, voip phones on hosted pbx 25/50mb connection
and its
Hello Richard,
I always enable it. Performance is good enough with it enabled.
If you’re volumes are TB+, makes sense in my book. Worth the single digit
performance hit.
-Ben
From: Richard Stovall [mailto:rich...@gmail.com]
Sent: Saturday, August 20, 2011 12:34 PM
To: NT
47 matches
Mail list logo