Title: Message
You
shuld also remove that from the METABASE using NTDSUTIL
ADSIEDIT.
FORCEREMOVAL will not replicate the changes and your PC is not in the LAN
too, so its as good as format.
Most
important! you shuld remove that from Active Directory Metabase. Its explained
in KS KB
This setting specifies the length of time before a computer will suspend an idle SMB
session, it wont log your users off. For a less than glamerous, but effective,
solution, check out Microsoft's winexit.scr screensaver.
-Original Message-
From: [EMAIL PROTECTED] on
That's what I suggested. We are doing a campus-wide AD project that is being
run by Unix guys. They don't understand the technology. Plus, they don't trust
Microsoft. They believe the account that is pushed from external LDAP is
safer.but they don't want to make it difficult/impossible for
But if all else fails, you could programmatically populate sIDHistory
after the migration on your own. So long as the population takes place
under the context of a domain admin you could do this later.
MSDN documents an API DsAddSidHistory which can do this for you.
You didn't note the tool you
If you really want to keep the info on your HDs, remove the HDs from the
system before you send it back. Otherwise, why not reformat/fdisk/clear
array configs? If they're going to ship you another server, you're going to
have hardware/registry inconsistencies like MAC address. Personally, I
I have a linux syslog server set up to centralize logging of all event viewer messages
on my (30) Win2k servers via the Eventlog to Syslog utility.
My question to the group now is, how do you guys typically deal with all that info?
do you parse it with a perl script for errors and ignore the rest
Or, DumpSec
http://www.somarsoft.com/
From: Deji Akomolafe [mailto:[EMAIL PROTECTED]
Sent: Monday, June 14, 2004 10:08
PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Export
Permissions List
We are about to deploy a Win2K3 infrastructureparallel to an existing Windows NT environment. Initially, the environments will exist separately, so I have a degree of leeway with respect to playing with settings.
Network Configuration:
We have 22 branch siteson-network and I want each local
I typically don't look at the non-security event logs unless there is a
problem. I do periodically scan the security event logs to check for
problems there.
I used to try and proactively monitor the event logs, but, as you've
found, trying to separate the wheat from the chaff is an impossible
There aremany reasons why you'd want to make them all AD-integrated. One is the fact that you have 22 branch offices. Remember that in the Primary/Secondary configuration, changes are made ONLY on the Primary server. Since youare allowed onlyone primary, think about what will be happening at
Yes if you have DNS on a DC it should
point to itself. There is often confusion about islanding but
this is not the case with this scenario. Here is
part of a thread I was working with MS when contemplating the same thing.
http://support.microsoft.com/default.aspx?scid=kb;en-us;275278
Right now in our
Active Directory environment we have 2 groups with 80,000 people or so. I
know that this is bad and we are working to fix it. Replication was
working before we tried to promote three DCsto W2K3. Now after the
promotion, we are getting errors with the Event ID: 623. I think
Concern: One of the senior managers bought a
laptop for herself to use as a home PC, as well as bring into the office
regularly to use for convenience purposes.
Problem: The problem was aside from the obvious
security issues involved with doing that,domain-level GPO's which restrict
users
not bad, especially since AD prior to 2003 (at 2003 forest
functional level, whichactivates LVR - link valure replication) only
supports roughly 5.000 members to a group, due to these version store
limitations... I doubt you can increase the storage for the version store,
but an intermins
Problems deploying new DC's is one of the issues with having such large
groups. I'm unaware of a fix beyond getting the groups smaller.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
[EMAIL PROTECTED]
Sent: Tuesday, June 15, 2004 12:37
To:
On Tue, 2004-06-15 at 10:22, Kern, Tom wrote:
I have a linux syslog server set up to centralize logging of all event viewer
messages on my (30) Win2k servers via the Eventlog to Syslog utility.
My question to the group now is, how do you guys typically deal with all that info?
do you parse it
Do you have the full text for the 12294 error? The
error data may be of interest here.
- Original Message -
From:
[EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Tuesday, June 15, 2004 8:57
AM
Subject: [ActiveDir] NTDS Replication
Problems
Here is something
17 matches
Mail list logo
