All,
We have an outsourcer providing some of the lowel-level admin and support
functions in our upcoming Active Directory. At this time, we're trying to
determine how to provide the outsourcer with access to create and secure
shares and ACL files/folders on the FNP servers (their
SE?
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Rick Kingslan
Sent: Friday, August 20, 2004
12:13 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] ISA
Feedback
That might be true for 2000 and 2004
SE.
;-)
-rtk
From: [EMAIL PROTECTED]
Thanks for everything guys. I think the location in question is going to
look at a single domain forest for ISA and work from there. If they need
authentication they will either move things, or look at a trust to their
ISA domain.
Regards;
James R. Day
National Parks Service - AD Core Team
Standard Edition. Does not
allow array configurations...
From: [EMAIL PROTECTED] on
behalf of [EMAIL PROTECTED]Sent: Fri 8/20/2004 14:55To:
[EMAIL PROTECTED]Subject: RE: [ActiveDir] ISA
Feedback
SE?
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
On Behalf Of Rick
Hi,
Is it okay to install citrix metaframe xp presentation server 3.0 in the same machine as microsoft exchange server ? When i wanted to install it, it gave a warning that microsoft exchange might not work properly and need to be reinstalled. Both citrix and exchange are supposed to be in the
Can you give more details? I *think* something with Xcacls/Cacls is
something you'd be interested in, but it's still too vague a requirement to
understand what your tolerance for overhead is and what you expect at the
end.
For example how will they get to the machines to administer them etc. I
Sounds like competing DLL's, maybe mapi32?
Either way, that's not a good sign nor a good practice as
Exchange has a habit of going after as much of the system memory as it
can. That's normal expected behavior, but other applications don't always
like it.
Outside of a lab, that would not
The permissions bit is relatively easy of course as it just comes down
to ACL.
The share side of things is always more tricky. There is a registry key
which you can allow write permission on - this allows the user granted
access to create shares on that specific box.
Problem is that I can't
Everyone,
Is there some additional GPO Settings that I can add to a policy to manipulate some of
the settings that are on by default in SP2? Like turning off the Firewall and stuff.
Please let me know.
Justin
List info : http://www.activedir.org/mail_list.htm
List FAQ:
Hi Justin,
Check out:
http://www.microsoft.com/downloads/details.aspx?FamilyID=4454e0e1-61fa-447a-
bdcd-499f73a637d1DisplayLang=en
and
http://www.microsoft.com/downloads/details.aspx?FamilyID=dacf095f-fdbd-4c50-
bdaa-96ff9f00e007displaylang=en
Or
Return Receipt
Your RE: [ActiveDir] Windows XP SP2
document
:
Thank you for the fast reply Al :-)Mmm, this is actually forexperiment purpose only. Not for a real system servicing users. It actually gave warning not only for exchange but all other programs that are already installed (including ethereal). That's why I'm wondering whether the messageworth noted
Id say you need to allocate at
least 8GB free on a DC to be safe.. 4GB is not enough as the OS fills up
various folders, i.e. temp with temporary files, log files, etc that soon use
up space.
It also depends on the size of your
environment of course. 4GB would never be enough.
BR
Depends on how large your Active Directory is and what you
intend to do with it. If you have a lot of objects and lots of permissions
entries, then you need more room. Also, consider running full system state
backups against the Active Directory databases else instigating circular logging
Sure thing. Can do.
The outsourcer has been delegated the responsibility for managing file and
print resources. Included in this is the need to create and ACL a share,
ACL NTFS directory/file permissions and create/modify/delete print queues.
We're most concerned that we don't grant access
Title: New Windows Update
Anyone noticed Windows Update changes yet? It prompts to install new software for improvements, which seems to go fine. But then when searching for available updates, it tells me the dreaded Were Sorry a system error has occurred or some such. XP machine, Sp1 +
LOL. I can't comment on that last part without incriminating myself ;)
I'm trying to understand what's been done so far that you're having trouble
with. Any specifics there?
As for a couple of thoughts:
Local logon and rights to install drivers are just about required for the
printer aspect.
Ladies and Gents,
I have a SBS2003 box in the lab which I am going to
swing at or launch anytime soon
I guess its the end of the week and I cant
see the wood for the trees I have a SBS2003 box in the lab with a
straightforward out of the box setup. I have just whacked up a quick
While building a test-lab machine yesterday I noticed the V5 windows
update site. It changed on me while applying patches from the site...
Haven't noticed any problems with it - then again I haven't put SP2 on this
lab box yet.
Creamer, Mark writes:
Anyone noticed Windows Update changes yet?
Okay I am going through all of the Local Security Policy's and setting the
additional restrictions for anonymous connections to No access without
explicit anonymous permissions Now the question I have is I think in the
past I found somewhere I can set it for all the servers through a GPO or
Title: New Windows Update
Microsoft has been making changes to the Windowsupdate
site. They're up to version 5 or something. It was breaking with the
XP SP2 Betas.
Dave
-- David J.
PerdueMCSE 2000, MCSE NT, MCSA,
Restrict anonymous access to shares, enumeration of SAM accounts and
shares, etc, named pipes.
Of course test it in your environment first.
Rob
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
[EMAIL PROTECTED]
Sent: 20 August 2004 16:56
To: [EMAIL
Pass the gun . Im a muppet.
Hmm damn u 2003 and your default share
permissions I had my 2k head on. :O)
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Robert Rutherford
Sent: 20 August 2004 16:31
To: [EMAIL PROTECTED]
Subject: [ActiveDir] Folder
Redirect
Nothing's been done so far. We have a guy who's been trying to figure out
how to make this happen. While I'm not sure what he's tried, he's flying
the white flag and asking for help. I'm checking here for help.
The fact that print operators can log onto DCs will likely not fly with our
Yep,
Everyone-Read Only is default.
-Original Message-From:
[EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]On Behalf Of Robert
RutherfordSent: Friday, August 20, 2004 12:22 PMTo:
[EMAIL PROTECTED]Subject: RE: [ActiveDir] Folder
Redirect Funnies
Pass the gun . Im
Return Receipt
Your RE: [ActiveDir] Windows XP SP2
document
:
Hi,
Looking to bring up
a 2003 DC into my existing 2000 Forest.
The 2003 DC will be
just a DC/GC no FSMO Role holder.
My current
configuration is empty root forest,(1) root domain with 3 DC's including
of course the schema master, 2 child domains with (20) DC's in one and (2) DC's
in the
The issue that comes to mind only applies if you have
upgraded Exchange 2000 to Exchange 2003. There was a problem of munging a
few attributes (secretary for example) that you'll want to fix. Should be in the
readme for Windows 2003 but if not, here's a link:
How much space you need for the directory really depends. I've worked with DITs
ranging from 50 meg to 8 to 10 gig before. What you're storing in AD, how many
objects, etc all factors in.
--Brian
-Original Message-
From: Lara Adianto [mailto:[EMAIL PROTECTED]
Ummaybe I'm missing the point here, but why does adding a group to the
local Print Operators group imply that they have local logon to DC's ? (I'm
presuming here that the FP server is just that...a server and not a domain
controller - mike didn't specify).
Surely this group managing your FP
In my environment, when W2K3 DC boots with security logs full, the
replication from that DC stops till the security log is cleared and the
box is rebooted.
The interesting thing is that after the security logs become full (while
the box is online) the replication continues to work till the box
Iwent through this exact thing, only had 1
child domain but the http://support.microsoft.com/default.aspx?kbid=325379article
reference is what I followed to the letter. One thing that did get me was
external time source and having a bunch of machines that didn't follow just
getting time
These are my notes form the last time I fought this issue. Hope they
help. Basically the DC will not replicate until the logs are cleared
or the registry key is changed.
Problem
HKLM\SYSTEM\CurrentControlSet\Control\Lsa\CrashOnAuditFail. When
this registry key is set to the value of 2 then
33 matches
Mail list logo
