User configuration, windows settings, internet explorer maint,
security/security zones and content ratings, security zones and privacy,
sites in this zone.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Bruyere,
Michel
Sent: Friday, January 05,
http://www.scriptlogic.com/products/securityexplorer/
Love it here.
Happy New Year!
How do I create a list of all permissions that are currently applied to a
directory tree? I have to move a directory tree and change permissions to it
and I want to ensure that I document all
And after reading your post a bit moreperhaps just xcopy it over, make your
changes and leave the old one in place hidden as your documentation until you
know it all is working as you intended.
Happy New Year!
How do I create a list of all permissions that are currently applied to a
If you use OWA for remote mail access number 1 is the best choice. You then
publish your OWA through the ISA server.
If your incoming smtp is only from messagelabs and you do not need/use OWA then
I would consider skipping to choice three, with nothing out front and only
allow port 25 from
We don't know that. He could be an admin that is trying to figure out
how his users are getting past his blocking system. There did seem to be
a language issue in his original post.
-Original Message-
From: [EMAIL PROTECTED] [mailto:ActiveDir-
[EMAIL PROTECTED] On Behalf Of joe
The Outlook Web Access makes Exchange 2003 worth getting, if you
use it.
However, Exchange 2007 might be worth waiting for at this point.
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
Behalf Of Ajay Kumar
Sent: Monday, October 30, 2006 8:36 AM
To:
I cant speak for a University edu, but as a public K-12
we most certainly can restrict internet access.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Matt Hargraves
Sent: Thursday, October 19, 2006 1:49 PM
To: ActiveDir@mail.activedir.org
Subject: Re:
Starting to sound like you have an old DNS or WINS record out there for
the old server.
-Original Message-
From: Bob Anderson
Neil,
When I add a new Authorization record it ads it with the old
server name. I think my problem is that I have given my new server the
same IP
Title: Sharepoint in the DMZ
Fire him, unless he shares the drugs he is on. A child domain
for one server? Open an SQL port on your outside firewall? Ok on second thought,
just fire him no matter how good the drugs are.
.
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
I am I correct that to delegate moving user accounts from
OU to OU I will have to allow them the ability to delete accounts. It appears
accounts work similar to documents, a move is really a copy then delete.
Recipients include Universal groups? If so check access to a global
catalog from the exchange server. Avoid Universal groups if possible on
distribution lists.
-Original Message-
From: [EMAIL PROTECTED] [mailto:ActiveDir-
[EMAIL PROTECTED] On Behalf Of Robert Rutherford
Sent:
Double check the date of the entry.
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
Behalf Of Thommes, Michael M.
Sent: Monday, August 14, 2006 3:28 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] joe - please say it isn't so!
So here I went to take a look
Remove their external smtp address and then set the send to
permissions in the account to just me. Then disable the account.
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
Behalf Of HBooGz
Sent: Wednesday, August 09, 2006 3:35 PM
To:
To be more accurate….change their smtp address to a bunch of
gibberish.
From: Kennedy, Jim
Sent: Wednesday, August 09, 2006 3:45 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir]
Remove their external smtp address and then set
If I am reading your requirement correctly, WEBDAV is a web
interface. Hit the page with IE and there is your network folder. As for the web
publishingare they making the sites themselves and then just uploading
them? Then publish their website home folder also via
WEBDAV./
I think it would be best that SomeProduct should go in
SomeTrashCan.
http://www.microsoft.com/resources/documentation/windows/xp/all/proddocs/en-us/580.mspx
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Clay, Justin
(ITS)Sent: Monday, June 12, 2006 10:56 AMTo:
We are happy with the HP units we use.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of John Singler
Sent: Thursday, May 11, 2006 10:48 AM
To: ActiveDir@mail.activedir.org
Subject: Re: [ActiveDir] OT: KVM switches
Sorry to rehash this ...
I believe there is a free tool to strip SBS servers for imaging, but
available only to those that have an OEM relationship with MS.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]
Sent: Thursday, May
Had that once with a 1000 user dist. list on our exchange
server. It was a bunch of nest groups, along with global groups tossed in. The
groups, specifically the global groups seemed to be the cause. Took for ever to
enumerate the addresses.
From: [EMAIL PROTECTED]
Lot of work and code there to remove drives...try
this...
Option ExplicitDim WshNetwork
on error resume next
Set WshNetwork =
WScript.CreateObject("WScript.Network")
WshNetwork.RemoveNetworkDrive
"m:"WshNetwork.RemoveNetworkDrive "n:"WshNetwork.RemoveNetworkDrive
to the customer not to the server supplier
and Microsoft).
Dave.
P.S. Please not the above are my personal views and not those
of Stockport Council..
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Kennedy, Jim
Sent: 26 April 2006 14:56
Only way to fly, imho.
Push it all via GPO, Certs for the users and IAS Radius
Auth from our Cisco 1100 AP's.
User needs wireless, I just add them to the user group that
allows them to install/request the Cert and I dont have to do anything
else.
From: [EMAIL PROTECTED]
We don't allow it. I knew part of the answer/troubleshooting steps
because our techs ghost across subnets. So working master browsers are
something they need for the way they do it. And when we had trouble last
time with their ghosting the symptoms where identical to what the OP
described when I
Delegate it to HR.
Short of that get HR or someone to give you a list of the
names and script it, provide a default password of their SS number
perhaps...must be changed on first log on.
After they are created, in the same OU...mass select them
in ADUC and right click them and send them a
Ok, I skipped a step, sounds like you need these 200 to go
to separate OU's. Mass create them in one OU, mass right click them and create
the mailbox then mass send them an email.
The script the move if that is faster/easier than a manual
drag and drop. So your spreadsheet of users is:
I like this one:
http://www.sunbelt-software.com/Community.cfm
Couple down on the list,
NTSYSADMIN.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Alex
FontanaSent: Thursday, March 02, 2006 9:46 PMTo:
ActiveDir@mail.activedir.orgSubject: [ActiveDir] Windows
Anyone using a script running as a task that looks at the members of an
OU, and modifies their group membership based upon what OU they are in?
I could use a sample to steal your hard work if you don't mind.
List info : http://www.activedir.org/List.aspx
List FAQ:
Second one under Microsoft Internet
Technology..
http://e-newsletters.internet.com/discussionlists.html/
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Todd
HofertSent: Friday, February 17, 2006 1:17 PMTo:
ActiveDir@mail.activedir.orgSubject: [ActiveDir]
Thank you Hunter, I am going with option 2. The immediate
effect of option one isn't that important and is more work for minimal benefit.
Option 2 with a scheduled task will work perfectly.
JK
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Coleman,
HunterSent:
I am almost looking for a
query based Security Group, similar to Distribution
Groups.
It would save me a ton of
time if when I moved a user from OUone to OUtwo if it would/could strip that
user of all their old groups and drop them into the new groups, based upon what
OU the user account
Title: Wireless and logon script
What about disabling fastlogon. Just a
thought.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Tim
HinesSent: Monday, February 06, 2006 2:06 PMTo:
ActiveDir@mail.activedir.orgSubject: Re: [ActiveDir] Wireless and
logon
I think MS is consistent here. PST are not supposed to be
used over a lan, they corrupt very easily. The Outlook plug in backs up your
local PST's to a network drive, so you are not using them over the network, just
copying them over the network.
From: [EMAIL PROTECTED]
Title: RE: [ActiveDir] ADUC updates - Was Expired Accounts
Consistently remember the last domain controller I connected to, and
reconnect to it when I start it back up.
I would place it on server 8. I would rather have a 'pure'
dc somewhere, even if I had to resort to using a beefed up desktop. In fact at
my last job, a shop similar in sizeto yours that is exactly what I
did.
If that is not possible, it goes on Server 7 from what I
see below.
Title: Domain Demotion (Removal) Best Practices
The below is exactly what I did, with one addition. When I
demoted the last DC I also turned off one DC from the remaining domain. I too
was worried about the process and asked many questions here and elsewhere.
The whole thing turned out to
Title: OT: Patch Management
The specs requirements listed seem to be overkill to me.
Also, you can work around that by approving the updates in groups, or applying
them to computers in phases.
The integration with GPO and the fact you can set it up and
roll the whole thing out from your
http://www.microsoft.com/technet/security/advisory/912840.mspx
January 10th...is the target.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Navroz Shariff
Sent: Tuesday, January 03, 2006 3:17 PM
To: ActiveDir@mail.activedir.org
Subject: RE:
available in MSI installer format.
Jeff
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Kennedy, Jim
Sent: Tuesday, January 03, 2006 12:33 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] OT: WMF issue - patch on the 10th
The persistent command you are using does not keep the
drive connected when logged onit makes the mapping stick the next time the
user logs on. Same as the 'reconnect at logon' box if you do the mapping
manually via my computer.
I would advise against that setting in your logon script.
Sorry, I missed this part:
net config server /autodisconnect:65535
On the workstation you want net config workstation /autodisconnect:65535
I think.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Kennedy,
JimSent: Monday, December 12, 2005 10:53 AMTo:
Two domains in a forest, not a child/parent. Keeping the root of course,
and want to 'un'-dcpromo the last two DC's in the other. All the
computers and accounts and groups were moved over. The domain going away
was the domain that had Exchange. Exchange was also moved over to the
root domain.
Trouble getting Remote Assistance going. XP w/ SP2 in a 2K3 domain. XP
firewall disabled on both boxes.
Two computers for test. Both in the same OU. GPO forces offer and invite
enabled with a group having the permissions. RSOP on both machines shows
it is all taking effect. Both logged on users
42 matches
Mail list logo