Title: Sysvol Damaged
Hi Folks,
I am having a problem with one of my Additonal Domain Controller, which is recently promoted. Actually,this is a newly promoted ADC via a wan link. I had to demote it first using dcpromo/forceremoval as it had problem and it was screwed.(
Ive used hacker.exe to change the
START buttons appearance on a few systems
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED]
Sent: Saturday, May 22, 2004 6:39
PM
To: [EMAIL PROTECTED]
Subject: Re: [ActiveDir] OT, How
to change wording on screen
The problem, as you're most likely aware, is that server admins have
access to the Task Scheduler, which means they can kick things off as
LocalSystem, which means the DC is then 0wn3d.(owned)
Not sure what I'd do in your shoes. I'm fortunate enough to have really
good IT folk in my remote
Title: Message
Really, the biggest issue with a downed DC for AD is if
that also down's DNS. As long as you've got DNS resolution, you're gonna be
fine, even with remote DC's.
Exchange is the bear, though. You're gonna want redundancy
whereever you have Exchange boxes. Even then, that's
Absolutely. There are certain processes that query GC's rather than DCs,
so its definitely worth it.
--
Roger D. Seielstad - MTS MCSE MS-MVP
Sr. Systems Administrator
Inovis Inc.
-Original Message-
From: Gilbert, Daniel L Mr
It opens a permanent, outbound connection I think via SSL to their
server. So, at that point, you're outsourcing your security to them. And
I believe their Privacy Policy is either non-existent or not at all
reasuring.
I'd think the TSWeb client would fit the bill for your CIO, assuming his
box
Do you have an URL for Dave Stucki's
libraries?
--
Roger D. Seielstad -
MTS MCSE MS-MVP Sr. Systems Administrator Inovis Inc.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Sent: Saturday, May 22, 2004
3:31
Its got 3 of the 13" PCI slots, unless you've got an extra
RAID controller onstalled. The base RAID is on the
motherboard.
--
Roger D. Seielstad -
MTS MCSE MS-MVP Sr. Systems Administrator Inovis Inc.
From: Brian
Ts webclient doesn't work with win2k?
I assume the target pc has to be winxp, not the client you are connecting with? or do
both have to be xp?
thanks
-Original Message-
From: Roger Seielstad [mailto:[EMAIL PROTECTED]
Sent: Monday, May 24, 2004 8:23 AM
To: [EMAIL PROTECTED]
Subject: RE:
They're definitely full height.
--
Roger D. Seielstad -
MTS MCSE MS-MVP Sr. Systems Administrator Inovis Inc.
From: Brian Desmond
[mailto:[EMAIL PROTECTED] Sent: Sunday, May 23, 2004
2:33 AMTo: [EMAIL
Title: Sysvol Damaged
Is the box pointing to a known good DNS server (preferably
to DC's in a known good site)?
How long are you waiting for replication to happen? I
generally like to let them spin overnight if at all possible before worrying
about whether its working correctly.
Hi, does anyone have a copy of the hotfix
from Q841395 they would be willing to send me?
I have been trying to get thru to MS
PSS, however whenever the call is transferred around, it ends up being
disconnected.
Which kind of brings up another question...I
remember calling MS PSS a couple of
It works with most Windows OS's. The target PC has to be XP. Sorry if
that wasn't clear
--
Roger D. Seielstad - MTS MCSE MS-MVP
Sr. Systems Administrator
Inovis Inc.
-Original Message-
From: Kern, Tom [mailto:[EMAIL
Just for curiousity...
You don't want to use NIS because it's less secure, yet you are going to use
LDAP for authentication? Isn't that a counter?
Can you give an overview of your topology and what you're wanting to
accomplish in the end? I think we tried to help with the original post
without
Title: Sysvol Damaged
Ok, so my task is to
generate random passwords and enable the accounts for 3200 users. The user
accounts and all attributes were first created with ldife, and I am now thinking
about using the dsmod utility to do accomplish the password set and account
enablement. I
Title: Sysvol Damaged
Oh
yeah, I guess I have to read the username from a file and pass it into the dsmod
command also. Do I just want a list of users in a .txt file, .cvs??? And how do
I read from that?
-Original Message-From:
[EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]On
Title: RE: [ActiveDir] Sysvol Damaged
Roger, Yes, the box is pointing to a correct dc which is actually the PDC running very well and healthy SYSVOL structure. I have been waiting for more than a week for replication to happen but still the same, even the sysvol folder is not shared. I am
Title: RE: [ActiveDir] Sysvol Damaged
I am doing Netdiag and it gives the following error Domain membership test . . . . . . : Failed [WARNING] Ths system volume has not been completely replicated to the local machine. This machine is not working properly as a DC.
Any thoughts on how to put
Title: RE: [ActiveDir] Sysvol Damaged
Also, I get these erros in NETDIAG...Oops I shuld have posted that in previous mail...
LDAP test. . . . . . . . . . . . . : Passed
[WARNING] Failed to query SPN registration on DC 'RIY04-DC01.riyadh.afg.com'.
[WARNING] Failed to query SPN registration
Title: RE: [ActiveDir] Sysvol Damaged
Ah,
just change the SID and the name of the machine and dcpromo it again:)
If you
have cleaned everything else up, I would just make sure everything is cleaned
out of DNS. I had a similar problem with a bad demotion, and fixed it by
removing all
One of my machines is getting the following errors
Unable to log you on because the netlogon service is not running on this
machine
And I am unable to ping the workstation, however the lights are working
on the NIC Card and the switches. I am not in the same location as the
PC so I can't sit
Title: RE: [ActiveDir] W2K SP3 Pro can't login
I am in the mist of having the local
person do this. Changing the cable, logging on locally and so forth. I have
not heard back yet.
-Original Message-
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL
I'll be there too ... speaking slot with the MIIS folks on Wednesday. :-)
CYA there,
- Idan
On Sat, 22 May 2004, Rick Kingslan wrote:
Yep - I'll be there. Find me in the Security 'Cabana' on almost all days.
The 'Cabana's' are the areas for attendee to expert assitance, discussion,
white
Title: Sysvol Damaged
here's a sample-batch that should help you get
started
/Guido
set inputfile=%1if '%inputfile%'=='' goto
ErrInput
set logfile=.\%inputfile%_log.txt
echo.echo Updating password settings for user listed in:
%inputfile%echo Logfile: %logfile%echo.
echo.
%logfile%echo
Title: RE: [ActiveDir] W2K SP3 Pro can't login
They are able to login locally.
-Original Message-
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Salandra, Justin A.
Sent: Monday, May 24, 2004 10:29
AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] W2K SP3
Pro
Title: Message
Cool, Okk now let them start the Netlogon service and check for exact
error and event id. May be he shuld be a local admin.
Regards, Mohammed Athif Khaleel Asst.Network Engineer AlFaisaliah Group Information Technology
Tel.: +966-1-461-0077
x.209 Moble.:
+966-509774015
I strongly suggest you keep trying to reach PSS. Asking people to send you
patches is a dangerously unsafe practice that you should stop indulging in. I
am not sure why you are having difficulties obtaining Hotfixes. MS has made
this process painfully easy for the past year. You call (800)
Title: Sysvol Damaged
Here's an example of one way to do that. I would
suggest that if you're wanting to put in a random password that meets your
complexity requirements, that you concatenate a variable with the RAND function
and then write it back out to a log file.This example file is one
Title: Message
There were several errors in the system
log saying that the ntfrs and other areas of the disk were corrupted. I am thinking
it is a bad drive. I am currently running chkdks /f /r.
-Original Message-
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of
Title: Message
Event Type: Error
Event Source: Service Control Manager
Event Category: None
Event ID: 7000
Date: 5/24/2004
Time: 12:12:12 PM
User: N/A
Computer: CRNHWS05
Description:
The AFD Networking Support Environment
service failed to start due to the following error:
The
It appears that Exchange and the AD are not syncing
information. We have recently discovered that, Under the global address
list (displayed in Outlook), user name properties, the address, phone, etc are
blank. Even though, in ADUC the address, department, phone are
listed. It seems only to
Title: Message
It appears that the ADF.sys got corrupted,
I copied over from a similar machine and now they can login.
-Original Message-
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Salandra, Justin A.
Sent: Monday, May 24, 2004 11:31
AM
To: [EMAIL PROTECTED]
Can someone point me in the direction of setting the System Hibernate
time in a GPO? I can't seem to find it.
Thanks
List info : http://www.activedir.org/mail_list.htm
List FAQ: http://www.activedir.org/list_faq.htm
List archive:
Office 2003 running on Windows XP, some
using cache and some are not. Domain is running under W2K3 servers, 2k native,
with an Exchange 2003 Server.
Thanks,
S
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Tony Murray
Sent: Monday, May 24, 2004 10:35
AM
To:
Uh, congrats for what? And who's Paul?
-gil
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
[EMAIL PROTECTED]Sent: Saturday, May 22, 2004 9:01
PMTo: [EMAIL PROTECTED]Subject: RE: [ActiveDir]
Anyone attending TechEd?
I'm planning to be at
the MIIS talk if I can possibly
Paul Cotter - one of the MIIS MVP's.
--
Roger D. Seielstad -
MTS MCSE MS-MVP Sr. Systems Administrator Inovis Inc.
From: Gil Kirkpatrick [mailto:[EMAIL PROTECTED]
Sent: Monday, May 24, 2004 2:40 PMTo:
'[EMAIL
That couldn't be a RUS problem could it?
;)
Have you checked the logs for the past 24-48 hours?
What do you see (Check the Exchange server that has the RUS).
What about topology? Do you have only W2K3 and E2K3
servers?
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
That couldn't be a RUS problem could it?
;) Sorry, but I
dont know what RUS stands for.
Have you checked the logs for the past
24-48 hours? What do you see (Check the Exchange server that has the
RUS). Yes, I have checked the logs and there are only errors
for disabled accounts that
I don't think there is one. The power Configuration settings are not set up
in a very friendly way. All of the settings for each Power Scheme is held in
a Binary registry entry under the key
HKEY_CURRENT_USER\Control Panel\PowerCfg\PowerPolicies\0 (a different entry
for each Scheme)
using a Value
I'm on a serious budget and my IT dept doesn't have/want the money to spend on Alieta
migration tools.
we are looking to migrate our child domain into our own forest with exchange 2k and
still synch our gals.
how much hubris would it be to do most of this with free tools like ADMTv2,MIIS, and
RUS = Recipient Update Service. It runs on one or
more of your Exchange servers and is responsible for updating recipients.
Specifically, if you see problems with the GAL, it's often the culprit.
When you checked the logs, did you check them on the
Exchange server that has the RUS? You
Sorry for the offtopic post but have not been able to find the answer...
On my workstation, the runas command no longer works from the command line. When I
try to run anything using runas from the command line, I get a dialog box titled
runas.exe - Application Error, with the text The exception
Probably wouldn't use exmerge in favor of Exchange migration tools included
with Exchange. And it would be worth it to use Exchange 2003 (tools at
least), but otherwise it can be done. Aelita is just nicer and easier to
work with. Both work.
al
-Original Message-
From: [EMAIL
Check out the Default Offline
Address Book and ensure that the Address List it refers to contains the
information you desire.
You can force a rebuild of the Default OAB
and a fresh D/L (Send/Receive - Download Address Book)
If that doesnt work, there is a
registry key to force
You can restrict access to Task Scheduler using GPO (Admin
Templates\Windows Components\Task Scheduler) and by changing permissions
on %SYSTEMROOT%\Tasks folder, but there are other ways around.
BTW, I remember reading somewhere that at command uses old style API
which is not enforced by GPO, and
i'm sorry if this is obvious but, whats a good exchange migration tool that comes with
exchange2k/2k3?
and how does it differ from using exmerge to migrate mailboxes to pst's and then
import them into the new server/forest?
thanks
-Original Message-
From: Mulnick, Al
Yes, I have checked the logs and there are only errors for disabled
accounts that have not been deleted.
I know that this is NOT the cause of your current problem, but I strongly
advise you to NOT ignore these errors. The more of them you get, the more
performance impact your Exchange server
All,
I used to have a link that provided a detailed breakdown of the startup traffic and
network logon traffic. I can't find it anymore. I know that Notes From the Field
has some of this. But can anyone provide a link of XP traffic (preferred) in an
Active Directory with 2003 environment
The Exchange Migration Wizard.
http://support.microsoft.com/default.aspx?scid=kb;en-us;328871
- Original Message -
From: Kern, Tom [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Monday, May 24, 2004 7:13 PM
Subject: RE: [ActiveDir] Ad forest migration
i'm sorry if this is obvious but,
There is probably a different version of runas that has gotten into an
earlier position in your path.
FOR %I IN (runas.exe) DO Dir %~$PATH:I
Will tell you what directory the exe is in when running from the command
line. If it is different from your shortcut, check your path statement.
Mike,
I think this is the link you must have had:
Windows 2000 Startup and Logon Traffic Analysis
http://www.microsoft.com/technet/prodtechnol/windows2000serv/deploy/confeat/w2kstart.mspx
Certainly there are some minor differences with XP and 2003 but I can't think of anything that would
51 matches
Mail list logo