I am new to Network Policy Server and have a question.
The two NPS servers are running on 2008 R2 and they are not domain controllers.
All DCs in the forest are GCs.
They didn't know you could export/import the configuration to make the server
configurations identical so they manually
set month2=%date:~0,2%
if %month2% == 01 then goto :Jan elseif %month2% == 02 then goto :Feb
elseif %month2% == 03 then goto :Mar elseif %month2% == 04 then goto
:Apr elseif %month2% == 05 then goto :May elseif %month2% == 06 then
goto :Jun elseif %month2% == 07 then goto :Jul elseif %month2%
[cid:image001.png@01CF2E1C.ECD3CFE0]
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Behalf Of David McSpadden
Sent: Thursday, February 20, 2014 9:12 AM
To: 'ntsysadm@lists.myitforum.com'
Subject: [NTSysADM] setting month value in a dos batch
set
ElseIf?
See: http://kb.ultratech-llc.com/Scripts/?File=DateTime.BAT
I've got some date routines in there that cover months.
*ASB **http://XeeMe.com/AndrewBaker* http://xeeme.com/AndrewBaker
*Providing Virtual CIO Services (IT Operations Information Security) for
the SMB market...*
On
Good articles. Thanks for sharing.
--
Espi
On Wed, Feb 19, 2014 at 7:55 PM, Kurt Buff kurt.b...@gmail.com wrote:
Though it might not look like it at first, and they are very important
to understanding certain Internet issues...
A
s MBS pointed out, you're truncating the %DATE% in the wrong place.
Here are two easier ways to do this, without labels is:
ECHO off
SET MONTH2=%DATE:~4,2%
IF %MONTH2==01 SET MONTH3=Jan
IF %MONTH2==02 SET MONTH3=Feb
IF %MONTH2==03 SET MONTH3=Mar
IF %MONTH2==04 SET MONTH3=Apr
IF
Yep.
Just saw it.
Thanks all.
Got it working
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Behalf Of Andrew S. Baker
Sent: Thursday, February 20, 2014 10:28 AM
To: ntsysadm
Subject: Re: [NTSysADM] setting month value in a dos batch
A
s MBS pointed out, you're
Well, I've never been one to claim that I know everything, and I appreciate all
the help and advice I've gotten here through the years. It's frustrating when
you're following a conversation here, thinking it's similar to an issue you're
working on yourself, and then there's no resolution
Your %date:~0,2% is wrong. It should be %date:~4,2% in the US
Here's a simpler script
if %date:~4,2% == 01 set month3=JAN
if %date:~4,2% == 02 set month3=FEB
if %date:~4,2% == 03 set month3=MAR
...
echo %month3%
You could add some quoting characters (if %date:~4,2% == 01 set month3=JAN)
as a
My biggest problem was that pesky then that I learned in basic that no other
code likes to use. :)
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Behalf Of Ken Cornetet
Sent: Thursday, February 20, 2014 10:40 AM
To: ntsysadm@lists.myitforum.com
Subject:
Is it possible, using PoSH or another utility, to find out who disabled a
user's account and when it happened? All DCs are 2008 R2 and DFL/FFL are both
2008 R2.
Thanks
Webster
?
If auditing of that is enabled, not sure what the default is... .yes.
Event ID 4725 for user accounts in 2008. On 2003 it was 629.
Christopher Bodnar
Enterprise Architect I, Corporate Office of Technology:Enterprise
Architecture and Engineering Services
Tel 610-807-6459
3900 Burgess
?Great, there probably is none and no one here would know since their AD guy
left.
Webster
From: listsad...@lists.myitforum.com listsad...@lists.myitforum.com on behalf
of Free, Bob r...@pge.com
Sent: Thursday, February 20, 2014 11:48 AM
To:
?Their Security event log has already wrapped in the last 4 hours so I doubt I
will be able to go back to December when they think the account was
mysteriously disabled.
Webster
From: listsad...@lists.myitforum.com listsad...@lists.myitforum.com on behalf
of
Also might want to take a look at this:
http://technet.microsoft.com/en-us/library/cc731607(v=ws.10).aspx
Christopher Bodnar
Enterprise Architect I, Corporate Office of Technology:Enterprise
Architecture and Engineering Services
Tel 610-807-6459
3900 Burgess Place, Bethlehem, PA 18017
Collecting metadata may be more illuminating. You should be able to reconstruct
at least some part of the changes to the object by looking at various
attributes.
Piece of cake with repadmin /showobjmeta
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Behalf
?Bingo, that will work for them. Thanks for that tip Bob.
Webster
From: listsad...@lists.myitforum.com listsad...@lists.myitforum.com on behalf
of Free, Bob r...@pge.com
Sent: Thursday, February 20, 2014 12:40 PM
To: ntsysadm@lists.myitforum.com
Subject: RE:
Probably a long shot, but any chance that they have backups of their DCs from
December? It’s possible that a backup job caught the logs when this event
still existed, and so you may be able to see who/when it was disabled.
Alternatively, if this account happens to be used as a service account
2 offices, both have cisco rv220w firewalls, both use Comcast business and are
across the street from each other. Office A has a 192.168.0.0 network and
office B has a 10.0.1.0 network. Each offices respective firewall handles dns
and dhcp.
Background: I set a site to site vpn between the
It sounds like DHCPRELAY is enabled on the inside interfaces of the cisco
firewalls, which is not what you want. It's allowing the packets to get to
the opposite side of the tunnel.
Christopher Bodnar
Enterprise Architect I, Corporate Office of Technology:Enterprise
Architecture and
That is what I thought but it still works with the VPN disconnected. I even
changed the darn thing to a cheapo dlink home router and I can still access the
other side.
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Behalf Of Christopher Bodnar
Sent: Thursday,
Have you searched for a rogue router? I'm just Playbookin' around From: "Jimmy Tran" ji...@jt-solution.comTo: "ntsysadm@lists.myitforum.com" ntsysadm@lists.myitforum.comSent: 20 February, 2014 4:26 PMSubject: RE: [NTSysADM] strange network issue
That is what I thought but it still works with the
You can access the opposite side with the VPN tunnel disconnected? Do a
traceroute and find what it's going through to get there. If you pull the
plug on the cable modem, does it fail?
Christopher Bodnar
Enterprise Architect I, Corporate Office of Technology:Enterprise
Architecture and
Not yet but how would that get me access to the other office?
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Behalf Of geoff
Sent: Thursday, February 20, 2014 1:30 PM
To: ntsysadm@lists.myitforum.com
Subject: RE: [NTSysADM] strange network issue
Have you
Yes, I can access the other wise of the vpn when the tunnel disconnected and
when the appliance off. When I unplug the cable modem, the machines that got
its IP from that network still have access.
I forgot to do a traceroute but will do one when I go back in an hour or so.
Jimmy
From:
If you are able to get from site A to site B with the cable modem
disconnected, then there is some other route to the remote site. Wi-Fi
Hot-spot.rouge router direct cable access run you are not aware
of.
Christopher Bodnar
Enterprise Architect I, Corporate Office of
Ok, that’s what I thought. Comcast was out there recently replacing coax
cables because it was deteriorating. I bet they screwed something up. I’ll
know shortly.
Thanks for the assurance that I’m not losing my mind.
From: listsad...@lists.myitforum.com
Parser error at line 1
:)
From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On
Behalf Of David McSpadden
Sent: Friday, 21 February 2014 2:46 AM
To: ntsysadm@lists.myitforum.com
Subject: [NTSysADM] RE: setting month value in a dos batch
My biggest problem was that
Surely someone raised an ticket or service request in some system somewhere?
That would give you a starting point for isolating the date/time. And then
whoever closed the ticket as being completed is probably the person that did
the work.
Cheers
Ken
From: listsad...@lists.myitforum.com
No. An employee was terminated and their account was supposed to be disabled
immediately and the password reset. But, said terminated employee accessed
systems at 7:30PM the next day. It wasn't until two days after termination
that the account was disabled. Then on February 5th, someone
More fundamentally, it seems that entire slabs of ITSM are missing from the
environment. Technical solutions (e.g. a LMS) are only going to be band-aids
over the underlying issue: there’s no real access management and there’s no
proper change management (if we are using the ITIL function
31 matches
Mail list logo
