|
OK
right off the bat, I wouldn't let anyone besides the domain admins TS into a
domain controller. That isn't the root of your problem but could be the root of
others before or down the road. You will probably get someone on here that may
say that the server could be hardened but I am going to say there is going to be
someone who will find a bug or some hole you aren't aware of be able to do
damage.
Other
than that if you have to use that DC in that way, I would recommend uninstall
and then reinstall the adminpak from the SP that you currently have running on
the machine.
Note
that you can script the unlock and reset of user ID's....
set
o=getobject(LDAP://cn=userid,cn=users,dc=domain,dc=com)
o.lockouttime=0
o.setinfo o.setpassword
"newpassword"You
simply have to know the DN or do a quick search for it or use name translate to
get it, see posts from yesterday.
These
scripts the users could run from their machines.
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of George Arezina Sent: Tuesday, November 04, 2003 5:10 AM To: [EMAIL PROTECTED] Tony, Delegated users are
running ADUC via TS. No out of the ordinary
events in the EV logs No I do not see the
problem when connecting to the SP4 DC via “Connect to Domain Controller”
option From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
On Behalf Of Tony
Murray George
Sounds
like the problem has more to do with the troubled upgrade to SP4 on that DC than
anything else. What were the problems you had after installing SP4?
It seems strange that you should have issues with applying an SP on one DC but
not the other. Some other
thoughts: 1.
Are the delegated users running ADUC on their own machines, or are they
connecting directly to the DC via TS? 2.
Anything in the event logs when the problem occurs? 3.
Do you also see the problem when you use ADUC on the SP4 DC to connect to the
SP3 DC (using the "connect to Domain Controller"
option)? Tony From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
On Behalf Of After delegating control to a
specific number of users to reset and unlock locked accounts I ran into a very
weird problem. The delegated users were able to open the properties of users
under ADUC. Now, when they attempt to open the properties tab, ADUC just closes
itself as if the delegated user clicked on the x to exit ADUC. This phenomenon
only happens under the Users Tab under ADUC. In other OUs the delegated users
can open the properties page of a user and unlock locked accounts. Does anyone
have a clue as how to fix this problem? I have delegated control to specific
people in order to alleviate certain admins from such a tedious task of
unlocking locked users. I should also mention the fact that this does not happen
on another DC in my domain. The other DC has SP4 installed while this one with
the problem does not. I ran into trouble after installing SP 4 and decided to
return to SP 3 with all the post SP3 security patches
installed. Thanks in
advance. BA, A+, Net+, MCSE
2000 Information Technology
Consultant National Bank of
Pop Lukina 7-9, 11000
*
E-mail: [EMAIL PROTECTED] (
Phone:+381 (11) 3202-474 (
GSM: +381 (63)
342-321 |
- [ActiveDir] ADUC MMC George Arezina
- RE: [ActiveDir] ADUC MMC Tony Murray
- RE: [ActiveDir] ADUC MMC George Arezina
- RE: [ActiveDir] ADUC MMC GRILLENMEIER,GUIDO (HP-Germany,ex1)
- RE: [ActiveDir] ADUC MMC George Arezina
- RE: [ActiveDir] ADUC MMC GRILLENMEIER,GUIDO (HP-Germany,ex1)
- RE: [ActiveDir] ADUC MMC Rich Milburn
- RE: [ActiveDir] ADUC MMC Roger Seielstad
- RE: [ActiveDir] ADUC MMC Roger Seielstad
