1. What do you think your replication latency is supposed
to be based upon your knowledge of your topology and your link configurations?
This isn't something you have to guess at. Look at your DC placement and your
replication topology and it will tell you the exact theoretical max
I'm having a hard time figuring out the best way to block terminal service
access by user using group policy- is this something that can be addressed
by a user configuration setting or is this an issue better handled on the
terminal server- i.e. granting or denying 'log on locally' rights? I'm
I think it would be better if you just clear the "Allow Logon to Terminal Service" attributes for all your users. Then you will come back andenable this attribute for any specific user you want to grant the right to. It's cleaner than trying to do this server-by-server. The problem with this,
Hi,
I am trying to decide how to optimize our current network to increase data
access speed. We have 30 employees and 1 w2k server handling AD and all other
network services, file , data storage and 2 good sized databases. Would moving
the AD and network services to a new server give me
Hi,
when you are using windows 2003 as terminal server, there is the way of
ading users or groups to the local group on the TS server, which is called
RemoteDesktopUsers.
You can add members to this group by using the restricted group policy in
a domain
You can simulate this on win 2000,
All, we are in search of the elusive single sign-on...
We are designing/testing pieces of what may become a multi-platform
authentication strategy. We've begun with the authentication integration
with IBM's Websphere. While we've been successful in its integration
(having Websphere on a
Pat-
What sort of issues are you experiencing? How do you define slow data access?
--Brian
-Original Message-
From: Patrick - IT Department [mailto:[EMAIL PROTECTED]
Sent: Wed 4/28/2004 10:31 AM
To: Active Directory
Cc:
Subject:
B.
the complaints come from accessing the
databases. We are a mortgage co. and have a large client and lead database, actually
not that large yet, but it will be in the future. Anyway to pull all the clients
up from the database can take several minutesI figured adding a server and moving
Roger,
Thats being handled by the application developer and yes they are
working on it and it becomes better, I was just asked to get as much speed out
of our network as possible on my side of things.
-Original
Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]On
On a 30 user LAN, I'd say that you're probably fine as
is.
You're going to want to check the obvious stuff - disk
layout, memory utilization and ensuring that your network cards are set at fixed
speeds rather than autosens.
--
Have you checked any of the performance stats on the
server? In particular, if CPU, disk I/O and NIC traffic are all within
reasonable levels (you'll have to determine what's "reasonable" for
you)then I doubt you will gain enough to make the investment ina new
server (hardware,
Ok will do, thank you guys!
-Original
Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]On
Behalf Of Cotter, Paul M.
Sent: Wednesday, April 28, 2004
2:32 PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] question
about optimization?
Have you checked any of
the
Eric -
we basically did what you suggest...our CN, name, and sAMAccountName attributes are
the same. WebSphere users can use their LAN ID and password. Since WebSphere also
grabs the group membership info for the user when they log in, it can map this to the
'roles' in the J2EE application,
Thanks all for the feedback.
We are a very centralized shop as well (and seem to be on a company buying
spree...). The Enterprise Security team really wants to make AD the
strategic direction for authentication strategy as well part of a staged
user provisioning and automation mechanism.
Are you looking at MIIS as an account provisioning/automation tool?
Paul
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
[EMAIL PROTECTED]
Sent: Wednesday, April 28, 2004 4:17 PM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Active Directory and Other
I'm curious to verify if the password chaining thing was
fixed in SP3 or SP4, as we are still experiencing that issue. Some of our
domain controllers are on SP3 and some are on SP4. We set SP3 as a
company-wide standard for Win2k, but some of our other divisions took it upon
themselves to
It will get that password back immediately unless the PDC is really busy or
otherwise unavailable
The way I'm reading this is that you are saying password change will trigger
immediate replication to the PDCE. Iin my experience (which I don't have to
describe to you :)), this is not the case.
No, MIIS is not being used. I don't believe that the Security Group
reviewed the product. They are about to pilot/implement CA Enterprise
Admin. Like MIIS, it has hooks into some of the major LDAPs and is
supposed to be very scriptable. In fact, although they have an AD
integration piece,
18 matches
Mail list logo
