RE: [ActiveDir] Group policy security setting

The other way that works is to add the UNC for the file server (file://server/share) to the Trusted Sites, under User Config / Windows Settings / IE Maintenance /Security / Security Zones and Content ratings Now that I look, there's the setting you're trying to change - which is why it probably d

[ActiveDir] Merging GPO's

Yeah, so I've been gone a while - too long, but I'll try to fix that. Anyway - does anyone have/know of a tool to merge multiple GPO's into a single policy? I inherited a conglomeration of about 40 GPO's which have conflicting settings and are generally just a miserable pain to work with, and rat

RE: [ActiveDir] Group policy security setting

Is the corresponding Registry value a type of reg_binary? If so you can't set it via an ADM. You would need to use an alternate method to update each user's Registry like via a login script. > -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of > Charli

[ActiveDir] migrating groups with sidhistory

Title: migrating groups with sidhistory I am looking for a way to migrate / collapse child domain groups into one group in the root.  I have three child domains with a group named x.group1 and I want to have a universal group in the root with the sid’s of the three child domain groups in sidh

[ActiveDir] Group policy security setting

This is driving me nuts I'm trying to set up a W2K3 SP1 terminal server machine, managed by group policy, that will allow users to run certain apps that actually load from another server. Here's the problem... When I try and launch one of those apps, I get the security warning box "open file

Re: [ActiveDir] Companies splitting - where to start with Active Directory, DNS, DHCP, etc.

Very good points here. With something like this the key to having a seamless split is to do a lot of planning and investigation, otherwise there will be some seemingly small thing that breaks that becomes a huge issue.   Phil  On 9/2/05, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: I'm facing a s

RE: [ActiveDir] Companies splitting - where to start with Active Directory, DNS, DHCP, etc.

I'm facing a similar situation: single forest, single domain though. (Thank goodness!) I think the place to start is really outside AD: who owns all these resources you're keeping in AD? What do they intend to do with them? When does the split happen? And how? Big bang or slow death?? Is emai

RE: [ActiveDir] goofy script error

I had this same conversation offline, so I figure it might be nice to post it publicly.  For posterity ;)   the problem is that the samaccountname is defined incorrectly.   should be group.Put "sAMAccountName", "gg-" & unitNo & "-Staff" vs. group.Put "sAMAccountName", "cn=gg-" & unitNo &

Re: [ActiveDir] Active Directory Permissions

joe's the one who gets replies to messages he hasn't sent yet ;)   On 9/2/05, Fugleberg, David A <[EMAIL PROTECTED]> wrote: Whoa...I first read that as "I've also started to get replies to messages I haven't sent yet..."  I know the folks on this list are good, but not that good...:)   Dave ---

RE: [ActiveDir] Active Directory Permissions

Title: Message Whoa...I first read that as "I've also started to get replies to messages I haven't sent yet..."  I know the folks on this list are good, but not that good...:)   Dave -Original Message-From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Phil Renou

RE: [ActiveDir] Mail journaling(OT)

Are we talking archiving (pruning of old data) or journaling (compliance) ?   I'm not a lawyer, but generally the journalled stuff for compliance must be stored in such a way that it cannot and wasn't altered during the timeframe it had to be kept. From: [EMAIL PROTECTED] [mailto:[EMAIL PR

RE: [ActiveDir] Mail journaling(OT)

You could if you want to just have 1 journaling mailbox for your complete org. Just depends on if that mailbox can handle the load.  100,000 messages a day isn't that much though .. as I've seen journal mailboxes with much more traffic :) From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] O

RE: [ActiveDir] Mail journaling(OT)

I honestly don’t know. Why don’t you try it and see?   Thanks, Brian Desmond [EMAIL PROTECTED]   c - 312.731.3132     From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Tom Kern Sent: Friday, September 02, 2005 6:51 AM To: ActiveDir@mail.activedir.org Subjec

RE: [ActiveDir] goofy script error

Yeah checked that ... it gets set to cn=gg-1234-Staff, my test unit number. Thanks, Brian Desmond [EMAIL PROTECTED] c - 312.731.3132 _ From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Al Mulnick Sent: Friday, September 02, 2005 8:2

Re: [ActiveDir] Active Directory Permissions

Yeah I see occasional blanks and dupes as well. None for a couple of days, but it happens. I've also started to get replies to messages I haven't seen yet, then a few hours later the original message shows up.   Phil  On 9/2/05, Rocky Habeeb <[EMAIL PROTECTED]> wrote: Dean,   >Every< post from Bre

RE: [ActiveDir] goofy script error

I'll discount the user as a source of goofiness ;) Was it me, I'd troubleshoot by figuring out what this is set to at runtime cn=gg-" & unitNo & "-Staff" I'd also make sure that whatever it is that's being created, doesn't already exist. Starting with figuring out what that becomes at run

RE: [ActiveDir] Active Directory Permissions

Title: Message Dean,   >Every< post from Brett Shirley is a dupe to me.   RH _   -Original Message-From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Dean WellsSent: Thursday, September 01, 2005 9:28 PMTo: Send - AD mailing

Re: [ActiveDir] Mail journaling(OT)

now i'm thinking that will alter the mail headers. i'm not sure if you'd want to do that in an archive situation. Am I right?   Thanks  On 9/1/05, Brian Desmond <[EMAIL PROTECTED]> wrote: Right. Exchange will route the email through the least cost most direct and first available connector.   T