Matt,
I agree with Freddy, the stopping of the NETLOGON service is the best bet in
stopping DC authentication while maintaining the box online. That seems to be
the most simple answer.
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED]
Matt,
I know when I was reading the article about a lag network on Windows.Net
mag there was the GPO setting that allowed you to state that the DC does
not take part in authentication requests.
The problem I cant find the setting or the article :S
But I am sure there is someone here that knows
Title: [ActiveDir] Deleting an Exchange Database
I recently had some corruption on one of my Exchange databases, let's call it exchange-mbx1, and had to create a new database under the same Storage Group, exchange-mbx1a, on my Exchange 2000 server. I moved all the the mailboxes from the
For instance... If you connect to a resource via IP, kerberos will not be
used, instead passthrough NTLM will be used.
joe, I'm not sure that I know the reason for this. Can you help? (Book
versions appreciated! :o)
Rick
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL
I am in a debate, trying to figure out what from a DC should be backed up. It
seems to me that the system state is the only feasible backup needed from a DC.
Does anyone know of any realistic uses for a SYSTEM DRIVE backup of a domain
controller. If a DC crashes, I would just rebuild it from
Kerberos requires that a principal name (SPN) be specified in order to
locate keying material (computer accounts in AD speak) necessary to secure
(encrypt) the ticket content (primarily the PAC) both in transit and within
the ticket cache of the requesting user. Since IP addresses are not
Title: RE: [ActiveDir] DC's not communicating with each other
Did I read that
right? Did you mention that you restored one of your DC's from GHOST
just before your problems started?
Al
From: [EMAIL PROTECTED] on
behalf of Jorge de Almeida PintoSent: Thu 6/2/2005 4:35
PMTo: 'Matt
When backing up a DC you really only need to backup the system state of the
DC. However, in my opinion the system drive and the system state belong
together and thus I always advise to backup the system. Reason: custom
configurations like directories/permissions/etc., installed apps, etc. When
Title: Message
I just
think you need to stop the information store first
-Original Message-From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
On Behalf Of Mischler Timothy J Contractor NASIC/SCNASent:
Friday, June 03, 2005 8:06 AMTo:
No
-Original Message-
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Za Vue
Sent: Thursday, June 02, 2005
11:56 AM
To: ActiveDir@mail.activedir.org
Subject: [ActiveDir] ADPrep
/Forestprep and /DomainPrep
Do ADPrep /forestprep and
/domainprep require rebooting
Hello,
I found the solution of my pb.
Endeed, in order to install PCNS with this command-line:
Pcnscfg.exe addtarget /n:crimiis /a:crimiis.mydomain.fr
/s:ENTSSO/crimiis.mydomain.fr /fi:Utilisa. du domaine /fe:Admins du domaine
/f:3 /i:0 /d:false, the user must belong to domain admins, that
I doubt that is necessary ... doesn't joe know Exchange?
-B
AS IS
On Fri, 3 Jun 2005, Salandra, Justin A. wrote:
I just think you need to stop the information store first
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Mischler
Title: Message
If I'm not mistaken the Information Store has to be started
in order to access the Storage Groups through ESM in order to delete a
database.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Salandra, Justin
A.Sent: Friday, June 03, 2005 9:34 AMTo:
Title: Message
No you can delete it from Windows Explorer
if the store is stopped.
-Original Message-
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mischler Timothy J Contractor
NASIC/SCNA
Sent: Friday, June 03, 2005 10:22
AM
To: ActiveDir@mail.activedir.org
Can a DFS Root be created in a Root Domain and contain servers from
child domains in the DFS Share? Is there any good information on how to
deal with permissions with this kind of setup?
Justin A. Salandra
MCSE Windows 2000 2003
Network and Technology Services Manager
Catholic Healthcare System
Title: Message
I think what I'll do is delete the unmounted database, stop
and restart the Information Store. That way it won't be referenced in ESM but
I'll still have a copy of the database just in case.
Tim
General Dynamics
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf
Your workgroup servers can be targets of links. No problem. You can also
'point' to UNIX/LINUX (SAMBA) and NetWare resources - anything that can
be referred to with a UNC (\\server\share) can be a link in DFS...
definitely doesn't have to be a domain member.
HOWEVER
You cannot have a workgroup
Title: RE: [ActiveDir] DC's not communicating with each other
Yes, I now realize that I should Never Do
that.
Thanks,--Matt Brown[ SELECT * FROM IT WHERE
EyeContact=True ]Information Technology
System SpecialistEastern Washington
University
From: [EMAIL PROTECTED]
[mailto:[EMAIL
If the DB is dismounted and only the system mbxs are left (no user mbxs) you
can right-click the db and delete, you'll most likely get a message that it's
been removed from ESM, but that you have to manually delete the edb and stm
files. Then you can go to explorer and delete those two files.
Title: Message
No need to cycle the Information Store. It won't hurt
anything, but you don't have to.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Mischler Timothy
J Contractor NASIC/SCNASent: Friday, June 03, 2005 8:54
AMTo: ActiveDir@mail.activedir.orgSubject: RE:
We made the mistake of giving the president lookout from Microsoft. Now he
wants everyone to have it. But I don't want 300-400 users indexing our
exchange server and 4 data servers individually.
Now I'm looking for enterprise search applications, that will search CIFS
shares and the exchange
What is lookout?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jason Benway
Sent: Friday, June 03, 2005 1:22 PM
To: 'ActiveDir@mail.activedir.org'
Subject: [ActiveDir] OT: enterprise search applications
We made the mistake of giving the president
You might look at this:
http://www.x1.com/products/wgexds_cookied.html?source=XDS1
I've used the desktop version and love it.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jason Benway
Sent: Friday, June 03, 2005 10:22 AM
To:
Sorry lookout is a windows application that sits in outlook and allows you
to search your emails, local files, and network shares.
http://www.lookoutsoft.com/Lookout/download.html
Microsoft bought them late last year.
jb
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL
Still having _msdcs issues.
Now I can't add a user from the TRUSTING domain to the local
administrators group on the TRUSTED domain. When I try, I get The
server is not operational. According to JSI, this is due to there
being no SRV records on the TRUSTING domain for that zone. So I looked
How about Sharepoint? It will index everything and you can get exchange
to full text index it'self? You can turn on full text indexing on the
Private and public stores.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Jason Benway
Sent: 03 June 2005 19:36
Huh?
I definitely don't know Exchange. I have a job though where I work on
figuring out what is broken with the Exchange/AD interactions or other
products and AD interactions. When it comes to routing or the mailbox
storage, I have no desire to know or understand.
-Original Message-
Bingo.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Dean Wells
Sent: Friday, June 03, 2005 8:28 AM
To: Send - AD mailing list
Subject: RE: [ActiveDir] lastlogontimestamp-
Kerberos requires that a principal name (SPN) be specified in order to
locate
Title: Message
I am
lost here. I have a system set with computer\Administrative
Template
Internet Explorer
Security Zones: Use only Machine settings
enabled.
Now I
need to add trusted sites into this so that a couple web pages will work right
with their active X components.
Where
is
Try this:
Computer configuration\administrative templates\Windows
components\Internet Explorer\Internet control panel\security page\site
to zone assignment list
You can add sites and assign a value (1-4) for them depending on zone...
**
Charlie Kaiser
MCSE, CCNA
Systems
Thanks to the both of you. Much appreciated and the answer was more
interesting than I initially thought it might be. Explains a few things
that I've seen in Sec Logs and wasn't quite certain what they were.
Now, I know.
Rick
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL
Good evening all. A W2K DC was upgraded to W3K and it is also a DNS server.
No problem at all with prepping and upgrading from W2K-W3K. I am getting
the error below every few minutes. Anyone have a solution?
Event Type: Error
Event Source: DNS
Event Category: None
Event ID:
http://www.eventid.net/display.asp?eventid=4015eventno=333source=DNSp
hase=1
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Za
Sent: Friday, June 03, 2005 10:13 PM
To: ActiveDir@mail.activedir.org
Subject: [ActiveDir] DNS Error
Good evening all. A W2K
33 matches
Mail list logo