Sometimes
saying it won't be supported comes across as an argument to be won.
Or sometimes as a
challenge, as in, so, who needs support? Im smarter than them, Ill prove it
by doing it anyway because I can, and by supporting the unsupportable myself
- anonymous, from the book of
Joe, you are a god among
men. Thank you a ton for explaining this to me in such a clear and concise way.
/aaron
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
Behalf Of joe
Sent: Wednesday, October 11, 2006 6:46 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir]
Oh come on, just go ahead and stick the changes in. It's a Microsoft
product, how bad could it -possibly- be? :-)
On 10/6/06, joe [EMAIL PROTECTED] wrote:
You are definitely funny Brett, some would just argue whether it is in the
ways you think. =)
I find you quite funny, I am waiting for
Thanks for that, nice.
In the mean time I got RPCDump working, I send the output to the list a week
ago or so.
Still hoping somebody can have quick look at it :-)
Cheers,
Victor
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of joe
Sent: donderdag 12
Anyone have a good script/utility to print out all users
(login names) as well as home folder?
Thank you.
Steve Comeau
IT Manager
Rutgers
Athletics
83
Rockefeller Road
Piscataway,
NJ 08854
732-445-7802
732-445-4623 (fax)
www.scarletknights.com
*** This message
Joes (www.joeware.net)
ADFind
adfind -default -f samaccountname=administrator samaccountname
homedirectory
AdFind V01.31.00cpp Joe Richards ([EMAIL PROTECTED]) March 2006
Using server: microsof-gm3fbo.one.test:389
Directory: Windows Server 2003
Base DN: DC=one,DC=test
Use And LDAP Browser (eg. LDAP Softerras
free product at: http://www.ldapbrowser.com/download/index.php)
Search for attributed asAMAccountName,homedirectory.
Set you filter to exclude computers and you are set.
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On
Behalf Of
I like to add that placeholder in case an object
does not have one of those properties set...
so...
adfind -b baseDN -f
samaccounttype=805306368 -nodn -csv NULL samaccountname
homedirectory
etc...
-DaveC
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Almeida
Does anyone know of an object class that defines an attribute like
userPrincipalName but just the name component and not the realm?
For example, if an object had a userPrincipalName of
'[EMAIL PROTECTED]' the desired attribute would be guaranteed to be
'Managers'.
I'm caching group objectSids in
There's a problem with this idea- the UPN (or, more specifically, the
portion before the @) does not necessarily match the CN component of a DN,
so there would be no reliability in your approach.
Why are you unable to retrieve DNs?
Laura
-Original Message-
From: [EMAIL PROTECTED]
Title: Reading Security Descriptors
Hello,
I am trying to list all the ACEs for a particular object in Active Directory. To help me do this (since I am a bit of a newbie to Directory programing), I am reading the book The .NET Developer's Guide to Directory Service Programming.
I took
Let me start with I am confused by what you are doing.
But let me mention thoughts based on what you have written...
The userPrincipalName uniqueness is based on the ENTIRE UPN, not just the
first component. Unless you are POSITIVE that the UPNs will be unique up to
the realm then you may want
Yep there should have been a resonse on the list near to this previous one
from me on that.
Basically I don't know of any docs outlining what exactly you should see and
it will vary based on the services the DC is running so the best thing to do
is compare two DCs running the same service set. If
LOL. Glad I could help out.
joe
--
O'Reilly Active Directory Third Edition - http://www.joeware.net/win/ad3e.htm
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Aaron
SteeleSent: Thursday, October 12, 2006 9:52 AMTo:
ActiveDir@mail.activedir.orgSubject: RE: [ActiveDir]
There is an API that converts UPN to DN (DsCrackNames, also wrapped by
IADsNameTranslate in ADSI). I'm not sure if that helps or not. Like Laura
said, you do need to look something up though.
Joe K.
- Original Message -
From: Laura A. Robinson [EMAIL PROTECTED]
To:
thanks a lot Bob. That was all what I needed to know. Philo"Free, Bob" [EMAIL PROTECTED] wrote: HKLM\SYSTEM\CurrentControlSet\Services\LanmanServer\Shares Saving and restoring existing Windows shares:http://support.microsoft.com/kb/125996 From: [EMAIL
On Thu, 12 Oct 2006 18:36:24 -0400
joe [EMAIL PROTECTED] wrote:
The userPrincipalName uniqueness is based on the ENTIRE UPN, not just the
first component. Unless you are POSITIVE that the UPNs will be unique up to
the realm then you may want to find something else for your key. In ADAM
you
This isn't really an issue but more of an request for an explanation
of how things work under the hood.
I have a mutli domain forest.
A user who is an Exchange full admin in one domain logs in and opens
Outlook to an mailbox that is owned by a user account in another
domain(same forest).
This
Reading Security DescriptorsHi Felderi,
First, thanks for buying our book! I'm not sure if you knew, but we have a
website for the book, www.directoryprogramming.net, where Ryan and I host a
support forum for questions just like this. However, I'm happy to try to
answer your question here.
UPN is arbitrary, so you can't assume the alias part will be the same as
sAMAccountName (although we do that in our org by convention). There is no
such attribute representing what you want.
Joe K.
- Original Message -
From: Michael B Allen [EMAIL PROTECTED]
To:
The work is done as the logged on user, so in this case, as the Exchange
admin.
--
O'Reilly Active Directory Third Edition -
http://www.joeware.net/win/ad3e.htm
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Tom Kern
Sent: Thursday, October 12,
ABE won't necessarily reduce the number of groups you need to control access,
although it certainly controls the visibility for those that don't have any
rights to specific data in your shares.
Your approach is a very common approach and certainly nothing unusual. Not sure
how you get from 15
22 matches
Mail list logo