replication sometime.
3)
Lag-Sites don’t make any sense
if they do replicate in between the scheduled times – so in this scenario you
may worry about both.
Gruesse - Sincerely,
Ulf B. Simon-Weidner
Profile &
Publications: http://mvp.support.microsoft.com/profile="">
27;t you want to share this info on a blog? It's great, and we could give
you credits and avoid typing whenever there's a discussion of that topic.
Might be worth to include the imaged-client and "reset password on a
computer account" discussions.
Gruesse - Sincerely,
Dito on the Firewall: I've had this with a client who insisted that they
don't have any XP or W2k Clients - after the AD migration we found 500 W2k
Laptops connecting via a Firewall - logon took 15 - 20 min. Switched the
domain to NT4 Emulation until the Firewall was changed and everything was
OK.
.
Hope
this helps.
Ulf B.
Simon-Weidner
From:
Wilkinson, Stephen
To: [EMAIL PROTECTED]
Cc: Kent, Ben
Sent: Thursday, April 01, 2004 12:36
AM
Subject: [ActiveDir] Cross forest
policies - boxes in Win2k domain, users in win2k3 s ingle domain forest
Hello all,
Hav
amp;
objRS.Fields(0).Value) objUser.Put
"userAccountControl", newAcctCtrl
objUser.SetInfo Set objUser =
Nothing End If End If
objRS.MoveNextWend
Set objRS = nothingSet objCmd = nothingSet objCon =
Nothing
' END OF SCRIPT
I hope this helps you.
Ulf B. S
Hello Michael,
this is a different kind of replication. Replmon monitors
the replication of Active Directory Informations, such as configuration, the
global Schema and the Domain Informations like your OU-Structure, Users, Groups
and Computers (to name the most common examples).
FRS is th
Hello Lara,
first of all - I'd wait putting all kinds of applications
and devices which tweak the system until the DC works. You seem to have issues
with the smartcard reader, and VNC (whyever you would need that - I'd just go
for Terminal Services Administration Mode). Are you able to nail
Hello Bart,
see the following post:
http://groups.google.de/[EMAIL PROTECTED]
Ulf B. Simon-Weidner
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Vermeire
BartSent: Dienstag, 6. April 2004 06:43To:
[EMAIL PROTECTED]Subject: [ActiveDir] using
dsacls.exe
Hi,
I am
Behalf Of Ulf B.
Simon-WeidnerSent: Donnerstag, 8. April 2004 17:10To:
[EMAIL PROTECTED]Subject: RE: [ActiveDir] using
dsacls.exe
Hello Bart,
see the following post:
http://groups.google.de/[EMAIL PROTECTED]
Ulf B. Simon-Weidner
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behal
red to perform which
task.
/Guido
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Ulf B.
Simon-WeidnerSent: Donnerstag, 8. April 2004 17:10To:
[EMAIL PROTECTED]Subject: RE: [ActiveDir] using
dsacls.exe
Hello Bart,
see the following post:
http://groups.google.de/[EMAIL PROTECTED]
Hello Brent,
this is very easy to accomblish: you just need to add the inetOrgPerson
class to the objectClass attribute of the user using adsiedit or a script.
Ulf
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Brent Westmoreland
Sent: Dienstag, 20. Ap
nd DCs and Backups are your best
friends ;-)
Ulf B. Simon-Weidner
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Im Auftrag von Chris Jones
Gesendet: Samstag, 8. Mai 2004 01:13
An: [EMAIL PROTECTED]
Betreff: [ActiveDir]
Hi guys,
I need some help here.
Hello Rens,
Migrate with ADMTv2, look into the guides MS published for
a migration from one forest into another. Since you are able to keep the SID in
the SIDHistory you are able to retain permissions, however I'd also look to
reAcl the Ressources to the new SIDs. This can be done with ADMT
Hello Stephen,
I don't think so. AFAIK the only variables which you are
able to use during logon are the ones which are system variables on the clients
plus the %username%. Variables defined in the context of the user are not
available at this time.
AFAIK2 - the variable username is fille
Hi Joe,
AFIAK the passwords of the computer accounts are not set to expire, but they are
automatically changed.
The password change is done from the netlogon service. The default time in NT was 15
days, changed to 30 days in W2k and later. The client might decide to change after the
half of th
Hi Michael,
just define it in the search base, e.g.
LDAP://ou=myou,dc=mydomain,dc=com.
You define usually searchbase, filter, attribues and scope - and searchbase does
not need to be the domain, it can be any LDAP Path.
HTH, Ulf
Von: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Im Auftra
Hi Russ,
there's a additional tool which would be able to help you
here. If you register the AcctInfo.dll on the Computers running Active
Directory Users and Computers it extends the property pages of a useraccount by
a Tab "Additional Account Information". On this tab you can see some more
Hi Mark,
first thing which comes to my eyes is that the base it not
started and ended with "<" and ">", but the whole query including base,
filter and scope is.
So what I'd try is modifying the line beginning with
strBase with
strBase = "LDAP://dc=my,dc=domain,dc=com;"
and the line star
Better this way, it
really Bugs me since it’s buggy.
I hope for a new Adminpak
with SP1.
Ulf
Von:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Im Auftrag von Fuller, Stuart
Gesendet: Freitag, 14. Mai 2004
21:48
An: '[EMAIL PROTECTED]'
Betreff: RE: [ActiveDir] Dial-In
Prop
Maybe the AD List Mode will be an option for you:
http://www.chrisse.se/MAQB.asp?ID=34
Ulf
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Im Auftrag von Kern, Tom
Gesendet: Donnerstag, 20. Mai 2004 20:00
An: ActiveDir (E-mail)
Betreff: [ActiveDir] hidding users
Event to it's replication partners if they are W2k? I somewhat heard that
WS2k3 <-> WS2k3 will always particial replicate syncs, while W2k <-> WS2k(3)
will always full sync?
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Im Auftrag von Dean Wells
Gesendet: Mittw
ll pull that if they don't find a profile for the user.
Gruesse - Sincerely,
Ulf B. Simon-Weidner
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Im Auftrag von Raymond McClinnis
Gesendet: Dienstag, 8. Juni 2004 01:47
An: [EMAIL PROTECTED]
Betreff: [A
27;t repopulate. This is even
easy to script with dnscmd.
Gruesse - Sincerely,
Ulf B. Simon-Weidner
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] Im Auftrag von Rimmerman, Russ
Gesendet: Dienstag, 8. Juni 2004 22:49
An: '[EMAIL PROTECTED]'
Betreff: [A
me since the beginning of the year :-(
Gruesse - Sincerely,
Ulf B. Simon-Weidner
just script it?
>
>joe
>
> _
>
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Ulf B.
> Simon-Weidner
> Sent: Wednesday, July 07, 2004 6:32 PM
> To: [EMAIL PROTECTED]
> Subject: [ActiveDir] Delegation of Callback-Number
>
>
>
You are using a E-Mail or Reply-to with just "cyrus" without and
"@maildomain" - seems so that some mailsystems of the other companies add
their own domains ;-)
Gruesse - Sincerely,
Ulf B. Simon-Weidner
> -Original Message-
> From: [EMAIL PROTECTED] [
- Sincerely,
Ulf B. Simon-Weidner
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On
Behalf Of Rimmerman, Russ
Sent: Friday, July 23, 2004 1:26
PM
To: '[EMAIL PROTECTED]'
Subject: RE: [ActiveDir] NTP
server
So your firewall lets only the PDC
emulator go out the NTP
erely,
Ulf B. Simon-Weidner
- Ursprüngliche Nachricht -
Von: "Devan Pala"<[EMAIL PROTECTED]>
Gesendet: 02.08.04 16:41:33
An: "[EMAIL PROTECTED]"<[EMAIL PROTECTED]>
Betreff: [ActiveDir] VPN & Authentication
Hi all,
We have
d /c /i
"dc="
If you
want all groups you can go with
dsquery group domainroot -name * | dsget group -members | find /c /i
"dc="
DISCLAIMER: Examples not tested, but should work (at least slightly
modified). I'm to lazy to fire up a DC to test right now
;-)
\Services\Lanmanserver\Shares
Gruesse - Sincerely,
Ulf B. Simon-Weidner
MVP-Book "Windows XP - Die Expertentipps":
http://tinyurl.com/44zcz> http://tinyurl.com/44zcz
Weblog: http://msmvps.org/UlfBSimonWeidner>
http://msmvps.org/UlfBSimonWeidner
WebSite: http://www.wind
{20D04FE0-3AEA-1069-A2D8-08002B30309D}]
@=hex(2):25,00,75,00,73,00,65,00,72,00,6e,00,61,00,6d,00,65,00,25,00,20,00,\
40,00,20,00,25,00,63,00,6f,00,6d,00,70,00,75,00,74,00,65,00,72,00,6e,00,61,\
00,6d,00,65,00,25,00,00,00
Gruesse - Sincerely,
Ulf B. Simon-Weidner
MVP-Book "Windows
twork infrastructure
of the scenario).
I change every MOC I'm teaching that way - much more convenient for me and
the students.
Gruesse - Sincerely,
Ulf B. Simon-Weidner
MVP-Book "Windows XP - Die Expertentipps": http://tinyurl.com/44zcz
Weblog: http://msmvps.org/UlfBSimonWei
IIRC you only need to specify write rights on the
bginfo.bmp file. But it's been a while.
Gruesse -
Sincerely,
Ulf B. Simon-Weidner
MVP-Book "Windows XP - Die Expertentipps": http://tinyurl.com/44zcz
Weblog: http://msmvps.org/UlfBSimonWeidner
y daily, so no worries if the events logged at a specific day
would be more than the memory allowed for the log, and no events are lost.
HTH
Gruesse - Sincerely,
Ulf B. Simon-Weidner
> -Original Message-
> From: [EMAIL PROTECTED] [mailto:ActiveDir-
> [EMAIL PROTECTED] On B
perhaps you can play around with some other keys and
figure out what syntax is being used and what the printkey might be.
After you found the
regkey create a adm-file to put that into a policy.
Gruesse - Sincerely,
Ulf B. Simon-Weidner
From: [EMAIL PROTECTED]
[mailto:[EMAIL
Title: Message
Hi Steve,
still the same, no matter
what OS, Forest or Domain Mode or SP.
Gruesse - Sincerely,
Ulf B. Simon-Weidner
From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Steve Schofield
Sent: Wednesday, September 01,
2004 4:07 AM
To
Gruesse - Sincerely,
Ulf B. Simon-Weidner
> -Original Message-
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of Graham Turner
> Sent: Monday, September 06, 2004 11:24 PM
> To: [EMAIL PROTECTED]
> Subject: [ActiveDir] user object attribute delegation
such as DNS-Suffix or
DNS-Servers.
Gruesse - Sincerely,
Ulf B. Simon-Weidner
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Brent
WestmorelandSent: Tuesday, September 07, 2004 10:53
PMTo: [EMAIL PROTECTED]Subject: Re:
[ActiveDir] Set Preferred DC
Title: Message
Hello Andrew,
no, that's not able to extract in AD.
The most popular solution for that request is to log that
to a central file or database within the logon-script.
Gruesse - Sincerely,
Ulf B. Simon-Weidner
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROT
yways.
Gruesse - Sincerely,
Ulf B. Simon-Weidner
MVP-Book "Windows XP - Die Expertentipps": http://tinyurl.com/44zcz
Weblog: http://msmvps.org/UlfBSimonWeidner
WebSite: http://www.windowsserverfaq.org
> -Original Message-
> From: [EMAIL PROTECTED]
> [mai
are supporting issues which are not
reproducable on real HW. But who cares - if I want support I need to be able to
reproduce the behavior anyways and I'd be able to try THEN if they are b/c of
using newsid instead.
Gruesse -
Sincerely,
Ulf B. Simon-Weidner
MVP-Book "Windo
ully
"yet").
Gruesse -
Sincerely,
Ulf B. Simon-Weidner
MVP-Book "Windows XP - Die Expertentipps": http://tinyurl.com/44zcz
Weblog: http://msmvps.org/UlfBSimonWeidner
WebSite: http://www.windowsserverfaq.org
From: [EMAIL PROTECTED]
[mailto:[EMAI
eny rights on the AD-Attributes
for that group? Just a guess.
Gruesse - Sincerely,
Ulf B. Simon-Weidner
MVP-Book "Windows XP - Die Expertentipps": http://tinyurl.com/44zcz
Weblog: http://msmvps.org/UlfBSimonWeidner
WebSite: http://www.windowsserverfaq.org
> -Original Mess
different partition into the
folder: compression status will be inherited from the folder
Gruesse -
Sincerely,
Ulf B. Simon-Weidner
MVP-Book "Windows XP - Die Expertentipps": http://tinyurl.com/44zcz
Weblog: http://msmvps.org/UlfBSimonWeidner
WebSite: http://www.windowsser
ryone take
part in the contest.
So "PrOlympics"? Don't think so - sounds like Olympics and
they are international and not just of a single country. Bad for the winner - he
didn't really show off that much.
Gruesse -
Sincerely,
Ulf B. Simon-Weidner
MVP-Book "Win
f Of
> Tomasz Onyszko
> Sent: Tuesday, November 30, 2004 7:58 AM
> To: [EMAIL PROTECTED]
> Subject: Re: [ActiveDir] IT PrOlympics Challenge on WindowsITPro
>
> Ulf B. Simon-Weidner wrote:
> > Worse - I would have liked to participate as well, but they
> didn't say
>
> I had the same experience as you Ulf. I'm from Scotland and
> when I registered I was told I could only download the ebook
> but not register for the actual contest. This is a shame as
> everyone knows that the best Active Directory Pros are from Europe. :)
>
:-D
Gr
Since they are just talking about resource hacking the regkey will not be
affected and a hotfix might change the dll and the reg if necessary. The
hotfix will not be able to determine that the dll was hacked.
Just AFAIK
Gruesse - Sincerely,
Ulf B. Simon-Weidner
MVP-Book "Windows XP
Hi John,
There are some bugs in the Tab, see here:
http://www.windowsserverfaq.org/faq/DialInTab.asp
Gruesse - Sincerely,
Ulf B. Simon-Weidner
MVP-Book "Windows XP - Die Expertentipps": http://tinyurl.com/44zcz
Weblog: http://msmvps.org/UlfBSimonWeidner
Web
You could also create a Helprequest right out of
the Help and Support Center if you have Windows XP and Remote Support
is enabled.
Gruesse -
Sincerely,
Ulf B. Simon-Weidner
MVP-Book "Windows XP - Die Expertentipps": http://tinyurl.com/44zcz
Weblog: http://
Did my wife complain to you?
Gruesse - Sincerely,
Ulf B. Simon-Weidner
MVP-Book "Windows XP - Die Expertentipps": http://tinyurl.com/44zcz
Weblog: http://msmvps.org/UlfBSimonWeidner
WebSite: http://www.windowsserverfaq.org
> -Original Message-
> From:
201 - 251 of 251 matches
Mail list logo