Home All Groups Group Topic Archive Search About

Windows Server Active Directory

microsoft.public.windows.server.active_directory
Score Replication problems
Alima Sadya - 24 Nov 2007 6:30 PM - 3 messages
Hello, I am trying to Organize The Domain into Organizational Units, using Windows Server 2003. Frirst, I I created an OU hierarchy and Global Groups Second, After I created User templates for Specific OUs to facilitate standardized settings in Domain Controller DC1, I trried to replicate the ...
Score Replication problems
Alima Sadya - 24 Nov 2007 6:29 PM - 5 messages
Hello, I am trying to Organize The Domain into Organizational Units, using Windows Server 2003. Frirst, I I created an OU hierarchy and Global Groups Secnd, After I created User templates for Specific OUs to facilitate standardized settings in Domain Controller DC1, I trried to replicate the ...
Score Using VBScript for logon scripts rather than BAT files
Laphan - 24 Nov 2007 2:44 PM - 4 messages
Hi All It seems to be that using VBscript files are better (more reliable??) than BAT files when it comes to adding/removing/setting default printers - is this the case? Due to the blessed HP2600N printer I've had to install this printer manually ...
Score Making domain users local admins
Laphan - 24 Nov 2007 2:39 PM - 8 messages
Hi All I had a problem whereby the teachers couldn't use their home internet on their 'domain-linked' laptops because of the limited access that they get. Didn't want to make them part of the domain admins groups so somebody ...
Score Num Lock for Notebook Users
create_share - 24 Nov 2007 6:52 AM - 6 messages
Whenever my Notebook users restart their computers, Num Lock turns on automatically. Can i disable it from Group Policy in windows 2003 Domain? Thanks! ...
Score problem joining to domain
Freddie - 24 Nov 2007 5:41 AM - 3 messages
after adDprep the forest and domain. on 2000 domain controler(server01) only one DC and DNS on the Active Directory. join the server 2003(TEMPDC) and DCpromo and Seizing all 5 rolles (offline) (two servers not connected) my TempDC is not working ok. can not join any PC it gives me error using ...
Score What is the proper way to locally restore ADAM from an ntbackup fi
Eric Chaves - 24 Nov 2007 12:46 AM - 3 messages
Hi Folks, I've being trying to backup and restore an local instance of ADAM in my windows XP workstation, but whenever I restore it I got an error to restart the service regarding the "DS Database Epoch" (whatever this means). ...
Score DNS question
Cary W. Shultz - 23 Nov 2007 8:41 PM - 5 messages
Good evening! Long time, no visit! Anyway, I have a question regarding DNS.... If I open up our good friend ADSIEdit and add the ForestDNSZones and DomainDNSZones of a domain I am seeing something that confuses me.  Here is ...
Score CSVDE - [WP]
WILDPACKET - 23 Nov 2007 6:39 PM - 6 messages
Have this CSV file with list of 400 users and I have the following colums. Employee Number First Name (CN) Last Name (SN) lastname and first intial (SAMAccountName) I ran the CSVDE -i -f *.csv and it saying missing DN. ...
Score Add computer to domain with Smart Card
nelson.jeppesen@gmail.com - 23 Nov 2007 6:30 PM - 2 messages
I'll keep this simple; Windows 2k3 domain with XP clients. Is there a way to add a computer to the domain with smart cards? All users here must login via smart card, even administrators. Thank you. ...
Score Backup print server?
Cyborg - 23 Nov 2007 4:55 PM - 14 messages
I have configured a Windows 2003 R2 print server for my office, if this server goes down none can print, what options do I have?  Can I have 2 servers working as one, so if one goes down users just continue to use the ...
Score tests to conduct before joining a DC to an existing domain
Sanjay Mehta - 23 Nov 2007 4:41 PM - 3 messages
Hi, I am trying to join a domain controller to an existing domain. I am referring to: [link] in point 8) Verify the availability of the operations masters ...
Score 2003 DC in 2000 Domain
rop.jason - 23 Nov 2007 4:07 PM - 5 messages
I have a network with 3 DCs, one running Server 2003 and two running 2000 Server.  Back in the summer, when I added the DC running 2003, I raised the domain functional level to 2000 native to support the new ...
Score Adding accinfo.dll
mdj1969 - 23 Nov 2007 2:53 PM - 2 messages
Can someone help with getting the accinfo.dll added into the MMC tools so that I can view the additional information that it provides? ...
Score Windows 2003 R2 adprep/forestprep
Cyborg - 23 Nov 2007 1:20 PM - 8 messages
I am trying to use the new print server in Windows 2003 R2.  But apparently I need to run the adprep/forestprep on my infrastructure roler DC.  Is this safe for me to do in the day or should I run this out of hours? ...
Score file migration wizard error
john - 23 Nov 2007 12:50 PM - 2 messages
i am migrating files using MS file migration wizard, they all copied fine i unchecked stop sharing source folders, but just had some users say they can,t access there home folder when logging on and this message is displayed: ...
Score Required export OU, Groups, Users, Passwords of users, Policies an
masiddiqui - 23 Nov 2007 12:06 PM - 3 messages
Hello We are running two windows 2003 servers. Both have AD with AD integrated DNS. One of the domain controller which have FSMO roles is not working properly, (both become old and want replacement). My organization is planning to purchase new server machines. We are planning to install new windows ...
Score ADAM AuditRules
Chris - 23 Nov 2007 11:22 AM - 4 messages
Hi All, I am currently trying to write a little c# app to list out the AuditRules for an ADAM object (similar to DSACLS for AccessRules), I am doing this as an administrator so I do not for see any security ...
Score Disaster recovery and NTDSUTIL
Dino Aydin - 23 Nov 2007 11:02 AM - 2 messages
I'm tryin' to find a solution for the flw scenario: 1st W2K server : ( file server) - logged as directory services restore mode - ntdsutil recovery failed couse the DBinitializate Jet failed error - 530 - eseutil failed - no backup of sytem state - now machine out of domain and in a work group ...
Score ad replication issues between two w2k3 r2 servers
Philip - 23 Nov 2007 9:01 AM - 3 messages
I starated getting event id 1311 & 1865 errors in the directory service event log on the pdc. The two servers are connected via a vpn between the two sites with the remote server being an a sub-domain of the main one. ...
Score Missing Space...
Nosfuratu - 23 Nov 2007 1:07 AM - 2 messages
One of my drives is saying 136gb size - 64.5gb free, but only recording 10gb used...This is a data drive only...Hidden Files are turned on...There is nothing to be compressed or deleted according to windows disk cleanup....It is windows 2k3 svr.... ...
Score Outlook asks for username and password
Ricky - 23 Nov 2007 12:40 AM - 11 messages
I don't know what's going on with 2 sites of my network once users outlook keeps asking for domain/username and password when the clients opens the outlook and then passed a few minutes asks again. I've already check all outlook and exchange configuration and I don't know ...
Score Group Policy Applied By Computer ir Computer Group
MichaelFaulkner - 22 Nov 2007 7:08 PM - 5 messages
I've tryed WMI scripting as well as configuring computer security groups and attempting to apply different GPO's to those groups without success.  For example, I would like  to apply a different wallpaper based on the workstation monitor hardware.  I have seen this accomplished by creating an ...
Score System Policy in Exchange 2003
raj - 22 Nov 2007 5:52 PM - 2 messages
dear sir    I have windows server 2003 enterprises edition and Exchange 2003 enterprises edition. My exchange serve is working properlly,I want to imlement System Policy in Exchange 2003. But i did not find System policy  option in Exchange system manager. Please help me what i can ...
Score Lock computer disable
reptil - 22 Nov 2007 2:28 PM - 5 messages
Where in GPO i must define that all user can unlock computer not just current and admin, after screen saver ...
Score when used an user microsoft's owa
Johan deheugden - 22 Nov 2007 1:05 PM - 3 messages
i would like to know when an user logged into owa through the internet.how can i find that information?? thanks in advance. ...
Score domain dielema
georgestark - 22 Nov 2007 11:34 AM - 2 messages
Morning Guys, hope you can help. We have just taken over a company in North America they have no domain structure, no Exchange server etc and have about 15 offices spread across Canada and US. We in the UK have 12 offices connected by a MPLS system (VPN) in a single ...
Score Creating a Single-IP Site for Disaster Recovery
JayDee - 22 Nov 2007 9:53 AM - 10 messages
We would like to create a disaster recovery Domain Controller in our native 2003 AD environment. Our goal is to have it synchronize at a slower frequency than the rest of the DC's, so if something happens to the environment, we have an older copy. This would mean that we don't ...
Score Log in server
Davem - 22 Nov 2007 4:14 AM - 3 messages
Hi there, I have two Windows 2003 domain controllers. Both are global catalogue servers, DNS etc. My trouble is that when the frist DC is off line users cannot log in to the second DC. The only thing I can see that is ...
Score AD Design Question, including Exchange
Gordon Lamb - 22 Nov 2007 1:34 AM - 4 messages
Hi, Thank you for taking the time to read this. I am doing some design work for a client, and have a few questions. They are opening a new office here in Singapore, but want to use an existing Exchange 2003 server in their office in China. We do not want to run a second ...
Score Upgraded to AD03 cannot browse
Widdow Maker - 22 Nov 2007 12:22 AM - 3 messages
We are a hospital with about 400 servers,7,000 clients, 22 non native w2k and w3k DC,s. After upgrade to AD03 cannot see any newly added servers in any browse list or network neighbor. What did we not set up correctly? We ...
Score After succesfull upgrade to AD2003 ,DC fails after moving Master S
A10 - 21 Nov 2007 11:54 PM - 9 messages
After succesfully adpreping 2000 / domain /forest /group too AD2003 RT and succesfully installing DC 2003 all is well. After moving the FSMO roles to the new DC 2003 server and the Master Schema. After reboot the server is cut off. I recieve only errors pointing towards no endmapper points. Have gone ...
Score add 2k3 r2 dc to 2k domain
Goober Head - 21 Nov 2007 11:03 PM - 2 messages
I am adding a a 2003 r2 sp2 DC to a 2000 active directory domain (2k DC's sp4) that USED to have exchange 2000 but has since been removed. My understanding of this process is that I should run: ...
Score best way to change ip address on only DC in domain
ray - 21 Nov 2007 10:06 PM - 3 messages
Hi ...
Score Group Policy or Template for Roaming Profiles
Rob A - 21 Nov 2007 4:54 PM - 3 messages
All, is there a GP or admin template that can be added to the group policies that specfies the user profile, profile patch for each user in AD? ...
Score Duplicate SPN - but unsure how to fix!
Steve - 21 Nov 2007 4:32 PM - 7 messages
Hi all, Getting KDC error 11 on our DC (GC and FSMO roles on it too): There are multiple accounts with name RPCSS/sql01 of type DS_SERVICE_PRINCIPAL_NAME. Looked up the relevant KB article KB321044. Used the VBS to get the results. ...
Score To trust or not to trust???
jmos - 21 Nov 2007 3:16 PM - 6 messages
We currently have two companies which need to merge but a difference of opinion and I could do with another view. As a standard practice I want to setup a trust between both forests so that resources can be easily accessed from each other domain without too much ...
Score SID History and IIS NTLM Authentication
Marcel - 21 Nov 2007 3:02 PM - 2 messages
Does IIS NTLM Authentication make use of sidhistory? We have two domains and all file access is fine using sidhistory but all IIS access fails. Thanks very much. ...
Score List user groups from a trusting domain
Dan - 21 Nov 2007 2:46 PM - 2 messages
Hello, I'm working with 2 domains, one trusting the other (B trust A). I have a user  defined in the trusted domain (A) and he is member of a security group (domain local security group) in the trusting domain ...
Score Granting client local admin access via GPO to logged on user only
jmedd - 21 Nov 2007 2:34 PM - 8 messages
We need to give our users local admin access to their client 2000 / XP machines and currently this is done via a GPO which adds a 'LocalAdmin Access' domain based group to the local administrators group. Users are then added to the domain based group. ...
Score NT domain name change when doing an upgrade
Windows Fans - 21 Nov 2007 2:25 PM - 2 messages
Hi, My current NT4 netbios domain name is NTDOMAIN. While doing in-place upgrade of AD 2003 on PDC, i will like to name the AD Full DNS name as nt.com. i want to know will there be any impact or issue if the netbios domain name and my ...
Score Exchange in NT and win2003 domain
Windows Fans - 21 Nov 2007 2:04 PM - 4 messages
Hi, Currently,  im running on Win nt4 domain and with Exchange 5.5 server. I plan to upgrade my domain to Windows 2003. In-place upgrade my PDC to first AD root while still preserve BDC in the environment. Will the exchange 5.5 ...
Score Way to Backup
create_share - 21 Nov 2007 2:03 PM - 6 messages
How can i backup data on my client computers without mapping the data folders from their computers on the Backup Computer since i have more than 50 users. Is it possible to backup a shared folder or there is another way to do this? ...
Score Demoting DC and Removing from Sites and Services
a_user - 21 Nov 2007 1:37 PM - 3 messages
If you remove the dc role from a member domain controller should it not automatically remove that servers entry from the site and subnet entry under Sites and Services for all other member dc's and the master dc? this is ...
Score Raise Functional Level
Blue Fish - 21 Nov 2007 1:28 PM - 2 messages
Hello:     I have make sure all the DC have upgrade to Win2K or higher. If I would like to raise the functional level to Win2K, does anything I need to pay attention?     Does any impact on the client? Does the WINS still work? ...
Score Adding a new DHCP server - [WP]
WILDPACKET - 21 Nov 2007 1:01 PM - 3 messages
Hi, Have one DHCP server with 192.168.1.* / 255.255.255.0 works fine but running low in IP's now. For redundancy want to add another DHCP on this network.  I know we can add but not sure what class IP will I use for the second DHCP server?  Can it be ...
Score Unable to bind to ADAM using windows account
choukse - 21 Nov 2007 1:56 AM - 4 messages
Hi All, I am trying to bind to ADAM instance with a windows user through JNDI and it keeps failing. My ADAM and AD is running on same Windows 2k3 server. But, through LDP I am able to bind with the same windows user successfully and browse through the entire tree successfully. ...
Score backup and restore ENT CA
skip - 21 Nov 2007 12:48 AM - 2 messages
Hello all Currently i have an ENT CA server running in my 2003 native mode domain. The ent CA server is running on a DC. I have followed kb 555012, but ran into an issue with running the command Type “certutil –delkey CA_NAME” to delete the ...
Score Managing Global group Ownership
Frank - 20 Nov 2007 8:51 PM - 3 messages
I am looking for a application or some other effective (none time consuming) method for searching out a User currently listed in a global groups Managed By Tab's Name Attribute, listed under the global groupss Security Tab, and last but not least the contents of the General Tab's Notes Attribute. Any ...
Score Moving/copying a DC to our test network
ray - 20 Nov 2007 8:18 PM - 4 messages
Hi We need take an exact copy of our W2K3 AD (live environment) and place it into our test environment for a project We intend carrying out the following in order to achieve this! Create an additional DC on live environment ...
Score ADMT v3 Group Migration Error
jessealbert - 20 Nov 2007 7:07 PM - 6 messages
Heyo, I'm using ADMT version 3 to migrate several universal groups from one intraforest domain into another (child domain into parent).  I've done about 2500 groups so far and it has been working flawlessly, however for about 50 ...
Score ADAM Replication, HTTPS, and NAT'd environments
pseudoLatino - 20 Nov 2007 6:50 PM - 2 messages
all--- I'm creating an application that uses ADAM to store users/roles that 3rd party client applications will access for authentication/ authorization. This application will run independently at various sites (in the ADAM sense of that word) across the country. Each site ...
Score Exclude range of IP addresses for Screensaver group policy
kickballmvp2006 - 20 Nov 2007 3:57 PM - 4 messages
I just implemented a group policy for screensaver so that after 30 minutes of inactivity the screensaver turns on and the PC locks out. I understand this is a user configuration settings, but is there a way to exclude a range of machines by IP address? In this case I would want to exclude all machines on the 10.75.3.x network. ...
Score Set command
gscanga - 20 Nov 2007 3:37 PM - 3 messages
If I execute the "set logonserver=dc2" command on a client, does that actually change the dc that the client communicates with in the domain? Thus, if I have the user change their password from their client machine, it will ...
Score Processor Queue Length
BigSam - 20 Nov 2007 3:36 PM - 3 messages
I'm evaluating some monitoring software. One component is monitoring my W2k3 Active Directory servers - 2 of them. One server is constantly exceeding the OS Processor Queue Length. The values range from 6 to 23 with an average of 13.2. ...
Score Why isn't LDIFDE finding entries???
Myinzu - 20 Nov 2007 3:06 PM - 2 messages
Finding publicDelegates(BL)  using LDIFDE not working.  ADSI Editor shows some. Am I doing something wrong???? Please see below for details and advise. -------------------------------------------------- U:\>LDIFDE -f delegates.txt -d "cn=users,dc=company,dc=local" -l name,publicDele ...
Score AD Trusts and Firewall
ldr_78 - 20 Nov 2007 2:28 PM - 6 messages
Hi, I've got some questions concerning Trusts and Firewalls. (I hope my explanation will be clear). I have an Active Directory Forest (ad.local) with an empty root domain (ADROOT) 2 domain controllers are installed for this root domain. ...
Score Windows Update
millin - 20 Nov 2007 12:46 PM - 3 messages
Hi All, I need to disable the automatic update option for one user which I have set up for the whole domain users .What I done was created another OU under the same Dept OU(because I don't want to disturb any of the mapped drives and ...
Score GC and some other stuff will only sync with a open PPTP Connection
Lars - 20 Nov 2007 10:38 AM - 3 messages
Hi! I've set up a new child domain. The thing with this issue is that the customer had not thier VPN channel finished when i run the dcpromo thing. I did a manual PPTP Connection from the new childdomain computer to the Top ...
Score User privilege caching in Active Directory?
filippo.capocasale - 20 Nov 2007 10:35 AM - 12 messages
Hello! I have an Active Directory domain and a web application (that is developed with .Net and runs on the domain controller) which manages users' group membership. I have configured the privileges associatetd with these custom groups. When I change a user's group membership, the new privileges ...
Score Doamin controller not working
masiddiqui - 20 Nov 2007 9:23 AM - 3 messages
Hello I have two master domain controllers both were on same location, one of them become down due power supply failure. But now I find out that another is not authenticating to clients. Important thing DNS was AD integrated, and both were working properly, but ...
Score query AD at domain scope
tree leafs - 20 Nov 2007 7:44 AM - 5 messages
we have a few applications that need to query AD to get user objects. When all user objects were in Users container these applications worked fine. When user objects moved out of Users container to other OUs these applications failed to work. The reason was found that the query these ...
Score AD Schema Extension Question
Oliver - 20 Nov 2007 4:44 AM - 8 messages
have a customer that wants to extend the schema to include an attrib for an auxiliary class attached to the user class. The attribute will be used to store compressed and encrypted XML code with logon..and is currently used to ...
Score Win 2k3 SBS Question
lee - 20 Nov 2007 3:36 AM - 11 messages
Hey Guys, A few quick questions i am hoping someone can help with. 1) I have used Active Directory on Windows 2000 before, and everything seemed fine.  What i noticed on this new ver. of 2003 small business is the ...
Score Addind new domain tree to existing forest
Chris - 20 Nov 2007 12:33 AM - 2 messages
I am a citrix engineer. I am trying to use the feature in Password manager that allows you to configure the service machine across multiple domains. A requirement is that you have a 2-way transitive trust setup when you ...
Score dsmove for loop ?
al - 19 Nov 2007 10:49 PM - 6 messages
I am trying to move a bunch of computer objects in a txt file separated by a comma to another OU.  I wanted to do this with a for loop at the command prompt but I am not having any success.  I haven't ...
Score AD SID History
Inger - 19 Nov 2007 9:56 PM - 7 messages
Hi, Hope you can help me. I want to install an W2K3 AD, but I'm having some discussions with some externals on whether it will be best to install a new AD and move the objects from the current W2K AD to the new AD or if an ...
Score AD Migration
jstar35 - 19 Nov 2007 8:40 PM - 4 messages
Since I have been migrating several machines to AD (laptops and Workstaions) I have one machine that after much testing will restart itself if not connected to the DC. If connected all is fine. If disconnected after boot up, all is fine. If the connection to the DC (network) is not present at boot up ...
Score Primary DNS Suffix of this computer
RC - 19 Nov 2007 7:50 PM - 2 messages
Does anyone know how or if it is possible for me to write a script that will check ever server on the domain and give me its NIC information? I am specifically looking for: Primary DNS Suffix of this computer ...
Score GPMC Error: "Key cannot be null" via Group Policy Results Wizard
GeoTech - 19 Nov 2007 6:27 PM - 5 messages
I have a curious error while using the GPMC when I attempt to use the group policy results wizard I get the following error under the "Summary" and "Settings" tab of the report. An error occurred while generating the report ...
Score Promoting a second DC
v2win - 19 Nov 2007 5:40 PM - 5 messages
I have an AD domain set up in my office used mostly for labbing.  I want to promote a second machine as a backup domain controller in order to lab AD Sites, replication, etc. When the second machine is promoted, are any of the FSMO roles automatically ...
Score Delegation of the "Users" container
AJ - 19 Nov 2007 3:55 PM - 4 messages
Is it possible the delegate permissions on the Users container?  The OU's I've created work fine when the Delegation Wizard was used, but the container "Users" didn't populate fully.  Is there a way to ensure that the security ...
Score How many objects in AD?
Stefan 'Birdie' Vogel - 19 Nov 2007 3:48 PM - 6 messages
Hello, does anyone know about an official documentation by microsoft, explaining how the limits in AD look like? i.e.: How many objects can be in AD at all? How Many objects in an OU? How many trust? How many sites? ...
Score Possible slow SYSVOL access
Jonathan - 19 Nov 2007 3:05 PM - 4 messages
We have two Windows 2003 std DCs in a child domain. When clients access the sysvol directory by UNC such as \\child.domain.local\sysvol we see a delay from 15 to 30 seconds. However, if I access a server directly by UNC such as ...
Score windows2000server with DNS to upgrade to windows2003 Serevr
Ramana - 19 Nov 2007 2:55 PM - 3 messages
Hi, i have windows2000 Serever in that DNS is there, i want upgrade to windows2003 Server what step to take before upgrading...??? ...
Score NTP help
Noob - 19 Nov 2007 2:42 PM - 7 messages
I seem to be having a problem.  My network is broadcasting NTP/UDP 123 traffic (my Firewall is getting hammered).  I have my DHCP set to us my PDC as the time server but I do not think it is working correctly. ...
Score Setting up a domain problem
Kjell - 19 Nov 2007 1:43 PM - 11 messages
Hi I'm re-working a local network ni order to create a W2003 domain with AD The current situation is pretty comlicated to say the least. There are at least 2 other domain controllers active (Linux and openBSD) one ...
Score migration tool error
john - 19 Nov 2007 1:10 PM - 5 messages
I am using admt to migrate user accounts from one domain to another, all trusts have been established DNS etc. admt was working fine for about 400 users it then started reporting errors stoped working and complained about password complexity, now it just states ...
Score see Proxy setting
ZIDAC - 19 Nov 2007 11:00 AM - 3 messages
Hello everybody: In a XPpro to see the TCP / IP properties without being administrator use Ipconfig / all I need to see the configuration of proxy, but I can not do so because the IE tab connections is hidden. Is there any way to see the configuration of Proxy (IP, port, ...
Score Windows Server 2003 DC SP1 to SP2
Leezy - 19 Nov 2007 9:12 AM - 4 messages
Planning to upgrade SP1 to SP2 in the weekend. Should i update PDC first or is it ok to update from any server... any advice will be great... ...
Score Managing groups and OUs - 2 questions
tami.yakira1 - 19 Nov 2007 9:04 AM - 4 messages
1. Can a group include users from several different OUs? 2. If a user belongs to more than one group, and each group has its GPO, and the GPOs have conflicts (contradicting settings) - than how is the user's policy determined? ...
Next » 2 3 4 5 6 7 8 9 10