AFDS, Domain trust or other?

Tutorials Win: Microsoft Windows Forum

- Previous
  - 1
    - Ports & Services & Security I'm looking for documentation that links services to ports for security reasons. This is coming for a *nix guy whose only been able to piecemeal/guess-n-check listening & open ports with several netstat tests. One test crippled AD because I had disabled one too many services! (luckily it was a test server). Something like /etc/services for Windows would be grande ... :) Tag: AFDS, Domain trust or other? Tag: 127999
  - 2
    - homepage from gpo i have changed homepage of all users from gpo -> user conf -> administrative -> windows comp. ->internet explorer to specific web site which is located locally. some users have updated this new policy but some others polcies can not be changed. Only change is changing homepage is disabled. How can i force all domain users have affected this new policies? Thanks Tag: AFDS, Domain trust or other? Tag: 127997
  - 3
    - Problem deleting an unknown object in a group Hi, We have a problem with our A.D. We have 9 DC in 8 different sites. All DC are W2K3 Std R2 SP2 with all hotfixes. Domain functionnal level is Windows Server 2003. We have a GPO that use Restricted Groups to set members of the Built-In Administrators group. We have an event in Application Event Log on all DC. SceCLI event #1202 : "Security policies were propagated with warning. 0x4b8 : An extended error has occurred." I've enabled debug logging for the Security Configuration client-side extension and I have found this error in Winlogon.log : remove SID: S-1-5-21-1047738115-132384186-1539857752-500. Error 1377: The specified account name is not a member of the local group. error removing SID: S-1-5-21-1047738115-132384186-1539857752-500. This SID is an object from a trusted domain. The trust has been deleted and we forgot to remove it from the GPO before deleting the trust. When I go directly to the Administrators group and I try to delete the member manually, I receive this warning after clicking on Apply : The object is no longer a member of this group. It may still appear due to standard delays in replication between domain controllers. I've done this yesterday and I have this message again this morning, so I know it is not a replication delay. In the ForeignSecurityPrincipals container, I can see the object. Ca I delete the object directly in this place ? Will this result in removing the object from the Administrators group ? Can this cause other issue ? If yes, what should I do to remove the object from the Administrators group ? Thank you very much, Dominic Tag: AFDS, Domain trust or other? Tag: 127987
  - 4
    - Licensing Computer for each site? Hi all, I run a Win2K3 domain. I noticed that you can choose a Licensing Computer for each site. I have never configured one for any of my sites including the default one. What is it for? Do I need to set one up? We are using per-device licensing. But the only thing I have ever done is choose the per-device radio-button when installing a server and thats it. Any help is appreciated, thanks. Robert Tag: AFDS, Domain trust or other? Tag: 127982
  - 5
    - AD Sites And Services I have set up three sites for our three DCs. I have moved each of the DCs to the correct site, Default-First-Site-Name to Site A, Site B, Site C for DC A, DC B, and DC C. Now can I delete the Default-First-Site-Name without any issues? TIA John Tag: AFDS, Domain trust or other? Tag: 127975
  - 6
    - ADAM Space Usage I recently received a notification from our Server Administrators that the available space on an ADAM server is running low. I have been monitoring the server and noticed that the size of the .dit file has not changed for several days, eventhough we add hundreds of records a day. How is storage allocated to ADAM? Does ADAM allocate blocks of storage, uses it as it seams fit and grabs additional blocks when it determines it is running low? If so, how much does it allocate at a time, xx kb, yy%? Tag: AFDS, Domain trust or other? Tag: 127970
  - 7
    - Primary restore on differente hardware Recently I've attempted to perform a Windows Server 2003 DC Primary Restore, originally installed on an HP Proliant ML310 server - PIV 2,4 GHz - N.2 SCSI Disk - N. 2 Nic - 512 MB RAM, on a new HP Proliant ML110 G5 server - Pentium 1,8 GHz Dual Processor - N. 2 SATA Disk - N.2 NIC card - 512 MB RAM. But when the restore was completed (using NTBackup) and the new server was restarted was impossible to use mouse or keyboard that where completly inactive. Then I've restarted the server in safe mode but mouse and keyboard was inactive too. I've tried to use USB mouse and keyboard (not PS2) but the result was the same. At this point I've finded on microsoft KB that this is a problem related to different hardware on the two server and was suggested to perform an "upgrade on place" of the Operating System by the original CD. By this way it was possible to restore the server. But the question is: for the next years, having on my networks (I'm a Network consultant for many Companies and SMB) many servers 4-5 years old (as the Proliant ML310) when they well be too old or irremediably damaged well be possible to restore their system on new (very different) servers? Thanks in advance. Ing. Cosimo MERCURO Tag: AFDS, Domain trust or other? Tag: 127969
  - 8
    - Locate the computer by using login ID information Hi, I want to know how to search for the computer name in an AD when I have only user login ID information on hand. No WINS, only DHCP and DNS. Any idea? Thanks in advance. Pakeon Tag: AFDS, Domain trust or other? Tag: 127964
  - 9
    - Is there a restriction on number of characters for user name Can someone please confirm if there is restriction of number characters for user name. User has 23 characters in username (firstname.lastname) and can't login, however user is able to login with using first 20 characters. Many thanks Tag: AFDS, Domain trust or other? Tag: 127963
  - 10
    - windows 2000 mixed to windows 2000 native question I'm about to promote my domain to windows 2000 native and had a few questions. We have 6 domain controllers.. 4 windows 2000 SP4 and 2 windows 2003 (one is r2 sp2..) the other I believe is just win2k3 sp2. I just finished cleaning up the AD metadata with ntdsutil for all our old DC's that don't exist. We have no NT4 machines in our domain(all are 2000+).. I've read that I initiate the change from the DC that holds the FSMO and pdc emulator roles... so im clear on that.. what im not clear on is.. I read someplace that "all DC's need to be rebooted after they display "native mode" after the domain level is raised on the PDC emulator." I've been working on this sporadically... so it is entirely possible that I dreamt this one night during an AD nightmare... I just spent an hour trying to find this blurb on the net.. and I can't which is why I think I dreamt it.. any thoughts there would be appreciated.. When I raise the domain functional level to windows 2000 native.. will the forest functional level automatically be raised? or do I need to raise that separately? Will it really be as simple as raising the level on my one win2k3 DC(which is the fsmo/pdc emu dc..) and just watching replication occur? I think I'm over exciting myself for this and looking for crazy things to happen when it should be a non-event. Tag: AFDS, Domain trust or other? Tag: 127959
  - 11
    - Exchange Settings Folder (Sorry that I have to post here as I posted it to exchange admin already. I do not know how to link the post.) Hi all, Today, I open Active Directory Sites and Services and found Exchange Settings folder under the first windows2K DC of servers of sites. Exchange settings shows 0 objects. Is Exchange Settings folder supposed to be in the AD sites and settings? Can I delete it since it shows 0 objects? Just wonder: I switched all roles to Windows 2003 DCs and why it shows under the first windows 2000 DC? (windows 2003 and windows 2000 mixed DC envir.) Thank you. Tag: AFDS, Domain trust or other? Tag: 127947
  - 12
    - Users denied access to their folders I'm running Windows 2003 Server with Active directory and using folder redirection to a network share for their My Documents folders. The security is set to them having full access priveleges to their own folder. About 4 months ago, users have started to be denied access to their folders...this seems to be random. We have multiple users that use common computers. When I look at their home folders, the permissions that have disappeared vary. I've tried everything I can think of..even lag times but nothing seems to be working. Does anyone have any ideas? -- Leisha Tag: AFDS, Domain trust or other? Tag: 127946
  - 13
    - Migrate Active Directory from Win2k to Win2003 I have an older server (Win2k) that has all 5 FSMO roles at the moment. I would like to move these roles to a new Win2003 server that is already joined to the domain. I have already run the adprep / forestprep and adprep /domainprep on teh older server using the 2003 disk. I tried soon after to add the new server as a secondary DC but it still gives me an error. Did I just not wait long enough for the changes to populate? I did not receive any errors through either domainprep or forestprep. And to continue, if enough time passes and it allows me to add the Win2003 server as a secondary DC, I then just need to promote it once I verify all the AD data has moved properly? Tag: AFDS, Domain trust or other? Tag: 127943
  - 14
    - Scripting add users from file Hi, I want to put in place a facility where a member of staff can add users which are listed in a spreadsheet into AD into specific OUs and Groups. Some users will need to be mail enabled but not all. What process would be quickest and most efficient to learn so I can achieve this? Should I use PowerShell, or vbscript or is there something else I should be using, perhaps a combination of apps are required. Please only suggest free tools, and if possible an informatin resource for this task. I have limited programming experience, but also understand I am going to have to learn more about scripting to manage our AD infrastructure. Thanks in advance for your ideas. Pete. Tag: AFDS, Domain trust or other? Tag: 127938
  - 15
    - Time Server Question - Please Help Dear All, I have a Windows 2003 Native domain with three domain controllers. In this example I will simply refer to them as DC1, DC2 and DC3. DC1 was originally the PDC Emulator for the domain after some rejuggling of the FSMO roles the PDC Emulator role was transferred to DC2. After running a DCDIAG I noticed that DC1 was still the preferred time server. I have since changed time server related registry changes on DC2 to match DC1 and stopped and started the time service on DC2 to reflect the changes. I have since run w32tm on DC1 to change the configuration on this original PDC Emulator. Now when I run DCDIAG on any of the three DC's I find DC2 is the preferred Time Server which is what I required. My question is though DC1 and DC3 still advertise as Time Servers is this desirable??? They do list DC2 as the preferred Time Server but it would appear they advertise as Time Servers themselves still. Can this cause issues? Or is it beneficial? If it isn't desirable can you explain how I remove this feature from them so DC2 is the only Time Server. Regards, Darren Tag: AFDS, Domain trust or other? Tag: 127937
  - 16
    - Set Logon Server I have a 2003 domain with 2 DC's and they are both in the Default First Site. 1 in the main office holds all the roles and the other one is in a branch office is basically for logon purposes to cut WAN traffic. I did a SET command on a computer in the branch office and noticed that the logon server reported the one in the main office. I also have a remote office with 3 computers in it with no server and they come all the way back to the main server when they are closer to the branch office. IS there a group policy I can set to make them login to the closet server or do I have to create sites? If so - how do I get the remote office with 3 computers to log into the branch site? -- Thanks in Advance - Marcus Tag: AFDS, Domain trust or other? Tag: 127934
  - 17
    - Win 2008 RODC in Win 2003 Domain We have win 2003 domain. since we have branch offices, so we want to take benefit of win 2008 RODC feature. we want to install win 2008 RODC for our branch offices. The question is, for RODC, do we need to also have a writable win 2008 domain controller in our domain or win 2003 DC would work in such case ?????? Second question is, what all steps do we need to take for introducing win 2008 RODC in our win 2003 domain. For your info. our forest n domain functional level is "Win 2003" Looking forward to your support. Tag: AFDS, Domain trust or other? Tag: 127933
  - 18
    - Moving a certificate Authority Certificates are not my thing :-) I'm on a network that was a one DC forest a few years ago (Windows 2003 server, fully patched...). Certificate services were installed for internal use for EFS and then WSUS. NOw the network is expanded and there's a desire to use a VM DC and put certificate services on there instead. howver the standard migration process rquires the original server to be decommissioned or renamed. That cannot happen as it still host F&P and other stuff, that would a PITA to relocate now (and is not really needed!) So, I'm familiar with KB 298138 now, but this does not give me a "keep the old server". I guess it's impossible now, but just in case does anyone have knowledge out there that isn't on google or support? Thanks, Peter Tag: AFDS, Domain trust or other? Tag: 127932
  - 19
    - Mapped drives and DFS shares Hi, due to the limitation of mapped drives what else can I use to map drives for users, as we have over 2o drives mapped, overall? Tag: AFDS, Domain trust or other? Tag: 127928
  - 20
    - AD Sites and Services Design Question Hello, Here is my scnario. We have 2 Sever 2003 Native mode forests connected by a forest to forest trust. We'll call them USA and Asia. Users in Asia need to connect to resources in the USA forest. We have tested this and the Asia users are complaining of slow logons and authentication when they access the resources. To help alleviate this pain we have decided to put an Asia DC here in the USA. We already have the subnet that this domain controller will go in to defined here in the USA sites and services. Will it be a problem to define it again in the Asia Forest? My thoughts were no as this seems to be a per forest configuration and should not affect anything we already have configured. I just wanted to get some verifciation from some other professionals. Thanks in advance! Tag: AFDS, Domain trust or other? Tag: 127926
  - 21
    - Security groups and Folder permissions Hello all, I have to clean up a mess made by a former administrator. I have many security groups defined in AD that I have been asked to go through review/cleanup. I was wondering if there is a utility that I can run against security groups that will list which folders they are providing permissions to. The goal is to eliminate any duplication or unnecessary security groups. I would hate to think the only way to get the information is to look at Sharing & Security permissions of every folder. Thanks Tag: AFDS, Domain trust or other? Tag: 127925
  - 22
    - AD advanced search I am looking to get a list of all users that have a quote that is not the default store? Is there a way to search that in active directory or any free tools? Tag: AFDS, Domain trust or other? Tag: 127917
  - 23
    - replication issue - event id 1988 Hi - I have 2 Windows 2003 Servers Standard on SP2 together on a local network. They are both DCs. ACCPAC is the problem DC it appears. ACCPAC's Active directory is not updating with SHPMSSERVER. I'm past the 60 day Tombstone Limit so I edited the registry to Allow Replication With Divergent and Corrupt Partner on ACCPAC. Now I'm getting lingering object errors (event id 1988) So I ran this command: repadmin /removelingeringobjects accpac. stanleyhotel.com 4c83796c-4928-4340-b0cd-3a4c3570b765 DC=stanleyhotel,DC=com RemoveLingeringObjects sucessfull on accpac.stanleyhotel.com. It says its successful but keeps reporting the 1988 error a few minutes later. Can any one shed some light on this issue? Thanks in advance. Here is the repadmin/showrepl command. repadmin running command /showrepl against server localhost Default-First-Site-Name\ACCPAC DC Options: (none) Site Options: (none) DC object GUID: 7ed498a2-8bfe-4cee-8c73-a9abe0fbacbb DC invocationID: dfe0a089-0e53-440f-9035-270d0dde8ac6 ==== INBOUND NEIGHBORS ====================================== DC=stanleyhotel,DC=com Default-First-Site-Name\SHPMSSERVER via RPC DC object GUID: 4c83796c-4928-4340-b0cd-3a4c3570b765 Last attempt @ 2008-04-30 19:40:25 failed, result 8606 (0x219e): Insufficient attributes were given to create an object. This object may not exist because it may have been deleted and already garbage collected. 58606 consecutive failure(s). Last success @ 2008-02-04 14:32:51. CN=Configuration,DC=stanleyhotel,DC=com Default-First-Site-Name\SHPMSSERVER via RPC DC object GUID: 4c83796c-4928-4340-b0cd-3a4c3570b765 Last attempt @ 2008-04-30 18:59:13 was successful. CN=Schema,CN=Configuration,DC=stanleyhotel,DC=com Default-First-Site-Name\SHPMSSERVER via RPC DC object GUID: 4c83796c-4928-4340-b0cd-3a4c3570b765 Last attempt @ 2008-04-30 18:55:09 was successful. Source: Default-First-Site-Name\SHPMSSERVER ******* 58597 CONSECUTIVE FAILURES since 2008-02-04 14:32:51 Last error: 8606 (0x219e): Insufficient attributes were given to create an object. This object may not exist because it may have been deleted and already garbage collected. Tag: AFDS, Domain trust or other? Tag: 127914
  - 24
    - Group Policy and Office 2007 Are there any updates planned to be able to install Office 2007 with Group Policy? Tag: AFDS, Domain trust or other? Tag: 127909
  - 25
    - Computers not in Active Directory printing to Active Directory print Hello all, I am lost on this one. Is there a way to have non Active Directory machines (XP) print to printers through an Active Directory printer server? Sort of like the print services for nix that allow unix machines to print through Active Directory. Does the print services for nix basicly turn the print server into a cups server for unix clients? Is there a way to set up XP machines to print that way? Are there any security settings that block this and if so can they changed to allow it? I understand that it would not very wise to allow anybody to print through Active Directory. Thanks for your help Tag: AFDS, Domain trust or other? Tag: 127905
- Next
  - 1
    - Set MS Word Margins through GPO or otherwise Sorry if I posted this in the incorrect discussion group, couldn't find a good discussion group to post this question on. I have been asked if it's possible to create a GPO that sets the margins on MS Word 2003. I have installed the Word ADM on my Windows 2003 Server, but it doesn't look like its possible through the ADM. If anyone knows of a GPO on how to set the margins for MS Word, or someway of doing this please let me know. Thanks, Frank Tag: AFDS, Domain trust or other? Tag: 127903
  - 2
    - Bulova Marine Star Mens 100 Meter Stainless Steel Watch 96B28 - Bulova Marine Star Mens 100 Meter Stainless Steel Watch 96B28 - Cheapest Watch Bulova Marine Star Mens 100 Meter Stainless Steel Watch 96B28 Link : http://www.watchesprice.net/Bulova-Marine-Star-Mens-100-Meter-Stainless-Steel-Watch-96B28-1456.html Cheap Watches Home : http://www.watchesprice.net/ Lower Price Bulova Brands : http://www.watchesprice.net/Bulova-Watches.html Bulova Marine Star Mens 100 Meter Stainless Steel Watch 96B28 --- one of best selling watches, it is crafted in high quality Watches. Bulova Marine Star Mens 100 Meter Stainless Steel Watch 96B28 Description: Features: ~Stainless Steel Case and Bracelet ~White Dial ~Date Calendar ~Luminous Hands and Hour Markers ~Water Resistant to 100 Meters ~ ~Unidirectional Rotating Bezel ~Mineral Crystal ~Japan Quartz Movement ~Deployment Clasp Bulova Marine Star Mens 100 Meter Stainless Steel Watch 96B28 Details: Watches-Price Sales Rank: #63396 in Watches Brand: Bulova Band material: stainless-steel Bezel material: stainless-steel Case material: stainless-steel Clasp type: deployment-buckle Dial color: White Dial window material: mineral Movement type: quartz Water-resistant to 100 meters The Same Bulova Series : Bulova Marine Star Mens 100 Meter Stainless Steel Watch 96B58 : http://www.watchesprice.net/Bulova-Marine-Star-Mens-100-Meter-Stainless-Steel-Watch-96B58-1457.html Bulova Marine Star Mens 100 Meter Stainless Steel Watch 96B74 : http://www.watchesprice.net/Bulova-Marine-Star-Mens-100-Meter-Stainless-Steel-Watch-96B74-1458.html Bulova Marine Star Mens 100 Meter Two Tone Watch 98B57 : http://www.watchesprice.net/Bulova-Marine-Star-Mens-100-Meter-Two-Tone-Watch-98B57-1459.html Bulova Marine Star Mens 100 Meter Two Tone Watch 98B80 : http://www.watchesprice.net/Bulova-Marine-Star-Mens-100-Meter-Two-Tone-Watch-98B80-1460.html Bulova Marine Star Mens 100 Meter Two Tone Watch 98C55 : http://www.watchesprice.net/Bulova-Marine-Star-Mens-100-Meter-Two-Tone-Watch-98C55-1461.html Bulova Marine Star Mens 100 Meter Two Tone Watch 98H00 : http://www.watchesprice.net/Bulova-Marine-Star-Mens-100-Meter-Two-Tone-Watch-98H00-1462.html Bulova Marine Star Mens Stainless Steel 100 Meter Watch 96G02 : http://www.watchesprice.net/Bulova-Marine-Star-Mens-Stainless-Steel-100-Meter-Watch-96G02-1463.html Bulova Marine Star Mens Titanium 100 Meter Two Tone Watch 98G00 : http://www.watchesprice.net/Bulova-Marine-Star-Mens-Titanium-100-Meter-Two-Tone-Watch-98G00-1464.html Tag: AFDS, Domain trust or other? Tag: 127902
  - 3
    - Bulova Watches, Bulova Ladies' Sport Marine Star Chronograph Two Tone Bulova Watches, Bulova Ladies' Sport Marine Star Chronograph Two Tone Mother of Pearl Dial Women's Watch - Cheapest Watch Bulova Watches, Bulova Ladies' Sport Marine Star Chronograph Two Tone Mother of Pearl Dial Women's Watch Link : http://www.watchesprice.net/Bulova-Watches--Bulova-Ladies-Sport-Marine-Star-Chronograph-Two-Tone-Mother-of-Pearl-Dial-Womens-Wat-2207.html Cheap Watches Home : http://www.watchesprice.net/ Lower Price Bulova Brands : http://www.watchesprice.net/Bulova-Watches.html Bulova Watches, Bulova Ladies' Sport Marine Star Chronograph Two Tone Mother of Pearl Dial Women's Watch --- one of best selling watches, it is crafted in high quality Watches. Bulova Watches, Bulova Ladies' Sport Marine Star Chronograph Two Tone Mother of Pearl Dial Women's Watch Description: no Bulova Watches, Bulova Ladies' Sport Marine Star Chronograph Two Tone Mother of Pearl Dial Women's Watch Details: Brand: Bulova Band material: stainless-steel Bezel material: stainless-steel Case material: stainless-steel Clasp type: deployment-buckle Dial color: mother-of-pearl Dial window material: anti-reflective-sapphire Movement type: Quartz Water-resistant to 99 feet The Same Bulova Series : Bulova Watches, Bulova Ladies' Sport Marine Star Mother of Pearl Dial Diamond Bezel Women's Watch : http://www.watchesprice.net/Bulova-Watches--Bulova-Ladies-Sport-Marine-Star-Mother-of-Pearl-Dial-Diamond-Bezel-Womens-Watch-2208.html Bulova Watches, Bulova Ladies' Sport Marine Star Mother of Pearl Dial Diamond Bezel Women's Watch : http://www.watchesprice.net/Bulova-Watches--Bulova-Ladies-Sport-Marine-Star-Mother-of-Pearl-Dial-Diamond-Bezel-Womens-Watch-2209.html Bulova Watches, Bulova Ladies' Sport Marine Star Mother of Pearl Dial Diamond Bezel Women's Watch : http://www.watchesprice.net/Bulova-Watches--Bulova-Ladies-Sport-Marine-Star-Mother-of-Pearl-Dial-Diamond-Bezel-Womens-Watch-2210.html Bulova Watches, Bulova Ladies' Sport Marine Star Mother of Pearl Dial Diamond Markers Diamond Bezel Women's Watch : http://www.watchesprice.net/Bulova-Watches--Bulova-Ladies-Sport-Marine-Star-Mother-of-Pearl-Dial-Diamond-Markers-Diamond-Bezel-W-2211.html Bulova Watches, Bulova Ladies' Sport Marine Star Mother of Pearl Dial Diamond Markers Diamond Bezel Women's Watch : http://www.watchesprice.net/Bulova-Watches--Bulova-Ladies-Sport-Marine-Star-Mother-of-Pearl-Dial-Diamond-Markers-Diamond-Bezel-W-2212.html Bulova Watches, Bulova Ladies' Sport Marine Star Mother of Pearl Dial Diamond Markers Diamond Bezel Women's Watch : http://www.watchesprice.net/Bulova-Watches--Bulova-Ladies-Sport-Marine-Star-Mother-of-Pearl-Dial-Diamond-Markers-Diamond-Bezel-W-2213.html Bulova Watches, Bulova Ladies' Sport Marine Star Mother of Pearl Dial Diamond Markers Rotating Bezel Women's Watch : http://www.watchesprice.net/Bulova-Watches--Bulova-Ladies-Sport-Marine-Star-Mother-of-Pearl-Dial-Diamond-Markers-Rotating-Bezel--2214.html Bulova Watches, Bulova Ladies' Sport Marine Star Mother of Pearl Dial Diamond Markers Women's Watch : http://www.watchesprice.net/Bulova-Watches--Bulova-Ladies-Sport-Marine-Star-Mother-of-Pearl-Dial-Diamond-Markers-Womens-Watch-2215.html Tag: AFDS, Domain trust or other? Tag: 127901
  - 4
    - UNC Problem Hi, I have an environment with one DC and 2 DC Replica under x.local namespace, for example. I can access DC 1 to DC2 and vice-versa by \\dc1 or \\dc2 but I cannot access DC2 to DC3 from \\dc2 or \\dc3 sharing. I can access DC1 to DC3 by \\dc1 or \\dc3 sharing. I can ping and solve the name from IP to any DCÂ´s. DC1 is W2K (PDC, RID, PID, Infrastructure), DC2 is W2K3 x64 (Schema Master) and DC3 is W2K3 R2. In Netdiag show me the LDAP problem with DC2 and DC3 and in DC2 there is KDC event error. Anyone can help me? Luiz Tag: AFDS, Domain trust or other? Tag: 127899
  - 5
    - Problem In IP Consider that : there are 11 lan as follow: Lan A Server A: 192.168.0.1 /24 Clients In Lan A 192.168.0.0/24 Lan B Server B: 192.168.1.1 /24 Clients In Lan B 192.168.1.0/24 ..... Lan K: Server K:192.168.10.1/24 Clients In Lan K 192.168.10.0/24 There Are Point To Multi Point Connection From Lan A To Other Lans: B,C,D,K (ADSL Connection) How Can My Clients In Lan B See Server A But Clients In Lan B And Lan A Can't See Each other. There is the same question for lan C with Lan A.: Clients In Lan C See Server A But Clients In Lan C And Lan A Can't See Each other. And Lan D With Lan A And ... Tag: AFDS, Domain trust or other? Tag: 127895
  - 6
    - Account properties question... Hi all; Please consider the following scenario: I have several users that I want to change the properties of them at once. So, I select them in the Active Directory Users and Computers console and then right-click on them and select properties. Right? Now I navigate to the Account tab. I want to enable the "Password Never Expires" option. But interestingly I see two check boxes which one of them is dimmed. Why there are two check boxes instead of one? http://img.villagephotos.com/p/2007-10/1282638/AccountOptions.JPG Thanks Reza Tag: AFDS, Domain trust or other? Tag: 127890
  - 7
    - How find user "user1" in multi domain environ through programming I have check vbscript. But confuse how to set the parameters. What naming context should I use. Here is some code: Set objRootDSE = GetObject("LDAP://RootDSE") strConfigurationNC = objRootDSE.Get("configurationNamingContext") strFilter = "(&(objectclass=user)(objectcategory=person)(CN=user1));" or strFilter ="(objectcategory=ForeighSecurityPrinciPal)(CN=user1));" strBase = "CN=Wellknown Security Principals" & strConfigurationNC strScope = "subtree" Thx Tag: AFDS, Domain trust or other? Tag: 127887
  - 8
    - Userenv on new DC's Whenever we bring up a new domain controller in our 2003 env. the DC logs the following error Source: Userenv Event ID: 1054 Windows cannot obtain the domain controller name for your computer network. (An unexpected network error occurred. ). Group Policy processing aborted. DCDIAG, NETDIAG, NLTEST, etc all come back 100% with no errors. I enabled verbose logging on one of the DC's and I get the following: USERENV(174.1198) 10:34:42:963 ProcessGPOs: USERENV(174.1198) 10:34:42:963 ProcessGPOs: USERENV(174.1198) 10:34:42:963 ProcessGPOs: Starting computer Group Policy (Background) processing... USERENV(174.1198) 10:34:42:963 ProcessGPOs: USERENV(174.1198) 10:34:42:963 ProcessGPOs: USERENV(174.1198) 10:34:42:963 EnterCriticalPolicySectionEx: Entering with timeout 600000 and flags 0x0 USERENV(174.1198) 10:34:42:963 EnterCriticalPolicySectionEx: Machine critical section has been claimed. Handle = 0xa98 USERENV(174.1198) 10:34:42:963 EnterCriticalPolicySectionEx: Leaving successfully. USERENV(174.1198) 10:34:42:963 ProcessGPOs: Machine role is 3. USERENV(174.1198) 10:34:42:963 PingComputer: PingBufferSize set as 2048 USERENV(174.1198) 10:34:42:963 PingComputer: Adapter speed 10000000 bps USERENV(174.1198) 10:34:42:963 PingComputer: First time: -3 USERENV(174.1198) 10:34:42:963 PingComputer: Second time: -3 USERENV(174.1198) 10:34:42:963 PingComputer: First and second times match. USERENV(174.1198) 10:34:42:963 PingComputer: First time: -3 USERENV(174.1198) 10:34:42:963 PingComputer: Second time: -3 USERENV(174.1198) 10:34:42:963 PingComputer: First and second times match. USERENV(174.1198) 10:34:42:963 PingComputer: First time: -3 USERENV(174.1198) 10:34:42:963 PingComputer: Second time: -3 USERENV(174.1198) 10:34:42:963 PingComputer: First and second times match. USERENV(174.1198) 10:34:42:963 PingComputer: No data available USERENV(174.1198) 10:34:42:963 PingComputer: PingBufferSize set as 2048 USERENV(174.1198) 10:34:42:963 PingComputer: Adapter speed 10000000 bps USERENV(174.1198) 10:34:42:963 PingComputer: First time: -3 USERENV(174.1198) 10:34:42:963 PingComputer: Second time: -3 USERENV(174.1198) 10:34:42:963 PingComputer: First and second times match. USERENV(174.1198) 10:34:42:963 PingComputer: First time: -3 USERENV(174.1198) 10:34:42:963 PingComputer: Second time: -3 USERENV(174.1198) 10:34:42:963 PingComputer: First and second times match. USERENV(174.1198) 10:34:42:963 PingComputer: First time: -3 USERENV(174.1198) 10:34:42:963 PingComputer: Second time: -3 USERENV(174.1198) 10:34:42:963 PingComputer: First and second times match. USERENV(174.1198) 10:34:42:963 PingComputer: No data available USERENV(174.1198) 10:34:42:963 ProcessGPOs: DSGetDCName failed with 59. USERENV(174.1198) 10:34:42:963 ProcessGPOs: No WMI logging done in this policy cycle. USERENV(174.1198) 10:34:42:963 ProcessGPOs: Processing failed with error 59. USERENV(174.1198) 10:34:42:963 LeaveCriticalPolicySection: Critical section 0xa98 has been released. USERENV(174.1198) 10:34:42:963 ProcessGPOs: Computer Group Policy has been applied. USERENV(174.1198) 10:34:42:963 ProcessGPOs: Leaving with 0. USERENV(174.1198) 10:34:42:963 EnterCriticalPolicySectionEx: Entering with timeout 600000 and flags 0x0 USERENV(174.1198) 10:34:42:963 EnterCriticalPolicySectionEx: Machine critical section has been claimed. Handle = 0xa98 USERENV(174.1198) 10:34:42:963 EnterCriticalPolicySectionEx: Leaving successfully. USERENV(174.1198) 10:34:42:979 LeaveCriticalPolicySection: Critical section 0xa98 has been released. USERENV(174.1198) 10:34:42:979 GPOThread: Next refresh will happen in 5 minutes The one thing that stands out to me is the pingbuffer size looks like it is failing and GSGetDCName failed with 59. At first it sounded like a dns issue but when i run nltest /dsgetdc:domain.com i get the correct results. I can ping and browse by name and i can browse to the sysvol share without any problems. Does anyone see anything I may be missing? Thanks in advance Tag: AFDS, Domain trust or other? Tag: 127882
  - 9
    - An odd issue with finding users in AD This was discovered by trying to add a user from our AD to the local Administrators group on a member server. When the admin went to search for the user, John Doe (login: johndoe), the user could not be found. If he just typed in John for the search, all of the other Johns in the company would display as a selectable choice, but not John Doe. However, if the scope was changed from the AD domain to "Entire Directory", John Doe would show up and be selectable. In searching the OU that John Doe's account was a member of, we found this issue to be the same with 4 more users out of about 50 or so. I randomly selected another OU and found this problem with 4 users out of the first 20 in the list! We have about 1500 user accounts or so, and I would have to guess at this point that at least 100 users would be affected by this. The really strange thing is that if I go onto a DC and do a search in the domain, I find the users just fine in any kind of search. So it seems like it is only from the member servers and workstations that this is an issue. Any suggestions or ideas of what this could be from anyone? Tag: AFDS, Domain trust or other? Tag: 127880
  - 10
    - change default search engine We use Internet Explorer 7 and Live Search is the default search engine (apears on the upper right corner of Internet Explorer). Our users can not change this default value. ie. they can add any search engine they like, (google, yahoo etc.) but they can not say that they want say google as the default search engine. They get this error message: This operation has been cancelled due to restrictions in effect on this compter. Please contact your system administrator. My question is: 1) How can I let each user choose his own search engine 2) if this is not possible, how can I as a system administrator change the default search engine from Live Search to say Google? Tag: AFDS, Domain trust or other? Tag: 127876
  - 11
    - Login Script and Mapping Drives I am seeing a problem and I don't know exactly how to fix it... I have a .vbs script to map network drives based on group membership that is run when a person log in to their workstation via GPO. I also have their P drive mapped via ADUC with the profile tab for their home folder \\files\users$\jdoe. The problem I am seeing does not happen all the time, in fact it only happens every once and awhile and it does not happen to the same user. When the user log in the script to map the drives does not seem to run. Also, the P drive should show up as jdoe on 'files\users$" (P:) but is will sometimes show up at users on 'files\users$' (P:) Any thoughts? TIA John Tag: AFDS, Domain trust or other? Tag: 127874
  - 12
    - Timex T5E161 Ladies Ironman 30-Lap Sport Watch T5E161 - Cheapest Timex T5E161 Ladies Ironman 30-Lap Sport Watch T5E161 - Cheapest Watch Timex T5E161 Ladies Ironman 30-Lap Sport Watch T5E161 Link : http://www.watchesprice.net/Timex-T5E161-Ladies-Ironman-30-Lap-Sport-Watch-T5E161-15824.html Cheap Watches Home : http://www.watchesprice.net/ Lower Price Timex Brands : http://www.watchesprice.net/Timex-Watches.html Timex T5E161 Ladies Ironman 30-Lap Sport Watch T5E161 --- one of best selling watches, it is crafted in high quality Watches. Timex T5E161 Ladies Ironman 30-Lap Sport Watch T5E161 Description: Digital quartz movement, black resin strap, blue bezel, Indiglo? night- light, All-day Indiglo? feature, Night-Mode? feature, 100-hour chronograph, 99-lap counter, 2 time zones, built-in setting reminders, forward/backward setting, 24-hour countdown timer, 30-lap memory recall, daily/weekday/weekend alarm, weekly alarm with 5-minute back up, water resistant Timex T5E161 Ladies Ironman 30-Lap Sport Watch T5E161 Details: Watches-Price Sales Rank: #37292 in Watches Brand: Timex Band material: Strap Case material: stainless-steel Clasp type: Buckle Dial color: Blue acrylic case, Digital dial Dial window material: Mineral Movement type: Quartz Water-resistant to 100 meters Features Case Diameter - 30 MM The Same Timex Series : Timex Women's Ironman Marathon Watch #T5G191 : http://www.watchesprice.net/Timex-Womens-Ironman-Marathon-Watch-T5G191-15825.html Timex Women's Ironman Rush Watch #T44331 : http://www.watchesprice.net/Timex-Womens-Ironman-Rush-Watch-T44331-15826.html Timex Women's Ironman Triathlon 100-Lap with Watch #T5C041 : http://www.watchesprice.net/Timex-Womens-Ironman-Triathlon-100-Lap-with-Watch-T5C041-15827.html Timex Women's Ironman Triathlon Watch #T5G261 : http://www.watchesprice.net/Timex-Womens-Ironman-Triathlon-Watch-T5G261-15828.html Timex Women's Ironman watch #T5K0169J : http://www.watchesprice.net/Timex-Womens-Ironman-watch-T5K0169J-15829.html Timex Women's Ironman watch #T5K0189J : http://www.watchesprice.net/Timex-Womens-Ironman-watch-T5K0189J-15830.html Tag: AFDS, Domain trust or other? Tag: 127872
  - 13
    - Marc Ecko Men's Interchangeable Round Watch #E20000G1 - Cheapest Marc Ecko Men's Interchangeable Round Watch #E20000G1 - Cheapest Watch Marc Ecko Men's Interchangeable Round Watch #E20000G1 Link : http://www.watchesprice.net/Marc-Ecko-Mens-Interchangeable-Round-Watch-E20000G1-10104.html Cheap Watches Home : http://www.watchesprice.net/ Lower Price Marc Ecko Brands : http://www.watchesprice.net/Marc-Ecko-Watches.html Marc Ecko Men's Interchangeable Round Watch #E20000G1 --- one of best selling watches, it is crafted in high quality Watches. Marc Ecko Men's Interchangeable Round Watch E20000G1 Description: Brand Name: Marc Ecko Model number: E20000G1 Gender: Gents Crystal: Mineral Clasp: push-button-butterfly-clasp Case material: stainless- steel Band material: stainless-steel Band length: mens-standard Dial color: Blue-Gold Bezel material: stainless-steel Bezel Function: Stationary Calendar: Date Movement: Quartz Chronograph Marc Ecko Men's Interchangeable Round Watch E20000G1 Details: Watches-Price Sales Rank: #11749 in Watches Brand: Marc Ecko Model: E20000G1 Band material: stainless-steel Bezel material: stainless-steel Case material: stainless-steel Clasp type: push-button-butterfly-clasp Dial color: Blue-Gold Dial window material: Mineral Movement type: Quartz Chronograph Features Case width: 44mm / Band width: 22mm 3 Hand / Japan Movement Chronograph / Date 2 tone color: yellow gold and polished stainless steel. 2 interchangeable bezels included. 1 iced, 1 angle cut The Same Marc Ecko Series : MARC ECKO SIMULATED DIAMOND ROSE TONE MENS WATCH : http://www.watchesprice.net/MARC-ECKO-SIMULATED-DIAMOND-ROSE-TONE-MENS-WATCH-10105.html Marc Ecko The General Men White Dial Two Tone Bracelet & Case E16000G3 : http://www.watchesprice.net/Marc-Ecko-The-General-Men-White-Dial-Two-Tone-Bracelet-Case-E16000G3-10106.html Marc Ecko Midsize Rhino Logo Round Watch #E85042G1 : http://www.watchesprice.net/Marc-Ecko-Midsize-Rhino-Logo-Round-Watch-E85042G1-10107.html Marc Ecko Midsize Rhino Logo Round Watch #E85042G2 : http://www.watchesprice.net/Marc-Ecko-Midsize-Rhino-Logo-Round-Watch-E85042G2-10108.html Marc Ecko Men's Supreme Watch : http://www.watchesprice.net/Marc-Ecko-Mens-Supreme-Watch-10109.html Marc Ecko Midsize Rectangle Sunray Black Watch #E95001G1 : http://www.watchesprice.net/Marc-Ecko-Midsize-Rectangle-Sunray-Black-Watch-E95001G1-10110.html Marc Ecko - E75015G1 (Size: unisex-adult) : http://www.watchesprice.net/Marc-Ecko-E75015G1-Size--unisex-adult-10111.html Marc Ecko Bricktop Men Black Dial Stainless Steel Bracelet E15000G1 : http://www.watchesprice.net/Marc-Ecko-Bricktop-Men-Black-Dial-Stainless-Steel-Bracelet-E15000G1-10112.html Tag: AFDS, Domain trust or other? Tag: 127871
  - 14
    - Domains Problem Hi, I have 2 domains. One of them can be called disaster because: - Windows 2000 domain - Somehow do not have DNS installed (Dont know how ad works) - Has shares everywhere - Has users logging in as admins etc. - Has client computers (about 18) that are in the domain. The other domain I have is the new one that we planned and implemented everything is as it is supposed to be. Now my question is: I would like to migrate all the users and all the shares to the new domain. But what I cannot do is go to the computers that are in the old domain and add them to the new domain (I know I better but administration do not want me to.. And do not ask me why. I dont even know) Is there any way to solve this problem ? Please share your thoughts. Thanks! Tag: AFDS, Domain trust or other? Tag: 127852
  - 15
    - Passwords Not sure if this is the right place to ask this. I have two domains (not trusted) and and one Exchange Server 2003 that deals with all email. Due to the password policy that is in place when a user changes their password in domain1 i need to physically change their password on domain2 to reflect the change otherwise they cannot receive email. is there anyway that the change can be replicated across the domains? Servers are 2003 standard edition -- Thanks and regards Tony Tag: AFDS, Domain trust or other? Tag: 127848
  - 16
    - Sysvol not replicating hi, I have promoted a DC and the sysvol got shared after the promotion. However when I create a new file in the sysvol it does not get replicated to other domain controllers. It does not even give any error or warning in the eventvwr. I ran dcdiag and netdiag on the affected DC but there were no errors. I only got the below warnings: The DNS entries for this DC cannot be verified right now on DNS server x.x.x.x, ERROR_TIMEOUT. Failed to query SPN registration on DC 'abc.xyz.com'. Failed to enumerate DCs by using the browser. [ERROR_NO_BROWSER_SERVERS_FOUND] Can somebody tell me the reason for this? Tag: AFDS, Domain trust or other? Tag: 127847
  - 17
    - Timex T2H311 Men's Easy Reader Watch - Cheapest Watch Timex T2H311 Men's Easy Reader Watch - Cheapest Watch Timex T2H311 Men's Easy Reader Watch Link : http://www.watchesprice.net/Timex-T2H311-Mens-Easy-Reader-Watch-15553.html Cheap Watches Home : http://www.watchesprice.net/ Lower Price Timex Brands : http://www.watchesprice.net/Timex-Watches.html Timex T2H311 Men's Easy Reader Watch --- one of best selling watches, it is crafted in high quality Watches. Timex T2H311 Men's Easy Reader Watch Description: Features Wristwatch Metal Band ; Buckle Closure Arabic Numerals, Indiglo Night-Light Features Analog Movement Water-Resistant Metal Case Timex T2H311 Men's Easy Reader Watch Details: Watches-Price Sales Rank: #55885 in Watches Brand: Timex Band material: steel-two-tone Case material: stainless-steel Clasp type: expansion Dial color: Polished gold-tone stainless steel case, White In Dial window material: Mineral Movement type: Quartz Water-resistant to 30 meters Features Case Diameter - 37 MM The Same Timex Series : Timex Timex T2H301 Mens Easy Reader Watch T2H301 : http://www.watchesprice.net/Timex-Timex-T2H301-Mens-Easy-Reader-Watch-T2H301-15554.html Timex Ironman Triathlon Sleek 50/100 Watch #T54281 : http://www.watchesprice.net/Timex-Ironman-Triathlon-Sleek-50-100-Watch-T54281-15555.html Timex Men's Ironman Triathlon 100-Lap FLIX System Watch # T5E231 : http://www.watchesprice.net/Timex-Mens-Ironman-Triathlon-100-Lap-FLIX-System-Watch-T5E231-15556.html Timex Men's Ironman Triathlon 42 Lap Combo Dual Tech Watch #T56371 : http://www.watchesprice.net/Timex-Mens-Ironman-Triathlon-42-Lap-Combo-Dual-Tech-Watch-T56371-15557.html Timex Ironman T59761 Midsize 30-Lap Digital Fitness Heart Rate Monitor Watch : http://www.watchesprice.net/Timex-Ironman-T59761-Midsize-30-Lap-Digital-Fitness-Heart-Rate-Monitor-Watch-15558.html Timex Ironman T59751 Midsize 30-Lap Digital Fitness Heart Rate Monitor Watch : http://www.watchesprice.net/Timex-Ironman-T59751-Midsize-30-Lap-Digital-Fitness-Heart-Rate-Monitor-Watch-15559.html Timex Men's Ironman Triathlon 30-Lap Shock Resistant Watch #T53771 : http://www.watchesprice.net/Timex-Mens-Ironman-Triathlon-30-Lap-Shock-Resistant-Watch-T53771-15560.html Timex Men's Ironman Triathlon 42 Lap Combo Dual Tech Watch #T56381 : http://www.watchesprice.net/Timex-Mens-Ironman-Triathlon-42-Lap-Combo-Dual-Tech-Watch-T56381-15561.html Tag: AFDS, Domain trust or other? Tag: 127845
  - 18
    - Luminox Navy Seal Dive Mens Date Quartz SS #3104 - Cheapest Watch Luminox Navy Seal Dive Mens Date Quartz SS #3104 - Cheapest Watch Luminox Navy Seal Dive Mens Date Quartz SS #3104 Link : http://www.watchesprice.net/Luminox-Navy-Seal-Dive-Mens-Date-Quartz-SS-3104-9971.html Cheap Watches Home : http://www.watchesprice.net/ Lower Price Luminox Brands : http://www.watchesprice.net/Luminox-Watches.html Luminox Navy Seal Dive Mens Date Quartz SS #3104 --- one of best selling watches, it is crafted in high quality Watches. Luminox Navy Seal Dive Mens Date Quartz SS 3104 Description: Luminox Navy Seal Dive Series Mens Date Quartz Stainless Steel 3104 Luminox Navy Seal Dive Mens Date Quartz SS 3104 Details: Watches-Price Sales Rank: #64209 in Watches Brand: Luminox Band material: Stainless Steel Case material: Stainless Steel Dial color: Blue Movement type: Quartz The Same Luminox Series : Luminox - 3202 (Size: men) : http://www.watchesprice.net/Luminox-3202-Size--men-9972.html Luminox - 3201 (Size: men) : http://www.watchesprice.net/Luminox-3201-Size--men-9973.html New Luminox Navy Seal Dive Mens Date Quartz Steel 3203 : http://www.watchesprice.net/New-Luminox-Navy-Seal-Dive-Mens-Date-Quartz-Steel-3203-9974.html Luminox Men's Navy SEAL Steel Dive Watch #3210 : http://www.watchesprice.net/Luminox-Mens-Navy-SEAL-Steel-Dive-Watch-3210-9975.html Luminox Navy Seal Diver Mens Watch 3211 : http://www.watchesprice.net/Luminox-Navy-Seal-Diver-Mens-Watch-3211-9976.html Luminox Men's F-117 Nighthawk Watch #3401 : http://www.watchesprice.net/Luminox-Mens-F-117-Nighthawk-Watch-3401-9977.html Luminox - 3408 (Size: men) : http://www.watchesprice.net/Luminox-3408-Size--men-9978.html Luminox - 3402 (Size: men) : http://www.watchesprice.net/Luminox-3402-Size--men-9979.html Tag: AFDS, Domain trust or other? Tag: 127844
  - 19
    - Timex T20011 Men's Indiglo Watch Brown Leather Strap White Dial Day Timex T20011 Men's Indiglo Watch Brown Leather Strap White Dial Day Date Watch - Cheapest Watch Timex T20011 Men's Indiglo Watch Brown Leather Strap White Dial Day Date Watch Link : http://www.watchesprice.net/Timex-T20011-Mens-Indiglo-Watch-Brown-Leather-Strap-White-Dial-Day-Date-Watch-15527.html Cheap Watches Home : http://www.watchesprice.net/ Lower Price Timex Brands : http://www.watchesprice.net/Timex-Watches.html Timex T20011 Men's Indiglo Watch Brown Leather Strap White Dial Day Date Watch --- one of best selling watches, it is crafted in high quality Watches. Timex T20011 Men's Indiglo Watch Brown Leather Strap White Dial Day Date Watch Description: Two Tone bezel, round white dial, day/date at 3 O\'clock, Arabic numerals at each hour, black hour and minute hand, second hand, geninue brown leather strap, Indiglo? night-light, water resistant, analog quartz movement Timex T20011 Men's Indiglo Watch Brown Leather Strap White Dial Day Date Watch Details: Watches-Price Sales Rank: #10758 in Watches Brand: Timex Model: T2M509AU Band material: Leather Case material: stainless-steel Clasp type: Buckle Dial color: White Dial window material: Mineral Movement type: Quartz Water-resistant to 30 meters Features Water Resistant - 30Meters Case Diameter - 38 MM The Same Timex Series : Timex Men's Quartz Easy Reader Watch #20051 : http://www.watchesprice.net/Timex-Mens-Quartz-Easy-Reader-Watch-20051-15528.html Timex Men's Easy Reader Watch T20031 : http://www.watchesprice.net/Timex-Mens-Easy-Reader-Watch-T20031-15529.html Timex Men's Easy Reader Watch 28061 : http://www.watchesprice.net/Timex-Mens-Easy-Reader-Watch-28061-15530.html TIMEX MENS EASY READER -CASUAL : http://www.watchesprice.net/TIMEX-MENS-EASY-READER--CASUAL-15531.html Timex Easy-Reader 2-Tone Expandable Watch : http://www.watchesprice.net/Timex-Easy-Reader-2-Tone-Expandable-Watch-15532.html Timex T20451 Classic Easy Reader Indiglo Two Tone Analog Watch : http://www.watchesprice.net/Timex-T20451-Classic-Easy-Reader-Indiglo-Two-Tone-Analog-Watch-15533.html Timex Men's Easy Reader Leather Strap Watch, 20051, Indiglo, Date : http://www.watchesprice.net/Timex-Mens-Easy-Reader-Leather-Strap-Watch--20051--Indiglo--Date-15534.html Timex Easy Reader 20501 : http://www.watchesprice.net/Timex-Easy-Reader-20501-15535.html Tag: AFDS, Domain trust or other? Tag: 127840
  - 20
    - Part of VPN users fail to log in Hi, My IAS is running on Windows 2003 DC. VPN server uses Radius to connect to IAS server. Windows group VPN has access VPN server. But part of the users in this group can get access, the others can't log in. The event ID 2 of IAS warning has been logged in the event viewer. Something like below: User (user name) was denied access. Policy-Name = WIRELESS ACCESS Reason = The user attempted to use an authentication method that is not enabled on the matching remote access policy. The policy name should be VPN Access. Don't know why it picks other remote policy. Where should I check? Please help. Your help will be appreciated! Thanks in advance! Lisa Tag: AFDS, Domain trust or other? Tag: 127839
  - 21
    - Bulova Caravelle Watch - Caravelle Basic - Men's Watches 43A06 - Bulova Caravelle Watch - Caravelle Basic - Men's Watches 43A06 - Cheapest Watch Bulova Caravelle Watch - Caravelle Basic - Men's Watches 43A06 Link : http://www.watchesprice.net/Bulova-Caravelle-Watch-Caravelle-Basic-Mens-Watches-43A06-1645.html Cheap Watches Home : http://www.watchesprice.net/ Lower Price Bulova Brands : http://www.watchesprice.net/Bulova-Watches.html Bulova Caravelle Watch - Caravelle Basic - Men's Watches 43A06 --- one of best selling watches, it is crafted in high quality Watches. Bulova Caravelle Watch - Caravelle Basic - Men's Watches 43A06 Description: From the Bulova Caravelle Watch, Caravelle Basic Collection. Blue patterned dial. Stainless steel case and bracelet. Water resistant to 30 meters/100 feet. Approximate case diameter/width 40mm. Bulova Caravelle Watch - Caravelle Basic - Men's Watches 43A06 Details: Watches-Price Sales Rank: #40034 in Watches Brand: Caravelle Band material: stainless-steel Dial window material: Glass Movement type: Quartz Water-resistant to 30 meters The Same Bulova Series : Bulova Caravelle Watch - Caravelle Expansion - Men's Watches 43A05 : http://www.watchesprice.net/Bulova-Caravelle-Watch-Caravelle-Expansion-Mens-Watches-43A05-1646.html Bulova Caravelle Watch - Caravelle Sport - Men's Watches 43B17 : http://www.watchesprice.net/Bulova-Caravelle-Watch-Caravelle-Sport-Mens-Watches-43B17-1647.html Bulova Caravelle Watch - Caravelle Sport - Men's Watches 43B25 : http://www.watchesprice.net/Bulova-Caravelle-Watch-Caravelle-Sport-Mens-Watches-43B25-1648.html Bulova Caravelle Watch - Caravelle Sport - Men's Watches : http://www.watchesprice.net/Bulova-Caravelle-Watch-Caravelle-Sport-Mens-Watches-1649.html Bulova Caravelle Watch - Caravelle Sport - Men's Watches : http://www.watchesprice.net/Bulova-Caravelle-Watch-Caravelle-Sport-Mens-Watches-1650.html Bulova Caravelle Watch - Caravelle Sport - Men's Watches : http://www.watchesprice.net/Bulova-Caravelle-Watch-Caravelle-Sport-Mens-Watches-1651.html Bulova Caravelle Watch - Caravelle Sport - Men's Watches : http://www.watchesprice.net/Bulova-Caravelle-Watch-Caravelle-Sport-Mens-Watches-1652.html Bulova Caravelle Watch - Caravelle Sport - Men's Watches : http://www.watchesprice.net/Bulova-Caravelle-Watch-Caravelle-Sport-Mens-Watches-1653.html Tag: AFDS, Domain trust or other? Tag: 127838
  - 22
    - Bulova Watches, Bulova Ladies' Crystals available in Stainless Steel Bulova Watches, Bulova Ladies' Crystals available in Stainless Steel or Gold Tone , White Black or Mother of Pearl Dial Swarovski Crystal Markers or and Bezels Women's Watch - Cheapest Watch Bulova Watches, Bulova Ladies' Crystals available in Stainless Steel or Gold Tone , White Black or Mother of Pearl Dial Swarovski Crystal Markers or and Bezels Women's Watch Link : http://www.watchesprice.net/Bulova-Watches--Bulova-Ladies-Crystals-available-in-Stainless-Steel-or-Gold-Tone-White-Black-or-Moth-1755.html Cheap Watches Home : http://www.watchesprice.net/ Lower Price Bulova Brands : http://www.watchesprice.net/Bulova-Watches.html Bulova Watches, Bulova Ladies' Crystals available in Stainless Steel or Gold Tone , White Black or Mother of Pearl Dial Swarovski Crystal Markers or and Bezels Women's Watch --- one of best selling watches, it is crafted in high quality Watches. Bulova Watches, Bulova Ladies' Crystals available in Stainless Steel or Gold Tone , White Black or Mother of Pearl Dial Swarovski Crystal Markers or and Bezels Women's Watch Description: no Bulova Watches, Bulova Ladies' Crystals available in Stainless Steel or Gold Tone , White Black or Mother of Pearl Dial Swarovski Crystal Markers or and Bezels Women's Watch Details: Watches-Price Sales Rank: #33074 in Watches Brand: Bulova Band material: gold-tone Bezel material: gold-tone Case material: gold-tone Clasp type: Buckle Dial color: mother-of-pearl Dial window material: anti-reflective-sapphire Movement type: Quartz Water-resistant to 99 feet The Same Bulova Series : Bulova Women's Swarovski Crystal Watch #96L22 : http://www.watchesprice.net/Bulova-Womens-Swarovski-Crystal-Watch-96L22-1756.html Bulova Women's Bracelet Watch #96L69 : http://www.watchesprice.net/Bulova-Womens-Bracelet-Watch-96L69-1757.html Bulova Women's Crystal Bracelet Watch #96T26 : http://www.watchesprice.net/Bulova-Womens-Crystal-Bracelet-Watch-96T26-1758.html Bulova Women's Crystal Watch #96M45 : http://www.watchesprice.net/Bulova-Womens-Crystal-Watch-96M45-1759.html Bulova Women's Crystal Watch, Model - 96T48 : http://www.watchesprice.net/Bulova-Womens-Crystal-Watch--Model-96T48-1760.html Bulova Women's Crystal Watch, Model - 98L004 : http://www.watchesprice.net/Bulova-Womens-Crystal-Watch--Model-98L004-1761.html Bulova Women's Mother of Pearl Bracelet Watch #98T43 : http://www.watchesprice.net/Bulova-Womens-Mother-of-Pearl-Bracelet-Watch-98T43-1762.html Bulova Watches 43L004 Caravelle Crystal - Ladies Watch : http://www.watchesprice.net/Bulova-Watches-43L004-Caravelle-Crystal-Ladies-Watch-1763.html Tag: AFDS, Domain trust or other? Tag: 127837
  - 23
    - Timex SL Series Perpetual Calendar Mens Watch T2M505 - Cheapest Watch Timex SL Series Perpetual Calendar Mens Watch T2M505 - Cheapest Watch Timex SL Series Perpetual Calendar Mens Watch T2M505 Link : http://www.watchesprice.net/Timex-SL-Series-Perpetual-Calendar-Mens-Watch-T2M505-15450.html Cheap Watches Home : http://www.watchesprice.net/ Lower Price Timex Brands : http://www.watchesprice.net/Timex-Watches.html Timex SL Series Perpetual Calendar Mens Watch T2M505 --- one of best selling watches, it is crafted in high quality Watches. Timex SL Series Perpetual Calendar Mens Watch T2M505 Description: The new Timex SL Series takes its cues from the Company's heritage as a sports brand, focusing on the latest trend of stylish fashion watches that have a distinctive sports feel while being elegantly formal. With contemporary details and the first IP (Ionic Plating) bracelets in the Timex range, this collection is the perfect addition to the Timex family. New May 2007. Perpetual Calendar movement means the date is always right. Watch has an INDIGLO Night-light feature, a stainless steel case with enamel top ring, unique black IP bracelet, silver dial, Day & Date feature at 3 O'Clock, 7 year battery, water resistance: 100 metres and a one year limited manufacturer warranty. Timex SL Series Perpetual Calendar Mens Watch T2M505 Details: Watches-Price Sales Rank: #32510 in Watches Brand: Timex Model: T2M505 Band material: ion-plated Bezel material: enamel Case material: stainless-steel Clasp type: fold-over-clasp Dial color: silver Dial window material: Mineral Movement type: analog-quartz Water-resistant to 100 meters Features Movement - Analog Quartz Water Resistant - 100 Meters(330Feet) Case Diameter - 40 MM Crystal - Mineral Crystal The Same Timex Series : Timex Men's Perpetual Calendar Watch #T2C011 : http://www.watchesprice.net/Timex-Mens-Perpetual-Calendar-Watch-T2C011-15451.html Timex Perpetual Calendar Mens Watch T2B981 : http://www.watchesprice.net/Timex-Perpetual-Calendar-Mens-Watch-T2B981-15452.html Timex Men's Perpetual Calendar Watch #T41841 : http://www.watchesprice.net/Timex-Mens-Perpetual-Calendar-Watch-T41841-15453.html Timex Men's Watches Classics Perpetual Calendar T2D491 - 5 : http://www.watchesprice.net/Timex-Mens-Watches-Classics-Perpetual-Calendar-T2D491-5-15454.html Timex Men's Perpetual Calendar Sport Watch #T2J081 : http://www.watchesprice.net/Timex-Mens-Perpetual-Calendar-Sport-Watch-T2J081-15455.html Timex T41841 Mens Perpetual Calendar Watch T41841 : http://www.watchesprice.net/Timex-T41841-Mens-Perpetual-Calendar-Watch-T41841-15456.html Expedition Perpetual Calendar : http://www.watchesprice.net/Expedition-Perpetual-Calendar-15457.html Men's Timex Expedition Silver Face Watch - Brown Strap : http://www.watchesprice.net/Mens-Timex-Expedition-Silver-Face-Watch-Brown-Strap-15458.html Tag: AFDS, Domain trust or other? Tag: 127835
  - 24
    - Luminox Men's EVO Navy SEAL Colormark Watch #3055 - Cheapest Watch Luminox Men's EVO Navy SEAL Colormark Watch #3055 - Cheapest Watch Luminox Men's EVO Navy SEAL Colormark Watch #3055 Link : http://www.watchesprice.net/Luminox-Mens-EVO-Navy-SEAL-Colormark-Watch-3055-9961.html Cheap Watches Home : http://www.watchesprice.net/ Lower Price Luminox Brands : http://www.watchesprice.net/Luminox-Watches.html Luminox Men's EVO Navy SEAL Colormark Watch #3055 --- one of best selling watches, it is crafted in high quality Watches. Luminox Men's EVO Navy SEAL Colormark Watch 3055 Description: Swiss quartz movement, Casual watch, Luminous hands and markers, Yellow numbers and indices, Yellow military numbers on center dial, Analog date display, Black textured unidirectional polymer ratcheting bezel is set with yellow numbers and a luminous accent, Black carbon reinforced polymer injection molded case, Double gasket push-in crown, Black carbon reinforced caseback secured with stainless steel screws, Tempered scratch resistant mineral crystal, 200meters/660 feet water resistant Luminox Men's EVO Navy SEAL Colormark Watch 3055 Details: Watches-Price Sales Rank: #2693 in Watches Brand: Luminox Model: 3055 Band material: Polyurethane Bezel material: polyurethane Case material: polyurethane Clasp type: Buckle Dial color: black Dial window material: Mineral Movement type: analog-quartz Water-resistant to 200 feet The Same Luminox Series : Luminox Men's EVO Navy SEAL Colormark Watch #3067 : http://www.watchesprice.net/Luminox-Mens-EVO-Navy-SEAL-Colormark-Watch-3067-9962.html Luminox Men's EVO Navy Seal watch #3057 : http://www.watchesprice.net/Luminox-Mens-EVO-Navy-Seal-watch-3057-9963.html Luminox Men's EVO Navy Seal watch #3059 : http://www.watchesprice.net/Luminox-Mens-EVO-Navy-Seal-watch-3059-9964.html Luminox Men's Navy SEAL Steel-Carbon Dive Watch #3101 : http://www.watchesprice.net/Luminox-Mens-Navy-SEAL-Steel-Carbon-Dive-Watch-3101-9965.html Luminox Men's Navy SEAL Steel-Carbon Dive Watch #3102 : http://www.watchesprice.net/Luminox-Mens-Navy-SEAL-Steel-Carbon-Dive-Watch-3102-9966.html Luminox - 3103 (Size: men) : http://www.watchesprice.net/Luminox-3103-Size--men-9967.html Luminox - 3105 (Size: men) : http://www.watchesprice.net/Luminox-3105-Size--men-9968.html Luminox Men's Steal Seal watch #3107 : http://www.watchesprice.net/Luminox-Mens-Steal-Seal-watch-3107-9969.html Tag: AFDS, Domain trust or other? Tag: 127834
  - 25
    - Exchange 2007 is mad at us and our "distinguishedName" generation says MSFT PSS, any way to customize it? Hi All, We are investigating a problem we are having when synchronizing our GAL with another organization. The other org's AD seems to be changing the DNs of objects once they are over there. Thus if an object is deleted on our side, the next time it goes over it cannot be deleted as the original DN is gone. If an object on our side is modified, it gets created on the destination side as a similar looking duplicate as the original DN is gone. As far as I know objects on their side are getting to our side ok. I'll confirm it in the morning. The other side is using Exchange 2007 (Waiting to hear if SP1 is applied or not). Our Environment: Windows Server 2003 SP2 Active Directory Schema Version 44 (Server 2008 RTM) Forest Functional Mode = Windows Server 2003 Exchange Mode: Mixed (still have 1 Exchange 5.5 site to decommission) Our users's display names usually looke like "Lastname, Firstname (DEP)" with (DEP) being a 3 character department code, matching the department code on the organization tab in Active Directory Users & Computers. Many of the admins put this into the "Full Name" field in ADUC during user creation instead of adding it to the display name afterwards. Microsoft PSS today said it is being caused because we have spaces in our DNs and Exchange 2007 absolutely hates spaces in DNs to the point of where it won't accept them. Sooo, I created 5 users and did a few rename operations to make sure I understood how DNs are generated. Skip the next stuf if you don't care to see what I did. :-) 1. My User created o First Name = My o Last Name = User o Logon Name = MUser o Hit next until create mailbox screen o Alias = my.user o Completed user creation § distinguishedName: CN=User\, My,OU=Test,DC=contoso,DC=com; § cn: User, My; § displayName: User, My; o Then performed a "rename" by right-click àRename in ADUC o Typed User, First o Hit enter o Changed Full Name in ADUC to "User, First" o Changed First Name in ADUC to "First" o Changed Display Name in ADUC to "User, First" o Changed Username in ADUC to "Fuser" o Clicked OK § distinguishedName: CN=User\, First,OU=Test,DC=contoso,DC=com; § cn: User, First; § displayName: User, First; 2. Second User created o First Name = Second o Last Name = User o Full Name = User, Second (DEP) o Logon Name = SUser o Hit next until create mailbox screen. o Alias = second.user o Completed user creation § distinguishedName: CN=User\, Second (DEP),OU=Test,DC=contoso,DC=com; § cn: User, Second (DEP); § displayName: User, Second (DEP); 3. Third User created o First Name = Third o Last Name = User o Full Name = Third User o Logon Name = TUser o Hit next until create mailbox screen. o Alias = third.user o Completed user creation § distinguishedName: CN=Third User,OU=Test,DC=contoso,DC=com; § cn: Third User; § displayName: Third User; 4. Fourth User created o First Name = Fourth o Last Name = User o Logon Name = FourthUser o Hit next until create mailbox screen o Alias = fourth.user o Completed user creation § distinguishedName: CN=User\, Fourth,OU=Test,DC=contoso,DC=com; § cn: User, Fourth; § displayName: User, Fourth; o Then performed a "rename" by right-click àRename in ADUC o Changed Full Name in ADUC to "Fourth User (DEP)" o Display Name in ADUC not changed and left at "Fourth User" § distinguishedName: CN=User\, Fourth (DEP),OU=Test,DC=contoso,DC=com; § cn: User, Fourth (DEP); § displayName: User, Fourth; o Then performed a "rename" by right-click àRename in ADUC o Changed Full Name in ADUC to "Fourth User" o Changed Display Name in ADUC to "Fourth User (DEP)" § distinguishedName: CN=User\, Fourth,OU=Test,DC=contoso,DC=com; § cn: User, Fourth; § displayName: User, Fourth (DEP); I then created a 5th one to see if I could get a no space DN to create. It did, but it looks stupid and you have to force it. 5. Fifth User created o First Name = Fifth o Last Name = User o Logon Name = FifthUser o Full Name = Fifth-User o Hit next until create mailbox screen o Alias = fifth.user o Completed user creation § distinguishedName: CN=Fifth-User,OU=Exchange Test Accounts,OU=Test,DC=contoso,DC=com; § cn: Fifth-User; § displayName: Fifth-User; o Then performed a "rename" by right-click àRename in ADUC o Changed displayName to "Fifth User (DEP)" § distinguishedName: CN=Fifth-User,OU=Exchange Test Accounts,OU=Test,DC=contoso,DC=com; § cn: Fifth-User; § displayName: Fifth User (DEP); It looks like when a user is originally created, the "Full Name" field value in ADUC is saved as both the CN & the displayName attributes. The then DN is created off of the CN. If you come back later and change only the "Full Name" in ADUC, the CN & DN both change, but displayName does not change this second time around. If you change the displayName, the CN & DN does not change. If MSFT PSS comes back and says "Sorry, you're screwed unless the DNs change", is there a way to configure how AD generates the DN to be something like %g.%s for given.surname like you can do in Recipient Policies? We have 30k plus accounts all with spaces in the DNs. I've never run into this being a problem before and it could be a huge one if PSS is correct for when we migrate to Exchange 2007 ourselves. Thank you very much, sorry for the long post. I'll update anything else we hear from PSS, they're doing some investigation work before calling us back in the morning. Tag: AFDS, Domain trust or other? Tag: 127829

Hello all,

I'm falling in a strange question. I've an exchange systems in my
domain. Using this exchange system I give a service to my customers
outsourcing the exchange.

Now, I've to sell this service to another customer. This customers do
not want for privacy/security/other reasons to trust its own domain with
my one but want to use for every user in its domain the local credential
to logon to my exchange service thought outlook and thought owa.

If I can use trust googling around I've found AD Federation services,
but seems to be that this systems works only for web applications. This
can be good for OWA but is unusable for Outlook client.

There's another trick to solve this?

Thanks
Stefano

Top

Re: AFDS, Domain trust or other? by Joe

Joe
Fri May 02 09:06:39 PDT 2008

ADFS won't help with Outlook here, sorry. You are correct in your
understanding that this is just for web applications in its current state.

I don't have another trick for you. I think you either need a trust or
would need to have shadow accounts for their users with matching passwords
provisioned in your forest (which is quite a bit more work and more
intrusive than doing the trust).

Joe K.

--
Joe Kaplan-MS MVP Directory Services Programming
Co-author of "The .NET Developer's Guide to Directory Services Programming"
http://www.directoryprogramming.net
--
"Ste" <s.c@i.net.it> wrote in message
news:680oeiF2ra4c5U1@mid.individual.net...
> Hello all,
>
> I'm falling in a strange question. I've an exchange systems in my domain.
> Using this exchange system I give a service to my customers outsourcing
> the exchange.
>
> Now, I've to sell this service to another customer. This customers do not
> want for privacy/security/other reasons to trust its own domain with my
> one but want to use for every user in its domain the local credential to
> logon to my exchange service thought outlook and thought owa.
>
> If I can use trust googling around I've found AD Federation services, but
> seems to be that this systems works only for web applications. This can be
> good for OWA but is unusable for Outlook client.
>
> There's another trick to solve this?
>
>
> Thanks
> Stefano

Top