Empty Subject in outlook

Tutorials Win: Microsoft Windows Forum

- Previous
  - 1
    - DCDIAG error When I run a DCDIAG on mij W2k3 server I get the following output: Domain Controller Diagnosis Performing initial setup: Done gathering initial info. Doing initial required tests Testing server: Default-First-Site-Name\ZEUS Starting test: Connectivity The host b6b4dfa9-2dd1-47fd-8a80-24558752ee7f._msdcs.test.local could not be resolved to an IP address. Check the DNS server, DHCP, server name, etc Although the Guid DNS name (b6b4dfa9-2dd1-47fd-8a80-24558752ee7f._msdcs.test.local) couldn't be resolved, the server name (zeus.test.local) resolved to the IP address (10.31.1.160) and was pingable. Check that the IP address is registered correctly with the DNS server. ......................... ZEUS failed test Connectivity Doing primary tests Testing server: Default-First-Site-Name\ZEUS Skipping all tests, because server ZEUS is not responding to directory service requests Running partition tests on : ForestDnsZones Starting test: CrossRefValidation ......................... ForestDnsZones passed test CrossRefValidation Starting test: CheckSDRefDom ......................... ForestDnsZones passed test CheckSDRefDom Running partition tests on : DomainDnsZones Starting test: CrossRefValidation ......................... DomainDnsZones passed test CrossRefValidation Starting test: CheckSDRefDom ......................... DomainDnsZones passed test CheckSDRefDom Running partition tests on : Schema Starting test: CrossRefValidation ......................... Schema passed test CrossRefValidation Starting test: CheckSDRefDom ......................... Schema passed test CheckSDRefDom Running partition tests on : Configuration Starting test: CrossRefValidation ......................... Configuration passed test CrossRefValidation Starting test: CheckSDRefDom ......................... Configuration passed test CheckSDRefDom Running partition tests on : test Starting test: CrossRefValidation ......................... test passed test CrossRefValidation Starting test: CheckSDRefDom ......................... test passed test CheckSDRefDom Running enterprise tests on : test.local Starting test: Intersite ......................... test.local passed test Intersite Starting test: FsmoCheck ......................... test.local passed test FsmoCheck What can/must I do to correct this problem? Tag: Empty Subject in outlook Tag: 125493
  - 2
    - Retrieve Users in AD from SQL server Procedure Is it possible to reteive a group of users(not all ) from AD using an SQL query? The users will be placed under folder structures like F1, F2 and i need to extract only those users in F1 and F2. Thnx Tag: Empty Subject in outlook Tag: 125492
  - 3
    - NTDS KCC 1308 Seems like I have some issues with replication... I have an exisiting W2k domain and I have added a secondary DC running W2003 R2 to the domain. Here is the error message I'm receiving on the new secondary DC running Windows 2003. Source: NTDS KCC Category: Knowledge Consistency Event ID: 1308 The Knowledge Consistency Checker (KCC) has detected that successive attempts to replicate with the following domain controller has consistently failed. Attempts: 20 Domain controller: CN=NTDS Settings,CN=name,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=domain name,DC=com Period of time (minutes): 129 The Connection object for this domain controller will be ignored, and a new temporary connection will be established to ensure that replication continues. Once replication with this domain controller resumes, the temporary connection will be removed. Any ideas? /Adde -- fantamejthisisgoodvarjedag Tag: Empty Subject in outlook Tag: 125489
  - 4
    - Network Infrastructure Hi Guys, Hope Im in the right group. Im in a stage of fixing my network. This is my current setup. 1. I have an active directory server, which is mydomain.com, wherein also my DNS and DHCP is located. 2. My subnet is 255.255.255.0 This is my idea. 1. Have these servers: (Need suggestions on these) a. AD Server with DNS Server - is this a good practice? b. DHCP Server with ISA Server - is this a good practice? Other concern: I want my network to have access limitations. Here is a scenario. 1. In our network, only managers can use their laptop to access our network and internet. It can be wired or wireless. Unauthorized laptop should or must not access our network. But from the way the network was setup, they can access it through wire. I can filter the wireless using MAC Address filter from the routers. But if they connect through wire and know how to config TCP/IP they can easily access our network. Can this be avoided through ISA? Is there a way to filter MAC Address through Active Directory? Hope you can help me on this. Thanks in advance. Allan Tag: Empty Subject in outlook Tag: 125487
  - 5
    - Logon as a service, batch job, and act as part of the operating system? Gurus, You know when you install a third-party application which need a domain-level service account to run, and you install the service and then during or after the installation when you tell the service who to log on as, a dialog box pops up and says "XXX service has been given the following rights: ..." I forgot what those rights were. Aren't they: Logon as a service Logon as a batch job Act as part of the operating system? -- Spin Tag: Empty Subject in outlook Tag: 125483
  - 6
    - Parent - Child Domain Trust Relationship - Cannot modify trust Hello, I am not able to modify my trust relationship between a child and parent domain. AD Domains and Trusts setup a two-way Transitive trust - shortcut relationship. I do not want the parent domain trust the child, I do not want users in the child domain to have access to the parent (one-way trust), but the Remove button is grey out and I cann't add a trust because one already exits. There appears to be no option to modify the settings. Second, I attempted three times to create this child domain using Microsoft Docs, it never worked. It doesn't create the child domain zone file, Even though the DNS test during the Child's dcpromo tested good. http://technet2.microsoft.com/windowsserver/en/library/e3f241b5-82a0-4c24-a56a-bfc00ce1b5c21033.mspx?mfr=true After the child domain was created, replication failed due to DNS failure. I ended up manually configuring DNS an setup the Child with DNS delegation. I assume this the only way it will work? I don't know if the problems are related to modifing my trust relationship now. My DNS and DS error event logs went away. http://support.microsoft.com/kb/255248 Thank you for your help. Don Tag: Empty Subject in outlook Tag: 125482
  - 7
    - .adm file Can anyone explain how to create a .adm file? I tried to follow text on: http://download.microsoft.com/download/1/7/2/1725520f-1228-4dff-9c5d-594042475844/regpolicy.doc but it does not make sense. Ehat I have tried so far is to copy and paste from: http://support.microsoft.com/kb/555324 and save it as .adm. But it does import in Group Policy Editor. Tag: Empty Subject in outlook Tag: 125476
  - 8
    - AD/LDAP without the DC? Is it possible to have a live replica of an AD domain without serving as a domain controller? For various reasons (mostly management concerns) we would like to dedicate a server for LDAP queries, but not have the system availble for authentication. We thought about using a DC in a seperate site, but with replication taking 15 minutes between sites (we're still in a Win2K functional level), mgt really didn't like that option. Thanks in advance. Tag: Empty Subject in outlook Tag: 125474
  - 9
    - Lose Authentication Hey, A small problem I've been having lately is that users who are logged on to the domain seem to lose their authentication randomly. They'll suddenly be asked for their password when viewing their e-mail (exchange setup), they can no longer access network drives, and need to reboot 3 times or so until they can even log back into windows after logging out. We have a very simple setup, 2 AD servers with about 20 client machines. I don't beleive is a replication issue or anything like that, but I'm not sure where to even start checking for this issue. Does anybody have any ideas? The server is running Windows 2k3 and the client machines are running Windows XP SP2 (both have the latest updates/hot fixes). Any guidance on where to start trouble shooting would be really appreciated! -Prateek Tag: Empty Subject in outlook Tag: 125462
  - 10
    - Is it possible to add the Domain "Administrators" group to a local Is it possible to add the Domain "Administrators" group to a local adminstratos group on a server? If not, what is the best we to create a group that we can add to local administrators groups on our servers for users who are in a trusted domain? Tag: Empty Subject in outlook Tag: 125461
  - 11
    - Rename DC Hi, The Windows 2003 MCSE Self Paced Training Kit says in order to rename a domain controller you have to use NETDOM.EXE (p.4-19). Is this necessary or can I just rename the DC and reboot? When it comes back up and starts the netlogon service won't it just re-register its SRV records in DNS/AD? Thanks. Riley Tag: Empty Subject in outlook Tag: 125460
  - 12
    - Disaster I redirected My Doc and Desktop folders of my users on my server but faced problems and then i redirected them back to the local user profile but now there is no option in their computers to change the path of My Documents to another drive. "Grant the user Exclusive Rights" option is still selected. Can anybody tell me what is the proper way to revert all the settings? Thanks! Tag: Empty Subject in outlook Tag: 125447
  - 13
    - Domain Controller backup This is a multi-part message in MIME format. ------=_NextPart_000_02C0_01C88DBC.1CF44E00 Content-Type: text/plain; charset="big5" Content-Transfer-Encoding: quoted-printable Hi All I know this may not be practical but I hope someone can advise on my = issue. What has to be backed up from a DC if the domain only has a = single DC in order to recover in case of any failure to that only DC ? = Can a daily backup fully recover the AD at a restore point ? Thanks Johnny ------=_NextPart_000_02C0_01C88DBC.1CF44E00 Content-Type: text/html; charset="big5" Content-Transfer-Encoding: quoted-printable <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META http-equiv=3DContent-Type content=3D"text/html; charset=3Dbig5"> <META content=3D"MSHTML 6.00.6000.16609" name=3DGENERATOR> <STYLE></STYLE> </HEAD> <BODY bgColor=3D#ffffff> <DIV><FONT face=3DArial size=3D2>Hi All</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>I know this may not be practical but I = hope someone=20 can advise on my issue.  What has to be backed up from a DC if the = domain=20 only has a single DC in order to recover in case of any failure to that = only DC=20 ?  Can a daily backup fully recover the AD at a restore point=20 ?</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>Thanks</FONT></DIV> <DIV><FONT face=3DArial size=3D2>Johnny</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV></BODY></HTML> ------=_NextPart_000_02C0_01C88DBC.1CF44E00-- Tag: Empty Subject in outlook Tag: 125443
  - 14
    - how to check if the drive mapping is persistent? Is there a way to find out if the current drive mapping is persistent or not by using net use or some other commands from the client workstation? Thanks Tag: Empty Subject in outlook Tag: 125442
  - 15
    - HELP - Cannot run DCPROMO... I'm trying to add a secondary DC to my existing domain. The existing DC is running W2k Server with SP4 and all patches. The new server is running W2003 Server R2 Standard edition with SP2 and all patches. I have successfully run adprep /forestprep and adprep /domainprep on my W2K server but I still am getting an error message that the forest is NOT prepared!!! Error message: "The Active Directory Installation Wizard cannot continue because the forest is not prepared for installing Windows Server 2003. Use the Adprep command-line tool to prepare both the forest and the domain. For more information about using the Adprep, see Active Directory Help. The version of the Active Directory schema of the source forest is not compatible with the version of the Active Directory on this computer." Any ideas what might be the issue here? Thanks, /Adde -- fantamejthisisgoodvarjedag Tag: Empty Subject in outlook Tag: 125433
  - 16
    - Share folder issue in ad environment Two PCs:A & B A for DC running win2003 B for client running winxp I shared one folder on both pcs B can access A but A can not access B anyone can help me to solve this problem! Thank u in advance! Tag: Empty Subject in outlook Tag: 125419
  - 17
    - Windows 2003 and Windows 2008 Domain Controller I have an existing single 2003 Domain Controller. I want to add an additional domain controller to replicate AD with the 2003 domain controller for fault tolerance. Can I have a 2003 domain controller and a 2008 domain controller(operating as a secondary) or do I have to upgrade the 2003 Domain Controller to Windows 2008 server, etc. ? Tag: Empty Subject in outlook Tag: 125404
  - 18
    - "An operations error occurred" Hi, I'm having a problem querying active directory. It happens so far only on one computer under a particular user account. Things seem to work fine for that user on another computer, and if I logon to her computer the query works fine as well. here is the C# code I'm using to do the query: private static DirectoryEntry GetUserEntry( WindowsIdentity ident ) { string directoryServer; DirectorySearcher searcher; DirectoryEntry domainEntry, result; SearchResult results; string userName; result = null; using ( domainEntry = new DirectoryEntry( "LDAP://rootdse" ) ) { directoryServer = domainEntry.Invoke( "GET", "defaultNamingContext" ).ToString(); } if ( string.IsNullOrEmpty( directoryServer ) ) { throw new InvalidOperationException( Properties.Resources.CannotDetermineDirectoryServer ); } if ( directoryServer.StartsWith( @"\\" ) ) { directoryServer = directoryServer.Substring( 2 ); } using ( domainEntry = new DirectoryEntry( string.Format( "LDAP://{0}", directoryServer ) ) ) { userName = ident.Name; if ( userName.IndexOf( @"\" ) > -1 ) { userName = userName.Substring( userName.IndexOf( @"\" ) + 1 ); } using ( searcher = new DirectorySearcher( domainEntry, string.Format( "SAMAccountName={0}", userName ) ) ) { results = searcher.FindOne(); result = results.GetDirectoryEntry(); } } return result; } The initial part seems to succeed (querying for the rootdse), but finding the SAMAccount is failing for some reason. Any ideas? Here's the exception: System.Runtime.InteropServices.COMException (0x80072020): An operations error occurred. at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail) at System.DirectoryServices.DirectoryEntry.Bind() at System.DirectoryServices.DirectoryEntry.get_AdsObject() at System.DirectoryServices.DirectorySearcher.FindAll(Boolean findMoreThanOne) at System.DirectoryServices.DirectorySearcher.FindOne() at MyCompan.Application.UserInfo.GetUserEntry(WindowsIdentity ident) Tag: Empty Subject in outlook Tag: 125373
  - 19
    - Lsass terminating unexpectedly I've been getting plagued with restarts on my domain controllers for the past 5-6 weeks. Specifically, the two events that are written to the logs are: First, Application Log: evt 1015; A critical system process, C:\WINDOWS\system32\lsass.exe, failed with status code c0000005. The machine must now be restarted. ...and about 5 seconds later, followed by... App Log : evt 1074; The process winlogon.exe has initiated the restart of [domain controller] for the following reason: No title for this reason could be found Reason: 0x50006 Shutdown Type: restart Comment: The system process 'C:\WINDOWS\system32\lsass.exe' terminated unexpectedly with status code -1073741819. The system will now shut down and restart. Has anyone seen this behavior lately (other than the infamous sasser outbreak of years past)? Or know what steps I can take to isolate the culprit? Tag: Empty Subject in outlook Tag: 125370
  - 20
    - Add 2003 R2 64 to 2000 AD I am unable to add my new 2003 box as a secondary DC to the existing 2000 DC. I keep getting the message ADPREP should be run. I did run ADPREP on my 2000 DC, it ran with NO errors. I need some help any one have a suggestion? Thanks, Paul Tag: Empty Subject in outlook Tag: 125362
  - 21
    - 2003 R2 server attempts to join 2003 domain Hi, Is there something I need to be aware of before I join 2003 R2 server to 2003 domain (DC is running 2003 with SP2 not 2003 R2)? Not sure if I need to modify schema on DC before 2003 R2 to join the domain or I just don't have additional features if I don't have to modify DC. I just want to make sure there is no compatibility issue for 2003 R2 server to join 2003 DC domain without changing anything. Any hints? Thanks Char Tag: Empty Subject in outlook Tag: 125361
  - 22
    - 2008 RODC Is it possible to promote a W2K8 RODC to a full DC? Tag: Empty Subject in outlook Tag: 125351
  - 23
    - What should forest/domain be called - questions on name usage Hi there. We've got an AD domain whch is named after our company name. So it is COMPANY-NAME.COM (I did not set this up). This is our forest and domain name that we use for users and computers. The NETBIOS name is COMPNAME. We host our own DNS but internal only. We own Company-name.com but the DNS is hosted elsewhere for that. My question is...what are the problems with calling your AD like this? What is best. Should it be Company-Name.local? We don't appear to have any problems at all. Is it security problems may occur or may we run in to trouble in the future? Should we be running at the forest level? Thanks Tag: Empty Subject in outlook Tag: 125347
  - 24
    - High availibity I have a DC on windows 2003 server, and i want to add a new additional domain for high availibity. At Some forums I have read we should transfer roles from one to another. Can we do it by other way to make it HA, i mean when one dc fails, the other one takes all services manually or automatically. I need help about this subject urgently. Thanks you Tag: Empty Subject in outlook Tag: 125337
  - 25
    - Remove Dc from active directory, after DC has crashed We are running Windows Server 2003, we have a domain controller (not the first DC, but it's a global catalog server) that is broken (cannot start anymore), i want to remove it from our Active Directory... I need some help, please... thanks Tag: Empty Subject in outlook Tag: 125336
- Next
  - 1
    - admt error when i try to run active directory migration tool, it gives me an error like this Snap-in failed to initialize Name:<unkonwn> CLSID: {E1975d70-3f8e-11d3-99ee-00c04f39bd92} Do you have an idea about what the problem is? Thank you. Tag: Empty Subject in outlook Tag: 125335
  - 2
    - Chicks in India http://warnet.ws/img2/183/dom/4.jpg http://warnet.ws/img2/183/dom/1.jpg http://warnet.ws/img2/183/dom/3.jpg http://warnet.ws/img2/183/dom/5.jpg http://warnet.ws/img2/183/dom/6.jpg http://warnet.ws/img2/183/dom/7.jpg http://warnet.ws/img2/183/dom/8.jpg http://warnet.ws/img2/183/dom/9.jpg http://warnet.ws/img2/183/dom/10.jpg http://warnet.ws/img2/183/dom/11.jpg http://warnet.ws/img2/183/dom/12.jpg http://warnet.ws/img2/183/dom/13.jpg info@imagiam.com Tag: Empty Subject in outlook Tag: 125334
  - 3
    - AD Users not getting proper permissions I have three users (that I know about) that don't seem to be getting the proper permissions. I have shared network drives that have the same permissions set, but the users only have access to some of the shared drives. I also have a user in the domain admins group that does not have permissions where domain admins should. My other domain admins permissions work fine. We are using a server 2000/2003 AD. Thanks for any help, Jeff Tag: Empty Subject in outlook Tag: 125328
  - 4
    - List ACL's My supervisor has asked me for a list of people thta have access to spicific folders, and their access level. Anyone know of a good utility that will accomplish this? Thanks. Tag: Empty Subject in outlook Tag: 125322
  - 5
    - Event ID 1054 on workstations, even DC's ? Lately we are having this problem on a lot of workstation including Domain Controllers, that made teh GPO didn't run and caused a lot of other issues. ******************************************* Description: Windows cannot obtain the domain controller name for your computer network. (The specified domain either does not exist or could not be contacted. ). Group Policy processing aborted. ******************************************* Could someone please give me a hint toward the resolution of this problem? Tag: Empty Subject in outlook Tag: 125317
  - 6
    - Domain Consolidation I'm looking for some guidance/ direction/ help/assistance with the following: My company has acquire 2 small companies, these 2 other companies are running Windows 2000 domain, on the other hand I'm running Windows 2003 domain in native mode. I'm trying to come up with a plan to integrate those 2 companies and consolidate their domain so it will only participate in the main corporate domain. What is the best method to do this and what are the steps involve in doing so? I'm looking for high level overview and what I need to watch out for, also I need to migrate user accounts from each domain to the coporate domain. Thanks. Tag: Empty Subject in outlook Tag: 125295
  - 7
    - Second DNS server We have one (first) AD where is also DNS service. On second machine we setup second AD (dcpromo / additional DC) and both AD's creates replica. But on second AD there is no DNS server... What is standard procedure to create replica DNS on second server? Thnx! Tag: Empty Subject in outlook Tag: 125265
  - 8
    - 10 simple steps Hi, Can anyone write in 10 or 15 simple steps to do the migration of users and groups from one domain to another domain (both are different forest and both are win2k3 domain). thanks in advance! Tag: Empty Subject in outlook Tag: 125253
  - 9
    - User only mapps home drive This may be a bit of a nubi question as im a bit of a nubi at this. I have a user who when he logs in to a new PC does not map his drives from login.bat refrenced by the GPO. He uses roaming porfiles and his personla PC maps the drives fine. Where do I start looking? -- I Run A Help Desk, Not A Resume Service Tag: Empty Subject in outlook Tag: 125251
  - 10
    - Trust relationship Hi, I have few questions......... I am migrating users and groups from win2K3 domain to win2K3 domain. Should I establish a one way trust between these domains? thanks in advance! Tag: Empty Subject in outlook Tag: 125250
  - 11
    - Migrating User Profiles between Servers Hey All, I have an AD 2000 Server that also acts as our DC. We currently have a Terminal Server (also WIn 2000) joined to this domain and all users authenticate into TS using AD. All user profiles reside on the Terminal Server. We're moving to a Server 2003 R2 Enterprise Server for Terminal Services (we'll then remove the 2000 Terminal Server). Since we're still staying with the 2000 AD. Is there a seemless way to move the profiles from TS 2000 to TS 2003? I could even do it manually, but until a user actually logs in once, they don't have a profile directory in the new server ... Thanks Joe Tag: Empty Subject in outlook Tag: 125249
  - 12
    - One DC with three sites Here's an odd one: In one town, I have three sites (Site1, Site2, Site3). Site 1 has three T1s: one T1 to Site2, one T1 to Site3, and one T1 to the rest of the nationwide organization. For this post I'm only concerned with Site1, Site2, and Site3. All three sites have sites defined in AD and Site1 has a DC. For some reason the workstations and server in Site2 and Site3 are not authenticated against the DC at Site1 (4ms ping reply), they are using a DC across the country (80ms ping reply). To fix this, I'd just delete the AD site entries of Site2 & Site3 and add their subnets to the site entry for Site1, however we have a DFS that replicates between the 3 sites and if we consolidated our site definitions computers at Site2 could refer to the DFS and instead of getting the local replica, they get the servers at Site3. I am thinking of just rewriting our login & startup scripts to check the subnet of the machine and map the local servers. Then using a package like AllSync or rsync to handle the intersite replication. Does anyone know of any way around this? Thanks for your help, Curt Tag: Empty Subject in outlook Tag: 125247
  - 13
    - Copy (migrate) users from Active Directory to ADAM I did a search, but didn't see this particular topic. Probably doesn't come up much. We have a system which was built utilizing Active Directory to store users for a web based application. We've come to realize that utilizing Active Directory is a bit overkill for what we're doing, plus it's not great for testing different versions simultaneously (where you'd want different user sets on the same machine), so we're seeing how much it would cost to switch things over to ADAM instead. I realized, however, that I haven't seen any documentation on how to move the user accounts from AD to ADAM anywhere. Is it just a simple matter of scripting it out? Will it move the passwords? We have 20k users... I'm not thrilled with the idea of telling all of them "your passwords have all been reset." :-) Thanks! -- Reginald Blue "I have always wished that my computer would be as easy to use as my telephone. My wish has come true. I no longer know how to use my telephone." - Bjarne Stroustrup (originator of C++) [quoted at the 2003 International Conference on Intelligent User Interfaces] Tag: Empty Subject in outlook Tag: 125244
  - 14
    - Network topology for Small Business and High Availability Less than 20 person engineering firm. Have needs for: 2+ Terabytes of local data storage Email serving with local control Shared Internet access with VPN capabilities Printer sharing To date we have used SBS 2003 to fill this need nicely but after a recent hardware failure and too much downtime, management decided to invest in a more highly available option. We decided to go with windows clustering and purchased 2 identical machines from Dell with a shared storage unit, Windows Server 2008 Enterprise and Exchange Server 2007 standard. Now through my search for recommended configurations I find it confusing on how I need to have this setup. It is not recommended to cluster domain controllers and Exchange clustering on DMs does not seem to be supported. I need to find a resource that addresses my network topology to accomodate a highly available environment from ISP to end users. Is there a recommended resource for network layouts for our scenario? Would a Primary/Secondary domain controller with a hardware fault tolerant NAS be more what we should be doing? Any direction would be appreciated. Thanks, Joel Tag: Empty Subject in outlook Tag: 125243
  - 15
    - ADMTv3 NT4 -> 2003 invalid handle Scenario: single NT4 domain migrating to Windows 2003 forest with parent/child domains. Trust relationship between NT4 and Child domain All security has been configured according to ADMT documentation but I get the following response when creating objects in the new domain (while using an NT4 account...which is necessary to get local workstation admin access): [Object Migration Section] 2008-03-19 18:50:59 Starting Account Replicator. 2008-03-19 18:51:03 ERR2:7816 Cannot determine if source object 'WinNT://NT4domain/zzTest01' matches an object in the target forest or domain. The handle is invalid. 2008-03-19 18:51:03 ERR2:7301 Failed to migrate source object 'zzTest01' to domain 'child.parent.local'. The target object could not be created. hr=0x80070006 The handle is invalid. ... 2008-03-19 18:51:03 Operation completed. Any suggestion as to what may be the problem? I have limited access to the root domain (NT4 trusts are not transitive to the root). This limitation prevents me from diagnosing replication but I can find no indication that we have a problem. Do we need explicit permissions in the parent domain? If so, how can I grant it? I can migrate objects with an AD account but this account does not have access to install the ADMT agent on the workstations...so I can't get the domain membership to change or the security translation to run. Any assistance is greatly appreciated. Tag: Empty Subject in outlook Tag: 125242
  - 16
    - Logon Script for computer? I have Active Directory assigning network drives by a logon script for users. They are assigned L & P drives. I would like users logging into my Citrix server to assign additional drives, ie. S & O drives, plus their L & P drives. How can I do this? I've created another OU object in Active Directory and placed the Citrix server under this object, but the script is not mapping the drives. Tag: Empty Subject in outlook Tag: 125236
  - 17
    - user and exchange account migration I have question on how to migrate user account from one domain to another. I know I can use ADMT to do this. But my situation is as follows: ABC. com and XYZ. com. We have trust setup between domains. Users already have domain accounts in ABC.com and they use file server in ABC. com. The same user also have domain account set up for xyz.com . This account is being used for e-mail only. So, basically users logs on to ABC.com and use the file server etc., with using ABC.com domain user name and password. When they check e-mail, they use XYZ.com username and password. Now that we are ready to merge both domain to one and it will become ABC.com, how the user accounts are going to be merged? Is the domain sid for XYZ.com will be merged with ABC.com domain user sid? What exactly needs to happen here to make a successful migration of user account and migrating mailboxes from XYZ.com to ABC.com Thanks. -- Dipti Tag: Empty Subject in outlook Tag: 125234
  - 18
    - ADAM in DMZ proxy bind to AD Hello, I've been stuggling with the following scenario, and none of my web searching has found the answers. I hope someone here can help out. I have an Win2k3 Active Directory domain running inside my firewall and want to allow an external website to provide LDAP authentication to our users. I don't want to open a firewall hole straight to the DC, so thought ADAM in the DMZ with simple binding would work a treat. I need to be able to enumerate the groups that each user is in, but only under a specific OU as in the config below. Can someone please provide guidance, preferably in a step-by-step, on how to get ADAM to do simple proxy binds from a workground in a DMZ to a DC in the internal network? I have tried creating an ADAM instance using the wizard, importing my AD schema (from schema analyzer), loading MS-UserProxy and ADAMSyncMetaData, config my XML file, but no go. My file so far is below the sig. Thanks to anyone who can help me out! -jonathan king <?xml version="1.0"?> <doc> <configuration> <description>Adamsync configuration file for Riverdale.edu</description> <security-mode>object</security-mode> <source-ad-name>valdez.myschool.edu</source-ad-name> <source-ad-partition>dc=myschool,dc=edu</source-ad-partition> <source-ad-account>adamsync</source-ad-account> <account-domain>myschool.edu</account-domain> <target-dn>dc=myschool,dc=edu</target-dn> <query> <base-dn>ou=xppeople,dc=myschool,dc=edu</base-dn> <object-filter>(objectClass=*)</object-filter> <attributes> <include>objectSID</include> <include>sourceObjectGuid</include> <include>lastAgedChange</include> <exclude></exclude> </attributes> </query> <user-proxy> <source-object-class>user</source-object-class> <target-object-class>userProxy</target-object-class> </user-proxy> <schedule> <aging> <frequency>0</frequency> <num-objects>0</num-objects> </aging> <schtasks-cmd></schtasks-cmd> </schedule> </configuration> <synchronizer-state> <dirsync-cookie></dirsync-cookie> <status></status> <authoritative-adam-instance></authoritative-adam-instance> <configuration-file-guid></configuration-file-guid> <last-sync-attempt-time></last-sync-attempt-time> <last-sync-success-time></last-sync-success-time> <last-sync-error-time></last-sync-error-time> <last-sync-error-string></last-sync-error-string> <consecutive-sync-failures></consecutive-sync-failures> <user-credentials></user-credentials> <runs-since-last-object-update></runs-since-last-object-update> <runs-since-last-full-sync></runs-since-last-full-sync> </synchronizer-state> </doc> Tag: Empty Subject in outlook Tag: 125228
  - 19
    - servers AD computer name and authentication Hello- I have a simple question that I just cant remember the answer to. I am restoring an image of one of our servers that is on our domain to a different piece of hardware using acronis universal restore. If I do this and when I fire the system up on different hardware am I going to run into problems with the active directory computer account? I am going to do this because this server has had a hardware failure and it will be a few days before a replacement can arrive...so I guess a follow up question would be when I restore an image from the temporary one back to its "home machine" am I going to run into any issues with the AD computer account then? Thanks! Tag: Empty Subject in outlook Tag: 125227
  - 20
    - windows server 2003 AD deleting a site Hi, I have the following scenario: Site A, Site B and Site C they are all connected to each other via fibre optic, site A is the master, it has the 1st AD, the exchange server 2003, site B and C are the branch offices so only 1 server (domain controller) there. i am about to move all the servers in site A to site C, is it better to run DCpromo to remove AD in the Site C server first or can I just delete the site from the Active Directory Sites and Services? the thing is that I will be changing the IP address of Site C to be same as Site A. I'd appreciate any suggestion. Thanks, Evans Tag: Empty Subject in outlook Tag: 125222
  - 21
    - Specify a path for installation MSI Hello, I would like to install a package MSI to my users in a folder located in D: drive. How to indicate this path in GPO? Thanks Tag: Empty Subject in outlook Tag: 125210
  - 22
    - How to Block Specific Web Sites Using AD / Group Policy I'm having limited success blocking the web proxy site https://kproxy.com. I've tried blocking by URL, all of the 17 IP addresses, etc. Anything I can do within Group Policy to block that site and all of its 17 web servers. It would be something akin to a hosts file on steroids which could be applied to all computers. Tag: Empty Subject in outlook Tag: 125209
  - 23
    - Migrating Schema Extentions with AD Groups I have a question and I hope it makes some kind of sense. My company has our application tied into AD. We perform a schema extension and then a security group known in our application as a "role" is placed in a OU. The only way to modify a role is within our application and you can define what role has rights to do certain things in our application. Next you can define the users attached to that role either through our application or within AD by making that user a member of the security group. I need to migrate the users, their passwords, and the groups they are assigned. I can do this with ADMTv3 but how can I migrate the schema extensions tied to those "roles" aka security groups. If I use ADMTv3 when I launch the application the roles are empty. Unfortunately I did not write the code so I have no idea how this works with the AD Schema extension. I simply run a script in new domains to create the extension. I must migrate however because this customer has created several of their own extensions now. I have domain X and Domain Y Domain X=Bad Domain Y=Fresh and New The wrong people had control of domain X and this is why we are migrating everything to the new domain and dissolving domain X. Tag: Empty Subject in outlook Tag: 125206
  - 24
    - Domain Name on Install of AD I'm finally moving my NT 4.0 SBS to Windows 2003. We have a small network with one internal domain "NTDOMAIN" (not ntdomain.anything). I have DNS running on a Windows 2000 server. I'm a little confused as to what i'm going to end up with when I switch us to the Windows 2003 Server. Because the SBS server hardware will not handle an upgrade, i'm going to install NT 4.0 server on a new box and upgrade it to Windows 2003 and retire the SBS server. I'm walking through the steps of the install to ensure i have all my ducks in a row prior to the install. When i get to installing AD I understand it will ask me to create a new domain (Domain in a new forest).. 1. will it use "NTDOMAIN" at this point? 2. When it asks me to type full DNS name of the domain. do I use ntdomain.loc (we don't have a registered name and have no need for one) 3. Can i change my domain to something else "newdomainname.loc" at any point or am i stuck with NTDOMAIN.loc? appreciate any help... not very good with domain name stuff. Diane Tag: Empty Subject in outlook Tag: 125205
  - 25
    - 2003 to 2008 Question My existing environment is AD 2003 native, with Exchange 2003 SP2. We have 11 domain controllers across 7 sites. My plan is to build a 2008 server then forest and domain prep the 2003 AD to 2008, then dcpromo the 2008 member server to a DC. We would then gradually, â??leap-froggingâ?? replace each 2003 DC at the 7 sites after a 2008 DC was brought online ad replicated to. We also are going to install Exchange 2007 SP1 on 2008 during this time. I basically justed wanted to know if anyone has experienced any â??gotchaâ??sâ?? while running mixed mode 2003/2008 with Exchange 2003 and Exchange 2007 running at the same time while slowly transitioning? Tag: Empty Subject in outlook Tag: 125204

Can I prevent the userâ??s send any outlook mail to otherâ??s without subject by
apply a group policy in AD ....

Top