Threads Replies Last Post 7 Pages: 1  2  3  4  5  6  7   Enable the created certificate Template Hi there, Please help me. I have created a new certficate template by duplicating user template and edited according to the application I want use. To enable this new template, I have gone to Certification Authority ---->(Server) --->Certificate Templates ---> New, then "Certificate Template to Issue". In the popup window with available certficates, the created one is not ther... 3 19.06.2007 23:43:12 EFS blocking users from accessing their encrypted files When we upgraded the server from Server 2000 to 2003 there were some user documents that were encrypted (not sure if before or after the upgrade). The users are now unable to decrypt the files, copy or even read them, and even though I took ownership of one of the files (as a test) as the domain admin, neither can I. The error message when trying to decrypt is: "An error occurred applying... 2 19.06.2007 23:05:56 Auto-enrollment setting at different OU levels We have stumbled across something a little bizarre when trying to set auto-enrollment for computers at levels below the domain object. What I mean, is that if we set a GPO (say in the default domain policy) at the root of the domain to autoenroll, then computer objects happily accept the cert that is automatically given to them. However, further down, if we set a GPO (say at a server O... 1 19.06.2007 20:59:02 scheduled task I log in as administrator. It seems the only way I've been able to get my bat files in scheduled tasks to run reguraly is to check the box "On resume, display Welcome screen" in screen saver and let windows log me out. If I log out normaly as administrator I will sometime get the 0x4 in the task scheduler. ... 5 19.06.2007 06:07:45 June 21st: Q&A with Security MVP Experts Q&A with the Security MVP Experts We invite you to attend an Q&A with the Microsoft Security MVPs. In this chat the MVP experts will answer your questions regarding online safety issues such as phishing, spyware, rootkits as well as server related topics. If you have questions on how to protect your PC, please bring them to this informative chat When: Thursday June 21st Time: ... 1 18.06.2007 20:11:43 Intermittent Kerberos authentication failure We're running into intermittent authentication failure with Kerberos with our web application that results in 401 Unauthorized errors. Here is an overview of the environment: .. The webapp is running on server A. It is configured for impersonation. The worker process is running under a service account (which is a domain account) and is enabled for delegation. SPN is setup appropriately & A... 6 16.06.2007 10:55:41 2K3 Cert Svcs gives invalid policy error on OpenSSL gen'd cert req Hello Micorsoft security gurus, I'm currently trying to test a PKI architecture system where I have an OpenSSL-based UNIX SSL client and server and a Windows Server 2003 Standard Edition with Certificate Services for the CA. If I generate a PKCS #10 PEM and use the COM Interop in C# to submit and retrieve the requested certificate programmatically, I can only get the error: "The certifi... 5 15.06.2007 23:06:35 Radius server in a DMZ, how to authenticate AD users ? Hello, we have a wifi project and we would like to authenticate Active Directory users. Is there a way to add the Radius server in a DMZ without being member of the AD domain and authenticate the wifi users ? Do you know basic secure infrastructure for such a situation ? Thank you -- Pascal ... 10 15.06.2007 17:31:45 DHCP Restrictions Is it at all possible to get windows server 2003 to actively refuse a client machine that isnt connected to the DC for example we have a sbs 2003 server with dhcp so we have 8 computers on the domain and have usergate proxy server installed also. the issue is what can be done with either the existing os or 3rd party software to stop people plugging in a laptop that registers with dhcp and all... 3 15.06.2007 13:20:00 Write but no overwrite? I have recieved an odd request. Basically what is desired is the ability for a certain user to write files to a directory but not be able to delete or overwrite those files. Is this possible? The machine in question is running Server 2003. I was told this had been the case in the past but am finding no evidence of it and am having a hard time believing it. ... 10 14.06.2007 20:55:47 need some help on this one lets just start off by saying I'm a developer and no longer a server admin BUT I'm doing some server admin work to help out. Ok, on one of my Windows 2003 servers I keep getting this error in the event viewer and I've done some research on it and I'm getting information from spy ware, a virus to something Microsoft uses to even a worm. Can anyone shed some light on this for me? ... 5 14.06.2007 19:54:11 Strange effect with inheritence flags on Windows XP and NT 4 This is all very bizarre... NT 4 server running under NT 4 domain called SERVER1 with an E: drive. Open \\SERVER\E$ from a Windows XP PC and create a folder called Test. Look at the permissions from Windows XP and the folder doesn't appear to be inheriting it's permissions from the parent - the two permissions shown on there are not greyed out. Now log to a Windows 2003 server (termin... 3 14.06.2007 07:50:44 hacker attempts? Windows 2003 Server R2 standard edition with SP2, sitting behind SonicWall firewall. Recently, there are a lot of Alerts from SonicWall. Such as "IPSec Authentication Failed" and "IPSEC Replay Detected" and some "Sub Seven Attack Dropped" It appears that the source IP address causing the IPSec Authentication Failed messgae is from the same source IP address. I do not recognise th... 2 14.06.2007 05:34:47 Disallowing console login Is it possible to disallow console login for certain users/groups? By console login in mean using RD like so: mstsc /v:box1 -console The scenario is that I would like for only one user on the box to be allowed to login to the console (session 0). This is because the box is running an application that unfortunately cannot be run as a service, thus we need to preserve the console login a... 3 14.06.2007 02:16:02 windows firewall question (multihomed system) windows server 2003 R2 sp2 question about using firewall.cpl with a multihomed server. Not talking about typical setup with RRAS basic firewall and an 'internal' and an 'external' interface. easier said with scenario: server with 2 (or more) NICS. Server is not a router and not providing NAT of any kind. Just a server with 2 nics. Lets say each of the nics are connected to a separat... 3 13.06.2007 14:55:40 firewall profiles and individual interface exceptions 1) when host firewall is enabled (server 2k3 R2, sp2) and computer is a domain member, are the standard and domain profiles combined or is it only the profile listed as current thats in effect? (I'm assuming they don't combine, but am not positive, so looking for verification) 2) also, I'm assuming when you make exceptions on individual interface (advanced -> settings button) that th... 1 13.06.2007 14:45:24 disk full Hi All, Sorry if this is the wrong group but I wasn't sure where to post it.... What event is logged in W2K3 when a disk is below 10% free disk space. I found http://support.microsoft.com/kb/112509 that shows how to configure it in 2000 and our MOM alerts now work fine with those servers but I need to do the same for the W2K3 servers and I can't find which event I need to monitor. ... 3 12.06.2007 21:08:11 Resetting administrator password Dear All, a customer of mine have a WIN 2003 Small Business Server and he has forgotten administrator password and doesn't have an equivalent priviledge account. Please, could anyone give me any ideas to resetting password avoiding complete re-installation? Regards Alberto Brivio ... 5 12.06.2007 17:57:10 Spectro Pro Detection Does anyone know if there is a product that will detect if there is a monitoring software such as Spectro Pro on a system? I some conserns that a recently ex-Network Admin might have installed such a product. http://www.spectorsoft.com/products/SpectorPro_Windows/index.html Thanks, Mark ... 1 12.06.2007 15:57:32 clients separated from DC by firewall straightforward question - I have a range of PCs that are separated from their domain controller by a PIX. I need to know what ports are required for me to join these clients to the domain. the doc 'Active Directory in Networks Segmented by Firewalls' leads me to believe I need: 445 (DS) 88 (Kerberos) 389 (LDAP) 53 (DNS) assume both TCP and UDP for the above. The problem is I... 9 12.06.2007 07:34:53 FSRM remote management permissions Does anyone know how to set permissions so that a user not in the Administrator group can remotely open up FSRM mmc and manage quotas and file screening for a file share. ... 1 11.06.2007 15:28:23 protect admins account Hi! How can I protect admins account from lock out in case of external intrusion? What methods MS recommend to protect admins password and accont? Regards! ... 3 11.06.2007 11:48:02 Block a Win2k3 username from the internet Hi guys, ALL i want to do is block a windows username from accessing the internet, sounds simple i know. but how the hell do you do it? Cheers Paul ... 7 09.06.2007 08:59:52 Use Windows 2003 CA to create a web server certificate with alternative DNS names Simple issue, based on exchange server. Exchange requires usage of SSL. It uses a self signed certificate, which we do not really like. Users access the exchange system using a short name in the browser, when they access OWA: https://exchange/. Outlooks uses - thanks to automatic confuiguration - the FULL name (https://exchange.company.local/). Now, this is seriously crap. The IIS m... 5 09.06.2007 08:58:49 Windows Server Baseline Security - IE security warning Hi, I have installed Windows Server 2003 member server baseline security on the server. Users at their client end get the IE security warning where it does not trust the site and they have to add that site to their trusted site list. Figuring out where I could find the settings so I can turn this off. I would appreciate if experts could let me know. thanks in advance... 3 08.06.2007 20:47:11 7 Pages: 1  2  3  4  5  6  7