Threads Replies Last Post 107 Pages: 1  2  3  4  5  6  7  8  9  10  11  12  13  14  15  16  17  18  19  20  21  22  23  24  25  26  27  28  29  30  >>   How to replace single domain controller in domain with a single do We are planning to replace our only domain controller running Windows 2003 x86 standard SP2 with a new server running Windows 2008 x64 standard. We have a single Windows2003 native forest, single domain, with 1 domain controller. The server to be replaced holds the all the FSMO roles. We are running Active Directory Integrated DNS on the server we are replacing. It is critical for us to... 8 12/3/2008 12:58:16 PM Managing user folders for ~1500 users? I will be setting up a shared 'USERS' folder on a large storage server for ~1500 users. We will be assigning each user a home folder using AD to which they will have modify access (SYSTEM and Administrators will have full access). These will be replicated to another server using DFS-Replication and using Namespaces. My question is, is there any simpler way to implement this other than... 7 12/3/2008 10:15:34 AM how to remove the gibberish sid after removing the trust Hello After completing the domain migration (NT to 2003), and removing the trust, how do I get rid of the gibberish sid from the resources? I tried running the security translation wizard by selecting the option "previous migrated objects" and selecting all the member servers and workstations Ive mirated and for the "Please specify what you would like to translate", I selected all the... 8 12/3/2008 9:19:22 AM Remote Domain Controllers and replication Hello all, I'm having a real issue deciding on what route to take for 2 remote sites that we have. I'll layout our setup and give my thoughts and theories on it, then if you could, give me your input and hopefully share your better ideas! We have 3 sites: WHQ Site 1 Site 2 # of users: WHQ = 10-15 Site 1 = 10-15 Site 2 = 10-15 The goal is to keep it as cheap as possible, taking... 3 12/3/2008 7:03:02 AM Another problem with Adding the Second DC Hi all I've added the second DC (DC2) for couple of hours. I only ran DCPROMO, and it installed DNS and AD at the same time. And I just checked to see if everything is replicated from DC1, everything seems ok, except Forward lookup Zone, there is nothing in there, Reverse Lookup Zone is replicated. In the lab, they were replicated fine. Should I wait for a bit longer or manually add th... 3 12/3/2008 1:09:01 AM Allow User to Remote Desktop to DC, Member Server? Is there a way to do this via Group Policy? I dont want to have to do this to every Server... 1. Using an admin account open a remote admin session to the server in question. 2. Click Start->Programs->Administrative Tools->Terminal Services Configuration 3. Click Connections 4. In the right hand pane r-click the RDP-TCP connector and select properties 5. On the permissions ... 3 12/2/2008 10:04:52 PM Browse Network Hello. We just upgraded the functional level from 2000 to 2003 and users are complaining that servers are not showin up in network neighborhood. The list that shows up is very small looks like the local subnet only. Any Ideas?... 2 12/2/2008 10:01:08 PM LDAP SASL Bind DIGEST-MD5 with non-ASCII chars in SAM-Account-Name HI! in general LDAP SASL Bind with mechanism DIGEST-MD5 works with AD (tested with W2K3SP2). But if the SAM-Account-Name contains non-ASCII chars (like german umlauts) it does not work. My test script written in Python correctly encodes the SASL username as UTF-8 before passing it to the python-ldap module (which uses OpenLDAP C client libs which in turn use Cyrus-SASL libs). Another... 4 12/2/2008 6:37:04 PM gpo scripts I use a login script to map drives for users and an auto-outlook vbs script along with a .prf file for configuring outlook for 1st time logins to a machine. We have alot of users who get transferred, etc around the city. When a new user logs into the machine for the first time (providing the workstation is just turned on or restarted) the scripts run fine. If the user just logs off an... 8 12/2/2008 6:22:01 PM Nesting groups We are restructuring out security. I have security groups that I don't want to email enable. I want to nest security groups in distribution groups. I don't want to email enable the security groups because some people on the email list don't need access to resources that the security groups have access to. I set up a distribution group with a security group as member and sent a test e... 5 12/2/2008 4:39:01 PM password expiry notification and external trust Our Domain A trusts their Domain B, in another forest. We've had a user from Domain B ask why when he signed into his Domain B account in Domain A, he is notified that his password expires in nine days, when he is not getting a notification in Domain B, and says his account password is not due to expire. I suggest that their Domain B has set their password expiry notification to seven da... 2 12/2/2008 1:44:42 PM Doc requested. Hello, I'm looking for the microsoft doc to configure a external forest with a one way trust relationship to authenticate for external forest domain servers behind a firewall (inside DMZ's) using SSO. Thx. Yt -- yellowtree ------------------------------------------------------------------------ yellowtree's Profile: http://forums.techarena.in/members/yellowtree.htm View this thread: h... 2 12/2/2008 11:17:12 AM How to find user which I've delegated some rights / tasks Hi :) How can I find to which user(s) I've delegated some rights / tasks using Delegation Wizard or the only way is to first document delegation. Also, how can I remove delegation of rights / tasks from some user ?... 2 12/2/2008 11:02:49 AM OIDs and MIBs corresponding to FSMO roles transffer Hi, Could you please give me some idea, how to get the OIDs and MIBs at the time of transferring FSMO roles? What are the OIDs and MIBs generraly we get for FSMO role transfer.... 1 12/2/2008 8:46:01 AM Migrating to a new server Migrating to a new server Hi guys/dolls I am on the verge of migrating from my old windows 2000 server to a windows 2003 server (why not 2008?) in a few days. Actually all I will be doing is creating a new active directory user database and move the data from one server to another. Also I would like to do this procedure whilst users are working on the old server without having to turn of... 2 12/2/2008 8:25:51 AM AD Sites service not replicate error when run the adprep /forest in schema master, the error the replication not complete. I tried to do manual site replicate service , it keep said access is denied and check the event log, getting event id 1586. ... 6 12/2/2008 8:20:42 AM Parent Child AD Replication Hello, I have a Parent domain with a single child domain. The parent domain is hosted at my corporate office and the child domain is being hosted at a satalite office in another city. I would like to know the best method to connect parent and child for AD replication and to allow child users to have Exchange 2007 mailboxes from my exchange server in the parent domain. Both networks a... 2 12/2/2008 8:18:14 AM client join domain Hi , I want to give my helpdesk team private right They must join a client domain without administrator right wht can i do about it ? thx... 3 12/2/2008 8:14:43 AM Domain Accounts rights Hi all, My company wants to control the account rights. Is there is any best practice of account rights controls/assignment please? Thanks in advances. ... 3 12/2/2008 8:14:18 AM "Access Denied" message when adding member server in existing AD Hello, I am unable to add new member sever i.e. Windows server 2003 to my existing AD by performing DCPROMO command. It shows "Access Denied" message even if I log in as Domain admin credentials. The member server is already added to my domain and I logged in as domain admin. What could the problem? -- Amey Abhyankar. ... 17 12/2/2008 8:14:02 AM DFS questions relating to SIS, VSS, Quotas and more I will be deploying two servers at two different offices (80 Mbps dedicated connectivity between offices). Both server builds are identical (Dell head servers and DAS enclosures) and will be installed with "Storage Server 2003 R2 SP2 64-bit". These will be used purely for storing user folders (~1500 users) which will be configured in Active Directory (Home Folder drive letter) for each u... 3 12/2/2008 7:41:16 AM To find which PC was used to change a password Hi gurus I am not an admin on our active directory but manage (Owner) of some test accounts These test accounts are used by many many people and they are NOT suppose to change the password Since I am not the admin on AD, is there a way for me to find out which account was used to change the password or which pc was used to password. I am sure there is some logging some where. DSQUERY helps?... 4 12/2/2008 6:43:12 AM Remote desktop profile My remote terminal is running on one of the DC, how can i grate a profile when the remote the user login, they only see one application icon and their network mapping. I know that not recommended to run the Remote terminal on DC, but cost constraint. ... 4 12/2/2008 2:02:00 AM Extending 2003 Schema to support 802.1x wired gpo Hello, Have been searching in internet, reading articles for a while but couldnt manage to sort this out. I want to be able to configure the "Authentication" portion of Local Area Network connections of my domain clients to implement 802.1x EAP Over Lan with PEAP via GPO. What I need is simply having "Computer Configuration/Windows Settings/Security Settings/Wired Network (IEEE ... 4 12/2/2008 1:02:01 AM Generation of keytab using ktpass in Win 2008 Hi When I use ktpass to generate a keytab in Win 2008 the application fails Log Name: Application Source: Application Error Date: 1/12/2008 7:38:31 a.m. Event ID: 1000 Task Category: (100) Level: Error Keywords: Classic User: N/A Computer: DSS-TS2.dss.local Description: Faulting application ktpass.exe, version 5.2.3790.1830, time s... 5 12/2/2008 12:40:00 AM 107 Pages: 1  2  3  4  5  6  7  8  9  10  11  12  13  14  15  16  17  18  19  20  21  22  23  24  25  26  27  28  29  30  >>