Thread
Last Author Messages read/total Date
Muneer Baloch0/1 12 Oct 2010
Hi all,
I am trying to move mailboxes from a Exch2k7 server to another Exch2k7
in a seprate forest. But when I run the move-mailbox command I get an
error that the source mailbox cannot be opened. I had moved the user
accounts using ADMT to the new forest . After Moving I made sure that
the accounts are enabled,not expired & is visible in th Global Address
List . But even when I make
RC0/2 12 Oct 2010
I setup an RODC is a remote site but I am noticing client machines
that are in that site are not using the RODC for login. If login one
of the servers and do c:/echo %logonserver% I get the domain
controller is the remote site.
The RODC
Tim0/1 11 Oct 2010
I have two domains abc.com and xyz.com both at Domain and forest
functional level of Windows server 2003. I have created a forest trust
between the two domains. Users in abc.com can use a pc in xyz.com to
logon to domain abc.com and vice versa. I have a created a domain
local group in abc.com but when I try to add members from xyz.com and
change the location to xyz.com I
Sam Kidman0/3 10 Oct 2010
Hello,
We are at our wits end and help would be appreciated!
We recently had to force remove a win2k domain controller which also had a
win2k3 domain controller. After removal we had to clean up the old references
to
the win2k server.
We have resolved many of the normal issues by running netdiag /fix and dcdiag
/fix but are still left with the following error from netdiag:
baiju0/1 07 Oct 2010
tree leafs wrote on 03/12/2010 05:48 ET :
> Hi,
> from ADUC I can export displayed lists including those from "saved
> queries".
> However, if I use "find" then "advanced" to compose a
query
> the resulted
> list cannot be exported as there is no "action" -> export ...
> options.
> Is there a way to export the list in this case?
> Thanks.
>
There is
Scott Burkhardt0/1 06 Oct 2010
Have any of you found a solution? Thanks for any help.
> On Friday, January 23, 2009 3:44 AM pizz wrote:
> I have a very strange problem in one of my child domains.
> I have a child domain with windows 2000 domain controllers and windows 2008
> domain controllers. When I create a new user on the windows 2008 domain
> controller and look at the environment tab the user???s active
bug menot0/1 06 Oct 2010
You can install SFU in an AD environment for get the UNIX tab, isn't necessary install it before, so you are wrong when you say that only is possible in a new AD.
+ info: http://satish-linuxbug.blogspot.com/2008/10/qmail-ldap-ad-integrate.
Peter J. Dickas...0/1 05 Oct 2010
I'm in AD connected to a specific DC and I go in to edit a policy. In Group
Policy Editor it shows I'm connected to a completely different DC. I see no
ability in the GPOE to connect to a specific DC like I can in AD Users and
Computers and I don't understand why it is going out to another DC willy
nilly. How can I force GPOE to edit policy on a specific DC?
thanks everyone
davidhazar0/1 01 Oct 2010
Budi wrote on 02/03/2009 08:05 ET :
> Dear Expert
>
> We are using windows 2008 64 bit Enterprise, we are trying to limit
> concurrent user login using limit login but unfortunetely always fail.
> my question is straight simple, is it possible to use limit login on windows
> 2008 64 bit Domain, if so please advice how to complete the task.
> need your respon asap, my bos is always asking me
>
David Hazar0/1 30 Sep 2010
Not sure if this posted the first time or not, but even though this is an old issue, I thought someone might benefit from this article I wrote on using Limit Login with x64 machines:
http://davidhazar.blogspot.com/2010/09/microsoft-limit-login-and-login-scripts.html
> On Thursday, August 28, 2008 6:39 AM prakas wrote:
> Hi,
>
> I have successfully installed LimitLogin at my
David Hazar0/1 30 Sep 2010
I know this is an old issue, but I figure someone might benefit from this information. Here is an article I wrote on how I was able to run Limit Login on x64 machines:
http://davidhazar.blogspot.com/2010/09/microsoft-limit-login-and-login-scripts.html
> On Thursday, August 28, 2008 6:39 AM prakas wrote:
> Hi,
>
> I have successfully installed LimitLogin at my client???s site.
sohail malik0/1 28 Sep 2010
Gents,
I have similar situation where I need to raise my domain/forest level to 2003 but I do have two 2008 Dc's if raise it would that effect 2008 DC's
Sohail
> On Saturday, March 22, 2008 10:44 AM SC77Jef wrote:
> I have an existing single 2003 Domain Controller. I want to add an additional
> domain controller to replicate AD with the 2003 domain controller for fault
>
Buck Turgidson0/1 24 Sep 2010
If I sum the bytes sent/sec and bytes rec'd/sec, should that total to no
more than 100mbps, which works out to be 13107200 bytes? In some cases, I
get to about 140% of that number.
I am trying to analyze a network bandwidth issue on our server.
Thanks.
tom120100/1 24 Sep 2010
We want to keep our ADUC from becoming more cluttered.
We have a Citrix environment with many networked printers.
We want to set up 1 AD group to correspond to each printer, assign
users to each printer, then within Citrix assign these groups to use
the printers within Citrix.
People can be in multiple printer groups, since they move around.
The idea is to grant people permissions to use
nik nick0/1 24 Sep 2010
Active Directory Plus allows you to list groups dependent on any number of members, and then export the data to txt or excel file, or send it directly to your printer.
It can be downloaded from http://www.vision-it.org.
> On Thursday, March 29, 2007 11:08 AM RLG wrote:
> I'm trying to create a query on AD 2003 DC that lists any group that has no
> members. I found this but it doesn't
Guido Lavespa0/1 21 Sep 2010
I'm trying to delete some old computers object from my AD 2008, but
for two of this I receive the following error:
"Object %computername% contains other objects.Are you sure you want to
delete object %computername% and all of the objects it contains?"
I saw trough ADUC -> view -> "users, contacts, groups, and computer as
container" that this computer contains the follow:
Computer1 ->
Kenny D0/1 18 Sep 2010
I recently had a domain controller crash. Just prior to that
(thankfully) I created a backup DC in VMWare. After the PDC crashed,
I thought I would just boot up the VMWare version and all would be
fine. No joy. The domain will not show in the SQL Server Management
Studio Locations when trying to create q Windows login to SQL server.
When the Virtual DC boots up, none of the AD tools
nospam@nomail.i...0/1 15 Sep 2010
We are about upgrade our two (2) DCs. We currently run a 2k3 domain,
but want to upgrade to 2k8 later this year. We have approx 300
computers & 300 users. If anyone has any recommendations/thoughts,
we'd appreciate it.
Thanks in advance,
Tom
April Jones0/1 15 Sep 2010
We just experienced the same issue with one user. Turned out the user set up his phone to synchornize his Outlook Calendar to his phone via hard cable, which he didn't do regularly so when his AD password changed something was still set in Outlook with old password to synch with phone. We removed the phone from Exchange and everything is now working for the user.
> On Tuesday, June 17,
dontinou0/1 14 Sep 2010
Hi,
The <CAName>.edb file is about 2.5GB right now. Seems pretty large to
me, is that an acceptable/manageable size? Is there any way to shrink
it or see what is making it so large? Looking inside the
Certification Authority MMC I don't see nearly that much data.
Thanks.
Robert Garito0/1 10 Sep 2010
That has to be absolutely the lousiest solution EVER from Microsoft....
The download is not available at the link--one must CALL Microsoft to receive the file or download a 600mb + TRIAL VERSION to get a 100k file out of it. What are they trying to protect!?!??!?!
By the time I get through to Microsoft's tech support, it's be quicker for me to drive all the way across town (and I live
TimParker0/1 09 Sep 2010
I am working on fixing some issues with our network. A quick rundown
of the topology....
We have multiple locations that each have at least one DC, our main
location has 2. I have users that are solely based in one location so
there profiles are stored in a Share on the DC called USERS. This is
the easy part.
I also have users that either A. work with a laptop so they can work
from
Yekini0/1 08 Sep 2010
Hello Everyone,
My name is Yekini and I have been studying Active Directory 2008 for some time now and so far, everything has been going great; until I started studying and trying to master inter-site replications in Active Directory Sites & Services. Yes, we have intra-site and inter-site replications. In a nutshell, I completely I understood the whole concepts and configurations that needs
Rush0/1 31 Aug 2010
We have 2 domains Windows 2003 R2 with Intransitive 2 way Trust(Domain
A and B ). We want to migrate all the domain users and its mailboxes,
groups security/distribution, SIDs groups from Domain A to B. What is
the tool i can do this in one shot?
ADMT 3.0 is supporting for only Ad users only, not the mailboxes isnt
it ?
Thomas0/2 30 Aug 2010
Hi all,
I am just struggling with a bug which emerged after moving my asp.net
application to another server.
The server came preinstalled, probably with some security modifications. I
can query list of users only from domain security groups I belong to.
Example:
(&(objectCategory=person)(objectClass=user))
- correctly returns all the users
but:
PMC10/1 30 Aug 2010
Hi,
I look after a Win2003 Domain that is Trusted (one way external) by a
completely separate Win2003 forest. In order for the Admin in the
Trusting domain to access my AD security groups and to assign those
groups to the Access Control Lists of various resources within the
Trusted domain I need to create an ID within my domain that he can use
to log on.
What are the minimum access
Matt0/1 25 Aug 2010
Currently, I have 3 AD servers, one forest, one tree, one site, very
simple configuration. My main AD server holds all of the FSMO roles.
Until now, there hasn't been a need to have any sort of sync or
network connection between our office (corporate) and any of our other
offices. The closest office to us (700 miles) just lost their IT
Director, and we've been asked to support their
8os.8@invalid.n...0/2 20 Aug 2010
Experts,
I got a user who got "access denied" if he opens the folder directly
using UNC path. However if he navigates thru "network places" then he
has no problem at all! Needless to say, his permissions are set
properly on the target folder.
He can map to that share fine, but again if he tries to open the
driver letter, access denied.
Can any one explain why so? What's the
Riccardo0/6 08 Aug 2010
If I put my Win XP client into Microsoft domain, it will synchronize
to my domai controller ?
Where I can verify this configuration to be sure it will take time
from DC and not external source ?
maurie aker0/1 04 Aug 2010
I have the same problem . On a windows folder , I need to give write only access to users to create files but do not access (read, list or modify ) the files created previously. I tried using security options of the folder and deny access to all atributes other than write . However I could not accomplish what i wanted . I created an excel file in the folder but other users can read the file
PArveen Patel0/1 03 Aug 2010
I am trying to setup referral using 2 ADAM instances on two separate windows box. I have following two instances
One system has instance1 with DN CN=Users,DC=rtp,DC=raleigh,DC=ibm,DC=com
on port 389 and 636
and another system has instance1 with DN CN=roles,DC=ibm,DC=com
now I want to create a referral from the first one to 2nd one.
How do I start on it
drm wrote:
Re:
Gray Matter0/9 29 Jul 2010
Periodically in our Windows 2003 R2 AD implementation we have an issue with
workstations that get this message when trying to login.
I know you can simply rejoin them to the domain, and that works
swimmingly... But why does it happen?
Chris M0/4 29 Jul 2010
Hi guys,
I need some help with Server 2008 GPOs. This may be a noob question so
be gentle!
I have various servers in OUs and need to prevent users accessing
other servers via a logged on server.
e.g.
User1 logged onto Server A in OU A, must not be able to access Server
B in OU B from Server A, but can logon to Server B directly.
Would dedicated logon accounts be better?
Any
Anders M0/2 28 Jul 2010
My company has about 150 users of which 100 of them never access the
Corporate network. These are Webmail and Smartphone only users (they do not
have company issued PCs). The only reason the have an account in AD is for
email access. So I am looking for recommendations for password change
procedures, policies, and tools. We run Exchange 2007 and there is a
password change feature
Chris M0/2 27 Jul 2010
Hi,
I have over 8 years of IT experience but very new to the Data Center
space and have 3 questions. If someone can answer, I would really
appreciate!
You can consider these questions more of a brainstorming ideas.
1. If a facilities capacity is re-classified as 5 MW lower than it was
previously, what needs to happen here?
2. We need to expand Network capacity at a facility by 2
JDess0/1 26 Jul 2010
Hello. We are looking into updating our GPO infrastruture to the ADMX
file format with a Central Store.
My understanding is that ADMX Files are needed for Windows 7/Vista/
Windows 2008 policies. If that is true, can ADMX files be used with
the standard (non-central store) infrastructure?
And... in a large international company, is it best to use a central
store or store policies on
Charles0/5 26 Jul 2010
I have done a frustratingly silly thing: I added the AD DS role to a
standalone Windows Server 2008 R2 server, creating a new domain in the
process and making the server a DC. SQL Server 2008 was running on the
server at the time. I managed to get SQL Server running again, but now I
want to remove AD from the server.
When I run dcpromo, I'm prompted to say whether this is the last DC
Pete@UNKNOWN, U...0/1 25 Jul 2010
See http://www.petenetlive.com/KB/Article/0000301.htm
Double wrote:
server rejecting replication requests
05-Sep-07
I have 6 windows 2k3 servers running AD and all were working fine until, i
believe, one of them had a network card failure. This caused the server to
go off line for a few days. Now that the network is up and running i find
errors in replication between it and
Pete@UNKNOWN, U...0/1 25 Jul 2010
See http://www.petenetlive.com/KB/Article/0000301.htm
Double wrote:
server rejecting replication requests
05-Sep-07
I have 6 windows 2k3 servers running AD and all were working fine until, i
believe, one of them had a network card failure. This caused the server to
go off line for a few days. Now that the network is up and running i find
errors in replication between it
JDess0/1 22 Jul 2010
Hello.
I am currently managing a very large domain with all 2003 DCs. My
intention is to replace all of the 2003 DCs with 2008. I would like
to use fresh DC installs, no in-place upgrades (too messy)
As each 2003 DC is migrated to 2008, I would like to keep the same IPs
(so DNS addresses do not have to be changed on clients) and use the
same hardware.
My idea to complete the
TimParker0/1 21 Jul 2010
I have a question about something that may be causing me some issues.
I have roughly 20 laptop users that can either work from home (VPN),
be in their "main" office or work in a different office. We currently
have 4 offices that are connected together with site-2-site vpns and
each has its own DC for logins.
Currently for users that are only in one office, their profiles are
stored in
Cherry0/1 16 Jul 2010
Here i have gathered some of the most important interview questions on
Windows Active Directory Services. These are related to Windows 2003
AD environment. Please click on the following link to see them
http://www2.isupportyou.net/2010/07/some-windows-active-directory-interview.html
mac0/4 14 Jul 2010
Hi,
Does anyone know how I can allow a certain user to edit GP though the Group
Policy Management console? I can only seem to do it if I grant the user to be
a member of domain admins. (Using Win Server 2008 Ent R2).
Any info is appreciated. Many thanks.
Mehds
Syed Khairuddin0/2 11 Jul 2010
I have a Dell laptop running Windows 7.
For the last couple of days, I have been seeing a blue screen each
time I attempt to resume operating the laptop from a "Hibernate"
mode.
I see the following message displayed:
IRQL_NOT_LESS_THAN_OR_EQUAL
Unexpected Shutdown
Can anyone offer any guidance for resolving this issue?
Thanks in advance.
RC0/1 07 Jul 2010
In a windows 2008 domain when i use adfind to query the
lastLogonTimestamp I get the results, but its in that tm format.
Command:
adfind -csv -b "dc=aaa,dc=domain,dc=net" -f
"&(objectcategory=persobjectclass=user)" lastLogonTimestamp
result
"CN=John
Doe,OU=ou1,OU=client,DC=aaa,DC=domain,DC=net","129046786635663532"
is there any way to get the results showing the time and date?
iautran0/1 02 Jul 2010
This is a multi-part message in MIME format.
------=mesnews_0_0702102221
Content-Type: text/plain; charset="iso-8859-15"
Content-Transfer-Encoding: quoted-printable
Hello,
(first, sorry if I make mistakes but I am not fluent ;-))
we have a strange behaviour and I dont understand why.
Here is the situation :
1. We have an old NT4 domain named MSNT and we have migrated (long
Brett Holcomb0/3 02 Jul 2010
What is Happening?
This message is to inform you that Microsoft will soon begin discontinuing
newsgroups and transitioning users to Microsoft forums.
Why?
As you may know, newsgroups have existed for many years now; however, the
traffic in the Microsoft newsgroups has been steadily decreasing for the
past several years while customers and participants are increasingly finding
Paul Bergson [M...0/21 02 Jul 2010
Hi,
I've just built a test lab which has our 2 x windows 2003 DC's in it. I
want to have a look at Windows 2008 AD so I was wondering is it best for me
to upgrade one of the test DC's to Windows 2008 or create a 3rd Windows 2008
member server and promote it?
Thanks
Paul Bergson [M...0/2 02 Jul 2010
Hello,
We need to update what font our company uses in Office Apps etc, can a GP do
this?
Florian Frommhe...0/2 01 Jul 2010
Is there a way that a Group Policy Object can be backed up on a Server Core
machine? Like we do using GPMC in a full dc. Using Powershell?
