Information wants to be free!
The extensions to Active Directory Users and Computers for Exchange 2000 and Exchange 2003 have a task called Remove Exchange Attributes that is accessible from the Exchange Tasks menu. It removes all Exhange related attributes from the objects on which it is run. This is useful when an object is in an inconsistent state, as …
Continue reading “‘Remove Exchange Attributes’ á la PowerShell”
Sometimes it is useful to be able to search for objects in Active Directory based on when they were created or changed, or both. The two attributes that hold this information are whenCreated and whenChanged, and they are present on all AD objects. You use these two attributes like any other in you LDAP queries, …
The Active Directory GUID converter is now available as a stand-alone HTML Application (HTA) from the download page. http://www.simonsen.bz/Download/guid.hta
A long time ago I created an HTML based application to calculate the numeric values required to hide specific combinations of drive letters through Group Policy. I also made a custom template file where you could enter the numeric value directly instead of editing the templates that came with Windows. I used to host these …
Continue reading “Availability of the Group Policy Hide drives calculator and associated template”
This nice error popped up when trying to install ADMT v3 on a Windows Server 2008 x64 server: ————————— ADMT Installer ————————— The Active Directory Migration Tool v3 must be installed on Windows Server 2003.
Trying to install a new child domain in an existing forest I received this error from DCPROMO: ————————— Active Directory Installation Wizard ————————— The wizard cannot gain access to the list of domains in the forest. This condition may be caused by a DNS lookup problem. For information about troubleshooting common DNS lookup problems, please …
What are Restricted Groups? The Restricted Groups security setting in Group Policy allows an administrator to define two properties for security-sensitive groups (“restricted” groups). The two properties are Members and Member Of. In short it lets an Administrator decide which security principals are members of a restricted group, and which groups the restricted group is …
Continue reading “Working with Group Policy Restricted Groups policies”
No, but I just had to try: I wonder if this is just a mock requirement or if Enterprise edition really has any features that are required by IIFP, probably the former. Morgan
DCDiag (included in Windows Server 2003 Support Tools) reported a stange error at a site the other day: C:>dcdiag Domain Controller Diagnosis Performing initial setup: ***ERROR: There is an inconsistency in the DS, suggest you run dcdiag in a few moments, perhaps on a different DC. This was accompanied by the following event in the …
When you search Active Directory you have the option of asking the server to return search statistics for your query. This is done by adding an LDAP control to your query. The control is 1.2.840.113556.1.4.970. I was using LDP to test this out on my test forest. The forest runs Windows Server 2003 DCs and …
Continue reading “Returning Search Statistics from Active Directory”