Welcome to MSDN Blogs Sign in | Join | Help

Browse by Tags

All Tags » Windows   (RSS)
Monday, August 28, 2006 12:02 AM

USMT V3 (Beta) - Including NonStandard Files in Nonstandard Locations

Occasionally, when working with the User State Migration Tool, it may be necessary to force the scanstate and loadstate functions to find file types that are not necessarily part of a user's standard profile. One particular customer I've been working
Posted by anthonw | 0 Comments
Wednesday, August 23, 2006 10:09 PM

Auditing DNS Record Entries (or deletions)

I got an unusual request from a customer today. She is in an environment where everyone is currently a domain admin (not a good thing). Although they are taking my advice and moving to a least priviliged scenario, things are sometimes slow in federations.
Posted by anthonw | 0 Comments
Filed under: ,
Saturday, August 12, 2006 4:37 PM

Anything But Native Mode

I seem to find myself having the same conversations with customers, over and over, regarding the risks associated with raising the functional mode of the domain or forest. I could name (but I won't) 6 customers in the past few years that developed expensive
Posted by anthonw | 1 Comments
Filed under:
Wednesday, August 02, 2006 12:29 AM

How does Authentication Work Cross Domain?

A question that comes up frequently involving federated customers is how does an organization need to configure its firewalls to allow users in a trusted, but not fully trusted, domain to access their resources. Consider the following scenario: [WEB RESOURCE]---|---FIREWALL---WAN---FIREWALL---|---[USER
Posted by anthonw | 3 Comments
Filed under: ,
Saturday, July 22, 2006 12:27 AM

ADMT, User Profiles With Unusual Requests

I was approached with a rather unusual request. My customer has two Active Directory domains: DOMA and DOMB. The workstations would remain in DOMA, but the users and associated mailboxes would reside in (or be moved to) DOMB. In addition, they needed
Posted by anthonw | 0 Comments
Filed under: ,
Thursday, July 20, 2006 12:39 AM

Getting Started with Compute Cluster Server

If you're an infrastructure person, you'll likely be involved in the coming months or years with one of Microsoft's newest offerings on the Windows Server platform. The Compute Cluster Edition (CCE) of Windows is a new version of Windows Server 2003.
Posted by anthonw | 1 Comments
Filed under:
Thursday, June 22, 2006 2:19 PM

Active Directory LDAP Queries

Active Directory Users and Computers (2003 version) provides a feature called Saved Queries that takes advantage of LDAP queries to find objects in Active Directory that might meet a specific condition. When I am working with customers, I am often surprised
Posted by anthonw | 1 Comments
Filed under: , ,
Thursday, June 22, 2006 1:43 PM

The Centralized Mailbox Micro-manager and Control Problem in Federations

I am working with a politically federated customer inside a single domain. So far, they've taken Microsoft's recommendations quite well regarding delegation and centralization, but they are running into a problem that I feel is worth sharing. Email is
Posted by anthonw | 0 Comments
Filed under: ,
Saturday, March 19, 2005 10:06 PM

Automating Port Query (portqry.exe) for Testing Connectivity

Recently, I was working with a federated customer that wanted to deploy Exchange 2003 in an environment where mailbox servers and routing bridgeheads would be separated by firewalls. As part of this effort, it was my job to determine that we had full
Posted by anthonw | 0 Comments
Filed under: ,
Friday, March 04, 2005 11:53 PM

Political Forest and Domain Design

In my work with a large number of federated customers, the unavoidable component of Active Directory design is the age-old question of "How many forests do I need?" This is simple to define, but challenging to discuss in the board room. There are three
Posted by anthonw | 2 Comments
Filed under: , ,
Thursday, February 24, 2005 12:15 AM

An OU Can Be A Spoke, Too

If you've read any of my other posts, I deal with a number of government organizations at the state and local level helping them deploy Microsoft's infrastructure products. One area where my customers pride themselves is in the autonomy they've created
Posted by anthonw | 1 Comments
Filed under:
Wednesday, February 23, 2005 11:24 PM

Private Namespaces In Active Directory

For purposes of this post, a private namespace refers to the DNS name of the forest root in Microsoft Active Directory. A private namespace is essentially any DNS name that is not registered; it can even be a registered name (assuming you never want to
Posted by anthonw | 2 Comments
Filed under:
Tuesday, February 22, 2005 11:50 PM

The Federation Firewall Boundary

As a specialist by trade in both technology and financial audit, internal control structures and security play an important role in the work that I do. I came across Steve Riley's Death of the DMZ over broadband the other day and his thesis really hit
Posted by anthonw | 2 Comments
Filed under: ,
 
Page view tracker