What is the deal with KB 2260240 and its cousin KB 2742596–MS13-004?

The purpose of this particular blog post is to try and clear up some of the confusion swirling around about these two KBs and describe the circumstances under which one can expect to encounter the particular issue that KB 2260240 was designed to fix.  What I am hoping is that this blog post will help…

1

Setting Active Directory Object permissions using powershell and System.DirectoryServices

There are times when you have the permission to set discretionary access control (DACL) entries, however you are not  a member of the domain administrators group.    However, when you use the System.DirectoryServices namespace, you are unable to write the DACL entries back to the Active Directory object.  By default, the Active Directory attempts to write…


Working with Group Policy Objects Programmatically – simple C++ example illustrating how to modify a registry based policy

In my last bog post: http://blogs.msdn.com/dsadsi/archive/2009/07/23/working-with-group-policy-objects-programmatically-determining-registry-values-to-enable-disable-set-a-specific-policy.aspx I discussed an empirical method to determine the values one needs to write to the registry to enable/disable/set a registry based group policy.  In this post, I will provide a simple C++ function that illustrates how to write the key information into the GPO. For now, lets concentrate on…

10

Working with Group Policy Objects Programmatically – Determining registry values to Enable/Disable/Set a specific policy

Greetings! Over the past few months our team has seen a number of customer requesting information on how to programmatically/create/edit/read registry based GPO information.  I took some time to combine a couple of samples into one that illustrates a number of these concepts. The first question one must answer when working with a registry based…


Cross-Forest – IADsGroup::Add receiving error 80072030 "There is no such object on the server"

Problem:   When running a script to add a user from forest Fabrikam, to a domain local group in forest Microsoft, you will receive an error as follows: 80072030 “There is no such object on the server”This is a snippet of the code we tried to perform the procedure:=================================================set objGroup = GetObject(“LDAP:// microsoft.com /cn=Domain Local…