Understanding and Managing the Certificate Stores Used for Smart Card Logon

Recently I was onsite helping a customer clean up some certificates related to smart card logon.  One of the things I find challenging about PKI and specifically about smart card  logon is remembering how and where to publish certificates.  It seems like every time I work on an issue related to smart card logon and…

11

Configuring SMS to Work on Workgroup Computers and Computers in Other Domains (LMHOSTS)

As described in the previous post the lab environment includes multiple forests, domains and workgroup computers.  One of the nice things about SMS 2003 is the fact that once the SMS Client has been installed on a system, you “own” that system and can manage it from that day forward.  In the previous post, we discussed how to…

0

Modifying Security on Active Directory Objects using a script

I was working with a customer this week and we found some user objects in Active Directory had incorrect security settings.  I put together a list of commands for the customer to use.  I thought a few of the FOR command examples below were useful so here you go…  These command can also be used in a…

1

Troubleshooting Windows Server Update Service (WSUS)

The creation of the Windows Update web site a few years ago revolutionized the way people with Microsoft products updated these products with the latest patches.  Windows Update made it possible for a “mere mortal” to determine exactly which updates they needed to install and install them automatically.  Windows Update greatly improved the the overall security of millions…

1

Roaming User Profiles

A couple of my customers use Roaming User Profiles (RUP) so that a user’s desktop, files and settings follow them no matter which computer they happen to be setting at.  This is a very cool feature for users because no matter which computer they log onto they always have the look and feel.  I have…

1

Enable Remote Desktop

Remote Desktop is one of the greatest features added to the Windows operating system.  It enables you to perform remote administration of servers from your desk or fix one of your kids computers from the couch.  Of course it’s only great if it is enabled on the computer you are trying to access.  If you find yourself…

4

Remote Desktop Connection (akaTerminal Server) Keyboard Shortcuts

I use Remote Desktop all day at work.  It is especillay helpful when writing documentation.  One of the problems I always run into is trying to remember which keyboard short you can use to capture a screen-shot in a TS session. Since I had to dig these up  again today I decided to post them here where they…

0

Active Directory Troubleshooting Resources

Articles Troubleshooting Active Directory—Related DNS Problemshttp://blogs.msdn.com/controlpanel/blogs/posteditor.aspx?SelectedNavItem=NewPost&sectionid=7213&bpt=1 Troubleshooting Active Directory Replication Problemshttp://technet2.microsoft.com/WindowsServer/en/library/4f504103-1a16-41e1-853a-c68b77bf3f7e1033.mspx Additional Resources for Troubleshooting Active Directoryhttp://technet2.microsoft.com/WindowsServer/en/library/019a8a46-05eb-4969-b0e7-df48355184c11033.mspx Repadmin Exampleshttp://www.microsoft.com/technet/prodtechnol/windowsserver2003/library/TechRef/a103036b-5d82-4d99-8e61-23d434a8e6eb.mspx How to configure Active Directory diagnostic event logging in Windows Serverhttp://support.microsoft.com/kb/314980/en-us 332199 – Domain controllers do not demote gracefully when you use the Active Directory Installation Wizard to force demotion in Windows Server 2003 and in…

0

DNS - Windows Server 2003 DNS

One of the problems I run into with DNS is I have trouble remembering what a working DNS looks like if I have not worked with it in a while.  The attached screen shots show the DNS configuration of a Window Server 2003 installed as a new forest. Forest Wide MSDCS Zone Root Domain Folders Root _MSDCS…

0

DNS - Windows 2000 DNS Upgraded to Windows 2003

One of the problems I run into with DNS is I have trouble remembering what a working DNS looks like if I have not worked with it in a while.  The attached screen shots show the DNS configuration of a Window Server 2003 DNS that was upgraded from a Windows 2000 DNS.  There are examples from…

0