Author: rzomerman

  • Default Logon Domain

    When you use Windows 7, Windows 2008 R2 or Vista / Windows 2008 you almost always have to type the domain name during logon.. eg Type your username as ROOTDOMAINUser… annoying: yes.. go to the following group policy to specify the default domain logon: ComputerAdministrative TemplatesSystemLogonAssign a default domain for logon  and set your default logon…

  • Free training?

    Organizing a free training can give your business new customers, thats probably the idea behind free trainings seminars from Twice IT; you can follow a short course in exchange for some feedback on a blog.. So out of curiosity I attended the 3 hour Powershell course, and here’s my feedback ..

  • RSS feeds

    Many of you use RSS feeds, to subscribe to a feed from this website, hoover over the category you are interested in and select RSS for the feed. If you would like to subscribe to all of the posts I’ve made, use the .All Posts Category.. or use the direct link: feed://blog.studiographic.nl/?feed=rss2 _R

  • Windows 2008R2 features part IV: Managed Service Accounts & Password Reset's

    So we have deployed the Managed Service Accounts, and now we want a password policy set on them.. usually the service accounts have a different password policy set, so most of you will probably use PSO’s (Password Setting Object). In my demo I’ve set a new policy stating that the max age of a password…

  • Windows 2008R2 features part III: Managed Service Accounts

    Password policies can help administrators secure their environment, letting users change their passwords on regular basis makes it harder for hackers to get in to a system by guessing a password. There is one group of accounts though that usually do not have the password policy applied to.. they almost never change their password and…

  • Tourist office and Google Maps combined

    The strength new media is best showed when it’s simplified and usable by anyone.. take google maps, most people know about it, use it on their computer but if you’re on the go.. they prefer a Tom Tom or other simple device during the trip.. 

  • Securing Wireless with WHS Part II

    Some of you might be using Windows 7 already and have noticed that the Wireless solution for Windows Home Server does work well with Windows 7. In fact, the computer does not challenge the user for a username or password, but just tells you it cannot connect. This is because Windows 7 has a different…

  • Windows 2008 Features (DFSRMIG)

      The introduction of Windows 2008 brought us the famous Read-Only domain controller, the domain controller without passwords (unless explicitly approved) and one-way replication. That one-way replication also applied to the SYSVOL share. Sysvol is replicated by either FRS or DFSR depending on the initial setup of the domain. If you have upgraded your domain…

  • Windows 2008R2 features part II: Recycle Bin

    Windows 2008 R2 Active Directory introduces the Recycle Bin option. If you deployed Windows 2008 R2 or upgraded your domain to the Windows 2008 R2 schema and you think the recycle bin is active, you are wrong. You have to specifically enable the recycle bin feature. So upgrade your forestlevel and run the following command…

  • Windows 2008R2 features part I: Offline domain join

    Since Windows NT4, clients who wanted to join a domain always needed a direct connection to the domain, either via VPN, dial-in or direct connection. New in Windows 2008R2 is the option for an offline domain join.. how does this work.. ? read on! A new program is introduced called djoin.exe. We can use this…

  • Delegate the right to start/stop replication

    Let’s say you want to isolate a domain controller for a certain time, you would issue the command: repadmin /options +DISABLE_INBOUND_REPL or/and +DISABLE_OUTBOUND_REPL normally this command requires Domain Admin/Enterprise Admin privileges. Why and how to change that below.. first the usual warnings: Playing with ADSIEDIT could damage your domain, please test everything in a lab…

  • Repadmin /expert

    Repadmin is the tool used to troubleshoot replication in an Active Directory forest.. commands like repadmin /replsum (to view replication summary) or repadmin /showutdvec (to view USN per domain controller).. are common commands.. it get’s tougher when we want to create or modify links during troubleshooting.. then we use /add to add replication links between…