Active Directory: Domain and Forest Functional Levels.

Active Directory - Domain and Forest Functional Levels. Domain versioning (and DC) 0 = Mixed mode / Native mode 1 = Windows Server 2003 interim domain mode 2 = Windows Server 2003 3 = Windows Server 2008 4 = Windows Server 2008 R2 Forest versioning 0 = Window 2000 1 = Windows Server 2003 interim forest mode 2 = Windows Server 2003 mode 3 = Windows Server 2008 4 = Windows Server 2008 R2

AD-LDS (ADAM) For Windows 7 is now available (Again).

Microsoft have reissued the AD-LDS (Lightweight Directory Services (ADAM)) application for Windows 7,  AD-LDS is a Lightweight Directory Access Protocol (LDAP) directory service that provides flexible support for directory-enabled applications, without the dependencies that are required for Active Directory Domain Services (AD DS). AD LDS provides much of the same functionality as AD-DS, but it does not … Continue reading AD-LDS (ADAM) For Windows 7 is now available (Again).

Draw your Active Directory Automagically.

When I am at a customers site I am often asked "How did you draw our Active Directory so quick?".  The answer is  - I cheat and I use the The Active Directory Topology Diagrammer tool (ADTD),  which enables Visio to automatically draw a diagram of your Active Directory environment, detailing it's Domain topology, sites, OU structure and … Continue reading Draw your Active Directory Automagically.

Microsoft Security Compliance Manager (BETA)

This week see's the beta of  "Microsoft Security Compliance Manager (SCM)" released, the tool will enable you to view, update, and export security baselines for the following Microsoft products. Internet Explorer 8 Microsoft Office 2007 SP2 Windows 7 Windows Server 2003 SP2 Windows Server 2008 SP2 Windows Vista SP2 Windows XP SP3 I have not had a chance … Continue reading Microsoft Security Compliance Manager (BETA)

Prevent “Fat Fingered” deletion of OU objects.

Prevent "Fat Fingered" deletion of OU objects. Fat fingered administration is one of the main causes of OU deletion and subsequent “Authorative Restores” and the associated aggravation. In Windows Server 2008/2008R2 in Active Directory Users and Computers there is a check box titled “Protect Container from accidental deletion”, this check box sets two ACES to prevent, … Continue reading Prevent “Fat Fingered” deletion of OU objects.

Active Directory: Cosmetic Forestry

Active Directory - Cosmetic Forestry Over the past year the media have reported on banks and companies facing impending doom; government bailouts and other measures to ensure the global economy does not implode.  As a result many mergers and aquisitions have occured and IT departments are now facing multiple challenges. One such scenario may be:  A manager who during … Continue reading Active Directory: Cosmetic Forestry

Top Tip:Active Directory Domain Controllers and teamed network cards.

Active Directory Domain Controllers only support teamed network cards in a "Fail on Fault" configuration and not in a load balanced configuration. To quote Microsoft from the Windows Server System Reference Architecture (WSSRA): "The second way to protect against a network failure is to configure each domain controller with two separate network cards. Each card … Continue reading Top Tip:Active Directory Domain Controllers and teamed network cards.