chilifrei64

Use outlook web access to set the out of office assistant.. Since the exchange server is a "Server centric" email system. It wants these rules to run on the server. This way outlook doesnt have to be open for the out of office reply to reply. If you go in through OWA, it will give you the option for out of office assistant and when set will create a server side rule that will run whenever an email comes into the inbox and the Outlook clients doesnt need to be open.

Your best bet is a proxy server configuration for your gateway.. this way you can set it so they have to authenticate to get out. ISA would be the easiest to set up since it would work with Active Directory pretty easily. Otherwise.. other proxy servers have the capibilities of checking credentials agains RRAS Radius Server

It sounds like you have a good start. AD (from what you typed) appears to be in good order for GP Deployments Is it safe to assume that you used the User Configuration -> Administrative Templates -> System -> Prevent Access to the Command Prompt? One thing to know about Group Policy is that you cannot apply a Group Policy to a group in an OU. Group Policies are applied to the user. If you take that same GPO and link it to the OU where the user resides then it should work Domain.local -----Call Center OU <--------From what I gathered.. you applied it here.. is this correct? -----------Call Center Group -----Domain Users OU <-----Apply the policy here -----------Call Center User

its only like 20 bucks for new media with a VLK.. Just order it up from MS

is your clipbook service set to manual? Does it start successfully?

Create a security group and add the computer accounts to it. Then add the group to the share\ntfs premissions as necessary

Agreed.. the cisco pix is not easy to configure if you dont have any experience with them. If I were setting one up, I would use a pix. However, yes, everyone has there own working low cost solution. Mine was sonicwall.. I guess I have a habit or recommending the best possible solution in my mind first then give other options later.. I know how some people on this board would go crazy if i went right out with "Use SonicWalls" and this will work for you.. Someone would end up ripping me for my suggestion

it is quick and easy to do minor things when you maybe dont have a BartPE or WinPE or ERD Commander cd available.. you only have access to windows system directories and only have a limited number or commands. You can stuff more tools into an ERD Commander or Bart PE than you can in a recovery console.

logging onto their account and deleting it is the only way.. you cannot do that from hotmail or really any of the free email services... or too many of the paid services either..

1- Domain Controller (Active Directory) 2- DNS Just promote the second machine and make it the second DC in the forest 3- DHCP Create a second scope with different address ranges. or create the same scope just disable the service until needed 4- VPN Create the same thing on the 2 servers just keep the service set to disabled until needed 5- File Server run DFS to replicate the data It all is pretty straight forward. Not much to configure in case of a disaster. The biggest thing is to have that second DC that holds user information. Really, as long as you have that and a good backup program.. you should be in good shape

Just to clarify.. calling the uninstall string using a batch file is the same as calling the uninstall from add/remove programs. When ran... it executes the same uninstall process. This is not a forced uninstall process

open IIS Right click on your server and select properties Select MIME File Types Add a new file type extension = .max Type = image/max I am guessing on the "Type" field.. after doing a breif search I was unable to find the actual MIME definition. This should however get you to be able to save it.. it just wont be able to allow the web browser to autoselect the right program to auto open it in If you wanted to get more granular you could right click on the virtural directory -> Properties -> HTTP Headers -> MIME File types.. Here you can add specific MIME file types for the V-Dir only

yes.. if you are receiving this error on your event log on your system then it is talking about your system. Go to Add/remove programs -> add remove components -> Networking Services -> DHCP. Uncheck the box and hit next.

I dont know if I am misunderstanding this or not.. I see everybody referencing the local policy but you could apply this same policy as a Domain Policy as opposed to the local policy?

What you could do is call the uninstall string from the registry. Not sure how McAfee works.. this may be a static string or a dynamic string. Basically you would look at the HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall Key of the registry and find the Keys associated with McAfee and pull their uninstall string and run that in the batch file. I used this method for uninstalling an old version of Pervasive SQL Client from about 50 machines.. Here is a copy of the script I ran to initiate the uninstall of Pervasive start C:\WINDOWS\IsUninst.exe -fC:\PVSW\DeIsL1.isu -c"C:\PVSW\W32PTKUN.DLL" -mpsql.mif -a I ran this from a batch script.. One thing I did encounter was Windows 2000 acted differently to this one because the uninstall string references C:\Windows as opposed to C:\Winnt.. So i guess just watch out for that one..

you can also disable this from the server side by going into the RDP conenction start -> run -> tscc.msc -> RDP-Tcp -> Properties -> Client Settings.. enable and disable as you wish

another thing to add would be to make sure your recipient policy is updated to include your external dns name. This tells your exchange server that it is responsible for incoming mail to the domain you specify

yes.. the problem that you may run into is if you dont have a static ip address then you will have to order up DNS management for your domain with a dynamic dns provider. You can do this a number of ways.. Either IIS or Apache.. if you are a beginner, then i recommend IIS. If you know what apache can do for you... use apache. Then all you would need to do is migrate your website to your home pc and forward the ports you need(most likely just port 80) to your computer

Signs of a power supply going bad also.

Make sure these services are set to automatic. Windows Management Instrumentation service Remote Procedure Call (RPC) service Event Log Restart the computer..

I am running SmoothWall on a client at a router with SPI between 2 clients that share a building and an internet connection. We are running it on an old dell 750mhz with 128 mb ram. That is the beauty of specialty linux machines is it runs on minimal hardware and performs adaquetly. I have not gone farther with smoothwall than just the basic features.. (not necessary for my usage) but glad to hear that it works well. Thank you for the input.

is your Windows Management Instrumentation services turned off or disabled?

They can be on the same subnet just make sure you dont add a default gateway to one of them. I have been reading recently that people have been saying that you cant run 2 nic's on one machine on the same subnet. I do this all the time as failover on my DC's and I dont run into any problems. Keep the Default gateway on your main/fastest card and remove it from the other.

Here is an adm file to import into Group Policy #if version <= 2 CLASS USER CATEGORY !!GPOnly POLICY !!GPOnlyPolicy KEYNAME "Software\Policies" PART !!GPOnly_Tip1 TEXT END PART PART !!GPOnly_Tip2 TEXT END PART PART !!GPOnly_Tip3 TEXT END PART PART !!GPOnly_Tip4 TEXT END PART PART !!GPOnly_Tip5 TEXT END PART END POLICY END CATEGORY CLASS MACHINE CATEGORY !!GPOnly POLICY !!GPOnlyPolicy KEYNAME "Software\Policies" PART !!GPOnly_Tip1 TEXT END PART PART !!GPOnly_Tip2 TEXT END PART PART !!GPOnly_Tip3 TEXT END PART PART !!GPOnly_Tip4 TEXT END PART PART !!GPOnly_Tip5 TEXT END PART END POLICY END CATEGORY #endif #if version >= 3 ;;;;;;;;;; Machine;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; CLASS MACHINE ; HKEY_LOCAL_MACHINE\SOFTWARE\Policies\TerraNovum\EZ_GPO CATEGORY !!EZ_GPO ; Base Options POLICY !!BASE_CFG KEYNAME "Software\Policies\TerraNovum\EZ_GPO" EXPLAIN !!BASE_CFG_EXP PART "Power Management Settings Schema" DROPDOWNLIST REQUIRED VALUENAME "SettingsScheme" ITEMLIST NAME !!SettingsSchemeSimpleIndex VALUE "Simple" Default END ITEMLIST END PART PART "Power Management Settings Schema Major Version" NUMERIC REQUIRED VALUENAME "MajorVersion" DEFAULT 2 MIN 1 MAX 100 END PART PART "Power Management Settings Schema Minor Version" NUMERIC REQUIRED VALUENAME "MinorVersion" DEFAULT 0 MIN 0 MAX 99 END PART PART "Control Variable [Do Not Modify]" DROPDOWNLIST REQUIRED VALUENAME "Control" ITEMLIST NAME "Control Variable [Do Not Modify]" VALUE "Verify" Default END ITEMLIST END PART END POLICY ; Log Options POLICY !!OPTIONS KEYNAME "Software\Policies\TerraNovum\EZ_GPO\Options" EXPLAIN !!OPTIONS_EXP ; PART [!!]name PartType ; type-dependent data ; [KEYNAME KeyName ] ; VALUENAME ValueName ; END PART ; PART "Security Override" CHECKBOX ; VALUENAME "SecurityBypass" ; VALUEON NUMERIC 1;Security Override flag ; VALUEOFF NUMERIC 0 ; END PART PART "Force Standby to Be Set on All Machines" CHECKBOX VALUENAME "ForceStandby" VALUEON NUMERIC 1;Force Standby flag VALUEOFF NUMERIC 0 END PART ; PART "Log flag to turn on logging" CHECKBOX ; VALUENAME "Log" ; VALUEON NUMERIC 1; Log Flag ; VALUEOFF NUMERIC 0 ; END PART ; PART "Log Level" NUMERIC ; VALUENAME "LogLevel" ; DEFAULT 1 ; MIN 0 ; MAX 10 ; END PART ; PART "Log Server" EDITTEXT ; VALUENAME "LogServer" ; DEFAULT "localhost" ; END PART ; PART "Log File" EDITTEXT ; VALUENAME "LogFile" ; DEFAULT "%TEMP%\EZ_GPO_log.txt" ; END PART END POLICY ; Simple Scheme POLICY !!SETTINGS_SCHEME_SIMPLE KEYNAME "Software\Policies\TerraNovum\EZ_GPO\Simple" EXPLAIN !!SETTINGS_SCHEME_SIMPLE_EXP PART "AC No User Monitor Timeout" NUMERIC REQUIRED VALUENAME "ACUserMonIdleTime" DEFAULT 10 MIN 0 MAX 300 END PART PART "AC No User System Standby Timeout" NUMERIC REQUIRED VALUENAME "ACUserStandByIdleTime" DEFAULT 15 MIN 0 MAX 300 END PART ;Uncomment to get this functionality ; PART "AC No User Hard Disk Spindown Timeout" NUMERIC REQUIRED ; VALUENAME "ACUserHDDspindownIdleTime" ; DEFAULT 5 ; MIN 0 ; MAX 300 ; END PART ; Below segment is not used ; PART "AC Machine Standby Timeout" NUMERIC REQUIRED ; VALUENAME "ACMachStandByIdleTime" ; DEFAULT 20 ; MIN 0 ; MAX 300 ; END PART PART "AC No User Hibernate Timeout" NUMERIC REQUIRED VALUENAME "ACMachHibernateIdleTime" DEFAULT 30 MIN 0 MAX 300 END PART PART "DC No User Monitor Timeout" NUMERIC REQUIRED VALUENAME "DCUserMonIdleTime" DEFAULT 2 MIN 0 MAX 300 END PART PART "DC No User System Standby Timeout" NUMERIC REQUIRED VALUENAME "DCUserStandByIdleTime" DEFAULT 5 MIN 0 MAX 300 END PART ;Uncomment to get this functionality ; PART "DC No User Hard Disk Spindown Timeout" NUMERIC REQUIRED ; VALUENAME "DCUserHDDspindownIdleTime" ; DEFAULT 5 ; MIN 0 ; MAX 300 ; END PART PART "DC No User Hibernate Timeout" NUMERIC REQUIRED VALUENAME "DCMachHibernateIdleTime" DEFAULT 10 MIN 0 MAX 300 END PART END POLICY END CATEGORY; EZ_GPO ;;;;;;;;; USER;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;; CLASS USER ; HKEY_CURRENT_USER\Software\Policies\TerraNovum\EZ_GPO CATEGORY !!EZ_GPO ; Base Options POLICY !!BASE_CFG KEYNAME "Software\Policies\TerraNovum\EZ_GPO" EXPLAIN !!BASE_CFG_EXP PART "Power Management Settings Schema" DROPDOWNLIST REQUIRED VALUENAME "SettingsScheme" ITEMLIST NAME !!SettingsSchemeSimpleIndex VALUE "Simple" Default END ITEMLIST END PART PART "Power Management Settings Schema Major Version" NUMERIC REQUIRED VALUENAME "MajorVersion" DEFAULT 2 MIN 2 MAX 99 END PART PART "Power Management Settings Schema Minor Version" NUMERIC REQUIRED VALUENAME "MinorVersion" DEFAULT 0 MIN 0 MAX 99 END PART PART "Control Variable [Do Not Modify]" DROPDOWNLIST REQUIRED VALUENAME "Control" ITEMLIST NAME "Control Variable [Do Not Modify]" VALUE "Verify" Default END ITEMLIST END PART END POLICY ; Log Options POLICY !!OPTIONS KEYNAME "Software\Policies\TerraNovum\EZ_GPO\Options" EXPLAIN !!OPTIONS_EXP ; PART [!!]name PartType ; type-dependent data ; [KEYNAME KeyName ] ; VALUENAME ValueName ; END PART PART "Security Override" CHECKBOX VALUENAME "SecurityBypass" VALUEON NUMERIC 1;Security Override flag VALUEOFF NUMERIC 0 END PART PART "Force Standby to Be Set on All Machines" CHECKBOX VALUENAME "ForceStandby" VALUEON NUMERIC 1;Force Standby flag VALUEOFF NUMERIC 0 END PART ; PART "Log flag to turn on logging" CHECKBOX ; VALUENAME "Log" ; VALUEON NUMERIC 1; Log Flag ; VALUEOFF NUMERIC 0 ; END PART ; PART "Log Level" NUMERIC ; VALUENAME "LogLevel" ; DEFAULT 1 ; MIN 0 ; MAX 10 ; END PART ; PART "Log Server" EDITTEXT ; VALUENAME "LogServer" ; DEFAULT "localhost" ; END PART ; PART "Log File" EDITTEXT ; VALUENAME "LogFile" ; DEFAULT "%TEMP%\EZ_GPO_log.txt" ; END PART END POLICY ; Simple Scheme POLICY !!SETTINGS_SCHEME_SIMPLE KEYNAME "Software\Policies\TerraNovum\EZ_GPO\Simple" EXPLAIN !!SETTINGS_SCHEME_SIMPLE_EXP PART "AC User Monitor Timeout" NUMERIC REQUIRED VALUENAME "ACUserMonIdleTime" DEFAULT 10 MIN 0 MAX 300 END PART PART "AC User System Standby Timeout" NUMERIC REQUIRED VALUENAME "ACUserStandByIdleTime" DEFAULT 15 MIN 0 MAX 300 END PART PART "AC Machine Hibernate Timeout" NUMERIC REQUIRED VALUENAME "ACMachHibernateIdleTime" DEFAULT 30 MIN 0 MAX 300 END PART PART "DC User Monitor Timeout" NUMERIC REQUIRED VALUENAME "DCUserMonIdleTime" DEFAULT 5 MIN 0 MAX 300 END PART PART "DC User System Standby Timeout" NUMERIC REQUIRED VALUENAME "DCUserStandByIdleTime" DEFAULT 10 MIN 0 MAX 300 END PART PART "DC Machine Hibernate Timeout" NUMERIC REQUIRED VALUENAME "DCMachHibernateIdleTime" DEFAULT 15 MIN 0 MAX 300 END PART ;Uncomment to get this functionality ; PART "AC User Hard Disk Spindown Timeout" NUMERIC REQUIRED ; VALUENAME "ACUserHDDspindownIdleTime" ; DEFAULT 5 ; MIN 0 ; MAX 300 ; END PART ;Uncomment to get this functionality ; PART "DC User Hard Disk Spindown Timeout" NUMERIC REQUIRED ; VALUENAME "DCUserHDDspindownIdleTime" ; DEFAULT 5 ; MIN 0 ; MAX 300 ; END PART END POLICY END CATEGORY; EZ_GPO #endif [strings] GPOnly_Tip1="The EZ_GPO.adm file you have loaded requires Group Policy" GPOnly_Tip2="in Windows 2000. You cannot use the System Policy Editor" GPOnly_Tip3="to display Windows 2000 Group Policy settings." GPOnly_Tip4=" " GPOnly_Tip5="Enabling or disabling this policy has no effect." GPOnly="Unsupported Administrative Templates" GPOnlyPolicy="EZ_GPO.adm" EZ_GPO="EZ GPO by the Environmental Protection Agency" MONITOR_PM="PC Power Management" BASE_CFG="Base Options" BASE_CFG_EXP="These are the base configuration settings for the program to function. You should enable this and choose all of the defaults unless you are sure about what you are doing. See the documentation for more info." OPTIONS="Options" OPTIONS_EXP="The first option named Security Bypass (NB: User based only and not found under the Computer Policy hive) directs the tool to bypass the hardcoded restrictions placed on it to change power management settings. See the documentation for more but it is only needed when users are of type user or guest. Note, this is a safety override (like rm -f) and does not actually gives users of insufficient rights, the ability to change PM settings. The second option, Force Standby, overrides the default behavior of the tool which enables system standby on machines capable of S3 (ACPI ver.2) or better. Enabling this option will allow the tool to set standby on earlier ACPI and APM2 capable machines. This could be useful for non Intel or laptop heavy environments since standby worked better on non S3 capable laptops as opposed to desktops. ;NB: Logging is experimental and should not be used in production. There are ; also 3 options for logging. The first is to turn on Logging capabilities. ; The second is the level of log detail. 0-10 is the valid ; range where 10 gives the most verbose output. The third is the file for ; logging purposes. This can contain shell expansions such ; as %TEMP%\EZ_GPO_Log.txt for example. See the documentation for more Info." SettingsSchemeSimpleIndex="Simple Settings Scheme" SETTINGS_SCHEME_SIMPLE="Simple Scheme" SETTINGS_SCHEME_SIMPLE_EXP="This is the most basic Settings Scheme available. Each setting can be set to a range of 0-300 minutes where 0 = 'Never'. NB: Hibernation should be higher than System Standby or set to 0. It should never be equal to System Standby." This is from http://www.terranovum.com/projects/energystar/ez_gpo.php I have this implemented and working great.. hope it helps you. Hope this helps

What the heck does configuring your router have anything to do with security on Windows. Now.. if you meant firewall.. then maybe.. And GPO.. gimem a break.. Ill tell you what.. if you can tell me how to fix unchecked buffer overflows with GPO and Stateful Packet Inspection.. ill revert. Ill be the first to admit.. you can lock down the hell out of a workstation with GPO.. but i think everybody is taking this out of control. You CANNOT work around vulnerabilities with GPO and routers. And just installing FireFox will not instantly make you more secure. When a good hacker is trying to hack your machine, they will fingerprint your OS.. if he finds that you only have SP1 installed.. he has a full list of stuff he can exploit. With a fully patched Windows XP SP2.. they will have to find their own exploit because all known exploits are patched. As for the "More protection than SP2 can provide" gimme a break. The only way this is possible is if you configure automatic updates to run automatically and enable windows firewall and configure user rights assignements to customize security permissions. Dont get me wrong.. I dont use Windows Firewall BUT.. on a corporate network, I do because it will stop a virus outbreak on your network and will stop unauthorized access to the computer. It has been proven to be better at fighting spyware(still needs work). And has a full security featureset for network communications. GPO and Router config.. come on.. we need to give better advice than that.