Zartach

Hi, You need to create 2 batch files (connect.cmd and disconnect.cmd) for example. The connect.cmd file should contain: rasdial %connectionname% %username% %password% the disconnect.cmd should contain: rasdial %connectionname% /disconnect change the details ( anything surrounded with %%) as they are set up on your server ofcource. Then with the Scheduled Tasks wizzard or the at command you can set up a schedule to dialin with connect.cmd and disconnect with disconnect.cmd. Make sure the properties of the dialup account are not set to redial after disconnect because then it might try to. Hope it helps,

You can create a local policy with policy editor, but a GPO is mutch stronger than local with for example software deployment. There is also 3rd party software around witch can do a little general management, but i cant remember the name but it could be that app is less effective and costs money ofcource. Zar

What icon do you mean the arrow on all the shortcuts ? If so then you can use a GPO to change the value of that icon via the registry : SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Shell Icons If you want a specific shortcut that points to an application then maybe concider to create the shortcut with the proper properties eg path and icon and have it deploy via GPO to your users. Hope it helps,

You can try this one : http://www.windowsitpro.com/Articles/Index...playTab=Article It is a batch script and it needs some reskit apps but it is usable, and it can also change the admin's accountname from what i have seen. Mind you i have not used tis myself yet but it seems to me like a usable thing that with some extra scripting and schaduling can do regular password changes.

Hi Gordo, I don't know if this is going to help you because it was not specificaly designed to allow people the use of the installation process but maybe you can batch or vbscript it so that the users can click a script before they plug in and the driver gets loaded or something. Sounds like a challenge Anyway, there is the Microsoft Elevated Privileges Application Launcher wich can allow a higher set of priviledges to a user that it currently has. Read mor about it here: http://www.microsoft.com/technet/prodtechn...loads/epal.mspx Hope it helps,

This last one could be due to the ADAM service not having the proper permissions, Give the ADAM service account read permissions to the key under C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys (if these permissions are not set correctly you will get this error) After you have set the read permissions restart the ADAM service and this error should be resolved and hopefully all other errors will be gone as well. Hope it helps,

Ah, well then you can just configure the clients through this : http://technet2.microsoft.com/WindowsServe...0964a31033.mspx Do mind tho, that if you are using old OSses like windows 2000 SP3 or older you need to install a WSUS client that can be downloaded from the microsoft website. Hope it helps,

Í'll try Here try this one, the code: 'Global variables Dim oContainer Dim OutPutFile Dim FileSystem 'Initialize global variables Set FileSystem = WScript.CreateObject("Scripting.FileSystemObject") Set OutPutFile = FileSystem.CreateTextFile("export3.txt", True) 'change the domain and OU to match yours ofcource;-) Set oContainer=GetObject("LDAP://OU=flappie,DC=contoso,DC=com") 'Enumerate Container EnumerateUsers oContainer 'Clean up OutPutFile.Close Set FileSystem = Nothing Set oContainer = Nothing WScript.Echo "Finished" WScript.Quit(0) Sub EnumerateUsers(oCont) Dim oUser For Each oUser In oCont Select Case LCase(oUser.Class) Case "user" If Not IsEmpty(oUser.sAMAccountName) Then OutPutFile.Write oUser.sAMAccountName & ";" End If If Not IsEmpty(oUser.name) Then OutPutFile.WriteLine oUser.Get ("name") End If Case "organizationalunit", "container" EnumerateUsers oUser End Select OutPutFile.WriteLine Next End Sub The result: jdoe;Jane Doe jsmith;John Smith

The ISA server is the new product that evolved out of Proxy2 for Windows NT and when microsoft added firewall/vpn and more functions to it they renamed it to make it sound more like a security product than a load balancing service. ISA will do exactly what you want, it will have the users log into the domain to be able to use the internet, just force all internet traffic through it. It will still cache pages too i believe (been a while since i fiddled with ISA so could be wrong here) and you can even set groups where one group can and the other cant access the internet. Check the ISA site and in your canse this scenario would be the most interesting: http://www.microsoft.com/isaserver/2006/wap.mspx Hope it helps,

The best thing is using groups, as they are to be used to set permissions and rights. You can always add the users to a separate OU and link a specialy customized security GPO to it to secure it further, and have the users in a separate location in the AD overview. You will need to look at the everyone group thing cause i will cause people to have access to those recources no matter where they are from. Also if you are only looking to add users to a SFTP (what application are you using here IIS?) you may want to investigate the option to just add the users to the application and dont use AD for authentification at all. That way the users cant ever access the AD. Hope it helps,

Is that the only error you recieve ? As 7001 is a general errorcode to alert when a service has failed. I searched a bit on technet and eventid but i could not find a close enough solution as you allready said. You might want to check these links out anyway, maybe something in them will help. IIS troubleshooting Eventid 7001 Hopefully theres something you can use,

Im with cluberti on the SP2 comment got me confused too but maybe you dont mean the same as we do, as for teh error message it is quite clear, i think you are trying to slip a local language SP over a english server CD or vice versa. This will not work you need to get a SP of the same language the CD is. This goes for all microsoft products, and if you meant something else then please specify

The clients can be directed to download updates via WSUS via a GPO, older clients may need to install a little app that comes with WSUS and is available via the MS website to grab the updates. Just go to : http://technet2.microsoft.com/WindowsServe...3.mspx?mfr=true and configure the gpo.

It is not exactly what you asked for but i was not sure on how to do it like that. I have made a script with the help of technet Save the code in a file called export.vbs or something. 'Global variables Dim oContainer Dim OutPutFile Dim FileSystem 'Initialize global variables Set FileSystem = WScript.CreateObject("Scripting.FileSystemObject") Set OutPutFile = FileSystem.CreateTextFile("export.txt", True) Set oContainer=GetObject("LDAP://OU=flappie,DC=contoso,DC=com") 'Enumerate Container EnumerateUsers oContainer 'Clean up OutPutFile.Close Set FileSystem = Nothing Set oContainer = Nothing WScript.Echo "Finished" WScript.Quit(0) Sub EnumerateUsers(oCont) Dim oUser For Each oUser In oCont Select Case LCase(oUser.Class) Case "user" If Not IsEmpty(oUser.distinguishedName) Then OutPutFile.WriteLine "dn: " & oUser.distinguishedName End If If Not IsEmpty(oUser.userPrincipalName) Then OutPutFile.WriteLine "UserPrincipalName: " & oUser.userPrincipalName End If If Not IsEmpty(oUser.sAMAccountName) Then OutPutFile.WriteLine "Username: " & oUser.sAMAccountName End If If Not IsEmpty(oUser.name) Then OutPutFile.WriteLine "name: " & oUser.Get ("name") End If Case "organizationalunit", "container" EnumerateUsers oUser End Select OutPutFile.WriteLine Next End Sub And it will show the result in the textfile export.txt like this: dn: CN=John Smith,OU=Flappie,DC=contoso,DC=com UserPrincipalName: jsmith@contoso.com Username: jsmith name: John Smith

Hmmm, well in the domain setting you might want to build a VB script to query for all computernames and call a remote shutdown command. Obviously you need to make sure the script only shows results of PC's and no servers Maybe place all clients in a separate OU for that purpose. But it could be usefull as a policy, also with remote commands people can't mess with it on their machine, some of those users get sneaky sometimes. The only problem that remains is people who unplug their PC from the network. Zar

Hmm, maybe a silly question, but what version of outlook are you using? One of my workplaces are still using 98 and this message is their main problem with oulook. They gave up on resolving the error tho and just reinstall when it occures. You might want to make a search on technet and see what they say about it if the info is still available. If the problem is on a newer client you might want to check the eventviewer and check the eventid on technet or eventid.net. Zar

Do you have more than one website running on IIS? or does the site give an error when you connect? Can you otherwise connect to the machine running IIS via the network ? Oh and check the eventviewer on the IIS machine, that might give an insight to what might be the problem. Zar

I have an eventid account, so if you still need some info i can get it for you, PM me if it is needed. Also i found this on the net: "I am running a W2K active directory domain in native mode. I have both W2K and NT clients and I noticed lots of event id 537 in the Security event log. I have followed the steps by MS that suggests in M262177 to enable Kerberos logging to pinpoint the errors. What I found is that these errors relate to the NTLM 2 security protocol. Basically the computer account tries to use NTLM 2, if not successfull that it uses NTLM then just LM. Mainly for downlevel clients. The error event ID 537, source Kerberos, is just basically indicating that the NTLM 2 failed, therefore creating the event in the log.

Hi, For the password never expire problem, you might want to merge these two scripts. Search users in AD: http://www.microsoft.com/technet/scriptcen...05/hey0829.mspx Change the Password never expires setting: http://www.microsoft.com/technet/scriptcen...04/hey1202.mspx

On what OS/network are you trying to do this ? Windows NT 4.0 or 2000/2003AD ? Your seccond question can be set via a GPO, however high encryption is only officialy available within US and canada as far as i know.

You might want to check out this article: http://support.microsoft.com/default.aspx?...kb;en-us;282420 I know you have a Xerox and the article is about IBM printers, but the error was the same, no harm in checking it out. Also, there might be an issue when you have the printer connected through a USB connection, use either LPT cable or ethernet connections if the above MS article does not help, if you have USB that might solve the problem. Hope it helps,

Hi, You miht want to check the NTFS permissions on the folder, next to the share permissions those will hold the key is how users will be able to see/be able to work in the folder. I usualy configure the shares with change permissions, and then configure the NTFS permissions per group, selecting change will anable users to read/write in the shared folder. You can specify any permission you want for the users to restrict them or enable them access. Hope it helps,

What does the eventviewer say about this error, eg what is the eventid and name of the service that is failing ?

Interesting stuff hougtimo, Can you benchmark the install's ? i men how do you see the increase in preformance on your system, just boot time or the time it takes to finish install or application speed? Would like to find out whats making the diffrence,

Hi, It could be that the users are in a security group that denies the read or apply right for this GPO, if they are not then it could be that the problem is time synchronisation, as explained by MS in KB: http://support.microsoft.com/kb/886516/en-us Hope it helps, [edit] spelling