Threads Replies Last Post 11 Pages: 1  2  3  4  5  6  7  8  9  10  11   how to restrit some website Hello all, I have a computer. I would like to be able to restrict some unwanted sites.and how to reopen that particular website. Where can this setting be done globally for either the terminal services users or even just by specifying the machine names? Thanks for your help, ... 1 7/12/2007 3:49:25 AM Restrict users to one or two websites? Hello all, I have 4 computers which are remote point-of-sale terminals and they log into our system using terminal server. I would like to be able to restrict them to be able to get to the company website and our online timeclock sites ONLY. Where can this setting be done globally for either the terminal services users or even just by specifying the machine names? Thanks for your hel... 7 7/11/2007 6:48:44 PM Setting up LDAPS Does anyone have a link to information on how to setup LDAPS on a Windows 2003 domain? Thanks! ... 1 7/11/2007 6:41:38 PM Additional restrictions for unprivileged service accounts When I create service accounts, I tend to restrict their access as much as possible. In Active Directory domains, I follow Microsoft's A-G-DL-P model very strictly. For instance, I have a service account named "s-eporeviewer" that is a member of the global group "ggs-irtnognet-EpoDatabaseReviewers" (a business role), which in turn is a member of the domain-local group "dls-irtnognet-Sqlsvr... 1 7/11/2007 4:23:21 PM USER AND TERMINAL SERVER Hi! I have a user on a 2003 Server wich is member of group "users". I made this user member os group "users of remote desktop" to allow this user to logon from terminal server, but when I try it, appears a window telling I can't login because I have no permission. What can I do?. Thanks. ... 9 7/11/2007 9:42:15 AM Windows Server 2003 R2 CA Web Enrollment Missing Templates Hello, I have a Windows Server 2003 R2 Enterprise system setup with AD and as a CA. It also has IIS installed for Web Enrollment. However, even from the system itself, when I go to http://localhost/certsrv, request a certificate, advanced certificate request, submit a certificate request by using... the only templates I have available for enrollment are Basic EFS and User. I am log... 3 7/10/2007 10:22:00 PM MS Evaluation Copy 2003 R2 The Remote Installation Service is not available as an option on this evaulation copy. I do need to look at and evaulate it. Does anyone know where I can obtain the Remote Installation Service Files PS The option to install RIS is not on the Add/Remove programs as stated in the documentation. Thanks in advance.... 3 7/10/2007 9:36:42 PM Determining when an account last logged in Windows Server 2003 - I'm trying to find a way to determine when an account last logged in. I would have through I could have selected the account in question and selected properties and viewed that info there... perhaps on the Object tab, but no luck. Can I view this info or do I have to look through the event logs? ... 5 7/10/2007 6:14:43 PM Restricting service accounts that have administrator privileges I have a service account with administrator rights that I would like to restrict to just performing software installs. The account needs to be able to copy files to the administrative shares on the target computer (servers and workstations), then execute the setup program via RPC. Once installed, the software will run as a service in the LocalSystem security context. How might I restrict... 9 7/10/2007 6:12:54 PM stop access from one ethernet adaptor Hi all, I have a windows 2003 x64 standard server the system has 3 ethernet adaptors in it, one connected to our local network, one to our primary ISP and one to our Secondary ISP. the system is setup as a VPN Server and an Exchange 2007 server, I have run through the Security Configuration Wizard, and stopped services that i'm not going to be using on the server, however the server ... 1 7/10/2007 1:32:45 PM add permissions to all subfolders, not replace I'd like to add a security group to my Windows 2003 domain which is denied file permissions on all but one of my network's shared folders. I already have quite a large directory structure setup with varying permissions on the subfolders and these permissions need to be preserved. For example: Main Shared Folder (all domain users) Accounting (accountant only) Database (DB admin only) ... 2 7/10/2007 1:55:19 AM IAS + user smartcard + workstation certificate Hi ! I want wireless clients use PKI and IAS to get to network. My idea is workstation is verified via workstation-certificate before user use his smartcard (authentication via user certificate on his card). I know I can use workstation-certificate OR user-smartcard option. Is this possible to set it together as a access-sequence ? Thanks in advance Dominik ... 4 7/9/2007 12:32:17 PM W2K3 or W2K8: how to modify Enterprise RootCA + CertificateTemplates for "EV"-security/green-bar Hi, since "extended verification" (EV) and resulting green-bar in IE7 is just a matter of proper RootCA and ServerCert attributes I'm wondering how to enable EV-features for a W2K3 EnterpriseRootCA to display green-bar even for intranet SSL sites. Anybody got a clue how to? thanks! -- CU Thorsten Rood... 1 7/8/2007 10:57:46 PM Server caching credentials? I have renamed the Administrator account on my domain. I have one Windows Server 2003 server that refuses to allow me to log on with the renamed account. It will allow me to log on using the old account name and password only. All the other servers on my domain recognize the renamed account and password. Any advise on how to fix this would be appreciated. ... 4 7/7/2007 5:07:27 PM Administrator account Due to turnover in our IT shop we are trying to tighten up security. The first order of business is to do something with out Administrator account. The Administrator account was renamed a long time ago to a name within the naming scheme of the rest of the users. Since all of the people who left our shop know this account, what is the best way to change this? Should I rename the account a... 4 7/7/2007 4:43:49 AM sbs2003 and users rights on local computer This is a multi-part message in MIME format. ------=_NextPart_000_0020_01C7BEF0.9E541ED0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable hi all, i was wondering how you give rights to a user logging into a domain = computer, so that they can install software. I dont want them to have = admin rights all over the network, but do want them to... 7 7/7/2007 4:36:28 AM Event 531 We are getting the following event on only one of our many servers. Event Type: Failure Audit Event Source: Security Event Category: Logon/Logoff Event ID: 531 Date: 6/27/2007 Time: 11:25:00 PM User: NT AUTHORITY\SYSTEM Computer: {computername} Description: Logon Failure: Reason: Account currently disabled User Name: Domain: Logon Type: 3 Logon Process: Authz ... 2 7/6/2007 7:18:27 PM How to setup "Prevent interference of the session lock from application generated input" Hello: I would like to apply the following security setting on the existing windows machine. However the key was under HKCU, can you kindly let me know how can I set can apply to all users? HKCU\Software\Policies\Microsoft\Windows\Control Panel\Desktop Key: Desktop Value Name: BlockSendInputResets Type: REG_SZ Value: 1 Thanks!... 1 7/6/2007 10:04:15 AM Missing PC - Want to know who last logged on We have a PC that is missing. It is a domain-based PC on a Win 2003 domain. I have all security event logs from all domain controllers, but no access to the missing PC's event logs. I also have access to SMS. In the event logs, I have found several entries for the PC, but can't figure out how to determine who last logged on. Is it possible without the PC's event logs? Or with SMS? ... 7 7/6/2007 3:24:01 AM Where to run the Certificate Services to be an Enterprise CA Hi, We have Windows 2000 Domain controllers, file servers, and a Web server. a couple Windows 2003 Network Appliances, a Windows 2003 Web server running Windows Sharepoint Services and Project Server, a Windows 2003 ISA Server. I'm running into an issue where https:// to http:// bridging is not totally working with ISA sharepoint site publishing. The failure I believe is in the PDS (Proj... 1 7/5/2007 6:43:45 PM Where to run the Certificate Services to be an Enterprise CA Hi, We have Windows 2000 Domain controllers, file servers, and a Web server. a couple Windows 2003 Network Appliances, a Windows 2003 Web server running Windows Sharepoint Services and Project Server, a Windows 2003 ISA Server. I'm running into an issue where https:// to http:// bridging is not totally working with ISA sharepoint site publishing. The failure I believe is in the the PDS (... 1 7/5/2007 6:24:12 PM Is it possible to .PFX file when creating/issuing a certificate Hello all, I'm trying to figure out if there is a way to create a .PFX file whenever a new certificate is issued? What I'm trying to accomplish, using the Windows Server 2003 based Certificate Server Services, is to issue a public/private key pair that the end-user can then import into any web browser of their choosing. What I have been able to do is use either IE or Firefox to access... 1 7/5/2007 4:04:17 PM Two versions of IE6? I just noticed that on my servers I have a version of IE6 that under the Intranet Security Zone, when you open Sites you can select three check boxes related to the LAN, but on other XP and servers IE6 just has a box to enter the site names.... When I setup GPO to push out the zone settings from IE, only the machines with a matching IE6 take the policy for the Intranet Zone, but they ... 1 7/2/2007 11:25:26 PM Windows Media Player Remote Code Execution (923689) Hello! We recently self-audited our servers and found that one of them has this high-risk vulnerability. To reference the vulnerability description, "Multiple vulnerabilities in Windows Media Player could allow remote code execution. One vulnerability relates to ASX file processing. WMVCORE.DLL contains an exploitable heap buffer overflow in its handling of "REF HREF" URLs within ASX fil... 19 7/2/2007 9:09:10 PM HELP: sorts out & cleans up NTFS security permissions I used SysInternal's AccessEnum and found it quite useful for Windows 2003 Server admin work, but laborious. I have 2 HDs, C:\ & D:\. What if another admin played about with the NTFS security permissions of C:\? Is there a "revert back to system defaults" option? Currently the only way I see is to install Windows 2003 Server on another PC and compare NTFS security permissions on all fil... 3 6/30/2007 4:07:26 AM 11 Pages: 1  2  3  4  5  6  7  8  9  10  11