Threads Replies Last Post 11 Pages: 1  2  3  4  5  6  7  8  9  10  11   Radius server in a DMZ, how to authenticate AD users ? Hello, we have a wifi project and we would like to authenticate Active Directory users. Is there a way to add the Radius server in a DMZ without being member of the AD domain and authenticate the wifi users ? Do you know basic secure infrastructure for such a situation ? Thank you -- Pascal ... 10 6/15/2007 5:31:45 PM DHCP Restrictions Is it at all possible to get windows server 2003 to actively refuse a client machine that isnt connected to the DC for example we have a sbs 2003 server with dhcp so we have 8 computers on the domain and have usergate proxy server installed also. the issue is what can be done with either the existing os or 3rd party software to stop people plugging in a laptop that registers with dhcp and all... 3 6/15/2007 1:20:00 PM Write but no overwrite? I have recieved an odd request. Basically what is desired is the ability for a certain user to write files to a directory but not be able to delete or overwrite those files. Is this possible? The machine in question is running Server 2003. I was told this had been the case in the past but am finding no evidence of it and am having a hard time believing it. ... 10 6/14/2007 8:55:47 PM windows firewall question (multihomed system) windows server 2003 R2 sp2 question about using firewall.cpl with a multihomed server. Not talking about typical setup with RRAS basic firewall and an 'internal' and an 'external' interface. easier said with scenario: server with 2 (or more) NICS. Server is not a router and not providing NAT of any kind. Just a server with 2 nics. Lets say each of the nics are connected to a separat... 3 6/13/2007 2:55:40 PM Disallowing console login Is it possible to disallow console login for certain users/groups? By console login in mean using RD like so: mstsc /v:box1 -console The scenario is that I would like for only one user on the box to be allowed to login to the console (session 0). This is because the box is running an application that unfortunately cannot be run as a service, thus we need to preserve the console login a... 3 6/14/2007 2:16:02 AM need some help on this one lets just start off by saying I'm a developer and no longer a server admin BUT I'm doing some server admin work to help out. Ok, on one of my Windows 2003 servers I keep getting this error in the event viewer and I've done some research on it and I'm getting information from spy ware, a virus to something Microsoft uses to even a worm. Can anyone shed some light on this for me? ... 5 6/14/2007 7:54:11 PM hacker attempts? Windows 2003 Server R2 standard edition with SP2, sitting behind SonicWall firewall. Recently, there are a lot of Alerts from SonicWall. Such as "IPSec Authentication Failed" and "IPSEC Replay Detected" and some "Sub Seven Attack Dropped" It appears that the source IP address causing the IPSec Authentication Failed messgae is from the same source IP address. I do not recognise th... 2 6/14/2007 5:34:47 AM firewall profiles and individual interface exceptions 1) when host firewall is enabled (server 2k3 R2, sp2) and computer is a domain member, are the standard and domain profiles combined or is it only the profile listed as current thats in effect? (I'm assuming they don't combine, but am not positive, so looking for verification) 2) also, I'm assuming when you make exceptions on individual interface (advanced -> settings button) that th... 1 6/13/2007 2:45:24 PM Strange effect with inheritence flags on Windows XP and NT 4 This is all very bizarre... NT 4 server running under NT 4 domain called SERVER1 with an E: drive. Open \\SERVER\E$ from a Windows XP PC and create a folder called Test. Look at the permissions from Windows XP and the folder doesn't appear to be inheriting it's permissions from the parent - the two permissions shown on there are not greyed out. Now log to a Windows 2003 server (termin... 3 6/14/2007 7:50:44 AM Use Windows 2003 CA to create a web server certificate with alternative DNS names Simple issue, based on exchange server. Exchange requires usage of SSL. It uses a self signed certificate, which we do not really like. Users access the exchange system using a short name in the browser, when they access OWA: https://exchange/. Outlooks uses - thanks to automatic confuiguration - the FULL name (https://exchange.company.local/). Now, this is seriously crap. The IIS m... 5 6/9/2007 8:58:49 AM Extracting users who have not logged into domain for more than fiv Extracting users who have not logged into domain for more than five days: Here we are using a tool call "Dumpsec" to extract users who have not looged into domain for more than five days. It was working fine previously when we are in different domains. Now we consolidated two domains into single domain.Tool is not producing accurate result. Please provide me any script if someone have. ... 3 6/8/2007 8:45:20 PM Windows Server Baseline Security - IE security warning Hi, I have installed Windows Server 2003 member server baseline security on the server. Users at their client end get the IE security warning where it does not trust the site and they have to add that site to their trusted site list. Figuring out where I could find the settings so I can turn this off. I would appreciate if experts could let me know. thanks in advance... 3 6/8/2007 8:47:11 PM Can I have two passwords for one user? Windows 2003 Service Pack 2 Enterprise edition is installed on my home PC. I have granted a friend of mine to access my computer via remote desktop. Today he had started flashget to download a file and just after that his internet connection failed, so the remote desktop session was disconnected (many hours passed since then and he is still offline PING!). A few minutes after he was dis... 6 6/8/2007 8:38:13 PM protect admins account Hi! How can I protect admins account from lock out in case of external intrusion? What methods MS recommend to protect admins password and accont? Regards! ... 3 6/11/2007 11:48:02 AM User folders permissions. I have a file server for my users and it appears that the ACLs keep getting corrupted/overwritten. I have turned auditing on and can not find the reason... My admins swear they are doing nothing to the ACLs. How can I track down the cause? Thanks Carl ... 3 6/8/2007 6:07:49 PM clients separated from DC by firewall straightforward question - I have a range of PCs that are separated from their domain controller by a PIX. I need to know what ports are required for me to join these clients to the domain. the doc 'Active Directory in Networks Segmented by Firewalls' leads me to believe I need: 445 (DS) 88 (Kerberos) 389 (LDAP) 53 (DNS) assume both TCP and UDP for the above. The problem is I... 9 6/12/2007 7:34:53 AM Block a Win2k3 username from the internet Hi guys, ALL i want to do is block a windows username from accessing the internet, sounds simple i know. but how the hell do you do it? Cheers Paul ... 7 6/9/2007 8:59:52 AM Resetting administrator password Dear All, a customer of mine have a WIN 2003 Small Business Server and he has forgotten administrator password and doesn't have an equivalent priviledge account. Please, could anyone give me any ideas to resetting password avoiding complete re-installation? Regards Alberto Brivio ... 5 6/12/2007 5:57:10 PM disk full Hi All, Sorry if this is the wrong group but I wasn't sure where to post it.... What event is logged in W2K3 when a disk is below 10% free disk space. I found http://support.microsoft.com/kb/112509 that shows how to configure it in 2000 and our MOM alerts now work fine with those servers but I need to do the same for the W2K3 servers and I can't find which event I need to monitor. ... 3 6/12/2007 9:08:11 PM FSRM remote management permissions Does anyone know how to set permissions so that a user not in the Administrator group can remotely open up FSRM mmc and manage quotas and file screening for a file share. ... 1 6/11/2007 3:28:23 PM Spectro Pro Detection Does anyone know if there is a product that will detect if there is a monitoring software such as Spectro Pro on a system? I some conserns that a recently ex-Network Admin might have installed such a product. http://www.spectorsoft.com/products/SpectorPro_Windows/index.html Thanks, Mark ... 1 6/12/2007 3:57:32 PM Remote desktop: cannot copy files why Sunday Host: Windows Server 2003 XP desktop: latest version of remote desktop client Connecting as Administrator allows me to copy files from the shared folder to my XP desktop. Connecting as another user does not allow me to copy files. The users are part of the administrators group, users group, and the remote desktop group. What else do I need to do? J ... 11 6/8/2007 1:49:35 PM root CA as a virtual machine? I am interested in the feasibility of configuring a root CA as a virtual machine, which can be "stored" offline. Any thoughts? Also, with a root CA as a VM, how about storing the private key in a USB HSM such as Luna? Jeff -- Message posted via WinServerKB.com http://www.winserverkb.com/Uwe/Forums.aspx/windows-server-security/200706/1 ... 5 6/8/2007 9:48:05 AM How to prevent user from access administrators password via attacks on my ftp server Hi, I have a problem, I have some users trying to crack my administrator password by attempting dictionary attacks on my ftp server, I am seeing 100's of failed login attempts within my ftp logs, all of them using the user: administrator and a failed password. Unfortunately I have several users who have dynamic ips and need to access the ftp server, otherwise I would have this port b... 4 6/8/2007 3:34:46 AM Enabling RPC using SCW on Windows 2003 Server R2 How do you configure the Windows 2003 Server R2 firewall via the Security Configuration Wizard to allow RPC ? When trying to remote install a Backup Exec 11D remote agent to the server, it says the RPC server is not available. Turn off the firewall and it installs fine. I've gone through every obvious option in SCW and turned on anything that said "RPC" without effect :-) Cheers, Rob... 4 6/8/2007 6:05:07 PM 11 Pages: 1  2  3  4  5  6  7  8  9  10  11