Tag | Active Directory Posts

Update proxyAddresses property in Active Directory (AD) using System.DirectoryServices I have been asked if I could provide an example of reading / writing the property proxyAddresses – so hopefully this will help. Some basic assumptions: A binding has already been created (DirectoryEntry object), and we are going to work with that entry (we’ll refer to userEntry for our bound object reference); the proxyAddresses default prefixes (SMTP, smtp, and smtp-pager) already exist in the proxyAddresses ...
There is an upcoming chat on Active Directory in a Branch Office configuration tomorrow. Title: Live Branch Chat: Administering and Maintaining the Branch Office Technologies Begin: 12/16/2005 10:00 AM End: 12/16/2005 11:00 AM Description: This chat will focus on the day to day operations that administrators will go through after the solution is deployed. We will discuss configuration, delegation, determining the state of replication, monitoring and best practices that will help administrators keep ...
Your Microsoft license key is tied to the organization name that you enter when installing CRM. Good reasons for this, of course. This would normally mean that to install a development server without having to purchase a new license key, it needs to exist in an independent domain. (Because the CRM Organization Name is used to create the Active Directory OU.) At one of our clients, though, we discovered they had a development server in the same domain, using the same license key. How did this happen? ...
SharePoint SDK has been updated as expected to bring it up to date with the recent SharePoint SPS and WSS Server Pack 2 releases. Download link to the updated SDK and excerpt:The Service Pack 2 (SP2) release of Microsoft Office SharePoint Portal Server 2003 adds a supported API that you can use to update SharePoint Portal Server 2003 with changes to user accounts. When a user is migrated in the Active Directory directory service, the security identifier (SID) changes for that user. Additionally, ...
Security training alert, Security training alert. One of my co-workers, Dan Sellers, along with a few MVPs (including Bill Baldasti of Infusion Dev) is going to do a set of web casts focusing on Web Security. Dan is our security guru at MSDN Canada, he received many awards for the best speaker including the one at the last years West Coast Security Forum: http://www.wcsf.com/. Dan is going to focus on Web Security, an initiative we call: Web Security November. The web casts will happen every Wednesday ...
As you venture into this aspect of development, you will likely use 1 of 2 assemblies to provide you access to Active Directory (AD) or other directory services providers (DSP's). Microsoft's System.DirectoryServices is the most fundamental - providing core LDAP (lightweight directory access protocol) access to AD and its schema/components. The other is Microsoft's Active Directory Services Interface assembly (ADSI) - the ActiveDs.DLL - which is not so documented but provides a hoard of features ...
As the day started through the mists of the 'Universal' hangover I wondered what Uncle Bob Muglia had install for us... Well for starters: We got the 6th disk from 'Goods'- Longhorn CPT Sept . We got the promised RC of Viz Studio 2005 And we got the promise of a SQL Server 2005 standard edition - (if you are form the US or Canda {read small print on registration site!} - not JASJARGate again!!) So on to the keynote: The “share the pain” video - well done theboys and girls at TVP UK was ...
If you are using FomrsAuthentication against ActiveDirectory you might want to search if a User Id exist in Active Directory or not before taking certain action like creating new profile. Here is a Code Snippet used to Check for existance of a User in Active Directory. Some of the setting are stored in web.config. Note: IT is highly recommended that you do not store usernames or passwords in web.config unencrypted here for demonstration I have put them in clear text to connect to AD. ConfigurationSettings.AppSe... ...
Using LDAP to authenticate users is common, fast, and easy way to do. A while back I wrote a tutorial about how this can be done in a web app using the IP*Works! LDAP component. This particular article was written using VB.Net code samples. Some people ask me for classic ASP code samples, here you go. Lots of people ask about how to change an Active Directory (orADAM) user password over LDAP. With Novell, SunOne, and OpenLdap, its not so difficult as long as you have the administrator permissions ...
I am retrieving some info from Active directory and I had a question what happens if invalid (non-existing) Property Name to System.DirectoryServices.Pr... will be passed E.g -what would happened if the code reads anEntry.Properties["userAcc... ,but DirectoryEntry doesn't have property "userAccountControl“ . It is not documented in MSDN so I had to investigate it myself. In .Net 1.1 I found that anEntry.Properties["userAcc... returns not null ...
Rod Trent posted over on his blog some thoughts on running a domain controller as a VM (virtual machine). I can think of two places I would do this. Disaster recovery and as part of a "swing" upgrade to active directory from an NT4 domain. In most instances you are building a new destination DC on new hardware, and have an NT4 domain controller on older hardware. Build the new Windows 2003 Server and then build an NT4 server on it as a VM. Promote it to be the PDC. Upgrade it to be the new AD domain’s ...
Scott Reynolds asks if there is a way to authenticate against AD without using a try/catch block to know if the user is valid. I didn't find a way but I'm okay with that as the following code I did for custom web service authentication *works*. /// <summary>/// Authenticates a user against Active Directory/// </summary>/// <param name="adPath">The path to the Active Directory provider to authenticate against.</param>/// <param name="username">The username to authenticate ...

One of the frustrating things I find in my daily work is finding someone in Active Directory to change some information.  I find it frustrating that I can't assign a shortcut key to instantly bring this up to exactly the point where I can type in a name to find an account.  It is just one of those things.

I could write my own, but then I'd have so much work into it, I'd feel like I should sell it.

I heard a rumor that a Longhorn Server beta should be available in July. Apparently it was discussed in one of the Tech*Ed breakout sessions. We already have a late June target for the client beta. Speculation abounds on whether the Longhorn Server beta will have any new Active Directory bits ...
This is my breakdown of the keynote. This is unedited and most likely filled with spelling and grammar errors. 8:52 - Finally sitting down. Received a free Windows Update Services (WUS) CD 8:55 - The half the large screens as have Windows Media Player on them with visualizations. On the other half the sponsors list keeps going by. Where is Dell as a sponsor?? Usually Dell is a huge sponsor. Dell also doesn't have booth. 8:59 - People still entering. Good music so far. 9:03 - Welcome everyone to TechEd. ...
From the syllabus: Ever wondered how Microsoft IT manages and operates its AD infrastructure? Think Microsoft employees are any more accepting of downtime or performance issues? Microsoft has the oldest production Active Directory in the world (happily authenticating users since '99), so come listen as they share their best practices on everything from domain controller placement, performance monitoring, and change management, to disaster recovery, tools, and 64-bit DCs. This session rocked and I ...
I really have no idea if anyone else found it funny but honestly I'm a Samantha Bee fan, well... a Daily Show fan. For those of you who were not at the Keynote speech from Steve Ballmer I'll fill you in. Since this is my first TechEd I really have no idea if they do something like this every year or not but my gut says they probably do. The program started out with what they called “The Techie Show“ with a similar graphic and theme song as the Daily Show. Themed like a spin off if you ...
Today I was at the spring MSDN Technet brief in Rotterdam, a free event that you can attend, where Microsoft and partners get you up to speed on the goings on, and where you can follow some interesting sessions and labs.The Keynote, given my MS' Tony Krijnen (exellent speaker) of course focused on the bran-spanking-new SP1 release for Windows Server 2003, which was last night released as RTM, aswell as going into some depth on the x64 versions of MS products that are also RTM as of today. No mention ...
Update 18 march:Short awnser: Time Zone settingsScroll down for more info! ---------------------------... the sentence "The clocks on the client and server machines are skewed" produces a mere 2 pages in google. For something that seems to be relatively easy to have happen, there is a sad mount of data available on the problem. I hope this post helps. So I was setting up 2 Windows Server 2003 images. I had copied an already working configuration of mine, renamed it, and ...
We had a fanatastic session on patch managment at ITPRO delhi and in fact it turned out to be Remote infrastructure managment Session. Not just the scope of the Session was covered but the discussions lengthened beyond the scope.Following topics and Tools where covered in theory as well as hands onMBSA- microsoft baseline security AnalyserSUS - Software Update ServiceWindows update Catalogueand last but not least SMS Usage of Active directory w.r.t GP and then using SUS for downloading the Patches ...
The new Security Application Block in Enterprise Library provides a few advantages over the old application block. It looks like it will be a lot simpler to use. Notably, it no longer appears designed around Authorization Manager’s peculiarities. In fact, it comes with an authorization implementation that does not depend on Authorization Manager. There are a few concepts to understand when using the Security Application Blocks: Authentication Authorization Roles Profiles Every person or system ...
A little earlier, Chris had put this comment on my blog about Using The WIX Toolset for Distributed Development. Firstly, I believe that Chris and I belong to different breeds of setup engineers. Chris uses tools like AdminStudio, DevStudio and Repackager to repackage setups and distribute them via SMS, Active Directory or other Change and Configuration management applications. This breed is often known as a packaging engineer. They have to often deal with hideous packages which move all sort of ...
Group Policy Infrastructure White PaperThis was just released. It neatly wraps up a bunch of seperate Group Policy documents and sources into a single whitepaper. Very good reference.Intended for system administrators, architects, and others who need to create and manage Group Policy settings, this paper explains Group Policy infrastructure and shows how the new Group Policy Management Console (GPMC) fits into this infrastructure. The paper includes detailed information about Group Policy processing ...
Authorization Manager provides a set of APIs included with Windows 2003 (available as an add-on to Windows 2000) that provide application developers a way to build Role-Based Access Control into applications. When setting up Authorization Manager (AzMan), you can choose to locate your AzMan rules store in an XML file or in Active Directory. Often, you'll use one store (XML) for development move to a more scalable and flexible store (Active Directory) for production. I ran into two gotcha's that may ...
When the TechEd DVD comes out, you may want to check these sessions out.The most popular sessions (the butts-in-seats vote) for Monday, May 24 were: Code Title Speaker Name MSG343 Exchange Server Sizing Stephen Tramack SEC300 Securing Microsoft: How Microsoft Does IT Michael Sharp SEC353 Anatomy of a Network Hack: How to Get Your Network Hacked in 10 Easy Steps Jesper Johansson CTS200 Connected Systems: Service Orientation and the Windows/.NET Developer Don Box; Doug Purdy WIN499 Windows and Linux: ...
Does any one know of, or has used an Open Source Messaging Bus Implementation that can be used from C# I am currently designing a system where I would like to use a Messaging Infrastructure to implement a workflow type solution, the problem I have is that I do not wish to use MSMQ as I do not want to have to be forced to install Active Directory on my servers, and other solutions that are available have varying degrees of support for C#, with associated performance penalties, and cost a boat load ...
I was on a search for secure server features, I found very interesting on Microsoft ISA Server. Latest version “ISA Server 2004” Provides “Application layer firewall, VPN and web cache”. ISA --> Internet Security and Acceleration Server 1) Secure, Fast and Manageable Internet connectivity. 2) Multilayer enterprise firewall 3) High level web cache. 4) Server alters on malicious attack with firewall guard. 5) Publish multiple secure websites using single IP on external interfaces ...
While kids in the other class are having a difficult time. I am having a bang in my MIS class at SZABIST. I have never been into marks and stuff but can’t help mentioning that my tally is coming real nice. Out of the current allotted set of 70 marks out of 100 I have somehow managed to score 65. So now the 30 marks are just a piece of cake as I see it. I like classes where there is brainstorming but nothing to practice; I tend to incline better towards theoretical subjects other then programming ...