We recently took on a new hire, although I was confident in their ability in managing Active Directory I wanted to take an extra step in protecting Organizational units from deletion. I was sure that I could do this quickly using PowerShell instead of right-clicking each of our 80 odd OUs and going into their … Continue reading "How to protect all existing Organizational Units (OUs) in your Active Directory domain from Accidental Deletion by using PowerShell"
We recently upgraded our Domain and Forest Functional Level from 2003 to 2008 R2, after a day or so I started having problems connecting to a number of 2008 R2 Hyper-V Virtual Machines. When attempting to connect I would receive the following error: An Authentication Error Has Occurred. The Encryption Type Requested Is not supported … Continue reading "Fixing KDC Authentication Problems when upgrading your domain and forest functional level from 2003 to 2008 R2"
I was recently helping out a colleague at another school as they were having difficulty in a specialised application sending e-mails to external addresses. After a bit of investigating we found that the send connector configured for internet e-mail wasn’t allowing anonymous connections to it (which is dangerous) but since this particular application didn’t allow … Continue reading "Allowing anonymous relay on Exchange 2007/2010 on connectors for programs to send via SMTP using your Mail servers and how to secure it for internal use only."
So I’m preparing on doing a clean-up of our NETLOGON/SYSVOL folder containing about 50 or so different logon scripts (plenty of which I know are no longer used). I wanted to create a list of all of our active directory users along with what logon script they were assigned (I could then feed this list … Continue reading "Getting a list of users in Active Directory as well as their Logon Script using dsquery and dsget"
So we recently upgraded our printing infrastructure with a whole new lot of printers and software (along with a shiny new version of PaperCut MF) and have implemented a global queue or better known as Follow Me Printing. So how do we go about pushing out all the new global printers to our users. Well … Continue reading "Deploying printers via Group Policy and getting them pushed out the right way as well as solving driver installation issues (0x80070bcb Specified printer driver was not found and needs to be downloaded)"
I was recently involved in a project to help secure a School’s Active Directory environment. After sitting down and planning what we wanted to achieve in terms of account security we went to work. After setting up all of the IT based security groups and assigning and delegating the appropriate rights and permissions we found … Continue reading "Applying inherit rights (inheritable) for permissions to a large number of Active Directory objects"
We are currently in the process of trailing Forefront Endpoint Security along with our SCCM Deployment. So after a few weeks of tweaking we have got our systems center deployment to a level where we are happy with it, it was time to begin installing and testing Forefront. After beginning our installing and answering a … Continue reading "Setting up an SPN and fixing the cannot verify the service principal name error when installing ForeFront Endpoint Protection"
We’ve recently been having an issue where printers being deployed via group policy haven’t been deploying, or are deploying but not being set to default. So after some investigation, the easiest thing to do would be to write a Visual basic script to ease the deployment of printers throughout our environment. Luckily for us we … Continue reading "Assigning resources via logon script based on computer names."