| Francisco's profileARGPhotosBlogLists |  Tools  Help |
ARGOs ARGs do dia-a-dia!!!! |
|||||||||||||||
|
April 24 Windows 7: Setting up a USB bootable device for installsEste artigo foi publicado pelo Jeff Alexander, um IT Pro Evangelist na Australia e explica como instalar o Windows 7 a partir de um disco USB.Publico-o na integra para lhe poder aceder quando precisar! Windows 7: Setting up a USB bootable device for installs
You will need at least a 4GB USB key to fit the entire contents of the Windows 7 DVD. In Australia you can pick these up for under $25 now so it’s not a huge outlay. We have a bunch in the office as part of a promotion so I have one for x86 and x64. So the next thing you are going to need to do is format this disk using DISKPART. Follow the steps below:
Type ASSIGN so a drive letter gets assigned in explorer.
Now you should have a USB disk ready for the Windows 7 source files. If you have the DVD load that into your DVD drive and copy the entire contents to the root of the USB drive. Once that is done you will have a bootable USB disk ready for you to build your machines much much faster with Windows 7. I find this a useful and quick way to get machines build and it’s portable as well! March 26 Talking about Torneio Microsoft - Equipa MIC
Quote Talking about Torneio Microsoft - Equipa MIC March 19 Talking about Ask the Directory Services Team : How do I find out what changes are going on in my Active DirectoryEste artigo veio em tão boa altura e está tão bom que não resisto a publicá-lo na integra!!!
How do I find out what changes are going on in my Active Directory?
Herbert here. Here are some common questions asked by AD Administrators:
Both symptoms can be severe enough to impair the operations of your AD forest. Here are examples of past occurrences that we tracked down: 312403 Distributed Link Tracking on Windows-based domain controllers You can use these USNs to identify recent changes in the database of each DC. Each AD Server (includes AD/AM and LDS) has an attribute named “highestCommittedUSN” on its RootDSE object. Here’s an example output from LDP:
Based on this number, you can query for the most recently changed Objects using an LDAP query. As an example, I’m using LDIFDE and I’m subtracting 10000 from the “highestCommittedUSN” value seen on RootDSE:
This file now contains the names of the objects that were changed or created recently. The object names give you a hint as to what area of AD you need to look at, but it may not be enough of a clue yet. If they are not all new objects (very recent whenCreated attribute), you may want to look at what attributes have been changed. Also, you want to know from which DC the object change is originating. Maybe the DC that writes all the changes is the primary DC your provisioning system is working against, or it’s a DC you don’t expect to see. To get this information, retrieve the object meta-data using:
The output looks like this: Loc.USN Originating DC Org.USN Org.Time/Date Ver Attribute The leftmost column is the local USN; the more interesting fields are to the right, where you see the originating DC information and change time-stamp, attribute version and name. If the version is really high, it could mean excessive updates to this attribute which deserves more investigation. You should also look out for changes seen for linked attributes (Windows Server 2003 Forest Mode and higher): Type Attribute Last Mod Time Originating DC Loc.USN Org.USN Ver Distinguished Name Note: High values for USNs will distort the table view. Many “ABSENT” and high version numbers indicate high activity with linked values. “ABSENT” indicates a deleted link, so you can think of it as a value tombstone. It’s treated just like an object tombstone in the database. During replication it means that the value is deleted from the attribute, in this case a group membership. Attributes that can contain lots of data deserve special attention. This often applies to attributes containing binary values, including the security descriptor for AD or Exchange, or attributes containing certificates. Note that by default, LDIFDE does not dump “ntSecurityDescriptor”. If any of these attributes show high version numbers or a recent update time stamp on many objects, you should investigate further. It will depend on the attribute on how you investigate the changes, for example for “ntSecurityDescriptor” you can dump it using DSACLS and check out any excess Access Control Entries. Excessive changes to “ntSecurityDescriptor” are not so much a problem regarding database size because there is single instance storage for these since Windows Server 2003. But they can take lots of replication bandwidth. The information on objects, attributes and originating DC you collected so far should give you good hints regarding the originator of the changes. If it’s not clear yet, you can enable auditing on successful changes to these attributes to find out the process that is making these changes. It may be necessary to make the attribute viewable in ACL Editor so you can define auditing for it. See the guide in: 296490 How to modify the filtered properties of an object But what if there is no pattern evolving while you get the data? One approach is to repeat the LDIFDE export and reduce the window until you see a pattern. Maybe the problematic changes only happen at certain times of the day, so it would also play a role when you create the export. Or the changes happen on a branch office that only replicates at a certain time of day. But there are also more naming contexts that may have excessive changes, such as Configuration or the DNS partitions ForestDnsZones and DomainDnsZones, and on GCs. Hopefully, the admins of the other domains are already aware of the excessive changes. This is how you search the whole of the GC data:
Hint: Keep in mind that this query only shows changes for attributes that are present in the GC. And finally, the problem may not be with existing objects that are changed, but with objects that are deleted and re-created all the time. Deleted objects still take database space for the tombstone, and the new objects cause replication traffic. LDIFDE can include deleted objects in the query when you pass the “/x” option:
If the combined size of the tombstones is a problem, you have to wait until the garbage collection is done before you can reduce the size of the database file using an offline defragmentation. We advise against shortening Tombstone Lifetime for the sole purpose of kicking out these objects earlier. When you have strict replication enabled and replication quarantine is enforced, this shortening TSL to a few days can have a drastic impact on the availability of your Active Directory. I hope you’re having fun investigating all your ongoing AD changes. I think you’re up to a few interesting findings. - Herbert Mauerer November 30 Active Directory Topology DiagramerThe Active Directory Topology Diagrammer (ADTD) tool is now available for download for free from the Microsoft Web Site at the following address: http://www.microsoft.com/downloads/details.aspx?familyid=cb42fc06-50c7-47ed-a65c-862661742764&displaylang=en&tm#Overview
November 08 Exchange Server Documentation Updates - November 2007A new set of documentation regarding Exchange 2007 is available from the Exchange Server documentation team.
and I've noticed the "geekness alert!" send by Rui Silva and I will download and print the poster!! That's super cool! del.icio.us tags: Exchange 2007, docs November 07 Insight for Active Directory v1.0ADInsight is an LDAP (Light-weight Directory Access Protocol) real-time monitoring tool aimed at troubleshooting Active Directory client applications. Use its detailed tracing of Active Directory client-server communications to solve Windows authentication, Exchange, DNS, and other problems. ADInsight uses DLL injection techniques to intercept calls that applications make in the Wldap32.dll library, which is the standard library underlying Active Directory APIs such ldap and ADSI. Unlike network monitoring tools, ADInsight intercepts and interprets all client-side APIs, including those that do not result in transmission to a server. ADInsight monitors any process into which it can load it’s tracing DLL, which means that it does not require administrative permissions, however, if run with administrative rights, it will also monitor system processes, including windows services. Insight for Active Directory v1.0
Technorati tags: Active Directory October 24 Microsoft vs. BlackberryMicrosoft announced the new Microsoft® System Center Mobile Device Manager 2008 and that will make the main competitor rethink all strategy. The main reasons that keeps Blackberry selling devices and servers are the supportability, the easy way to manage devices from a centralized point in the network. And the feeling of security that a blackberry user gets when he use his device. From now on Microsoft will try to compete in this areas, centralizing the management of mobile devices in the Active Directory via Group Policies and bringing a new layer of security to the mobile network, implementing software distribution Very well explained @ Mr. Mobile
October 19 PopFly goes publicPopFly goes into a public beta and the logo had changed too!...
del.icio.us tags: popfly October 15 Hotfix for ExcelHotfix for Excel released
October 12 Windows Live SkyDrive updatedThe beta of Windows Live Skydrive was updated today. the news are:
You can check for more @ the Windows Live SkyDrive team blog del.icio.us tags: Live Skydrive October 11 ITIL FoundationsSince last week I'm ITIL Foundations Certified, but WTF is ITIL? the best description (...and help for the exam...) I've found it on Jose Barreto's blog:
check the rest of the post for a more explanatory description of some processes and some study material. October 02 Microsoft Active Directory Topology DiagrammerThe Microsoft Active Directory Topology Diagrammer reads an Active Directory configuration using ActiveX Data Objects (ADO), and then automatically generates a Visio diagram of your Active Directory and /or your Exchange 200x Server topology. The diagramms include domains, sites, servers, administrative groups, routing groups and connectors and can be changed manually in Visio if needed. October 01 Windows Mobile Communicator RTMMicrosoft released the new communicator client for Windows Mobile devices. Communicator Mobile 2007 requires Windows Mobile 5 or 6. The client can be downloaded here.
September 27 IE7Pro - The Ultimate Add-On for Internet ExplorerFor those of you who want to take the browser experience beyond the "normal", and for those of you who are asking for a IE 7 add-on that closes the gap between IE and other browsers...
IE7Pro - The Ultimate Add-On for Internet Explorer Technorati tags: Internet Explorer, browsers September 25 Windows VISTA SP1 (beta)About the same time as Windows Server 2008 RC0 gets out, the beta version for the Windows VISTA SP1 is out there too. "(...)Windows Vista SP1 beta (build 6001-16659-070916-1443) is available now for download at connect.microsoft.com in English (~3GB), German and Japanese as Client or ClientN for x86 and x64 versions. Optional component(s): Language Packs for EN-DE-JP." As always, there is a white paper you should read before: Windows Vista Service Pack 1 Beta White Paper.
Windows Server 2008 DocsNow that Windows Server 2008 RC0 is out there, take a look at some of the documentation: - Windows Server 2008 Step-by-Step Guides - Windows Server 2008 Technical Library
Technorati tags: windows server 2008 Windows Server 2008 RC 0From the Windows Server Division WebLog
... Great, lets delete all of the VM's with the June CTP release and install it again... :-)
Technorati tags: Windows Server 2008 September 24 Office Communications Server 2007 Best Practices Analyzer
A few days after the RTM launch, here it is: the "Office Communications Server 2007 Best Practices Analyzer"
September 21 Introducing Microsoft® Office Communications Server 2007This collection of 2-hour clinics explains the enterprise capabilities provided by Microsoft Office Communications Server 2007. These clinics are for infrastructure specialists working within organizations that are looking to deploy Office Communications Server within their solutions.
Familiarity with the following:
This offer includes the following: Clinic 5127: Introducing On-Premise Conferencing Using Microsoft® Office Communications Server 2007 Clinic 5128: Introducing Enterprise Telephony Using Microsoft Office Communications Server 2007 Clinic 5129: Customizing Real-Time Communication with Microsoft® Office Communications Server 2007 Technorati tags: OCS 2007 September 20 SharePoint: 7 New Features That Enhance Security in SharePoint
Descoberto na TechNet Magazine de Janeiro 2007. SharePoint: 7 New Features That Enhance Security in SharePoint -- TechNet Magazine, January 2007
|
||||||||||||||
Send a private message
Subscribe to RSS feed
Tell a friend
Add to My MSN
Add to your network
Sign up for alerts
|
|
