joeware - never stop exploring...

http://msdn.microsoft.com/en-us/magazine/ee309869.aspx

But why is there only an x86 version???
   joe

http://www.wired.com/gadgetlab/2010/03/popular-science-puts-entire-scanned-archive-online-free/

http://www.theregister.co.uk/2010/03/05/microsoft_unplugs_ebs/
Microsoft will halt development of its mid-market oriented Windows Essential Business Server software bundle, as the company bets on "cloud computing" rather than lump licensing to woo penny-pinching IT markets.

kerberos.msg.type == 12 || kerberos.msg.type == 13 || kerberos.msg.type == 30 || kerberos.msg.type == 10 || kerberos.msg.type == 11

I was recently asked for a list of MSFT blogs, here you go!
 
http://blogs.technet.com/blogms/pages/directory-of-microsoft-team-blogs.aspx
 
   joe

From: joe [mailto:support@joeware.net] Sent: xxx To: xxx Subject: RE: Support Reuest
Hi xxx,
You won’t be able to do this with just usernames in a file with just adfind/admod, you would need a script to add the additional logic to look up the usernames and [...]

Recently a friend pinged me about what I thought about load balancing Domain Controllers behind some sort of VIP (Virtual IP) hardware be it from Brocade, Cisco, Barracuda, F5 or from whatever vendor.
As a generic statement, I am against it. Period.
Active Directory was built in such a way that the load balancing[1] and [...]

From: joe [mailto:support@joeware.net] Sent: xxx To: xxx Subject: RE: AdFind
Hey xxx, you could do something like
adfind -default -f "&(objectcategory=group)(name=*webmaster*) " -dn
If you want to specify a domain other than the default, replace -default with -b domainDN
   joe
–
O’Reilly Active Directory Fourth Edition – http://www.joeware.net/win/ad4e.htm

From: xxx [...]

From: joe [mailto:joe@joeware.net] Sent: xxx To: xxx Subject: RE: ADFIND – Group + Members Query
You can’t do this in one query, it will take at least two.
First query would be to find the group and dump its memberof values.
adfind -default –f "&(objectcategory=group)(name=groupname)" memberof
The second query [...]

PKI / Certificate Authority Information
http://blogs.technet.com/pki/archive/2007/08/19/windows-pki-documentation-reference.aspx

I have added a text file in a semi-CSV format up on the website for current versions and release dates of the utilities. There is a link from the free tools page but you can go directly to it via
http://www.joeware.net/freetools/versions.txt
This is what it currently looks like
Updated: 2010.02.18
—
App,Version,Date
accexp,01.01.00,2002.08.04
adfind,01.41.00,2010.02.13
admod,01.12.00,2010.02.13
adqueueloop,02.00.00,2006.03.23
atsn,01.00.00,2004.03.27
auth,01.01.00,2001.08.17
changepw,02.03.00,2006.06.26
clienttest,01.01.00,2005.11.09
cpau,01.11.00,2005.11.08
dnssrvrec,01.00.00,2006.01.15
eldll,01.00.00,2002.02.17
eldllex,01.00.00,2002.02.17
exchmbx,01.04.00,2006.04.29
expire,01.00.00,2000.04.15
findexpacc,01.01.00,2005.06.19
findnbt,01.02.00,2002.11.15
findpdc,01.00.01,2001.09.28
gcchk,01.03.00,2004.08.30
getuserinfo,02.07.00,2003.09.27
lg,01.02.00,2006.07.10
memberof,02.03.00,2006.06.10
netsess,02.00.00,2004.02.01
oldcmp,01.05.00,2004.12.28
qlogoff,01.00.00,2001.01.28
quiet,01.01.00,2002.04.27
psomgr,01.00.00,2007.04.15
secdata,02.03.00,2002.08.19
sectok,01.00.00,2001.11.11
seinteractivelogon,00.10.00,2001.09.20
shrflgs,01.00.01,2005.02.19
sidtoname,02.00.00,2003.03.07
snu,01.00.00,2001.11.04
svcutil,02.04.00,2005.06.12
unjoin,01.01.00,2007.07.17
unlock,02.01.00,2004.08.16
userdump,01.01.00,2001.01.28
username,01.00.00,2002.10.08
w2klockdesktop,01.00.00,2001.05.10
writeprot,01.00.00,2004.08.08

If you have Outlook 2010, install this bug fix…
http://blogs.msdn.com/buckh/archive/2010/02/12/fix-for-message-size-issue-in-outlook-2010-beta.aspx

Previously I announced that ADAM/ADLDS was available for Windows 7 client machines. Shortly after I announced that MSFT quietly pulled the product back off the download site due to some issue that they did not disclose. An issue critical enough though that they actually pulled the product.
Anyway I just got confirmation from Microsoft today that [...]

Ten years ago today Active Directory was made publically available[1]. Been a long ten years and we have seen some cool/wonderful things and some sad/horrible things. Overall, looking good AD.
   joe
 
[1] RTM was December 15, 1999.

Last time I looked, the Daemon ISO Mounting Tool didn’t work for Windows 7, just looked again today and now Windows 7 is supported and it actually works:
 
http://www.disk-tools.com/download/daemon

If you see any of these errors
 
You cannot open this document because we cannot set up your computer to open documents that have restricted permission.
 
The Rights Management client returned the following result code: 0×80004005(-2147467259).
 
The Rights Management client returned the following result code: E_DRM_SERVICE_NOT_FOUND.
 
The Rights Management client returned the following result code: E_DRM_BIND_VALIDITY_TIME_VIOLATED.
 
Check out http://support.microsoft.com/?kbid=979099

There is an article on TechNet about the forest’s tombstone lifetime for Active Directory (http://technet.microsoft.com/en-us/library/cc784932(WS.10).aspx) that was discussed on an internal MSFT DS Team / MSFT MVP email list. The discussion pointed out that there is a little confusion around the article.
Specifically the confusion can come up around step 8
Note the value in the Value [...]

I have posted what I expect to be the final AdFind and AdMod beta before final release.
http://www.joeware.net/downloads/beta/adfindmod_beta.zip
 
I am shooting for a mid-February release.
 
In the last 10 days most of the updates are in AdFind. Lots of misc shortcut bug fixes. Added some additional attribute decodes. One big item is that I added digest [...]

Just don’t do it.
See http://technet.microsoft.com/en-us/library/ee424329(WS.10).aspx
From the article
When a company acquires another company, business unit, or product line, the purchasing company may also want to acquire corresponding IT assets from the seller. Specifically, the buyer may want to acquire some or all of the domain controllers that host the user accounts, computer accounts, or security [...]

http://www.pcworld.com/businesscenter/article/187009/financial_firm_notifies_12m_after_password_mistake.html
A Concord, New Hampshire, financial services company is sending data breach notification letters to customers after discovering that shared passwords, set up to simplify administrative functions nearly 10 years ago, could have exposed the private data of 1.2 million customers.

Off the top of my head, every company I have ever seen does this in some [...]

I promise myself that any time I hit about five emails for the same issue, I will try to write a blog entry about it so people can find it during their Google search phase before attempting to bother the developers/support folks…
Well I hit the limit this morning with an issue that has annoyed [...]

I have updated the AdMod Beta again. My good friend Princess (Jorge) was very nice to ping me with an issue he was hitting in AdMod (both previous stable versions and beta) this last week and low and behold after testing I realized it was a bug. A bug in a very nasty portion of [...]

http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=a45059af-47a8-4c96-afe3-93dab7b5b658
 
The same for Windows Vista is on the horizon…

I incorrectly linked AdMod when I posted it (http://blog.joeware.net/2010/01/07/1862/) previously. So if you ran it you probably saw an error about a missing DLL unless you had already installed the Borland/Codegear DLLs for some other app. I have recompiled and relinked with static linkages so everyone should be fine now. Let me know if there [...]

“Better authentication methods can come along any day now… I’m ready…”
That is something I said this morning while working on my work laptop. We recently were required to add whole machine encryption which meant adding yet another password and remembering yet another ID/Password combination. When I loaded the encryption software two things irked me… The [...]

Wow, I got quite a few emails on the Special Folder GUIDs posts… Thanks to all who sent me the link… Keep it up!
Here are the link everyone was sending me
http://msdn.microsoft.com/en-us/library/ee330741(VS.85).aspx
http://news.cnet.com/8301-13860_3-10426627-56.html?part=rss&subj=news&tag=2547-1_3-0-20

After seeing http://blog.joeware.net/2010/01/07/1860/ my good friend Deano reminded me that he had shown me something like this back last year for just Network Connections…
md c:\_special\nc.{7007ACC7-3202-11D1-AAD2-00805FC1270E}

Looks like…

http://www.wired.com/video/ces-2010-hands-on-with-transparent-display-of-the-future/60826805001

No new info here… Just revisiting my previous post about the recorder that lets you record what you are doing for documentation or debugging. I keep forgetting the command and so wanted to post here so I can find it easier without having to worry that the original poster’s post goes away…
So joe, when you [...]