joeware - never stop exploring... :)

Information about joeware mixed with wild and crazy opinions...

8/22/2008

Active Directory Application Mode (ADAM not ADLDS) on Vista

by @ 3:48 pm. Filed under tech

So who here likes to run ADAM on their client PCs? Who would like to run the Windows Server 2008 version of ADAM on Vista? Yeah me too.

Microsoft was stupid and didn’t make it so Windows Server 2008 ADAM could be installed on the Client OS. Extremely shortsighted. Extremely silly.

So what we need is for everyone who has a TAM or access to Connect is to report an issue in wanting to install Windows Server 2008 version of ADAM on Vista.

This will help the AD Product Dev group help us as I think they need customer pushes to help do this.

The other solution is to run virtual guests running Windows Server 2008 when you want to test ADAM stuff or AD stuff and that is just silly. SQL folks get a light version of SQL Server to play with on Dev boxes, why do LDAP Devs have to load a whole virtual server?

I expect I am in the minority but I tend to run several instances of ADAM on my laptop directly, they all replicate with each other. That way I have one machine running replicated instances and I don’t have the overhead of a virtual machine. I also run ADAM on all, yes, all of my machines in my house with the exception of my Vista Media Center which I would LIKE to run ADAM on and my Vista laptop which again I would like to run ADAM on. In fact, this is one of the reasons why I haven’t really adopted Vista. ADAM is one of my really want to have on the machine apps. I like ADAM more than I like Vista… hands down; no comparison.

Basically MSFT gave us a very handy little LDAP solution and then they took it away, I would actually love to see LDAP servers running on all client machines. I can see lots of fun uses for it from local phone books to media libraries, etc. While I could use SQL, the ADAM install and config is so much easier than dealing with the SQL crap at least to me.

 

To be honest, I wish they just kept it as a Web Download now and I wonder how much work it would be to get OpenLDAP to work with Windows Integrated Auth like ADAM did so we can just install and use that instead. I would really like to run ADAM on my Vista and other client machines, but it really comes down to wanting an LDAP application, and if I have to, I would use OpenLDAP directly on the client OS rather than use ADAM on a virtual guest running off of virtual pc/server or whatever on the client OS. Virtual machines have their uses, but this is just stupid to have that as the answer for this problem. I hope whomever at MSFT that needs to, pulls their head up from the weeds and realizes that and fixes this shortcoming.

 

So if you have a TAM, if you have connect access, log bugs or DCRs that you want to run ADAM (or if you must use the new term ADLDS) on Vista and all client OSes going forward.

 

  joe

Rating 3.00 out of 5

8/20/2008

VMWARE is alleged to be throwing their hat in the ring now…

by @ 11:06 am. Filed under tech

In reference to the previous MSFT Virtualization platform validation post

http://www.networkworld.com/news/2008/081908-vmware.html

There doesn’t seem to be any official announcement, but a Microsoft spokeswoman said Tuesday that VMware has joined Microsoft’s Server Virtualization Validation Program. This means that VMware will try to get its hypervisor certified by Microsoft, and once that happens Microsoft will offer technical support for Microsoft applications running on VMware servers. It’s not clear when those support plans would become available.

http://www.chriswolf.com/?p=183

Yesterday evening Richard Jones and I received word from Microsoft that VMware had joined the Server Virtualization Validation Program (SVVP) and I expect an official announcement to come later today.

VMware has now signed on to the SVVP program. Microsoft is certainly excited to add VMware to the program, recognizing the value this provides to Microsoft customers. – Microsoft

Rating 3.00 out of 5

8/19/2008

Come on EMC/VMWARE….

by @ 11:52 am. Filed under tech

I want to see your name on this list…

http://www.windowsservercatalog.com/svvp/

Rating 3.00 out of 5

8/18/2008

If you can, please help my insane friend.

by @ 7:04 pm. Filed under general

I have a friend who is a bit insane. I say that because she runs many many miles just for fun. She isn’t trying to chase down a cat that got out the door or chase down a nice ice cream cone or something, she just runs to run and to help other people. She is a marathon, or more accurately, a half-marathon runner (that’s 13.1 miles).

She ran in the Rock and Roll Arizona Half-Marathon this last January, the first marathon she ever ran in and now she just signed up to run in the Rock And Roll San Antonio Half-Marathon. To get an idea of how much running this is… She goes through a pair of running shoes just for training, by the end of training the shoes are destroyed and she has to buy new ones for the actual marathon. The shoes she buys are a size larger than she wears because her feet swell up a whole size during the running. That’s just cuckoo in my opinion but obviously opinions vary and I applaud her tenacity and willingness to help.

 

She does all of this running this for a group called “Team In Training” which is a charitable organization that raises money to support “The Leukemia and Lymphoma Society”.

If you have the inclination and ability, I do encourage you to help her with her cause. You can get more info at her web page: 331

 

http://blog.funtracy.com/rock-and-roll-san-antonio-marathon/

Rating 3.00 out of 5

8/15/2008

American Idol Top 12

by @ 3:28 pm. Filed under general

Dean said I am a hermit and couldn’t believe I didn’t know who won when he saw my last post.

I truly do not know who won, please do not share that info with me. My head has seriously been very much down in the dirt the last 6-12 months with the CO stuff and just working on house and job. I am catching up, maybe by January I will be caught up, we will see…

 

The guys….

David Cook – Has grown more and more on me. I do think he needs to put the guitar down more though. Definitely deserves to be in top 12.

David Archuleta – Still amazing… Definitely deserves to be in top 12.

Jason Castro – Liking Jason more and more as well. Definitely deserves to be in top 12.

David Hernandez – Deserves to be in the top 12

Michael Johns – Deserves to be in the top 12.

Chikezie – Don’t think he should be in the top 12.

 

The girls…

Brooke White – Still love her vocals but still think she may be too boring to win. She does deserve to be in the top 12.

Syesha Mercado – No change in my thoughts here either.

Ramiele Malubay – Definitely deserves to be in the top 12 

Carly Smithson – Like her more and more every week. Definitely deserves to be in the top 12. Love the accent on her too.

Amanda Overmyer – Good singer but should be in a band, not AI… Her voice get old very quickly for me. Don’t think she should be in the top 12.

Kristy Lee Cook – Definitely deserves to be in the top 12.

 

Didn’t make it but should have

Daniel Noriega – His personality alone should have put him in the top 12. He couldn’t win but neither could Chikezie, David H nor Michael Johns.

Kady Malloy – She should be in the top 12 but she couldn’t let her own voice and personality out on stage. I still think this girl has mad talent hidden in her somewhere. Replace Amanda with Kady. 

 

Overall

The guys are pretty much blowing the girls out of the water this year. And of the guys… David A all the way… That kid is amazing.

 

Very cool, they get to sing Lennon/McCartney songs, this should be good.

Rating 3.00 out of 5

American Idol

by @ 11:45 am. Filed under general

So some of you noticed a while back that I wasn’t chatting up American Idol at all which I occasionally do. I am a music kind of guy and that is a show I find interesting at times. Well the thing is, with the stuff that happened the last year I didn’t actually watch it, until now. So what 6 months after the shows were aired I am finally blowing the dust off of them and playing them from my Media Center. I have no clue what happened as I paid that little attention to pretty much everything because my head was down so it is like I am watching the show as it is new right now.

I have been playing the shows as background while reviewing the AD 4th Edition and the AD Cookbook 3rd Edition, it isn’t like I suddenly had all this spare time… Just helps to have background like that when I am reading these chapters.

So anyway… David Archuleta… Holy shit. That boy can wail! Amazing, I haven’t heard a single person yet (I am about to watch the second elimination show which he sang John Lennon’s Imagine for) that even comes close to his ability. Through all of the Hollywood stuff, etc, I haven’t heard a thing yet that I didn’t think, wow… Only 16 or so… Wow. That kid has a heck of a career in front of him if someone doesn’t completely screw him over.

Some other thoughts…

The guys….

Chikezie – Good singer but just not memorable to me except for his name. His voice sounds like several other good singers and there is nothing else there that causes goosebumps.

Robbie Carrico – He will be gone early I expect. I don’t really get a feeling he is a rocker so much as wants to project being a rocker.

David Cook – This guy is pretty good too, definitely you get a rocker feeling from him that you don’t get from Robbie. He reminds me of Daughtry which I haven’t decided is good or bad yet. His voice is only so so to me though he is extremely talented and entertaining. May be a bit too cocky IMO.

Michael Johns – I think he is a solid singer and entertainer. He isn’t going to win though, just too much other amazing talent. Love his accent, those darn Aussies and their accents. I really want to go to Australia but I expect I would never leave, I would just love the music of the voices. Anyway, any time I hear an Aussie accent I think of one very good friend, miss ya chumps.

Luke Menard – He is ok, another that I expect to be gone early. Something about him seems over the top for me in his voice. The A capella stuff was good for him I think. Not an American Idol.

Jason Yeager – Good voice but extremely forgetable, everytime he comes on stage I think, oh yeah. I forgot about him.

Jason Castro – This guy is really good, I expect he will stick around for a while. Great attitude too and seems very sincere in his singing. He will be one of those Idols that has a successful career I expect even though he won’t win unless Dave Archuleta hits a wall.

Daniel Noriega – Very good voice, much better personality, this guy cracks me up with his body language and comments. Very entertaining. His “ish” comment to Simon made me laugh very hard.

David Hernandez – Good singer, will be gone relatively early as well I think.

David Archuleta – Again… simply amazing. This boy has a gift and a great attitude. I hope he doesn’t become too big for his own britches as he becomes a big star and again I fully expect he will. Probably the best singer I recall ever on American Idol. No gimmics, just a great and pure voice.

Summary for the guys… Some amazing singers in there, no one whom I would say is bad and somehow slipped in. David Archuleta is by far my choice for winning out of the group though.

 

The girls…

Carly Smithson – Great voice. Seemingly great attitude, unique, I really like her. Definite rocker chick.

Syesha Mercado – Another beautiful girl with a beautiful voice but in a way like many other voices, I don’t see her as being unique enough to win unfortunately.

Kristy Lee Cook – Extremely beautiful. The camera loves her, very good voice, but she should be on a Country Idol type show I think because I think her voice and attitude is more directed that way. She seems to be  struggling a little on the show and not sure if she will be able to correct. She definitely deserves to be there though. She could very likely be on TV and the movies as well. The country girl that the big city boy falls in love with and gives up wall street to be in the country with her, etc.

Ramiele Malubay – Love her. Big voice in a tiny package… Filipino which I have a lot of Filipino blood in me as well so I have to cheer her on. She should last a long time on the show.

Brooke White – Beautiful voice, way tooooooo nice. I just don’t see her lasting much past the middle of the show as I think she is going to bore people a little. At least she kind of bores me though I enjoy her singing and her personality.  

Kady Malloy – I think this girl has an amazing voice but she is too confused as to what is her real voice. She needs to stop doing the impressions. I don’t think she has a chance to to win but I think she has a strong career in front of her if she can figure out who she is.

Amanda Overmyer – Very unique, too unique unfortunately. I don’t expect her to last long. She just seems to be trying to hard to portray that rebel rocker. May not be an act but seems like it. Sort of seems afraid to be “ordinary” so goes way beyond who she is to try and be something more exciting maybe? Not sure.

Alaina Whitaker – Unfortunately she is forgetable to me. Unfortunate because I think she has a very good voice.

Alexandra Lushington – I expect she won’t last long either, again, good voice though.

Asia’h Epperson – Another forgetable one for me, and yet again, good voice though.

Summary for the girls… All extremely pretty or better, all have very good voices. I like Carly, Kristy, and Ramiele best. Of the three I think Kristy doesn’t have a chance to win amongst the girls though I think she would make a good Idol.   

 

Summary… As of right now, David Archuleta is easily my favorite to win this. I just don’t feel anyone else touches his pure vocals or great attitude. And he is 16… sheesh.

Rating 3.00 out of 5

8/12/2008

Under the things that make you go wtf??? category…

by @ 3:49 pm. Filed under tech

How do you get [ADSI] as a shortcut for System.DirectoryServices.DirectoryEntry()???? Seriously.

From MSDN

What is ADSI?

Active Directory Services Interfaces (ADSI) is a set of open interfaces that abstract the capabilities of directory services from different network providers to present a single view for accessing and managing network resources. Administrators and developers can use ADSI services to enumerate and manage resources in a directory service, no matter which network environment contains the resource. This can be an LDAP-based, NDS-based, or NTDS-based directory. It does not matter so long as a service provider is available for that directory service.

While there is a provider in ADSI to access AD, just because AD is in the name doesn’t mean ADSI is all about AD.  

I think something like SDSDE might have made a trifle more sense, or maybe DSDE, or DS.DE if you can put in periods.

Rating 3.00 out of 5

8/11/2008

UpToDateness Vector (UTDV)

by @ 5:04 pm. Filed under tech

Brandon posted recently about the UTDV and how to get it in PowerShell. As he mentions in the blog post some chatter on AD Org got him and I going down another road in an offline email stream. This resulted in him finding a .NET method to get this over his really painful way he was doing it. However, one of the things I told him about that he neglected to mention in his post is that you really don’t need any fancy NET methods, this data is available in a simple query response from AD. You simply need to ask for the right attribute….

Specifically you need to ask for msDS-NCReplCursors when querying the NC Head that you care about…

For example to get the info for my default domain on my default domain controller…

G:\>adfind -default -s base msDS-NCReplCursors

AdFind V01.37.00cpp Joe Richards (joe@joeware.net) June 2007

Using server: r2dc1.test.loc:389
Directory: Windows Server 2003
Base DN: DC=test,DC=loc

dn:DC=test,DC=loc
>msDS-NCReplCursors: <DS_REPL_CURSOR>
        <uuidSourceDsaInvocationID>a34ea639-dd63-4ce8-a1c2-3ecdebd0519d</uuidSourceDsaInvocationID>
        <usnAttributeFilter>2132842</usnAttributeFilter>
        <ftimeLastSyncSuccess>2008-08-11T21:00:25Z</ftimeLastSyncSuccess>
        <pszSourceDsaDN>CN=NTDS Settings,CN=R2DC1,CN=Servers,CN=Default-First-Site-Name,CN=Sites,CN=Configuration,DC=test,DC=loc</pszSourceDsaDN>
</DS_REPL_CURSOR>

>msDS-NCReplCursors: <DS_REPL_CURSOR>
        <uuidSourceDsaInvocationID>4dd96a30-d20d-4b40-bd83-556c172b8d37</uuidSourceDsaInvocationID>
        <usnAttributeFilter>3158745</usnAttributeFilter>
        <ftimeLastSyncSuccess>2008-08-11T20:52:44Z</ftimeLastSyncSuccess>
        <pszSourceDsaDN>CN=NTDS Settings,CN=TEST-DC1,CN=Servers,CN=secondsite,CN=Sites,CN=Configuration,DC=test,DC=loc</pszSourceDsaDN>
</DS_REPL_CURSOR>

>msDS-NCReplCursors: <DS_REPL_CURSOR>
        <uuidSourceDsaInvocationID>47e66f05-61fa-4bff-88e1-2a62b5ef8289</uuidSourceDsaInvocationID>
        <usnAttributeFilter>719116</usnAttributeFilter>
        <ftimeLastSyncSuccess>2007-05-16T18:47:55Z</ftimeLastSyncSuccess>
        <pszSourceDsaDN></pszSourceDsaDN>
</DS_REPL_CURSOR>

>msDS-NCReplCursors: <DS_REPL_CURSOR>
        <uuidSourceDsaInvocationID>343d88a0-0fef-4df2-ac7c-151aa3106a68</uuidSourceDsaInvocationID>
        <usnAttributeFilter>13177</usnAttributeFilter>
        <ftimeLastSyncSuccess>2006-07-15T13:43:49Z</ftimeLastSyncSuccess>
        <pszSourceDsaDN></pszSourceDsaDN>
</DS_REPL_CURSOR>

1 Objects returned

 

That will work from any LDAP query tool you want to use… And if you want this in a slightly nicer way but willing to use AdFind you can do this

G:\>adfind -default -s base msDS-NCReplCursors;binary

AdFind V01.37.00cpp Joe Richards (joe@joeware.net) June 2007

Using server: r2dc1.test.loc:389
Directory: Windows Server 2003
Base DN: DC=test,DC=loc

dn:DC=test,DC=loc
>msDS-NCReplCursors;binary:      13177 2006/07/15-09:43:49      DeletedDSA
>msDS-NCReplCursors;binary:     719116 2007/05/16-14:47:55      DeletedDSA
>msDS-NCReplCursors;binary:    3158745 2008/08/11-16:52:44      secondsite\TEST-DC1
>msDS-NCReplCursors;binary:    2132849 2008/08/11-17:02:11      Default-First-Site-Name\R2DC1

1 Objects returned

 

That is a bit cleaner to look at IMO. It also takes less data on the wire and less work on the Domain Controller as it comes over in a BLOB that I know how to decode.

 

   joe

Rating 3.00 out of 5

Active Directory LDAP Compliance

by @ 11:49 am. Filed under tech

I keep losing this link so posting here so I can find it later. 🙂

 

http://www.microsoft.com/windowsserver2003/techinfo/overview/ldapcomp.mspx

 

Summary

This paper discusses the origins of Lightweight Directory Access Protocol (LDAP) within Microsoft products and, specifically, the implementation of and conformance to the LDAPv3 Proposed Standard within Microsoft Windows 2000 Server and Microsoft Windows Server 2003. Included for reference are matrixes detailing supported Request for Comments (RFCs).

Included in This Document

• What is LDAP?

• What Does It Mean to Be LDAP Compliant?

• Active Directory’s LDAP Compliance

• Compliance Misconceptions

• Directory Interoperability

• Additional Resources

Rating 3.00 out of 5

History of Active Directory from someone who made it

by @ 10:33 am. Filed under tech

Recently there was a post on AD Org that spawned a discussion on the history of Active Directory. My friend ~Eric who is about as pragmatic as they come (though he can’t seem to get the hang of posting regular blog posts[1]) said well heck if we want the history of AD, lets all stop guessing about it and loop in the guy who is responsible for a huge portion of it. The Mr. AD himself, Don Hacherl, the guy I think of as being a 9/10 in AD when someone asks me to rate myself in AD technology and I say about a 5/6 while listening to some MCTs and other annoying folks declaring themselves a 9 when they haven’t even ever run a production AD.

Don is extremely intelligent, writes well, and was there with AD from the beginning. When he says something my initial response is always just to say “Oh ok” and accept whatever he says as authoritative and I don’t do that with many people, I often like to debate points. I can’t think of a single thing  I have read that he has written that I later changed my mind on and thought he was wrong about. I am sure there must something somewhere, but I haven’t hit it or at least don’t recall hitting it. I look forward to one day being lucky enough to meet him in person and shake his hand and say thanks for making such a cool product.

But anyway, Don took the time to respond to the AD Org list with his view on the history of AD which is great. Here are snippets of the conversation (not all emails and not all parts of the emails) below for your enjoyment and so we never lose it.

From: ActiveDir-owner@mail.activedir.org [mailto:ActiveDir-owner@mail.activedir.org] On Behalf Of John Christie
Sent: Wednesday, August 06, 2008 4:17 PM
To: activedir
Subject: [ActiveDir] History of AD…

My colleague has made the following statements:

* Novell directory services was previously called Novell Active Directory

* Microsoft licensed/purchased a cut down version of Novell Directory Services and then developed it.

As far as I’m aware, Novell eDirectory has only ever been marketed as Novell NDS. He’s not the type to do windups so does anyone have any knowledge which can confirm or deny his claims?

From: ActiveDir-owner@mail.activedir.org [mailto:ActiveDir-owner@mail.activedir.org] On Behalf Of Gabriele Scolaro
Sent: Wednesday, August 06, 2008 8:21 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] History of AD…

What I heard about AD History is that Jim Allchin who was formerly an architect of the Banyan Vines OS and StreetTalk Directory Service joined Microsoft around 1990 and played a fundamental role in the Cairo project which developed, among many other things, the X500 foundation for Active Directory.

So I may assume AD might come – in a certain way from – StreetTalk as I was also said that Microsoft closely partnered with Banyan whose engineers played a fundamental role in building some AD parts.

But this is the first time I heard AD comes from NDS!!!

Gabriele

—–Original Message—–
From: ActiveDir-owner@mail.activedir.org [mailto:ActiveDir-owner@mail.activedir.org] On Behalf Of Tom Kern
Sent: Wednesday, August 06, 2008 8:30 PM
To: ActiveDir@mail.activedir.org
Subject: Re: [ActiveDir] History of AD…

AD history=exchange 5.5

This is where ~Eric looped in Don with a BCC… Great job ~Eric; I take back some of the bad things I have said about you in the past.

From: ActiveDir-owner@mail.activedir.org [mailto:ActiveDir-owner@mail.activedir.org] On Behalf Of Eric Fleischman
Sent: Thursday, August 07, 2008 12:24 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] History of AD…

Replying to the thread again as there is probably someone that can help tell the tale of how AD started…he can tell it from the perspective of someone who was there….

From me…

From: ActiveDir-owner@mail.activedir.org [mailto:ActiveDir-owner@mail.activedir.org] On Behalf Of joe
Sent: Thursday, August 07, 2008 1:35 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] History of AD…

Oh that gave me a pretty good chuckle.

eDirectory if I recall was released in November 99 which was about the time Windows 2000 went RTM (I recall that being Dec 99 and RC3 was Nov 99, Beta started sometime in 1997).

Having spent hundreds of hours looking around the Windows Source code, specifically the AD Source I can say I have yet to have seen a single Novell reference for anything in any of the core areas of the DS other than maybe a mention in a comment to not futz with something because it could impact Netware.

The closest that can claim parentage over AD would be Exchange and I think even that is a bit of a stretch as from what I have heard, things were substantially changed to make it work properly as a solid generic LDAP directory service.

   joe

From: ActiveDir-owner@mail.activedir.org [mailto:ActiveDir-owner@mail.activedir.org] On Behalf Of neil.ruston@barclayswealth.com
Sent: Thursday, August 07, 2008 9:20 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] History of AD…

eDir is the latest version of what was named NDS. NDS hit the streets in 1993, when Netware 4 was released.

Before that, Novell installed a SAM equivalent on each Netware server (called a Bindery), all of which were isolated from each other.

Novell may have re-badged their product when w2k/AD was shipped, but in truth, they had a fully fledged directory product years previous anyway.

I think the last place you’ll find MS ‘acquiring’ code, is from Novell J [go read the bashing both vendors performed back in 99/00 and you’ll realise there was no love lost!]

neil

—–Original Message—–
From: ActiveDir-owner@mail.activedir.org [mailto:ActiveDir-owner@mail.activedir.org] On Behalf Of Tomasz Onyszko
Sent: Thursday, August 07, 2008 9:53 AM
To: ActiveDir@mail.activedir.org
Subject: Re: [ActiveDir] History of AD…

Beside exchange I wonder if anything from Site Server or parts of MCIS has also influenced AD :). At the end site server delivered LDAP directory.

And finally Don’s response… I have to say when I saw Don Hacherl in the From Column when I looked at my AD Org folder I was like Holy Schnikey!!! I expect I wasn’t the only one who did that and judging from responses from some of the other MVPs both on and offlist I am confident that is true. Don used to post in the newsgroups back years ago. His posts were always quite awesome. I learned a lot from them.

From: ActiveDir-owner@mail.activedir.org [mailto:ActiveDir-owner@mail.activedir.org] On Behalf Of Don Hacherl
Sent: Thursday, August 07, 2008 10:45 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] History of AD…

Thanks for tipping me off to this thread, Eric.  I’ll see if I can clear up the pre-history.

The oldest traceable part of AD started life at 3Com in 1988 or 1989.  This was an (incomplete!) X.500-ish directory with custom communication protocols, built on top of a C-Tree database, running under 16-bit OS/2.  By 1990 3Com had abandoned its network software efforts and the directory code moved to Microsoft as part of some complicated deal.  The LanMan group planned to include the directory service in LanMan 3.0 and immediately started porting it to the JET Blue ISAM and building an RPC front end compliant with the X/Open XDS API.

At this point (in early 1991) Jim Allchin, who had recently taken over the LanMan group, cancelled LanMan 3.0 and scrapped its directory service project.  In its place he created the Cairo project, which included a completely non-X.500 like directory service that lived as part of OFS, the Cairo file system.

The email group at Microsoft picked up two pieces out of the wreckage of LanMan 3.0: the DS and an X.400 MTA.  We (this is when I became dev lead of the DS) ported the DS to Windows NT, finished the JET and XDS work, and added a MAPI RPC interface, a query engine, the KCC, a modifiable schema, the link table, and much, much more.  This version of the DSA (plus the MTA and a custom message store) shipped in Exchange 4.0 in 1996.  By this point there’s very little of the original code left, although some elderly data structures live on, at least in name.

Around late 1995 Cairo, and its attendant directory service, were cancelled.  This left the OS team with an urgent need for a DS (for Windows 2000) but no plans to build one.  To fill the hole, the week after Exchange 4.0 shipped two of us from the Exchange DS dev team made a copy of the DS sources and moved to the Windows group, where we got re-christened Active Directory, and the rest is history.

In summary:

  • AD has no relation to Novell NDS/eDirectory.  Novell was a competitor (the competitor), not a licensee/licensor.
  • AD has no relation to Banyan StreetTalk.  Although both Jim Allchin and one member of the AD dev team were former Banyan employees, there was no license or co-work between Microsoft and Banyan.
  • AD has no relation to Cairo, except the relation that mammals have to dinosaurs.
  • AD did not inherit code or functionality from Site Server or MCIS.  It did inherit their customers.
  • AD is a direct descendant of the DSA in Exchange 4.0  (Note that LDAP support got added separately to the two branches of the directory in Exchange 5.something and Windows 2000.  Anything that important is clearly worth doing twice.)

Don

Then the followups begin…

From: ActiveDir-owner@mail.activedir.org [mailto:ActiveDir-owner@mail.activedir.org] On Behalf Of AFidel@ddrc.com
Sent: Thursday, August 07, 2008 10:56 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] History of AD…

Was there code sharing between the Exchange 5.x and AD LDAP layers, or were the two efforts silo’d?
Thanks,
Andrew

From: ActiveDir-owner@mail.activedir.org [mailto:ActiveDir-owner@mail.activedir.org] On Behalf Of Don Hacherl
Sent: Thursday, August 07, 2008 12:43 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] History of AD…

The two LDAP efforts were mostly separate.  Exchange went first and AD followed.  As I recall we didn’t borrow any code, but we did borrow one of the developers for a month or two.  That let us benefit from their experience without code porting difficulties.  (The addition of per-attribute access controls in AD made lots of AD code diverge from the Exchange DS very rapidly.)

Don

Some info more on Exchange than AD, written by a bunch of Hewett-Packard guys…

From: ActiveDir-owner@mail.activedir.org [mailto:ActiveDir-owner@mail.activedir.org] On Behalf Of Tony Murray
Sent: Thursday, August 07, 2008 1:32 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] History of AD…

Yeah, not the full story perhaps, but a lot of the history is here:

http://windowsitpro.com/Common/adforceimages/Decade_of_exchange.pdf

Tony

From: ActiveDir-owner@mail.activedir.org [mailto:ActiveDir-owner@mail.activedir.org] On Behalf Of Gabriele Scolaro
Sent: Thursday, August 07, 2008 5:19 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] History of AD…

Great stuff! What a fascinating thread!

Before reading Don’s piece, I was trying to google-find some more historical details about AD, but did not find any really interesting and when compared to Don’s they appear misleading.

1) Dead-End Road to Cairo (http://business2-cnet.com.com/2009-1017-857509.html)

October 1998: Microsoft says it will rename Windows NT 5.0 to be called Windows 2000. The operating system will include Active Directory, technology originally slated for Cairo”.

2) Banyan VINES (http://en.wikipedia.org/wiki/Banyan_VINES, as the header tells it requires improvement)

“…Banyan was sharing their technological advantages with a much larger competitor. Using that information, Microsoft soon began work on its own implementation of a directory services model to be called Active Directory and rolled out with its OS 5.0, Windows 2000. Even while hiring away James Allchin, known as the “Father of StreetTalk,” Microsoft ran into technical difficulties, particularly in world-wide synchronization of Active Directory across time zones. Not afraid to use outside expertise, Microsoft actually partnered with Banyan in one of Banyan’s last strategic and, many would argue, ultimately fatal partnerships, as Banyan sent a team of its most experienced StreetTalk engineers to Redmond to “fix Active Directory.

3) Cairo (http://en.wikipedia.org/wiki/Cairo_(operating_system)

Although Cairo never emerged as a shipping product, its main features were shipped as parts of other Microsoft operating systems…… DCE/RPC shipped in Windows NT 3.1. X.500 shipped as part of Active Directory in Windows 2000.

Don, I think that it would be greatly valuable for the entire DS community if you gave your contribution by correcting the misleading infos at Wikipedia (e.g. clarifying the Cairo or StreetTalk supposed dependency).

Finally I think that an “AD History” piece would be a must-have among ActiveDir.org articles, what do you think Tony? 😉

Thank you very much – Gabriele.

From: ActiveDir-owner@mail.activedir.org [mailto:ActiveDir-owner@mail.activedir.org] On Behalf Of Don Hacherl
Sent: Friday, August 08, 2008 12:40 AM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] History of AD…

I fixed the Cairo page.  The Vines article really requires a major chunk to be thrown out, even to acheive Wikipedia’s “neutral point of view” standard.  I’ll see what I can do.

From: ActiveDir-owner@mail.activedir.org [mailto:ActiveDir-owner@mail.activedir.org] On Behalf Of Don Hacherl
Sent: Friday, August 08, 2008 12:41 PM
To: ActiveDir@mail.activedir.org
Subject: RE: [ActiveDir] History of AD…

I fixed the two Wikipedia articles.

The CNet article is really just the standard corporate marketing form of historical revisionism that I used to complain about but long ago learned to tune out.  I can almost hear a marketeer telling me “We always intended to include directory services in Cairo.  ‘Active Directory’ is the marketing label we put on a directory service technology as we brought it to market.  Therefore, had we brought Cairo to market it would have contained directory service technology that would have been labelled ‘Active Directory’.  The fact that the underlying technology of ‘Active Directory’ in that hypothetical Cairo universe is different than the underlying technology of ‘Active Directory’ in this universe is interesting, but fundamentally unimportant, and drawing fine distinctions like that would just muddy the message we’re trying to get through to customers.”  Then I’d roll my eyes and go back to my office, thankful that I was in development.

Don

 

Hope some of you find that interesting. 🙂

 

   joe

 

 

[1] I think he is mad at me still for telling him to buy a lawn mower for his house a few years ago indicating that it was fun to mow your lawn as a homeowner. For me it, for ~Eric, it has been less so. If you live in Redmond and you run into him, be sure to ask him about his lawn mowing adventures as he is happy to regale you with those stories along with the person who has caused him so much pain and misery regarding it. I have one thing to say… His wife told him to hire a lawn service… I told him to buy a lawn mower. He listened to me… He absolutely hates mowing… Is that karma or what? 🙂

Rating 4.00 out of 5
« Older Entries
Newer Entries »

[joeware – never stop exploring… :) is proudly powered by WordPress.]