Re: Advanced Security Machine Accounts

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: Karl Young (kyoung_at_state.pa.us)
Date: 03/09/04 

Date: Tue, 9 Mar 2004 10:39:40 -0500

Windows 2000 Native Active Directory Domain.

20 Characters is a limitation of the command since it is based on NetBios
names and therefore supports only names that are up to 20 Characters long.

Thanks in Advance,
Karl

This is not publicly availab.e.

"Luke Packard [MSFT]" <lukep@online.microsoft.com> wrote in message
news:uxkPvbZBEHA.1236@TK2MSFTNGP11.phx.gbl...
> I can use the net localgroup command to add accounts to this group on my
> site servers in both W2K and W2K3 domains. Are you in an NT4 domain?
>
> --
> Luke [MSFT]
>
> This posting is provided "AS IS" with no warranties, and confers no
rights.
>
> "Karl Young" <kyoung@state.pa.us> wrote in message
> news:Oze26GWBEHA.3348@TK2MSFTNGP11.phx.gbl...
> > I am using Advanced Security for my SMS Site Servers.
> >
> > I have already added the Domain machine accounts of the SMS Site Servers
> to
> > the local Administrators Group.
> >
> > I am trying to connect three sites in the following configuration:
> >
> > Server Role SiteCode
> > SMS Central Site XX1
> > SMS Primary Site Child XX2
> > SMS Secondary Site Child XX3
> >
> > I am trying to add the machine account for XX3 and the XX2 to the group
> > SMS_SiteToSiteConnection_XX2 on the SMS Primary Site Chile.
> >
> >
> > Problem, the group name is over 20 Characters long so the command:
> >
> > Net LocalGroup fails.
> >
> > There is an alternative command called "cusrmgr" is the resource kit to
> > handle names longer than 20 characters.
> >
> >
> >
> > The problem is that is doesn't appear that this command works. It seems
> to
> > be just adding a text field, because after adding the accounts, the
> accounts
> > are visible, not hidden as in the case of the Administrators Group, when
> > using the Net LocalGroup. Also, I am able to add the machine account
for
> > XX2 a second time, now visible in the local Administrators group.
> >
> > Has anyone ever run into this problem? Is there a workaround?
> >
> > (The only solution that I have at the moment is to rename the groups,
add
> > the computer accounts through the Net Localgroup command and rename them
> > back.)
> >
> >
> >
>
>

Relevant Pages

  • Re: Set App Priority
    ... string and then terminates" ... gives then parameters to use to modify the START command ... below) /F:OFF Disable file and directory name completion characters ... no special characters between the two quote characters, ...
    (microsoft.public.windowsxp.customize)
  • Re: Set App Priority
    ... This would start notepad with high priority. ... Starts a new instance of the Windows XP command interpreter ... /F:OFF Disable file and directory name completion characters ... If all of the following conditions are met, then quote characters ...
    (microsoft.public.windowsxp.customize)
  • Re: DOS Box Keyboard problem
    ... I get 437 from command chcp and cmd chcp. ... When in the cmd box I can type with all characters OK ... The OEMCP value controls to which OEM code page to translate ANSI, ...
    (microsoft.public.windowsxp.configuration_manage)
  • Re: Cannot delete file with name ended with a dot.
    ... receive the message "File Not Found" (from command prompt I cannot see the ... The operating system is Windows 2008 server standard x64. ... A little background on undeletable files and folders: ... files to it but use characters in the name that FTP supports (ASCII ...
    (microsoft.public.windows.server.general)
  • Re: [PATCH] USB: add USB test and measurement class driver - round 2
    ... accumulated (or until zero characters are returned, ... This logic should be done in userspace, ... a measurement command it is not known how many bytes it will return. ... handle this as a warning telling the user that he did not request all ...
    (Linux-Kernel)