Re: Directing user authentication to a specific DC
From: Herb Martin (news_at_LearnQuick.com)
Date: 08/04/04
- Next message: Kevin D. Goodknecht Sr. [MVP]: "Re: OT> Re: Linux registered as DC in WINS"
- Previous message: Herb Martin: "Re: Can't delete computer using NTDSUTIL"
- In reply to: Cary Shultz [A.D. MVP]: "Re: Directing user authentication to a specific DC"
- Next in thread: ptwilliams: "Re: Directing user authentication to a specific DC"
- Messages sorted by: [ date ] [ thread ]
Date: Tue, 3 Aug 2004 23:09:17 -0500
Actually you guys know I would be the first to say it if
this was important, but the fellow who asked for it hasn't
even come back to explain WHY he wants to do it.
We've all -- while telling him how -- suggested he
probably isn't on the right track and asked for an
explanation of the motivation behind his request in
case we can describe a better way OR EVEN to learn
what important reason he really does have.
In any case it's not going to be a common request so
there are plenty of other things they can fix like the
(minor but screwed up) RRAS TCP "add routing
protocal" which adds add "General" but the result
appears unders "IP" (one level higher) in the browse
pain. <<<<Grin>
-- Herb Martin "Cary Shultz [A.D. MVP]" <cwshultz@mvps.org> wrote in message news:e$WIJ8beEHA.2352@TK2MSFTNGP09.phx.gbl... > What, I can not explain things like Mark Minasi? > > Well, I never! > > :-0 > > Every once in awhile it is nice to step in it. Gets everyone thinking! And > I know that we all agree... > > Did not know that you are on the other side of the pond! I have not noticed > any extra u's ( like in 'colour' ) in anything that you have written. maybe > I have just not been looking! > > Wanna talk about language barriers? Try going from Los Angeles, CA to > Roanoke, VA. Can't always understand what the people are saying > here.....but that is what makes things a bit fun! > > Cary > > "ptwilliams" <ptw2001@hotmail.com> wrote in message > news:%23JeZrVbeEHA.724@TK2MSFTNGP10.phx.gbl... > > I'm only playing...just chuckling to myself here... ;-) > > > > You didn't step in it!!! > > > > But I think we all agree: > > > > - GUI tools (and command line) would be good (if only for the output) > > - It's not a difficult thing (although I have to admit, I did have to > read > > the article twice to fully understand what the author was on about!!! But > > that could be the American-English - British-English barrier. Or, > perhaps, > > I'm too used to the nice easy way Mark Minasi explains things...) > > > > ;-) > > > > -- > > > > Paul Williams > > _________________________________________ > > http://www.msresource.net > > > > > > Join us in our new forums! > > http://forums.msresource.net > > _________________________________________ > > > > > > "Cary Shultz [A.D. MVP]" <cwshultz@mvps.org> wrote in message > > news:uNOF6KbeEHA.720@TK2MSFTNGP11.phx.gbl... > > Oh boy! > > > > I guess that I stepped in it! > > > > A GUI would be a nice thing. Not gonna say anything more ;-) > > > > Cary > > > > PS...and you are definitely no dummy! > > > > "ptwilliams" <ptw2001@hotmail.com> wrote in message > > news:ukmEO0aeEHA.3476@tk2msftngp13.phx.gbl... > > > Hey, what are you saying?? That I'm a dummy with regedit??? ;-) > > > > > > I agree with you both. I often like to chip in and talk of new tools. > > > Perhaps if lots of us were to say, "hey, this would be cool" then maybe > > the > > > AD guys would add it to the next version (or even better, SP)... > > > > > > But I happen to agree with Herb's sentiment moreso. Yes, a couple of > > DWORD > > > entries are trivial - hell, a quick batch file and the reg.exe command > > would > > > do this across multiple machines; a little knowledge of scripting KIX, > or > > VB > > > and reg.exe, etc. and you've done it on any DCs you so choose, but a > tool > > > that not only configures but also lists in graphical format would be > quite > > > useful... > > > > > > > > > -- > > > > > > Paul Williams > > > _________________________________________ > > > http://www.msresource.net > > > > > > > > > Join us in our new forums! > > > http://forums.msresource.net > > > _________________________________________ > > > > > > "Herb Martin" <news@LearnQuick.com> wrote in message > > > news:%23giVU4UeEHA.1764@TK2MSFTNGP10.phx.gbl... > > > "Cary Shultz [A.D. MVP]" <cwshultz@mvps.org> wrote in message > > > news:u$1DUGUeEHA.1652@TK2MSFTNGP09.phx.gbl... > > > > Herb, > > > > > > > > Understood. My response was more aimed at Paul....;-) > > > > > > I really learned a lot from your post too so it really doesn't > > > matter who you meant -- it cause me to re-read and further > > > appreciate it. > > > > > > The more I think about it the better I like it -- the method > > > that is, as I have no idea why he would ever want to do > > > such a thing. > > > > > > I made a mistake in reading the first time and stopped after > > > I thought I understood your post -- your mention of SRV > > > weights made me think you were going to do it directly and > > > I knew that if it ever became necessary you post (which I > > > save) would explain it to me. > > > > > > Doing this in the registry isn't TOO bad, but were it really > > > a useful (common) setting it belongs in Sites and Services. > > > > > > Putting this on the DCs in Sites and Services with a sort > > > column would be almost trivial if the developers ever > > > thought many people would (really) want to use it. > > > > > > > > > -- > > > Herb Martin > > > > > > > > > > > > > > Cary > > > > "Herb Martin" <news@LearnQuick.com> wrote in message > > > > news:Ojy3cmSeEHA.3680@TK2MSFTNGP11.phx.gbl... > > > > > Adding the DWord being difficult wasn't my point Cary. > > > > > > > > > > What I meant was maintaining and displaying it when servers > > > > > were moved from one site to another or site definitions were > > > > > changed. > > > > > > > > > > -- > > > > > Herb Martin > > > > > > > > > > > > > > > "Cary Shultz [A.D. MVP]" <cwshultz@mvps.org> wrote in message > > > > > news:eaUOPyReEHA.2812@tk2msftngp13.phx.gbl... > > > > > > Paul, > > > > > > > > > > > > Adding the two DWORDs in > > > > > > HKLM\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters is not > > > really > > > > > > that difficult. Simply spell LdapSrvWeight and LdapSrvPriority > > > > correctly > > > > > > and you are good to go ( and I have spelled them incorrectly > once - > > > that > > > > > is > > > > > > fun trying to figure out why things are not working!!!!!!!! ). > > > > > > > > > > > > However, I fully agree with you. Being able to use some sort of > MMC > > > > would > > > > > > be a great help. I have not tried it any other way, but I would > > think > > > > > that > > > > > > the DNS MMC would be the one to use??? And I would love a CLI to > do > > > > this > > > > > as > > > > > > well... > > > > > > > > > > > > Great ideas. Maybe someone can make this happen. > > > > > > > > > > > > Cary > > > > > > > > > > > > "ptwilliams" <ptw2001@hotmail.com> wrote in message > > > > > > news:elYElp%23dEHA.3392@TK2MSFTNGP12.phx.gbl... > > > > > > > > This might however be a good idea for an upgrade to Win2003 > > > > > > > so that it could be set as a property in AD (Sites and Services) > > > > > > > and the DCs could do it themselves -- if there is enough > interest. > > > > > > > > > > > > > > Using dssite.msc to modify these weights and priorities would be > > > > > great!!! > > > > > > > Perhaps, a command-line tool too... > > > > > > > > > > > > > > -- > > > > > > > > > > > > > > Paul Williams > > > > > > > _________________________________________ > > > > > > > http://www.msresource.net > > > > > > > > > > > > > > > > > > > > > Join us in our new forums! > > > > > > > http://forums.msresource.net > > > > > > > _________________________________________ > > > > > > > > > > > > > > > > > > > > > "Herb Martin" <news@LearnQuick.com> wrote in message > > > > > > > news:OKrELPvdEHA.1000@TK2MSFTNGP12.phx.gbl... > > > > > > > "Cary Shultz [A.D. MVP]" <cwshultz@mvps.org> wrote in message > > > > > > > news:enxiObhdEHA.3964@TK2MSFTNGP10.phx.gbl... > > > > > > > > Tim, > > > > > > > > > > > > > > > > Herb's response is mostly correct ( Herb: stay calm for a > > > > minute!!! ). > > > > > > > > > > > > > > Not an issue with me -- your SRV method works. > > > > > > > > > > > > > > I would (practically) NEVER recommend anyone hand manage > > > > > > > the SRV records for AD support though. > > > > > > > > > > > > > > Changes in Sites and Services are supposed to allow the DCs > > > > > > > to manage these automatically. > > > > > > > > > > > > > > This might however be a good idea for an upgrade to Win2003 > > > > > > > so that it could be set as a property in AD (Sites and Services) > > > > > > > and the DCs could do it themselves -- if there is enough > interest. > > > > > > > > > > > > > > Like you, I wonder what the OP's "real goal" is, and what he > > > > > > > really wishes to accomplish. Usually when someone wants to > > > > > > > work counter to the design of AD (or other systems) they either > > > > > > > don't really understand the design or they are after something > > > > > > > not explicitly stated. > > > > > > > > > > > > > > -- > > > > > > > Herb Martin > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > >
- Next message: Kevin D. Goodknecht Sr. [MVP]: "Re: OT> Re: Linux registered as DC in WINS"
- Previous message: Herb Martin: "Re: Can't delete computer using NTDSUTIL"
- In reply to: Cary Shultz [A.D. MVP]: "Re: Directing user authentication to a specific DC"
- Next in thread: ptwilliams: "Re: Directing user authentication to a specific DC"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
Loading
