Re: Configuring Active Directory to Run as a Domain User Account

From: Doug Frisk (PublicNews_at_removeme.fazwak.com)
Date: 01/08/05

• Next message: : "Re: Almost 30 mins to login to domain"
• Previous message: Will: "Configuring Active Directory to Run as a Domain User Account"
• In reply to: Will: "Configuring Active Directory to Run as a Domain User Account"
• Next in thread: Joe Richards [MVP]: "Re: Configuring Active Directory to Run as a Domain User Account"
• Reply: Joe Richards [MVP]: "Re: Configuring Active Directory to Run as a Domain User Account"
• Messages sorted by: [ date ] [ thread ]

---

Date: Sat, 8 Jan 2005 15:31:57 -0600

"Will" <DELETE_westes@earthbroadcast.com> wrote in message
news:eysYC4b9EHA.2012@TK2MSFTNGP15.phx.gbl...
> Has anyone figured out how to make Active Directory services run as a
> domain
> user account? I need to do this so that Active Directory can do DNS
> queries upstream to a DNS server that is on the other side of a proxy
> server. Proxy Server is configured to only let queries go out of our
> network if they come from pre-authorized Domain User accounts.

Simply not going to happen.

>
> We could just put the DNS server on the proxy server itself, but that
> creates one more security vulnerability on a machine that should ideally
> live in a sterile extremely secure environment.

Queries or updates? This sounds like a very non-standard setup.

>
> Whenever I set Active Directory to run as a Domain User, I get all kinds
> of
> errors. Even when I make the new Domain User a domain system
> administrator
> I still get errors and Active Directory effectively no longer works.

To be expected.

Your proxy or firewall simply needs to be configured to allow the *IP* of
the AD server to perform DNS queries.

---

• Next message: : "Re: Almost 30 mins to login to domain"
• Previous message: Will: "Configuring Active Directory to Run as a Domain User Account"
• In reply to: Will: "Configuring Active Directory to Run as a Domain User Account"
• Next in thread: Joe Richards [MVP]: "Re: Configuring Active Directory to Run as a Domain User Account"
• Reply: Joe Richards [MVP]: "Re: Configuring Active Directory to Run as a Domain User Account"
• Messages sorted by: [ date ] [ thread ]

---

Relevant Pages Configuring Active Directory to Run as a Domain User Account ... I need to do this so that Active Directory can do DNS ... queries upstream to a DNS server that is on the other side of a proxy ... Proxy Server is configured to only let queries go out of our ... (microsoft.public.windows.server.active_directory) "Could not find a part of the path… " error on IIS 6.0 ... Server 2003 web farm running IIS 6.0, using Active Directory ... Added this user account to the IIS_WPG group. ... (microsoft.public.dotnet.framework.aspnet.security) Re: Server 2003 newbie questions ... Biggest problem in a workgroup is that you have to configure the same user account and password on all machines, where the user should have access. ... So in your case with at least 12 users, all accounts and passwords have also to be configured on the server to access the share. ... Active directory groups can be used for this. ... (microsoft.public.windows.server.setup) Re: help with domains ... the user account. ... then log on to terminal server and they need different ... what we want to do is use a third server running ... do active directory stuff for each user, ... (microsoft.public.windows.server.active_directory) Re: 2003 Migration ... Best Practice Active Directory Design for Managing Windows Networks ... Windows Server 2003 Tools ... ensure that you have designed a DNS and Active ... (microsoft.public.windows.server.active_directory)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(18)