Re: Please help refresh my memory on AD DC
- From: Meinolf Weber <meiweb(nospam)@gmx.de>
- Date: Fri, 14 Nov 2008 12:17:05 +0000 (UTC)
Hello Joe,
I can not really follow, what you are trying to achive. If you like to set folder/file permissions on a remote server harddisk/volume you should map a drive or connect to the server with RDP. If you like to configure the IIS, you should use the "Internet Services Manager" from the Administrative tools and connect to the server which holds the IIS.
Best regards
Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and confers no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
Hello Meinolf,
Then how do I go about editing/configuring permissions on folder?
There is no IIS MMC in the DC management. Do notever logonlocally
again?
Do I just logon the DC and go to Active Directoy Users and Computers
>>Right
Click the PC and select manage. When I do that I do not get an IIS MMC
I get
most of the others. I can do disk management, SQL, event Viewer, I can
add
and modify users.
I see all that and understand it. But when it comes to adding a user
for a folder also
How to manage installed programs is this done locally?
Thank you
Joseph
"Meinolf Weber" wrote:
Hello Joe,
As said before:
"On domain controllers the local users and groups are disabled
because the
domain controller has it's own Security database and is not having
the local
SAM."
That's the reason for the red one.
Best regards
Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties, and
confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
Hello Meinolf,
You are correct. I can administer the server from the DC but I
cannot set permissions on the IIS or local box. I had to login to do
so. This was my entire concern. Why the red arrows?
What am I missing here?
Thanks
"Meinolf Weber" wrote:
Hello Joe,
What folder are you talking about? Looks like you are in computer
management and have connected to a domain controller form the
member server. On domain controllers the local users and groups are
disabled because the domain controller has it's own Security
database and is not having the local SAM.
Best regards
Meinolf Weber
Disclaimer: This posting is provided "AS IS" with no warranties,
and
confers
no rights.
** Please do NOT email, only reply to Newsgroups
** HELP us help YOU!!! http://www.blakjak.demon.co.uk/mul_crss.htm
Hello Jorge,
Yes I did thanks. I succeccfully added all servers to the domain.
I just had one question left over after soing so.
When I logged in locally on one of the 2003 boxes I wanted to make
a
permissions change on a folder an I was asked to enter the domain
credentials
again.
I did so with the domain admin credentials and I saw red arrows
next
to the groups and accounts icons
What is that and why was I asked to login again to make this
change?
Thanks Joe
"Jorge Silva" wrote:
Sounds that your problem is solved, great :)
--
I hope that the information above helps you.
Have a Nice day.
Jorge Silva
MCSE, MVP Directory Services
Please no e-mails, any questions should be posted in the
NewsGroup
This posting is provided "AS IS" with no warranties, and confers
no
rights.
"Joe" <Joe@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:9E332231-20B4-43C5-8803-50BEBAA17F17@xxxxxxxxxxxxxxxx
Hi Jorge!
Thanks for jumping in. No this is a Standard Box not a SBS.
Never saw a DC promo go like this one. That is why I posted and
of
corse
my
short time with using one.
Thanks so much!!
Joe
"Jorge Silva" wrote:
Hi Joe,
Sounds that your new DC is an SBS DC, correct?
--
I hope that the information above helps you.
Have a Nice day.
Jorge Silva
MCSE, MVP Directory Services
Please no e-mails, any questions should be posted in the
NewsGroup
This posting is provided "AS IS" with no warranties, and
confers
no
rights.
"Joe" <Joe@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:0D84A7F8-8760-4CF8-9771-1168396CFBC3@xxxxxxxxxxxxxxxx
Hello,
I am currently using a workgroup infrastructure with 9 servers
and
I am
in
need of changinf it to a AD DC Domain infrastrucrture. However
I
am a
little
rusty in some areas. I have 4 Server 2003 Enterprise machines
and
4
Server
2008 Standard machines. One Linux but that doesn't matter.
1. When I created the domain I used the same name as the
server
and
this
caused the installation wizard to change the NetBIOS name from
WEB308
to
WEB3080 The Original name for this server was
web308.mydomainname.com
and
when I was asked for the FQDN I entered the same thing. This
is
what
prompted
the NetBIOS change as it told me to avoid conflict with the
DC.
2. Ok so when I rebooted the server and it rebooted as a DC I
could no
longer access the server by the old administrator password as
it
was as
so
Administratator
password1
I now had to change the password but not for WEB308 it now was
WEB3080.
What I am struggling with is there are so many names that I am
unsure
which
is the DC and which is just the NetBIOS.
I kinda figured that out as I tried to access old shares that
still had
WEB308 as the label . But when prompted I had to use the new
WEB3080
and
the
new password for access.
Part two:
Now I have always been confused about what SHOULD you use as a
DC
FQDN?
I
looked in the DNS of the DC ans now thefull computer name is
web308.web308.mdomainname.com
The domain is specified as web308.mydomainname.com. So when
joining
the
other servers and boxes the name that I should enter is this
one
correct?
Now that the AD DC was created successfully I wanted to test
the
"joinng
ablility"
with my XP Pro Laptop
I used the network ID method on the myComputer Properties
Computer
Name Tab.
Here is where I get lost.
I joined the domain successfully however I joined the domain
using
the
administrator and password of the AD DC Server (which I
understand
is
correct
for the correct rights to add) and it successfully joined but
it
asked
to
add
this user which was me on this XP Pro Laptop. My username and
password
for
this Laptop.
It failed when I said yes.
I rebooted the XP Laptop and then when I went to join the
domain
is
paused
and looked for a list of domain controllers. It found WEB3080.
That
confused
me as I thought that the DC was now web308.mydomainname.com
However I logged on as the administrator of the domain
controller
and
that
was it.
OK fine.
So the real questions lie in the user part of this. thanks for
you
patience.
When I go to add the other servers what do I add them as? Do I
join the domain for the other servers with just the
administrator of the DC?
Or do I create a user for each server and then log them on?
Thanks very much for this wordy question.
Joseph
.
- Follow-Ups:
- References:
- Prev by Date: Re: Please help refresh my memory on AD DC
- Next by Date: Re: AD to ADAM sync issues
- Previous by thread: Re: Please help refresh my memory on AD DC
- Next by thread: Re: Please help refresh my memory on AD DC
- Index(es):
Relevant Pages
|
Loading
