Re: RPC Dunamic Ports

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

Before Microsoft snapped up Softgrid, they offered a freebie that is now within the MDOP that does what you are looking for. It is free but you have to have an Software Assurance (SA) agreement with them. Something you will have to check into to see if you have.

As far as automating you could export the registry keys (Once you applied them against one of yuor servers) and build them into a script that is run at machine start up.

Import or Export Registry keys
http://technet.microsoft.com/en-us/library/cc736340.aspx

Scriting a Registry key
http://www.microsoft.com/technet/scriptcenter/scripts/os/registry/default..mspx?mfr=true

I would personally say, I would discourage this practice and do it manually. I would NEVER run an update script on my DC. BUt you asked and I will give you the tools and you can make the final decision.

--
Paul Bergson
MVP - Directory Services
MCTS, MCT, MCSE, MCSA, Security+, BS CSci
2008, 2003, 2000 (Early Achiever), NT4

http://www.pbbergs.com

Please no e-mails, any questions should be posted in the NewsGroup This
posting is provided "AS IS" with no warranties, and confers no rights.

"Kerry" <Phanindra@xxxxxxxx> wrote in message news:Odh9fpW5JHA.2232@xxxxxxxxxxxxxxxxxxxxxxx
Is there another way of automating this, because i do not want any human errors to happen like people forgetting to put the reg keys etc..right now its part of the build process, however we have seen that it has missed on few DC which have gone into production and we have seen replication failures on these DC's.
"Paul Bergson [MVP-DS]" <pbbergs@xxxxxxxxxxxxxx> wrote in message news:und9TET5JHA.1716@xxxxxxxxxxxxxxxxxxxxxxx
> So how did you plan on pushing this to your dc's? This isn't an option in
> 2003's gpo settings.
>
> --
> Paul Bergson
> MVP - Directory Services
> MCTS, MCT, MCSE, MCSA, Security+, BS CSci
> 2008, 2003, 2000 (Early Achiever), NT4
>
> http://www.pbbergs.com
>
> Please no e-mails, any questions should be posted in the NewsGroup This
> posting is provided "AS IS" with no warranties, and confers no rights.
>
> "Kerry" <Phanindra@xxxxxxxx> wrote in message
> news:ebSc9wS5JHA.4936@xxxxxxxxxxxxxxxxxxxxxxx
>> All DC's run on Windows Server 2003.
>>
>> "Paul Bergson [MVP-DS]" <pbbergs@xxxxxxxxxxxxxx> wrote in message
>> news:%23AHKT8Q5JHA.1716@xxxxxxxxxxxxxxxxxxxxxxx
>>> You didn't mention which o/s you were using so I have to assume 2008,
>>> since 2003 and prior didn't provide this option. There should be no
>>> reason why this wouldn't work but I definetly would test it in a lab
>>> environment first. We manually do this and it works great, just remember
>>> your dmz machines also need to know about this.
>>>
>>> Check out an artcile I have on Firewall Ports Needed for Replication at:
>>> http://www.pbbergs.com/windows/articles.htm
>>>
>>> --
>>> Paul Bergson
>>> MVP - Directory Services
>>> MCTS, MCT, MCSE, MCSA, Security+, BS CSci
>>> 2008, 2003, 2000 (Early Achiever), NT4
>>>
>>> http://www.pbbergs.com
>>>
>>> Please no e-mails, any questions should be posted in the NewsGroup This
>>> posting is provided "AS IS" with no warranties, and confers no rights.
>>>
>>> "Venkat" <Venkat@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
>>> news:A7CDCE01-0519-4384-AE17-4170392495E8@xxxxxxxxxxxxxxxx
>>>> We have decided to limit the RPC Ports to 50000 - 50200 and want to out
>>>> the
>>>> registry keys as mentioned in KB154596, however i want to know if adding
>>>> the
>>>> below registry key and values can be automated using Group Policy, so
>>>> that it
>>>> is applied uniformly on all domain controllers.
>>>>
>>>> I want to add the below Key and Values:
>>>> HKEY_LOCAL_MACHINE\Software\Microsoft\Rpc\Internet\ - Key
>>>> Ports REG_MULTI_SZ - 50000 - 50200 - Value
>>>> PortsInternetAvailable REG_SZ Y - Value
>>>> UseInternetPorts REG_SZ Y - Value
>>>>
>>>
>>>
>>
>>
>
>

Relevant Pages

  • Re: Group Policy modifying Registry Keys
    ... Try the REG ADD command. ... run it locally or apply the changes to either the login script or the ... Jeffrey Randow (Windows Networking & Smart Display MVP) ... >program that creates two registry keys on the user's local machine. ...
    (microsoft.public.windows.server.networking)
  • Re: RPC Dunamic Ports
    ... Paul Bergson ... MVP - Directory Services ... registry keys as mentioned in KB154596, however i want to know if adding ...
    (microsoft.public.windows.server.active_directory)
  • Re: Taskbar Policies/Regesty values
    ... via script or clean registry keys. ... that stores lots of taskbar settings, but there is no clean way to ...
    (microsoft.public.windowsxp.configuration_manage)
  • Re: Taskbar Policies/Regesty values
    ... via script or clean registry keys. ... that stores lots of taskbar settings, but there is no clean way to ...
    (microsoft.public.windowsxp.security_admin)
  • RE: Group Policy Preferences and Win7
    ... In addition, as the Picture and Music folder on the start menu are controlled by registry keys, you may try to write a script to remove the related registry keys and set it as logon script and assign the ... The following keys are what you need to control the Picture and Music folder on the start menu: ... Microsoft Online Newsgroup Support ...
    (microsoft.public.windows.server.sbs)