Re: Broken active directory

From: Aaron Anderson (cypher_key_at_hotmail.com)
Date: 03/25/04 

Date: 24 Mar 2004 23:31:19 -0800

Thank you for your replies.

The problem is that I'm not sure what the problems are. First of all
we are lacking SRV records in the zones files which is more than
likely the cause or most of the problems. We tried to setup a VPN
connection using a member server to the domain however users were
unable to authenticate. Research in to the problem pointed to
directory corruption.

The problem stems from the fact that when this domain was constructed,
I made poor design decisions and answered certain questions, such as
the FQDN of the domain, incorrectly. This lead to many problems and
in an attempt to correct them lead to the inevitable corruption or
damage to the directory. This is my primary reason for wanting to
rebuild the domain from scratch however I would like to port over user
account information. sidHistory is important since I would rather not
re-apply permissions to the file system.

This leads to my next question. If I copy files from one server
belonging to the old domain to a server belonging to the new domain,
NTFS permissions are not brought across. What is the best way to
bring the files over to the new servers that are members of the new
domains? If I bring sidHistory across and remove a file server from
the old domain and attach it to the new domain, will the permissions
work correctly?

thanks,

Aaron Anderson

bobqin@online.microsoft.com (Bob Qin [MSFT]) wrote in message news:<xfvWnaMEEHA.3244@cpmsftngxa06.phx.gbl>...
> Hi Aaron,
>
> Thanks for your posting here.
>
> We cannot use same domain NETBIOS name in same network. What is the problem
> you experienced in your domain? Maybe we can resolve the original issues.
>
> Have a nice day!
>
> Regards,
> Bob Qin
> Product Support Services
> Microsoft Corporation
>
> Get Secure! - www.microsoft.com/security
>
> ====================================================
> When responding to posts, please "Reply to Group" via your newsreader so
> that others may learn and benefit from your issue.
> ====================================================
> This posting is provided "AS IS" with no warranties, and confers no rights.

Relevant Pages

  • Re: write with cURL
    ... execute permissions. ... of potential security risks from other users on the same server. ... I made this suggestion because their web host appears to run Apache ... risk to allow Apache's group write access, since all PHP scripts ran ...
    (alt.php)
  • RE: Windows 2003 Server - Everyone Group
    ... this folder only accessable by the users in the "special" group. ... Configure User and Group Access on an Intranet in Windows Server ... NTFS files system permissions control ... group that you want to set permissions for, click Check Names to verify the ...
    (microsoft.public.win2000.networking)
  • Fail DBD::Mysql 4.003 installation
    ... This test requires a running server and write permissions. ... permissions, then retry. ... Failed 9/9 tests, 0.00% okay ...
    (perl.dbi.users)
  • Re: write with cURL
    ... execute permissions. ... of potential security risks from other users on the same server. ... I made this suggestion because their web host appears to run Apache ... risk to allow Apache's group write access, since all PHP scripts ran ...
    (alt.php)
  • Re: Virtual Directory - Permission Denied with fso CopyFile
    ... TestUser (normal user account with same credentials on all machines). ... I created a share on a remote server. ... reviewing it's sharing permissions and security tab permissions "everyone" ... "directory security" tab on the vdir and selecting, edit, edit and manually ...
    (microsoft.public.inetserver.iis)