When Our Domain Admin Account Changed password , the account is always
locked.I try to get some logs but no useful one.
I have change all the services and schedules 's logon accout.
but not effect.

Should I allow clients to resolve internet adresses by setting up
forwarding on  my DNS servers. All my DNS servers are DCs in Windows
2003 native domain.
I was going to just force all internet lookups to go via IE and proxy

Hi
Desktop Server XP Pro to post SP2
Laptop Client XP Pro to post SP2
The tick has been removed from Use simple file sharing on both machines

I want to ensure that Windows 2000 domain users who are not logging in
for 60 days cannot login later without admin intervention.
In Windows NT 4.0 I used to enable the checkbox "User must login to
change password" and had a password expiry of 60 days. So if somebody

I hope the Windows server Gurus here will be able to help me.
We have a windows 2000 AD structure. Certificate authority has been
installed on one of the Domain controller, and its working fine.
Recently I added a surbordinate CA runing on Windows 2003 server (Not a

When a account gets locked out, it registers an entry in AD with the
logon name, domain and workstation name. Where does the workstation
name get populated?  How does it get populated>

I have read that the best way to allocate permissions for shared folders is -
is to Share the folder . Give Share-Permissions as " Everyone Full Control"
and give the specific Allow/Deny permissions in the NTFS tab.
Is there any insecurity in giving Share-permissions as Full ...

Has anyone out ther completely encrypted a 2003 DC using EFS including
the AD database itself?
I have been asked to do this for my client but I am not confident that
it is a good idea. They want to protect themselves if someone walks off

Booted my daughter’s PC running Windows 2000 upon arriving home this evening.
She is the only user on this machine and has administrator logon privileges.
This PC is on a shared network for printing.
Somehow, the password for administrator is no longer valid. It used to do an

There is a system service which needs to be disabled, or at least the
process killed. I have tried logging in as administrator and even then
I am unable to terminate it.
The Stop / Pause option for the service is grayed out. Is there any way

Well It's finally happened.  Co-worker's daughter cannot get into her
win 2000 computer using her usual password.  Microsoft help sez
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
If the administrator password is lost, forgotten, or unknown, access ...

I'm looking into options to secure our mail server (Exchange 2003 on Windows
2003). We have an IT staff of 5 people, which includes our dept mgr, all of
which have access to the administrator password and whose accounts are
members of the Domain Admins group. What I propose to do is ...

All clients (windows 2000 professional) make a domain login (windows
2000 server with active directory). The user's password is sent over
the network encrypted? In this case what's the algoritm used?
Thanks for responding

We have an application named iPlan running on Windows 2000 server which uses
MS-Word to automatically generate letters to customers from the system.
MS-Word 2000 SR-1 is installed on the server for this purpose.
In order for MS-Word to produce a letter, it needs to be launched on ...

I have an issue with file/folder permissions on a share.
I want to allow a group to modify all files within a share, but not any
folders.
The 'Create Folders/Append Data' permission seems to be what I am