I have started to do some investigation on my CA and I have come across the
fact that our CA has two Certificate Authority Certificates.
They are listed as:
Current [domain.com(2)]

I know this much:
A Trojan Horse is a DDOS attack made by maliciously changing some
executable program -- like a MS Word T. Horse that infects PC w/ virus
that sends other PC's requests.

Please pardon my ignorance , i am a noobie in training.
I was playing around with roaming profiles on the server and pointed a
few accounts including the admin account to a single profile.  During
the next reboot, the new roaming profile worked, so I was happy.

How many sites give regular users Local Administrator rights on their PCs?
My preference is not to, but I know many sites give all users local admin
rights on their "own" PCs.  They say it reduces hassles with preople not
being able to install software; I say good, I don't want them ...

I need to be able to give a group permission to install hardware. I have
"installed" the drivers/software remotely. All I need to do is grant a group
permission to "install" the hardware (in this case a digital voice recorder)
which windows will do automatically. I do not want ...

Maybe this is a lost cause, but it's worth asking.
It should be possible to use Group Policy to restrict that ability to add
and remove software -- or, alternatively, restrict what software will run
-- for people who have local admin rights.  I'm looking for ideas on how

I currently have XP running the L2TP/IPSec client to a network server.
I'm using X.509 certificates & can connect fine.
The issue I have is how to configure the XP client to check more than
just the signature on the server certificate.

I have configured file auditing on a server to audit object access for
a specific folder and all subfolders (root folder is called EPHI).
HIPPA requires that I provide montly access reports to my manager for
this folder and all subfolders.  The problem I've run up against seems

Hello I have some trouble on a test platform. It is a domain with 3 child
domain in one forest. When I try to logon on a domain A member server on
domain B, with any account (admin domain, enterprise admin), I receive the
message that The local policy does not permit you to logon ...

I have removed an Enterprise Root CA (KB 889250) and installed a new one on
a Windows 2003 (Standard Edition) DC. Now I get following error on all
additional domain controllers.
'Automatic certificate enrollment for local system failed to enroll for one

I understand that renaming the builtin AD administrator account is a good
idea, but is disabling this account and additional good security measure? I
would have no problem disabling this account, except for the fact if all
other Domain Administrative accounts got locked out I ...

I found the permission to add a computer to a domain but what about renaming
a domain computer?
Thanks for reading!

My question is:
How is the best way to secure the ldap comunication in active directory, W2k3.
What are the  security options that I have to active?
Can I disable the netbios (ports 137, 138, 139, 445) in a domain controller

I am currently running a Windows 2003 server active directory domain. I have
been asked to change the domain Administrator password but due to the number
of servers this would be a long winded process to do this manually. Also the
business is a 24 hour call centre who say they ...

My current gateway is an entry model Linksys router, which is about five
years old.  I want to replace this with something that will route packets for
me, and provide firewall protection.  My ultimate goal for this network I am
building is to have a