how can I make our citrix and terminal servers not prompt users to change
their password or delay it to the last day or something alike?
thnx

Good morning.
I have about 400 clietns in a domain-based network. Some users have local
admin rights so don't.
Does anyone have any suggestions about how I easily find those users with

I was able to install DPM agent on all W2K3 servers except on Exchange2000
and IIS 6.0 servers.
The error:
---------------------------

I had no luck in the AD group, so I'll try here.
Moved shares from several NTFS Volumes to other NTFS volumes.
One share has a sid listed as S-1-5-21-*********
How do I find out what security group or local group that is?

I have a stand-alone Windows Server 2003 server where I get a access denied
even for members of Administrators on a folder the moment I deny "Users"
access to it.  This is from the server itself - not via a share.
The directory is c:\data\paydir.  The c:\data directory is shared ...

Someone accidentally or intentionally deleted some files and folders
from network resource.
Is there a alternate way to find out  or log event on windows 2003
other than event viewer for :

Please help me. I have created a new certficate template by
duplicating user template and edited according to the application I
want use.
To enable this  new template, I have gone to Certification Authority

I log in as administrator.
It seems the only way I've been able to get my bat files in scheduled tasks
to run reguraly is to check the box "On resume, display Welcome screen"  in
screen saver and let windows log me out.

Hello Micorsoft security gurus,
I'm currently trying to test a PKI architecture system where I have an
OpenSSL-based UNIX SSL client and server and a Windows Server 2003
Standard Edition with Certificate Services for the CA.  If I generate

we have a wifi project and we would like to authenticate Active
Directory users.
Is there a way to add the Radius server in a DMZ without being member
of the AD domain and authenticate the wifi users ?

I have recieved an odd request.  Basically what is desired is the
ability for a certain user to write files to a directory but not be
able to delete or overwrite those files.  Is this possible?
The machine in question is running Server 2003.

lets just start off by saying I'm a developer and no longer a server
admin BUT I'm doing some server admin work to help out.
Ok, on one of my Windows 2003 servers I keep getting this error in the event
viewer and I've done some research on it and I'm getting information from

This is all very bizarre...
NT 4 server running under NT 4 domain called SERVER1 with an E: drive. Open
\\SERVER\E$ from a Windows XP PC and create a folder called Test.
Look at the permissions from Windows XP and the folder doesn't appear to be

Windows 2003 Server R2 standard edition with SP2, sitting behind SonicWall
firewall.  
Recently, there are a lot of Alerts from SonicWall.  Such as "IPSec
Authentication Failed" and "IPSEC Replay Detected" and some "Sub Seven Attack

Is it possible to disallow console login for certain users/groups?
By console login in mean using RD like so:
mstsc /v:box1 -console
The scenario is that I would like for only one user on the box to be