Archive for AD

Exchange Note To Self – Contacts

I came across a new thing today in our OU and I wanted to document both what I found and how I changed our settings.  I came across a few contacts, where all other listings are Users or Groups.

We had three “contacts” setup in our list of users who have email accounts outside of our mail system.  As far as I could tell, they had no account or email with us, but they were members of two internal distribution groups.  The only options I have with these contacts is to add to a group, move, delete email addresses, open home page or send mail.

My boss asked me to delete these accounts today and forward the mail to him.  I couldn’t forward their mail, as it existed off our server, and I couldn’t disable the contacts as far as I could tell either, not did I really want to do this.  Instead, I simply removed the two group memeberships from these accounts.  Which actually achieved his goal, they will no longer get mail from us. 

Studying: Command-Line Utilities for Account Management

Today I am studying about the command-line tools used for account management that are tested on the 70-290 certification exam.  I need to know what they do, and how their arguments are setup.

 dsadd.exe – when used it adds objects to AD (computers, users, quotas, groups, ou)

dsget.exe – when used it shows the properties of objects in AD

dsmod.exe – when used it modifies attributes of objects in AD (computers, users, groups, ou)

dsmove.exe – moves objects in AD

dsquery.exe – allows you to query AD for objects that match specified criteria 

gpresult.exe – shows the RSoP for a target user and computer 

whoami.exe – displays user and group info for current logged-in user

cmdkey.exe – manages stored username and passwords on the pc

AD Replication and Career Advice

AD Replication
I read a fantastic article in Windows IT Pro today and don’t want to forget where I read it and what I need to do. . so here goes. Sean Deuby wrote a really great article on troubleshooting AD replication, and what made it so great was that even a newbe admin like me understood most of what he had to say. Here are the steps I need to take to make sure AD is replicating here at our location:

  1. Check the OS on the server (DC server that is)
  2. Check the health of the directory service.
  3. Check the communication between other DCs
  4. Verify protocol of direcotry services and determine whether the DCs are authenticating correctly.

For all the details, check out “Troubleshoot AD Replication” in the June, 2007 edition of Windows IT Pro.

Career Advice Worth Noting

In that same edition of WITP, there was another really good article, this time one on getting ahead in the career game. Ben Smith breaks career advancement into 5 easy steps, some I am doing and others are goals. Three really good take-aways for me are:

  1. Find mentors and have them make suggestions on goals
  2. Go after jobs to develop needed skill sets, like budgeting and management
  3. Track and Qualify Achievements; Make list of accomplishments