Calendar

December 2008
M T W T F S S
« Aug    
1234567
891011121314
15161718192021
22232425262728
293031  

Subscribe

  • Subscribe via Feedburner
  • Subscribe in Yahoo
  • Subscribe in NewsGator Online
  • Add to Newsburst from CNET News.com
  • Add to Google
  • Add to My AOL
  • Add to netvibes
  • Subscribe in Bloglines

Archive for the 'Windows Server 2003' Category

MOSS 2007: Hide Edit Page in Site Actions Menu

Published by ryangl April 1st, 2008 in MOSS 2007, Tools, Windows Server 2003 and Windows Server 2008. Comments

This always annoyed me.  Users with contribute rights are given the right to "Edit Page" under site actions.  This quick write-up resolves that issue by only providing that function to users with Full Control, rather than Contribute.  As always, be careful when modifying default.master and make sure you have backups readily available.

  1. Open the master page for the site.

  2. Find the following lines of code:
           <SharePoint:MenuItemTemplate runat="server" id="MenuItem_EditPage"
            Text="<%$Resources:wss,siteactions_editpage%>"
            Description="<%$Resources:wss,siteactions_editpagedescription%>"
            ImageUrl="/_layouts/images/ActionsEditPage.gif"
            MenuGroupId="100"
            Sequence="200"
            ClientOnClickNavigateUrl="BLOCKED SCRIPTMSOLayout_ChangeLayoutMode(false);"
            />

  3. Add to the following lines to the code:
    PermissionsString="ManageSubwebs"
            PermissionMode="Any"

  4. The code should now look like:
           <SharePoint:MenuItemTemplate runat="server" id="MenuItem_EditPage"
            Text="<%$Resources:wss,siteactions_editpage%>"
            Description="<%$Resources:wss,siteactions_editpagedescription%>"
            ImageUrl="/_layouts/images/ActionsEditPage.gif"
            MenuGroupId="100"
            Sequence="200"
            ClientOnClickNavigateUrl="BLOCKED SCRIPTMSOLayout_ChangeLayoutMode(false);"
            PermissionsString="ManageSubwebs"
            PermissionMode="Any"
            />

  5. Save the master page and login with an account that does not have Full Control, but is not read only either…  The Site Actions drop down should now resemble:

Hide Edit Page

Hide Edit Page in Site Actions Menu - The SharePoint Redemption

Microsoft To Buy Parlano

Published by ryangl September 3rd, 2007 in Releases, Windows Server 2003 and Windows Server 2008. Comments

Microsoft’s Latest acquisition to improve the overall native functionality of Office Communication Server 2007. 

Microsoft announced on Thursday that it intends to buy Parlano, a Chicago-based company it has already worked closely with on enterprise communications software.

Parlano makes the MindAlign group chat platform. MindAlign currently integrates with Microsoft’s Office Communications Server 2007 and Office Communicator, but following the acquisition the software will be a native feature of Microsoft’s unified communications stack.

Redmond Developer News | News: Microsoft To Buy Parlano

PowerShell Toolbox

Published by ryangl September 2nd, 2007 in Active Directory, Downloads, Group Policy, Powershell, Releases, Tools, Windows Server 2003 and Windows Server 2008. Comments

Adam Bell has a detailed, growing list of PowerShell tools that are currently available.  Bookmark the page as new tools are added when available.

Here is a sample:

/N Software NetCmdlets
- a broad range of network management and messaging capabilities. The current release contains more than 30 Cmdlets providing access to network and host protocols such as SNMP, LDAP, DNS, Syslog, HTTP, WebDav, FTP, SMTP, POP, IMAP, Rexec/RShell, Telnet, and more. This is a commercial product.

Codeplex PoshConsole
- utilises WPF features to improve on the PS shell. This tool aims to be a more modern replacement for the default shell. This is an open source product.

Codeplex PowerShell Community Extensions
- working towards providing widely useful set of additional cmdlets, providers, aliases, filters, functions and scripts for PowerShell. This is an open source product.

Codeplex PSEventing
- Trap and respond to synchronous & asynchronous .NET events within your powershell scripts with an easy to use suite of cmdlets. This is an open source product.

Microsoft PowerShell SDK
- The Windows PowerShell SDK is written for command developers who require reference information about the APIs provided by Windows PowerShell. This is a free download from MSDN.

PowerGadgets
- data visualization product that creates gadgets for displaying output from your PS data in Windows. Very simple to create. This is a commercial product.

PowerLocker PowerPad
- a small editor to develop and test your function or script. This is a free product.

Quest ActiveRoles Management Shell for AD (aka Quest AD Cmdlets)
- perform administrative tasks like discovering the AD environment, changing user properties, modifying group membership, provisioning new user accounts, and performing multiple other tasks within Active Directory. This is a free product.

Quest PowerGUI
- an extensible graphical administrative console for managing systems based on Windows PowerShell. This is a free product.

SAPIEN PrimalScript 2007
- fully-customizable user interface with multiple tabs, dockable pane, IDE for use with PowerShell and other scripting languages. This is a commercial product.

You can view the entire list here

Lead, Follow, or Move » PowerShell Toolbox

Release: Microsoft Group Policy Diagnostic Best Practice Analyzer

Published by ryangl September 2nd, 2007 in Active Directory, Group Policy, Releases and Windows Server 2003. Comments

Microsoft has released a free tool to analyze Group Policy best practices analyzer. The Microsoft Group Policy Diagnostic Best Practice Analyzer (GPDBPA) is designed to help you identify Group Policy configuration errors that may prevent policy settings from being applied as expected or may prevent features from functioning as expected.

The tool can provide:

  •  Audit of Policy settings that are not being applied as expected.
  • A feature is not functioning as expected. (For example, a mapped drive is not visible on client computers.)
  • A computer has:
  • Stopped responding during logon or startup.
  • Restarted during logon or startup.
  • Experienced delays during logon or startup.

The tools will also help determine if:

  • Policy settings are configured in a way that poses a security risk.
  • Necessary services are running.
  • You are connecting over a slow link.
  • Loopback mode is in effect.

Using the GPDBPA, you can:

  • Scan the Group Policy configuration on either a client computer (managed node) or domain controller
  • View a report of potential issues
  • Schedule a scan to run at a future time, or schedule scans to run on a recurring basis.

Click to download the appropriate version of the Group Policy Diagnostic Best Practice Analyzer:

· Group Policy Diagnostic Best Practice Analyzer for Windows XP

· Group Policy Diagnostic Best Practice Analyzer for Windows XP x64 Edition

· Group Policy Diagnostic Best Practice Analyzer for Windows Server 2003

· Group Policy Diagnostic Best Practice Analyzer for Windows Server 2003 x64 Edition

Vulnerability in Virtual PC and Virtual Server Could Allow Elevation of Privilege (937986)

Published by ryangl August 21st, 2007 in Virtual PC, Virtual Server and Windows Server 2003. Comments

Microsoft has released a security update for supported releases of Microsoft Virtual PC 2004, Microsoft Virtual Server 2005, Microsoft Virtual Server 2005 R2, Microsoft Virtual PC for Mac Version 6.1, and Microsoft Virtual PC for Mac Version 7 that are affected by this vulnerability.

Microsoft recommends that customers apply the update at the earliest opportunity

Versions that are not affected by this vulnerability:  Microsoft Virtual PC 2007 and Microsoft Virtual Server 2005 R2 SP1

The vulnerability in Microsoft Virtual PC and Microsoft Virtual Server could allow a guest operating system user to run code on the host or another guest operating systems. Only guest operating system users who are granted administrative permissions to the guest operating system would be able to exploit this vulnerability. Guest operating system users not granted administrative permissions to the guest operating system would be unable to exploit this vulnerability.

The security updates for all affected versions of Virtual PC and Virtual Server can be found here.

Known Issues with the updates:

Known issues with this security update

•  If the you install the 64-bit version of update 937986 on a 32-bit operating system, the installation fails. This issue occurs because the Advpack.dll file experiences an error when creating the process for the update. You receive a warning dialog box that states that the update did not install.

•  When the update 937986 is applied on a remote machine by using Terminal Services, the update does not replace the vulnerable files if the /console option is not used. To avoid this issue, you must use the /console option as shown in this example: 

mstsc /console /v:<machine name>

•  This update is not supported in Windows Vista. If your computer is running Windows Vista, we recommended that you use either Virtual PC 2007 or Virtual Server 2005 R2 SP1 depending on your requirements. Neither of these two applications has the vulnerability described in Microsoft Knowledge Base article 937986.

Active Directory Account Management using PowerShell

Published by ryangl August 14th, 2007 in Active Directory, Management, Powershell, Windows Server 2003 and Windows Server 2008. Comments

 PowerShell and the Quest Active Directory cmdlets are a dream come true for any AD Administrator.  Methods that used to take more complicated means are now simple one-liners.  

One of the nice improvements of AD cmdlets 1.0.4 is the way you can get enable, disable, and unlock AD user accounts with simple one-liners.

Here are a few oneliners demonstrating the new functionality:

#Get all disabled accounts
Get-QADUser -Disabled $true

#Get all locked accounts in the accounting department
Get-QADUser -Locked $true -Department Accounting

#Enable all the disabled accounts
Get-QADUser -Disabled $true | Enable-QADUser

#Unlock a specific user account
Unlock-QADUser DSotnikov

Dmitry’s PowerBlog: PowerShell and beyond

Download details: Windows PowerShell Graphical Help File

Published by ryangl July 21st, 2007 in Active Directory, Powershell, Windows Server 2003 and Windows Server 2008. Comments

get-help-big

The PowerShell help section, located is not the friendliest doc to review when you need to run a script using PowerShell.   Luckily, Microsoft released the Graphical chm file that is both easy to use and practical

gui-help-big

Download this utility / help file here

View the Windows PowerShell 1.0 help (including cmdlet help and the About topics) in a fully-searchable, graphical format (a standard Windows .chm file). Also included in the help file is the VBScript to Windows PowerShell Conversion Guide.

Download details: Windows PowerShell Graphical Help File

Complete Linux-AD Authentication Details

Published by ryangl July 21st, 2007 in Active Directory, Guides, Linux, Schema and Windows Server 2003. Comments

Scott Lowe has published a very thourough process detailing the steps required for Active Directory authentication for Linux.   

Complete Linux-AD Authentication Details » blog.scottlowe.org

Books

PowerShell

Other PowerShell Books
Server 2003 & Server 2008

Other Microsoft Books