Advertise

Home

Site Map

About

Location: List Archives

Register | Login

Syndicate

	List Posts
	All Site Articles

Friends

Friends

Adventnet Sky

List Archives

This forum is an archive of all posts to our mailing list over the past few years. The forum is set read only therefore to contribute you will need to join our list community. See more info about this here.

When subscribed to the list you should use your standard email client to send your posts to ActiveDir@mail.activedir.org.

List Archives

Unanswered Active Topics

Forums >ActiveDir Mail List Archive >List Archives

Subject: [ActiveDir] Conditional Forwarding for SRV's

You are not authorized to post a reply.

Author

Messages

AD00000816 User is Offline

User is Offline

Posts:0

10/21/2005 11:34 AM
I am concerned about the local PC?s not the Servers -----Original Message-----From: ActiveDir-owner@xxxxxxxxxxxxxxxxxx [mailto:ActiveDir-owner@xxxxxxxxxxxxxxxxxx] On Behalf Of Thommes, Michael M.Sent: Thursday, October 13, 2005 11:51 AMTo: ActiveDir@xxxxxxxxxxxxxxxxxxSubject: RE: [ActiveDir] Adding users to local Admin group One of the processes we use for servers is to create a global security group in AD that identifies accounts to be used for administering a particular computer, say ?ServerName_admins?. That group is then added to the local ?ServerName\administrators? group. hth, Mike Thommes -----Original Message-----From: ActiveDir-owner@xxxxxxxxxxxxxxxxxx [mailto:ActiveDir-owner@xxxxxxxxxxxxxxxxxx] On Behalf Of Jake StablSent: Thursday, October 13, 2005 9:16 AMTo: ActiveDir@xxxxxxxxxxxxxxxxxx; nmonly@xxxxxxxxxx; techcoords@xxxxxxxxxxxxxxxxxxxxxxxxSubject: [ActiveDir] Adding users to local Admin group I am using Active Directory and I need to know how to add certain people to the local admin group only on certain computers. I know I can do this under restricted groups but that makes thoses users local admin on all machines they log into. Specificly I have a cisco class I need to give admin rights to but only on those computers they use. Any one have a suggestion? -- Jacob Stabl Network Engineer Plain Local School District http://www.plainlocal.org Office: 330.492.3500 Cell : 330.704.1278 IP Phone: 4466 To help you stay safe and secure online, we've developed the all new Yahoo! Security Centre.

ZJORZ

User is Offline

Posts:389

10/21/2005 12:38 PM
With (contional) forwarding you specify the DNS zone and the IP address of the DNS server that hosts the zone. When a client queries for "_ldap._tcp.pdc._ms-dcs." and the DNS server of the client does not host a DNS zone "" the DNS server itself queries its forwarders (recursively = default or iterativelty) to see if they know the answer. If a positive answer exists it is returned to the client. If I understand correctly what you ask you need to disable recursion on the DNS server so that the clients performs an iterative query. What are you trying to gain? less network traffic, more direct answers? Still trying to understand why/what? Can you explain more? More info on iterative and recursive queries: http://www.microsoft.com/technet/prodtechnol/windowsserver2003/library/ServerHelp/0bcd97e6-b75d-48ce-83ca-bf470573ebdc.mspx http://www.computerperformance.co.uk/w2k3/services/DNS_Query.htm http://media.pearsoncmg.com/aw/aw_kurose_network_2/applets/dns/dns.html Cheers, jorge From: ActiveDir-owner@xxxxxxxxxxxxxxxxxx [mailto:ActiveDir-owner@xxxxxxxxxxxxxxxxxx] On Behalf Of Ian FraserSent: Friday, October 21, 2005 13:32To: ActiveDir@xxxxxxxxxxxxxxxxxxSubject: [ActiveDir] Conditional Forwarding for SRV's I have a query - is it possible for a client to get a referral using conditional forwarding for an SRV at start up? I ask this because I have a site with a large amount of UNIX DNS servers. If I specify (for example) _ldap._tcp.pdc._ms-dcs. as the zone, would this work? I think this is a definite no go, but I need to prove this to some technical guys. Sorry I can't test this at this point in time. Many Thanks Ian Fraser "Salandra, Justin A." wrote: I am concerned about the local PC™s not the Servers -----Original Message-----From: ActiveDir-owner@xxxxxxxxxxxxxxxxxx [mailto:AActiveDir-owner@xxxxxxxxxxxxxxxxxx] On Behalf Of Thommes, Michael M.Sent: Thursday, October 13, 2005 11:51 AMTo: ActiveDir@xxxxxxxxxxxxxxxxxxSubject: RE: [ActiveDir] Adding users to local Admin group One of the processes we use for servers is to create a global security group in AD that identifies accounts to be used for administering a particular computer, say ServerName_admins. That group is then added to the local ServerName\administrators group. hth, Mike Thommes -----Original Message-----From: ActiveDir-owner@xxxxxxxxxxxxxxxxxx [mailto:AActiveDir-owner@xxxxxxxxxxxxxxxxxx] On Behalf Of Jake StablSent: Thursday, October 13, 2005 9:16 AMTo: ActiveDir@xxxxxxxxxxxxxxxxxx; nmonly@xxxxxxxxxx; techcoords@xxxxxxxxxxxxxxxxxxxxxxxxSubject: [ActiveDir] Adding users to local Admin group I am using Active Directory and I need to know how to add certain people to the local admin group only on certain computers. I know I can do this under restricted groups but that makes thoses users local admin on all machines they log into. Specificly I have a cisco class I need to give admin rights to but only on those computers they use. Any one have a suggestion? -- Jacob Stabl Network Engineer Plain Local School District http://www.plainlocal.org Office: 330.492.3500 Cell : 330.704.1278 IP Phone: 4466 To help you stay safe and secure online, we've developed the all new Yahoo! Security Centre. This e-mail and any attachment is for authorised use by the intended recipient(s) only. It may contain proprietary material, confidential information and/or be subject to legal privilege. It should not be copied, disclosed to, retained or used by, any other party. If you are not an intended recipient then please promptly delete this e-mail and any attachment and all copies and inform the sender. Thank you.

You are not authorized to post a reply.

Forums >ActiveDir Mail List Archive >List Archives > [ActiveDir] Conditional Forwarding for SRV's

ActiveForums 3.7



Search List Posts >>

Friends

Friends

Members

Members

	Membership:
	Latest:cajoe64
	New Today:0
	New Yesterday:0
	Overall:5291

	People Online:
	Visitors:68
	Members:0
	Total:68

Online Now:

Articles

Articles

All Articles (49)

Active Directory (22)

DNS (2)

Group Policy (4)

Tips and Tricks (11)

Windows Server (6)

Related Links

Related Links

Microsoft AD Home

Open A Socket!

GPOGUY

Ulf B. Simon-Weidner's site

Gil Kirkpatrick's Blog

Kim Cameron's Identity Blog

DirTeam Weblogs

Laura Hunter's Blog

Brett Shirley's Blog

Brian Desmond's Blog

Michael B. Smith's Blog

Jadonex

Eric Fleischman's Blog

Ads

Copyright 2012 ActiveDir.org
Terms Of Use