quarta-feira, outubro 20, 2010

Manage DNS Server (Windows 2008) from Windows XP/2003


If you can manage 2008 R2 DNS fine from RSAT on Windows 7, but accessing from DNS Management mmc on Server 2003 returns “access is denied”. If I install the 2003 R2 Admin Pack on an XP Pro PC it the symptom is the same, Access Denied.

This is expected behavior, starting with Windows Server 2008 a few years ago. RPC Integrity required by W2K8 R2 DNS Servers is not supported by the Win2000 and Win2003 versions of DNSMGMT.MSC (or DNSCMD.EXE). For the most secure experience, W2K8 R2 DNS servers should be administered from operating systems that can execute the Windows Server 2008 or later versions of DNSMGMT.MSC. So Vista RSAT, Win 7 RSAT, Win 2008, Win 2008 R2 – all running DNSMGMT.MSC.

If you wanted to de-secure your Win2008/R2 DNS servers though – obviously this is highly discouraged – you can run the following command on your Win2008 R2 DNS servers to allow down-level connectivity:

dnscmd.exe /Config /RpcAuthLevel 0

If you do this you are exposing your Win2008/Win2008 R2 DNS servers to same kind of named-pipe sniffing ‘man in the middle’ attacks that Win2003/2000 DNS administration are vulnerable to. Ideally for security, all of your DNS servers would be instead upgraded to Win2008 R2. 

To return the security to default level run: dnscmd.exe /Config /RpcAuthLevel 1

To verify the current level run: dnscmd.exe /info /RpcAuthLevel

Related site:
http://technet.microsoft.com/en-us/library/ee649281(WS.10).aspx
.
Postado por às Nenhum comentário:
Marcadores: ,

segunda-feira, outubro 18, 2010

How to Rebuild the Full-Text Index Catalog on DAG Environment


If you cannot search e-mails neither fom Outlook or OWA then you have problems in the database's index catalog. To fix it on a single server you can use the following article: http://technet.microsoft.com/en-us/library/aa995966(EXCHG.80).aspx

But if you have databases in a DAG you have to do something else:

1- Suspend all replica databases;
2- Follow the directions described on http://technet.microsoft.com/en-us/library/aa995966(EXCHG.80).aspx;
3- Delete the Index Catalog on Replica databases;
4- Resume the replica databases.

To check how the process is going do the following:

1- Open Reliability and Performance Monitor (perfmon.exe).
2- In the console tree, under Monitoring Tools, click Performance Monitor.
3- In the Performance Monitor pane, click Add (green plus sign).
4- In Add Counters, in the Select counters from computer list, select the server on which the mailbox database you want to monitor is located.
5- In the unlabeled box below the Select counters from computer list, select Full Crawl Mode Status in the MSExchange Search Indices performance object.
6- In the Instances of selected object box, select the instance for the user's mailbox database.
7- Click Add, and then click OK.
8- To make easier to monitor the Full Crawl Mode Status, right-click on graph screen then Properties.
9- Select Graph tab.
10- On View Combo box select Histogram bar and Maximum Vertical Scale insert 2, click OK.

When you see a bar for a database it means that the index catalog is been created (value 1), if you don't see a bar meens the indexing has finished for that database.


Related sites:
Postado por às Nenhum comentário:
Marcadores: ,
Assinar: Postagens (Atom)