Content Search

Custom Search

Sunday, February 24, 2008

How to use Blackberry 7100 as a modem

For those who don’t know, here are the steps:

1. Connect your BlackBerry 7100 (BB 7100) with computer through USB cable.
2. Activate the Blackberry Handheld Manager and or Blackberry Device Manager (Depends on the Blackberry software version) and make sure the status is connected to the device.
3. Open Device Manager. Expand Modems and double click on Standard Modem.
4. Go to advance tab, add extra initialization command +cgdcont=1,”IP”,”your_apn_name” (depends on your network provider).
For example I put; cgdcont=1,”IP”,”” for Indosat Network. Sometime you may have to put a different format such us; +cgdcont=1,”IP”,””,””,0,0
5. After that, do a test query on your modem. You should see what type of modem, Research In Motion, etc.
6. Create a new Internet Connection. On number to dial type in *99#. Leave the password and username blank.
7. Last, depends on the Network Provider, you may have to enter the DNS server IP on TCP/IP Property. In my experience, most of the time leaving the DNS setting to be automatic should be fine. Confirm with your Network Provider about the IP or if you find any difficulty connecting to the Internet.
8. Dial the newly created connection and have fun trying.

How to configure a display message when users log on to the Windows 2003 domain

You can configure Windows Server to display a message to users when they log on. The message appears after the user presses CTRL+ALT+DEL and disappears after the user clicks OK. After the message disappears, the user can complete the logon process.

Configuring a Group Policy Setting for a Domain:
1. On the domain controller, start the Group Policy Management snap-in.
2. Expand the forest object in the left pane.
3. Expand the domains object in the left pane. Expand yourdomain.
4. Right Click Default Domain Policy, and then click Edit.
5. Expand the following folder:
Computer Configuration\Windows Settings \Security Settings\Local Policies\Security Options
6. In the right pane, double-click Policies, and then follow these steps to create the message text:

> On a Windows Server 2003-based domain controller:
a. Click Interactive logon: Message title for users attempting to log on, and then type the text that you want to appear in the title bar of the message dialog box.
b. Click Interactive logon: Message text for users attempting to log on, and then type the text of the message that you want to appear in the message dialog box.
> On a Windows 2000-based domain controller:
a. Click Message title for users attempting to log on, and then type the text that you want to appear in the title bar of the message dialog box.
b. Click Message text for users attempting to log on, and then type the text of the message that you want to appear in the message dialog box

Note: If you do not use carriage returns in your display message, the maximum number of characters that you can add to the logon box is 512. If you add carriage returns, you can add up to 2048 characters (512 characters per line).

Sunday, February 17, 2008

Managing Distribution/Security group membership from Microsoft Outlook

We can manage the membership of a distribution or security group through Microsoft Outlook if they have an email address setup.
1. Go to the user properties at Active Directory Users and Computers.
2. Click the Managed By tab, click change, choose the name to be the manager of the group.
3. Give check mark on the ‘Manager can update membership list’.

To modify the membership through Microsoft Outlook
1. At Microsoft Outlook, open Address Book
2. Double click on the distribution group name.
3. Under the distribution group properties, click Modify Members.
4. Under Distribution List Membership, click Add. Choose the name to be the member of the distribution list.
5. Click OK 3 times.

How to setup an automatic reply in Outlook 2003/Outlook 2007

The following is done from Microsoft Outlook:
1. On the Tools menu, click Rules and Alerts.
2. In the Rules and Alerts dialog box, click the New Rule button on the E-mail Rules tab.
3. In the Rules Wizard, click the Start from a blank rule button, click Check messages when they arrive, and then click Next.
4. Under Which condition(s) do you want to check?, click to select the Sent Only To Me check box or any other check box that you want, and then click Next.
5. Under What do you want to do with the message?, click to select the Have server reply using a specific template check box.
6. On the Step 2: Edit the Rule Description page of the wizard; click the underlined phrase a specific message.
7. Compose a reply message in the Outlook Editor window. Fill in the subject field, click save and close.
8. Complete the Rules Wizard instructions, click Finish, and then click OK.

Since this is a server based rule, we don’t have to keep the outlook open in order for the rule to be applied.
Note: By default exchange doesn’t allow automatic reply message to be send to external user. You must allow it through Exchange System Manager.

Networking Infrastructure in Windows 2008 – What’s new?

Simplified windows configuration
All versions are available in single DVD. Choose which version during installation.
After Installation we can configure the server through Initial Configuration Task Overview.
(Setup the administrator username & password, IP, domain/workgroup, windows update, windows firewall, etc)
Have configurable Server Roles and Features.
All configurations are done through Server Manager Console.
Example of Server Roles: AD Domain Service, DNS, DHCP, File Server, etc
Example of Features: Failover Clustering, Storage Manager for SAN, etc
Truly support IPv6 – 128 bit
Network Access Protection availability
Non-comply computer can be directed to isolated segment or denied access
>Server Core Installation
For Installation of Role Functionality in Windows 2008
We cannot install other application here.
For better performance and security
>Windows backup
VSS enable on Drive directly
Backup to Bootable CD/DVD
Default backup schedule is full + incremental
>Windows Deployment Service
The Next of RIS
For Installing OS and or Application
Several Image type: Boot Image, Install Image, Capture Image, Discover Image
>Windows Server Virtualization
The Next of Virtual Server 2005
Differencing support on VHD files
Virtual Network use VLAN ID for better performance
Dedicated Processor/RAM blocking on WSV for certain Guest Computer
Support x-64 guest OS
>Clustering & NLB
No more need for a VLAN for geo clustering
No 500 ms limitation for heartbeat

Active Directory in Windows Server 2008 – What’s new?

Ø Active Directory Role in Windows Server 2008
o Active Directory Domain Services (ADDS) – this is like the current AD
o Active Directory Certificate Services (ADCS)
o Active Directory Federation Services (ADFS) – for possible access between two different organization
o Active Directory Lightweight Directory Services (ADLDS) – this is like ADAM in Windows 2003
o Active Directory Rights Management Services (ADRMS)
o Active Directory Read Only Domain Controller (ADRODC) – truly new feature
Ø ADLDS contains customize AD attribute, mainly use for application in DMZ and it is read only too. No authentication and doesn’t support exchange.
Ø ADRMS – for Intranet, Website, Email, and document
Ø For RODC implementation must have at least Windows Server 2003 forest functionality and one Windows Server 2008 DC
Ø By default RODC doesn’t keep password. A password replication policy must be setup. PDC emulator on the Domain must run on Windows Server 2008.
Ø Local Administrator can be set on RODC without giving access to Active Directory.
Ø Improved Auditing in AD
o Directory Service Access (current)
o Directory Service Change
o Directory Service Replication
o Detailed Directory Service ReplicationAuditing is not setup by default. When it’s enable, it can track AD object creation, deletion, modify, or movement.

How to audit Active Directory account management in Windows 2003?

The following was taken from one of conversation on Microsoft Managed Newsgroup.

By default, Windows Server 2003 system ships the following Audit policies:
> Audit account logon event
> Audit account management
> Audit directory service access
> Audit logon events
> Audit object access
> Audit policy change
> Audit privilege use
> Audit process tracking
> Audit system events

To audit add/deleting events, you may open Default Domain Controller Policy, locate Computer Configuration\Windows Settings\Security Settings\Local Policies\Audit Policy, enable "Audit account management" with Success.

After that, when a new user is created on a domain controller, the following event will be logged:

Event ID: 624
Type: Success Audit
Description: User Account Created:
New Account Name: %1 New Domain: %2
New Account ID: %3 Caller User Name: %4
Caller Domain: %5 Caller Logon ID: %6
Privileges %7

When an existing user is deleted on the domain controller, the following event will be logged:
Event ID: 630
Type: Success Audit
Description: User Account Deleted:
Target Account Name: %1 Target Domain: %2
Target Account ID: %3 Caller User Name: %4
Caller Domain: %5 Caller Logon ID: %6
Privileges %7

We can monitor event 633 and 632 which records security enabled global group membership removed/added.

E.g. you, domain\administrator1 have removed/added user1 from/to group1.
And the following events will be recorded.

Event ID: 633 (logged when you remove a user from a security group)
Type: Success Audit
Description: Security Enabled Global Group Member Removed:
Member Name: CN=user1,CN=Users,DC=domain,DC=com.
Member ID: domain\user1
Target Account Name: domain\administrator
Target Domain: Domain
Target Account ID: domain\group1
Caller User Name: administrator1
Caller Domain: domain

Event ID: 632 (logged when you add a user from a security group)
Type: Success Audit
Description: Security Enabled Global Group Member Added:
Member Name: CN=user1,CN=Users,DC=domain,DC=com.
Member ID: domain\user1
Target Account Name: domain\administrator
Target Domain: Domain
Target Account ID: domain\group1
Caller User Name: administrator1
Caller Domain: domain

We can audit who at what time, modifies which attribute of the user. But we cannot see what's the
Workstation or what's the application. To audit the property change issues, follow the below steps:

1. Enable the Auditing for Directory Services Access for Success in the Default Domain Controller Policy.
2. Go to the Security of the User account you want to audit and Enabled the Auditing for WRITE ATTRIBUTES for Everyone.

We will get the 566 event when any one will change any Attribute like

Event Type: Success Audit
Event Source: Security
Event Category: Directory Service Access
Event ID: 566
Date: 07/06/2007
Time: 11:14:56
Computer: ASH-DC1
Object Operation:
Object Server: DS
Operation Type: Object Access
Object Type: user
Object Name: CN=t6,CN=Users,DC=alpineskihouse,DC=com
Handle ID: -
Primary User Name: ASH-DC1$
Primary Logon ID: (0x0,0x3E7)
Client User Name: t1
Client Logon ID: (0x0,0x67A9AEE)
Accesses: Write Property

Write Property
Public Information

Additional Info:
Additional Info2:
Access Mask: 0x20

For more information, see Help and Support Center at

3. Now to check on which DC the change was initiated you can take the
Repadmin report as Follow
Repadmin /showmeta "DN OF THE USER" and you can see the Originating DC and the timestamp.

Sunday, February 10, 2008

Windows 2000/2003 Active Directory Deployment Guideline

When you are deploying active directory in a large environment especially in multiple domain and multiple site, there’s a lot of thing to be done.

Depends on your design, here are among a few top important things that you must configure/remember during the Deployment:
Ø Recommended to place Global Catalog on each site.
Ø Don’t put Global Catalog and Infrastructure Master Role on the same Domain Controller server.
Ø Create a proper subnet, site, and Site Replication Path on Active Directory Sites and Services console.
Ø For child domain configuration, set DNS delegation from root domain.
Ø Choose Active Directory Integrated DNS type.
Ø Enable, configure, and authorize DHCP server for each site if needed.
Ø Enable WINS for NETBIOS names resolution if needed.

How to add Additional Mailbox in Microsoft Outlook 2003/2007

On Outlook 2003/2007, just click on tools > email account / account settings> click view or change email account.
Double click on Microsoft exchange server> click more setting > go to advance tab> add additional mailbox. Type "user name", click ok twice, and click next, finish, done.

Automatic Signature with Exclaimer 4.20 in Exchange 2003 Server are not shown in email messages.

To resolve it try the following:

1. Go to command prompt.
2. In the command prompt, please type IISReset. Wait for the process to stop and restart.
3. Once it has re-started, close the command prompt window and navigate to Program files/Exclaimer folder.
4. In this folder is a file called QAHelper. Run the QAHelper file.
5. Click on uninstall.
6. Once that is done click on install.

Note: IISReset usually do the trick, no need to run the QAHelper.

How to use the O2 Personal Digital Assistant keyboard

To be able to use this keyboard, please follow these steps:

1. Make sure the keyboard turn on. To make sure, slide the on/off switch on the left side. Try to press some buttons, if the keyboard light up it means the keyboard is active.
2. Uncheck the “Beam” settings on Start > Settings > Connections > Beam
3. Install the O2 keyboard software from the Accompanying CD to the PDA.
4. After the software installed on O2 PDA, click Start > Program > O2 Keyboard
5. Mark on “Active Keyboard”.
6. Pull the Infra Red antenna from the keyboard and direct it to the O2 Infra Red Port.

Thursday, February 7, 2008

Receiving unwanted meeting related information in Outlook Inbox

A user complains that he is receiving unwanted meeting related information in his Inbox. You examine the meeting details and found out that it doesn’t contain the user email address in the required, optional, or resources field. The meeting invitations were addresses to other email address.
Most likely that one of the mailbox in the required, optional, or resources field of a meeting invitation has delegation setting to that user. On each mailbox, check the Delegate setting on Microsoft Outlook.
On Outlook, click Tools > Options > Delegates. See whether delegates are setup. Check on the permission details. Clear the ‘Delegates receive meeting related information send to me’.

Monday, February 4, 2008

Internet Explorer 7 stuck at first run welcome page

Have you ever had an experience when IE 7 stuck at the first welcome page every time you run it? Even if you have set the default home page setting to other website in AD Group Policy. No virus or spyware detected.

You might want to check registry on the computer.
Type regedit on command prompt:
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\RunOnceHasShown
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\RunOnceComplete
Make sure both registry are exist and have value 1.
Restart the IE.

Saturday, February 2, 2008

Error when rebuilding Offline Address Book in Exchange 2003

The other day when I try to update the Offline Address Book in my Exchange Server, I get an error like this:
Exchange System Manager Error. The information store could not be opened.
The logon to the Microsoft Exchange server computer failed.
MAPI 1.0 ID no: 80040111-0286-00000000
ID no: C1050000 Exchange System Manager

Make sure that the DNS and Active Directory are function correctly in your domain. Run DCdiag and Netdiag to make sure everything is ok.
Restart the Domain Controller and then restart the Exchange Server.

Error message 0x86000108 when trying to sync Windows Mobile 5.0 device with Exchange 2003

If your organization uses Exchange 2003 as mail server and windows mobile 5.0 as the push email client, it's more likely that once a while u will receive the error message 0x86000108 when you sync email message.

Look for the corrupted item in inbox, contact, task, or calendar. Move the corrupted item away to other place. Sync the device. After it works, you can move back the item again.