November 2009 - Posts

• Upgrading Active Directory Domains to Windows Server 2008 and Windows Server 2008 R2 AD DS Domains

  Microsoft have released a paper which explains the process for upgrading Active Directory domains to Windows Server 2008 and Windows Server 2008 R2, how to upgrade the operating system of domain controllers, and how to add domain controllers that run Windows Server 2008 or Windows Server 2008 R2 to an existing domain. http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=fa629de2-f4dd-47ac-8d80-3db46b2877a2   del.icio.us Tags: markparris,Windows Server 2008 R2,[ADUG] Upgrade,Migration,Windows Posted Nov 25 2009, 04:34 PM by Parris with no comments Filed under: Windows Server 2008 R2

• Running Domain Controllers in Hyper-V

  Microsoft have released Virtualization recommendations for Active Directory Domain Controllers running Domain Controllers in Hyper-V. http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=7425e34b-3990-43d8-b93b-cb6442858c21     Posted Nov 24 2009, 07:06 AM by Mark Parris with no comments Filed under: ADUG, markparris, Hyper-V, Virtualisation

• Active Directory / Domain Naming System Convergence Check Utility

  This cmd file provides a means of verifying that a newly created DNS server has completed the replication of AD content from an assumed/known-good 'source' DNS server. Directions for using this utility can be found in the Active Directory Domain Services and Domain Name System (DNS) Server Migration Guide (http://go.microsoft.com/fwlink/?LinkId=134771). The migration documentation and tools ease the process of migrating the Active Directory Domain Services and Domain Name System roles, operating system settings, and data from an existing server that is running Windows Server® 2003, Windows Server® 2008, or Windows Server® 2008 R2 to a computer that is running Windows Server 2008 R2. By using the migration guide to migrate roles, you can simplify deployment of new servers, reduce migration downtime, increase accuracy of the migration process, and help eliminate conflicts that could otherwise occur during the migration process. http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=bcb25f16-77fa-41b5-b1b2-27d46bc2cc33 Posted Nov 11 2009, 05:06 AM by Mark Parris with no comments Filed under: DNS, [ADUG], markparris, Windows 2008 Server, script, Windows

• Direct from TechED Europe - John Craddock presents DirectAccess - UPDATED.

  I am delighted to confirm that direct from TechED Europe, John Craddock will be presenting a double session on DirectAccess to the Active Directory User Group on 30th November 2009, 18:00 – 21:00 at Cardinal Place, London. John Craddock BSc (Hons), CEng, MBCS will be taking us through - Implementing Direct Access. DirectAccess is a new feature in the Windows 7 and Windows Server 2008 R2 operating systems that gives users the experience of being seamlessly connected to their corporate network any time they have Internet access. With DirectAccess, users are able to access corporate resources (such as e-mail servers, shared folders, or intranet Web sites) securely without connecting to a virtual private network (VPN). Improve Productivity of Mobile Workforce. DirectAccess provides increased productivity for mobile workforce by offering the same connectivity experience both in and outside of the office. DirectAccess is on whenever the user has an Internet connection, giving users access to intranet resources whether they are travelling, at the local coffee shop, or at home. Improved Manageability of Remote Users. Without DirectAccess, mobile computers can only be managed when users connect to a VPN or physically enter the office. With DirectAccess, mobile computers can be managed any time the mobile computer has Internet connectivity, even if the user is not logged on. This allows remote computers to be managed regularly and helps ensure mobile users stay up-to-date with security and system health policies. DirectAccess helps ensure that organizations can meet regulatory and privacy mandates for security and data protection for assets that must roam beyond the corporate network Improved security. DirectAccess uses IPsec for authentication and encryption. Optionally, you can require smart cards for user authentication. DirectAccess integrates with NAP to require that DirectAccess clients must be compliant with system health requirements before allowing a connection to the DirectAccess server. IT administrators can configure the DirectAccess server to restrict the servers that users and individual applications can access. John Craddock As an infrastructure and security architect he has designed and implemented global distributed IT solutions, providing services to industry leaders including Microsoft. John is an international speaker, delivers technical seminars and sessions around the world and is a featured speaker at major IT conferences such as Microsoft TechEd and IT Forum. John’s website’s are www.xtseminars.co.uk and www.kimberry.co.uk  *** UPDATE *** Take a sprinkling of Windows 7, add Windows Server 2008 R2, IPv6 and IPsec and you have a solution that will allow direct access to your corporate network without the need for VPNs. Come to these demo-rich sessions and learn how to integrate DirectAccess into your environment. In Part 1 learn about IPv6 addressing, host configuration and transitioning technologies including 6to4, ISATAP, Teredo and IPHTTPS. Through a series of demos learn how to build an IPv6 Network and interoperate with IPv4 networks and hosts. In Part 2 we add the details of IPSec, and components that are only available with Windows 7 and Windows Server 2008 R2 to build the DirectAccess infrastructure. Learn how to control access to corporate resources and manage Internet connected PCs through group policy. Part 1 is highly recommended as a prerequisite for Part 2. Posted Nov 03 2009, 06:10 PM by Mark Parris with 1 comment(s) Filed under: Meeting, Active Directory, [ADUG], Windows Server 2008 R2, markparris, DirectAccess, John Craddock