Microsoft's official enterprise support blog for AD DS and more
Here are the new Directory Services-related KB articles for the week.
I came across something this week that reminded me of the improvements that were made to SMB signing in Vista/2008. The SMB protocol is used for network file transfer in Windows, and there are policy settings to control if SMB communications are digitally signed. But prior to this fix, depending on the setting on the client and server, it could result in no communication at all. But now since that fix is available as a hotfix for XP/2003 (KB 916846), and is included in 2003 SP2, XP SP3, Vista, and 2008, communication failures caused by SMB signing mismatches should soon be a thing of the past.
Error message when you run a script that is encoded by using Script Encoder (Screnc.exe) in Windows Server 2003 or in Windows XP
When you try to access a local resource over a VPN connection, you are always prompted for authentication in Windows Vista
Information about programs that are known to experience a loss of functionality when they run on a Windows Vista Service Pack 1-based computer
Windows Vista may disconnect client communications that use TCP port 1723
You receive an error message when you try to upgrade the WSv preview build installed on Windows Server 2008 RC0 or on Windows Server 2008 RC1 to the Windows Server 2008 RC1 build with Hyper-V beta or to the release version of Windows Server 2008
Error message when you try to log on to a Windows Server 2008-based RODC: "There are currently no logon servers available to service the logon request"
Active Directory objects may not be replicated from the restored server after an authoritative restore on a Windows Server 2003-based domain controller
The "netsh firewall add portopening," "netsh firewall set portopening," and "netsh firewall set service" commands do not work on a computer that is running certain editions of Windows Vista
You may not have automatic access to BitLocker-encrypted non-operating-system volumes after you roll back Windows Vista Service Pack 1 to the release version of Windows Vista
Intrusion detection software (IDS) may issue a warning of a replay attack when you try to use a nonexistent domain user account to log on to a domain from a Windows-based client computer
Changes to remote administration in Windows Server 2008
In Windows Server 2008 and in Windows Vista, the "Do not search files" user policy setting does not work as expected
After you create Active Directory Domain Services (AD DS) in Windows Server 2008, you notice that the credential roaming schema differs from Windows Server 2003
When you use a WMI script to query the Win32_PerfFormattedData_NTDS_NTDS class on a Windows Server 2003-based domain controller, the script returns a 0x80041010 error
Windows Vista-specific folder redirection policies are removed from a GPO when you connect to an AGPM server component that is installed on a Windows Server 2003-based member server
How to use the Backup program to prestage data before DSFR synchronization in Windows Server 2003 R2
The Repadmin.exe tool does not report existing lingering objects in Windows Server 2003
After you apply a GPO to redirect a folder to a network share on Windows XP-based or on Windows Server 2003-based client computers, the redirected folder is empty
- Craig Landis