Here are the new Directory Services-related KB articles for the week.

I came across something this week that reminded me of the improvements that were made to SMB signing in Vista/2008. The SMB protocol is used for network file transfer in Windows, and there are policy settings to control if SMB communications are digitally signed. But prior to this fix, depending on the setting on the client and server, it could result in no communication at all. But now since that fix is available as a hotfix for XP/2003 (KB 916846), and is included in 2003 SP2, XP SP3, Vista, and 2008, communication failures caused by SMB signing mismatches should soon be a thing of the past.

KB Title

948527

Error message when you run a script that is encoded by using Script Encoder (Screnc.exe) in Windows Server 2003 or in Windows XP

948067

When you try to access a local resource over a VPN connection, you are always prompted for authentication in Windows Vista

935796

Information about programs that are known to experience a loss of functionality when they run on a Windows Vista Service Pack 1-based computer

946567

Windows Vista may disconnect client communications that use TCP port 1723

939853

You receive an error message when you try to upgrade the WSv preview build installed on Windows Server 2008 RC0 or on Windows Server 2008 RC1 to the Windows Server 2008 RC1 build with Hyper-V beta or to the release version of Windows Server 2008

949048

Error message when you try to log on to a Windows Server 2008-based RODC: "There are currently no logon servers available to service the logon request"

943576

Active Directory objects may not be replicated from the restored server after an authoritative restore on a Windows Server 2003-based domain controller

949543

The "netsh firewall add portopening," "netsh firewall set portopening," and "netsh firewall set service" commands do not work on a computer that is running certain editions of Windows Vista

949049

You may not have automatic access to BitLocker-encrypted non-operating-system volumes after you roll back Windows Vista Service Pack 1 to the release version of Windows Vista

949061

Intrusion detection software (IDS) may issue a warning of a replay attack when you try to use a nonexistent domain user account to log on to a domain from a Windows-based client computer

947723

Changes to remote administration in Windows Server 2008

947018

In Windows Server 2008 and in Windows Vista, the "Do not search files" user policy setting does not work as expected

947056

After you create Active Directory Domain Services (AD DS) in Windows Server 2008, you notice that the credential roaming schema differs from Windows Server 2003

941084

When you use a WMI script to query the Win32_PerfFormattedData_NTDS_NTDS class on a Windows Server 2003-based domain controller, the script returns a 0x80041010 error

949143

Windows Vista-specific folder redirection policies are removed from a GPO when you connect to an AGPM server component that is installed on a Windows Server 2003-based member server

947726

How to use the Backup program to prestage data before DSFR synchronization in Windows Server 2003 R2

948071

The Repadmin.exe tool does not report existing lingering objects in Windows Server 2003

938380

After you apply a GPO to redirect a folder to a network share on Windows XP-based or on Windows Server 2003-based client computers, the redirected folder is empty

- Craig Landis