Microsoft's official enterprise support blog for AD DS and more
Here are the new KB articles related to Directory Services published between 3/22-4/4. Obviously the big news has been the release of the 2008 remote administration tools (RSAT) and Hyper-V RC0. We use Virtual Server heavily for testing and reproducing customer issues, so I was interested to try out Hyper-V. It is a big help being able to use x64 guests, and overall the performance definitely seems improved from Virtual Server. Lots of nice little things also, like the ability to change the boot order of the guest without having to boot into the guest's BIOS.
941314
949589
Description of Address Resolution Protocol (ARP) caching behavior in Windows Vista TCP/IP implementations
949758
Availability of the Windows Vista Service Pack 1 management tools for the Hyper-V release candidate
949608
Changes to the default NTFS Discretionary Access Control List (DACL) settings in Windows Vista
949390
When you import an event log file into Excel 2007 on a Windows Server 2008-based computer, event logs are not readable
949887
A memory leak occurs on an RPC server that is running Windows Server 2008 after the RPC server function runs an RPC client callback function
950257
How to configure event subscription to pull BMC SEL events into the event logs in Windows Server 2008
950043
How to back up the data recovery agent certificate together with the private key in a Windows Server 2003-based domain
949876
LDAP queries fail for large result sets after security update MS08-003 is applied on a Windows Server 2003-based computer
948931
If a user account belongs to 16 groups, access to some resources is denied on a computer that is running a 64-bit version of Windows Server 2003
951028
You are prompted two times for credentials when you use the Remote Desktop Client to connect to a Windows 2000 Terminal Server from Window Vista or from Windows Server 2008
945802
Error message when you start a program that must run with elevated permissions on a Windows Vista-based computer: "The directory name is invalid"
951018
How to generate a full user-mode dump file in Windows Vista
949469
NSPI connections from Microsoft Outlook to a Windows Server 2008-based domain controller may fail with an error code: "MAPI_E_LOGON_FAILED"
950042
A Windows Server 2003-based domain controller may request multiple certificates every 8 hours
947861
Authentication of trusted users fails on a Windows Server 2003-based server if the UPN format is used and if the value of the LmCompatibilityLevel entry is equal to or larger than 3
Here are the new KB articles related to Directory Services published between April 5-11. Also note that we’ve updated the KB article on Netlogon logging (109626) to make it clear that Netlogon logging works the same way in Vista/2008 as it does in 2003/XP/2000. Logging for user profiles and group policy has moved to ETW tracing, but Netlogon is the same old human-readable plain-text logging that you know and love.
948833
Distributed File System Replication may not replicate a folder on a Windows Server 2003 R2-based computer if the folder was previously a member of a replication group that was removed
949655
On a Windows Vista SP1-based computer, the SCardReleaseContext function returns a "0x80100004 (SCARD_E_INVALID_PARAMETER)" error code when the Cryptographic Service Provider process closes
947972
Error message when you try to copy a file to a Distributed File System (DFS) shared folder on a Windows Vista-based computer: "The selected files could not be copied. There is not enough free space on the device"
951024
When you run Scanstate.exe and Loadstate.exe from a non-elevated command prompt, the programs fail without an error on a Windows Vista Service Pack 1-based computer
951020
A logon from a domain that is not at the Windows Server 2008 domain functional level is blocked when you enable the "Display information about previous logons during user logon" policy setting
951005
The Network Policy Server may not log successful authentication events or failed authentication events in Event Viewer in Windows Server 2008
950806
A Network Name resource that has the Kerberos protocol enabled does not come online on the first attempt in a Windows Server 2008 failover cluster
951006
Hyper-V virtual machines cannot reach the network when the vLan tagging is enabled on a Windows Server 2008-based computer
947722
The "Internet Explorer Enhanced Security Configuration" dialog box appears unexpectedly on a computer that is running Windows Server 2008
951026
A domain user may be able to access security logs even though the user does not have the "Manage auditing and security log" user right in Windows Server 2003
951010
The ConflictAndDeleted folder size may exceed its configured limitation in Windows Server 2003
946565
On a Windows Server 2003-based computer that has the update from security bulletin MS07-062 installed, you may experience a memory leak in DNS
950156
The "NetlocalgroupAddMembers" function cannot add cross-domain objects into local groups on a Windows Server 2003-based domain controller that has hotfix 923354 installed
- Craig Landis