Eric Fleischman's WebLog

I'll think of a clever title one day. Today's not that day. Tomorrow's not looking good either.

Browse by Tags

Related Posts
  • Blog Post: Configuring and running ADAMSync for the first time

    So now that our ADAM schema is ready, we can go ahead and start configuring ADAMSync. We need to do three things to get ADAMSync running at this point: 1) Modify the XML file. The XML file is used as the configuration point for ADAMSync, so we’ll tweak this file to have the settings we desire. 2) Install...
  • Blog Post: A little iSCSI time

    Over on the EEC blog I just posted that I'll be working with iSCSI some. This is a new area for me, one I'm not really all that familiar with. Quite honestly, I'm not much of a hardware guy, so I suspect I'll be asking the hardware guys for help. :) But I am a software guy, and I love working with fast...
  • Blog Post: Finding the lost&found container in S.DS.P...or anything that isn't ADSI really

    I found myself writing a piece of C# which would go hunt for objects in lost&found today. This is a pretty straight forward task….find that container, pop in to it and search away. I usually do this by looking at the lost&found well known GUID (which is GUID_LOSTANDFOUND_CONTAINER_W in the platform...
  • Blog Post: Another random AD change in SP1

    The other day over on activedir it was mentioned that in SP1 we added sidHistory to the list of attributes preserved on tombstones. I thought I’d mention this here, and provide some clarity around what actually changed, since there was some confusion around what we did and how we did it. In looking at...
  • Blog Post: A bit on SIDs....

    I was thinking about what in the land of SIDs themselves needs mentioning above and beyond what was said in my last blog post. Perhaps it's adequately covered already in product documentation, I'm not sure. Larry Osterman recently did a few posts on the subject which I'd recommend. If there's more that...
  • Blog Post: Syncing to our OU=SyncTargetOU NC instead

    Earlier in this series of posts I changed our sync target from form “OU=” to “DC=”. This was done to carefully skirt around a small issue. Now with our new found knowledge of logging in ADAMSync, let’s give it another try. So let’s go ahead in to our previous config file and change this line: <target...
  • Blog Post: Who is that ADAM guy, and why should I let him in?

    So, it’s pretty well understood what Active Directory (AD) is. Since we shipped Windows 2000 several years ago, we’ve been putting information out there on what AD is, how you use it, how it benefits you, and why you should use it for as much integration as you can. I think AD sells itself to a large...
  • Blog Post: AWE in WOW64 on x64

    Here in the EEC, was asked a good question the other day, thought I’d pass it along. So the scenario is that the engagement in question was to run SQL 2000 SP4 on a box running Win2k3 x64 Enterprise Edition. The server had a good chunk of RAM (I think 8GB, but it might have been 16GB). The question...
  • Blog Post: Garbage collection & TSL warnings...why now?

    I was recently pinged by a friend who is rolling out LH in their production environment. They were having an interesting issue where the LH DC showed these two events, in this order: (event log entries snipped some for brevity) Log Name: Directory Service Source: NTDS General Event ID...
  • Blog Post: It's all about the little things

    I love little things. Here is one I noticed this morning. Go ahead and empty your recycle bin. Now create and delete two files, then go to empty the bin again. Note that it says “would you like to delete these 2 files”. Ok, now empty the bin, and only delete one file. Now try and empty the...
  • Blog Post: I had no idea Jim was blogging

    I just learned that Jim Johnson is blogging. Very cool indeed. I'm a fan of that team's work. I had the pleasure of meeting Jim not too long ago, and was really impressed with what that team is up to. Jim recently blogged about some of their Longhorn work. Extending transactions to file system operations...
  • Blog Post: Constructed attributes are your friend

    The schema itself has a whole lot of interesting nuances. Within the schema we define multiple different types of attributes. One of the most useful attribute types we have might just be the constructed attribute. Constructed attributes are interesting in that they aren’t a single value in the database...
  • Blog Post: Getting a log from ADAMSync

    Over the course of the next few posts we’re going to start modifying all sorts of things in the configuration. Depending upon the particulars of your environment this might or might not pan out. :) As such, we should probably take a quick look at the logging available before we break anything too badly...
  • Blog Post: Thank you server may I have another thousand

    Today I spent several hours working on an issue with ranged retrieval when I realized, many people probably don’t know what it is! Let me explain. In Active Directory (AD) and Active Directory Application Mode (ADAM) some people have attributes that have *many* values in them. Thousands. Sometimes more...
  • Blog Post: Horse, go get in front of that cart would ya?

    After my post the other day I couldn’t help but think that perhaps I had an ordering problem. I was really outlining the solution to a problem which had not yet been scoped. Let’s take a step back. We so often throw the term “ACL” around, like it’s some thing that we all implicitly know. But what’s going...
  • Blog Post: Synchronizing only the attributes you really want

    In our previous ADAMSync runs we synchronized all attributes except those in the <exclude> tags. This is probably ok for our tinkering, but in a real scenario, you might want to consider picking those you want instead of getting everything but those you say not to. Why? Well, consider the costs...
  • Blog Post: "VGA"-like drivers for networking

    One of the things that has always impressed me about keyboard, mouse and monitor support is that it just works. That is, you can plug in almost any keyboard, mouse and monitor, on basically any video card, and it there is some level of support provided by your OS/BIOS/etc. Independent of the OS. Independent...
  • Blog Post: Man, I wish we had this feature......

    Sometimes I just thirst for a feature someone else has. In talking with an MVP on the phone tonight we got to talking about ESE, and chatted a bit about the new ECC feature introduced in Exchange 2003 SP1 to help with -1018's. Info on it is here if you're interested. I sure do wish we had that in AD...
  • Blog Post: Change visibility in the directory...or lack there of (aka "what's the point of aging?")

    I’m often asked about aging in adamsync so I thought I’d present the more general problem here for people to ponder. Hopefully this gives some context around the problem which aging in adamsync is supposed to address. Imagine you are writing a tool which sync’s changes out of AD. You (the person running...
  • Blog Post: Gotta get the schema right first

    Before trying to synchronize much of anything, we need to make sure the required schema elements are in place. NOTE: I would estimate that around a third of all questions I've received on ADAMSync came back to schema problems. It is critically important that the schema be configured properly. For ADAMSync...
  • Blog Post: I love when I find a helpful tool on download.microsoft.com....

    There are few tools I would say that I use *every* day. This is one of them. ERR.exe is a tool I use all the time to look up error codes. When someone gives me an error code, the first thing I do is toss it in err so I know what I'm looking at. For example: C:\tools>err 8402 # for decimal 8402 / hex...
  • Blog Post: On identity futures....

    Kim Cameron has been blogging up a storm on identity futures in MS products. It's always interesting to think in to the future. Most of my work focuses around today and today++, not nearly as much in to the distant future, but I'm glad someone is looking out there. :) InfoCard is a super interesting...
  • Blog Post: On ADAM user authentication….

    I just noticed that Doug Lawty has a blog, and that he recently posted on ADAM as well. I think Doug is spot on with some of his conclusions, I also feel the need to clarify the statements made along the way a bit. :) > Kerberos (Remember, ldap binds send your password in the clear.) First, the statement...
  • Blog Post: Blech, I was wrong about something I said

    Some time ago I posted on constructed attributes. There was a snafu in an item I posted (and by snafu I mean mistake). I said that constructed attributes are only returned in base searches. This is incorrect in the general case. This is true for some constructed attributes (like tokenGroups) but not...
  • Blog Post: Go from 32bit Windows to 64bit for no cost? Really?

    Today we put out this page which talks about upgrading to the x64 Windows. Here’s the best part: The Windows XP Professional x64 Edition Technology Advancement Program enables customers who have purchased Windows XP Professional (32-bit) to exchange it for Windows XP Professional x64 Edition. You...