ICTCity

Hi, there's no way to start a VPN connection automatically. I had the same problem and I can remember that at the end, I moved on a SSH VPN with OpenVPN. Here's what you can do (you already done it) but it explain how to prevent the "no connection". http://htipe.wordpress.com/2010/02/11/connect-to-vpn-before-logging-in-to-windows/ I can remember somebody told me you can add a button on login screen to connect via VPN, but actually I never seen any picture that can prove that. Take a look here: http://social.technet.microsoft.com/Forums/en/w7itpronetworking/thread/13d80451-dbe7-47c2-9437-e0efa16c74bd but nobody answer to the question: "HOW can you do that".

Hi, Open the TASK SCHEDULER. Click CREATE TASK, on the TRIGGER tab select ADD and then: Begin the task: ON A SCHEDULE Settings: DAILY Recur Every: 1 day Advanced Settings: Repeat task every: 2 minutes (Pay attention, you HAVE TO WRITE 2 minutes, from drop down list, there's not this chance) for a duration of: Indefinitely Now you're done :) let me know!

Ok, now everything is clear :) Basically Remote Desktop is permitted to Admin's only, so you have nothing to do. To block user from logging in do the following: (on the server you want to block access): start > run > gpedit.msc Computer > Windows > Security > Local > User Right Assignment Select the policy "ALLOW LOG ON LOCALLY". From there, you can remove what you don't need. You can do the same thing by ADDING the group / user you don't want, on the policy "DENY LOG ON LOCALLY". ATTENTION: do not change the policy "ACCESS THIS COMPUTER FROM THE NETWORK", this will prevent any connection to the server (domain, profiles and so on). question: why your users are able to login physically? When you install a server, only admins, server op, and other "service account" are enabled...

Before checking port forwarding, type on your windows server's command prompt: netstat -an |find /i "listening" Check if there's something which ends with ":110". If not, tell me what program are you using as mailserver.

I can RDP via VPN with no problem from XP and 7 clients, I'm using a CISCO VPN connection. Can you provide more details on your problem?

I think you have enabled the TERMINAL SERVER role, which requires ANOTHER server that have installed the TERMINAL SERVER LICENSE (just this is ok). Once you have a TERMINAL SERVER license server up & running (this role can be installed on DC, print server or whatever), open the server which gives you that error and select TERMINAL SERVER CONFIGURATION (under admin tool), right click the TS and specify the server for licenses. You don't need to install any license, windows will just check if there's a license server (yeah, this is funny). Let me know.

Login, right click on the start bar > task manager > select USER tab and check who's online.

It's the role RRAS.

Hi, You must open the right ports used by CamFrog, also make sure to enable the application (.exe file). Stop the camfrog service, do the configuration on your firewall and then restart camfrog. Regarding the "freezing", it looks like the bottleneck is your CPU or RAM which is used too much creating LAG. Anyway, from my POV, you should ask to CamFrog forum / help desk, because this looks like an application related problem...

The only thing I can tell you is to create a user (printUser) with privilege of install printer. From control panel, under printer, hold down the CTRL key and right click on a blank space, then select add new printer. Windows will ask you username and password. User must use the "printer" user in order to install it. Otherwise you may search a 3rd part software if exists.

client. Let me know if the problem can be reproduced on others machines.

Which client are you using? Try to open the "options" tab when you start RDP client and check everything related to performances. Go to this page: http://support.microsoft.com/kb/969084 at the end you can find 3 links to download the latest version of RDP (7), if you are running Windows 7, download the package for VISTA, reinstall if needed.

Sorry but I still don't understand... You said: "how to DISABLE login to Windows Server" then: "User login to every WS but not to DC" So you want to PERMIT user to login to DC or BLOCK user from login the the other stations? When you say "LOGIN", you want to permit / block login from local pc (physical access), remote desktop or what else?

If you deploy printers with Group Policy you can do this.

Welcome! Good luck for your next exam!

Welcome! Enjoy your stay!

Hi, 1) Because of the word "LINK". Everytime you link something to the domain / SITE (actually you can see the AD as a folder tree), and your SITE is the ROOT, the beginning of your directory. Now, by default, everything linked to the domain will be propagated to the "children" (OU, groups, ...). To avoid this, you can block certain OU, Policies or any other object from propagating to the children, right click on a object and you can see a check mark which says "Link...". 2) This is a good question, I don't use NESTING OU because of I think they can start to be complexed while troubleshooting problems. The PARENT object is processed first, then the child / children. Now, let's make an example: you have the accouting which is made of 5 people with only one boss. You can create an OU called ACCOUNTING with the boss inside this one, then add a nested OU called ACCOUNTING_EMPLOYE. Here you can put all the 5 people which work for accounting group. On the first OU you can set a policy which allow to change the wallpaper, and on the second OU not. Nesting OUs are good things when you want to write a script (VBS) which check permissions or set permissions, you can say that if the current user is on a nested OU, he doesn't have permission to do whatever. I hope this can help you. Let me know! Take a look here: http://technet.microsoft.com/en-us/library/cc739343(WS.10).aspx

Hi, just for testing purpose, set this policy via LOCAL GROUP POLICY on a single machine, restart and retry. Let me know

Hi, when you login on your server (let's call it SERVER1), you must specify a username and password (not via TS, locally). If you haven't change anything, your username is Administrator. I think you have a password (set up during installation). Now from terminal click switch user and type: Server1\administrator and then the password (if present). Of course, replace server1 with the name of your server.

Although this should be from the app, you can change the primary interface, I don't remember how, it should be under "network and sharing" then press alt to access the "hidden menu", you can find this in Google. If you prefer, redirect the service: http://www.rickwargo.com/2011/01/08/port-forwarding-port-mapping-on-windows-server-2008-r2/

On your print server, you can set permission for each user. There you can find "manage print job, print, and so on". Simply right click on a printer on your print server and then select properties.

I can forward traffic with windows firewall, and I'm not using NAT role... Try the following command: netsh routing ip nat add portmapping tcp 0.0.0.0 to retrieve the NIC name type: show interface let me know. Are you sure that your router is forwarding the traffic properly?

Actually you can do it but at your own risk. You can login with the new domain account and then logout. Once done, copy the local profile to the new domain profile (overwrite).

What does "Direct login" mean?

Remember that when a connection is made, the SERVICE runs on the same port (in your case it should be 8016), but the CLIENT, use a random port and you cannot predict which port will be used. In other words, you should write a rule which says: allow ANY or SPECIFIC IP from ANY port to connect to SPECIFIC IP and SPECIFIC PORT. Take a look here: http://lantoolbox.com/articles/configure-windows-firewall-using-command-line/