Recently I had to release email after work hours and I wondered if outlook have that option and I was verry happy to find it.

To schedule automatic email send follow the steps.

• After you finished writing your  email, don’t click Send (yet).
• In Outlook 2007:
  • Click Options
  • Then click on Delay Delivery and schedule when to send the message
    

Just fill when you want to send the message as seen on the image bellow

_______________________________________________________________________________________

In other versions of Outlook: Click Options on the toolbar to display the Message Options screen.

Under Delivery Options, tick "Do not deliver before" and fill in the relevant date and time. Click Close.

Now click Send!

Your email will be moved to the Outbox but will not be sent out until the first time (after your set time) that Outlook does a Send & Receive.

• Leave a comment... (3)

The script bellow allows you to locate users with invalid logon attempts

$strFilter = “(&(objectCategory=User)(badPwdCount>=0))”

$objDomain = New-Object System.DirectoryServices.DirectoryEntry

$objSearcher = New-Object System.DirectoryServices.DirectorySearcher
$objSearcher.SearchRoot = $objDomain
$objSearcher.PageSize = 1000
$objSearcher.Filter = $strFilter

$colProplist = “name”
foreach ($i in $colPropList){$objSearcher.PropertiesToLoad.Add($i)}

$colResults = $objSearcher.FindAll()

foreach ($objResult in $colResults)
{$objItem = $objResult.Properties; $objItem.name}

• Leave a comment... (1)

In windows 2003 and later you can use AD saved queries , but for windows 2000 domain the only way is by using CSVDE/LDIFDE
The following command should do the work :You will receive file output

csvde -f outputfilename.csv -d “dc=domain,dc=com” -r “(&(mailnickname=*)(proxyAddresses=smtp:email@yourdomain.com))” -l name

Change  “dc=domain,dc=com” to  your AD domain name and suffix, and email@yourdomain.com with the email address you’re looking for.

To find all recipients who have an email address from a particular SMTP domain, you can use a wild card (*), see example bellow:

csvde -f  filename.csv -d “dc=domain,dc=com” -r “(&(mailnickname=*)(proxyAddresses=smtp:*@yourdomain.com))” -l name

• Leave a comment... (0)

• Password Aging

• User Privileges

• System Privileges

• Remote Access

• Consolidated Change Logs

• NTFS Permissions

• Role Permissions & Membership

• User Access

• Auditing Enabled

• Leave a comment... (0)

You may receive “HTTP Error 503: Service Unavailable” error when you are using Black Berry browser.

If your BlackBerry Mobile Data System (BlackBerry MDS) service is not enabled on your BlackBerry Enterprise Server or for your BlackBerry device user account.

Resolution 1

Enable MDS Service on you BES Server by completing the following steps:

1. Go to Server Configuration tab.
2. Expand Service Control & Customization.
3. Click BlackBerry MDS Connection Service.

Enable the BlackBerry Mobile Data System for the BlackBerry device user account by complete the following steps:

1. Click the User Configuration tab.
2. Select the BlackBerry device user account.
3. Expand Service Access and clickEnable Connection and Collaboration Services.

Resolution 2

1. On your BB device ,go to Options
2. Click Advanced Options.
3. Click Browser and select Internet Browser on first tow options (Default browser configuration and Default MDS browser configuration).
4. Display the menu and select Close.

• Leave a comment... (0)

ESX Stop Firewall and IpTables

chkconfig firewall off > /dev/null 2>&1
chkconfig iptables off > /dev/null 2>&1
chkconfig –level 3 portmap on > /dev/null 2>&1
chkconfig –level 3 netfs on > /dev/null 2>&1
chkconfig –level 3 vmware on > /dev/null 2>&1
chkconfig –level 3 vmware-late on > /dev/null 2>&1
chkconfig –level 3 mgmt-vmware on > /dev/null 2>&1

service firewall restart > /dev/null 2>&1
service iptables restart > /dev/null 2>&1
service portmap start > /dev/null 2>&1
service netfs restart > /dev/null 2>&1

ESX Set DHCP

# set DHCP
echo DEVICE=$VSWIF > $CONF
echo MACADDR=$VM_MAC >> $CONF
echo PORTGROUP=$PG >> $CONF
echo BOOTPROTO=dhcp >> $CONF
echo ONBOOT=yes >> $CONF
echo NETMASK=255.255.0.0 >> $CONF
/etc/init.d/network restart > /dev/null 2>&1
if [ $? -ne 0 ] ; then
echo “-E- network restart failed”
else
echo “-I- network restart refreshed with DHCP configuration”
fi

ESX Set Host name and Domain

# set hostname
#HOSTNAME=`hostname`
#if ! ( grep $HOSTNAME /etc/hosts  > /dev/null 2>&1 ); then
#    echo $IP $HOSTNAME > /etc/hosts
#        echo “-I- hostname set ($HOSTNAME)”
#fi
echo “NETWORKING=yes”> /etc/sysconfig/network
echo “DHCP_HOSTNAME=yes” >> /etc/sysconfig/network
echo “NISDOMAIN=your domain” >> /etc/sysconfig/network
echo “GATEWAYDEV=” >> /etc/sysconfig/network

Enable SSH access to ESX host via script

if ! ( grep “PermitRootLogin yes” /etc/ssh/sshd_config > /dev/null 2>&1 ); then
sed -e ’s,PermitRootLogin no,PermitRootLogin yes,g’ \
/etc/ssh/sshd_config > /tmp/sshd_config && sync
\cp -f /tmp/sshd_config /etc/ssh/sshd_config
echo “-I- SSH Root Login enabled”
else
echo “-I- SSH Root Login already enabled”
fi

• Leave a comment... (0)

What is email reconciliation?

Email reconciliation is used to configure email deletion handling option of email accounts that are set in BB device.
For each mail account you can state whether you want the e-mail deleted on the handheld or the mailbox and handheld;
You can set the device the following ways:
Enable or disable wireless reconciliation and configure how conflicts are handled.

In order to set reconciling options on Black Berry Device go to:

Messages –> then select “Options”–> “Email Reconciliation”

Reconciliation options are:

Delete on: “Mailbox & handheld” – Means: When you delete message on Device or outlook message will be deleted.
Delete on: “Handled” – Means: When you delete message on Device, message won’t be deleted from mailbox.
Recommended settings setup:

1. From your home screen, go into your Messages folder.
2. Once in your messages, folder, bring up your menu
3. Scroll down to and choose “Options”.
4. Scroll down to and select “Email Reconciliation”.
5. In the “Email Reconciliation” menu, make sure “Delete On” is set to “Mailbox & Handheld”.
6. Confirm that Wireless Reconcile is set to “On”
7. Confirm that “On Conflicts” your “Mailbox Wins”
8. Save your changes.
9. Exit back out to your messages folder, and once again bring up the menu.
10. Scroll down to “Reconcile Now” to force reconciliation between your handheld and In-Box.
11. Your messages should now synchronize between your BlackBerry and In-Box.
Some general guidelines for Reconciliation

Most people thing that message deleted on outlook should disappear from BB device immediately and start panic. So don’t , be more patient . it takes approximately 20 minutes till messages are deleted from Handheld

1. If you delete an email from Outlook you need to leave it in the recycle bin otherwise the BES will lose track of the email and it won’t be deleted from the device. Don’t use (Shift+Delete)
2.If you Outlook account is set up to transfer new emails to PST . They will never get to your BB device.
3. Remember! The deletes from Exchange to BlackBerry is not immediate. BES reconcile uses the 20/100 rule. That’s every 20 minutes or 100 changes whichever comes first. Alternatively, you can use the Reconsile Now function. Outlook in cached mode only does send and receive every 5 minutes (this also updates read, deleted & moved items), then the device will only do reconciliations every 15 minutes. To speed this process up just hit “Send & Receive” and then “Reconcile Now” on the device.

Testing:
Outlook to  BB takes up to 20 min. I find it useful to do this test:
Delete – BB
Delete – Outlook

Wait for them to deliver to both mailbox and BB.
Now delete – BB on Blackberry and watch outlook, it should take a min or two. And move to deleted in Outlook
If that works… It’s working as it should and you’re dealing with a user workflow issue. I find it helpful to turn off Empty delete folder on exit.

• Leave a comment... (9)

In order to configure and use server query do the following.
Go to Active Directory Users and Computers:

1. Right click the Saved Queries folder and select New, Query.
2. Enter an appropriate Name and Description.
3. Make sure the query root is set to the domain level you want the query to pertain to.
4. Select the Include subcontainers check box if you want the query to search all subcontainers.
5. Click Define Query.
6. In the Find dialog box, click the Find drop-down arrow and select Custom Search.
7. On the Advanced tab, enter your LDAP query string into the Enter LDAP query box.
8. Click OK twice.
9. Active Directory Saved Queries Templates

Find Groups that contains the word admin
(objectcategory=group)(samaccountname=*admin*)

Find users who have admin in description field
(objectcategory=person)(description=*admin*)

Find all Universal Groups
(groupType:1.2.840.113556.1.4.803:=8)

Empty Groups with No Members
(objectCategory=group)(!member=*)
Finds all groups defined as a Global Group, a Domain Local Group, or a Universal Group
(groupType:1.2.840.113556.1.4.804:=14)

Find all User with the name Bob
(objectcategory=person)(samaccountname=*Bob*)

Find user accounts with passwords set to never expire
(objectCategory=person)(objectClass=user)(userAccountControl:1.2.840.113556.1.4.803:=65536)

Find all users that never log in to domain
(&(&(objectCategory=person)(objectClass=user))(|(lastLogon=0)(!(lastLogon=*))))

Find user accounts with no log on script
(objectcategory=person)(!scriptPath=*)

Find user accounts with no profile path
(objectcategory=person)(!profilepath=*)

Finds non disabled accounts that must change their password at next logon
(objectCategory=person)(objectClass=user)(pwdLastSet=0)(!useraccountcontrol:1.2.840.113556.1.4.803:=2)

Finds all disabled accounts in active directory
(objectCategory=person)(objectClass=user)(!useraccountcontrol:1.2.840.113556.1.4.803:=2)

Finds all locked out accounts
(objectCategory=person)(objectClass=user)(useraccountcontrol:1.2.840.113556.1.4.803:=16)

Finds Domain Local Groups
(groupType:1.2.840.113556.1.4.803:=4)

Finds all Users with Email Address set
(objectcategory=person)(mail=*)

Finds all Users with no Email Address
(objectcategory=person)(!mail=*)

Find all Users, Groups or Contacts where Company or Description is Contractors
(|(objectcategory=user)(objectcategory=group)(objectcategory=contact))(|(description=North*)(company=Contractors*))

Find all Users with Mobile numbers 712 or 155
(objectcategory=user)(|(mobile=712*)(mobile=155*))

Find all Users with Dial-In permissions
(objectCategory=user)(msNPAllowDialin=TRUE)

Find All printers with Color printing capability
Note: server name must be changed
(&(&(&(uncName=*Servername*)(objectCategory=printQueue)(printColor=TRUE))))

Find Users Mailboxes Overriding Exchange Size Limit Policies
(&(&(&objectCategory=user)(mDBUseDefaults=FALSE)))

Find all Users that need to change password on next login.
(&(objectCategory=user)(pwdLastSet=0))

Find all Users that are almost Locked-Out
Notice the “>=” that means “Greater than or equal to”.
(objectCategory=user)(badPwdCount>=2)

Find all Computers that do not have a Description
(objectCategory=computer)(!description=*)

Find all users with Hidden Mailboxes
(&(objectCategory=person)(objectClass=user)(msExchHideFromAddressLists=TRUE))

Find all Windows 2000 SP4 computers
(&(&(&(objectCategory=Computer)(operatingSystem=Windows 2000 Professional)(operatingSystemServicePack=Service Pack 4))))

Find all Windows XP SP2 computers
(&(&(&(&(&(&(&(objectCategory=Computer)(operatingSystem=Windows XP Professional)(operatingSystemServicePack=Service Pack 2))))))))

Find all Windows XP SP3 computers
(&(&(&(&(&(&(&(objectCategory=Computer)(operatingSystem=Windows XP Professional)(operatingSystemServicePack=Service Pack 3))))))))

Find all Vista SP1 computers
(&(&(&(&(sAMAccountType=805306369)(objectCategory=computer)(operatingSystem=Windows Vista*)(operatingSystemServicePack=Service Pack 1)))))

Find All Workstations
(sAMAccountType=805306369)

Find all 2003 Servers Non-DCs
(&(&(&(samAccountType=805306369)(!(primaryGroupId=516)))(objectCategory=computer)(operatingSystem=Windows Server 2003*)))

Find all 2003 Servers – DCs
(&(&(&(samAccountType=805306369)(primaryGroupID=516)(objectCategory=computer)(operatingSystem=Windows Server 2003*))))

Find all Server 2008
(&(&(&(&(samAccountType=805306369)(!(primaryGroupId=516)))(objectCategory=computer)(operatingSystem=Windows Server 2008*))))

Related Blogs

• Related Blogs on Active Directory
• History of Active Directory
• Whitepaper: VMware and VSS: Application Backup and Recovery

• Leave a comment... (6)

Risk Level : Very High ( Dangerous )

Symptoms

Pop up balloon warning messages claiming that your PC is infected.

* “Critical System Error”,
* “Your computer is infected”,

Search and kill the following processes

* antivirus.v.1.0.0, WinSpywareProtect.EXE, WinSpywareProtectSetup.exe

Remove Scan.Winspywareprotectscan.com files & dlls files

* antivirus.v.1.0.0,
* WinSpywareProtect.EXE,
* WinSpywareProtectSetup.exe

Remove/Modify corrupt Registry Entries

HKEY_LOCAL_MACHINE\SOFTWARE\WinSpywareProtect
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\
Uninstall\WinSpywareProtect
HKEY_ALL_USERS\Software\Adsl Software Limited
HKEY_CLASSES_ROOT\TacOnlyOne

Use Shield Deluxe 2008 – Antivirus & Anti-Spyware to scan yor computer for other threats

• Leave a comment... (0)

1. Run Active Directory Users and Computers.
2. Right-click the container holding the users (or the domain name if you want to delegate all) and hit Delegate Control.
3. Welcome Screen – hit Next.
4. Users or Groups screen – click Add and select the person or group to delegate this control to. Click Next.
5. Tasks to Delegate screen – select “Create a custom task to delegate”. Click Next.
6. Active Directory Object Type screen – Select “Only the following objects in the folder:”. Check “User objects”. Click Next.
7. Permissions screen – uncheck “General” and check “Property-specific”. Check the boxes corresponding to the specific fields you would like the user or group to be able to edit. Click Next.
8. Completing screen – click Finish.

It Also can be done by script.
Just change marked with RED Fields

Const ADS_ACETYPE_ACCESS_ALLOWED_OBJECT = &H5
Const ADS_RIGHT_DS_READ_PROP = &H10
Const ADS_RIGHT_DS_WRITE_PROP = &H20
Const ADS_FLAG_OBJECT_TYPE_PRESENT = &H1
Const ADS_FLAG_INHERITED_OBJECT_TYPE_PRESENT = &H2
Const ADS_ACEFLAG_INHERIT_ACE = &H2

Set objSdUtil = GetObject(“LDAP://OU=OU Name,DC=exaple,DC=Com”)
Set objSD = objSdUtil.Get(“ntSecurityDescriptor”)
Set objDACL = objSD.DiscretionaryACL

Set objAce = CreateObject(“AccessControlEntry”)

objAce.Trustee = “DomainName.com\Example_secretary”
objAce.AceFlags = ADS_ACEFLAG_INHERIT_ACE
objAce.AceType = ADS_ACETYPE_ACCESS_ALLOWED_OBJECT
objAce.Flags = ADS_FLAG_OBJECT_TYPE_PRESENT OR ADS_FLAG_INHERITED_OBJECT_TYPE_PRESENT
objAce.ObjectType = “{77b5b886-944a-11d1-aebd-0000f80367c1}”
objACE.InheritedObjectType = “{BF967ABA-0DE6-11D0-A285-00AA003049E2}”
objAce.AccessMask = ADS_RIGHT_DS_READ_PROP OR ADS_RIGHT_DS_WRITE_PROP
objDacl.AddAce objAce

objSD.DiscretionaryAcl = objDacl

objSDUtil.Put “ntSecurityDescriptor”, Array(objSD)
objSDUtil.SetInfo

• Leave a comment... (0)