Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Group policy help needed!!!

from [Naranjo Mateos, Alfonso Pascual] Network Security [Permanent Link]
Subject: RE: Group policy help needed!!!
Date: Wed, 15 Dec 2004 11:06:48 +0100 
        Is there any firewall between servers and dc´s? What the event viewer 
says? Are they all the ports opened between (you can check meanwhile you 
execute the secedit command with a "netstat -a 2" to check if any port is 
blocked or SYN_SENT)?
        gl

-----Original Message-----
From: Ken Hoover [mailto:ken.hoover@yale.edu] 
Sent: martes, 14 de diciembre de 2004 21:39
To: Peter Rodger
Cc: focus-ms@securityfocus.com
Subject: Re: Group policy help needed!!!


   Make sure that the clients can successfully ping a domain controller because 
the clients will do this as a test to verify connectivity before attempting to 
update group policy.  If the ping fails for any reason (even though other 
traffic flows freely) then group policy will not be updated on the client.

   We discovered this after we tried blocking ICMP ping last year.

                                                - Ken Hoover


Peter Rodger wrote:

Hi, all

I pushed out audit policy and event log policy through group policy to 
all our servers (70). All server in the Servers OU.
None of them got policy.  I ran secedit many times.

Can anyone point me why and the right direction?

We are in windows 2K and XP environment.

Thanks,

Peter



--
Kenneth J. Hoover
Systems Programmer
Yale University ITS AM&T x2-1260


---------------------------------------------------------------------------
---------------------------------------------------------------------------


---------------------------------------------------------------------------
---------------------------------------------------------------------------
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: services running in windows domain (winXP clients), Burak Bayoglu
Next by Date:  SecurityFocus Microsoft Newsletter #219, Marc Fossi
Previous by Thread:  RE: Group policy help needed!!!, Wim_Remes
Next by Thread:  Secondary Storage Device Policy, Tim Watkins
Indexes:  [Date] [Thread] [Top] [All Lists]