Posts Tagged Active Directory
Cont. Deploying Application Packages
Posted by Bloggylife in troubleshooting, windows on June 15, 2009
I’ll share some of the issues we faced along the way, we already deployed WSUS into our network that pushes Microsoft updates according to your GPO settings on the domain level.
I came across another product, Microsoft System Center Essentials (link), which also includes WSUS technology but adds to that updates of third parties software, how cool is that 
If you have problems installing the management software from a media, go to Microsoft website and download it from there along with SP1 (link). That solved the first problem I faced.
Upon the configuration, it’ll ask you if you want to automatically create a domain policy, you’ll need administrative privileges and then go ahead search for computers and add manually or in a bulk.
One advice, when choosing the server, take care it has enough hard disk space, for all the software updates and deployment packages it needs to store.
Pushing agents to computers, is through the management console, where you select a computer and provide administrator credentials. You can create package from .exe or .msi files.
You can group computers and approve package installation. For msi packages you can provide installation properties, The executable program that interprets packages and installs products is Msiexec.exe. To see the list of parameters, run this on a command prompt window Msiexec, the below should appear.
On a single domain, you can have only one Microsoft System Center, it’ll give you an error if you try to install another System Center on a network already managed by one.
You can force end computers to communicate with the system center to check for updates or software that needs to be downloaded through running this command on end machines.
wuauclt.exe /detectnow
If indeed there is something to be downloaded, the yellow shield will appear next to the time and date, machines may face problems downloading, check this out:
- Windows update service is running
- All antivirus applications are up to date, because if they are not, they will block such activities. Check if windows defender is installed, that was one of the problems that caused download to fail
After the download is complete and according to your global setting the installation should start, to check the time of installation, check your local windows update settings, which can be access through the control panel or on the domain level settings.
This product offers so much more, details about the machines it managing through their agents, it triggers alerts, and generates reports.
But for now, I was really glad to be able to push third party packages silently to end machines and check the status as successful
References:
LDP: Active Directory Manangement Tool
Posted by Bloggylife in windows on April 29, 2009
This is one amazing tool! So I’ve been dealing with Microsoft Infrastructure for about 1.5 years now and kind of figuring out my way as I go along ;P
If you deploy LDAP directory such as Microsoft Active Directory, this GUI tool helps you navigate through your AD configuration and display details, which is quite helpful!
Especially if you need to run AD information against any programmed application/forms.
Have you ever used Microsoft Infopath to create forms and created a data connection to your AD? When inserting fields and controls, you can include AD object attributes to be fetched or compared. Which is automatically retrieved and you just have to select your choice but what if you want to configure non-Microsoft product or an in-house developed application that integrates with your LDAP directory.
If the management tool is installed on your Domain Controller that runs your AD services, go to Start -> Run -> LDP
One more thing, you can only run this shortcut, if the path where LDP.exe is stored is included in the PATH environment variable, to check you can go to:
Right click My Computer -> Properties -> Advanced tab -> Environment Variables -> In the System Variables scroll down to Path and include the path where ldp.exe is installed (ex. C:\Program Files\Support Tools) if it’s not there.
After running the tool, Connect to your server running AD and then bind using user with enough administrative privileges.
To view the detailed tree of your AD, go to View -> Tree and fill out your BaseDN and click OK. All the details will be displayed on the left pane, click on any result and it’s details and attributes will be displayed on the right pane.
from the details, you can get the object’s attributes, see below image
There is ALOT more you can do with this tool, this is just to get you going
Check Out More: link
Recent Comments