Tuesday, June 24, 2003

.NET Zip Library Google Search It Bob Gay sent me a link to this zip utility written in C#.  The functionality on its own is cool and the fact that it is supported on the Compact Framework as well is especially impressive. 9:57:33 AM   []    comment []

Installing Active Directory on Windows 2003 Google Search It I was disappointed in Windows 2000 and again I am disappointed in Windows 2003 that the data storage for Active Directory goes in the C:WINDOWSNTDS and C:WINDOWSSYSVOL directories by default. Perhaps this doesn't matter since one can't back up these files by copying them anyway but I really wish Microsoft would make a standard that all data files go in one root hierarchy.  Oh well, this is another time to use Junction to map the files to multiple places I guess.  One observation is that the Active Directory wizard installs and configures DNS for you which is nice given that it is required.  Also, this is the first time that I have encountered a change in install options for Windows 2003 to require a restart.  I don't believe the required restart is unreasonable, however, as installing Active Directory is a pretty major change to the server role. 7:21:37 AM   []    comment []

MSN Messenger 6.0 Preview Google Search It A couple days ago I installed MSN Messenger 6.0 preview.  It seems to provide some additional capabilities for video and voice conferencing but since I don't have a webcam I really can't say anything about whether these features are any good or not.  Two features that I did like, however, were 1) The addition of an optional logging capability.  This allowed me to log all conversations to a file. and 2) the fact that even if your router doesn't support Universal Plug 'n Play NAT (UPnP NAT) you can still send and receive files.  I tried this with earlier versions of MSN/Microsoft Messenger and couldn't get file transfer to work through my router.  MSN Messenger 6.0 works, however.  Next I need to try a voice chat with my folks in Chile or Australia or wherever in the world the happen to be at the moment. 1:46:52 AM   []    comment []

Jakob Nielsen - Some Web Usability Guru I Never Heard of Before Google Search It I don't claim to follow the usability space too much, especially not the web usability space, but this site seemed to have some interesting tidbits.  Jakob keeps a weblog which you can subscribe to as well if you are interested in that type of thing. 1:02:48 AM   []    comment []

Windows Mobile 2003 for Pocket PC (previously known as Pocket PC 2003) Released Google Search It Today Microsoft Pocket PC 2003, which was officially named Windows Mobile 2003 for Pocket PC, was released.  A list of key enhancements can be found here. Information about how to upgrade your existing Pocket PC 2002 version is available here and for those of you with the iPaq device check out Microsoft Pocket PC 2003 upgrade for iPaq.  Unfortunately, only the H5450 and H3900 series appear to be upgradeable.  Stink! An interesting note is that this is the second OS (Windows Server 2003 being the first) to include the .NET Framework out of the box.  In the Pocket PC case this is known as the .NET Compact Framework. 12:59:07 AM   []    comment []

Configuring Remote Access VPN Server on Windows 2003 Google Search It After installing Windows 2003 today I began to make an attempt to get Remote Access Server working.  The goal was to create a VPN server that I could dial in to. The first step was to install it. This was done via the Manage Your Server wizard via which I added the Remote Access/VPN Server Role.  One of the issues in doing this was that I had to select a custom configuration as the VPN configuration (which is what I really wanted) required me to have two NICs installed. Once this step was completed I went about configuring the policy.  Out of the box each user is assigned the Remote Access Permission "Control access through Remote Access Policy."  Simply changing this to allow access is by far the easiest way to go IMHO.  However, as usual I wanted to try things a little differently.  I wanted to create a group such that any members of that group would automagically be given access. To do this I first created a new group called Remote Access Users.  This is in addition to the Dial group that already exists but is invisible in the Computer Management Snap-in.  I next opened up the Routing and Remote Access MMC and added a new policy called Windows Group Matches Remote Access Users.  I created this using the New Policy Remote Access wizard and selected the "use wizard to set up a typical policy for common scenario" option.  I created a VPN only policy and then added the Remote Access Users group that I created using the Computer Management MMC.  I left the default authentication methods and encryption methods. At this point dialing in over VPN from the server machine to itself went all the way through the "Registering computer on network" dialog and then erred out with "Error 733, A connection to the remote computer could not be created.  You might need to adjust the protocols on your computer."  Unfortunately, I could not get past this error.  I am hoping it is due to the fact that I am dialing myself or dialing from a computer that is already on the local network but at the moment I am simply grasping at straws.  I tried the help and found the following instructions, "In Routing and Remote Access, double-click IP Routing, right-click DHCP Relay Agent, and click Properties. Type the IP address of the DHCP server for your network in Server address."  Unfortunately, this didn't fix the issue either and adding a Local Area Network as a DHCP Relay Agent didn't help either.  It turns out that my router was declining the request to provide another DHCP assigned address.  To circumvent this problem I created a static IP address pool on the IP tab of my servers Properties dialog.  Now all seems to be working but I need to test by actually dialing in remotely and verifying that traffic is indeed routed to other computers on the LAN.  To do this I have also opened up PPTP (Port 1723) on the firewall.  I read here something about GRE support as well but I am hoping that is automatic on my router. By the way, since I created a static pool of IP address, which the RAS server passed out when clients connected, I no longer needed the DHCP Relay Agent to be specified.  In addition, I was able to add the Local Area Network DHCP Relay Agent that I previously added manually. By the way, I explicitly denied access (RAS) for the Administrator user as I didn't want people trying to hack in with this known user name that I had not yet changed. In summary, this was not nearly as intuitive as I had expected it to be.  However, I believe one of the key issues was that fact that my router, a D-Link DI-713P, did not allow DHCP addresses to be relayed out.  This is perhaps configurable but I sure couldn't find such a setting within the router configuration screens. 12:50:25 AM   []    comment []

Configuring Remote Desktop for Administration in Windows 2003 Google Search It I struggled somewhat to figure out how to turn on remote desktop for administration in Windows 2003.  This was previously done in Windows 2000 server by installing Terminal Services in Administration mode (administration mode limits it to 2 simultaneous connections not including the console).  I spent a considerable time trying to do the same on Windows 2003 but even though the Terminal Services service was running and seemed appropriately configured, I still couldn't connect.  It turns out that what I needed to do was use the Windows XP method for allowing remote access.  This involves opening up the system properties (My Computer->Properties) and going to the remote tab.  From there you can check the Allow users to connect remotely to you computer check box.  That is really all there is too it and it behaves exactly as Windows XP does so users familiar with that paradigm will not have nearly as hard a time as I did. One other note about this service.  In Windows 2000 it was possible for one user to take up multiple sessions such that another user could not connect.  Windows 2003 prevents this through a configuration parameter in the Terminal Services Configuration MMC.  From there you can change the "Restrict each user to one session" setting to yes. I seem to recall that with Windows 2003 it is possible to connect to the console session but I couldn't seem to find a way do do this.  I tried using the Terminal Services Manager but the Remote Control menu item resulted in an error, "Can't remote control session (ID 0) because remote control is disabled on that session. (Error 0 - The operation completed successfully.)" which I thought to be a rather interesting error. 12:17:10 AM   []    comment []

© Copyright 2004 Mark Michaelis.