bobbyajr
asked on
Windows 2000 License being used up by deleted users!
Running a Windows 2000 domain, Active Directory.
I have 50 per-seat licenses and 48 users.
As users have left the company, they are deleted off of AD.
I keep getting licensing warnings in Event Viewer on my license server that we are over the limit on our Windows licensing.
I go into license manager/Properties of server and there are users in there that have been gone for 2+ years. I revoke the licenses.
I then go into Clients (Per Seat) and delete the users there. In a couple of days, they are all back and I am over my license limit again.
I only have 1 license server in my domain.
Any ideas??????
I have 50 per-seat licenses and 48 users.
As users have left the company, they are deleted off of AD.
I keep getting licensing warnings in Event Viewer on my license server that we are over the limit on our Windows licensing.
I go into license manager/Properties of server and there are users in there that have been gone for 2+ years. I revoke the licenses.
I then go into Clients (Per Seat) and delete the users there. In a couple of days, they are all back and I am over my license limit again.
I only have 1 license server in my domain.
Any ideas??????
From Microsoft Security Bulletin MS05-010
"Vulnerability in the License Logging Service Could Allow Code Execution"
http://www.microsoft.com/technet/security/Bulletin/MS05-010.mspx
"Disabling the License Logging service helps prevent the possibility of a remote attack. Customers that have disabled this service would be at a reduced risk to attack from this vulnerability. See the “Workarounds” section for instructions that describe how to disable this service. By default, affected operating systems other than Windows Server 2003 have the License Logging service startup type set to Automatic instead of Disabled.
Chapter 6 of Microsoft Solution for Securing Windows 2000 Server, Hardening the Base Windows 2000 Server recommends disabling the License Logging service. Environments that comply with these guidelines could be at a reduced risk from this vulnerability."
"Vulnerability in the License Logging Service Could Allow Code Execution"
http://www.microsoft.com/technet/security/Bulletin/MS05-010.mspx
"Disabling the License Logging service helps prevent the possibility of a remote attack. Customers that have disabled this service would be at a reduced risk to attack from this vulnerability. See the “Workarounds” section for instructions that describe how to disable this service. By default, affected operating systems other than Windows Server 2003 have the License Logging service startup type set to Automatic instead of Disabled.
Chapter 6 of Microsoft Solution for Securing Windows 2000 Server, Hardening the Base Windows 2000 Server recommends disabling the License Logging service. Environments that comply with these guidelines could be at a reduced risk from this vulnerability."
ASKER
Will turning off License Logging also stop the problems that users have accessing network resources when we 'surpass' our license limit?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Of course.
I'll disable the service and monitor for 24 hours.
If it works, I'll award the points.
Thanks,
BA
I'll disable the service and monitor for 24 hours.
If it works, I'll award the points.
Thanks,
BA
ASKER
So far, so good.
Thanks for the help!
BA
Thanks for the help!
BA
See http://support.microsoft.com/kb/316631