Windows NT FAQ

This FAQ is copyright © 1998 John Savill (SavillTech Ltd) and should not be reproduced, distributed or altered without my permission, however feel free to save it locally and/or print it. http://www.savilltech.com

Download a single file version of the FAQ from http://www.savilltech.com/download/faqcomp.zip. This download version is free of charge and is updated simultaneously with this site.

You can join the NT FAQ mailing list by sending a mail to nt-faq@ed-com.com with subscribe in the body of the message. You will receive an updated version of the FAQ at least once a week.

Contents

• Core
• Registry
• Service Packs and Hotfixes
• NT 5.0
• File Systems
• Distributed File System
• Network
• RAS
• TCP/IP
• DHCP
• DNS
• WINS
• Exchange/Windows Messaging
• Internet Information Server
• Internet Explorer 4.0
• Installation
• License
• Windows 95 as a client
• NetWare
• Macintosh
• RAID
• Performance and System Information
• MultiMedia
• User Configuration
• System Configuration
• System Policy
• Security
• Backup's
• Recovery
• Problem Solving
• Support
• Training
• Utilities
• Compatibility
• Hardware
• Batch Files
• Various

Core

• What are the differences between NT Workstation and NT Server?
• What does NT stand for?
• What is the NT Boot Process?
• When I boot up NT, it pauses for about 30 seconds on the blue screen.
• What is Virtual Memory?
• What is the history of NT?
• How do I install the SYMBOL files?
• What is Windows NT?

Registry

• What is the Registry?
• What files make up the registry, and where are they?
• How do I restrict access to the registry editor?
• What is the maximum registry size?
• Should I use REGEDIT.EXE or REGEDT32.EXE?
• How do I restrict access to a remote registry?
• How can I tell what changes are made to the registry?
• How can I delete a registry value/key from the command line?
• How can I audit changes to the registry?

Service Packs and Hotfixes

• Service Packs and Hot fixes
• What are the Q numbers and how do I look them up?
• How do I install the Service Packs?
• How do I install the Hot fix?
• How do I remove a Hot fix?
• How do I install Service Pack 3?
• Emergency Repair Disk issues after installation of Service Pack 3.
• How do I remove the Java Hotfix for Service Pack 3?
• How do I install multiple Hotfixes at the same time?
• How do I install Hotfixes the same time as I install Service Pack 3 onwards?
• I have installed Service Pack 3, now I cannot run Java programs.
• I have installed Service Pack 3, however the Policy Editor has not been updated as specified in the documentation.
• How can I tell if I have the 128 bit version of Service Pack 3 installed?
• How do I install a service pack during a unattended installation?

NT 5.0

• What is new in NT 5.0?
• Where can I get more information on Windows NT 5.0?

File Systems

• How can a FAT partition be converted to an NTFS partition?
• How can a NTFS partition be converted to a FAT partition?
• How do I run HPFS under NT 4.0?
• How do I compress a directory?
• How do I uncompress a directory?
• Is there an NTFS defragmentation tool available?
• Can I undelete a file in NT?
• Does NT support FAT32?
• Can you read a NTFS partition from DOS?
• How do you delete a NTFS partition?
• Is it possible to repartition a disk without losing data?
• What is the biggest disk NT can use?
• Can I disable 8.3 name creation on a NTFS?
• How can I stop NT from generating LFN's (Long File Names) on a FAT partition?
• I can't create any files on the root of a FAT partition.
• How do LFN's work?
• How do I change access permissions on a directory?
• How can I change access permissions from the command line?
• I have a CHKDSK scheduled to start next reboot, but I want to stop it.
• My NTFS drive is corrupt, how do I recover?
• How can I delete a file without it going to the recycle bin?
• How can I change the serial number of a disk?
• How can I backup the Master Boot Record?
• How do I restore the Master Boot Record?
• What CD-ROM file systems can NT read?
• How do I disable 8.3 name creation on VFAT?
• How do I create a Volume Set?
• How do I extend a Volume Set?
• How do I delete a Volume Set?
• What is the maximum number of characters a file can be?
• How can I stop chkdsk at boot time from checking volume x?
• How can I compress files/directories from the command line?
• What protections can be set on files/directories on a NTFS partition?
• How can I take ownership of files?
• How can I view the permissions a user has on a file from the command line?
• How can I tell the total amount of space used by a folder (including sub folders)?
• There are files beginning with $ at the root of my NTFS drive, can I delete them?
• What file system do Iomega ZIP disks use?
• What cluster size does a FAT/NTFS partition use?

Distributed File System

• What is Distributed File System?
• Where can I get Dfs?
• How do I install Dfs?
• How do I create a new folder as part of the Dfs?
• How do I uninstall Dfs?

Network

• How do I enable AutoLogon?
• How do I disable AutoLogon?
• How do I add a warning Logon message?
• How do I change Domain Names?
• How do I move a Workstation to another Domain?
• How do I assign User Rights for a standalone server (not the PDC/BDC) in a domain?
• I can't FTP to my server, although the FTP service is running?
• How do I validate my NT Logon against a UNIX account?
• Can I synchronize the time of a NT Workstation with a NT Server?
• How can I send a message to all users?
• How do I change a Workstations Name?
• How do I automatically logoff clients after n minutes of inactivity?
• How do I create a queue to a Network Printer?
• How many user accounts can I have in one Domain?
• How to I change my server from Stand Alone to a PDC/BDC?
• What is a PDC, BDC?
• How many BDC's should I have?
• How do I stop the default admin shares from being created?
• How do I disconnect all network drives?
• How do I hide a machine from Network Browsers?
• How do I remote Boot NT?
• How do I stop the last logon name being displayed?
• How can I get a list of users currently logged on?
• How do I configure NT to be a gateway to an ISP?
• How do I install the FTP server service?
• How do I get a list of all connections to my PC?
• How can I stop people logging on to the server?
• How can I get the Ethernet address of my Network card?
• How can I configure the preferred Master Browser?
• Is it possible to protect against Telnet attacks?
• What Telnet Servers/Daemons are available for Windows NT?
• How do I install MSN under NT?
• What FireWall products are available for NT?
• How do I delete a network port (e.g. LPT3:)?
• How do I install the Remoteboot Service?
• How many connections can NT have?
• How do I configure a Trust Relationship?
• How do I terminate a Trust Relationship?
• How can I secure a server that will be a Web Server on the Internet?
• How can I tell the role of my NT machine?
• How can I stop a user logging on more than once?
• How can I get information about my domain account?
• Users fail to logon at a server.
• A machine is shown as Inactive in Server manager when it is not.
• How do I automatically FTP using NT?
• How can I change the time period used for displaying the password expiration message?
• How can I tell who has which files open on a machine?
• How can I modify share permissions from the command line?
• How can I change the protocol binding order?
• What criteria are used to decide which machine will be the Master Browser?
• How can I get a list of MAC to IP addresses on the network?
• How can I control the list of connections shown when mapping a network drive?
• How do I grant users access to a network printer?
• How can I join a domain from the command line?
• How can I create a share on another machine over the network?
• I get errors accessing a Windows NT FTP Server from a non Internet Explorer browser.
• How can I view which machines are acting as browse masters?
• How do I demote a PDC to a BDC?
• How can I configure a BDC to automatically promote itself to a PDC if the PDC fails?
• How do I rename a PDC/BDC?
• How do I configure my print jobs to wait until out of hours?
• Where in the registry are the entries for the DNS servers located?
• Is there any way to improve the performance of my modem internet connection?

RAS

• How do I connect two Workstations using RAS?
• Is it possible to dial an ISP using the command line?
• How can I stop the RAS connections closing when I logoff?
• How can I create a RAS Connection Script?
• How can I debug the RAS Connection Script?
• How do I configure RAS to connect to a leased line?
• How can I disable RAS AutoDial?
• RAS tries to dial out even on local resources.
• I have connected via RAS to a server however I can only see resources on the machine I connect to.

TCP/IP

• What is TCP/IP
• How do I install TCP/IP
• Is there a way to trace TCP/IP traffic using NT?
• I do not have a network card, but would like to install TCP/IP.
• I have installed TCP/IP, what steps should I use to verify the setup is correct?
• How can I trace the route the TCP/IP packets take?
• What is the subnet mask?
• What diagnostic utilities are there for TCP/IP?
• What is routing and how is it configured?
• What is ARP?
• My Network is not connected to the Internet, can I use any IP address?
• How can I increase the time entries are kept in the ARP cache?
• What other registry entries are there for TCP/IP?
• How can I configure more than 6 IP addresses?

DHCP

• What is DHCP?
• How do I install the DHCP Server Service?
• How do I configure DHCP Server Service?
• How do I configure a client to use DHCP?
• How can I compress my DHCP database?
• How can a DHCP client find its IP address?
• How can I move a DHCP database from one server to another?
• How do I create a DHCP Relay Agent?
• How can I stop the DHCP Relay Agent?
• How can I backup the DHCP database?
• How can I restore the DHCP database?
• How do I reserve a specific address for a particular machine?

DNS

• How do I install the DNS Service?
• How do I configure a domain on the DNS Server?
• How do I add a record to the DNS?
• How do I configure a client to use the DNS?
• How do I change the IP address of a DNS server?
• How can I configure DNS to use a WINS server?

WINS

• What is WINS?
• How does WINS work?
• How do I set up WINS?
• What is a WINS Proxy Agent?
• How do I configure WINS static entries for a non-WINS client?
• How do I configure WINS to work with DHCP?
• How can I compress my WINS database?

Exchange/Windows Messaging

• The Outlook/Exchange client takes a long time to start.
• How can I stop Outlook dialing my Internet Account on Startup?
• How do I install Exchange?
• How do I enable the Exchange Active Server Pages?
• How do I use the Exchange Optimizer utility?
• How can I convert mail system X to Exchange?
• How can I create shortcut on the desktop with the "to" field completed?
• NT Server hangs at shutdown if User Manager is running.
• How can I send a mail message from the command line?
• What files does Exchange use?

Internet Information Server

• What is IIS?
• How do I install Internet Information Server?
• What is Internet Service Manager?
• What is Index Server?
• What are Active Server Pages?
• How can I configure the Connection Limit?
• How do I change the default file name?
• How can I enable browsers to view the contents of directories on the server?
• How can I configure the FTP welcome message?
• How do I configure a virtual server?
• How can I administer my IIS server using a web browser?
• How can I configure FTP to use Directory Annotation?
• Only the first line of the Directory Annotation is shown.
• How can I configure the amount of IIS Cache?

Internet Explorer 4.0

• How can I remove the Active Desktop?
• How can I get past the "Active Desktop Recovery" page?
• What keyboard commands can I use with Internet Explorer 4.0?
• How can I create a keyboard shortcut to a web site?
• How can I customize folders with web view enabled?
• How can I change the icons in the Quick Launch toolbar?
• I have lost Show Desktop/View Channels from the Quick Launch bar, help!
• How do I change the default Search Engine?
• How do I remove the Internet Explorer icon from the desktop?
• How can I browse off-line?
• How can I reclaim wasted space by Microsoft's Internet E-mail readers?

Installation

• How do I install NT Workstation 4.0?
• How do I install NT Server?
• I want to install DOS and Windows NT, how should I do this?
• Installation hangs when detecting the hardware.
• Is it possible to install NT without using boot disks or temp files?
• Does NT have to be installed on the C drive?
• There is a file \Support\Deptools\<system>\ROLLBACK.EXE. What is it?
• I have NT installed, how do I install DOS?
• How do I convert NT Workstation to NT Server?
• I have bought a new disk, how do I move NT to this new disk?
• Can I upgrade from Windows95 to NT 4.0?
• How do I remove NT from a FAT partition?
• How do I remove NT from a NTFS partition?
• How do I install the Iomega Parallel Disk Drive?
• How do I install at tape drive on NT Server?
• How do I install the NEC 4x4 CD changer?
• What are symbol files, and do I need them?
• How do I install NT and Linux?
• How do I install NT over the network?
• Is it possible to use Disk Duplication to Distribute Windows NT?
• How do I perform an unattended installation?
• Is it possible to specify unique items during an unattended install?
• How do I automatically install applications as part of the unattended installation?
• Install detects the wrong video card and locks the installation.
• How do I upgrade from NT 3.51 to NT 4.0?
• When I use an unattended installation, how do I avoid the click "Yes" at the license agreement?
• I have NT installed, how do I install Windows95?
• How do I remove Windows95/Dos from my NT system?
• I can't create a NTFS partition over 4GB during installation.
• I cannot upgrade my 4.0 NT installation with the NT 4.0 upgrade CD.
• How do I create the NT installation disks?
• How can I use a Network card that is not one of those shown with Network Client Administrator?
• How can I make domain users members of local Administrators groups during an unattended installation?
• I have problems running a program as part of the unattended installation?

License

• How is NT Licensed?
• How can I view what licenses I have installed/used?
• How do I install extra licenses?
• How do I convert from Per Server to Per Seat?
• How can I reset the License Information?
• How can I run the License Manager software on a NT Workstation?

Windows 95 as a client

• How do I communicate with a Windows 95 client?
• How can I administer my domain from a Windows95 client?
• How do I force a 95 machine to logon to a domain?
• How do I enable Windows 95 machines to use Group policies?
• How do I enable Load Balancing on a Windows 95 machine?

NetWare

• What about Netware?
• What are Client Services for Netware?
• What are Gateway Services for Netware?
• How do I install Gateway Services for Netware?
• How do I attach to a NetWare 3.12 Server?
• How do I attach to a NetWare 4.1 Server?
• What are File and Print Services for Netware?
• What is Directory Service Manager?
• What is Migration Tool for Netware?
• What are the NT equivalents of NetWare Rights?

Macintosh

• How do I add the services for Macintosh?
• How can I read a Macintosh disk from Windows NT?
• Does NT RAS support AppleTalk?
• Can NT act as an AppleTalk client?
• How can I make a Macintosh PPP connection to Windows NT RAS?
• I am unable to write to the Microsoft UAM folder from the Macintosh?

RAID

• Does NT Workstation support RAID?
• What RAID levels does NT Server Support?
• How do I create a Stripe Set with Parity?
• How do I recreate a broken Stripe Set?
• How do I remove a Stripe Set?
• Can NT be on a Stripe Set?
• How do I create a Mirror Set (RAID 1)?
• How do I break a Mirror Set?
• How do I repair a broken Mirror Set?
• Can I install NT on a stripe set?

Performance and System Information

• How do I view all the applications/processes on the system?
• How do I move my pagefile?
• How big and where should my Pagefile be?
• Users complain server response is slow, but when I use the server everything is fine.
• Where can I get information about my machine?
• Is there a RAM disk in NT4.0?
• How can I tell when NT was last started?
• How can I monitor disk performance?
• How can I tell if I need a faster CPU?
• I need to run a number of 16 bit apps, what is the best way to do this?
• I have lost my NT Installation CD-ROM case that had the Key number, how can I find it out?
• How can I run an Application at a higher priority?
• How can I monitor processes that start after I start the Performance monitor?
• How can I view information in the Event Log from the command line?

MultiMedia

• How do I disable CD AutoPlay?
• How do I install a Joystick in NT?
• How do I change my Soundcards Settings (IRQ)?
• Does NT 4.0 support Direct X?
• Does NT have a speaker driver?
• How do I install my SoundBlaster Sound Card?
• How do I install a WaveBlaster card?

User Configuration

• How do I enable NumLock automatically?
• How do I disable Task Manager?
• How do I create a captive account?
• Where should Login Scripts go?
• What should be in the Login Script?
• Are there any utilities that help with login scripts?
• Is there a way of performing operations depending on a users group membership?
• How do I limit the disk space for a User?
• What variables are available for use with a User?
• Can I add user accounts from a database?
• Is there a utility that shows who is currently logged on?
• How can I change environment variables from the command line?
• How can I hide drive x from users?
• How do I make the shell start before the logon script finishes?
• How do I disable Window animation?
• How do I reduce/increase the delay for cascading menus?
• How do I change the My Computer icon?
• How do I hide the "Network Neighborhood" icon?
• Why can't I move any icons?
• How can I find out which groups a user is in?
• I can no longer see items in the common groups from the Start Menu.
• How can I disable the Right mouse button?
• How do I configure a user so they can change the system time?
• How do I add a user?
• How do I configure roaming profiles?
• How can I configure each user to have a different screen resolution?
• How can I create a list of all User Accounts?
• How do I change the colour used to display compressed files/directories?
• How can I add a user from the command line?
• How can I configure the wallpaper to be displayed somewhere other than the center of the screen?
• How can I move users from one machine to another?
• How can I stop the "Click her to begin" message?
• How can I configure a user to logoff at a certain time?
• How can I grant User Rights from the command line?
• How can I get more room on the Task Bar?
• How can I configure the system so all users share a common favourites folder?
• How can I change the local Administrator passwords on machines without going to them?
• How do I change my password?
• How can I configure default settings for new users?
• How can I tell which User has which SID?
• How can I configure NT Server 4.0 to not allow users to login if their mandatory is not available?

System Configuration

• How do I decrease the boot delay?
• Where do I load ANSI.SYS?
• How can I configure the local machine to perform a task at a set time?
• How do I change the Organization name on NT?
• How do I change the default location NT expects to find NT software for installation(i.e. CD)
• How can I remove the Shut Down button from the login screen?
• How can I disable the Printer PopUp message?
• How can I Parse/Not Parse autoexec.bat?
• How do I add the Control Panel to the Start Menu?
• How can I remove a program from the "Open With" when right clicking?
• How do I add a path statement in NT?
• Can I change the default Windows Background?
• How do I change the Start menu items under the line?
• How can I restore the old Program Manager?
• Is there a way to start NT in "Dos" mode?
• How can I disable "Lock Workstation" when I press Ctrl-Alt-Del?
• How can I make NT powerdown on shutdown?
• How do I enable Ctrl-Esc to start Task Manager?
• How can I allow non-Administrators to issue AT commands?
• How do I control Access to Floppy Drives/CD-ROM drives?
• I have DOS, Windows95 and NT installed, and want them all to show on the boot menu.
• How do I change the Print Spool location?
• How do I remove an App from Control Panel?
• How do I assign a drive letter to a removable drive?
• How do I configure a default Screen Saver if no one logs on?
• How do I change the Internet Explorer icon?
• How do I configure the default screen saver to be the Open GL Text Saver?
• How do I enable Print Auditing?
• How can I create a new hardware profile?
• How do I add an item to the Right Click menu?
• I have entries on the Remove software list that don't work, how can I remove them?
• How can I disable Dr. Watson?
• How do I create a network share?
• How do I connect to a network share?
• How do I configure the boot menu to show forever?
• How can I configure the machine to reboot at a certain time?
• How can I configure Explorer to start with drive x: ?
• How can I decrease the time my machine takes to shutdown/reboot?
• How can I change the startup order of the services?
• How can I configure the system so that certain commands run at boot up time?
• What are the .cpl files in the system32 directory?
• How can I create a non-network hardware configuration?
• Can I administer my domain from an NT Workstation?
• How can I remove the option "Press Spacebar for last known good config"?
• How do I enable drag and drop printing?
• How can I configure the command prompt?
• How do I enable/disable command extensions?
• How can I disable the OS2/POSIX subsystems?
• How can I configure NT to display a thumbnail of bitmaps as the icon instead of the Paint icon?
• How can I configure NT to automatically refresh the screen?
• How can I run a control panel applet from the command line?
• How can I configure a program/batch file to run every x minutes?
• What registry keys do the Control Panel applets update?
• How can I run a script at shutdown time?
• How can I create my own tips to be shown when NT starts?
• How can I change the location of the event logs?
• How can I configure the default Internet Browser?
• I receive a RDISK error, disk is full.
• How can I change the alert for low disk space on a partition?
• Is it possible to delete/rename the Administrator account?
• How can I tell NT how much secondary cache (L2) is installed?
• What commands can be used to configure the command window?
• What switches can be used in boot.ini?
• How can I change the Volume ID of a disk?
• Is it possible to move the Task bar?
• How can I change the default editor used for editing batch files?
• What are the default protections on an NTFS boot partition?
• How do I configure the default keyboard layout during login?
• How can I add my own information to General tab of the System Control Panel applet?
• How can I change the program associated with a file extension?
• Can I remove one of the startup folders on the Start Menu?

System Policy

• How do System Policies work?
• How do I modify a Policy?
• How do I create my own Policy template?
• Where can I get information on Profiles and Policies?

Security

• How do I enable auditing?
• How do I view/clear the security log?
• Where can I get more information on the Event Viewer?
• Where can I get information on NT security problems?
• How can I restore the default permissions to the NT structure?
• How can I copy files and keep their security and permissions?
• How do I enable auditing on certain files/directories?
• How do I use the System Key functionality of Service Pack 3?
• How do I remove the System Key functionality of Service Pack 3?
• How can I configure the system to stop when the security log is full?

Backup's

• What backup software is available for Windows NT?
• How do I add a tape drive?
• What types of backup does NTBACKUP.EXE support?
• What backup strategies are available?
• What options are available when using NTBACKUP.EXE?
• Can I run NTBACKUP from the command line?
• How do I schedule a backup?
• How do I restore a backup?
• How do I backup open files?
• What permissions do I need to perform a backup?
• How do I backup the registry?

Recovery

• How do I create an Emergency Repair Disk?
• How do I create a NT Boot Disk?
• I get the error "Can't find NTLDR"
• How do I recover a lost administrator password?
• I have set a drive to no access, now no-one can access it.
• If I copy a file with Explorer or from the command line, the permissions get lost.
• How can I get my taskbar back?
• I get the error "NTOSKRNL.EXE missing or corrupt" on bootup.
• How do I configure Directory Replication?
• What tuning can I perform on Replication?
• How do I remotely create an Emergency Repair Disk?
• How do I promote a Backup Domain Controller to the Primary Domain Controller?
• How do I reinstate my old PDC back into the Domain as the PDC?

Problem Solving

• I have installed Office 97 now I can no longer use Desktop Themes.
• I cannot delete a file called AUX.BAT or COM1!
• The AT command does not work!
• I can't format a disk/ create an Emergency Repair disk?
• When I change CD's/access the floppy drive NT crashes.
• After a new installation of NT, I can logon but no shell starts.
• I have a Matrox Millenium graphics card and the windows blink and flash when moved.
• When I start NT I get NTDETECT twice.
• My desktop disappears after a crash.
• I have installed a second CPU, however NT will not recognize it.
• I reinstalled NT, now I cannot logon.
• I have Windows 95 installed, and I am trying to start the NT installation but it fails.
• An Application keeps starting every time I start NT.
• Each time I start NT I get a file delete sharing violation?
• Sometimes when I run a program or Control Panel applet it says "no disk in drive a:".
• When I try and create an Emergency Repair Disk I get an error "One or more configuration files missing".
• I have installed Service Pack 3, now I cannot run Java programs.
• Every time I start NT, explorer is started showing the system32 directory.
• I have removed my IDE CD-ROM drive, now NT will not boot.
• I get the error, The procedure entry point WNetEnumCachedPasswords could not be located in the dynamic link library MPR.DLL
• What information is shown in the Blue Screen of Death (BSOD) ?
• I have created my own application service, however when the user logs off the application stops.
• I can't install any software.
• I get an error "This application is not supported by Windows NT".
• I have installed IE 4.0 now my shortcut icons are corrupt.
• I have lost access to the root of the boot partition, now I can't logon.
• I receive the error "The procedure entry point WNetEnumCachedPasswords could not be located in the dynamic link library MPR.DLL"
• How can I perform a kernel debug?
• How do I configure remote debugging?
• I get the error "Not enough server storage is available to process this command".
• I can't delete a directory called con.
• I get an error when I try to export a profile other than Administrator.

Support

• What Newsgroups are good for NT information?
• Where can I get more information?

Training

• Where can I go for Training in Microsoft Products?
• Where is information about becoming a MCSE?

Utilities

• Where can I find the resource kit?
• Where is a replacement for WinPopUp?
• How do I run an application as a service?
• How can I shutdown a computer remotely?
• Where can I find a Unix su (substitute user) like utility?
• I'm running NT on Alpha - Can I run INTEL programs?
• What is TWEAKUI?
• What else is good?
• Do Windows 95 Powertoys work in NT?
• Is there a X-terminal for NT?
• Where is File Manager?
• Where do I get Themes for NT?
• Where can I get UNIX tools for NT?

Compatibility

• Does application x work with NT 4.0?
• Does game x work with NT 4.0?
• Does NT run 16bit applications?
• Will NT 3.51 drivers work with NT 4.0?

Hardware

• How do I change the letter associated with a drive?
• How can I get NT to recognize my second harddisk?
• How do I install a HP scanner?
• How do I install dual screens?
• How much memory can NT support?
• How much memory do I need for NT?
• I cannot see my CD-ROM drive from NT?
• What are the IRQ's used for?
• How Many CPU's does NT support?
• Is there a list of hardware NT supports?
• Can I test my hardware to see if it is compatible with NT?
• Can I test my SCSI devices?
• How do I disable mouse detection on a COM port (for UPS usage)?
• Where can I get a driver for x?
• My U.S. Robotics 56K modem only connects at 19200.
• Can I user the IDE interface on my sound card?
• Does NT support Plug and Play?
• How do I install UPS?
• How do I give my tape drive a letter so it is visible from explorer?
• How can I force NT to use a mouse on a given port?
• How can I view which resources devices are using under NT?
• When I disconnect one of my devices (e.g. Zip drive) I get errors when I boot NT, how can I stop them?

Batch Files

• What is a batch file?
• What commands can be used in a batch file?
• How can I perform an action depending on the arrival of a file?
• How can I access files on other machines?
• How can I send a message from a batch file?
• The command I enter asks for input, can I automate the response?

Various

• What is SAMBA?
• Why disk spanning function of PKZIP (command line version) not work under NT?
• What virus killers are available for NT 4.0?
• Does NT support the LS120 (adrive)?
• Is NT year 2000 compliant?
• What does x stand for?
• What are the shortcuts available with the "Win" key?
• How can I open a file with an application, other than the one it is associated with?
• How do I change the icon associated with a short cut?
• Is it possible to map a drive letter to a directory?
• What keyboard shortcuts are available?
• How do I schedule commands?
• What are the long path names in the boot.ini file?
• How can I execute a batch file using WINAT with Administrator Permissions?
• I have 95 and NT installed, how can I configure the applications to run on both?
• How can I stop and start services from the command line?
• How do I delete a Service?
• What is USER.DMP?
• How do I configure a Print Separator Page?
• How do I cut/paste information in a command box?
• How in Notepad can I save a file without the .txt extension?
• How can I move shares and their contents from one machine to another?
• How do I enable Tab to complete file names?
• How do I create a shortcut on the desktop to a directory/disk?
• How do I create a shortcut from the command prompt?
• How can I create a spare set of Windows95 disks?
• What FAX software is available for Windows NT?
• How can I delete files that are over x days old?
• How can I redirect the output from a command to a file?
• How can I speed up the performance of my OS/2 applications?

Core

Q. What are the differences between NT Workstation and NT Server?

A. See table Below

Q. What does NT stand for?

A. New Technology. Its also interesting to note the heritage
RSX -> VMS -> ELN -> NT all major designs of David Cutler
Also VMS +1 letter = WNT (Windows NT) :-) (aka HAL and IBM in 2001)

Q. What is the NT Boot Process?

A. Firstly the files required for NT to boot are

• Ntldr - This is a hidden, read-only system file that loads the operating system
• Boot.ini - This is read-only system file, used to build the Boot Loader Operating System Selection menu on Intel x86-based computers
• Bootsect.dos - This is a hidden file loaded by Ntldr if another operating system is selected
• Ntdetect.com - This is a hidden, read-only system file used to examine the hardware available and to build a hardware list.
• Ntbootdd.sys - This file is only used by systems that boot from a SCSI disk.

The common Boot sequence files are

• Ntoskrnl.exe - The Windows NT kernel
• System - This file is a collection of system configuration settings
• Device drivers - These are files that support various device drivers
• Hal.dll - Hardware Abstraction Layer software

The boot sequence is as follows

1. Power on self test (POST) routines are run
2. Master Boot Record is loaded into memory, and the program is run
3. The Boot Sector from Active Partition is Loaded into Memory
4. Ntldr is loaded and initialized from the boot sector
5. Change the processor from real mode to 32-bit flat memory mode
6. Ntldr starts the appropriate minifile system drivers. Minifile system drivers are built into Ntldr and can read FAT or NTFS
7. Ntldr reads the Boot.ini file
8. Ntldr loads the operating system selected, on of two things happen
   * If Windows NT is selected, Ntldr runs Ntdetect.com
   * For other operating system, Ntldr loads and runs Bootsect.dos and passes control to it. The Windows NT process ends here
9. Ntdetect.com scans the computer hardware and sends the list to Ntldr for inclusion in HKEY_LOCAL_MACHINE\HARDWARE
10. Ntldr then loads Ntoskrnl.exe, Hal.dll and the system hive
11. Ntldr scans the System hive and loads the device drivers configured to start at boot time
12. Ntldr passes control to Ntoskrnl.exe, at which point the boot process ends and the load phases begin

Q. When I boot up NT, it pauses for about 30 seconds on the blue screen.

A. Each dot represents one NT device driver, and sometimes if something is wrong with that driver the startup will be delayed. However there is a known problem with NT if your computer has one or more IDE disks and one or more SCSI disks which results in a pause of around 30 seconds. The problem is due to the detection code used by NT and is currently being investigated by Microsoft.

Q. What is Virtual Memory?

A. Virtual Memory makes up for the lack of RAM in computers by using space on the hard disk as memory, Virtual Memory. When the actual RAM fills up (actually its before the RAM fills) then virtual memory is created on the hard disk. When physical memory runs out, the Virtual Memory Manager chooses sections of memory that have not been recently used and are of low priority and writes them to the swap file. This process is hidden from applications, and applications views both virtual and actual memory as the same.

Each application that runs under Windows NT is given its own virtual address space of 4GB (2GB for the application, 2GB for the operating system).

The problem with Virtual Memory is that as it writes and reads to the hard disk, this is much slower than actual RAM. This is why if an NT system does not have enough memory it will run very slowly.

Q. What is the history of NT?

A. In the late 1980's the Windows environment was created to run on the Microsoft DOS operating system. Microsoft and IBM joined forces to create a DOS replacement that would run on the Intel platform that led to the creation of OS/2, and at the same time Microsoft was working on a more powerful operating system that would run on other processor platforms. The idea was that the new OS would be written in a high level language (such as C) so it would be more portable.

Microsoft hired Dave Cutler (who also designed Digital's VMS) to head the team for the New Technology Operating System (NT :-) ). Originally the new OS was to be called OS/2 NT.

In the early 1990's Microsoft released version 3.0 of its windows OS which gained a large user base, and it was at this point that Microsoft and IBM's split started as the two companies disagreed on the future of their OS's. IBM viewed Windows as a stepping stone to the superior OS/2, where as Microsoft wanted to expand Windows to compete with OS/2, so they split, IBM kept OS/2 and Microsoft change OS/2 NT to Windows NT.

The first version of Windows NT (3.1) was released in 1993 and had the same GUI as the normal Windows Operating System, however it was a pure 32 bit OS, but provided the ability to also run older DOS and Windows apps, as well as character mode OS/2 1.3 programs.

For a detailed history have a look at http://windowsnt.miningco.com

Q. How do I install the SYMBOL files?

A. Symbol files are produced by the linker when a program is built, and are used to resolve global variables and function names in an executable.

1. Create a directory on your machine called SYMBOLS
   mkdir c:\winnt\symbols
2. Copy over the symbols from the NT installation CD ROM
   xcopy <CD-ROM>:\Support\Debug\i386 c:\winnt\symbols /s
3. If you have any service pack symbols you should extract these to the same directory, e.g. for Service Pack 2
   SYM_400I -d c:\winnt\symbols

For more information see Microsoft Knowledge Base article Q148659

Q. What is Windows NT?

A. Windows NT (both the Workstation and Server) is a 32-bit Operating System. It is a preemptive, multi-tasking Operating System, which means that the Operating System controls allocation of CPU time, not the applications, stopping one application from hanging the OS. NT supports multiple CPU's giving true Multi-tasking, using symmetrical multiprocessing, meaning the processors share all tasks, as opposed to asymmetrical multiprocessing, where the OS uses one CPU and the applications another. NT is also a Fault Tolerant Operating System, with each 32bit application operating in its own Virtual Memory address space (4 GigaBytes) which means one application cannot interfere with another's memory space.

Unlike earlier version of Windows (such as Windows for Workgroups and Windows 95), NT is a complete Operating System, and not an addition to DOS.

NT supports different CPU's: Intel x86, IBM PowerPC (Not to be supported for NT5.0) and DEC Alpha.

NT's other main plus is its Security with a special NT file system (NTFS) that allows permissions to be set on a file and directory basis.

Registry

Q. What is the Registry?

A. Originally there were .ini files in Windows, however the problem with .ini files are many, e.g. size limitations, no standard layout, slow access, no network support etc. Windows 3.1 (yes Windows not Windows NT) had a registry which was stored in reg.dat and could be viewed using regedit.exe and was used for DDE, OLE and File Manager integration. In Windows NT the Registry is at the heart of NT and is where nearly all information is stored, and is split into a number of subtrees, each starting with HKEY_ to indicate that it is a handle that can be used by a program.

Each of the subtrees has a number of keys, which in turn have a number of subkeys. Each key/subkey can have a number of values which has 3 parts

• The name of the value, e.g. Wallpaper
• The type of the value, e.g. REG_SZ (which is a text string)
• The actual value of the value, e.g. "c:\winnt\savilltech.bmp"

To edit the registry there are two tools available, regedt32.exe and regedit.exe.Regedit.exe has better search facilities, but does not support all of the Windows NT registry value types. If you want to just have a look around the Registry:

1. Start a registry editor (regedit.exe or regedt32.exe)
2. In Regedt32.exe you can set the registry to read only mode which means you won't corrupt anything :-) (Options - Read Only Mode)
3. Select the HKEY_USERS subkey
4. Move to the .default - Control Panel - Desktop and you will see a number of values in the right hand pane.
5. One of them is wallpaper and this is the background that is displayed before you logon.

Q. What files make up the registry, and where are they?

A. The files that make up the registry are stored in %systemroot%/system32/config directory and consist of

• SAM - HKEY_LOCAL_MACHINE\SAM
• SECURITY - HKEY_LOCAL_MACHINE\Security
• software - HKEY_LOCAL_MACHINE\Software
• system - HKEY_LOCAL_MACHINE\System & HKEY_CURRENT_CONFIG
• default - HKEY_USERS\.DEFAULT
• Ntuser.dat - HKEY_CURRENT_USER (this file is stored in %SystemRoot%\Profiles\%username%)

There are also other files with different extensions for some of them

• .alt - Contains a backup copy of the HKEY_LOCAL_MACHINE\System hive. Only System has a .alt file
• .log - A log of changes to the keys and values for the hive
• .sav - A copy of the hive as it looks at the end of the text mode stage in setup

Q. How do I restrict access to the registry editor?

A. Using the registry editor (regedt32.exe)

1. Highlight HKEY_USERS and Load Hive from the Registry menu.
2. Browse to their profile directory and select NTUser.dat.
3. When prompted for Key Name, input their UserID.
4. Navigate to \Software\Microsoft\Windows\CurrentVersion\Policies.
5. If no System sub-key exists, Add Key. Then Add Value of DisableRegistryTools (under the System key) using type REG_DWORD and set it to 1.
6. Unload Hive from the Registry menu.

Q. What is the maximum registry size?

A. The maximum size is 102MB, however it is slightly more complicated than this.

The registry entry that controls the maximum size of the registry is HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\RegistrySizeLimit. By default this entry will not exist so it will need to be created:

1. Start the registry editor (regedit.exe)
2. Move to the HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control key
3. From the Edit menu, select New - DWord value and enter the name as RegistrySizeLimit
4. Double click the new entry and enter a value

The minimum size is 4MB, and if anything less than this is entered in the registry then it will be forced up to 4MB. The maximum is 80% of the paged pool (which has a maximum size of 128MB, hence 102MB which is 80% of 128MB). If no entry is entered then the maximum size is 25% of the paged pool. The paged pool is an area of physical memory used for system data that can be written to disk when not in use.

An important point to note is that the RegistrySizeLimit is a maximum, not an allocation, and so setting a high value will not reserve the space, and it does not guarantee the space will be available.

This can also be configured using the System Control Panel applet, click on the Performance tab and the maximum registry size can be set there. You would then need to reboot.

For more information see Knowledge Base Article Q124594

Q. Should I use REGEDIT.EXE or REGEDT32.EXE?

A. You can use either for NT. REGEDIT does have a few limitations, the largest is that it does not support the full regedit data types such as REG_MULTI_SZ, so if you edit this type of data with REGEDIT it will change its type.

REGEDIT.EXE is based on the Windows95 version and has features that REGEDT32.EXE lacks (such as search). In general REGEDIT.EXE is nicer to work with. REGEDIT.EXE also shows your current position in the registry at the bottom of the window.

Q, How do I restrict access to a remote registry?

A. Access to a remote registry is controlled by the ACL on the key winreg.

1. Start the registry editor (regedt32.exe)
2. Move to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurePipeServers
3. Check for a key called winreg. If it does not exist create it (Edit -Add Key)
4. Select the winreg key (by clicking on it)
5. From the Security menu select permissions
6. Click the Add button and give the user you want read access
7. Once added, click on the user and select "Special Access"
8. Double click on the user and you can select which actions the user can perform
9. Click OK when finished

It is possible to set up certain keys to be accessible even if the user does not have access by editing the value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurePipeServers\winreg\AllowedPaths\Machine (use regedt32). You can add paths to this list.

See knowledge base article Q153183 at http://www.microsoft.com/kb/articles/q153/1/83.htm

Q. How can I tell what changes are made to the registry?

A. Using the regedit.exe program it is possible to export portions of the registry. This feature can be used as follows:

1. Start the registry editor (regedit.exe)
2. Select the key you want to monitor
3. From the Registry menu select "Export registry file"
4. Enter a file name (notice if you want to export the whole registry just select the "Export Range All") and click OK
5. Perform the change (install some software or change a system parameter)
6. Rerun steps 1 to 4 using a different file name
7. Run the two files through a comparison utility (for example windiff.exe)
8. If you are using windiff, select Compare Files from the File menu and you will then be prompted to select the 2 files to compare.
9. Once compared a summary will be displayed stating if there are differences, to view the changes double click on the message
10. Press F8 to view the next change (or select next change from the view menu)
11. You have now found what changed!

Q. How can I delete a registry value/key from the command line?

A. Using the Windows NT Resource Kit Supplement 2 utility REG.EXE you can delete a registry value from the command line or batch file, e.g.

reg delete HKLM\Software\test

Would delete the HKEY_LOCAL_MACHINE\Software\test value. When you enter the command you will be prompted if you really want to delete, enter Y. To avoid the confirmation add /f to the command, e.g.

reg delete HKLM\Software\test /f

A full list of the codes to be used with REG DELETE are as follows:

To delete a entry on a remote machine add the name of the machine, \\<machine name>, e.g.

reg delete HKLM\Software\test \\johnpc

Q. How can I audit changes to the registry?

A. Using the regedt32.exe utility it is possible to set auditing on certain parts of the registry. I should note that any type of auditing is very sensitive lately and you may want to add some sort of warning letting people know that their changes are being audited.

1. Start the registry editor (regedt32.exe)
2. Select the key you wish to audit (e.g. HKEY_LOCAL_MACHINE\Software)
3. From the Security menu select Auditing
4. Check the "Audit Permission on Existing Subkeys" if you want subkeys to also be audited
5. Click the Add button and select the users you want to be audited, click Add and then click OK
6. Once there are names in the "Names" box you can select which events to be audited, whether success or failure.
7. When you have filled in all the information click OK

You will need to make sure that Auditing for File and Object access is enabled (use User Manager - Polices - Audit).

To view the information use Event Viewer and look at the Security information.

Service Packs and Hotfixes

Q. What service packs and fixes are available?

A. See table below. All directories are off of ftp.microsoft.com/bussys/winnt/winnt-public/fixes/usa/nt40. Just click on the file name for a direct FTP link For people in Europe ftp.sunet.se/pub3/vendor/microsoft/bussys/winnt/winnt-public/fixes may provide faster access.

There are also Microsoft BBS numbers where Service Packs can be downloaded from, e.g. for the UK it is 44 1734 270065, however the fixes tend to be a few days later than on the FTP site.

Service Pack 1 Hotfixes /hotfixes-postsp1/

Service Pack 2 Hotfixes /hotfixes-postsp2/

Service Pack 3 Hotfixes /hotfixes-postsp3/

The file names above are for the Intel platform (hence the ending I), but they may also be available for Alpha and PPC, just substitute the I for a A(Alpha) or P(PPC).

I should note a health warning, "If it ain't broke, don't fix it" and I would tend to agree with this, so unless you have a problem, or require a new feature of a Service Pack think if you really want it. Also if you are going to apply it to a live system, try and test it first, as sometimes a Service Pack will introduce new problems.

Q. What are the Q numbers and how do I look them up?

A. The Q numbers relate to Microsoft Knowledge Base articles and can be viewed at http://www.microsoft.com/kb

Q. How do I install the Service Packs?

A. If you receive the Service Pack by downloading from a Microsoft FTP site, then copy the file to a temporary directory and then just enter the file name (e.g. Sp2_400i.exe). The file will be expanded and among the files created a file called UPDATE.EXE will be created. Just run this file. If there is no UPDATE.EXE, just .sym files you have downloaded the symbols version which is used for debugging NT, download the normal version (see above).

If you receive Service Packs via CD, if you just insert the CD (for SP2 and later) and an Internet Explorer page will be shown and you can just click on install for the Service Pack.

Q. How do I install the Hot fix?

A. Again copy the file to a temporary directory and run the file name. A few files will be created, one called HOTFIX.EXE. Run "HOTFIX /install" which will install the Hot Fix.

The newer Hot fixes (Java fix for Service Pack 3 onwards) you just double click on the downloaded file.

Q. How do I remove a Hot fix?

A. Use the command Hotfix /remove. To force the remove using the registry editor (regedt32) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\HOTFIX and delete the entry for the HOTFIX. Then use explorer to goto %SystemRoot%\HOTFIX\HF00?? and copy the backed up files back to their original location.

Q. How do I install Service Pack 3?

A. Before you install Service Pack 3 you must remove Internet Explorer 4.0 preview if installed:

1. From Control Panel (Start - Settings - Control Panel) double click Add/Remove Programs
2. Select "Microsoft Internet Explorer 4.0" and click Add/Remove
3. Select Remove All
4. You will have to reboot

Also before installing SP3 make sure you have an up to date Repair Disk (RDISK /S). To install Service Pack 3 download Nt4sp3_i.exe and follow the instructions below

1. Double click nt4sp3_i.exe
2. It will verify the file and then uncompress to a temporary area (you can make it uncompress without installing by typing nt4sp3_i /x)
3. Click Next to install and click Yes to accept the license agreement
4. Click Next and then select "Yes create uninstall"
5. Click Next then Finish
6. You will then have to reboot

Q. Emergency Repair Disk issues after installation of Service Pack 3.

A. Due to changes in Service Pack 3 the Emergency Repair Disk process has changed. The file setupdd.sys that is on the 2nd NT installation disk has been superseded by the one supplied with service pack 3. To extract the file from the Service Pack 3 executable, follow the instructions below:

1. Copy nt4sp3_i.exe to a temporary area
2. Uncompress the service pack
   nt4sp3_i /x
3. Insert the second NT installation disk (do not use the originals, create a new set using winnt32 /ox)
4. Set the file setupdd.sys to write enabled
   attrib -r a:\setupdd.sys
5. Copy the new setupdd.sys to the 2nd installation disk
   copy setupdd.sys a:

This is discussed in the Service Pack 3 readme file, and also in knowledge base article Q146887.

Q. How do I remove the Java Hotfix for Service Pack 3?

A. Manually unpack the hotfix
javafixi /x
Then type
hotfix -y
And it will remove the hotfix.

This method may become the new standard for hot fixes.

Q. How do I install multiple Hotfixes at the same time?

A. When you extract the files in a hotfix, generally the following will be extracted

• hotfix.exe
• hotfix.inf
• a number of executables/drivers/sys files etc (usually one file)

The hotfix.exe is the same executable for all the hotfixes, and the hotfix.inf is basically the same, the only difference is the files that are to be copied, e.g. tcpip.sys, and a description of the hotfix. To install multiple hotfixes at the same time all that is needed is to decompress the hotfix files and update the hotfix.inf with the information on which files to copy.

1. Create a directory on a disk called hotfix
   md hotfix
2. From the command line decompress the hotfixes you wish to install, note each time you decompress a hotfix a new hotfix.inf will overwrite the existing one so you may wish to backup the .inf files
   - <hotfix name> /x, e.g. javafixi /x
   - you will be asked where to extract the hot fix files to, enter the hotfix directory and click OK, e.g. d:\hotfix
   - copy the hotfix.inf file to the name of the hotfix, e.g.
   copy hotfix.inf javafix.inf
3. You will now have a number of files in the hotfix directory, with hotfix.exe, hotfix.inf and all the versions of the .inf files you copied. You now need to merge the contents of the .inf files into one main hotfix.inf file.
   If the hotfix you extracted had file tcpip.sys (ignore the .dbg files) you need to update the hotfix.inf file to include the copying of this file. Since TCPIP.SYS lives in the system32/drivers directory, you would add the line TCPIP.SYS to the [Drivers.files] section of the hotfix.inf file, e.g.
   [Drivers.files]
   TCPIP.SYS
   You also need to add TCPIP.SYS to the [SourceDisksFiles] section, e.g.
   [SourceDisksFiles]
   TCPIP.SYS = 1
4. Finally you need to add a comment at the end of the hotfix.inf file with a description of the hotfix in the [strings] section with the Q number and a comment, e.g.
   [Strings]
   ..
   HOTFIX_NUMBER="Q143478"
   COMMENT="This fix corrects the port 139 OOB attack"

The reason we copied the .inf files is that you can just cut and paste the hotfix specific information to the common hotfix.inf. When you decompressed a hotfix you will see which files were created, you could then search the .inf file for the file name and it would be in two places, the directory it belongs in and the [SourceDisksFiles] section. You could then go to the bottom of the file and cut and paste the HOTFIX_NUMBER and COMMENT and add to the end of HOTFIX.INF.

This is very hard to explain and an example is probably the best way to demonstrate this. Suppose you want to install

• The java hotfix - javafixi.exe
• The OOB data hotfix - oobfix_i.exe
• The GetAdmin hotfix - admnfixi.exe

The procedure would be as follows

1. Decompress the hotfixes to the hotfix directory and after each extraction backup the hotfix.inf file in the order admnfixi.exe - javafixi.exe - oobfix_i.exe
2. Admnfixi.exe consists of ntkrnlmp.exe and ntoskrnl.exe, search admnfixi.inf (the copy we made) for the files and they appear as follows
   [Uniprocessor.Kernel.files]
   NTOSKRNL.EXE
   
   [Multiprocessor.Kernel.files]
   NTOSKRNL.EXE, NTKRNLMP.EXE
   
   [SourceDisksFiles]
   NTKRNLMP.EXE = 1
   NTOSKRNL.EXE = 1
   
   [Strings]
   HOTFIX_NUMBER="Q146965"
   COMMENT="This fix corrects GETADMIN problem"
3. javafixi.exe consists of win32k.sys so search javafixi.inf for win32k.sys
   [MustReplace.System32.files]
   WIN32K.SYS
   
   [SourceDisksFiles]
   WIN32K.SYS = 1
   
   [Strings]
   HOTFIX_NUMBER="Q123456"
   COMMENT="This fix corrects the problem with True Color adapter cards and Java"
4. The current version of hotfix.inf already contains the information for the oobfix as it was the last installed, so the information for the above 2 must be added resulting in the changes being
   
   [MustReplace.System32.files]
   WIN32K.SYS
   
   [Drivers.files]
   TCPIP.SYS
   
   [Uniprocessor.Kernel.files]
   NTOSKRNL.EXE
   
   [Multiprocessor.Kernel.files]
   NTOSKRNL.EXE, NTKRNLMP.EXE
   
   [SourceDisksFiles]
   NTKRNLMP.EXE = 1
   NTOSKRNL.EXE = 1
   TCPIP.SYS = 1
   WIN32K.SYS = 1
   
   [Strings]
   HOTFIX_NUMBER="Q143478"
   COMMENT="This fix corrects the port 139 OOB attack"
   HOTFIX_NUMBER="Q146965"
   COMMENT="This fix corrects GETADMIN problem"
   HOTFIX_NUMBER="Q123456"
   COMMENT="This fix corrects the problem with True Color adapter cards and Java"

To install just type

hotfix

from the directory created (i.e. hotfix), you will see a dialog copying the files (the ones you have specified in the hotfix.inf file :-) ), and the system will reboot. To see what hotfixes are installed:

1. Start the Registry Editor (Regedit.exe)
2. Look at the HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Hotfix values

For more information have a look at Q166839 at http://www.microsoft.com/kb/articles/q166/8/39.htm

Q. How do I install Hotfixes the same time as I install Service Pack 3 onwards?

A. Update.exe that ships with Service Pack 3 checks for the existance of a hotfix subdirectory, and if in that directory the files hotfix.exe and hotfix.inf are present you are asked when running update.exe if you also want to install the hotfixes.

1. Create a direrectory to hold the extracted Service Pack
   md servpack
2. Extract the Service Pack
   nt4sp3_i /x
   You will be asked for a directory, enter the created directory, e.g. e:\servpack and click OK
3. Create a hotfix subdirectory
   md hotfix
4. Extract the hotfixes to this directory using the instructions in the previous FAQ
5. Run UPDATE.EXE in the servpack directory and click Yes when asked to install Hotfixes

For more information have a look at Q166839 at http://www.microsoft.com/kb/articles/q166/8/39.htm

Q. I have installed Service Pack 3, now I cannot run Java programs.

A. Download the updated Java Virtual Machine from Microsoft at http://www.microsoft.com/java/download/dl_vmsp2.htm . Download build 1518 which works with IE3.01, IE 3.02 and IE 4.0 platform preview 1, do NOT install on IE 4.0 PP2 or the release version.

There is also a hotfix for Service Pack 3 available from Microsoft ftp://ftp.microsoft.com/bussys/winnt/winnt-public/fixes/usa/nt40/hotfixes-postSP3/java-fix/JAVAFIXI.EXE

Q. I have installed Service Pack 3, however the Policy Editor has not been updated as specified in the documentation.

A. This is caused by a mistake in the Service Pack 3 update.inf file. The entry for poledit.exe (the executable for the policy editor) is specified in the [MustReplace.system32.files] section whereas the file should actually be in the [SystemRoot.files].

To install the new Policy Editor perform the following

1. Expand the service pack
   nt4sp3_i /x
2. You will be asked for a directory, enter a path and click OK. A message "Extraction complete" will be displayed when completed
3. Move to the directory the service pack was extracted to and copy the file poledit.exe to the %systemroot% directory
   copy poledit.exe %systemroot%

Alternatively you can update the update.inf fiile and move the location of poledit.exe from [MustReplace.system32.files] to [SystemRoot.files].

Q. How can I tell if I have the 128 bit version of Service Pack 3 installed?

A. The easiest way to tell this is to examine the secure channel dynamic link library (SCHANNEL.DLL):

1. Start Explorer (Win + E or Start - Programs - Explorer)
2. Move to %systemRoot%/system32 (where %systemRoot is the windows NT directory, e.g. d:\winnt)
3. Right click on Schannel.dll and select properties
4. Click the Version tab. The description will be one of the following:
   PCT / SSL Security Provider (U.S. and Canada for the 128 bit version.) if you have the 128 bit version
   or
   PCT / SSL Security Provider (Export Version) if you have the non-128 bit version
5. Click OK when finished
6. Close Explorer

Q. How do I install a service pack during a unattended installation?

A. There are various options, however all of them require for the service pack to be extracted to a directory, using

NT4SP3_I /x

and you then enter the directory where you want to extract to.

You could extract to a directory under the $OEM$ installation directory which would then be copied locally during the installation and you could add the line

".\UPDATE.EXE -U -Z"

to CMDLINES.TXT. This will increase the time of the text portion of the installation as the contents have to be copied over the network.

An alternate method is to install from a network drive, this requires a bit more work:

1. Create a directory on a network server and copy the extracted service pack to this directory. Setup a share on this directory called SP
2. Create a batch file in the $OEM$ share of the installation area called SERVPACK.CMD with the following:
   net use z:\\<server>\SP /persistent:no /user:<domain name> \guest < password.txt
   z:\update.exe -u -z
3. You need to create the password.txt file that contains the guest account password (usually blank) therefore perform the following:
   - type copy con password.txt
   - press ENTER once
   - press CTRL+Z to save the file
   If the password is not blank enter the password then press ENTER
4. Copy the password.txt file to the $OEM$ directory
5. Edit CMDLINES.TXT and add ".\SERVPACK.CMD" to the end

NT 5.0

Q. What is new in Windows NT 5.0?

A. NT 5.0 (aka Cairo) is the next major release of NT. It is expected to include the following new features:

• New X.500-style directory services called Active Directory, where each domain controller stores the entire directory database for the domain. Active Directory combines DNS and LDAP style directory information to create a hierarchical directory system
• Distributed File System. DFS enables multiple volumes on different machines (even not Windows NT!) to appear as a single logical volume
• Support for more than one monitor using new API commands
• Kerberos security, which is a MIT developed security protocol and is used for distributed security within a domain tree and is based on passwords and private-key encryption
• 64 bit memory support (more than 4 gigs of memory supported, 32 gigs on 64 bit processors)
• Support for Plug and Play
• Common device driver model, so new drivers can work on both Windows NT and Windows 98
• Support for Advanced Power Management (APM)
• Built in Disk Quota software
• File encryption software allowing encryption on a per file basis (like compression at present)

For more information on what's new please goto http://www.microsoft.com/ntserver/info/nt5_features.htm

Q. Where can I get more information on Windows NT 5.0?

A. Below is a list of useful links at Microsoft

• Windows NT Server 5.0 Main Page http://www.microsoft.com/ntserver/guide/nt5.asp
• Windows NT Workstation 5.0 Main Page http://www.microsoft.com/ntworkstation/info/50.htm
• New hardware support in Windows NT 5.0 http://www.microsoft.com/hwdev/ver4/desinit/r_nt50ahwr.htm
• New for Windows NT 5.0 and Windows 98 http://premium.microsoft.com/msdn/library/sdkdoc/dxintro_341f.htm
• Windows NT Beta page http://ntbeta.microsoft.com/

File Systems

Q. How can a FAT partition be converted to an NTFS partition?

A. From the command line enter the command convert d: /fs:ntfs . This command is one way only, and you cannot convert an NTFS partition to FAT. If the FAT partition is the system partition then the conversion will take place on the next reboot.

After the conversion File Permissions are set to Full Control for everyone, where as if you install directly to NTFS the permissions are set on a stricter basis.

Q. How can a NTFS partition be converted to a FAT partition?

A. A simple conversion is not possible, and the only course of action is to backup all the data on the drive, reformat the disk to FAT and then restore your data backup.

Q. How do I run HPFS under NT 4.0?

A. If you want NT support for HPFS, you can upgrade from 3.51 to 4.0 which will retain HPFS support. You can manually install the 3.51 driver under NT 4.0, however this is not supported by Microsoft.

1. Copy the 3.51 pinball.sys to the NT 4.0 %SystemRoot%\system32\drivers directory.
2. Start the registry editor (regedit.exe)
3. Goto the HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services
4. From the Edit menu, select "New Key"
5. In the form entry box which appears, enter Pinball as the Key Name. Leave the class field blank, and click OK
6. Highlight the new Pinball key in the editor's left panel and select New Dword from the Edit menu
7. Enter a name of ErrorControl and click OK
8. Double click ErrorControl and set to "0x1"
9. Highlight Pinball again and select "New String" from the Edit menu with name "Group" click OK
10. Double click Group and set to "Boot file system"
11. Highlight Pinball again and select "New DWORD" from the Edit menu with name "Start" click OK
12. Double click Start and set to "0x1"
13. Highlight Pinball again and select "New DWORD" from the Edit menu with name "Type" click OK
14. Double click Type and set to "0x2"
15. Close the registry editor
16. Reboot the machine

Q, How do I compress a directory?

A. Follow instructions below (this can only be done on an NTFS partition)

1. Using Explorer or My Computer select a drive
2. Right click on a directory and choose properties
3. Select the "Compress" Check box and click "Apply"
4. You will be asked if you want to compress subdirectories, click OK
5. Click OK to exit

Q. How do I uncompress a directory?

A. Follow the same procedure above, but uncheck the compress box.

Q. Is there an NTFS defragmentation tool available?

A. There are two for NT that I know of, the first is Executive Software which has a product called Disk Keeper Lite which is free, and also Norton Utilities has a defragmentation tool with its NT tool set (which I have never used). The full version of DiskKeeper allows the defragmentation to be done in the background so you don't have to worry about it.

A new piece of software called PerfectDisk NT from http://www.raxco.com is also now on the market but I have not tried it.

Q. Can I undelete a file in NT?

A. It depends on the file system. NT has no undelete facility, however if the filesystem was FAT then boot into DOS and then use the dos undelete utility. With the NT Resource kit there is a utility called DiskProbe which allows a user to view the data on a disk, which could then be copied to another file. It is possible to search sectors for data using DiskProbe.

Norton also provide a utility which can undelete files from within NT called Norton Utilities at http://www.symantec.com/

Q. Does NT support FAT32?

A. No. There are rumors that NT 5.0 will support FAT32.

Q. Can you read an NTFS partition from DOS?

A. Not with standard DOS, however there is a product called NTFSDos which enables a user to read from a NTFS partition. The homepage for this utility is http://www.ntinternals.com.

Q. How do you delete a NTFS partition?

A. You can boot off of the three NT installation disks and follow the instructions below:

1. Read the license agreement and press F8
2. Select the NTFS partition you wish to delete
3. Press L to confirm
4. Press F3 twice to exit the NT setup

Usually a NTFS partition can be deleted using FDISK (delete non-DOS partition), however this will not work if the NTFS partition is in the extended partition.

You can delete an NTFS partition using Disk Administrator, by selecting the partition and pressing DEL (as long as it is not the system/boot partition).

There is also a utility called delpart.exe that will delete a NTFS partition from a DOS bootup.

Q. Is it possible to repartition a disk without losing data?

A. There is no standard way in NT, however there is a 3rd party product called Partition Magic which will repartition FAT, NTFS and FAT32, however there is a bug in the product which makes the boot partition unbootable if it is repartitioned. A fix is available for this from their web site

Q. What is the biggest disk NT can use?

A. The simple answer to this question is that NT can view a maximum partition size of 2 terabytes (or 2,199,023,255,552 bytes), however there are limitations that restrict you well below this number.

FAT has internal limits of 4 GB due to thefact it uses 16-bit fields to store file sizes, 2^16 is 65,536 with a cluster size of 64 KB gives us the 4 GB.

HPFS uses 32bit fields and can therefore handle greater size disks, but the largest single file size is 4GB. HPFS allocates disk space in 512 byte sectors which can cause problems in Asian markets where sector sizes are typically 1024 bytes which means HPFS cannot be used.

NTFS uses 64-bits for all sizes, leading to a max size of..... 16 exabytes!!! (18,446,744,073,709,551,616 bytes), however NT could not handle a volume this big.

For IDE drives, the maximum is 136.9 GB, however for a standard IDE drive this is constrained to 528MB. The new EIDE drives can access much larger sizes.

It is important to note that the System partition (holding ntldr, boot.ini, etc.) MUST be entirely within the first 7.8Gb  of any disk (if this is the same as the boot partition this limit applies) This is due to the BIOS int 13H interface used by ntldr to bootstrap up to the point where it can drive the native HDD IDE or SCSI. int 13H presents a 24 bit parameter for cylinder/head/sector for a drive. If say by