WannaCry

If you have yet to install the Microsoft fix—MS17-010— you should do so immediately. You should also be extremely suspicious of all e-mails you receive, particularly those that ask the recipient to open attached documents or click on Web links.

To obtain these patches, simply go to http://www.catalog.update.microsoft.com/Search.aspx and punch in the KB number in the Search bar on the top right hand corner, then choose the update for the relevant architecture.

Protip: To get the Windows 10 version number, simply type run the winver command

SPF Record for FirstWave Cloud Email Security

A Domain using Firstwave was getting the below errors in the email headers :

Authentication-Results: spf=permerror (sender IP is x.x.x.x)

Received-SPF: PermError (protection.outlook.com: domain of domain.com used an invalid SPF mechanism)

Firstwave SPF record needs to be the following

“v=spf1 include:spf.firstwave.com.au ~all” for your domain(s).

Tags: permerror

Bios Update Dell Laptop with Less 10% Battery

Some Dell laptops have an issue where they loose the ability to charge laptop batteries. Sometimes this can be fixed with a Bios update , however Dell has security to stop you updating the Laptop with less than 10% battery which will not work due to the issue of charging the battery

To force a BIOS update

1. download the .exe in Windows
2. Open command prompt and navigate to the .exe using CD
3. RUN “biosupdatename.exe /FORCEIT” which will install the bios update without the warning about 10% charge

Tags: 10% battery, bios, dell, force, forceit, not charging battery, update

N-Able Patch Status Migconfigured

• Use Script below in a Bat file and Administrator , then restart ( https://support.microsoft.com/en-ca/help/971058/how-do-i-reset-windows-update-components )
• https://gallery.technet.microsoft.com/scriptcenter/Reset-Windows-Update-Agent-d824badc
• Windows 7 and 2008 R2 systems (both 32bit and 64bit) https://support.microsoft.com/en-us/kb/3172605
• Windows 8.1 and 2012 R2 systems (both 32bit and 64bit) https://support.microsoft.com/en-us/kb/3172614
• Microsoft has also released a Windows Update for Windows 7 and 2008 R2 systems (both 32bit and 64bit)https://support.microsoft.com/en-us/kb/3050265

• Use the System File Checker tool to repair missing or corrupted system fileshttps://support.microsoft.com/en-us/kb/929833

• Run the Windows Update Troubleshooter https://support.microsoft.com/en-us/kb/2714434

Clear the following registry keys and restart the Windows Update Service 

• HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\WindowsUpdate

• HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer

• HKEY_LOCAL_MACHINE\SYSTEM\Internet Communication Management\Internet Communication

• HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\WindowsUpdate

• HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\WindowsUpdate\AU

Check if http/https webserver is responding bat file script

Source code

@if (@CodeSection == @Batch) @then
 
@echo off
setlocal
 
set "servers=dev1 dev2 dev3 test1 test2 test2:8080 prod prod:443"
 
for %%I in (%servers%) do (
    for /f "tokens=1,2 delims=:" %%a in ("%%I") do (
        set "port=%%~b"
        if not defined port set "port=80"
        setlocal enabledelayedexpansion
        cscript /nologo /e:JScript "%~f0" "%%~a" "!port!" && (
            echo %%a port !port!: OK
        ) || (
            echo %%a port !port!: Error
        )
        endlocal
    )
)
 
goto :EOF
 
@end // end batch / begin JScript chimera
 
var server = WSH.Arguments(0),
    port = WSH.Arguments(1),
    protocol = port == 443 ? 'https' : 'http',
    URL = protocol + '://' + server + ':' + port + '/',
    XHR = WSH.CreateObject('Microsoft.XMLHTTP');
 
XHR.open('GET', URL);
XHR.setRequestHeader('User-Agent','XMLHTTP/1.0');
XHR.send('');
while (XHR.readyState != 4) WSH.Sleep(25);
WSH.Quit(XHR.status - 200);

Kudos to Rojo for this

Tags: 443, 80, bat file, http, https, port open, responding, script

Cisco Aironet 1140 Series no SSID Broadcast

If you’ve never used a Cisco Access point ( Aironet ) by default out of the box or after a factory reset the dot11rad 0 interface will be set to shutdown and will no broadcast any of your SSID’s

Also by default only webpage administration is available, you can enable SSH through the website Administration

Enabled through SSH :  

ap(config)#interf dot11rad 0

ap(config)#no shutdown

Depending if you have 1 or 2 SSID you will need to enable Guest mode or MutliGuest Mode

Tags: broadcast, cisco Aironet, enable, multi ssd, ssid

Error: Encryption mode cipher is not configured Cisco 1140

When going through the commands to enable WPA on cisco Wireless Account point

ap(config)#interface Dot11Radio0
ap(config-if)# encryption mode ciphers aes-ccm

Then

ap(config-ssid)#authentication open
ap(config-ssid)#authentication key-management wpa version 2

I was shown Error: Encryption mode cipher is not configured.

Tags: 1140, Cisco, command line, enable wpa, security, ssid, wpa, wpa 2, WPA2

Citrix NetScaler Average Round Trip Time 4 Seconds

After the restart of a Citrix Netscaler , our SNMP monitoring was coming back with high Second Round Trip times locally for the NetScaller of 1 – 4 Seconds. Logging in and checking the settings looked good.

In the end a reboot fixed this!

Core Cheat Sheet

Get in Command prompt by logging into the machine

Type Powershell in the CMD Window to get to PW

Get Virtual Machines

Get-VM

Start all VM

Start-VM *

Start one VM

Start-VM %VMNAME%

Show services set to automatically start and stopped : 

Get-WmiObject win32_service | Where-Object -FilterScript { $_.state -ne "Running" -and $_.StartMode -eq "Auto" } | Select-Object name 

Tags: 2012 R2, can't access Hyper V Manager, cheat sheet, core, hyper-v core, start machines

Exchange to Office 365 – Pre-Engagement Questionnaire Exchange Deployment Planning Services

https://bobsys.files.wordpress.com/2014/07/exchange-assesment-requirements-and-planning-v1-1.docx

Tags: Exchange Deployment Planning Services, Pre-Engagement Questionnaire