0

How to install .ADMX Office Files for Group Policy Settings

Posted by paris on Sep 11, 2017 in Random

Download files from here : https://www.microsoft.com/en-gb/download/details.aspx?id=35554 for your right 64bit or 32bit

Extract the files to a new temp directory, this will create 3 directories and a spreadsheet file (ADM, Admin, ADMX, Office2013GroupPolicyAndOCTSettings.xls)

Now create the directory PolicyDefinitions under: \\your_domain_controller\SYSVOL\your_domain_name\Policies\

It’s easy to do this from your domain controller or just UNC to your sysvol share off your domain controller

Copy all the files that were unzipped in the temp ADMX directory to the new PolicyDefinitions directory you created.

Restart GPMC and either edit or create a new group policy

When the Group Policy Management Editor window comes up, you should see new templates under Administrative Templates.

The folder should state: Administrative Templates: Policy Definitions (ADMX) Retrieved from the Central Store

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

Tags: , , , , , , ,

 
0

Outlook Error : published calendar reported error 0x80004005

Posted by paris on Sep 10, 2017 in Fixes

When adding an Exchange account to a Send and Recieve Group you could get Sync Errors occuring

published calendar 0x80004005

To check which Published Calendar the error was talking about , go into  Account settings and go to the following tab below

You can remove these if you don’t need/want them

Image result for published calendar

 

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

Tags: , , ,

 
0

Citrix Netscaler v10.1 Upgrade to v12

Posted by paris on Sep 7, 2017 in Research

Download the .tgz upgrade file from here https://www.citrix.co.uk/downloads/netscaler-adc/firmware.html

Save your configuration first ( remember this does not save automatically ) and backup a config backup.

If this is a virtual machine do a snapshot / chekpoint

Let’s get started with the upgrade wizard:

NetScaler upgrade wizard

select the location for the firmware file:

Firmware

Next, verify the licenses you have already installed these will work with the new netscaler and begin the upgrade.\

NetScaler upgrade warning

The upgrade will take down the gui first , then after the netscaler when it says rebooting

Other key things to note – the upgrade has turned back on SSLv3 support on the Gateway vServer…however, it has enabled support for TLSv1.1 and TLSv1.2 which was missing from the 8007.e release. Nice!

SSL TLS

 

 

The new web interface will look like below

If you see a solid black screen after upgrade you will need to delete your cache or do a CTRL and F5

 

Note

Double check the SSL Profile on your virtual server make sure it’s set to : ns_default_ssl_profile_frontend

With SSL3 off and TLS 1.2 on , you can check via : https://www.ssllabs.com/ssltest/

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

Tags: , , , , , , , , , , , ,

 
0

This might be because the site uses outdated or unsafe TLS security settings – IBM IMM

Posted by paris on Sep 6, 2017 in Random

Trying to access the IBM IMM brought up the following error in Internet Explorer

“This might be because the site uses outdated or unsafe TLS security settings.”

 

  1. Connect to IMM2 by telnet.
  2. Enter “username” and “password” as prompted.
  3. Enter the ‘SSL’ command. The return value should show as ‘-server e on’ meaning the HTTPS feature is enabled.
  4. Enter the ‘SSL -se off’ command.
  5. The result of the ‘SSL’ command now should show as ‘-server e off’ meaning the feature is disabled. If users need to re-enable the HTTPS feature, use the ‘SSL -se on’ command in the sequence described previously.
  6. Exit the telnet connection.
  7. Connect to IMM2 with a browser using Hypertext Transfer Protocol (HTTP) without SSL.
VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

Tags: , ,

 
0

Powershell to find Users Missing Contacts in a Hybrid Enviroment

Posted by paris on Sep 6, 2017 in Code

Get-ADUser -Filter {proxyAddresses -like “*main.domain.com” -and enabled -eq true -and msExchUserAccountControl -notlike “*” -and msExchVersion -notlike “*”} |Select Name

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

 
0

Cheap reliable Wireless Point to Point Wireless System

Posted by paris on Sep 2, 2017 in Networking

https://www.ubnt.com/airmax/litebeam-m5/

Long Distance Capable of high-speed, 30+ km links.

LBE-M5-23

https://dl.ubnt.com/datasheets/LiteBeam/LiteBeam_DS.pdf

 

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

Tags: , , ,

 
0

How to Enable Active Directory Auditing

Posted by paris on Sep 1, 2017 in Research

Edit the Group Policy that is applying to your domain controllers

Server 2003

Computer Configuration->Policies->Windows Settings->Security Settings->Local Policies->Audit Policy 

-> Enable Audit Directory Access Service

Server 2008 or Above

Computer Configuration->Policies->Windows Settings->Security Settings->Local Policies->Security Options->Audit: Force audit policy subcategory settings

Computer Configuration->Policies->Windows Settings->Security Settings->Advanced Audit Policy Configuration->Audit Policies->DS Access

14

 

 

Target OU or Whole Domain

Right-click on where you want to enable Auditing and bring up the properties.  Under Extensions you will see the Security tab.  From there select Advanced and then choose the Auditing tab.  If you want to be comprehensive, I would select the Everyone security principal, set Type to Success and Applies to: This object and all descendant objects.  For the permissions, again if you want to be comprehensive, set the following:

  • Write all properties
  • Delete
  • Delete subtree
  • Modify permissions
  • Modify owner
  • All validated writes
  • All extended writes
  • Create all child objects
  • Delete all child objects

Open Event viewer and filter Security log to find event id’s (Windows Server 2003/2008-2012):
– 631, 635, 648, 653, 658, 663/4727, 4731, 4754 , 4759, 4744, 4749 – Group created
– 632, 636, 650, 655, 660, 665/4728, 4732, 4756 , 4761, 4746, 4751 – Member added to a group
– 633, 637, 651, 656, 661, 666/4729, 4733, 4757, 4762, 4747, 4752 – Member removed from a group
– 634, 638, 652, 662, 667, 657/4730, 4734, 4758, 4748, 4753, 4763 – Group deleted
– 639, 641, 649, 654, 659, 664/4735, 4737, 4745, 4750, 4755, 4760 – Group changed
– 566/4662 – An operation was performed on an object(OU Changes) (Type: Directory Service Access).

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

Tags: , , , , , ,

 
0

365 – Your server administrator has limited the number of items you can open simultaneously. Try closing messages you have opened or removing attachments and images from unsent messages you are composing.

Posted by paris on Sep 1, 2017 in Random

Recently had a client with Office 365 trying to Cache a Shared Mailbox. Outlook brought up a load of Sync Errors

Your server administrator has limited the number of items you can open simultaneously. Try closing messages you have opened or removing attachments and images from unsent messages you are composing.

If the server is self hosted you can remove the restriction via  : http://henrysluiman.blogspot.com.au/2013/02/how-to-increase-number-of-open-items.html

Microsoft fix for this is removed the Cache! https://support.microsoft.com/en-us/help/3115602/performance-problems-when-you-try-to-access-folders-in-a-secondary-mai

After rebuilding the OST and Profile and still no luck I started Outlook in Safemode which enabled the downloading of the emails

Once downloaded I could start Outlook Normally and all worked fine

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

Tags: , , , , ,

 
0

Veeam File Copy – Error: The filename, directory name, or volume label syntax is incorrect

Posted by paris on Aug 28, 2017 in Random

Recently an Veeam Backup and Replication Software was upgraded from v8 to 9.5 , to fix an issue with Internal Database

Failed to copy item ‘\\network\Location’ Error: The filename, directory name, or volume label syntax is incorrect

this feature is not supported since version 9, so this might work but the product does not guarrantee this feature would work properly, and unfortunately we do not support features that does not supported by the version you are using.

please see this guide: https://helpcenter.veeam.com/docs/backup/hyperv/file_copy_source.html?ver=95

it says “You cannot use deduplicating storage appliances, shared folder backup repositories and shared folders as a source for the file copy job.”

This is annoying as it did work with Older Versions , in the end , I have to add \\network\Location\Folder ( extra folder on the end ) for the source folder instead of \\network\Location

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

Tags: , , , , , , ,

 
0

How to add a routable subnet to a Fortigate VPN connection

Posted by paris on Aug 23, 2017 in Networking, Research

When a user VPN into a Fortigate Router , make sure they can access all Subnet available to the router not just the local one :

  1. Added security policy – allow from SSL VPN interface to IPsec VPN  

Name : SSL VPN to New Subnet

Incoming Interface : SSL-VPN tunnlel Interface ( ssl.root ) 

Outgoing Interface – %Interface of Site to Site VPN for Remote Site%

Source : SSL VPN Client Range / SSLVPN_Users

Destination Address : %new subnet%

Schedule : Always

Service : ALl

Action : Accept

Nat : Enabled (  to traverse IPsec VPN as local address (192.168.0.x) as opposed to SSL VPN client range (192.168.1.x) 

IP Pool Configuration : Use Dymanic IP Pool and NAT Pool for SSL VPN Clients

 

2.  Make you have DHCP NAT pool Range excluded from your onsite DHCP 

3.Added New Subnet to routing address in SSL VPN portal – tunnel mode

VPN – > SSL VPN Portals

Tunnel Mode -> Enable Split Tunnelings -> Routing Address 

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

Tags: , , , , , , ,

Copyright © 2017 Welcome to Pariswells.com All rights reserved. Theme by Laptop Geek. Privacy Policy