So you’ve found an issue in a Package in a Project for a DataSynchronization in a Integration Services Catalogs ( .dtsx file ) that you want to edit?

Install if its not already on it and open SQL Server Data Tools

Click on File and New Project

Choose this Project

Choose “Intergration Servies Catalog” and Open the project

You should see the .dstx files on the right under

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

You will probably be given the files in a Zip file something like

SV9100_UC_Suite_AU_v4.5.4_R2

Extract this zip file

Download and install 7zip then extract UC_InConnect-4_5_4.exe to a folder UC_InConnect-4_5_4

You will now see the MSI file to install 

UcConnector.msi

Move this file to a share on a server ( or DFS location if you have multiple sites ) and make sure Domain Computers has read Access to the Share and the security on the folder

Create a new Group Policy and add it to the Policy Assigned Apps

How apply this policy to the Workstations OU

And on reboot you should see the below on the desktop

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)
Faulting application name: OUTLOOK.EXE, version: 16.0.10325.20118, time stamp: 0x5b6376e5
Faulting module name: OUTLOOK.EXE, version: 16.0.10325.20118, time stamp: 0x5b6376e5
Exception code: 0xc0000005
Fault offset: 0x000000000033246b
Faulting process id: 0x36c4
Faulting application start time: 0x01d43f25ac04f67c
Faulting application path: C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE
Faulting module path: C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE
Report Id: 9833d931-82c0-4400-8f12-18a00e63fdb1
Faulting package full name:
Faulting package-relative application ID:

 

Outlook 2016 was crashing when changing folders. The event log brought the above error. Rebuilding the OST did not work, in the end we had to uninstall and reinstall Office

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

Recently had a user receive an email that got past multi Spam protection. The issue was the sender had actually been hacked and they were using his email service to spam all his contacts with the below: 

I have been trying to send you this file, but it failed with attaching them to my email. I managed to upload them here. The document is password protected for confidentiality. You may be required to sign in to view.

View Here <https://u8062662.ct.sendgrid.net/wf/click?upn=wZQTK0j1og7ZpMJhH8Ud1KVnbiPHM9y73Xakn2Kz-2FW3NjeIbG2SHvoQBr-2FU18gy0sWZ8XmNWnZXVIwYoPeDbMdKFtXGpU-2FkCKJt7n9ht0-2Bc-3D_5kx02phTxyE6nAkdmbPR-2BLnKNuh-2FMh-2Fnzaqek3PlNNGNn5K7iZReVzccFSICLkn2TWbvJrH-2Bw-2BE7xgHn2ty-2B1BSOsEXhaW-2Fe1ryw1S4JCO1SZ5Cc96DNVFrgvKTCexkvDBOvJEZat1Xu3mo-2F-2Bg54FPgHa7ASkej2pIVyR-2BRlCbquUGTUk4YBF0lmrI20ZPDbWrW-2Fob7Pfi5neeYJCNhBDw-2FFhGqmFj4h8u6mNpuZg9g-3D>

 

Sendgrid is used for mass emails and people use sendgrid to track clicks. This domain is also never going to be blocked or marked as an issue

The link actually redirects to here : https://beautifulbeanfootage.com/box/Login.php?sslchannel=true which is a Phish page pretending to be box.com

 

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

When they initially onboarded, there was no filtering or security in any form:

Running a simple audit against Azure AD>Sign-ins showed the extent, even more when you export a CSV.

2000+ failed attempts within 24 hours:

Step 1) Sort or filter the CSV to find common trends (specific user account/IP/Country:

In this case, the client doesn’t have staff in China, nor should anyone be accessing from there

Step 2) Create a Blacklist – AzureAD>Conditional Access.

  • Create a Named location – in this case I named it ‘Blacklist’

 

 

  • Add any IPs to the blacklist

 

  • Create a policy – Name accordingly

 

  • Filter by a test account if appropriate, same for specific apps (don’t filter all apps if the admin account is included!! This can lock you out of the portal if you make a mistake!)

  • Set the blacklist location

  • Block the blacklist (or if you’re creating a whitelist, just allow instead of reject)

  • Enable the policy, then click the ‘What If’ button and test

 

 

Make sure it works as intended!

 

 

End result:

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

Recently for a Chubb Company insurance quote, we had to answer

Do the managers of the site, Next DC, have flood prevention action plans in place?  Please can you provide details of plans if known.

 

The answer took a while but was : 

Extensive site due diligence was conducted prior to building M1, ensuring that it was built 1 meter above the 100 year flood line, outside of bushfire prone areas and in a non-seismic zone. The fire suppression system in a data hall takes 2 minutes to deploy after smoke is detected.

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)
What are the benefits of adding a Manager to a user in AD?
 
Build Organisation Charts on the fly
If you build the right structure of Managers and subordinates, in Outlook 2013 and up when you click on the user, you can see the Organization Chart of the company ( rather than building a separate one )  under Organization

In Office 365 Managers get Notifications of User deletions as well as access to the users OneDrive

When an office 365 account is deleted or the Ad Sync Item is removed ( Either by deleting the object or removing the AD Sync group from the user ) it has 30 days before it gets deleted ( Emails and Files )

The manager get notified of this at 30 days , then again at 7 days

https://docs.microsoft.com/en-us/onedrive/retention-and-deletion

Creation of a Team Calendar

Outlook will automatically add Team Members ( who have the same Manager ) calendars to each outlook, as well as the managers

https://support.microsoft.com/en-au/help/3163350/outlook-doesn-t-display-your-manager-s-team-calendars

 
This functionality can be disabled if needed 

Expand : User Configuration – Policies – Administrative Templates – Microsoft Outlook 2010 or/and 2013 or 2016– Outlook Options – Preferences – Calendar Options – Schedule View

And Set policy Prevent Reporting Line Group Calendar from appearing .

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: +1 (from 1 vote)

All organizations should be using service accounts for Specific Tasks and Services, however, some legacy systems might not be. This script will search all servers listed in servers.txt and come back with any results with the username you search

#run this script as administrator
#create a servers.txt for all the servers you want to query
$Servers = Get-Content servers.txt
#add * infront and behind username for wildcard
$user = "*administrator*"

$findings = foreach ($computername in $Servers){

    $schtask = schtasks.exe /query /s $computername /V /FO CSV | ConvertFrom-Csv | Where { $_."Run As User" -like $user} | Select TaskName
    if ($schtask) {Write-Host "`nTask" + $computername + $schtask }
   
    $displayname = Get-WmiObject -class win32_service -computername $computername |where-object startname -like $user | Select displayname
    if ($displayname){Write-Host "`nService" + $computername + $displayname }
   
}
VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

I was recently trying to Upgrade the AADconnect server to stop the high 100% CPU issues

After running the MSI . then running AzureADConnect.exe , the upgrade came up with the error

Unable to upgrade the LocalDB Sql Express database Running

I went to the event log and found the error :

Error installing msi package ‘SqlLocalDB.msi’. Full log is available at ‘C:\ProgramData\AADConnect\SqlLocalDB_Upgrade-20180813-094321.log’.

I checked through the Log and there seemed to be lots of 1603 errors

I ran the SQL Setup ( C:\Program Files\Microsoft Azure Active Directory Connect\SetupFiles\SqlLocalDB.msi ) manually and it asked if I wanted to upgrade my LocalDB from 2008 to 2012 which I said yes to 


The installer then came up with the error SQL Server 2012 Express LocalDB

Could not open key: UNKNOWN\Components\. Verify that you have sufficient access to that key, or contact your support personnel.

I ran through the workaround 1 from this guide

https://blogs.msdn.microsoft.com/sqlserverfaq/2010/03/30/sql-server-2008-setup-fails-to-install-with-error-1402/

And then the SqlLocalDB.msi finished successfully , I was then able to run through the AzureADConnect.exe upgrade

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

Sometimes people need to document of capture a facebook profile page in a point in time. Due to the way facebook only loads the current data , a file and print does not work 

The only easy way we have found to do this is the use this Chrome Add In 

https://chrome.google.com/webstore/detail/full-page-screen-capture/fdpohaocaechififmbbbbbknoalclacl?hl=en

If you press the Capture Icon once installed , then scroll down to the very bottom of the page ( you have to do this because the Page only loads whats on the screen ) , it saves the whole page as a single image

You can then print this Image to PDF which should divide it up into pages

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)