Recently I was trying to get a WDS server PXE Booting using Legacy and UEFI booting. I followed the DHCP guide here Legacy worked however UEFI was not working. I double checked on the WDS server for the 67 Option with a file share and in

\\%IPOFSERVER%\reminst\Boot\x64

wdsnbp.com existed but no wdsmgfw.efi

Running a rebuild of the boot files also did not fix this for some reason , in the end I copied the file from : 

\\%IPOFSERVER%\c$\Windows\System32\RemInst\boot\x64

and it resolved the issue

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

How to get the OneDrive .ADMX files for Group Policies

On a machine with the latest of One Drive for Business installed, navigate to : %localappdata%\Microsoft\OneDrive

Find the latest version number in the folder and open it then go to the adm folder and copy the  .admx file

to \\domain.local\SYSVOL\domain.local\Policies\PolicyDefinitions and .adml file to \\domain.local\SYSVOL\domain.local\Policies\PolicyDefinitions\en-us\

Set Policies

Configure your Group Policies to the settings you want, but the one you’ll need for auto sign in is “Silently configure OneDrive using Windows 10 or domain credentials“. ) This will set : [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\OneDrive] “SilentAccountConfig”=dword:00000001. 

and also it will set Modern Authentication: 

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\OneDrive] “EnableADAL”=dword:00000001 

 

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

So you’ve found an issue in a Package in a Project for a DataSynchronization in a Integration Services Catalogs ( .dtsx file ) that you want to edit?

Install if its not already on it and open SQL Server Data Tools

Click on File and New Project

Choose this Project

Choose “Intergration Servies Catalog” and Open the project

You should see the .dstx files on the right under

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

You will probably be given the files in a Zip file something like

SV9100_UC_Suite_AU_v4.5.4_R2

Extract this zip file

Download and install 7zip then extract UC_InConnect-4_5_4.exe to a folder UC_InConnect-4_5_4

You will now see the MSI file to install 

UcConnector.msi

Move this file to a share on a server ( or DFS location if you have multiple sites ) and make sure Domain Computers has read Access to the Share and the security on the folder

Create a new Group Policy and add it to the Policy Assigned Apps

How apply this policy to the Workstations OU

And on reboot you should see the below on the desktop

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)
Faulting application name: OUTLOOK.EXE, version: 16.0.10325.20118, time stamp: 0x5b6376e5
Faulting module name: OUTLOOK.EXE, version: 16.0.10325.20118, time stamp: 0x5b6376e5
Exception code: 0xc0000005
Fault offset: 0x000000000033246b
Faulting process id: 0x36c4
Faulting application start time: 0x01d43f25ac04f67c
Faulting application path: C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE
Faulting module path: C:\Program Files\Microsoft Office\root\Office16\OUTLOOK.EXE
Report Id: 9833d931-82c0-4400-8f12-18a00e63fdb1
Faulting package full name:
Faulting package-relative application ID:

 

Outlook 2016 was crashing when changing folders. The event log brought the above error. Rebuilding the OST did not work, in the end we had to uninstall and reinstall Office

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

When they initially onboarded, there was no filtering or security in any form:

Running a simple audit against Azure AD>Sign-ins showed the extent, even more when you export a CSV.

2000+ failed attempts within 24 hours:

Step 1) Sort or filter the CSV to find common trends (specific user account/IP/Country:

In this case, the client doesn’t have staff in China, nor should anyone be accessing from there

Step 2) Create a Blacklist – AzureAD>Conditional Access.

  • Create a Named location – in this case I named it ‘Blacklist’

 

 

  • Add any IPs to the blacklist

 

  • Create a policy – Name accordingly

 

  • Filter by a test account if appropriate, same for specific apps (don’t filter all apps if the admin account is included!! This can lock you out of the portal if you make a mistake!)

  • Set the blacklist location

  • Block the blacklist (or if you’re creating a whitelist, just allow instead of reject)

  • Enable the policy, then click the ‘What If’ button and test

 

 

Make sure it works as intended!

 

 

End result:

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

Recently for a Chubb Company insurance quote, we had to answer

Do the managers of the site, Next DC, have flood prevention action plans in place?  Please can you provide details of plans if known.

 

The answer took a while but was : 

Extensive site due diligence was conducted prior to building M1, ensuring that it was built 1 meter above the 100 year flood line, outside of bushfire prone areas and in a non-seismic zone. The fire suppression system in a data hall takes 2 minutes to deploy after smoke is detected.

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)
What are the benefits of adding a Manager to a user in AD?
 
Build Organisation Charts on the fly
If you build the right structure of Managers and subordinates, in Outlook 2013 and up when you click on the user, you can see the Organization Chart of the company ( rather than building a separate one )  under Organization

In Office 365 Managers get Notifications of User deletions as well as access to the users OneDrive

When an office 365 account is deleted or the Ad Sync Item is removed ( Either by deleting the object or removing the AD Sync group from the user ) it has 30 days before it gets deleted ( Emails and Files )

The manager get notified of this at 30 days , then again at 7 days

https://docs.microsoft.com/en-us/onedrive/retention-and-deletion

Creation of a Team Calendar

Outlook will automatically add Team Members ( who have the same Manager ) calendars to each outlook, as well as the managers

https://support.microsoft.com/en-au/help/3163350/outlook-doesn-t-display-your-manager-s-team-calendars
 
This functionality can be disabled if needed 

Expand : User Configuration – Policies – Administrative Templates – Microsoft Outlook 2010 or/and 2013 or 2016– Outlook Options – Preferences – Calendar Options – Schedule View

And Set policy Prevent Reporting Line Group Calendar from appearing .

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: +1 (from 1 vote)

If you windows domain does not have a (.local) on the end you will need to use this registry key to join it to the domain

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters

  1. Locate AllowSingleLabelDnsDomain. If the key AllowSingleLabelDnsDomain does not exist:
  1. EditNew, DWORD.
  2. Write AllowSingleLabelDnsDomain as key name, and ENTER.
  3. Double click AllowSingleLabelDnsDomain.
  4. Set the Value to 1.
  5. Exit regedit
  6. Try to join the domain
VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)