Recently has a user on a terminal server trying to change their login and licenses account to active Office 365. The user logged into Office , but Office came up with “couldn’t verify account”

• No Comments

AADSync installed on a domain controller running as “Auto-generated standalone Managed Service Account”

Domain controller was rebooted as part of another task then “Microsoft Azure AD Sync” couldn’t start.

Searching for the above error, no solution except reinstalling, but unfortunately no configuration details to replicate. Repair also did not fix the issue.

Digging deeper in application logs, noticed SQL errors which turned out to be the cause

SOLUTION:

Replace two files, model.mdf and modellog.ldf.

Copy from: C:\Program Files\Microsoft SQL Server\150\LocalDB\Binn\Templates

Copy to: C:\Users\ADSyncxxxxx$\AppData\Local\Microsoft\Microsoft SQL Server Local DB\Instances\ADSync2019

Or

Copy to: C:\Windows\ServiceProfiles\ADSync\AppData\Local\Microsoft\Microsoft SQL Server Local DB\Instances\ADSync2019

Destination varies according to installed version.

• No Comments

Change AutoScaling Group to 0

• No Comments

# config system link-monitor

 (link-monitor) # show
config system link-monitor
edit “1”
set srcintf “wan1”
set server “8.8.8.8”
next
end

• No Comments

Recently restricted an AWS Elastic Beanstalk App so it could only be accessed through a specific DNS host name which was routed through Cloudflare for Security

This parameter is located in archive.xml in \site_content\archive.xml

<binding protocol=”http” bindingInformation=”*:80:subdomain.domain.com” sslFlags=”0″ MSDeploy.sslFlags=”1″ />

• No Comments

Software Assurance

 License Mobility refers to the ability to move virtual instances from host to host and between server farms. SQL server needs Software Assurance for License Mobility.

Software Assurance can only be added after the fact if the above 90 day condition is met. Otherwise it must be purchased alongside the license itself. Software Assurance also cannot be added to existing License only volume licensing regardless of when it was purchased. 

SQL Server

Please note that there are 2 ways of licensing SQL Server Standard:

• Per-Core Model
  • All physical cores must be licensed if run on the physical host or
  • All cores assigned to the virtual machine must be licensed if run in a virtual environment
  • A minimum of 4 cores must be licensed per virtual OSE or per physical processor (depending on how it will be deployed)
  • The core licenses come in packs of 2, so a minimum of 2 are required to be purchased.
  • No SQL Server CAL’s are required to access the server

• Server / CAL Model
  • One license is needed to run one instance of SQL Server on the host
  • SQL Server User or Device CAL’s are required to connect to the Server either directly or indirectly

• No Comments

Recently had a site to site tunnel randomly drop , fix was to  Set set npu-offload disable 

config vpn ipsec phase1-interface

edit

set npu-offload disable

end

• No Comments

By default a IPSec tunnel will only come on when traffic is passed through

However if you enable Auto-Negotiate at both ends it will stay up

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Using-the-IPSec-auto-negotiate-and-keepalive/ta-p/189536

• No Comments

https://pariswells.com/blog/wp-content/uploads/2022/02/CoreChips-RD-9700-Win.zip

• No Comments

• No Comments