Was trying to schedule the Google Cloud Directory Sync ( sync-cmd ) in a scheduled task on its own service account after creating the config.xml with the config manager

Running brought up the error (0x800700FF) in the scheduled task result

Turns out the Google Cloud Directory Sync Config Manager Encrypts the config.xml files to the user account that created them

I signed into the PC as the service account , reimported the config account and saved it as the service account and it ran fine

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)
Recommended Firmware Lastest of : 5.6.X Range ( Last Edited 12/06/2019 )
 
Add Interface Bandwidth of Wan port to Dashboard
 
Enable device detection on LAN interfaces
 
Proxy based always
 
DOss Policies
 
System->Settings -> Enable SNMP for Monitoring
 
Activate License and Forticloud

 

 

 
 
 
 
 
Feature List
 

 

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)
  1. Add VPN profile to both sides with same PreShared Key

 

2) Add Static Routes on both sides to each other’s Subnets via the VPN Connection Interface created in Step 1

3) Add Policies

WAN->VPN Connection Interface created in Step 1 ( without NAT ) 

VPN Connection Interface created in Step 1 -> All  ( without NAT ) 

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

Solar

Charger

https://www.ebay.com.au/itm/PROJECTA-IDC25-12-VOLT-DC-TO-DC-25A-BATTERY-CHARGER-SOLAR-VERSION-4-CARAVAN-AGM/302957268505?epid=24008806292&hash=item4689a90e19:g:MbYAAOSwOGFcyud-&frcectupt=true

 

This does both Alternator charging while the car is running and solar to your auxiliary battery.

Only problem is it doesn’t have a good readout of whats happening so you have no idea if the solar is doing anything.

 

This unit it much better but $$ (my brother just put it in his car)

https://www.ebay.com.au/itm/Enerdrive-DC2DC-Plus-40A-Battery-Charger-EN3DC40/254178856509?hash=item3b2e3d8e3d:g:988AAOSwG8Zcmv~y

 

Or you could put a dc monitor on it for about $50

 

Solar panel, flexable mono panel, you can get bigger if you want, basically what ever will fit on the car. The projector will do upto about 400W, the enerdrice will do up to 800W

https://www.ebay.com.au/itm/200W-12V-Flexible-Solar-Panel-Waterproof-Caravan-Camping-Power-Mono-Charging-Kit/272893011251?epid=26026728309&hash=item3f89b0e533:g:HHkAAOSwt2FcrUPW&frcectupt=true

 

 

Aux battery, I put the 170AH slim battery in mine, but anything they want. 90AH will run a fridge for 3 days as long as the weather isn’t crazy. The chargers above will do everythin except lithium. But no one can afford lithium.

https://www.australiandirect.com.au/batteries/agm/?gclid=EAIaIQobChMI457wyMeN4gIVwRuPCh1ATAYLEAAYASABEgLtV_D_BwE

 

 

Fuse everything, cables from main battery to charger and solar inputs and then everything coming out of the aux battery. You don’t want a fire in the desert!

I used a mixure of ANL fuses and blade fuses

Jaycar has everything you need.

https://www.jaycar.com.au/search?text=ANL+&CSRFToken=d8a181a3-3f1f-4cf2-be25-8210152c3c51

https://www.jaycar.com.au/standard-duty-30a-blade-fuse-holder/p/SZ2040

https://www.jaycar.com.au/modular-design-blade-fuse-block/p/SZ2013

 

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

Public

Worksite permissions default to everyone have access to everything. When a workspace is set to Public no permissions are restricted every if they are listed in the security list

Private

Private mode restricts access per the permissions listed 

FAQ

Read/Write Permission vs Full Access

Full Access gives users permissions to change existing permissions. Read/Write gives full access to the data

How do I give users read Access to a Workspace

Set it as Private

Great a group with all users and assign this read

Setup Users to full access

How can I get a list of all private or public workspaces?

SELECT p.prj_id, p.prj_name, p.prj_descript, p.prj_owner FROM mhgroup.projects p (NOLOCK) WHERE p.subtype = 'work' AND p.default_security = 'X'

To get a list of public workspaces you would change p.default_security = ‘X’ to ‘P’.

SELECT p.prj_id, p.prj_name, p.prj_descript, p.prj_owner FROM mhgroup.projects p (NOLOCK) WHERE p.subtype = 'work' AND p.default_security = 'P'

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

Powershell script to set Registry Key Permissions with Subkeys for a User ( Needs to be run as admin as its changing things in HKCU:\Software\Policies

$acl = Get-Acl HKCU:\Software\Policies\Google
$inherit = [system.security.accesscontrol.InheritanceFlags]"ContainerInherit, ObjectInherit"
$propagation = [system.security.accesscontrol.PropagationFlags]"None"
$rule = New-Object System.Security.AccessControl.RegistryAccessRule ("domain\user","FullControl",$inherit,$propagation,"Allow")
$acl.SetAccessRule($rule)
$acl |Set-Acl -Path HKCU:\Software\Policies\Google
VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

Use this to Generate a Command for Open SSL e.g the below 

https://www.digicert.com/easy-csr/openssl.htm

openssl req -new -newkey rsa:2048 -nodes -out test_test_com.csr -keyout test_test_com.key -subj "/C=US/ST=Test/L=/O=Test/CN=test.test.com" 

Now add to the end : -config “C:\Program Files\Autonomy\WorkSite\Apache\conf\openssl.cnf”

In Comand Prompt Navigate to Openssl.exe (  C:\Program Files\Autonomy\WorkSite\Apache\bin ) 

Run the full command

openssl req -new -newkey rsa:2048 -nodes -out test_test_com.csr -keyout test_test_com.key -subj "/C=US/ST=Test/L=/O=Test/CN=test.test.com" -config "C:\Program Files\Autonomy\WorkSite\Apache\conf\openssl.cnf"

It will generate a .csr and a .key file , copy these to C:\SSL

Use the CSR with your certificate Authority to Generate a .crt file and also a chain file

Download these to C:\SSL

Open the file : C:\Program Files\Autonomy\WorkSite\Apache\conf\worksite.conf

Add or Change the Lines to the below

SSLCertificateFile “C:\SSL\certs_test_test_com.crt”
SSLCertificateKeyFile “C:\SSL\test_test_com.key”
SSLCertificateChainFile “C:\SSL\certs_DigiCertCA.crt”

Restart iManage Work Server Service

 

Next

Copy “C:\SSL\test_test_com.key” to “C:\SSL\test_test_comkey.pem”

Open certs_test_test_com.crt with Notepad and copy the contents into a new file

Open certs_DigiCertCA.crt with Notepad and copy the contents to the below of the new file ( directly under the other certificate on a new Line ) 

Save this as C:\SSL\test_test_comfullchain.pem

On the Worksite Service Properties  , Configure Hosted DM

Change .PEM files to your new file

 

 

Restart iManageMicroServiceHub Service

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

The ubiquiti controller software listens to the Unifi broadcast traffic , however if this is on a different subnet you won’t get this!

To get around this , you need to create some records for the Access point to manually point to the controller

DNS

Create a DNS pointer of UniFi.domain.local on your DNS to point to the CNAME of your Ubiquiti Controller

DHCP

You can also use DHCP Option 43

 

        option ubnt.unifi-address 201.10.7.31;  ### UniFi Controller IP ###
VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)