Trying to enroll a new User and machine into InTune was bringing up the following error

Error : invalid_client

Description : failed to authenticate user

 

 

 

 

 

For some reason, the License for Intune was assigned to the user ( via EMS E3 ) however the Intune plan was switched off. Enabling this resolved the issue

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

Recently a few users had the following bounce backs from Office 365 to an On-Prem Mailserver with the error

‘550 5.4.316 Message expired, connection refused(Socket error code 10061)

Checking the logs in 365 of this, this was due to the Fortigate adding some 365 SMTP servers to the IPS Quantarine List

Removing these servers from the Quarantine and also removing IPS checking in the Policy of 365 servers to on-prem via SMTP resolved this

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)
 

If you install Veeam 9.5 update 4a and then try to upgrade the components on a remote Windows Server 2008 R2 server and this fails, the following can help to resolve the issue

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

 

Check the log @ C:\ProgramData\Microsoft\IntuneManagementExtension\Logs\ for more information or


HKLM\SOFTWARE\Microsoft\IntuneManagementExtension\Apps\
HKLM\SOFTWARE\Microsoft\IntuneManagementExtension\Win32Apps\

 

Win32 apps via Intune Management Extension Agent are cached here:

C:\Program Files (x86)\Microsoft Intune Management Extension\Content

 

Windows LOB apps (single MSI) pushed via MDM channel like the Intune Management Extension Agent itself are cached here during install and then deleted:

C:\Windows\system32\config\systemprofile\AppData\Local\mdm

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

Was trying to schedule the Google Cloud Directory Sync ( sync-cmd ) in a scheduled task on its own service account after creating the config.xml with the config manager

Running brought up the error (0x800700FF) in the scheduled task result

Turns out the Google Cloud Directory Sync Config Manager Encrypts the config.xml files to the user account that created them

I signed into the PC as the service account , reimported the config account and saved it as the service account and it ran fine

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)
Recommended Firmware Lastest of : 5.6.X Range ( Last Edited 12/06/2019 )
 
Add Interface Bandwidth of Wan port to Dashboard
 
Enable device detection on LAN interfaces
 
Proxy based always
 
DOss Policies
 
System->Settings -> Enable SNMP for Monitoring
 
Activate License and Forticloud

 

 

 
 
 
 
 
Feature List
 

 

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)
  1. Add VPN profile to both sides with same PreShared Key

 

2) Add Static Routes on both sides to each other’s Subnets via the VPN Connection Interface created in Step 1

3) Add Policies

WAN->VPN Connection Interface created in Step 1 ( without NAT ) 

VPN Connection Interface created in Step 1 -> All  ( without NAT ) 

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)

Solar

Charger

https://www.ebay.com.au/itm/PROJECTA-IDC25-12-VOLT-DC-TO-DC-25A-BATTERY-CHARGER-SOLAR-VERSION-4-CARAVAN-AGM/302957268505?epid=24008806292&hash=item4689a90e19:g:MbYAAOSwOGFcyud-&frcectupt=true

 

This does both Alternator charging while the car is running and solar to your auxiliary battery.

Only problem is it doesn’t have a good readout of whats happening so you have no idea if the solar is doing anything.

 

This unit it much better but $$ (my brother just put it in his car)

https://www.ebay.com.au/itm/Enerdrive-DC2DC-Plus-40A-Battery-Charger-EN3DC40/254178856509?hash=item3b2e3d8e3d:g:988AAOSwG8Zcmv~y

 

Or you could put a dc monitor on it for about $50

 

Solar panel, flexable mono panel, you can get bigger if you want, basically what ever will fit on the car. The projector will do upto about 400W, the enerdrice will do up to 800W

https://www.ebay.com.au/itm/200W-12V-Flexible-Solar-Panel-Waterproof-Caravan-Camping-Power-Mono-Charging-Kit/272893011251?epid=26026728309&hash=item3f89b0e533:g:HHkAAOSwt2FcrUPW&frcectupt=true

 

 

Aux battery, I put the 170AH slim battery in mine, but anything they want. 90AH will run a fridge for 3 days as long as the weather isn’t crazy. The chargers above will do everythin except lithium. But no one can afford lithium.

https://www.australiandirect.com.au/batteries/agm/?gclid=EAIaIQobChMI457wyMeN4gIVwRuPCh1ATAYLEAAYASABEgLtV_D_BwE

 

 

Fuse everything, cables from main battery to charger and solar inputs and then everything coming out of the aux battery. You don’t want a fire in the desert!

I used a mixure of ANL fuses and blade fuses

Jaycar has everything you need.

https://www.jaycar.com.au/search?text=ANL+&CSRFToken=d8a181a3-3f1f-4cf2-be25-8210152c3c51

https://www.jaycar.com.au/standard-duty-30a-blade-fuse-holder/p/SZ2040

https://www.jaycar.com.au/modular-design-blade-fuse-block/p/SZ2013

 

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)
#AllConnectionsUnMetered

#We need a Win32 class to take ownership of the Registry key
$definition = @"
using System;
using System.Runtime.InteropServices; 
 
namespace Win32Api
{
 
    public class NtDll
    {
        [DllImport("ntdll.dll", EntryPoint="RtlAdjustPrivilege")]
        public static extern int RtlAdjustPrivilege(ulong Privilege, bool Enable, bool CurrentThread, ref bool Enabled);
    }
}
"@ 
 
Add-Type -TypeDefinition $definition -PassThru | Out-Null
[Win32Api.NtDll]::RtlAdjustPrivilege(9, $true, $false, [ref]$false) | Out-Null
 
#Setting ownership to Administrators
$key = [Microsoft.Win32.Registry]::LocalMachine.OpenSubKey("SOFTWARE\Microsoft\Windows NT\CurrentVersion\NetworkList\DefaultMediaCost",[Microsoft.Win32.RegistryKeyPermissionCheck]::ReadWriteSubTree,[System.Security.AccessControl.RegistryRights]::takeownership)
$acl = $key.GetAccessControl()
$acl.SetOwner([System.Security.Principal.NTAccount]"Administrators")
$key.SetAccessControl($acl)
 
#Giving Administrators full control to the key
$rule = New-Object System.Security.AccessControl.RegistryAccessRule ([System.Security.Principal.NTAccount]"Administrators","FullControl","Allow")
$acl.SetAccessRule($rule)
$key.SetAccessControl($acl)

New-ItemProperty -path "HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion\NetworkList\DefaultMediaCost" -Name WiFi -PropertyType Dword -Value 1 -Force
New-ItemProperty -path "HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion\NetworkList\DefaultMediaCost" -Name 3G -PropertyType Dword -Value 1 -Force
New-ItemProperty -path "HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion\NetworkList\DefaultMediaCost" -Name 4G -PropertyType Dword -Value 1 -Force
New-ItemProperty -path "HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion\NetworkList\DefaultMediaCost" -Name Ethernet -PropertyType Dword -Value 1 -Force
New-ItemProperty -path "HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion\NetworkList\DefaultMediaCost" -Name Default -PropertyType Dword -Value 1 -Force

 

VN:F [1.9.22_1171]
Rating: 0.0/10 (0 votes cast)
VN:F [1.9.22_1171]
Rating: 0 (from 0 votes)