Upon restoring a domain controller to a new or isolated network in example a DR environment, the domain controller will lose access to its other domain controllers for replication. You might find you cannot start the DNS server and or Active directory services.

To force the server to start without checking for others modify the below key and reboot the server

 Add the Following reg Key

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NTDS\Parameters
Value name:  Repl Perform Initial Synchronizations
Value type:  REG_DWORD
Value data: 0

You should then go into Active Directory Sites and services and remove the old Domain Controllers and Also go into the DNS server and remove any references in the Nameserver tabs for the Zones

_msdcs.domain.local

domain.local

• No Comments

Recently a user’s office documents were not defaulting to print A4 even though the defaults for the printer were set to A4.

Printing from other programs such as adobe reader and notepad printed fine

In the end opening word and going to Layout , then Page setup and setting the below to “Set as Default” resolved the issue

• No Comments

Recently a user was trying to use the Edit functionality of a Sharepoint Online List using Classic View with over 5000+ Items. To which they got when trying to change the view to modify the above error Cannot show the value of the filter

To fix this

1. Create a new View and set the sort of this view to the users Sort
   
   

   

2.  

   Filter the view to only get a select amount of items ( not the 5000+ all ) 
   
   

   

    

• No Comments

Recently I was trying to SysPrep a machine ready for imaging , however I got the below

The app was : cannot remove 46928bounde.EclipseManager_2.1.0.21_neutral__a5h4egax66k6y becuase user does not have it installed

I removed all the user profiles on this PC which fixed the issue.

I then had this issue on another computer specifically Facebook_Facebook. Clearing the profile did not fix it. I had to run the below commands to reset the AppRepository Database on the mac

Stop-Service -Name "StateRepository" -Force
takeown /F C:\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Deployment.srd
takeown /F C:\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Machine.srd
Rename-Item C:\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Deployment.srd C:\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Deployment_corrupted.srd -Force
Rename-Item C:\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Machine.srd C:\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Machine_corrupted.srd -Force
Start-Service -Name "StateRepository"

• No Comments

configure mstp revision 3
##Sets STPD Mode (MSTP)
configure stpd s0 mode mstp cist
##Binds all Vlans to STPD
enable s0 auto-bind vlan 1-4094
##Enable below for all ports APART from Uplinks
configure s0 ports auto-edge on #<ports>
##Enables STPD
enable stpd s0
##SAVE config
save config primary

• No Comments

Recently had an issue where Group Policies were not applying to a machine.

Gpresult /r showed the group policy 

On checking the machine, the Up Time was over 30 days. The user said she had shutdown the computer. Turns out Windows 10 has a default option called “fast startup” which Sleeps the computer on shutdown!

To disable this Disable the GPO

Computer Configuration\Policies\Administrative Templates\System\Shutdown\Require use of fast startup does set the following registry key HKLM\SOFTWARE\Policies\Microsoft\Windows\System\HiberbootEnabled=0 (REG_DWORD)

Set the Registry key

HKLM\SYSTEM\CurrentControlSet\Control\SessionManager\Powerfix\HiberbootEnabled=0

• No Comments

You will need to run the below as Administrator , if the use doesn’t have local admin you will need to change them to one then remove after  ;

• Right-click on the Outlook shortcut holding the SHIFT key and choose Run as administrator
• Go to File > Options > Trust Center > Programmatic Access
• Set the programmatic access to Never warn me about suspicious activity (not recommended)

IMPORTANT NOTE: If these option are greyed out, it usually means that you didn’t run Outlook with administrative rights.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\16.0\Outlook\Security
DWORD: ObjectModelGuard
Value: 2

As an alternative way, you can achieve the same result by altering your registry file in the following way:

• Navigate through HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\15.0\Outlook\Security  (create the key if it doesn’t exist)
• Add the following DWORD item:
  • CheckAdminSettings , with a value of 1.
  • AdminSecurityMode , with a value of 3.
  • PromptSimpleMAPISend , with a value of 2.
  • PromptSimpleMAPINameResolve , with a value of 2.
  • PromptSimpleMAPIOpenMessage , with a value of 2.
  • PromptOOMCustomAction , with a value of 2.
  • PromptOOMSend , with a value of 2.
  • PromptOOMAddressBookAccess , with a value of 2.
  • PromptOOMAddressInformationAccess , with a value of 2.
  • PromptOOMMeetingTaskRequestResponse , with a value of 2.
• Navigate through HKEY_CURRENT_USER\Software\Policies\Microsoft\Office\15.0\outlook\security  (create the key if it doesn’t exist)
• Add the following DWORD items:
  • CheckAdminSettings , with a value of 1.
  • AdminSecurityMode , with a value of 3.
  • PromptSimpleMAPISend , with a value of 2.
  • PromptSimpleMAPINameResolve , with a value of 2.
  • PromptSimpleMAPIOpenMessage , with a value of 2.
  • PromptOOMCustomAction , with a value of 2.
  • PromptOOMSend , with a value of 2.
  • PromptOOMAddressBookAccess , with a value of 2.
  • PromptOOMAddressInformationAccess , with a value of 2.
  • PromptOOMMeetingTaskRequestResponse , with a value of 2.

• No Comments

With an account that has full access to the Shared Mailbox , login to Webmail and Choose “Open Another Mailbox”

Enter the Shared Maibox and Click OK

Next Click on the settings Icon and Choose “Publish Calendar”

Next Change the Details Below

Next Send the External party the HTML or ICS file

• No Comments

In monitoring we recently saw a Scheduled Task for a Shadow Copy Job failing with 0x2.

After running the Action manually in CMD I go the below error

C:\Windows\system32>C:\Windows\system32\vssadmin.exe Create Shadow /AutoRetry=15 /For=\\?\Volume{411116ac-84e511-11116-80d4-11111111111}\

vssadmin 1.1 – Volume Shadow Copy Service administrative command-line tool
(C) Copyright 2001-2013 Microsoft Corp.

Error: Either the specified volume was not found or it is not a local volume.

Running this in powershell listed all the Volumes with their current GID

GWMI -namespace root\cimv2 -class win32_volume | FL -property Label,DriveLetter,DeviceID,SystemVolume,Capacity,Freespace

Turns out the job was for a GUID that didn’t exist anymore on that system. After checking the other ShadowCopyVolume Tasks to make sure all the Disks were accounted for , I deleted the errored job

• No Comments

Recently a user needed to Search another user’s 100GB Archive and Mailbox. Outlook search was taking far too long.

You can assign a user Permission to use the Content Search in  Security and Compliance Center  and limit access to a single Mailbox.

Assign Roles : 

In the Security and Compliance Center, Under Permissions,  Create a new Role with the following Roles assigned and add the User who needs to access

Assign Filter

This limits the users search scope to only a single Mailbox

Connect to 365 Security and Compliance Center :

$Session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri https://ps.compliance.protection.outlook.com/powershell-liveid -Credential $UserCredential -Authentication Basic -AllowRedirection Import-PSSession $Session -AllowClobber -DisableNameChecking

Add Filter

New-ComplianceSecurityFilter -FilterName MailboxFilter -Users pa@domain.com -Filters “Mailbox_DisplayName -like ‘John Smith'” -Action All

Wait around 10 minutes for this to apply then try logging in

• No Comments