Windows Server 2016 – Schedule a Reboot
Jun17

Windows Server 2016 – Schedule a Reboot

KB ID 0001321 Dtd 17/06/17 Problem Back in the day we just used the ‘At’ command to schedule a reboot, but starting with Server 2012 that was stopped! If you try it now you will see the following; The AT command has been depreciated. Please use schtasks.exe instead Solution Launch Task Scheduler. Create Basic Task. Give the task a name, (and optionally a description) > Next > One time > Next > Enter the date...

Read More
Windows Folder Redirection
Jun10

Windows Folder Redirection

KB ID 0000467 Dtd¬†10/06/17 Problem Q: What is Folder Redirection? A: Essentially you can take folders that hold things¬†like your “My documents” or your “Favorites” folder, and put them out on a network server, which is¬†great if you want to back that sort of information up for disaster recovery. Q:¬†What’s the difference between this and a roaming / roving profile? A: Folder redirection keeps information on...

Read More
Microsoft PKI Planning and Deploying Certificate Services Part 3
May15

Microsoft PKI Planning and Deploying Certificate Services Part 3

KB ID 0001312 Dtd 15/05/17 Problem Following on from Part Two, now we have an offline Root CA, and a CRL server, our next step is defined by our PKI design, are we three tier, or two tier? (Look in Part One for a definition). Solution As previously mentioned, Microsoft just treats Intermediate CAs and Issuing CA’s as the same thing (SubCAs). So the next step is identical for either. But I would suggest one difference, If I was...

Read More
WannaCry – Protect Yourself
May15

WannaCry – Protect Yourself

KB ID 0001311 Dtd 15/05/17 Problem Last Friday, the IT world was hit by another attack, WannaCry is a Ransomware infection, that exploits a hole in the windows SMB Protocol. This hole was patched back in March, (Security update MS17-010) so if your, (windows update supported systems) have updates enabled, you will probably already be protected. Why were big organisations like the NHS hit? Primarily because they have systems that are...

Read More
Microsoft PKI Planning and Deploying Certificate Services Part 2
May14

Microsoft PKI Planning and Deploying Certificate Services Part 2

KB ID 0001310 Dtd 14/05/17 Problem In Part One we deployed our offline Root CA Server, now we are going to deploy a ‘Certificate Revocation Location’ server. Solution Before you start: Create a DNS record for ‘pki‘ that points to the IP address, that you will have the CRL web server hosted on. I’m installing my CRL server on a separate web server because thats good practice. Starting with a domain joined...

Read More
ADMT (Active Directory Migration Tool) Domain Migration ‚Äď Part 4
May13

ADMT (Active Directory Migration Tool) Domain Migration ‚Äď Part 4

KB ID 0001308 Dtd 17/04/17 Problem On the homeward stretch now, back in Part Three, we migrated service accounts, groups, and users. Now we turn our attention to our machines. Note ADMT 3.2 Only support the migration of Operating Systems up to Windows 7, (that doesn’t mean Windows 8 and Windows 10 wont work, it just means they are not supported). Migrating Windows 8 and 10 throws a lot of security translation errors, because of...

Read More