Windows ‘Always On’ VPN Part 2 (NPS, RAS, and Clients)
Feb18

Windows ‘Always On’ VPN Part 2 (NPS, RAS, and Clients)

KB ID 0001403 Problem Back in Part One, we setup the AD (Groups,) and the Certificate services that will knit everything together. Now we need to configure an NPS server that acts as a RADIUS server for our remote clients, And a RAS Server that our remote clients will connect to. Step1: Network Setup Microsoft have an alarming habit of telling you to connect DMZ assets to the LAN. In their defence I’ve seen some documentation...

Read More
Windows 10: Remote VPN Client Cannot Resolve Domain DNS
Feb16

Windows 10: Remote VPN Client Cannot Resolve Domain DNS

KB ID 0001402 Problem I’ve been setting up a VPN solution on the test bench as I’m looking at Always On VPN. When I noticed that I had a problem with my remote VPN connections on Windows 10. They would connect fine but I could not resolve any FQDNs for my domain? Solution By default, all (Windows) VPN connections are ‘Force Tunnel’ (this means they have the option ‘Use default gateway on remote...

Read More
Remotely Log Users Off From CLI / PowerShell
Feb15

Remotely Log Users Off From CLI / PowerShell

KB ID 0001401 Problem I’ve not had to do this since the days we got “The terminal server has exceeded the maximum number of allowed connections” errors. Now thankfully Windows Server tells us who is logged on so we can ‘ask politely’ before we boot them off! Today though, my user session got all messed up, and I needed to kick ‘myself’ off remotely, (and have a fresh session.) Solution From a...

Read More
PowerShell: Creating Domains and Domain Controllers
Feb12

PowerShell: Creating Domains and Domain Controllers

KB ID 0001400 Problem I needed to spin up some Windows 2016 Servers, and a domain to do some testing. I have promoted hundreds maybe thousands of domain controllers, so I wondered if this time I could do it with PowerShell. It’s actually easier than using the GUI! Solution If you were doing this in Server Manager, you would have to add the role first, and PowerShell is no different; Install-WindowsFeature AD-Domain-Services...

Read More
Windows ‘Always On’ VPN Part 1 (Domain and PKI)
Feb11

Windows ‘Always On’ VPN Part 1 (Domain and PKI)

KB ID 0001399 Problem Always On VPN was a bit of a misnomer when it was released, as it was only really ‘on’ when a user logged on. So when comparing it with ‘Direct Access‘ it didn’t have the capacity to ‘Manage Out’. With the release of Windows 10 (1709) this has been rectified with ‘Device Tunnels’, (more on that later). The solution uses RAS, NAP (NPS), and PKI (Certificate...

Read More
Exchange 2016 Setup Error “Server-Gui-Mgmt-Infra” Isn’t Installed
Feb07

Exchange 2016 Setup Error “Server-Gui-Mgmt-Infra” Isn’t Installed

KB ID 0001397 Problem During the Exchange 2016 Setup Readiness Checks; The Windows component Server-Gui-Mgmt-Infra isn’t installed on this computer and needs to be installed before Exchange Setup can begin Solution This is a known problem when installing Exchange 2016 on Server 2016, and was fixed in Exchange 2016 (Cumulative Update number 4). You are probably installing Exchange 2016 from the RTM media, (downloaded from...

Read More