Connections From Machines That Don’t Map to Sites?
KB ID 0001635 Problem I was troubleshooting some replication issues for a client, and carried out a dcdiag on one of their domain controllers, and saw this; Starting test: SystemLog A warning event occurred. EventID: 0x000016AF Time Generated: xx/xx/xxxx xx:xx:xx Event String: During the past 4.21 hours there have been {xxx} connections to this Domain Controller from client machines whose IP addresses don’t map to any of the...
ADFS: Changing the Certificate
KB ID 0001634 Problem I needed to change the certificate used by an ADFS server today. I’d used a temporary self signed wildcard cert to get me up and running now I needed to replace it with a new publicly signed one. I found a number of ways of doing this INCORRECTLY, so hopefully I will save you making the same mistakes! Solution Firstly you need to import your certificate, here from a PFX file, (if you want a PFX file import...
Setup Cant Continue PowerShell Has Open Files
KB ID 0001633 Problem While attempting to uninstall Microsoft Exchange server; Setup can’t continue with the uninstall because the powershell (PID) has open files. Close the process, and then restart setup. Solution Seems to be a common error, and is usually caused because someone has the Exchange Web Management page open, (probably in another user session); In some cases you may need to reboot, but in my case I was simply being...
Cisco ASA – Port Forward a ‘Range of Ports’
KB ID 0001111 Note: This is for Cisco ASA 5500, 5500-x, and Cisco Firepower devices running ASA Code. This comes up on forums a lot, some applications and most phone systems require a ‘LOT’ of ports to be open. Normally thats fine you just give the internal IP a static public IP and open the ports. But what if you don’t have a spare public IP? I’ve already covered port forwarding before. Cisco PIX / ASA Port...
Cisco ASA Site To Site VPN IKEv2 “Using CLI”
KB ID 0001429 Problem Note: This is for Cisco ASA 5500, 5500-x, and Cisco Firepower devices running ASA Code. You want a secure IPSEC VPN between two sites using IKEv2. Note: If the device you are connecting to does not support IKEv2 (i.e. it’s not a Cisco ASA, or it’s running code older than 8.4) then you need to go to the older version of this article; Cisco ASA 5500 Site to Site VPN IKEv1 (From CLI) Solution Before you...