Auto Update ADMX Files
Auto Update ADMX KB ID 0001824 Problem It’s been a long time since I ran through setting up a central policy definitiosn store. In that time, you’ve probably had to copy ADMX (and ADML) files into your central store manually. Microsoft updates typically DO download updates but puts them (usually) in C:\Windows\PolicyDefinitions, There’s probably a sensible reason for that. When someone cleverer than I has scripted...
451 4.7.0 Temporary Server Error
451 4.7.0 KB ID 0001823 Problem If you attempt to connect to and send mail via command line to your Exchange Server, you may see the following error after you end the data section of the operation. 451 4.7.0 Temporary server error. Please try again later. PRX5 Solution 451 4.7.1 Error Log into Exchange Amin Center > Mail Flow > Receive Connectors > Default Frontend {Server-Name} > Edit > Scope > Select the IPV4 entry...
Windows LAPS
Windows LAPS KB ID 0001822 Problem We used to have Microsoft LAPS, now we have Windows LAPS! LAPS is a solution that lets’ you store admin passwords ‘elsewhere’ be that in your local Active Directory or Azure Active Directory*. Unlike previously, where you had to deploy/install client software, it’s now built into Windows from the following versions. Windows 11 22H2 – April 11 2023 Update Windows 11 21H2...
OneDrive GPO (Domain Group Policy)
OneDrive GPO KB ID 0001821 Problem The administrative template that you get with Win11 is somewhat out of date, so if you want to manage OneDrive with domain group policy your options are limited, if only there was a newer administrative template! Well, there is, and it gets updated and sent to you quite regularly. Microsoft just do a good job of hiding it. Solution OneDrive GPO Depending on your deployment the files you need can be...
UnifiedContent Folder ‘Growing’
UnifiedContent KB ID 0001820 Problem If you have a vanilla install of Exchange, it will clean up the UnifiedContent folder on a four hourly schedule. the problem occurs if you have moved your Exchanges ‘Queue” directory. This will also relocate the UnifiedContent folder, but then Exchange, will still try (and fail) to tidy it up in the original location, (because it’s not there anymore!) Typically, you will see your...
Restore the Windows 11 Right Click Menu
Windows 11 Right Click KB ID 0001819 Problem The first time I saw this I thought “Where’s cut/copy/paste gone?”. But more annoyingly ‘Send To” is also not on the initial menu! Solution: Restore Windows 11 Right Click Open an Administrative PowerShell window. Issue the following three commands. (New-Item ‘HKCU:\Software\Classes\CLSID\{86ca1aa0-34aa-4e8b-a509-50c905bae2a2}\InprocServer32’...
Microsoft Edge Multiple Statup Pages (via GPO)
Microsoft Edge KB ID 0001818 Problem Controlling Microsoft Edge with Group Policy is pretty straight forward, you just need to ensure the msedge.admx and msedgeupdates.admx files have been added to your policy definitions store in the right folders. If you have no idea what I’m talking about, see the following article. Microsoft Edge on Server 2019/2016 (and Citrix) Then you can deploy group policies to your...
NameSpace ‘Microsoft.Policies.WindowsStore’ Error
Microsoft.Policies.WindowsStore KB ID 0001817 Problem While working in the Group Policy Management tool, upon expanding administrative templates I got this error. Namespace ‘Microsoft.Policies.WindowsStore’ is already defined as the target namespace for another file in the store. Solution: Microsoft.Policies.WindowsStore Error This is because in your policy definitions there are two (four actually) files that are pointing...
Disable LLMNR and NetBIOS (via GPO)
Disable LLMNR and NetBIOS KB ID 0001816 Problem LLMNR is a protocol that’s used both in IPv4 and IPv6 networks to provide name resolution (in the absense of DNS), the problem with it is that it is wide open to exploitation and can be used to perform a MITM attack on your network. NetBIOS is much older and asscociated with IPv4 networks only. Really old Microsoft OSs used to rely on it heavily, but these days its pretty much...
Restore AD Objects
Restore AD Objects KB ID 0000096 Problem Ever since we had Server 2008 R2 we have had the AD recycle bin (which is not enabled by default). Even if you have not enabled the AD Recycle bin, when objects are deleted from AD they are not completely ‘deleted’ they are simply tombstoned, and they can be restored (for 180 days). Note: Those object’s when restored WILL lose some of their attributes though! CAN I RESTORE AD...