Group Policy: Item-Level Targeting
Feb08

Group Policy: Item-Level Targeting

KB ID 0001654 Problem Yesterday I wrote a post about Deploying a ‘Mapped’ Drive to a couple of users using Group Policy. This received a comment that was basically ‘Why not simply use Client Targeting?’ To be fair that’s a good point, I was using a Group Policy Preference and they can be specifically targeted. So here’s how to do that. Solution If you do not already have one, create a group for your...

Read More
Apply Group Policy To a Security Group
Feb07

Apply Group Policy To a Security Group

KB ID 0001653 Problem On EE this morning someone asked how to map a drive to only two users, so that wherever they logged in, they got their mapped drive. Seemed like a good Idea for a post so here you go; Solution If you do not already have one, create a group for your users. Add the users, (as appropriate). On a Domain Controller > Administrative Groups > Locate the OU that contains your users (Note: if your users are in...

Read More
Outlook: ADFS Error 0xCAA70010
Feb06

Outlook: ADFS Error 0xCAA70010

KB ID 0001652 Problem While trying to connect Outlook (2016) to an Office 365 email account; We can’t connect you It looks like we can’t connect you to one of our services the moment. Please try again later, or contact your helpdesk if the issue persists. 0xCAA70010 {ADFS-URL} Solution This was happening because my ADFS server was using a ‘self-signed’ certificate (i.e. not a purchased one). This should NEVER...

Read More
DHCP Scope: Full of BAD_ADDRESS Entries
Feb05

DHCP Scope: Full of BAD_ADDRESS Entries

KB ID 0001651 Problem I had a client machine struggling to get an DHCP address, and when I looked in DHCP the scope it was full of this; BAD_ADDRESS This address Is Already in Use Solution A tour of Google and forums is full of posts by people with this problem, and other than, ‘Oh I looked in the logs and fixed it’ (with no mention of what log, or where this log was), or ‘Yeah I used Wireshark and located a problem...

Read More
AnyConnect: Enable Duo 2Factor Authentication
Feb04

AnyConnect: Enable Duo 2Factor Authentication

KB ID 0001650 Problem I was asked if I’d ever set this up the other week. Surprisingly I had not, I’d deployed Duo for other things, but not for Cisco AnyConnect. As I had some other ‘Duo’ related tasks coming up, I was deploying it on the test bench, then adding in my Cisco ASA and AnyConnect wasn’t much more work! Here’s my topology; My ASA is running version 9.1 My Duo Authentication Proxy is...

Read More
Unable to Connect to the Synchronisation Service
Feb04

Unable to Connect to the Synchronisation Service

KB ID 0001649 Problem I’m doing some work for a client that has Azure AD Sync running, and we keep kicking each other off the server, so I thought I’d login with another account. However, when I tried to open the Synchronisation Service Manager; Unable to connect to the Synchronisation Service Some possible reasons are: 1) The service is not started. 2) Your account is not a member of the requires security group. See the...

Read More