GIMP Removing Colour From an Image
GIMP Removing Colour KB ID 0001798 Problem I have to do this frequently, usually to put company logos into Visio/Omnigraffle drawings. To be honest I normally forget how to do it, and then have to Google the steps, and tell myself I really should document the procedure for next time. Well I’ve finally got round to it. GIMP Removing Colour Here I need to remove all the ‘white’ from this FortiClient logo (used in the...
FortiClient Azure Authentication
FortiClient Azure KB ID 0001797 Problem More and more people are using Azure as their primary identity provider, thanks in no small part to the massive success of Office/Windows 365. So if you want to provide a FortiGate/FortiClient SSL remote access VPN solution then securing it via Azure makes a lot of sense. Multi Factor Authentication: If you have MFA on your Azure accounts then that’s a big box ticked for your...
FortiGate DNS: Serving DNS Databases
Fortigate DNS KB ID 0001796 Problem A colleague rang to ask if I had any thoughts about a problem that they were having, we do a lot of VMware VCSA upgrades for customers, the process fails if there is no DNS resolution of the FQDN during the upgrade process. We had tried to fix the problem by creating hosts records (typically we don’t have access to the client’s DNS servers that run in the virtual environment). I had...
FortiClient SSL VPN Error
VPN Error KB ID 0001795 Problem I have a FortiGate/FortiClient test bench setup for testing, and its to been used for a while. When I attempted to use it this happened; Unable to logon to the server. Your username or password may not be configured properly for this connection. (-12) While messing around trying to fix it I also got this error; Unable to establish the VPN connection. The VPN server may be unreachable. (-14) Disclaimer:...
FortiGate FSSO AD Groups not Appearing?
FSSO KB ID 0001794 Problem While recently needing to add a new AD group to my firewalls FSSO setup, (to be used in a policy.) The new group could not bee seen (it’s called GS-Web-Block-Override). FSSO Force Sync The common fix for this is to create a filter on your FSSO agent server, that will ONLY look of the groups you specify like so. However, in my case that didn’t work either! I spent ages trawling Forti pages and...
What is a Container?
Container KB ID 0001793 Problem Google containers and the net is full of people with whiteboards talking at a very low level about containers. They also appear to be largely developer and dev ops related, (which is understandable), but if you simply want to understand the concept of what a container is, then that’s a lot of YouTube watching to pick out some basic concepts. Particularly if you’re an IT pro, Engineer, or a...
DC Promotion fails ‘FRS is Depreciated’
FRS is Depreciated KB ID 0001579 Problem Error seen when attempting to add a new domain controller to an existing domain; Verification of replica failed. The specified domain {Domain-Name} is still using the File Replication Service (FRS) to replicate the SYSVOL share. FRS is depreciated. The server being promoted does not support FRS and cannot be promoted as a replica into the specified domain. You MUST migrate the specified domain...
Migrate DHCP Scope(s)
Migrate DHCP KB ID 0001792 Problem If you have a lot of DHCP scopes, options, or reservations, then manually creating them on your new DHCP servers can be a both a time consuming and tedious process. If only there was an easier way? Migrate DHCP with Netsh Below you can see an example, where I have many scopes and lot’s of settings that would be painful to have to recreate from scratch. This example is on Server 2008 R2,but...
FortiGate Certificate Import Errors
FortiGate Certificate KB ID 0001791 Problem A colleague messaged me last week because he could not import a certificate on a FortiGate (that had been exported from a Cisco ASA). He was seeing this error; Incorrect certificate file format for CA/LOCAL/CRL/REMOTE cert. FortiGate Certificate Problems A brief Google led me to ask “Is the FortGate licensed or on a Free/Trial license?” As that can produce this error...
Migrate From Server 2012 to Server 2022 Domain Controllers
Server 2012 DC to Server 2022 DC KB ID 0001790 Problem I get asked about this quite a lot. In the past most of the queries were about moving from Server 2008 to Server 2022, if that’s what you are after then simply go here. This article is purely for the introduction of, and migration to Windows Server 2022 Domain Controllers. And it assumes your current domain controllers are Windows server 2012 (or 2012 R2). Adding a Server...