What is a Container?
Container KB ID 0001793 Problem Google containers and the net is full of people with whiteboards talking at a very low level about containers. They also appear to be largely developer and dev ops related, (which is understandable), but if you simply want to understand the concept of what a container is, then that’s a lot of YouTube watching to pick out some basic concepts. Particularly if you’re an IT pro, Engineer, or a...
DC Promotion fails ‘FRS is Depreciated’
FRS is Depreciated KB ID 0001579 Problem Error seen when attempting to add a new domain controller to an existing domain; Verification of replica failed. The specified domain {Domain-Name} is still using the File Replication Service (FRS) to replicate the SYSVOL share. FRS is depreciated. The server being promoted does not support FRS and cannot be promoted as a replica into the specified domain. You MUST migrate the specified domain...
Migrate DHCP Scope(s)
Migrate DHCP KB ID 0001792 Problem If you have a lot of DHCP scopes, options, or reservations, then manually creating them on your new DHCP servers can be a both a time consuming and tedious process. If only there was an easier way? Migrate DHCP with Netsh Below you can see an example, where I have many scopes and lot’s of settings that would be painful to have to recreate from scratch. This example is on Server 2008 R2,but...
FortiGate Certificate Import Errors
FortiGate Certificate KB ID 0001791 Problem A colleague messaged me last week because he could not import a certificate on a FortiGate (that had been exported from a Cisco ASA). He was seeing this error; Incorrect certificate file format for CA/LOCAL/CRL/REMOTE cert. FortiGate Certificate Problems A brief Google led me to ask “Is the FortGate licensed or on a Free/Trial license?” As that can produce this error...
Migrate From Server 2012 to Server 2022 Domain Controllers
Server 2012 DC to Server 2022 DC KB ID 0001790 Problem I get asked about this quite a lot. In the past most of the queries were about moving from Server 2008 to Server 2022, if that’s what you are after then simply go here. This article is purely for the introduction of, and migration to Windows Server 2022 Domain Controllers. And it assumes your current domain controllers are Windows server 2012 (or 2012 R2). Adding a Server...
Completely Remove Teams From macOS
Remove Teams KB ID 0001789 Problem I started to notice the performance in my Microsoft Teams was getting ‘very sketchy’, this week while in the office a colleague on the same teams call as myself told me my speech in the call was lagging about 10 seconds behind my actual speech! So I thought I’d remove and reinstall MS Teams, Uninstalling the application is simple as peas! But I wanted to remove EVERYTHING to give...
Windows – Certificate Enrollment Fails
KB ID 0000921 Problem I first saw this problem a few years ago trying to get some Windows clients to auto enrol with server 2008, then this week my colleagues could not get new 2019 Domain Controller to enrol for a Kerberos certificate, and the this was caused by the same problem. Symtoms (RPC Error) 1. Test to make sure the client can see the CA, and is able to communicate with it, issue the following command; certutil -pulse As...
FortiGate TFTP : Backup To & Restore From
FortiGate TFTP KB ID 0001788 Problem I know FortiGate prides itself on being able to do everything from the GUI, but if you can only get in at CLI and need to take a backup then you need to go old school. Recently I had an HA Pair of Fortis, the primary had broken and I could not get access to the GUI on the standby. My plan was to get a backup, blow both (virtual Firewalls) away, deploy two new ones, and restore the config. What...
FortiGate Web Filtering Setup and Deployment
FortiGate Web Filtering KB ID 0001787 Problem In all honesty, enabling Web Filtering on your FortiGate really could not be simpler, you can simply enable it on your default users outbound policy, and select one of the three ‘pre-canned’ profiles, job done! But most companies not only want to filter their web traffic they want to see who is getting blocked, and what are users trying to get access to. Most businesses now...
FSSO FortiGate Single Sign On
FSSO KB ID 0001786 If you are applying polices with your FortiGate, e.g. Web Filtering or IPS, then the ability to track actual users rather than IP addresses is advantageous, it’s all very well blocking access to adult material or gambling sites, from the corporate network, but most companies want to know WHO is attempting to connect to what and when. To do that the firewall needs to learn what users are where, we can make...