Windows 10 Create a WMI Filter for Group Policy
KB ID 0001267 Problem I was messing around with some GPO’s for client today to replace ‘Edge’ as the default browser, (with IE11). To make the whole process more efficient, I wanted to use a WMI filter toapply the policy only to Windows 10 machines. Before this used to be simple enough, you just set the Windows version in a WMI query. But because it searches for a string e.g. 6.1 (for Windows 8.1), that’s...
Move AD Group Members to an OU
KB ID 0001266 Problem I got asked to do this at work this week, PLEASE BE AWARE, moving users about within AD may drastically change the way your ‘User Group Policies’ are being applied. So do some Group Policy Modelling beforehand, to avoid any problems. Solution In the example above, I’ve got ten users in a security group called ‘Source-Group’. For simplicity, they are all in the same source OU as well,...
Upgrade vSphere vCenter Appliance to Version 6.5
KB ID 0001265 Problem Here I’m upgrading from version 6.0 to 6.5, the process creates a new vCenter appliance, then migrates all your settings into it, finally it then shuts down the old appliance and brings up the new one. Note: This procedure is ‘non-invasive’ i.e. it does not affect your production VMs, a vSphere environment can run for about 60 days without it’s vCenter, all that you would lose is the...
Microsoft Office for Mac – Favorites Missing
KB ID 0001264 Problem Whenever Office needs updating on my Mac I just hit OK and let it do its own thing. I did that this morning, and went and got a coffee. It was a while later that I noticed that when I needed to add an attachment to an email I got this; Now that might look fine, but in the left hand pane ‘Favourites’ is missing, it should look like this; If I opened launcher it was fine, it was only from Microsoft...
Deploy Cisco FirePOWER Management Center (Appliance)
KB ID 0001263 Problem You have been able to manage your firewalls Internal SFR module for while using the ASDM Setup FirePOWER Services (for ASDM) For most people that’s fine, but if you have a lot of FirePOWER devices to manage that does not scale well. In those cases you should use theFMC (FirePOWER Management Center). Here ‘Im going to use the Vmware virtual appliance, (at time of writing there is no Hyper-V version)....
Cisco ASA – Remote IPSEC VPN With the NCP Entry Client
KB ID 0001260 Problem I’ve covered Cisco IPSEC Remote VPNs a long time ago, and I’ve also blogged about the Cisco IPSEC VPN Client Software. Yes you can get the Cisco VPN Client Working on Windows 10, but can you imagine rolling that out to a few hundred users? The bottom line is Remote Cisco IPSEC VPN is a dead technology, Cisco, (and Me!) want you to use AnyConnect. For a couple of users you can use the work arounds...
Cisco SFR Session – Cannot Exit To Command Line
KB ID 0001259 Problem This tripped me up once before, and I didn’t document it! Normally if you have a console session open with your FirePOWER Module, (that you opened with a ‘session sfr’ command), then you can just quit, and exit back to the firewall by typing ‘exit’, like so; ciscoasa# session sfr Opening command session with module sfr. Connected to module sfr. Escape character sequence is...
Cisco IOS – How To Find VLAN IPs (SVI’s)
KB ID 0001258 Problem If you have a complicated network, you can spend more time finding out how it’s configured, than actually doing any work on it! Today I had a client that needed some changes made on their LAN, I knew their name, and their network address, and common sense told me which of the core switches they were connected to. Solution A quick search on the client name told me what VRF they were in, and what VLAN they...
Windows Server – Locating, Transferring, and Seizing FSMO Roles
FSMO Roles KB ID 0001257 Problem I’ve written about transferring and sizing FSMO roles, (Flexible Single Master Operations) before, see the following article; Transferring Your FSMO Roles Now you have a PowerShell Commandlet to help ‘Move-ADDirectoryServerOperationMasterRole’. FSMO Roles : Solution As before you can view your FSMO role holders, by using the following command. netdom query fsmo To transfer them to...
Cisco AnyConnect – With Google Authenticator 2 Factor Authentication
KB ID 0001256 Problem This was asked as a question on Experts Exchange this week, and it got my interest. A quick search turned up a bunch of posts that said, yes this is possible, and you deploy it with FreeRADIUS and it works great. The problem was, a lot of the information is a little out of date, and some of it is ‘wrong enough’ to make the non-technical types give up. But I persevered, and got it to work. Disclaimer:...