IIS – Cannot Download File From Website (With Extension .xyz)
KB ID 0001223 Problem I first saw this problem a few months ago, when I wasted to download some .bin and .pkg files from a web server running IIS, into a Cisco firewall. Then again this week I needed to get a large .iso file into a clients network so I put it on a publicly accessible web server running IIS, and had the problem again. Solution On the IIS server, open administrative tools > Internet Information Services (IIS)...
The name of the security certificate is invalid or does not match the name of the site
KB ID 0000036 Problem Seen in Outlook when connecting to a mailbox on an Exchange Server, its caused by using a self signed certificate OR a purchased certificate, where the internal and external names are different. The name of the security certificate is invalid or does not match the name of the site. Solution Before proceeding if you have an A or CNAME record in your DNS for autodiscover then DELETE it and setup an SRV record!...
Exchange 2016 Install Error ‘Skipping creating Discovery Arbitration Mailbox because of insufficient permission”
KB ID 0001221 Problem Note: Can also be seen on Exchange 2013. While installing a new Exchange 2016 Server into a clients Exchange 2010 infrastructure last week, the setup failed with the following error. A cutdown version of the error; Write-ExchangeSetupLog -Info (“Cannot find E-discovery arbitration mailbox with name=$name.”); } } else { write-exchangesetuplog -info “Skipping creating Discovery Arbitration...
Microsoft Azure To Cisco ISR Router Site to Site VPN
KB ID 0001220 Problem Last week I was having problems getting a VPN up from a client’s Cisco ASA into Azure. This was because the Azure estate was using ‘route-based’ or a ‘dynamic routing VPN’. See the following article; Azure to Cisco VPN – ‘Failed to allocate PSH from platform’ So the firewall was a non-starter, but Cisco ISR routers are supported, and they can handle virtual tunnel interfaces...
Azure to Cisco VPN – ‘Failed to allocate PSH from platform’
KB ID 0001219 Problem It’s been a week for strange VPN shenanigans with Cisco and Azure. I was liaising with an Azure service provider for a customer this week, and trying to get a VPN up from a Cisco ASA in one of our data centres in the UK. This is what we were seeing; And I could see the same error in the debugs; Decrypted packet:Data: 616 bytes IKEv2-PROTO-1: Failed to allocate PSH from platform IKEv2-PROTO-1: IKEv2-PROTO-5:...
Cisco ASA IKEv2 – ‘Failed To Allocate Memory’
KB ID 0001218 Problem This week I was trying to get a VPN tunnel up for a client. They wanted a tunnel from their Cisco ASA into Microsoft Azure. Normally I’d use IKEv1 (because I know how to troubleshoot it!) But the guys running the site in Azure were using policy routing, which needs IKEv2. So I converted from IKEv2 to IKEv2. As I said I’m used to debugging IKEv1, but not IKEv2, so I was struggling to make sense of...
Group Policy To Throttle Network Speed via QoS
KB ID 0001217 Problem Why would you want to do this? Well what if you want to test slow link group policy processing, or you are testing BranchCache? Using Group policy you can ‘throttle’ traffic to and from a particular IP address. Below I will pick a domain client on 192.168.110.120, and throttle all traffic between that client, and the domain controller to be 100kbps. Solution As I sad above I’m throttling...
PowerShell – Updating Users Email Addresses In Active Directory
KB ID 0001216 Problem Note: I’m referring to the Email address value that is listed on the user object in Active Directory, this will not effect any Exchange Settings! A colleague asked me today if I had any PowerShell to update ALL the users in a clients AD, to match their UPN to their Email addresses. A quick internet search turned up loads of handy scripts to update the UPN to mach the email address, but not the way round he...
Remote Desktop Web – Session Timeouts (Altering)
KB ID 0001215 Problem Timeouts for the RDWeb portal are defined by the choice you made when you logged in, if you selected ‘private’ or ‘public’ on the PC options, this sets the timeout. The default is 240 mins for private, and 20 minutes for public connections. Solution To alter these values you need to make changes in the ‘Internet Information Services Management Console’ on the RDWeb server....
Hyper-V Ceate and Deploy Machine Templates (Without VMM)
KB ID 0001214 Problem Last week, myself and a few of my colleagues had to deploy a LOT of servers into Hyper-V. The client did not have System Center Virtual Machine Manager, so the process of creating and deploying a machine from a template is a little more convoluted Solution Here I’m deploying Windows Server 2012 Datacenter, but we repeated the process for Oracle Linux (Red Hat,) and, with the exception of sysprep, the...