WannaCry – Protect Yourself
KB ID 0001311 Problem Last Friday, the IT world was hit by another attack, WannaCry is a Ransomware infection, that exploits a hole in the windows SMB Protocol. This hole was patched back in March, (Security update MS17-010) so if your, (windows update supported systems) have updates enabled, you will probably already be protected. Why were big organisations like the NHS hit? Primarily because they have systems that are no longer...
ADMT (Active Directory Migration Tool) Domain Migration – Part 2
KB ID 0001306 Problem Back in Part One we setup our migration admin account, and installed ADMT. Now, as I’m going to migrate the users passwords I need a ‘Password Export Server’, but first I need to tackle the subject of user SIDs Solution Domain Migrations and SID Filtering Every user has a SID (Security Identifier) it’s the thing AD uses to refer to and apply security to users, (and other objects). This...
Robocopy – File Server Migration
KB ID 0001233 Problem I’ve done a lot of migrations, and moving a client’s files and shared data, usually makes them cringe. I’ve lost count of the amount of times I’ve heard ‘We can’t have any downtime’, which is fine, until you tell them how much its going to cost to do this on a Saturday! As I posted recently, Microsoft have made this a lot easier with the file serve migration tools,...
IIS – Cannot Download File From Website (With Extension .xyz)
KB ID 0001223 Problem I first saw this problem a few months ago, when I wasted to download some .bin and .pkg files from a web server running IIS, into a Cisco firewall. Then again this week I needed to get a large .iso file into a clients network so I put it on a publicly accessible web server running IIS, and had the problem again. Solution On the IIS server, open administrative tools > Internet Information Services (IIS)...
Microsoft – NDES Site Shows ‘HTTP Error 500.0 – Internal Server Error’
KB ID 0001181 Problem I was doing some testing for a client this week, a while ago I had deployed a three tier PKI solution for them, and as part of the rollout we deployed NDES for their network devices, (they were going to use certificates to secure site to site VPNs). The client was concerned, and wanted the auto renewal process testing. This could not be done on the live system. So myself and a colleague went to the test bench, I...
Windows Server – Change a DHCP Scopes Subnet Mask
KB ID 0001177 Problem You have probably tried to do this and found he option ‘greyed out’ because in the DHCP management console you can’t change the subnet mask of a scope. I needed to change a clients DHCP scope because I was changing their subnet from /24 to /16. I could have simply deleted and recreated the scope, but they has a lot of custom settings for their phone system, and hundreds of reservations (which...
Event ID 1030 and 1058
Event ID 1030 KB ID 0000119 Problem Event ID 1030 and 1058, Windows cannot query for the list of Group Policy objects. A message that describes the reason for this was previously logged by the policy engine. and Windows cannot access the file gpt.ini for GPO CN={31B2F340-016D-11D2-945F-00C04FB984F9},CN=Policies,CN=System,DC=<domain name>,DC=com. The file must be present at the location <<domain name>sysvol<domain...
Windows – ‘Telnet’ is not recognized as an internal or external command
KB ID 0000455 Problem Telnet client from Windows, and have it as an “Optional Extra”. For most people that’s fine, but for anyone who programs network devices, or needs to test that ports are open, or test mail flow by telnet to port 25, that’s a pain. Solution Enabling Telnet – Windows 10 1. From PowerShell execute the following command; dism /online /Enable-Feature /FeatureName:TelnetClient Enabling...
Windows Server – DHCP Service Starts then Stops again
KB ID 0000617 Problem Saw this last week on an SBS 2011 Server. When attempting to get the DHCP service running it span up then stopped straight away. Solution A quick look in Event Viewer showed me what the problem was, Event ID 1054 The DHCP/BINL service on this computer is shutting down. See the previous event log messages for reasons Fair enough lets see the previous error on the same server; Event ID 1053 The DHCP/BINL service...
Windows – Setting Up Split DNS
KB ID 0000830 Problem Setting up split DNS is something I usually do if I’m setting up a new Microsoft Exchange Server. Primarily this is because of certificates that are used on the Exchange Server like so; Now, as anyone who has purchased a Universal Comms/SAN (Subject Alternative Name) certificate will know that you can put the internal name of the server on the certificate as well e.g. ex1.abc.local. Well that’s fine,...