Disabling IPv6
Disabling IPv6 KB ID 0001832 Problem Stop! Why do you want to disable IPv6? I see this regularly in forums, with other unusual statements like “If you’re not using it disabling it” or “It’s just another attack vector, disable it.” Well unless you’re running Windows XP and Server 2012 you’re using IPv6. If something does not work and disabling IPv6 fixes it, then it’s usually...
Windows Remote VPN no DNS
VPN no DNS KB ID 0001402 Problem I’ve been setting up a VPN solution on the test bench as I’m looking at Always On VPN. When I noticed that I had a problem with my remote VPN connections on Windows. They would connect fine but I could not resolve any FQDNs for my domain? VPN no DNS Solution By default, all (Windows) VPN connections are ‘Force Tunnel’ (this means they have the option ‘Use default gateway...
Manually Update Windows Trusted Root Certificates
Manually Update Windows Trusted Root Certificates KB ID 0001831 Problem These days your trusted root certificates are simply updated with Windows Update, but what if your servers have no internet access? In this example I will manually update the root certs by downloading them on a machine WITH internet access then importing on another machine that has not. Bear in mind: If none of your machines have internet access they cannot check...
Windows LAPS
Windows LAPS KB ID 0001822 Problem We used to have Microsoft LAPS, now we have Windows LAPS! LAPS is a solution that lets’ you store admin passwords ‘elsewhere’ be that in your local Active Directory or Azure Active Directory*. Unlike previously, where you had to deploy/install client software, it’s now built into Windows from the following versions. Windows 11 22H2 – April 11 2023 Update Windows 11 21H2...
OneDrive GPO (Domain Group Policy)
OneDrive GPO KB ID 0001821 Problem The administrative template that you get with Win11 is somewhat out of date, so if you want to manage OneDrive with domain group policy your options are limited, if only there was a newer administrative template! Well, there is, and it gets updated and sent to you quite regularly. Microsoft just do a good job of hiding it. Solution OneDrive GPO Depending on your deployment the files you need can be...
Microsoft Edge Multiple Statup Pages (via GPO)
Microsoft Edge KB ID 0001818 Problem Controlling Microsoft Edge with Group Policy is pretty straight forward, you just need to ensure the msedge.admx and msedgeupdates.admx files have been added to your policy definitions store in the right folders. If you have no idea what I’m talking about, see the following article. Microsoft Edge on Server 2019/2016 (and Citrix) Then you can deploy group policies to your...
Windows: Cisco ASDM ‘This app can’t run on your PC’
‘This app can’t run on your PC’ KB ID 0001574 Problem Whys isn’t Java dead yet? 🙁 Anyway, I tried to connect to a clients ASDM today, and from my Windows 10 machine, I got the following error; Windows 11 Windows 10 This app can’t run on your PC To find a version for your PC, check with the software publisher. ‘This app can’t run on your PC’ Solution Make sure you have installed Java...
Force Remove FortiClient
Remove FortiClient KB ID 0001804 Problem I don’t know if its’ just bad coding, or an attempt at security, but the fact that the ‘uninstall’ option is missing from add remove programs for the FortiClient is a bit annoying. Remove FortiClient Solution While attempting to remedy this I came across the following command, which is supposed to remove the client software, which it did NOT do, but it did give me the...
Windows Update Error 80072EFE
80072EFE Error KB ID 0001801 Problem Seen on versions of Windows built from ‘older’ versions of the install media, when attempting to check for updates you may see. Error(s) food: Code 80072EFE Windows update ran into a problem 80072EFE Update Error Resolution At first (because it was a newly build machine.) I thought the problem was incorrect Time zone, Time, or Locale. But thats NOT the problem, you’re stuck in a...
Windows 11: Enable Ransomware Protection
KB ID 0001774 Problem You can enable Ransomware protection to files and folders within Windows 11, (this assumes you have access to OneDrive). Locate and Enable Ransomware Protection Windows Button > Settings. Search for “Windows Security”. Virus & Threat Protection (If yours is not selectable see the video (above). Locate Ransomware Protection. Switch to ‘On’. Yes. To se the folders currently being...