Upgrading to Exchange SE
Upgrading to Exchange SE KB ID 0001922 Problem With ‘On-Premises” version of Exchange support coming to an end, anyone wanting to retain a ‘non cloud’ versions of Exchange should be upgrading to Exchange SE. Exchange Version Mainstream End Date Extended End Date Support Status Exchange Server 2013 April 10, 2018 April 11, 2023 End of support Exchange Server 2016 October 13, 2020 October 14, 2025 In extended...
Microsoft Exchange Server Build Numbers
Exchange Server Build Numbers KB ID 0000344 Problem To find out what service pack and rollups have been applied to Microsoft Exchange you need to locate its “Build Number”. 2000/2003 2007 2010 Warning: After SP3 the build number does not update. To find your build number in Exchange 2010 (after SP3,) use the following command; exsetup | %{$_Fileversioninfo} 2019, 2016, and 2013 Find Exchange 2019 / 2016 and 2013 Build...
VMware Workstation – ‘Linked Clones’ from Templates
Linked Clones KB ID 0000953 Problem VMware Workstation, is a great test tool, if i need to take a look at some new software, or plan how I’m going to do a job, and I don’t have access to the ESX server, or test bench, it’s a great tool to have on my laptop. If you build machines form scratch, every time you need one it can take a while. To address that you can create a template and deploy machines from that. To...
SQL SSMS Certificate Error
SSMS Certificate Error KB ID 0001921 Problem While attempting to open Microsoft SQL Server Management Studio (Version 21) I was met with this. Encryption was enabled on this connection, review your SSL and certificate configuration for the target SQL Server, or enable ‘Trust server certificate’ in the connection dialog” Additional Information A connection was successfully established with the server, but then an...
Audit GPO Changes
Audit GPO Changes KB ID 0001920 Problem If you are reading this your either replanning ahead (bravo!) or there’s been an incident that you are concerned about. If that is the case its important to remember that “you cannot audit retrospectively”* *Note: you can find out when GPOs were altered, but not by whom, with some simple PowerShell i.e. Get-GPO -All | Select-Object DisplayName, ModificationTime Group Policies are...
Windows Certificate Services – Setup a CRL
Setup a CRL KB ID 0000957 Problem One of the often-overlooked tasks in a Public Key Infrastructure (PKI) deployment is configuring your Certificate Services Certificate Revocation List (CRL). For smaller deployments with only one server, you don’t need to worry about complex design considerations (though a CRL doesn’t have to be hosted on a Certificate Services server). In my test environment, I have only one PKI server,...
Server 2025 Network Profile Wrong After Reboot
2025 Network Profile KB ID 0001918 Problem If you have a domain controller running Windows server 2025 you may find that after a reboot the network profile changes from Domain to Public. This can cause a myriad of problems. 2025 Network Profile Group Policy Failures Symptoms: Group Policy Objects (GPOs) may fail to apply or update. Reason: The system doesn’t recognize it’s part of a domain, so it won’t retrieve policies from the...
Cisco ASA Domain Authentication and Trust (Allowing)
ASA Domain Authentication KB ID 0000973 Problem I cringed this morning when I was asked about this, last time I had to get a client to authenticate to a domain through a firewall, it was ‘entertaining’. The problem is Windows loves to use RPC, which likes to use random ports, so to make it work you either had to open TCP ports 49152 and 65535 (Yes I’m Serious). Or you had to registry hack all your domain controllers...
Windows Server 2025 Trust Relationship Failures Post-Upgrade
2025 Trust Relationship KB ID 0001917 Problem Following a full upgrade of all domain controllers (DCs) to Windows Server 2025, organisations may experience trust relationship failures between domain-joined workstations and the domain. This issue predominantly affects clients running Windows 10/11 versions up to 23H2. Notably, environments retaining at least one older DC do not encounter this problem. Symptoms Users unable to log in to...
Windows – Firewall Group Policy
Firewall Group Policy KB ID 0000979 Problem For everyone who simply does not disable the Windows firewall, then you need to be able to manage what ports are open on your machines. The simplest way to do this is via firewall group policy. This week I had to open TCP port 9503 on the local firewall of my McAfee Move Offload Servers. Below I will open that port on all my machines, but in production I will only apply the GPO to...