tag:blogger.com,1999:blog-46282136074975187362024-03-19T15:00:08.730-05:00From the Trenches writings from a new IT technician in the biz Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.comBlogger64125tag:blogger.com,1999:blog-4628213607497518736.post-265069374914394272013-10-17T08:56:00.000-05:002013-10-24T08:59:34.800-05:00Internet Explorer has stopped working after closing tab or window and how to open IE maximized Recently, I worked on the following two problems on a Vista machine with a recently updated Internet Explorer browser (from 8 to 9) that had two problems. One, when closing a tab or the Internet Explorer 9 window I would get the following popup message: Internet Explorer has stopped working. That wasn't an intermittent problem. It happened every single time a tab or the window closed. I couldn't blame the user for being annoyed by this. The other problem was when he clicked on the IE shortcut in the taskbar or on the desktop, IE would open in a tiny rectangle box instead of opening maximized. <br />
<br />
First, how to fix the "internet explorer has stopped working" error. <br />
<br />
Open Internet Explorer. Then click on the gear icon in the top right window to make the Tools menu appear. Then
click on <b>internet options</b> to bring up the internet options menu. Click on the
<b>advanced </b>tab and check the box under "<b>accelerated graphics</b>" called "use software
rendering…" Make sure that is checked then click OK and reboot. After the reboot Internet Explorer worked correctly.<br />
<br />
While the above solution worked for my situation, it doesn't fix every situation. You may have an IE startup process that is causing the problem too. In the past I've used <a href="http://technet.microsoft.com/en-us/sysinternals/bb963902.aspx" target="_blank">autoruns</a>, a handy tool, to find those nasty processes in IE startup and delete them, fixing not only the error after closing IE but also improving overall IE performance. Installing toolbars, addons, etc. often cripples your web browser's performance and can cause weird problems like the error message we focused on in this post. <br />
<br />
Now about the "maximize when opened" solution. There are different solutions for this problem. What worked for this situation I'll offer then I'll follow that with some other possible solutions.
Open Internet Explorer and size the window to your liking. Then hold down the ctrl key while clicking the red “x” to close the program. This will set the
IE window to open at this setting every time. To makes sure other links
and such open the same way dick on the gear icon like you did earlier, click <b>internet options</b>,click
"<b>tabs</b>", then select "<b>always
open pop-ups in a new tab</b>." Click OK once then one more time in the previous window. I will also say this worked on a Vista machine. I don't know if that makes a difference or not. I do know this next method worked on Windows 7 machines but didn't work on this Vista machine. It's very simple. Open Internet Explorer then click and drag the window to the top of the monitor. It will be maximized. Close it then reopen it and the window should open maximized. That solution worked on a few Windows 7 machines in the past.<br />
<br />
There's one more I'll detail below.
Go the the desktop and right click on the desktop, click <b>new</b>, then <b>shortcut</b>. Create a short cut to "Program Files/Internet Explorer/iexplore.exe" Right click on the short cut and then select <b>Properties</b>. Click on the tab "Shortcut" and then change the value in the run command to "maximized". Click apply then OK. Now Internet Explorer will open in the maximized state when you click on any short cut to iexplore.exe.<br />
<br />
So there you have it! If you have any questions comment below. Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com0tag:blogger.com,1999:blog-4628213607497518736.post-19447276233196109082013-10-11T15:52:00.003-05:002013-10-11T15:53:36.711-05:00How to restore Windows 7 default "desktop" folder Here is a quick tip on fixing the path for your desktop folder when the easy method of right-click > Properties > Location doesn't work. <br />
<br />
Go into the <b>Registry Editor</b> (Start > search > regedit). When Registry Editor opens go to <b>HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\User Shell Folders </b><br />
<br />Over on the right you should see <b>"Desktop."</b> Double-click the "Desktop" entry. A window will open displaying the value "Desktop" and <b>"Value Data"</b> (the path to the desktop folder). Now, if you want to put in the correct path (C:\Users\Username\Desktop) for your desktop folder or your desired path this is where you would input it then log out and log back in for the setting to take effect. Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com0tag:blogger.com,1999:blog-4628213607497518736.post-83033457053735432972013-10-09T09:39:00.000-05:002013-10-09T15:33:38.180-05:00Keep IT simple - Use RDWeb instead of Site-to-Site VPN So you have a couple of users moving from the main office to a new office (say they're moving to the public works garage) that is located miles away from the main office. These users need to still be able to use the business application but don't need anything else from the business network and security isn't a high concern. At the remote office the two users will need basic internet, ability to print, and have access to the business application; nothing else is needed. What do you do? Do you buy an expensive firewall to build a site-to-site vpn connection to the main office? Or, since you already have <a href="http://technet.microsoft.com/en-us/library/cc731923.aspx" target="_blank">RDWeb</a> implemented for remote use of applications, do you use RDWeb? The cheapest and most efficient solution would be to go with RDWeb. If you're not familiar with RDWeb, I suggest you do some <a href="http://technet.microsoft.com/en-us/library/cc731923.aspx" target="_blank">reading on it</a>, but for now know that RDWeb is a feature of Windows Server that builds a portal to essential applications and remote desktop access your employees need either remotely or locally.<br />
<br />
Why do I say use RDWeb instead of the VPN connection? Well because RDWeb is simpler. What you can do is give the two users computers with encrypted hard drives, a solid anti-malware solution (I suggest malwarebytes PRO along with Microsoft Security Essentials\Defender and then have OpenDNS at the border), and decent internet bandwidth to give them a great working environment. RDWeb will provide access (securely) to the work application(s) and they can use it almost 99% the way they used it before at the main office. For situations like this, RDWeb trumps the other method of site-to-site VPN because it requires less setup, equipment, and time. <br />
<br />
I know for other situations where high-security is a primary concern, file shares are needed, printers are manged from the main network, etc. RDWeb may not be the ideal choice but for a situation like the one described above where the two users just need access to the business application(s) then RDWeb is the clear winner I think. It was the winner at work. The situation described above is a real-world scenario. My work will have a new public works garage and two of our users will be leaving the main office to work out at the new garage. We already have RDWeb in place for remote users so the two users will access the business application through our portal.<br />
<br />
One of the things to keep in my mind with any project, especially IT projects, is to keep the solution simple. Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com0tag:blogger.com,1999:blog-4628213607497518736.post-16389587332229842602013-09-25T09:30:00.000-05:002013-09-25T09:30:45.179-05:00Don't be scared of virtualizationOccasionally I talk with an IT guy who is scared to death of virtualization. Why the fear? Well the typical answer I get is that "it's complicated" or "expensive" or "I have no experience with it; going forward with it would be risky." If you're a virtualization tech of any stripe you'll know these worries can be easily erased. My own work experience with Hyper-V is a great answer to these techs who are scared (no offense) of virtualization. Why do I say don't be scared? I say don't be scared of virtualization because 1) you have no reason to be and 2) virtualization is super helpful for the most ordinary of IT projects. <br />
<br />
At work we needed to implement Server 2008 R2's RDWeb services to enable our work application to be available to users who are away from our main office and for users who needed to access the application when they're sick, on vacation, etc. When the concern was approached to me, I immediately thought of R2's RDWeb services and pitched the idea to a group of people who were <b>not</b> interested in buying a new server. They assumed to use the RDWeb service we would need to purchase new hardware and that just wasn't going to happen (I work for local government and money is tight!). I told them they didn't have to worry about purchasing new hardware because of <b>Hyper-V</b>! We were limited to the 2008 version of Hyper-V, so we aren't able to use features like dynamic memory and bandwidth management but the point I made to them and want to make here is that even 2008's Hyper-V can make the simplest of IT projects, e.g. rolling out RDWeb, even simpler and much, much cheaper than going with new hardware. The only purchase made was five Remote Desktop Services CALs! The rest of the project requirements were already owned by us which was awesome. If we didn't go the virtualization route we would have made a lot of purchases in hardware. So I added the Hyper-V role to an existing Windows Server 2008 machine, configured the RDWeb virtual machine, installed a copy of Windows Server 2008 R2 on the VM, installed and configured RDWeb on the virtual machine, made the necessary configurations in our Sonicwall TZ210 and then we were all set. Virtualization made that project so much easier than the alternative which is to buy new hardware, make room for that hardware, oh and convince the treasurer and company to make those purchases. For us, the project only cost us a couple of hundred dollars and RDWeb has helped us out a lot. Virtualizaton was the obvious route to take. <br />
<br />
Don't be scared of virtualization! Implementing Hyper-V, Citrix, or VMWare doesn't mean you have to setup live migrations, virtual storage, virtual networks, VDI, or whatever else is intimidating to you; all it can mean is that you're going to use a virtual machine instead of a physical machine for your project. Try it out, even if it's in a lab at first. You can download trial copies of Server 2012 and Windows 8 to tinker around with virtualization if you haven't yet. <a href="http://blogs.technet.com/b/keithmayer/p/earlyexpertws12.aspx#.UkLzuz9Af7M" target="_blank">Keith Mayer</a> has awesome lab exercises for you to try and I know from personal experience that his lab exercises are awesome because I've used them multiple times! Again, don't be scared of virtualization because the benefits and range of uses are too great for you to not use because you're a little intimidated. Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com0tag:blogger.com,1999:blog-4628213607497518736.post-42386969742558244472013-09-13T09:37:00.002-05:002013-09-13T09:37:39.141-05:00Just an Update Hey all. This post isn't a troubleshooting, from-the-trenches post, it is just an update post due to the sad fact I haven't posted anything in more than a month. What am I doing? Well I'm still studying in my time from work for the MCSA: Server 2012 certification. I'm actually studying for all three exams before I take an exam; a studying tip from Ed Liberrman of Trainsignal. At first I wasn't sure about that method but now I completely understand his advocating that method. Studying for all three exams before taking the exams will give you a full understanding of Server 2012, which is what Ed suggested and I know this to be true now that I'm applying his method to my study time. Having studied Active Directory at the 70-411 and 70-412 levels has helped me to understand Active Directory better at level 70-410! It's just a great study method I think.<br />
<br /><b>Study Tools</b><br />
I'm using the <a href="http://www.amazon.com/Windows-Server-Complete-Study-ebook/dp/B00DFDO6S6/ref=pd_sim_kstore_2" target="_blank">Server 2012 certification book from Sybex</a> that is authored by William Panek (an excellent tech writer) for all three exams. I have and am also using the <a href="http://www.amazon.com/Exam-Ref-70-410-Configuring-ebook/dp/B00ANCH0ZS/ref=pd_sim_kstore_4" target="_blank">Exam-ref book for 70-410 from Microsoft Press</a> and the <a href="http://www.amazon.com/Training-Guide-Installing-Configuring-ebook/dp/B00A71345A/ref=pd_sim_kstore_5/175-3175780-1088122" target="_blank">70-410 Training Guide </a>from Microsoft Press by Mitch Tulloch (another excellent tech writer). An additional and amazing study tool I'm using is <a href="http://www.trainsignal.com/" target="_blank">TrainSignal</a>. I can't recommend their videos and practice exams enough. Their practice exam for the 70-410 exam let me know quickly that I wasn't ready to take that exam. Ed Libberman is a great teacher too. His personality is engaging and you can just tell he knows what he is talking about. What about the books? The questions at the end of each chapter in the Sybex book are great questions in that they are scenario based and make you actually think instead of just matching the correct definition with the term. Also in each chapter are exercises which is always nice. The Exam-Ref book is a good book for giving you information for exactly what Microsoft requires you to know on the 70-410 exam. The author doesn't go any further than that and he doesn't exactly go in the deep end either so I can't say that book alone will prepare you for the 70-410 exam. There are practice exercises peppered throughout each chapter which, again, is nice. The 'Training Guide' form Tulloch is a very nice tool. He goes deeper on the exam objectives and his practice exercises are fun, challenging and helpful. This guide is a nice companion to the Exam-Ref book. <br /><br />Is this study method and are these tools a great approach to earning the MCSA? Well I guess I'll see when I go in and take the 70-410 exam. I can't see how my current study method with all the tools I'm using is setting me up for failure. If I fail it will be because of me. <br />
<br />
For work, I'm currently doing the day-in and day-out stuff. I'm not doing anything special but my current job is what it is: entry-level. Hopefully after earning the MCSA, along with my continued experience will land me an exciting System Administrator job elsewhere. <br /><br />Subscribe to the blog! Tell people about it. Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com1tag:blogger.com,1999:blog-4628213607497518736.post-24804899266894533012013-07-25T11:18:00.001-05:002013-07-25T11:18:22.390-05:00Exchange 2010 451.4.4.0 Queue Problem Sometimes weird stuff happens with technology. There's no philosophical inquiry needed because, in my experience, technology problems often don't have an answer as to *why* the problem happened; it just happened. Yeah, there are some reasons we can give to why it happened, sometimes, but like with this problem I'm about to describe, I can't give a reason why it happened. All I know is that it happened and I had to fix it.<br />
<br />
A couple of the employees told me they weren't receiving emails from our employee self service application. Employees use this to view paystubs, events, and such so it is important that this application is working correctly. Employees register with whatever email address they want to use: professional or personal, we don't care. <br />
<br />
When I dove into Exchange 2010, I noticed by looking at the logs and the queue viewer that the only domain generating an error was our professional domain. Google, Live, and yahoo domains were receiving email from our server, but not our domain. The error generated in the queue viewer was <b>451.4.4.0 DNS Query Failed.</b> This was odd because I leave this server alone. The only changes made to the server are security updates. That's it. Regardless, this problem happened and I had to fix it. <br />
<br />
How did I fix it? Well, obviously it was a DNS issue. I could tell by the error message. :p<br />
<br />
<a href="http://doblelol.com/thumbs/unimpressed-funny_4623885529186703.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="262" src="http://doblelol.com/thumbs/unimpressed-funny_4623885529186703.jpg" width="320" /></a><br />
<br />
So I checked out the external DNS lookups tab in the HUB transport server object properties. I had the top option "use network card dns settings" selected and that is how it has been running for over a year now. Anyway, since a problem had occurred I decided to <b>select the other option "use these DNS servers"</b> and <b>put in the IPs of the servers we forward to</b>. I then <b>configured the SMTP send connector</b> properties under the network tab (located by selecting hub transport under org. configuration) and <b>checked the box "use the external DNS lookup settings on the transport server."</b> Doing this cleared the queue and employees using their professional email addresses received (are are receiving) their email from "employee self service." Yeah, this is working, but I'm not sure why the problem occurred. I'm glad I was able to fix it in a timely manner. Obviously there was a problem with the DNS properties of the network card for the exchange server because changing the option to external lookups and using the DNS forwarders fixed the problem. I'll have to investigate further and will write here again if and when I figure that out. <br />
<br />
Anyway, I hope this helps one of you having this strange problem. Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com0tag:blogger.com,1999:blog-4628213607497518736.post-45711822452930864472013-07-16T10:21:00.000-05:002013-07-16T10:22:10.568-05:00How to delete Exchange 2010 mailbox without removing user objectThis is a question that pops up occasionally. If you want to remove a user mailbox, but keep the user account active because he will still be connecting to the network how do you do it? Right-clicking the user mailbox in Exchange 2010 displays options like 'remove' and 'disable.' Clearly I don't want to disable the mailbox because that will just disable the user mailbox instead of removing it right? Wrong. Disable is actually what you want to click to remove the mailbox while keeping the user account in Active Directory. Yes, the mailbox will be disabled for a while and not removed, but after a period of time (depending on your Exchange setup) the mailbox will be removed (deleted) from storage.<br />
<br />
Yes, it's strange but clicking disable will remove exchange properties from the user account then the disconnected mailbox will be setup for deletion. Doesn't it seem like 'remove' should do this? Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com0tag:blogger.com,1999:blog-4628213607497518736.post-18940269193450299662013-07-11T08:38:00.001-05:002013-07-11T08:40:54.868-05:00SyncBack Free Review I just finished testing <a href="http://www.2brightsparks.com/download-syncbackfree.html" target="_blank">2BrightSparks SyncBack Free</a>. I'm very satisfied with this free backup solution. I'm so satisfied that I'm going to stop using the previous solution I used for simple backups. <br />
<br />
SyncBack Free isn't intending to be an enterprise level backup solution so don't expect features like that in this free solution (though their paid pro version does that stuff). What it does do though it does very well. For my environment, I wanted to backup my documents and outlook content to a shared storage location. In my past experience this has either been very easy and thus neglecting some extra features or very complicated and thus keeping me from wanting to use the product. Syncback Free takes an approach that I like a lot by having two modes: easy mode and expert mode. In easy mode and expert modes you first name your backup profile, e.g., outlook profile. Then, you decide what this profile is going to be: backup, synchronize, or mirror (these choices are explained by hovering your mouse over the "?" next to each choice). After naming and choosing the purpose for your profile you automatically are in easy mode. In this mode you can setup your source and destination folders (local, external, or network paths to choose), setup a schedule, and choose what you want to happen if SyncBack Free encounters a duplicate file during a backup, e.g., do you want to copy and replace, do nothing, prompt, etc. If you're done then you can do a simulation run to test the backup. You can choose expert mode from the left menu bar before going through with the simulation run. <br />
<br />
In expert mode, you obviously have more options to design your backup profile. This is the part of Syncback Free I really like. Expert mode has options like compression, encryption, FTP, Programs-before and more. One to thing to point out: by default, Syncback Free backups your data to the destination as is. What do I mean? I mean that if you go to your destination drive to view your backup you'll see all your data just the way it looks in your source drive, i.e., the backup isn't zipped into a single folder or encrypted. Anyone with access to that destination drive will be able to access your data without any problem. This is important to point out and the only flaw, I've found, with SyncBack Free. It's basically a copy and paste by default. Expert mode allows you to change this. In the compression section you can check the box to compress the files on the destination into a zip file, then check the box below it to put all the files into a single zip file and if you want you can choose the level of compression. Doing this will make the size of your backup smaller and make the backup a single zipped folder. You can also encrypt your compressed backup which is nice.<br />
<br />
So that is my review of <a href="http://www.2brightsparks.com/download-syncbackfree.html" target="_blank">SyncBack Free</a>. It's my impression that this solution is for personal use and for very small businesses who can't afford to pay for a solution that is more robust than this free solution. The <a href="http://www.2brightsparks.com/syncback/sbpro-features.html" target="_blank">Pro version</a> is 54.95, but it has a lot of features that make the product worth the price.<br />
<br />
If you're looking for a backup solution for your home or small office then checkout <a href="http://www.2brightsparks.com/download-syncbackfree.html" target="_blank">SyncBack Free</a>. Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com1tag:blogger.com,1999:blog-4628213607497518736.post-46214232707700644572013-06-27T09:22:00.000-05:002013-06-27T09:22:01.337-05:00Disk Management refresher In Windows Server 2012, disk management is arguably defeated by server manager, powershell, and storage spaces. However, not every business (small, medium, or large) is going to make a quick move to Server 2012. What that means is that the IT pro needs to know the basics. <br /><br />I found this <a href="http://technet.microsoft.com/en-us/library/dd163556.aspx" target="_blank">great post</a> at TechNet on implementing disk management. In it the reader will learn disk terms and how to use disk management for creating and managing basic and dynamic disks, software RAID, enabling quotas, and enabling encryption. <br /><br />Enjoy! <br /><br /><a href="http://technet.microsoft.com/en-us/library/dd163556.aspx" target="_blank">Implementing Disk Management </a>Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com0tag:blogger.com,1999:blog-4628213607497518736.post-11780319269642717862013-06-03T11:02:00.002-05:002013-06-03T11:03:47.797-05:00Fun with Windows update errors 80246007 and 80070002 *yes it has been a while since I've blogged. I've been very busy with life and studying for MCSA 70410*<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="http://stream1.gifsoup.com/view1/1357165/confused-o.gif" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="http://stream1.gifsoup.com/view1/1357165/confused-o.gif" /></a></div>
<br />
At work recently, I've had trouble with a Windows 7 pro 64 bit machine dedicated to running our remote check scanner device and software. The machine has never given me trouble until today. I was doing my morning "thang" checking out security stuff on our network. I discovered that the remotescanner machine had failed update install errors. I RDP into the machine to get a closer look. The specific errors surrounded in large, scary, red-ness were: <a href="http://windows.microsoft.com/en-us/windows7/windows-update-error-80246007" target="_blank">80246007</a> and <a href="http://windows.microsoft.com/en-US/windows7/Windows-Update-error-80070002" target="_blank">80070002</a>. The machine hasn't been installing the latest updates for the past few days. <br />
<br />
Looking into the errors I found that there was a 'fix-it' option. I took that option because, hey, usually that is the efficient way to take. Guess what? Fix-it didn't fix it! That's unusual for my 'fix-it experience. I even ran fix-it again only to find that it still didn't work. Tackling the errors myself I was able to solve the problem following *some* of the steps. At first, I restarted the BITS service, restarted the machine, checked for updates, downloaded the updates and then the updates actually installed. Upon reboot and logging into Windows, I was told by Update that more updates needed to be installed so I ran the install and all the updated installed successfully (yes, the updates that failed these past few days). I checked for more but there weren't any to download. So, the machine is now nice, green, and updated. <br />
<br />
I'm confused though. Restarting the BITS is the solution for <a href="http://windows.microsoft.com/en-us/windows7/windows-update-error-80246007" target="_blank">80246007</a>, not for <a href="http://windows.microsoft.com/en-US/windows7/Windows-Update-error-80070002" target="_blank">80070002</a>. Why are Windows Updates now installing instead of failing? Whatever the answer, I'm glad the machine is working properly now, but I do wonder why two errors were the culprit for failed updates only to be fixed by the solution for one of the errors?
Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com1tag:blogger.com,1999:blog-4628213607497518736.post-59417886247594936722013-05-03T10:55:00.002-05:002013-05-03T10:55:59.043-05:00Road to MCSA: Week 3Dude, week 3 has been a major letdown. I planned on knocking out objectives 4 and 5 in one week just like I did with objectives 2 and 3 last week. Week 3 has hit me hard because I've been incredibly busy with my full-time job and my job outside my professional life. So, I've only managed to barely get through objective 4 studying Zacker's book. I still have videos from TrainSignal to watch. My plan is to watch those this weekend. <br /><br />Highlights of objective 4:<br />
* New DHCP failover options: load-balancing and hot-standby. Very cool.<br />
* Subnetting: always interesting.<br />
* IPv6: another one of those always interesting topics.<br />
* DNSSEC Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com0tag:blogger.com,1999:blog-4628213607497518736.post-52321963738219405952013-05-03T10:47:00.000-05:002013-05-03T10:47:22.951-05:00Road to MCSA: Week 2 Week 2 was a huge success. I was able to get through objectives 2 and 3 in that week without speed reading or skipping "stuff I know." I read carefully the chapters in Zacker's book and watched the videos offered from Trainsignal. I also did the exam exercises. Guess what? I also learned "stuff." It was a good week. <br /><br />Things I especially liked from the week: <br />* ReFS<br />
* High availability printing<br />
* Hyper-V, i.e., all of it: virtual storage, scalability, virtual networks, etc.<br />
* Remote management via server manager<br />
* of course, doing all of the above in powershell!<br />
<br />Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com0tag:blogger.com,1999:blog-4628213607497518736.post-20818184115514787022013-04-19T11:02:00.000-05:002013-04-19T11:02:00.831-05:00Road to MCSA: Week 1 Well, week 1 isn't over because I'm studying tomorrow also, but I wanted to go ahead and blog my progress. <br /><br /><b>Week 1 </b><br />Read and completed the exercises in chapter 1 of <a href="http://borntolearn.mslearn.net/certification/server/w/wiki/491.410-installing-and-configuring-windows-server-2012.aspx#fbid=GM_-TAGDem7" target="_blank">Training Guide to Server 2012 by Tulloch</a> <br />Read and completed exercises for Objective 1 in <a href="http://borntolearn.mslearn.net/certification/server/w/wiki/491.410-installing-and-configuring-windows-server-2012.aspx#fbid=GM_-TAGDem7" target="_blank">Zacker's Server 2012 Exam-Ref book</a>. <br />Watched two videos on the 70-410 exam from <a href="http://www.trainsignal.com/blog/90-days" target="_blank">Trainsignal </a>(highly recommend). <br />Read <a href="http://borntolearn.mslearn.net/certification/server/w/wiki/491.410-installing-and-configuring-windows-server-2012.aspx#fbid=GM_-TAGDem7" target="_blank">Technet wiki</a> for Objectives 1.1 and 1.2 <br />
<br />
So far so great. I'm doing both the powershell and GUI routes for the exercises because from what I understand, so far, that is the goal of Server 2012: powershell administration. It's honestly not too bad. I'm not a scripting guy, but I hope to be after earning this MCSA. <br /><br />Week 1 is a success I think. I've learned a lot just from this chapter: installing and deploying Server 2012. Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com0tag:blogger.com,1999:blog-4628213607497518736.post-51302064307288041542013-04-12T13:21:00.000-05:002013-04-12T13:22:06.237-05:00A Server 2012 Core Survival Guide - Fun! <a href="http://runasradio.com/default.aspx?showNum=298" target="_blank">Runas Radio</a> has a very cool podcast on DHCP high availability in server 2012. The tech in the podcast interviewed has a blog and he is currently doing a series of posts on what he called, "A Server 2012 Core Survival Guide." It's an interesting series so far because of the scenario for the series. <br />
<blockquote class="tr_bq">
<div style="text-align: left;">
You are a server administrator with a Windows Server 2012 deployed with only the core interface. You cannot Remote Desktop, Remote PowerShell, or ping the box. You still have access to the console by walking up to it.</div>
</blockquote>
So each post has that scenario in mind. <a href="http://blogs.technet.com/b/bruce_adamczak/archive/2013/01/15/2012-core-survival-guide.aspx" target="_blank">Check it out</a>. <br />
<br />
<a href="http://blogs.technet.com/b/bruce_adamczak/archive/2013/01/15/2012-core-survival-guide.aspx" target="_blank">Bruce Adamczak PFE Blog 2012 Core Survival Guide</a>Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com0tag:blogger.com,1999:blog-4628213607497518736.post-7219042309994043602013-04-10T09:06:00.000-05:002013-04-10T09:06:25.252-05:00On the road to MCSA Server 2012Well, it's here. I'm out of excuses. I need to earn a Microsoft certification. What better route than the MCSA server 2012 certification? I think it's a good route to take, especially since Server 2012 is so awesome. I'm going to blog about my progress. So, if you care, keep up with it. It might help you out. Please comment, follow, and if you're on the road to the mcsa too then share it here with me. <br /><br />My resources <br /><a href="http://www.amazon.com/Training-Guide-Installing-Configuring-Windows/dp/0735673101" target="_blank">Server 2012 training guide by Mitch Tulloch</a><br />
<a href="http://www.amazon.com/Training-Guide-Installing-Configuring-Windows/dp/0735673101" target="_blank">Exam Ref 70-410: Installing and Configuring Server 2012 by Craig Zacker</a><br />
<a href="http://borntolearn.mslearn.net/mcsa90/#fbid=4hGUku03Pzf" target="_blank">The 90 days to MCSA from Microsoft</a>: Videos, forums, wikis for training <br />
Home lab :) <br /><br /><br />Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com0tag:blogger.com,1999:blog-4628213607497518736.post-8260585741898462052013-04-08T11:47:00.000-05:002013-04-08T15:48:10.981-05:00Windows 8 wifi problem with specific WAPsThis problem isn't cool. It's not cool at all. Even if this problem was stated to be cool by the Fonz himself this problem wouldn't be cool. What is the problem? Windows 8 wifi drivers and certain wireless access points. Let's get into it. <br />
<br />
I love Windows 8. I do. Heck, I'm a shill for Microsoft Windows 8. Do I love the start screen? Yes I do. Do I love the graphical design? Yes I do. Do I love the how "things just work" in Windows 8? Yes I do. It's true. It's true. Is Windows 8 perfect? No it's not. It is getting there though. That's another blog post for another time though. What I've encountered thus far in my Windows 8 love and experience is a problem with Windows 8 wifi drivers working with access points. At my house, my Lenovo Windows 8 ultrabook works excellent with my wireless network. I have a Netgear wireless router and my Win 8 ultrabook "just works" with it. No problem at all. Now, at work, we have BYOD so I take my ultrabook to work with me; it will not "just work" with the access point. I have a coworker who also loves Windows 8. Guess what? Her HP tablet pc will not "just work" with the access point either. Those are the only two Windows 8 devices currently at work so that is the extent of my first-hand experience with the problem, but if you "bing" or "google" something along the lines of my problem there are many other people having the same issue. <br />
<br />
<b>Specifics </b><br />
The Windows 8 laptops will only get a limited connection to the wireless network. Running the troubleshooter will "fix" the problem for about 3 minutes then the device is back to limited. The troubleshooter says "Not a valid IP configuration: fixed" and "no default gateway: fixed." Then you have full connection for 0 to 3 minutes before it goes back to limited. Bizarre (to me anyway). Right off I thought it would be a driver issue. I updated the drivers to the latest and greatest for the Intel Centrino Wireless-N 2230. Didn't work. I uninstalled the Windows 8 driver then installed the Windows 7 driver for the device. That didn't work either (so I went back to the Windows 8 driver). I made sure the power management was correct, i.e., the laptop couldn't turn off the adapter to save on power. That didn't work either. <br />
<br />
* at this point I think I should mention that, yes, all other laptops and wireless devices connected and functioned perfectly on the wireless network* <br />
<br />
What could be causing the intermittent issue? Especially since it's only Windows 8? I'm not sure why I went here, but I went into the settings for the WAP. Perhaps the firmware for this Netgear model didn't want to play nicely with Windows 8? It's possible given the age (a few years old). I updated the firmware on the device. That didn't fix the issue. My frustration was quite high to say the least. So, I scoured the tech forums. Oddly enough, I did find something I hadn't tried that someone had tried which was changing the channel/frequency setting in the WAP from auto to, in his case, channel 6. That worked for him. I gave it a shot. Guess what? It worked for nearly an hour then the ultrabook just disconnected. It didn't even go to limited. It just disconnected. I changed to other channels only to find the same disappointment. <br />
<br />
<b>Stupid things I tried that obviously didn't fix the issue:</b><br />
Turning off the firewall<br />
Disabling other network adapters besides the Intel Centrino<br />
Resetting WinSock <br /><br /><b>*****UPDATE*****</b><br /><span class="comment-copy"> I had a motorola WAP on the hardware shelf. I added it and configured it to the network and, to no surprise, the Win 8
laptops connected quick, working just like they're supposed to. What
I've concluded from this problem is the Win 8 wifi drivers just aren't
playing nice with all WAPs. I wonder why?</span><br />
<br />
<br />
Thoughts? Anyone? Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com0tag:blogger.com,1999:blog-4628213607497518736.post-66510549748446489632013-04-05T09:43:00.001-05:002013-04-05T09:43:54.736-05:00Windows 7 SP1 not offered in Windows Update? Dude what's up with that? <div class="separator" style="clear: both; text-align: center;">
<a href="http://www.myfacewhen.net/uploads/1333-i-mad.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="247" src="http://www.myfacewhen.net/uploads/1333-i-mad.jpg" width="320" /></a></div>
<br />
Dude, what's up with that? Is that correct response. You're mad at Microsoft. "Everyone else is getting it! Why am I not?" You fold your arms, pooch out your bottom lip and give Microsoft the most evil stare of all time. Of all time! <br />
<br />
Maybe it's not Microsoft. Maybe. I encountered this problem on a machine this week. I was doing my, ahem, weekly (okay maybe monthly...er...) checks on the machines in the network. I noticed one didn't have Windows 7 Pro SP1. <br />
<br />
What?
<br />
<br />
That was released a loooong time back. For the shop the machine is in, I have automatic Windows Updates set. I noticed the other handful of machines were all up to date and yes, this machine was still "up to date," but not SP1 "up to date." What to do? Scouring Microsoft support I found an article with some <a href="http://support.microsoft.com/kb/2498452#method4" target="_blank">helpful information</a>. This article gives six methods on how to receive the SP1 update if it's not offered in Windows Update.
<br />
<br />
Method 1: Confirm that Windows 7 SP1 is not already installed and that you are not running a prerelease version of Windows 7 SP1<br />
<br />
Method 2: Check for pending updates<br />
<br />
Method 3: Verify that an incompatible version of SafeCentral is not installed on your computer<br />
<br />
Method 4: Check whether you have Intel integrated graphics driver Igdkmd32.sys or Igdkmd64.sys and whether you upgraded the driver<br />
<br />
Method 5: Make sure that you did not use vLite to customize your Windows 7 installation<br />
<br />
Method 6: Download the Windows 7 SP1 from Microsoft Download Center<br />
<br />
Method 4 worked for me. The machine had the integrated graphics driver and the update for that driver was in the "optional updates" section of Windows Update so it wasn't installed automatically. <br />
<br />
<br />
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEieZUg545uyL6K72mq7FUPHrKHOJnkdEg-OwSVzp-poPRrr0sx8AT28jaCGfCKN8z4qCsJThrmRZ6Kxer6QgsaBIhiUzS2Jku8ae9rmES3WUc-5RN2nFEpxEBGgNk7Op94iN9iKH_04NVQ9/s1600/sp1screen.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="277" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEieZUg545uyL6K72mq7FUPHrKHOJnkdEg-OwSVzp-poPRrr0sx8AT28jaCGfCKN8z4qCsJThrmRZ6Kxer6QgsaBIhiUzS2Jku8ae9rmES3WUc-5RN2nFEpxEBGgNk7Op94iN9iKH_04NVQ9/s400/sp1screen.png" width="400" /></a><br />
After running the driver update for the integrated graphics and a reboot, the SP1 update was offered as an update. That's fresh if you ask me. <br />
<br />
Now, you might say, "That's nice, but I don't have Intel GMA or anything else recommended to check in the methods. What now?" Still, the driver might be installed and disabled which is why it's not showing in DxDiag. It might be that at one time you used the onboard graphics which means the Intel driver was installed on the machine but you disabled it because you added a graphics card. The driver is still installed, if that is the case, and Windows is seeing that driver thus not offering you the SP1 update. <br />
<br />
<b>Go into your BIOS and enable the onboard graphics again. <br />Reboot. <br />Check for updates in Windows update. <br />The Intel driver will most likely show up. <br />Install the update. <br />Reboot. <br />Search for Windows updates. <br />SP1 should be offered now. <br />Install it and the many other updates offered after reboot. <br />Rejoice. </b>Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com0tag:blogger.com,1999:blog-4628213607497518736.post-59497952230445653532013-03-28T11:49:00.001-05:002013-03-28T12:59:23.199-05:00A reveiw of training guide: configuring windows 8 <div class="separator" style="clear: both; text-align: center;">
</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="http://ecx.images-amazon.com/images/I/51oChijszZL._BO2,204,203,200_PIsitb-sticker-arrow-click,TopRight,35,-76_SX285_SY380_CR,0,0,285,380_SH20_OU01_.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="320" src="http://ecx.images-amazon.com/images/I/51oChijszZL._BO2,204,203,200_PIsitb-sticker-arrow-click,TopRight,35,-76_SX285_SY380_CR,0,0,285,380_SH20_OU01_.jpg" width="240" /></a></div>
<br />
Are you an IT rookie or Pro looking to get a firm understanding of how to implement Windows 8 in the enterprise? Or are you a geek who just wants to know how Windows 8 works? If you're in any of the two mentioned groups you will get a firm understanding of Windows 8 due to the excellent writing, questions, and lab exercises in <a href="http://www.amazon.com/Training-Guide-Configuring-Windows-8/dp/0735673225/ref=sr_1_1?ie=UTF8&qid=1364493474&sr=8-1&" target="_blank">Training Guide: Configuring Windows 8</a>. How does this book differ from other books on Windows 8? I think it differs in the writing style and the structure of the book. I have read other books on Windows 8 that are focused on tips and tricks; focused on the expert IT pro; and one that covered every "bit" of Windows 8. Yes, those other books have their purpose and that's fine, but this book is aimed at "teaching" the reader Windows 8 from the "surface" level to the advanced level without going off on unnecessary tips and theory. <br />
<br />
The authors clearly know their subject, but they don't beat you down with it. Also, the authors offer real-world examples and tell the reader what is necessary for learning Windows 8. I really like that. When I read a training guide, I only want to know how the hardware/software functions and how to make it work for my environment. When I want to read the theory of the technology I go to a different kind of book. I like that this book at the beginning of each lesson tells the reader what he or she should know by that point, what is required for the lesson suggestions and labs, and that at the end of each lesson is a lesson summary. Throughout each lesson there are real-world examples and quick hits of information related to the topic of the lesson. <br />
<br />
Are there any cons to this book? I gave an honest consideration to this and I did think of a con. I think there could have been more questions at the end of each lesson. Each lesson ended with 2 to 5 questions. While there could have been more, I don't think this does any damage to the book. The amount of questions asked still help the reader to reflect on the lesson learned so it's not a con that takes away a rating star. <br />
<br />
While this book lets you know in the beginning it's not intended as a sole source for the Windows 8 exam, it does cover some of the required topics for the Window 8 exam so this is a great addition to your study tools for the exam. I think the lab exercises will help you as well. <br />
<br />
Anyway, rambling aside, grab this book to learn about Windows 8. In my mind it's currently the best book available to train you on how to use Windows 8. Hey, I bet you'll even have fun doing it. Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com0tag:blogger.com,1999:blog-4628213607497518736.post-7043666702190393372013-03-27T09:43:00.000-05:002013-03-27T09:45:00.701-05:00Customize an RDP file for a Specific RDWeb user Do you have some rdweb users who would like to rdp to their desktop from the rdweb portal, but are uncomfortable with the method used in the rdweb portal? It's kind of a long process to login to rdweb, mouse over to 'remote desktop' then plug in the desktop information, etc. What if the user had an rdp file that looked and acted like an app in the remoteapps list? That would be great you say? Then let's do it. <br />
<br />
*There might be an easier way than this and if there is please let me know about it*<br />
<br />
<b>First, launch remote desktop connection</b>. <br />
Input the user specific information in the fields.<br />
<br />
<b>Second, save it as an rdp file</b>.<br />
<br />
<b>Third, </b>(only do this if your user's desktop has dual-monitors)<b> open the rdp file in notepad to add some information. </b><br />
If you user's desktop has dual monitors and the system is Windows 7 ultimate or enterprise then add the following to the end of the rdp file that is opened in notepad: <b>use multimon:i:1</b> <br />
<br />
If the users' desktop has dual monitors and running pre-Windows 7 ultimate or enterprise (e.g., windows 7 pro or Windows Vista) then add the following to the end of the rdp file: <b>span monitors:i:1 </b><br />
<br />
What is the difference between span and multimon? <br />
<br />
From <a href="http://blogs.msdn.com/b/rds/archive/2009/07/01/using-multiple-monitors-in-remote-desktop-session.aspx" target="_blank">MSDN blog</a><br />
<br />
"Span mode, introduced in Vista, allows the remote desktop to span
across all monitors on the client as long as the monitors are arranged
to form a rectangle. The remote session created when using span mode is
still a single-monitor session. With multimon support, each monitor on
the client machine is viewed as a distinct monitor in the remote
session. Due to this fundamental difference, span mode has some
restrictions that true multimon does not:<br />
1. The primary monitor must be leftmost.<br />
2. The set of monitors must form a rectangle (i.e. identical vertical resolution, and lined up in exact straight line).<br />
3. The total of the resolutions must be below 4096x2048 (ex. 1600x1200+1600x1200 = 3200x1200)." <br />
<br />
Multimon "...for Remote Desktop Services allows users to
open a Remote Desktop connection expanded across all the monitors on the
client computer regardless of the client monitor configuration. With
this feature, the user can fully utilize all the monitors connected to
the client computer for the Remote Desktop connection thereby providing
extra desktop space and an almost seamless experience with the client
desktop that is much improved over “Span mode”. " <br />
<br />
<b>Fourth, add the rdp file to the remoteapp programs list in your rdweb server. </b><br />
Go to "remoteapp manger." <br />
Click "add remoteapp programs." <br />
Next. <br />
Browse. <br />
Make sure "all files (*.*)" is selected in the dropdown box. After you've found your custom rdp file select Open. <br />
Next and finish. <br />
<br />
<b>Fifth, customize view permissions for the rdp file.</b> <br />
Under remoteapp programs in remoteapp manger, right click the rdp file then select properties. Select user assignment then select "specified domain users and domain groups." Click add. Since this is a specific user rdp file select the appropriate user profile for the rdp file. <br />
OK it. <br />
Then OK in remoteapp properties. <br />
<br />
Now, say all of this was for Jane Austen. She will login to the RDWeb portal, see the file you've added to remoteapp programs for her profile, run it then have access to her work desktop. This is much easier compared to the default route. <br />
<br />Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com1tag:blogger.com,1999:blog-4628213607497518736.post-2717622097493824222013-03-25T14:33:00.004-05:002013-03-25T14:33:43.022-05:00Make file explorer available in RDWeb <div class="separator" style="clear: both; text-align: center;">
<a href="http://alan.edward.es/static_media/Aww-Yeah-meme-1.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="http://alan.edward.es/static_media/Aww-Yeah-meme-1.png" /></a></div>
<br />I thought this was pretty cool. This may not be anything new for RDWeb pros, but I discovered this possibility the other day and thought, "Why not share this on my blog?" <br /><br />First things first: I haven't found a way to make the file explorer match the logged in user's profile, e.g. if jausten logs in to RDWeb, runs file explorer then she will see all of the available folders instead of only seeing her own documents folder. Why? Because this file explorer is the file explorer on the RDWeb server instead of the file explorer that is in jausten's ad profile. Make sense? <br /><br /><b>Login to your RDWeb server. <br />Launch remoteapp manager. </b><br />
<b>Click add remoteapp program. </b><br />
<b>In the "choose programs to add to the..." window, click browse </b><br />
<b>In the "choose a program" explorer window browser to c:\windows then choose explorer.exe </b><br />
<b>Next</b><br />
<b>Finish </b><br />
<br />
File explorer is now a part of the remoteapp programs on your RDWeb site. Cool. Just remember to tell your users not to treat the file explorer as their work drive for their own documents. Then why add the file explorer to the remoteapps list? Example: if your rdweb users are on a team then they can share their project files there.There are other examples I'm sure. <br /><br />Please let me know if you are going to or have done anything with file explorer in rdweb beyond what I have done in this blog post. I would like to hear about it. Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com0tag:blogger.com,1999:blog-4628213607497518736.post-17810811366214138982013-03-19T09:25:00.000-05:002013-03-19T09:25:13.635-05:00Are 3G and 4G USB modems a security threat? According to researchers Nikita Tarakanov and Oleg Kupree they are.<br />
<br />
From <a href="http://www.networkworld.com/cgi-bin/mailto/x.cgi?pagetosend=/news/2013/031513-3g-and-4g-usb-modems-267763.html&pagename=/news/2013/031513-3g-and-4g-usb-modems-267763.html&pageurl=http://www.networkworld.com/news/2013/031513-3g-and-4g-usb-modems-267763.html&site=security&nsdr=n" target="_blank">Network World</a>:<br />
<br />
"For one, it's easy to make an image of the USB modem's file system,
modify it and write it on the modem again. There's a tool
available from Huawei to do modem backup and restore, but there are
also free tools that support modems from other manufacturers,
Tarakanov said.
<br /><br />
Malware running on the computer could detect the model and version of
the active 3G modem and could write an image with malicious
customizations to it using such tools. That modem would then
compromise any computer it's used on.
<br /><br />
The modem contains the installer for an application that gets installed on the computer, as well as the necessary drivers
for different OSes. The application allows the user to stop, start and manage the Internet connection established through
the modem.
<br /><br />
The configuration files for the installed application, as well as
those of the application installer stored on the modem,
are in plain text and can be easily modified. One setting in the
configuration files defines what DNS servers the modem should
use for the Internet connection.
<br /><br />
An attacker could change those entries to servers controlled by the attacker, Tarakanov said. This would give the attacker
the ability to direct users to rogue websites when they're trying to visit legitimate ones using the modem connection.
<br /><br />
While the application installer itself cannot be directly modified to load malware because it's a signed executable, there
are some entries in its configuration file that can be used for this purpose.
<br />
For example, many configuration files had paths to antivirus installers and an option of whether to install those programs
or not, Tarakanov said. The researcher said that he never found an antivirus installer shipped with the USB modems he tested,
but the feature was there.
<br /><br />
An attacker could create a custom image with a modified configuration file that enables this feature and installs a malicious
file stored on the modem instead of an antivirus program. If the image is written on a USB modem, every time the user would
install the modem application, the malware would also be installed, Tarakanov said.
<br /><br />
The researchers also found a possible mass attack vector. Once installed on a computer, the modem application -- at least
the one from Huawei -- checks periodically for updates from a single server, Tarakanov said. Software branded for a specific
operator searchers for updates in a server directory specific to that operator.
<br /><br />
An attacker who manages to compromise this update server, can launch mass attacks against users from many operators, Tarakanov
said. Huawei 3G modems from several different Russian operators used the same server, but there might be other update servers
for other countries, he said.
<br /><br />
Tarakanov said that he didn't look for vulnerabilities in the actual modem drivers installed in the OS, but he expects them
to have vulnerabilities. The vast majority of third-party drivers in general have vulnerabilities, he said.
<br /><br />
Tarakanov specializes in exploit writing and finding vulnerabilities in the Windows kernel mode drivers. However, Oleg Kupreev
was the leader for this particular research project concerning 3G/4G modems.
<br />
Research in this area is just at the beginning and there's more to investigate, Tarakanov said. Someone has to do it because
many new laptops come with 3G/4G modems directly built in and people should know if they're a security threat"
<br />
<br />
Let's hope new models will be safe because I use a 3G usb modem on occasion. <br />
<br />
Source: <a href="http://www.networkworld.com/cgi-bin/mailto/x.cgi?pagetosend=/news/2013/031513-3g-and-4g-usb-modems-267763.html&pagename=/news/2013/031513-3g-and-4g-usb-modems-267763.html&pageurl=http://www.networkworld.com/news/2013/031513-3g-and-4g-usb-modems-267763.html&site=security&nsdr=n" target="_blank">Network World</a> Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com0tag:blogger.com,1999:blog-4628213607497518736.post-77897472808524866672013-03-18T12:57:00.001-05:002013-03-18T12:58:49.878-05:00Hyper-V 3.0 Best Practices Checklist<span style="font-family: inherit;">The <a href="http://blogs.technet.com/b/askpfeplat/archive/2013/03/10/windows-server-2012-hyper-v-best-practices-in-easy-checklist-form.aspx" target="_blank">Ask PFE Platforms blog</a> has an excellent post on <a href="http://blogs.technet.com/b/askpfeplat/archive/2013/03/10/windows-server-2012-hyper-v-best-practices-in-easy-checklist-form.aspx" target="_blank">Windows Server 2012 Hyper-V best practices</a> and it's actually in-depth. I'm only sharing the "general" section for the host not the vms because there are many things to checkoff your roll-out list before you even get to the "deep" things of rolling out a Hyper-V environment. <br /><br />Excerpt from the <a href="http://blogs.technet.com/b/askpfeplat/archive/2013/03/10/windows-server-2012-hyper-v-best-practices-in-easy-checklist-form.aspx" target="_blank">blog post</a>: </span><br />
<span style="font-size: small;"><span style="font-family: inherit;"><b>GENERAL (HOST):</b></span></span><br />
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><span style="font-size: small;"><span style="font-family: inherit;">⎕
Use Server Core, if possible, to reduce OS overhead, reduce potential
attack surface, and to minimize reboots (due to fewer software updates).</span></span><br />
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><br />
<ul>
<li><span style="font-size: small;"><span style="font-family: inherit;">For more information: <a href="http://msdn.microsoft.com/en-us/library/windows/desktop/hh846313%28v=vs.85%29.aspx">http://msdn.microsoft.com/en-us/library/windows/desktop/hh846313(v=vs.85).aspx</a></span></span></li>
</ul>
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><span style="font-size: small;"><span style="font-family: inherit;">⎕
Ensure hosts are up-to-date with recommended Microsoft updates, to
ensure critical patches and updates – addressing security concerns or
fixes to the core OS – are applied.</span></span><br />
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><span style="font-size: small;"><span style="font-family: inherit;">⎕ Ensure all applicable <a href="http://blogs.technet.com/b/askcore/archive/2013/03/05/looking-for-windows-server-2012-clustering-and-hyper-v-hotfixes.aspx">Hyper-V hotfixes and Cluster hotfixes</a>
(if applicable) have been applied. Review the following sites and
compare it to your environment, since not all hotfixes will be
applicable:</span></span><br />
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><br />
<blockquote>
<span style="font-size: small;"><span style="font-family: inherit;">· Update List for Windows Server 2012 Hyper-V: <a href="http://social.technet.microsoft.com/wiki/contents/articles/15576.hyper-v-update-list-for-windows-server-2012.aspx">http://social.technet.microsoft.com/wiki/contents/articles/15576.hyper-v-update-list-for-windows-server-2012.aspx</a></span></span></blockquote>
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><br />
<blockquote>
<span style="font-size: small;"><span style="font-family: inherit;">· List of Failover Cluster Hotfixes: <a href="http://social.technet.microsoft.com/wiki/contents/articles/15577.list-of-failover-cluster-hotfixes-for-windows-server-2012.aspx">http://social.technet.microsoft.com/wiki/contents/articles/15577.list-of-failover-cluster-hotfixes-for-windows-server-2012.aspx</a></span></span></blockquote>
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><span style="font-size: small;"><span style="font-family: inherit;">⎕
Ensure hosts have the latest BIOS version, as well as other hardware
devices (such as Synthetic Fibre Channel, NIC’s, etc.), to address any
known issues/supportability</span></span><br />
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><span style="font-size: small;"><span style="font-family: inherit;">⎕
Host should be domain joined, unless security standards dictate
otherwise. Doing so makes it possible to centralize the management of
policies for identity, security, and auditing. Additionally, hosts must
be domain joined before you can create a Hyper-V High-Availability
Cluster. </span></span><br />
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><br />
<blockquote>
<span style="font-size: small;"><span style="font-family: inherit;">· For more information: <a href="http://technet.microsoft.com/en-us/library/ee941123%28v=WS.10%29.aspx">http://technet.microsoft.com/en-us/library/ee941123(v=WS.10).aspx</a></span></span></blockquote>
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><span style="font-size: small;"><span style="font-family: inherit;">⎕
RDP Printer Mapping should be disabled on hosts, to remove any chance
of a printer driver causing instability issues on the host machine. </span></span><br />
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><br />
<ul>
<li><span style="font-size: small;"><span style="font-family: inherit;"><i>Preferred method:</i> Use Group Policy with host servers in their own separate OU</span></span></li>
<ul>
<li><span style="font-size: small;"><span style="font-family: inherit;">Computer
Configuration –> Policies –> Administrative Templates –>
Windows Components –> Remote Desktop Services –> Remote Desktop
Session Host –> Printer Redirection –> Do not allow client printer
redirection –> Set to "Enabled</span></span></li>
</ul>
</ul>
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><span style="font-size: small;"><span style="font-family: inherit;">⎕
Do not install any other Roles on a host besides the Hyper-V role and
the Remote Desktop Services roles (if VDI will be used on the host).</span></span><br />
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><br />
<ul>
<li><span style="font-size: small;"><span style="font-family: inherit;">When
the Hyper-V role is installed, the host OS becomes the "Parent
Partition" (a quasi-virtual machine), and the Hypervisor partition is
placed between the parent partition and the hardware. As a result, it is
not recommended to install additional (non-Hyper-V and/or VDI related)
roles.</span></span></li>
</ul>
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><span style="font-size: small;"><span style="font-family: inherit;">⎕ The only Features that should be installed on the host are: <b>Failover Cluster Manager</b> (if host will become part of a cluster), <b>Multipath I/O</b> (if host will be connecting to an iSCSI SAN, Spaces and/or Fibre Channel), or <b>Remote Desktop Services</b> if VDI is being used. (See explanation above for reasons why installing additional features is not recommended.)</span></span><br />
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><span style="font-size: small;"><span style="font-family: inherit;">⎕ Anti-virus software should exclude Hyper-V specific files using the <a href="http://social.technet.microsoft.com/wiki/contents/articles/2179.hyper-v-anti-virus-exclusions-for-hyper-v-hosts.aspx">Hyper-V: Antivirus Exclusions for Hyper-V Hosts article</a>, namely:</span></span><br />
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><br />
<ul><ul>
<li><span style="font-size: small;"><span style="font-family: inherit;">All folders containing VHD, VHDX, AVHD, VSV and ISO files</span></span></li>
</ul>
<ul>
<li><span style="font-size: small;"><span style="font-family: inherit;">Default virtual machine configuration directory, if used (<i>C:\ProgramData\Microsoft\Windows\Hyper-V</i>)</span></span></li>
</ul>
<ul>
<li><span style="font-size: small;"><span style="font-family: inherit;">Default snapshot files directory, if used (%systemdrive%\ProgramData\Microsoft\Windows\Hyper-V\Snapshots)</span></span></li>
</ul>
<ul>
<li><span style="font-size: small;"><span style="font-family: inherit;">Custom virtual machine configuration directories, if applicable</span></span></li>
</ul>
<ul>
<li><span style="font-size: small;"><span style="font-family: inherit;">Default virtual hard disk drive directory </span></span></li>
</ul>
<ul>
<li><span style="font-size: small;"><span style="font-family: inherit;">Custom virtual hard disk drive directories</span></span></li>
<li><span style="font-size: small;"><span style="font-family: inherit;">Snapshot directories</span></span></li>
</ul>
<ul>
<li><span style="font-size: small;"><span style="font-family: inherit;">Vmms.exe (Note: May need to be configured as process exclusions within the antivirus software)</span></span></li>
</ul>
<ul>
<li><span style="font-size: small;"><span style="font-family: inherit;">Vmwp.exe (Note: May need to be configured as process exclusions within the antivirus software)</span></span></li>
</ul>
<ul>
<li><span style="font-size: small;"><span style="font-family: inherit;">Additionally, when you use Cluster Shared Volumes, exclude the CSV path "<i>C:\ClusterStorage</i>" and all its subdirectories.</span></span></li>
</ul>
<li><span style="font-size: small;"><span style="font-family: inherit;">For more information: <a href="http://social.technet.microsoft.com/wiki/contents/articles/2179.hyper-v-anti-virus-exclusions-for-hyper-v-hosts.aspx">http://social.technet.microsoft.com/wiki/contents/articles/2179.hyper-v-anti-virus-exclusions-for-hyper-v-hosts.aspx</a></span></span></li>
</ul>
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><span style="font-size: small;"><span style="font-family: inherit;">⎕
Default path for Virtual Hard Disks (VHD/VHDX) should be set to a
non-system drive, due to this can cause disk latency as well as create
the potential for the host running out of disk space. </span></span><br />
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><span style="font-size: small;"><span style="font-family: inherit;">⎕
If you choose to save the VM state as the Automatic Stop Action, the
default virtual machine path should be set to a non-system drive, due to
the creation of a .bin file is created that matches the size of memory
reserved for the virtual machine. A .vsv file may also be created in
the same location as the .bin file, adding to disk space used for each
VM. (The default path is: C:\ProgramData\Microsoft\Windows\Hyper-V.)</span></span><br />
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><br />
<ul>
<li><span style="font-size: small;"><span style="font-family: inherit;">Note: Hyper-V in Server 2012 will now only use the .bin if you choose to save the VM state as the Automatic Stop Action. </span></span></li>
<li><span style="font-size: small;"><span style="font-family: inherit;">Change to .bin usage in Server 2012: <a href="http://blogs.msdn.com/b/virtual_pc_guy/archive/2012/03/26/option-to-remove-bin-files-with-hyper-v-in-windows-8.aspx">http://blogs.msdn.com/b/virtual_pc_guy/archive/2012/03/26/option-to-remove-bin-files-with-hyper-v-in-windows-8.aspx</a></span></span></li>
</ul>
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><span style="font-size: small;"><span style="font-family: inherit;">⎕ If you are using iSCSI: In <i>Windows Firewall with Advanced Security</i>, enable<i> iSCSI Service (TCP-In)</i> for Inbound and <i>iSCSI Service (TCP-Out)</i>
for outbound in Firewall settings on each host, to allow iSCSI traffic
to pass to and from host and SAN device. Not enabling these rules will
prevent iSCSI communication.</span></span><br />
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><br />
<blockquote>
<span style="font-size: small;"><span style="font-family: inherit;">To set the iSCSI firewall rules via netsh, you can use the following command: </span></span></blockquote>
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><br />
<blockquote>
<span style="font-size: small;"><span style="font-family: inherit;"><i>Netsh advfirewall firewall set rule group=”iSCSI Service” new enable=yes</i></span></span></blockquote>
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><br />
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><span style="font-size: small;"><span style="font-family: inherit;">⎕ Periodically run performance counters against the host, to ensure optimal performance.</span></span><br />
<span style="font-size: small;"><span style="font-family: inherit;"> </span></span><br />
<ul>
<li><span style="font-size: small;"><span style="font-family: inherit;">Recommend using the Hyper-V performance counter that can be extracted from the (free) Codeplex PAL application:</span></span></li>
<ul>
<li><span style="font-size: small;"><span style="font-family: inherit;"><a href="http://pal.codeplex.com/">http://pal.codeplex.com/</a></span></span></li>
</ul>
<li><span style="font-size: small;"><span style="font-family: inherit;">Install PAL on a workstation and open it, then click on the <i>Threshold File</i> tab. </span></span></li>
<ul>
<li><span style="font-size: small;"><span style="font-family: inherit;">Select "Microsoft Windows Server 2012 Hyper-V" from the <i>Threshold file title</i>, then choose <i>Export to Perfmon template file</i>. Save the XML file to a location accessible to the Hyper-V host. </span></span></li>
</ul>
<li> <div align="left">
<span style="font-size: small;"><span style="font-family: inherit;">Next, on the host, open Server Manager –> Tool –> Performance Monitor</span></span></div>
</li>
<li> <div align="left">
<span style="font-size: small;"><span style="font-family: inherit;">In Performance Monitor, click on Data Collector Sets –<a href="http://support.microsoft.com/kb/961804">></a> User Defined. Right click on <i>User Defined</i> and choose New –> Data Collector Set. Name the collector set "Hyper-V Performance Counter Set" and select <i>Create from a template (Recommended)</i> then choose Next. On the next screen, select <i>Browse</i>
and then locate the XML file you exported from the PAL application.
Once done, this will show up in your User Defined Data Collector Sets.</span></span></div>
</li>
<li><span style="font-size: small;"><span style="font-family: inherit;">Run
these counters in Performance Monitor for 30 minutes to 1 hour (during
high usage times) and look for disk latency, memory and CPU issues, etc.</span></span></li>
</ul>
<span style="font-family: inherit;">Check out the entire thing and bookmark it! :D Click <a href="http://blogs.technet.com/b/askpfeplat/archive/2013/03/10/windows-server-2012-hyper-v-best-practices-in-easy-checklist-form.aspx" target="_blank">here.</a> </span>Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com0tag:blogger.com,1999:blog-4628213607497518736.post-77109529106975008842013-03-11T14:56:00.001-05:002013-07-11T08:39:20.685-05:00xPrintServer Office Edition Review <div class="separator" style="clear: both; text-align: center;">
<a href="https://a248.e.akamai.net/origin-cdn.volusion.com/qbodv.kwcox/v/vspfiles/photos/XPS1002HM-01-S-2.jpg?1352672382" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="280" src="https://a248.e.akamai.net/origin-cdn.volusion.com/qbodv.kwcox/v/vspfiles/photos/XPS1002HM-01-S-2.jpg?1352672382" width="400" /></a></div>
<br />
xPrintServer Office edition is an excellent product! A product that is definitely worth the money. It's easy to setup and easy to configure if needed. This is nearly plug-and-play. I say nearly because I did have to go into the admin panel of the device and run the "discover" feature two times. I'll get to the that. For right now, know this is an excellent product. <br />
<br />
The product comes in very nice packaging that has a clean style design. When I unboxed it I was amazed at the size of the device. It's about the size of an iPhone! I had read that on the product specs sheet but being the skeptical guy I am and didn't think it would actually be that size. Also in the box is an ethernet cable, power supply with adapters, wall mount kit (bracket and 2 screws), and rubber feet for those who don't want to wall mount their xPrintServer. As you can see in the picture you can connect a usb printer to it. I must admit, this reviewer hasn't tried that option. I've read positive things about that option, but I haven't tried that myself. Yet. If I do I will update this review. <br />
<br />
I connected the device to our network via an ethernet calbe to our main switch. After it was connected and powered on, the LED network lights flickered and the device light at first flickered very fast then flickered slowly; this is the discover phase. I grabbed an iPad that was connected to our network via wifi. I browsed to a page then went to the printer options for safari. Only one printer was available. There should have been 3 printers available. I went ahead and printed the page just for testing and it worked just as it should have worked. After that, I went into the admin panel of the xPrintServer device. After running the discover tool<br />
two times all 3 printers were discovered. I checked with my iPad to find that all 3 printers were ready for printing. <br />
<br />
Aside from the device not auto-disovering all the printers at once, this device has been great. Setup is a breeze. Even the "extra" stuff I had to do was super easy and fast. All of this happened in less than 10 minutes. How great is that? You can't ask for more than that right? <br />
<br />
In addition to enabling your iOS and Mac OS devices to print without any software or app installation, xPrintServer Office admin panel also has cool stuff for admins like: job status and viewer, log viewer, network configuration for the device, manually add a printer, and driver installation. <br />
<br />
I highly recommend xPrintServer Office edition to those offices in need of printing from iOS devices and don't want to have to purchase iPad and iPhone printing enabled printers. Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com0tag:blogger.com,1999:blog-4628213607497518736.post-62644679713483325012013-03-05T10:05:00.003-06:002013-03-05T10:05:57.922-06:00Currently Reading Training Guide: Configuring Windows 8 <div class="separator" style="clear: both; text-align: center;">
<a href="http://ecx.images-amazon.com/images/I/51-wxwHiaZL._BO2,204,203,200_PIsitb-sticker-arrow-click,TopRight,35,-76_SX240_SY320_CR,0,0,240,320_SH20_OU01_.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="http://ecx.images-amazon.com/images/I/51-wxwHiaZL._BO2,204,203,200_PIsitb-sticker-arrow-click,TopRight,35,-76_SX240_SY320_CR,0,0,240,320_SH20_OU01_.jpg" /></a></div>
<br />
<a href="http://www.amazon.com/Training-Guide-Configuring-Windows-8/dp/0735673225/ref=sr_1_1?ie=UTF8&qid=1362498979&sr=8-1&keywords=windows+8+training+guide" target="_blank">Training Guide: Configuring Windows 8 <br /></a><br />
The
authors clearly know their subject. I've learned a lot from this book
on how to implement Windows 8 in the enterprise and SMB. Lessons,
practices, and exercises are the model and the authors have worked this
model in an excellent way. The writing is top notch as well. Tech books
have an image (no pun intended) of bad writing, i.e., dry, only writing
what's necessary, but that can't be said of this book. The writing keeps
me interested. <br />
<br />
I'm only about 1/4 of the way through
the book and what's funny is I don't want it to be over. I actually look
forward to studying this book and doing the exercises. I highly
recommend this book for the IT professional wanting an understanding of
how to roll out then maintain Windows 8 in the business level and for
the geek who just wants to know how it works. <br />
<br />
When I'm finished with the book I plan on writing a full review. Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com0tag:blogger.com,1999:blog-4628213607497518736.post-75800929351627547712013-03-04T09:53:00.000-06:002013-03-04T09:53:42.907-06:00Resources on Installing and Configuring Exchange Server 2010 <div class="separator" style="clear: both; text-align: center;">
<a href="http://blogs.technet.com/blogfiles/itproaustralia/WindowsLiveWriter/LiveMeetingExchange2010TheFutureofCollab_8A33/Exchange%20Server%202010%20Logo_2.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="63" src="http://blogs.technet.com/blogfiles/itproaustralia/WindowsLiveWriter/LiveMeetingExchange2010TheFutureofCollab_8A33/Exchange%20Server%202010%20Logo_2.jpg" width="400" /></a></div>
<br />
In preparation for the install and configuration of Exchange Server 2010, I was greatly helped by the list of links below, so I'm sharing. I hope these links help you as much as they helped me.<br />
<br />
Enjoy!<br />
<br />
Installing Exchange 2010 step-by-step <a href="http://www.enterprisenetworkingplanet.com/datacenter/Installing-Exchange-2010-Step-by-Step-3877601.htm">http://www.enterprisenetworkingplanet.com/datacenter/Installing-Exchange-2010-Step-by-Step-3877601.htm</a><br />
<br />
Understanding receive connectors in Exchange 2010 <a href="http://technet.microsoft.com/en-us/library/aa996395.aspx">http://technet.microsoft.com/en-us/library/aa996395.aspx</a><br />
<br />
Create an SMTP receive connector <a href="http://technet.microsoft.com/en-us/library/bb125159.aspx">http://technet.microsoft.com/en-us/library/bb125159.aspx</a><br />
<br />
Understanding Edge subscriptions<a href="http://technet.microsoft.com/en-us/library/aa997438.aspx" target="_blank"> http://technet.microsoft.com/en-us/library/aa997438.aspx</a><br />
<br />
How to allow relaying in Exchange 2010...securely <a href="http://exchangepedia.com/2007/01/exchange-server-2007-how-to-allow-relaying.html">http://exchangepedia.com/2007/01/exchange-server-2007-how-to-allow-relaying.html</a><br />
<br />
Anonymous Relay with Exchange 2010 <a href="http://blogs.catapultsystems.com/tharrington/archive/2010/07/20/anonymous-relay-with-exchange-20072010.aspx">http://blogs.catapultsystems.com/tharrington/archive/2010/07/20/anonymous-relay-with-exchange-20072010.aspx</a><br />
<br />
Troubleshooting the client access server <a href="http://blogs.catapultsystems.com/tharrington/archive/2010/09/17/troubleshooting-the-client-access-server.aspx">http://blogs.catapultsystems.com/tharrington/archive/2010/09/17/troubleshooting-the-client-access-server.aspx</a><br />
<br />
SSL for outlook web app 2010 <a href="http://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/Q_26160513.html">http://www.experts-exchange.com/Software/Server_Software/Email_Servers/Exchange/Q_26160513.html</a><br />
<br />
Security warning when you start outlook 2007 then connect it to Exchange 2010 <a href="http://support.microsoft.com/kb/940726">http://support.microsoft.com/kb/940726</a><br />
<br />
Troubleshoot Outlook Web Access problems <a href="http://www.techrepublic.com/article/get-it-done-troubleshoot-outlook-web-access-problems/5031583">http://www.techrepublic.com/article/get-it-done-troubleshoot-outlook-web-access-problems/5031583</a>Sethhttp://www.blogger.com/profile/13248559361975013834noreply@blogger.com0