Wednesday, April 17, 2019

Thursday, March 21, 2019

How to Add a USB to Hyper-V (Pre-VMware Data Migration)

You need to copy the data off of the Hyper-V Server and it's driving you nuts over the LAN.

1. Connect your USB to the physical server.

2. RDP into Hyper-V.

3. Open Hyper-V Manager. Click on the host and then select "Hyper-V Settings".

4. Enable/Check Use Enhanced Session Mode (2 Places)



5. Now click the VM itself and click settings and click "Integration Services" and select "Guest services". (NOTE: If the VM is online. Reboot it to pick up the change).


6. When you first connect to the VM. It will pop up and ask you to select an option. Integration Service is the last icon on the top left of the VM Toolbar.

7. Click on Local Resources ==> More


8. Click on Drives and select the USB you connected E:\ etc. Select Drive's that I Plug in Later if you will add more USB's later.



9. Now it will show the mounted USB. Copy your data!





Credits: YouTube University! =)

https://youtu.be/ckiZA8DC5n4 (Easy w/ No English)
https://youtu.be/klzhkzJMW0I (Detailed w/ English)








Share:

Tuesday, March 19, 2019

I'm Unable to Uninstall any Programs or Install Software on Windows Server 2012 R2

1. You try to uninstall a program on Windows Server and your unable to proceed after getting an error that the their is a pending operation.

2. Troubleshooting Tip #1: Open up Task Manager and then find any msiexec services and right click and then "End Task" to all of them.

3. Try again. If everything works fine. Your done.

4. Troubleshooting Tip #2: Scan for Malware (MalwareBytes) or download and run CCleaner (I do not recommend this on production servers...that's your own risk.

5. Clean up the registry errors and then uninstall any unnecessary, unused and "makes no sense that it's installed" software.

6. Try again. If everything then works ok. Your done.

FYI. Doing things manually without a backup in the registry can wreak havoc. Be careful. If it's a VM. Take a snapshot. 5 minutes of patience and preparation can save you hours of anger, stress and fear of getting your head chomped off by _____________________!
Share:

Tuesday, March 5, 2019

How to Convert an OVA Image to an AWS EC2 Instance

1. Create an S3 Bucket to import the OVA Image.

2. Upload the OVA Image via the browser. (Pro Tip: If the OVA has a long and complicated name, rename it. Your going to be using the command line.)

3. Install the AWS CLI and Python onto your Laptop

https://docs.aws.amazon.com/cli/latest/userguide/cli-chap-welcome.html

4. Verify via CMS that python --version and pip --version is working and you get a response.

Example:
C:\Users\ubuntu.power>pip --version
pip 19.0.1 from c:\users\ubuntu.power\appdata\local\programs\python\python37-32\lib\site-packages\pip (python 3.7)

C:\Users\ubuntu.power>python --version
Python 3.7.2

FYI. You can also use PowerShell
https://docs.aws.amazon.com/powershell/latest/userguide/pstools-getting-set-up-windows.html

5. You will need your AWS Secret ID and Key from IAM. Generate a new one if you forgot it or haven't use it or just plain don't know it.

https://blog.migrationking.com/2019/03/how-to-quickly-setup-aws-cli-on-windows.html

Note: Make sure you can run an aws command like the following with output:

aws s3 ls

6. AWS Import/Export Guide:
https://docs.aws.amazon.com/vm-import/latest/userguide/vm-import-ug.pdf

7. Convert from an OVA File:

http://www.daniloaz.com/en/how-to-create-a-sentilo-aws-ec2-instance-from-an-ova-file/

8. In order to import the OVA file, you have to save it to a location on your local machine where you can point to the path from PowerShell (If you're on Linux, the location from your shell). Note: If your on Windows, use the C:\ Drive Path. 

Professional Note: Use Notepad++ on Windows to create the file
https://notepad-plus-plus.org/

9. trust-policy.json file

{
   "Version":"2012-10-17",
   "Statement":[
      {
         "Sid":"",
         "Effect":"Allow",
         "Principal":{
            "Service":"vmie.amazonaws.com"
         },
         "Action":"sts:AssumeRole",
         "Condition":{
            "StringEquals":{
               "sts:ExternalId":"vmimport"
            }
         }
      }
   ]

}

10. role-policy.json file

{
 "Version":"2012-10-17",
 "Statement":[
 {
 "Effect":"Allow",
 "Action":[
 "s3:GetBucketLocation",
 "s3:GetObject",
 "s3:ListBucket"
 ],
 "Resource":[
 "arn:aws:s3:::disk-image-file-bucket",
 "arn:aws:s3:::disk-image-file-bucket/*"
 ]
 },
 {
 "Effect":"Allow",
 "Action":[
 "ec2:ModifySnapshotAttribute",
 "ec2:CopySnapshot",
 "ec2:RegisterImage",
 "ec2:Describe*"
 ],
 "Resource":"*"
 }
 ]
}

11. You import the policies from your machine using a local path. Drive Shares (e.g. Google Drive, etc seem to complain).

PS C:\Users\username> aws iam create-role --role-name vmimport --assume-role-policy-document file://C:\Users\username\Documents\AWS\s3\trust-policy.json

PS C:\Users\usernamet> aws iam put-role-policy --role-name vmimport --policy-name vmimport --policy-document file://C:\Users\username\Documents\AWS\s3\role-policy.json

Page 14-15 of https://docs.aws.amazon.com/vm-import/latest/userguide/vm-import-ug.pdf

12. Create "containers.json" file.

[
  {
    "Description": "Bubba Lovey",
    "Format": "ova",
    "UserBucket": {
        "S3Bucket": "bubba-lab-lovey",
        "S3Key": "anykindofvm.ova"
    }
}]

13. aws ec2 import-image --description "FireEye CMS" --license-type BYOL --disk-containers file://C:\Users\username\Documents\AWS\s3\containers.json

NOTE: This is a Linux Image

You can check the status of the running job by using the "ImportTaskID" that was provided when you kicked off the job:





This blog saved the day. Credit has to go to Daniel Lopez Azana!

http://www.daniloaz.com/en/how-to-create-a-sentilo-aws-ec2-instance-from-an-ova-file/

https://rzn.id.au/tech/converting-an-ova-to-an-amazon-ami/ (Helpful)







Share:

How to Quickly Setup the AWS CLI on Windows

Download the AWS CLI App.

https://aws.amazon.com/cli/

1. Open Powershell after you install the software.

2. type aws configure

3. Note: If you don't know or have your Access Key Id and Secret Key, create a new one and delete the other one.

4. Check your region here:

https://docs.aws.amazon.com/general/latest/gr/rande.html
Share:

Monday, January 28, 2019

How to Configure AWS Active Directory Conditional Forwarders for a Trust between Your AWS Managed Microsoft AD and On-Premises Domain

As you get started. Make sure your VPC configurations for Inbound and Outbound traffic are correct.

If you are using a VPN. Make sure the AWS CIDR and your Local CIDR's are there. The local CIDR range is also your local AWS CIDR, not just your on-premise CIDR block range.

1. In order to establish a connection between your on-premises Active Directory and the AWS Cloud AWS Managed Microsoft Active Directory you must setup both the on-premise server (LOCALDOMAIN.COM) and your AWS Domain (AWSDOMAIN.LOCAL).

2. Create an AWS EC2 VM that will be joined to your awsdomain.local domain. After you have created the VM. Login to the VM and add the DNS addresses that are listed for AWSDOMAIN.LOCAL in the AWS Directory Service. Do an ipconfig /all to make sure that the DNS IP addresses are correct or nslookup will fail.



3. FYI. You cannot RDP into the AWS DC's for the AWS Managed Microsoft AD. You have to use the Server Manager Tools on the server that is joined to the the AWSDomain.Local.



4. Join the machine to your AWS Domain. The default username is "admin" and not "administrator". Then reboot the computer.

Right-click on Conditional Forwarder and then select New Conditional Forwarder



5. Configure your domain that will be used for the trust so that it can talk from your domain.


6. Run PowerShell or CMD Prompt as an administrator and run ipconfig /flushdns

7. Now ping the domain (FYI. It takes a few minutes. Relax). ping the domain name (e.g. ping awsisyourfriend.local) and you should get the ip address back that you put as the IP addresses of the master servers (domain IP's). DNS Settings are here with the arrow.

Image sanitized.


8. After you are able to ping the DNS IP addresses. Do an nslookup awsisyourfriend.local. Now you will get a response something like

C:\Windows\system32>nslookup awsisyourfriend.local
Server:  dc.onpremisedomain.com
Address:  172.55.8.8

Non-authoritative answer:
Name:    awsisyourfriend.local
Addresses:  8.8.8.8
          8.8.4.4

9. Next. Open your Active Directory Domains and Trusts and start the setup of the trust.

Note: URL if you have time. https://docs.aws.amazon.com/directoryservice/latest/admin-guide/ms_ad_tutorial_setup_trust_create.html

Pics below for us that need to Get it Done!


10. Type the domain

11. Click Forest Trust


12. Two-Way


13. This Domain Only


14. Forest-wide authentication


15. Trust Password (NOTE: This is the password that you set up with the creation of the AWS Managed Microsoft AD).


16. Do not confirm the Outgoing or Incoming Trust (select No)


11. Now the on-premises side of the AD Domain Trust (Two-Way) is done.



12. Do the AWS Side now.


13. Note: You cannot create the trust from within the Windows OS on AWS. You must do it through the AWS Console. If you attempt to do it from the OS. You will get an error that says Access Denied!

14. If you have done everything correctly. You will get rewarded with a "Verified" green check mark!




AWS Articles:



Share:

Thursday, January 24, 2019

How to Enable Windows Server 2016 Remote Shell

1. Open PowerShell

2. Get-Item WSMan:\localhost\shell\allowremoteshellaccess



3. Open GPEdit and Turn it off. Restart the installation for the File Server and then you can turn it back on.

Computer Configuration > Administrative Templates > Windows Components > Windows Remote Shell > Allow Remote Shell Access


4. gpupdate

5. Now run the app again.




Thank you XIA!!

https://www.centrel-solutions.com/media/xiaconfiguration/adminguideweb/RemoteShellRequests.html

Share: