Skip to main content

Posts

Showing posts from 2018

How to Delete an AzureAD object that Won't Delete

1. Ok. You deleted a user from your on-premise Active Directory and it's still showing that bugger in Azure Active Directory. Your Google Kung-Fu is strong, but you can't find the dang commands. Here is what worked for me. 2. Get Connected via Powershell to Office365 / AzureAD: https://www.microsoft.com/en-us/download/details.aspx?id=28177  ( Install ) https://blog.migrationking.com/2018/12/how-to-connect-powershell-to-office365.html https://docs.microsoft.com/en-us/cli/azure/install-azure-cli-windows?view=azure-cli-latest  ( Install ) 3. Install-Module -Name AzureAD 4. After your connected. Run the following command: PS C:\Windows\system32> Remove-MsolUser -UserPrincipalName rick.james@unitedfederationofplanets.gov Confirm Continue with this operation? [Y] Yes  [N] No  [S] Suspend  [?] Help (default is "Y"): Y 5. Check your AzureAD portal to make sure it's gone. https://aad.portal.azure.com/#blade/Microsoft_AAD_IAM/UsersManagementMenuBlade

How to Connect Powershell to Office365

1. Install the Microsoft Online Services Sign-In Assistant for IT Professionals RTW MSI application. You cannot perform the next steps without it being installed: https://www.microsoft.com/en-us/download/details.aspx?id=28177 2. Open Powershell and install the Install-Module MSOnline module. (Note: Use the Administrator elevated PS) 3. URL for Powershell commands to Manage User accounts and licenses with Office 365 PowerShell: https://docs.microsoft.com/en-us/office365/enterprise/powershell/manage-user-accounts-and-licenses-with-office-365-powershell 4. PS Command to Connect to O365:  Connect-MsolService -Credential $credential 5. You will be prompted to log in with your O365 administrator account (you cannot use a regular account). 6. Run commands without headaches if your environment permits it:  Set-ExecutionPolicy Unrestricted -Force PS C:\Windows\system32> $ UserCredential = Get-Credential 7. Sign-in to Office 365 with Administrator Account 8. Run this

How to Connect to AWS Snowball and Copy Data

1. Order the AWS Snowball from your AWS Account and have it shipped to you. Note: Good YouTube Video by AWS:  https://www.youtube.com/watch?v=hxIiEjmVFu0 2. Download the AWS Snowball Client 3. Download the Manifest File Note: (Security Alert!) Protect the location of the file. King of the Kingdom access if someone snatches it or accesses it unauthorized for the workload/data. 4. Make sure the manifest file is in a path you can access easily. If it's on your workstation, it may be a delay. Use a jump server.

How to Remove a Failed Move Request for the Current Batch of Exchange 2013 to Office 365

1. MS Blog: https://docs.microsoft.com/en-us/office365/enterprise/powershell/connect-to-office-365-powershell 2. Open Powershell as an Administrator and install the AzureAD Powershell Modules on your Windows 10 machine. 3.  Install-Module -Name AzureAD (Doesn't seem to work on W2012 R2 Server) 4. Login with your Office365 Account (You have to be a Global admin). Type in Connect-AzureAD 5. After you type in the password you will get this screen: 6. Connect to Office 365 through PowerShell from the elevated prompt on your local Windows 10 Machine. PS C:\Windows\system32> $ UserCredential = Get-Credential 7. Sign-in to Office 365 with Administrator Account 8. Run this command so that you are connected via PowerShell (no there is no GUI): PS C:\Windows\system32> $Session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri https://outlook.office365.com/powershell-liveid/ -Credential $UserCredential -Authentication Basic -AllowRedirectio

Default AWS Storage Gateway Password

1. After downloading the AWS Storage Gateway and importing the .OVA file into VMware you have to login after you start the VM. 2. Default login is the following: Username: admin Password: password Note: It is no longer sguser / sgpassword 3. After you have logged in test your networking connectivity to AWS: 4. You will need to change the password inside the AWS Console under "Actions" https://console.aws.amazon.com/storagegateway/

How to Speed Up VMware Converter 6.2

1. Taking forever to P2V or V2V a server? Disable SSL on VMware converter. 2. Edit "converter-worker.xml" with your favorite editor. Your going to have to save it as another file name because if you attempt to edit the actual file. It will bark "Access Denied" errors. PATH: c:\programdata\vmware\VMware vCenter Converter Standalone 3. Open the "converter-worker" XML file and edit the section called: <useSsl>true</useSsl> and change it to <useSsl>false</useSsl> 4. Save the file as converter-worker-bak.xml. 5. Delete the original converter-worker.xml file and then remove the -bak from the one you created. 6. Re-launch VMware Converter and go after that migration!

Top 10 IT Certifications 2019

2019 is here already! Good grief! Time is flying. Ok. So here is your Top 10 IT Certifications for 2019. If you are not working in the cloud, seriously...stop playing around and get serious about your career before one of us hungry IT people eat your lunch! The days of playing guardian over an infrastructure and hiding what can be done in the cloud, in a colocation data center or offsite outside of your company, non-profit or organization are OVER. FUD (Fear, Uncertainty and Doubt) no longer will work to your benefit if your one of these dinosaurs in an organization scared of change. It will happen whether you like it or not. Drumroll!!! Hands-on IT Certifications where recruiters will blow up your LinkedIn with offers! 1. AWS Solutions Architect - Associate Level (Champion): https://aws.amazon.com/certification/certified-solutions-architect-associate/ 2. AWS Solutions Architect - Professional Level: https://aws.amazon.com/certification/certified-solutions-architect-profes

How to Configure a Default Login Screen for Windows 10 with Group Policy

1. Create a folder called "Logo" under NETLOGON 2. Add the image to the folder 3. Use  %logonserver% to identify multiple domain controllers since if you identify one specific DC and it goes down or there is any other problem with a particular DC, user's won't get the login screen image (the policy won't run on login). Example: \\%logonserver%\netlogon\Logo\w10-lock-screen.jpg 4. The GPO Setting is under Personalization under Computer Configuration

Migration from Exchange 2013 to Office365 Authentication Error

1. Verify that the Administrative user has the permission for "Application Impersonation" in the Exchange Admin Center. 2. Change all users in your local Active Directory over to the UPN for the verified (publicly resolvable Active Directory Domain). Powershell command: $LocalUsers = Get-ADUser -Filter {UserPrincipalName -like '*domain.local'} -Properties userPrincipalName -ResultSetSize $null $LocalUsers | foreach {$newUpn = $_.UserPrincipalName.Replace("domain.local","public.com"); $_ | Set-ADUser -UserPrincipalName $newUpn} 3. Sync your Azure Active Directory Tool (Force the Update) Start-ADSyncSyncCycle Start-ADSyncSyncCycle -PolicyType initial 4. Verify that your login with "public.com" is working on https://portal.office.com Username: stewie.griffin@public.com Password: test0! You call that a password? This is a password son!! : %&^*(LUIKG/73&^%HVJB)&*(YIU)(&*^UTY8567irtufgykA&*(^RTUFGYOHPI()

How to Fix Microsoft Exchange 2013 to Office 365 Error ews/mrsproxy.svc' failed.The HTTP request was forbidden with client authentication scheme ‎’Negotiate‎’

1. The first part of the denial is that the Exchange 2013 server has to be set to "0" instead of "1" in their attributes. 2. Login to your DC and then search for ADSI Edit (Windows 2012/2016/2019 Server): Change the "adminCount" setting to "1" and then reboot the server (NOTE: I saw that even on reboot, this flag remained. So I doubt it has anything to do with the http authentication.) This is when I then ran the following commands on the Exchange 2013 Server itself in EMS. This is the Microsoft article: https://support.microsoft.com/en-us/help/2975731/access-is-denied-error-when-you-try-to-move-mailboxes-to-exchange-onli but it had no impact at all on the error even after rebooting. It just came back. 3. Login to the CAS or Exchange Server and Open the Exchange Management Shell 4. Run the following command in the EMS: [PS] c:\Windows\system32\ Get-WebServicesVirtualDirectory | select *auth* 5. Look at the output for BasicAuthentic

Transfer FSMO Roles

1. Login with a forest level administrator account 2. Open CMD prompt as an Administrator 3. Run the following commands: ntdsutil - > roles -- > connections --> connect to server dc-servername -- > quit Schema Master transfer schema master <Enter Key> RID Master transfer rid master <Enter Key> Domain Naming Master transfer naming master <Enter Key> PDC Emulator transfer pdc <Enter Key> Infrastructure Master transfer infrastructure master <Enter Key> Type q / q and that's it! Shut the box down or do whatever you were going to do!

Microsoft Exchange Transport Services Won't Start

Open PowerShell with the Exchange PowerShell CMD Tool Check the Health of Exchange: Test-ServiceHealth Check the Exchange Database Status: Get-MailboxDatabase -Status | Format-List name,server,mounted Check the Queues: Get-Queue | Select Identity,Status,MessageCount Open up Event Viewer and Read the logs and check what's going on. If you cannot start the EdgeSync Service. Re-Add: New-EdgeSyncServiceConfig - Site YourSitesandServicesLocation Start --> Run --> services.msc Re-Start the services. If Microsoft Filtering is hung. Bounce the server. Mail should start flowing again. If not...Microsoft Support is your friend. Don't take all day...troubleshoot what you can and then bow humbly, give up and call support. Your busy right? Microsoft US Support: 1 ( 800) 642-7676 Microsoft US Support (URL): https://support.microsoft.com/en-us/assistedsupportproducts Mount Exchange Database Mount-Database -identity Domain\Exchange Server Name\ mailbox name Get

How to Install VMware ESXi 6.7 on VMware Workstation 15

Static IP configuration were causing me some headaches. The alternative options are DHCP and DHCP with a reservation if you have a DHCP server you manage. Optionally, you can go the static configuration route but it was a headache for me and I'm busy and have other things to do. Lab Scenario with VMware Workstation 15 (WS15 was on W10) 1. Download the ISO and then double-click until you find the .ova and double-click it or right click and open it in VMware Workstation. The wizard is pretty simple. 2. After you import the VM and configure the VM with the Wizard. VMware Photon 1.0 will launch and run the scripts in the background. Be patient. It runs for like 5-8 minutes. Just leave it alone. It will boot and you will see the screen. NOTE: Make sure you type in :5480 after the IP or the hostname or you will see bupkis. https://ipaddress or FQDN:5480 . I recommend using the FQDN 3. Select the option that works for you and install everything.

How to Create a Bootable .wim File

1. Download Rufus (Windows Based Systems) / Linux WinUSB doesn't work worth a damn on Ubuntu 18.04.1 LTS at the time of this writing so don't waist your time. https://rufus.ie/en_IE.html (Don't download it anywhere else) 2. Grab your W10 EE/Pro ISO Image if you don't have VLSC: https://www.microsoft.com/en-us/evalcenter/evaluate-windows-10-enterprise (You need a license if you need it more than 90 Days, but for testing/evaluation/school purposes, it's fine.) 3. Launch Rufus and configure the ISO 4. After everything is done. Open the USB and delete the "install" .wim file from \sources and replace it with your .wim file and then rename it  to " install " 5. Boot that sucker and verify everything is working. You're done.

How to Create Bootable Windows 10 USB on Ubuntu 18.04.1 LTS

1. Open Disks app on Ubuntu and format the drive NTFS Do It The Hard OCD Way: 2. Grab the source code from WoeUSB:  https://github.com/slacka/WoeUSB 3. Open Terminal and create a location for WoeUSB: 4. sudo mkdir /opt/woeusb 5. cd /opt/woeusb  && git clone https://github.com/slacka/WoeUSB.git 6. In order to run mk-build-debs you need to install devscripts 7. sudo apt-get install devscripts equivs gdebi-core -y (NOTE: Remove when your done for security of your system ) 8. Then prep the environment: sudo ./setup-development-environment.bash 9. cd /opt/woeusb/WoeUSB/ and then run sudo mk-build-deps 10. sudo gdebi woeusb-build-deps_* Do It the Fast...I Don't Have Time, I'm Busy Way: 1.  https://launchpad.net/~nilarimogard/+archive/ubuntu/webupd8 2. sudo add-apt-repository ppa:nilarimogard/webupd8 && sudo apt-get update -y && sudo apt-get install woeusb -y

How to Fix "The Specified Virtual Disk Needs Repair" on VMware Workstation 15 on Ubuntu 18.04.1 LTS

You try to enlarge the disk and you run into the error about the disk needing repair. Verified that works on VMware Workstation 15 on Ubuntu 18.04.1 1. Open terminal on the machine you have VMware Workstation installed 2. /usr/bin/vmware-diskmanager -R /path/to/.vmdk file 3. Go to settings of the VM and try your advanced operation to compact the disk or expand it. Bam...done.

How to Remove Windows 10 Bloatware Permanently

First and foremost...I want to thank at least 10 different bloggers for posting general information and one of the most helpful was Daniel's IT Blog.  https://bit.ly/2qtT9SH  and Andre Picker  http://bit.ly/2NiBeaT  (This is for removal of the unwanted W10 Apps from .WIM only) This is for an IT Image for Windows 10. Why on earth Microsoft doesn't have an "IT" script to remove all the junk they know damn well will never go on a business, enterprise or government computer is beyond me. So we IT Managers, Solution Architects, Systems Engineer's are left figuring out ways to remove the crapware so user's don't put in a million tickets asking questions about using the software or locking their machine up doing something crazy no one anticipated. Here you go: 1. You can use a Powershell script from How-To-Geek: https://bit.ly/2p3ZjKH but for IT purposes. It's only removing the junk from one profile. Not the entire machine. As soon as you log in with

How to Disable SharePoint Features for Adobe Document Cloud Reader

1. Disable Adobe Cloud Features: https://www.adobe.com/devnet-docs/acrobatetk/tools/PrefRef/Windows/Workflows.html?zoom_highlight=web+services#Servicesintegration(DC) 2. This is how you Disable SharePoint features: 2a. Right Click on FeatureLockDown and add a New Key and type cSharePoint 2b. Right-click on cSharepoint and add bDisableSharePointFeatures. Enter and type 1.  3. You can also block all of the cloud services if you don't want your users doing anything from the cloud. 4. Now it's nice and clean!  5. FYI. You can disable the "Sign In" button up top but it wipes out the tools. It's up to you. 6. Lastly, the more things that you disable. The more features will be locked down. If you disable bToggleAdobeDocumentServices your users will not be able to edit PDF files, create PDF's, Export PDF's, Combine files, etc.

How to Install VMware Workstation 15 on Ubuntu 18.04 LTS

1. Do a clean uninstall of any previous versions for a clean installation. 2. VMware Workstation 14 on Ubuntu 18.04 LTS 3. Open Terminal and run the following command: sudo vmware-installer -u vmware-workstation 4. Download the file from VMware's website 5. from terminal cd to the location where you saved the downloaded file. Run the following command to make the package executable: chmod a+x VMware-Workstation* 6. Execute the Installer from the command line: sudo ./VMware-Workstation* Create your location/path for the shared VM's. I made mine /opt/vmware/shared instead of the default Done.