Backtrack:  
 
showing all posts
 
by lunarg on July 17th 2020, at 12:35

The official information page about the long-standing Windows DNS Server Remote Code Execution Vulnerability:

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1350

by lunarg on June 26th 2020, at 12:34

By default, the FortiClient will start up automatically when starting macOS. This may not always be desirable but fortunately, auto-start can be disabled quite easily.

The FortiClient launch agent is located at /Library/LaunchAgents/com.fortinet.forticlient.fct_launcher.plist. Use any text editor to open and edit this file, but you probably will need to do this using Terminal and using sudo to launch a text-based text editor (e.g. vi or nano).

With the file open, look for these lines:

<key>RunAtLoad</key>
<true/>

Change true to false and save the file. Note that updates to the FortiClient may overwrite the change.

by lunarg on June 13th 2020, at 16:05

When you're using your Synology exclusively as a iSCSI target, and have assigned the complete disk space to your LUN's, you will get notifications about the volume being (almost) completely full. Obviously, in this case, you may not want to receive these notifications. Luckily, you can turn these off:

  1. Log on to your DSM.
  2. Navigate to Control Panel → Notification → Advanced tab. In the list, expand Internal storage.
  3. Uncheck the notifications for Volume in low capacity and Volume in extremely low capacity. Click Apply to save the changes.

Note that this will only disable the notifications (e-mail, SMS, etc.). The widget and WebUI will still show the alerts.

by lunarg on May 14th 2020, at 12:20
You can force-trigger storage DRS recommendations (and possible subsequent storage vMotions) through PowerCLI.

Run the snippet below, replacing the value of $dscName to match the name of the datastore cluster you wish to trigger the DRS recommendation on:

$dscName = 'DatastoreCluster1'$dsc = Get-View -ViewType StoragePod -Filter @{'Name'=$dscName}$si = Get-View ServiceInstance$storMgr = Get-View -Id $si.Content.StorageResourceManager$storMgr.RefreshStorageDrsRecommendation($dsc.MoRef)$dsc.UpdateViewData()if($dsc.PodStorageDrsEntry.Recommendation){ $dsc.PodStorageDrsEntry.Recommendation | %{ $storMgr.ApplyStorageDrsRecommendationToPod_Task($dsc.MoRef,$_.Key) }}

  ...
by lunarg on May 14th 2020, at 12:17

If the webclient is letting you down, you can also use PowerCLI to expand datastores.

First, as usual, expand the volume on the storage level. Then, fire up PowerCLI, log on to the vCenter/host and run the following script, replacing the name of the datastore you wish to expand:

$name = 'Datastore1'
$datastore = Get-Datastore $name
$esxi = Get-View -Id ($Datastore.ExtensionData.Host | Select -Last 1 | Select -ExpandProperty Key) 
$datastoreSystem = Get-View -Id $esxi.ConfigManager.DatastoreSystem
$expandOptions = $datastoreSystem.QueryVmfsDatastoreExpandOptions($datastore.ExtensionData.MoRef)
$datastoreSystem.ExpandVmfsDatastore($datastore.ExtensionData.MoRef,$expandOptions.spec)
by lunarg on May 13th 2020, at 10:00
This article is a reference guide for updating the firmware on switches. As I handle a broad range of switch vendors and models, I got tired of looking up the commands, and decided to bundle it all here in one place for easy reference.

Note that this document is not a step-by-step guide to update a specific switch but rather a reference for which CLI-commands to use.

First, look up current version and active boot bank. Can be either A: or B:

show boot system stack-unit 1upgrade system tftp://10.0.0.1/FTOS-SK-9.9.0.0P9.bin B:conf tboot system stack-unit 1 primary system://Bendwr memreload

When upgrading from USB-stick, change tftp:// to usbflash://. USB-stick needs to be FAT32.

To do

  ...
by lunarg on May 8th 2020, at 09:30

The certificate for HiveManager NG has expired on October 23, 2019. As a result, Dell N Series switches running an older firmware or an older version of the HiveAgent, can no longer connect or be connected to HiveManager NG after this date.

The solution is to either update the switch firmware to at least 6.6.0.13, or manually update the HiveAgent to 1.1.29.

More information: https://www.dell.com/support/article/en-us/sln319098/dell-emc-networking-hivemanager-site-cloud-aerohive-com-certificate-expiration-how-to-manually-upgrade-hiveagent-on-dell-n-series-switches?lang=en&ref=topsolutions

by lunarg on April 20th 2020, at 09:50
When attempting to add new Remote Desktop Session Hosts (RDSH) to a session host collection, you may run into the following error message:

Error
Unable to retrieve the session collection properties

This error can possibly be accompanied by additional messages.

When checking the logs, you apparently cannot find anything wrong with the collections: they show up correctly in Server Manager and users can still log on to the collection using existing servers.

Sometimes it can happen that the security descriptors of one of the collections get corrupted, in which case it is not possible to add a new session host, whether it's through Server Manager or through Powershell.

The problematic collec  ...
by lunarg on March 27th 2020, at 14:13
It is possible to convert a QSFP or QSFP+ port to an single SFP or SFP+ port using the Quad to Small Form Factor Pluggable Adapter (QSA). However, in order for this to work, you'll need to configure the QSFP+ port into break-out mode to 4x10Gbps, similar like you would when using actual QSFP to 4xSFP break-out cables.

For OS10, the CLI for this action is:

interface breakout 1/1/7 map 10g-4x

This will break out the interface 1/1/7/ to 4 10Gbps links, which translates to these interfaces on the switch: 1/1/7:1, 1/1/7:2, 1/1/7:3 and 1/1/7:4:

show interface status ------------------------------------------------------------------Port Description Status Spe  ...
by lunarg on March 27th 2020, at 11:52
On a Windows DHCP Server, if you have a lot of DHCP reservations in a particular scope on a server, and you have the need to migrate them to another scope (on the same or another server), you can do so quickly through netsh (a "legacy" command-line tool to perform network configuration on a Windows system).

Fire up a command prompt (or Powershell). First dump, the current scope configuration to a text file:

netsh dhcp server <serverIPAddress> scope <scopeAddress> dump > dump.txt

Note that if you run the command on the server where the originating scope is located, you don't need to specify the IP address/hostname of the server.

Open the text file with your favour  ...
by lunarg on March 20th 2020, at 16:02

With the strong increase in hackers targeting Office 365 tenants, it may be useful to see who has Global Administrator access in your tenant. This can be done either via the Office 365 Portal but also through Powershell.

Note: be sure to install the required Powershell cmdlets before attempting this.

Connect to your Office 365 tenant:

Connect-MsolService

To retrieve a list of users with the Global Administrator role, run this:

Get-MsolRoleMember -RoleObjectId $(Get-MsolRole -RoleName "Company Administrator").ObjectId | Select DisplayName,EmailAddress

You can append Export-Csv to export the list to a CSV-file.

by lunarg on March 17th 2020, at 09:26
If you wish to use TLS, or are using TLS authentication in a Office 365 Hybrid environment, and have manually changed or renewed the SSL certificate, you may still get errors about unable to initiate the TLS session (STARTTLS), even though the SSL certificate has been correctly renewed. Just setting the SSL certificate to be used with SMTP is not enough to make TLS work correctly. You also need to (re-)configure the TLS certificate name on your send and receive connectors.

As stated by the manual:

TlsCertificateName
The TlsCertificateName parameter specifies the X.509 certificate to use with TLS sessions and secure mail. Valid input for this parameter is [I]Issuer[S]Subject. The Issuer val  ...
by lunarg on February 20th 2020, at 16:47

By default, macOS'es Quick Look functionality caches previews of all files, even those found on file shares or encrypted file systems. This may not be what you want. Fortunately, you can disable Quick Look caching.

Open Terminal and type in these commands:

qlmanage -r disablecache
qlmanage -r cache
rm -rf $TMPDIR/../C/com.apple.QuickLook.thumbnailcache
by lunarg on January 21st 2020, at 15:11
For people using Windows 10 LTSC builds, where the Windows Photos app is not available (and not installable), or for people with nostalgic feelings, you can restore the original Windows Photo Viewer from Windows 7.

The full article with registry hacks can be found here: https://www.tenforums.com/tutorials/14312-restore-windows-photo-viewer-windows-10-a.html. It reactivates Windows Photo Viewer as an option to open image files with, though you still need to manually make the association.

In a corporate environment, to force the file association to Windows Photo Viewer for various common file types, you can do so through GPO by creating a file associations XML:

<?xml version="1.0&qu  ...
by lunarg on January 13th 2020, at 14:50

If you want to set the Dock size in macOS to a specific value, you can use the Terminal to do so:

defaults write com.apple.dock tilesize -int 32; killall Dock

This will set the icon size to 32px, and then restart Dock. To get the current value of the Dock size:

defaults read com.apple.dock tilesize
by lunarg on January 7th 2020, at 11:40
It is still possible to provision the Panasonic KX-TGP500B01 on 3CX version 16 (tested with 16 update 3), even though it is deprecated, by following the instructions outlined here.

The phone template is no longer available but can be obtained by fetching it from 3CX version 14 or 15. Most people no longer have this running so as an alternative, you can grab the template from this article. The firmware files are still available for download from the 3CX website (see forementioned link).

Note that the same limitations to the phone usage apply, and with the template it is not possible to add the base station as a FXS/DECT device. Only the first handset is provisionable, additional handsets mu  ...
by lunarg on December 12th 2019, at 12:53

The original version of Boxer is currently no longer in development. Being still 32-bit, it doesn't run on macOS Catalina. Luckily, some people are working on making Boxer 64-bit and have already some success.

You can follow the thread here on github and includes some working downloads.

by lunarg on December 9th 2019, at 16:54
I had an issue where vMotion would no longer work. When selecting the target host in the vCenter UI, the compatibility check would fail with the error:

Error
A general system error occurred: Connection refused: The remote service is not running OR is overloaded, OR a firewall is rejecting connections.

A Google search for the issue reveals quite a bit of possible causes, mostly pointing to several more standard causes, which were all in order. When digging deeper in the logs, I stumbled upon the same message appearing in /storage/log/vmware/vmware-vpxd/vpxd.log.

Continuing the search, someone mentioned that it could be caused by services not started, which can easily be revealed when loggi  ...
by lunarg on December 9th 2019, at 15:45
You can disable password expiration from the command-line when logging on using SSH or by enabling the Bash shell. Note that you will need root privileges (i.e. root account) to make this change.

If shell access is not enabled, you need to enable it first:

Log on to the appliance management portal: https://ip-or-fqdn:5480/.

In the Navigator, click on Access. On the right side (Access Settings), click on the Edit button.

Tick the box next to Enable SSH Login for remote access, or if you rather prefer making the change through the VMRC, check the box Enable BASH Shell. Then click OK. The change is effective immediately.

Log on to the shell using either SSH (using PuTTY or another applicat  ...
by lunarg on December 2nd 2019, at 14:41

HPE has determined an issue with certain HPE SAS Solid State Drives (SSDs) which have a bug in their firmware causing a drive failure at 32,768 hours of operation. A critical patch has been releases to address the issue.

More information: https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-a00092491en_us

 
showing all posts
 
 
« August 2020»
SunMonTueWedThuFriSat
      1
2345678
9101112131415
16171819202122
23242526272829
3031     
 
Links
 
Quote
« If the batteries of a TV remote run out, why do we press the buttons so much harder? »