Thursday, October 13, 2011

Might prove handy for Iphone Exchange situations

https://www.testexchangeconnectivity.com/
Posted by at No comments:

Wednesday, October 12, 2011

Self Signed Certificates

1. Add the CA to your server.

2. Have IIS and the default website (or whatever name) DS tab issue a cert request and hold.

3. Use browser and got to server/certsrv and add the cert request, Advanced, and the long option in the middle. The the CA will issue.

4. Back to IIS and apply the cert.

Note length of cert expiration is 1 or 2 years, but can extend by editing registry for ValidPeriodUnits (and pick period like year) (see MS kb 254632)

5. For port 443 etc click Authorization and selected secure and 128 bit


See this:

and
Posted by at No comments:

Tuesday, October 11, 2011

Cisco - Port Forwarding and Point of View on Inside Outside

To forward ports, one generally makes a NAT rule, then an Access rule. Cisco tends to view the target ip system on the lan from a target-centric point of view. Hence the rule's dstination is "outside" - ie meant to apply to those outside packed wanting to get in.


Posted by at No comments:

Monday, October 10, 2011

New Profiles and Romaing Profiles

So if setting up a user after a big event like a reformat or creating a similar username, it may prove handy if you've kept a copy of the old D&S or Users profile area. When logging in anew, perhaps as the new user there will be a new fairly blank profile made and their NTUSER files will be created with the user SID's.



The goal is then to login as another user with say Admin rights, and remove the new profile contents, slip in the old profile contents, and put the "new" ntuser files in. Works very well, but some programs will still need some setting up and tweaking like Outlook - set the Account settings and do the usual for slipping (eventually) the old Outlook.pst (or whatever name) file back into place.



ROAMING PROFILES Aspect


If setting up a user in a new domain but wanting to use the same D&S or User profile folder then do the following:



1. Move away the old user D&S or Users profiles folders on the C: Drive.


2. Up at the server, rename (or copy away) all the profile and userdata folders for this 'new" old user.


3. down on C: drive, logged in as an admin, edit the registry in the Profile List area:



HKLM\Software\Microsoft\Windows NT\Current Profile\ProfileList



There on the left side you will see the SIDs and on the right the folder path (revealing the user name) and the GUID. Get rid of the involved entries for this new old user, and go to the key above (ProfileGuid) and eliminate the involved GUID entry


4. logon as the new old user


5. logoff. And logon and off several times, then finally off and then on as an Admin.


6. Revisit the server area and move away these fairly blank profiles and userdata folders, then bring back (copy back) the older ones you saved in Step 2.


7. Be sure to copy in the new ntuser files you found in the Step 6 into the profile area


8. check the Security and ownership and setup correctly to involve this new user and nothing of the old, possibly invalid SID.


9. Logon locally on the workstation as the new old user and you should see all the old desktop documents etc.


Posted by at No comments:

Friday, October 7, 2011

Configuring SBS 2011 without Internet Connection

Thanks to the following site/people who posted instructions on this process on SBS2008. It is basically "the same" process on 2011.



I was in a situation without internet access and had done the initial SBS install and the CTTI wizard had said it was happy ( in the process I had manually specified the ip and router, and waited through it's huge long searching delay). But I could not run the Internet Address wizard. I suspected there was a way to fool the system - this situation had to be allowed. Running through the process various ways, I usually wound up with CTTI wizard unhappy on the reachable internet outcome and for sure it would not allow the Internet Address wizard. Funny that it did when it reported ok originally.

So following these steps this all works, and it is pretty funny when you see the wizard change its tune from "You don't have an internet connection" to "I see you have an internet connection" hahaha.

Wish I could have commented on the original page, but this post will have to do. Thanks y'all!

Quick Summary in case that site or page goes away:

Get to the point int he wizard where you can enter the IP and Router manually.
When prompted for "Do you want to continue without discovery" answer YES
Then hit TEST
Then hit SKIP TEST


Posted by at No comments:
Subscribe to: Posts (Atom)