Saturday, February 1, 2014

Adam's tips-

Great SFTP server- Crush FTP.  Has a nice web interface to file shares as well, easy to configure.


Some pretty sweet tools-

AD Photo Edit- Allows easy upload of photos into AD
AD Info- A cool AD reporting tool for users, computers, groups, printers, etc.
Service Credential Manager- Changes service accounts on multiple servers at once.  Great for changing an admin password, it can automatically search out and update
Group Manager- A tool that allows users to administer groups they are assigned as the manager of.
AD Permission Reporter- Provides a report on your AD pertmissions

As well as a bunch of other tools.


SO if you ever need to set up a windows DHCP server but can’t authorize it because no AD server is available?  Works on 2008-2008R2 (not sure about 2012).
Here is a handy registry key to bypass authorization-
Add this key:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\DHCPServer\Parameters
Name: DisableRogueDetection
Data: 0x1
and restart the server (only restarting the service will not help)


Need a tiny TFTP server that doesn't require anything be installed?  TFTPD32 is your answer.


On a Cisco ASA, ever need to see either the client IPSec VPN or Site to Site (L2L) tunnel Pre-Shared-key (pre shared key)?

Use this command-
more system:running-config

It will show you the config with the preshared key/


Ever need to grab your Public IP from the command line in Linux?

content=$(wget -q -O -)
echo $content


Ever need to change the MTU size in windows?  Below will change it to 1452.

netsh interface ipv4 show subinterfaces

netsh interface ipv4 set subinterface "Local Area Connection" mtu=1458 store=persistent

Doing a ping larger than 1458 with the -f (no fragment command) should now fail-
ping -f -l 1472


Want to enable DNS Lookup on your Cisco ASA?

dns domain-lookup outside
dns server-group Default DNS


Want to measure bandwidth from individual users on an ASA?
What to explore QOS issues?
Spot inappropriate internet use on an ASA/

Product is FREE for watch only mode.  I'd be happy to assist getting it up and running if you have this need.


Ever run into that quirky VMware issue on a Dell PowerEdge server where you try to create a datastore and your vsphere client disconnects you?  You need to delete the Dell diagnostics partition on the disk.

1.       Enable SSH via console
2.       Connect to VM host via SSH
3.       Run the following to get a list of current LUN paths:
esxcli storage core path list
4.       Record the ‘Device’ value for the device that shows ‘Unavailable or path is unclaimed’ at ‘Adapter Transport Details’ or ‘Target Transport Details’
5.       Run the following to change the label on the partition:
partedUtil mklabel /dev/disks/<device> msdos
6.       Retry datastore creation operation in vSphere

Ever need to download software that was pre-installed on a Dell system?


Ever need to get the Cisco IPSec Client working on Windows 8?

There is a work-around.

1. Press Windows Key+R to open the run prompt > regedit {enter}

2. Navigate to;HKEY_LOCAL_MACHINE>SYSTEM>CurrentControlSet>Services>CVirtA

Locate the DisplayName > Edit its value > Delete all the text to the LEFT of "Cisco Systems VPN Adapter for 64bit Windows."


Want to easily review blue screens (BSOD)?


Ever need to turn on RDP on Windows 7 remotely?

psexec \\machinename reg add "hklm\system\currentcontrolset\control\terminal server" /f /v fDenyTSConnections /t REG_DWORD /d 0


Ever need to check if inheritable permission is checked on all AD accounts?  This script will do that, just save it as a .vbs files-

Option Explicit

Dim objRootDSE, strDNSDomain, adoConnection
Dim strBase, strFilter, strAttributes, strQuery, adoRecordset
Dim strNTName, strDN, intNtSecDescCntrl
Dim objUser, objSecurityDescriptor, strInheritable


' Determine DNS domain name.
Set objRootDSE = GetObject("LDAP://RootDSE")
strDNSDomain = objRootDSE.Get("defaultNamingContext")

' Use ADO to search Active Directory.
Set adoConnection = CreateObject("ADODB.Connection")
adoConnection.Provider = "ADsDSOObject"
adoConnection.Open "Active Directory Provider"

Set adoRecordset = CreateObject("ADODB.Recordset")
adoRecordset.ActiveConnection = adoConnection

' Search entire domain.
strBase = "<LDAP://" & strDNSDomain & ">"

strFilter = "(&(objectCategory=person)(objectClass=user))"

' Comma delimited list of attribute values to retrieve.
strAttributes = "distinguishedName,sAMAccountName"

' Construct the LDAP query.
strQuery = strBase & ";" & strFilter & ";" & strAttributes & ";subtree"

' Run the query.
adoRecordset.Source = strQuery

' Enumerate the resulting recordset.
Do Until adoRecordset.EOF
  ' Retrieve values.
  strNTName = adoRecordset.Fields("sAMAccountName").Value
  strDN = adoRecordset.Fields("distinguishedName").Value
  strDN = Replace(strDN, "/", "\/")
  Set objUser = GetObject("LDAP://" & strDN)
  Set objSecurityDescriptor = objUser.Get("ntSecurityDescriptor")
  intNtSecDescCntrl = objSecurityDescriptor.Control
  If (intNtSecDescCntrl And SE_DACL_PROTECTED) <> 0 Then
    strInheritable = "Allow inheritable permissions disabled"
    strInheritable = "Allow inheritable permissions enabled"
  End If
  Wscript.Echo strNTName & ";" & strDN & ";" & strInheritable

' Clean up.

No comments:

Post a Comment