showing all posts
by lunarg on January 23rd 2017, at 11:03
In a hybrid Exchange environment, you may get an error when attempting to log in to Office 365 when performing a management task involving Office 365. When clicking the "Sign in to Office 365" link, the following error is displayed:

critical error
The web page isn't loading correctly. Please reload the page by refreshing your browser.

Technical information: Unable to set the property "mkt" of a null reference or undefined

Not really a solution, but you can work around the issue by performing these steps:

In EAC, navigate to Hybrid.

Click Modify.

Click Sign in to Office 365, type in your Office 365 username and password.

Once logged in, click on the Enterprise tab and try per  ...
by lunarg on January 23rd 2017, at 10:17

If you have the Exchange Management Tools installed, you can easily import the Exchange module into a standard Powershell by running the Add-PSSnapin cmdlet.

Depending on the Exchange version, the module to add is slightly different:

Exchange 2007Microsoft.Exchange.Management.PowerShell.Admin
Exchange 2010Microsoft.Exchange.Management.PowerShell.E2010
Exchange 2013Microsoft.Exchange.Management.PowerShell.SnapIn

If you're not sure about the version, you can also use wildcard characters:

Add-PSSnapin *Exchange*

If you don't want to install the management tools, you can also use PS remoting to remotely access the management shell from a standard Powershell.

by lunarg on January 23rd 2017, at 08:57
One of the most pertinent changes to Windows 10 is how updates are being installed. Unless your computer is using WSUS or some other corporate solution, you do not have the ability to select which updates to install and which not to install. This includes drivers and feature updates (such as the Anniversary Update). While it is usually recommended to install all updates, sometimes it is not wanted, e.g. because of system instability, or simply, because you don't want a particular update (e.g. Anniversary Update). To meet customer's demand, Microsoft has released a tool to reintroduce the "hide an update" function of older Windows versions.

The tool allows you to "hide" s  ...
by lunarg on January 19th 2017, at 16:49

With PowerCLI, you can generate all sorts of lists. To retrieve the configured and reported OS version of your VMs, try running this one-liner:

Get-VM | Sort | 
   Get-View -Property @("Name", "Config.GuestFullName", "Guest.GuestFullName", "Guest.IpAddress") | 
   Select -Property Name, 
       @{N="Configured OS";E={$_.Config.GuestFullName}},
       @{N="Running OS";E={$_.Guest.GuestFullName}},
       @{N="IP Address";E={@($_.Guest.IpAddress)}} | 
   Export-CSV -Delimiter ";" -Path "vms.csv"
by lunarg on January 19th 2017, at 14:49
ADMT stands for Active Directory Migration Tool and is used to migrate AD objects (such as users, groups, computers, etc.) from one AD forest or domain to another, supporting complex scenarios in the process.

Why Microsoft hides their most useful tools is a mystery though. So here are the download links. You will need to accept some EULAs and have a Microsoft Account if you wish to download it though.

Navigate to

If you have not done so, you will have to log on with a Microsoft Account and join the program and accept its EULA things.

Then, you will be able to click through to the download page and download ADMT version 3.2, and, if req  ...
by lunarg on January 10th 2017, at 14:42
If your ESX host has lost connection to the vCenter server, but you can still directly access the host's management, and can find nothing else wrong with the vCenter server or its network connection to the host, you may want to the free space on your ESX host.

Logs and other temporary files may have filled up one or more ramdisk partitions (e.g. when you don't have a persistent scratch partition, it gets mounted on /tmp). This can cause any of the following issues:

Connection loss between the ESX host and vCenter server;

Errors when attempting to reconnect or add an ESX host to a vCenter server;

Errors while attempting to activate or configure HA;

Other unexplainable errors...

You can   ...
by lunarg on January 10th 2017, at 14:38
If the scratch partition (/tmp) gets filled up, check for the presence of the file ql_ima.log. If it is present, you are bothered by a bug from an older version of the qla4xxx driver. Even if you use Update Manager, this driver does not get updated automatically. The solution is add the driver to Update Manager or download and install the update manually.

This procedure describes the manual installation of the update on your ESX host. There's no need to put the host in maintenance mode but you will have to reboot to use the new driver.

Download the driver (you need a VMware account):

VMware 5.5

VMware 6.0

Unpack the download and copy the file qla4xxx-634.55.28.0-offline_bundle-1682448.z  ...
by lunarg on January 9th 2017, at 16:33
A new Powershell module, called Azure AD v2 is available to manage Office365 from Powershell, and is now the preferred method for managing Office365 tenants from Powershell. Unlike the older MSOnline module, you need to download and install this version from the Powershell Gallery, for which there is no direct download link.

Windows 10 already has the PowershellGet module needed to download modules from Powershell Gallery, so all you need to do is run the following in an elevated Powershell:

Install-Module AzureAD

You may get a message about NuGet provider is required to continue. You can safely confirm this.

Everything pre-Windows 10 and starting from Windows 7 SP1 and 2008R2 SP1, you n  ...
by lunarg on December 16th 2016, at 16:00
In iOS 10 it seems it is no longer possible to hang up a call on your iPhone when it is locked. In past release, the controls to hang up a call would automatically appear when moving or waking up the phone, but now you simply see the number or contact you're calling and the call time. It seems the call control buttons have gone, and to end the call, you have to unlock the phone, go to the Phone app and end the call from there, which is a hassle.

When looking on the internet about this, a lot of people think this is a bug, but actually, it's not... Apple has changed the behaviour because of the new way to unlock your phone (pressing the Home button rather than swiping).

To end the call, tap  ...
by lunarg on December 15th 2016, at 14:48

Ned Pyle from Microsoft TechNet wrote an article about DCDiag, explaining in detail what it actually does.

Read full article on TechNet.

by lunarg on December 14th 2016, at 16:29

Terry Zink, an MVP, wrote a good article about the difficulty most common e-mail filters have at stopping phishing impersonation attacks using simple display tricks.

Full article:

by lunarg on December 9th 2016, at 10:53
When deploying a vShield Manager VA, its IP address is set to DHCP by default. Once deployed and started, you can log on through the console to change it to a fixed IP.

Open a VMWare console to the appliance and log on:

manager login: adminPassword: ****** (the CLI 'admin' password you entered during the deployment)

Go into enable mode and enter the setup:

manager> enablePassword: ****** (the enable password you entered during the deployment)manager# setup

Enter the IP address, subnet mask, gateway and DNS settings. When finished, you will be prompted to log out.

Note that after setting the IP address, I had to restart the appliance because the web interface was only accessible on t  ...
by lunarg on November 18th 2016, at 14:44

When running Get-ReceiveConnector, the contents of the RemoteIPRanges field may be truncated if there are a lot of entries. You can "expand" the list:

Get-ReceiveConnector MyConnector | Select -expand RemoteIPRanges | FT

This will expand each of the IP range objects and FT makes sure it's nicely formatted in a table. For single addresses, you only need the LowerBound column, but if ranges have been specified, you probably want both columns.

by lunarg on November 18th 2016, at 14:43
Now that Skype for Business 2016 for Mac is publicly available, you could get rid of the old Lync for Mac 2011. Preferably, this should be a clean uninstall. Microsoft has released KB2691870, explaining how to do this.

The uninstall is not very elaborate: dragging the Lync application to the Trash is sufficient but leaves configuration, preferences and chat history on your Mac. To get rid of those, remove the following files:




Remove these folders:

~/Documents/Microsoft User Data/Microsoft Lync Data

~/Documents/Microsoft User Data/Microsoft   ...
by lunarg on November 7th 2016, at 16:40
If your Windows 7 happens to be stuck in Startup Repair, where allowing it to repair your computer still results in going back to Startup Repair, and restoring a restore point doesn't help either, you could try to manually restore the Windows Registry to the last known good configuration.

Allow your computer to boot into Startup Repair, but rather than letting it perform the automatic repairs, click to go to the System Recovery Options menu. From there, you can open a command prompt.

Locate the system drive: this is usually the C: drive, but if not, navigate to other drivers and look for folders like Program Files, Users and Windows.

Once you've found the correct drive, navigate to the fo  ...
by lunarg on November 3rd 2016, at 15:41
An SSL certificate and private key can be stored in many formats. Sometimes, it may be necessary to convert from one format to another. One such case is where you have a private and public key (certificate) in PKCS12 (PFX-file) format, and need the individual certificate and private key in X509 format. You can use OpenSSL to perform the conversion.

A PFX-file generally contains both the private and public key (certificate) and is usually secured with a passphrase. If the PFX-file you want to convert is secured with a password, you will need this in order to perform the conversion. If you do not have the password, there's no way to reset this and the PFX-file will be unusable. When performin  ...
by lunarg on October 28th 2016, at 08:58

You can easily backup the complete configuration of a Brocade FC switch through the CLI. It works similar to that of a Dell or Cisco switch, allowing to copy the configuration to a remote server. FTP, SCP, SFTP and others are supported.

Log on to your switch through the CLI, then:

Switch1:admin> configupload
Protocol (scp, ftp, sftp, local) [ftp]: scp
Server Name or IP Address [host]:
User Name [user]: remoteuser
Path/Filename [<home dir>/config.txt]: /home/remoteuser/switch1.txt
Section (all|chassis|switch [all]): all
remoteuser@'s password:

configUpload complete: All selected config parameters are uploaded
by lunarg on October 27th 2016, at 11:34

If you encounter the following error message while trying to backup the internal database (IDB):

Putting the Internal Database into the backup mode failed.

The reason might be due to the backup being initiated by the Inet process which may run as a certain user account that has not been added to the impersonation of the cell manager.

To resolve, follow these steps:

  1. Start the DP GUI. Choose "Clients"
  2. Right-click the cell manager, delete the existing impersonation.
  3. Add a new impersonation and enter the correct credentials (usually the service account).
by lunarg on October 12th 2016, at 15:46
I found this little snippet online that allows you to preparse your Powershell scripts to ensure there are no syntax errors in it. This is useful if you need to know the script is error-free but are otherwise unable to run it.

Source: Contents of file TestScript.ps1param($path, [switch]$verbose)if ($verbose) { $VerbosePreference = ‘Continue’}trap { Write-Warning $_; $false; continue }& `{ $contents = get-content $path $contents = [string]::Join([Environment]::NewLine, $contents) [void]$ExecutionContext.InvokeCommand.NewScriptBlock($contents) Write-Verbose "Pars  ...
by lunarg on September 19th 2016, at 11:59
If you get a keyserver time out when trying to download a public key from a public GPG server, you may need to check your firewall settings. When receiving a public key, gpg connects to TCP port 11371, which not commonly opened up when you are behind a strict firewall. Luckily, most key servers also listen on port 80, allowing to get the public keys through that port.

When attempting to download a key and you are not able to connect to the default port, you will get something like:

gpg --keyserver --recv-keys 94558F59gpg: requesting key 94558F59 from hkp server keyserver.ubuntu.comgpg: keyserver timed outgpg: keyserver receive failed: keyserver error

To force gpg to d  ...
showing all posts