Skip to main content

Posts

Showing posts from January, 2010

How to change a Description on the Boot menu in Windows 7

Let's say for some odd reason, you need to have more then one installation of Windows 7 on your PC. When you do this, the boot menu has two entries. Each one says " Windows 7 ". How do you know which one to choose? The default boot will be on the copy you just installed. To make life a little bit easier for you, and anyone else in your organization that needs to duel boot, you can change the description with BDCEdit . Open a command prompt as an Administrator. Type BCDEdit to get a list of available partitions. To Change the current discription type: Bcdedit /set {current} description “New Win 7 Installation” Over course you can name it anything you want. Once you reboot the computer, you will see the new description listed.

How to turn on Active Directory Recycle Bin in 2008 R2

A new feature of Active Directory in Server 2008 R2 is the Recycle Bin. The Recycle bin allow you to recover objects that have been deleted. Unlike an Authorative restore, the properties of the object are also restored. The recycle bin is not turned on by default. Once on, it cannot be turned off. To turn it on: 1. Click Start , click Administrative Tools , right-click Active Directory Module for Windows PowerShell , and then click Run as administrator . 2. At the Active Directory module for Windows PowerShell command prompt, type the following command, and then press ENTER: For this example, my domain is MCTNet.com. Enable-ADOptionalFeature –Identity ‘CN=Recycle Bin Feature,CN=Optional Features,CN=Directory Service,CN=Windows NT,CN=Services,CN=Configuration,DC=MCTNet,DC=COM’ –Scope ForestOrConfigurationSet –Target ‘MCTNet.com’ This process does not put a nice recycle bin for you to use. Next Tuesday's blog will provide a PowerShell Script to help o

DFS: If a folder gets sent to Conflict and delete will there be an event log?

After evaluating the DFS Replication log, I only found event 4104. This event reported the successful initial replication of our DFS Namespace to the other replication partners. It also said that if there were any pre-existing content, it was moved to a new folder inside the replicated folder called \DfsrPrivate\PreExisting . To access this file simply type the full path in windows Explorer. For example, if the path was C:\YearEndData, you would need to type C:\YearEndData\DfsrPrivate\PreExisting. You can now move this data back into the replicate folder. The moved data will be replicated to the other members of the DFS replication group.

Does running GPUpdate /Force cause the computer to reboot?

Running GPUpdate with the /Boot switch will reboot your computer if a change has been made that requires a reboot. Otherwise it will not reboot the system. Items that will require a reboot are those client side extensions that cannot update in the background. Software installations that are assigned to a computer would be an example.

How to add a PowerShell Snapin

Powershell is integrated into almost off of Microsoft's latest software. This is one of the reasons why PowerShell is expandable. One way that Powershell is expanded is through the use of Snapins. When you install software, say Exchange 2007, you also install the Exchange PowerShell Snapins for that product. For this demonstration, we will be using Exchange 2007 as our example software. Before we install the Snapins, lets to a little test. Execute the following commands. $a = Get-Command $a.Count This will list the number of cmdlets currently on your computer. On my test computer, I have 180 cmdlets. If you have not installed Exchange yet (or what ever Microsoft product you want to install), do so now. If this is a workstation, you may only need to installed the support tools for the product. Read the product documentation to determine what you need to do. Get-PSSnapin This commmand should list the currently installed snapins on your computer.

Minimum Service pack level for Windows XP to utilize GPO preferences.

The following is from a blog at TechNet that answers what is the minimum server pack level for windows XP to be able to utilized GPO preferences. ( http://blogs.technet.com/askds/archive/2009/06/18/migrating-from-policymaker-to-group-policy-preferences-with-gppmig.aspx ) Windows Vista RTM and Service Pack 1 Windows Server 2003 Service Pack 1 Windows XP Service Pack 2

How to change the default location for a new computer account.

By default, new computers are placed in the on a container called "Computers" as opposed to being placed in an Organizational Unit. OUs have the advantage of having Group Policy supplied to them. Take this example: You have Windows Software Update Services servers located in each of your geographically dispersed offices. Using Organization Units, you have divided up the client by site and used Group Policy to direct them to their local WSUS server. You add a new computer to your domain. Will it be told where to find its WSUS server? Most likely not. You must first move it to an OU that had a GPO assigned. Then end result could be security configurations that are not applied to the client. By redirecting where the new computer accounts are created in Active Directory, you can make sure that the new client is brought online in the most secure fashion possible. Below is the step by step procedure copied from the reference link at the end of this article. The  redircmp  comm

Query AD for Operating system with PowerShell.

The following script is a modification of the one written by The Scripting Guy: http://www.microsoft.com/technet/scriptcenter/resources/qanda/nov06/hey1109.mspx . You will find a detailed explanation of the steps below at the link above. It will also return the OS version to you. I put my modifications in green $strCategory = "computer" $objDomain = New-Object System.DirectoryServices.DirectoryEntry $objSearcher = New-Object System.DirectoryServices.DirectorySearcher $objSearcher.SearchRoot = $objDomain $objSearcher.Filter = ("(objectCategory=$strCategory)") $colProplist = "name", “operatingsystem” foreach ($i in $colPropList){$objSearcher.PropertiesToLoad.Add($i)} $colResults = $objSearcher.FindAll() foreach ($objResult in $colResults) {$objComputer = $objResult.Properties $objComputer.name $objComputer.operatingsystem Write-host “ “ }

What is the error message when a disable computer tries to log in?

In our test environment, we determined that the user was able to log on and access network recourses. We discovered that the computer was not able to authenticate itself and therefore was not able to take advantage of active directory. For example, we were not able to to update the computer portion of group policy Another problem is that if the user did not have a cached profile on the client, the user will recieve the following error at login: The trust relationship between this workstation and the primary domain failed. Once logged in with a user account that had cached credentials (or a local account) an examination of the System log revealed Level: Error Source: NETLOGON Event ID: 5721 Description: The Session setup in Windows NT or Windows 2000 Domain Controller %\\Server\domain% for the domain %domain% failed because the Domain Controller did not have an account %Client% needed to set up the session by this computer %Client% . ADDITIONAL DATA If this co

Are the encryption levels in TS 2008 the same as TS 2003?

After reviewing the specs on RDP 5.4 and 5.3, they do contain the same encryption levels as RDP 6. These levels are: Low: All data sent from the client to the server is protected by encryption based on the maximum key strength supported by the client. Client Compatible: All data sent between the client and the server is protected by encryption based on the maximum key strength supported by the client. High: All data sent between the client and server is protected by encryption based on the server's maximum key strength. Clients that do not support this level of encryption cannot connect. FIPS: All data sent between the client and server is protected using Federal Information Processing Standard 140-1 validated encryption methods. Clients that do not support this level of encryption cannot connect. Reference: http://msdn.microsoft.com/en-us/library/cc240772(PROT.10).aspx

How do you call functions from different code?

PowerShell Allows you to call up functions that are stored in other scripts. A few things that you need to consider before you do this. 1 – Your calling script must always have access to the script that it is including in its code. 2 – Troubleshooting. You now must consider multiple scripts with looking into bugs. 3- It will be harder to read your script because you will have to open multiple scripts. We are going to first look at the calling script. . d:\PowerShell\functionlib.ps1 $Name = Read-Host "What is your name: " WriteName($Name) StaggerName($Name) Line 1 is telling our script the file path to another script to include. In this case, . d:\PowerShell\FunctionLib.ps1 . Line 2 is asking for the user to input data. Lines 3 and 4 call 2 different functions from the same external script. Now let us look at the external script being called. Function WriteName($strName) { Write-Host $Name } Function

How to delegate Admin on an RODC.

Read Only Domain Controllers are a great option for sites with less then desierable security. When deploying RODCs, one thing to consider is a local administrator. Unlike traditional Domain Controllers, RODCs areable to have a local administrator. These local administrators do not have Domain Administrator rights. They can only work on their RODC. Some of the tasks they can perform are: · Install hardware devices, such as network adapters and disk drives · Manage disk drives and other devices · Install software updates and drivers · Stop and start Active Directory Domain Services (AD DS) · Install and remove other server roles and features · View logs in Event Viewer Manage shares and other applications and services How do you delegate the local administrator role for an RODC? If you are using the wizard, you can delegate this role to a user or group on the Delegation of RODC installation and Administration page. (See bel