Archive for April, 2012
Repair KMS errors: 0xc004e002 and 0xc004f012
Repair KMS errors: 0xc004e002 and 0xc004f012 When trying to activate Windows using a KMS server you may see the following error. It looks like the Licensing Store might have gotten corrupted – Try the below steps to recreate the Store. Open an Administrator Command Prompt (CMD.exe) stop the Software Licensing Service by running: net stop […]
Mass Power Shell AD update from CSV file
Make mass changes to AD using Power Shell AD and CSV file You can update almost anything in AD using power shell. Here I will show how to update the company field of a user object. First look at this page for information if your power shell script does not work with the following error: […]
Password Required for Local Accounts
Set password required and password expires for all local user accounts So I have a requirement to ensure all local accounts require a password and that the password can expire. Below is a VB script that I run as a startup script from a Machine GPO. Later we will include this into our imaging process […]
ADWS and TMG Listener
Certificate Errors ADWS and TMG Ran into a problem when trying to setup a Web Listener on TMG. Exported the SSL Certificate from the IIS server (with private key) Imported the SSL Certificate to the TMG server Created the Web Listener When choosing the SSL Certificate to use for the Web Listener I would get: […]
Deleted AD Objects
When an object is deleted in AD (2008R2 with recycle Bin installed), that object is marked as being deleted and moved to a special OU. You can find this object using Active Directory for Windows PowerShell. Get-ADObject -Filter ‘samaccountname -eq “<Account name>“‘ -IncludeDeletedObjects Example: Get-ADObject -Filter ‘samaccountname -eq “ThompsonDA”‘ -IncludeDeletedObjects Deleted : True DistinguishedName : […]
Logon troubleshooting
Ok so today I had a problem with an account that kept getting locked out due to bad passwords. The user had just changed their password. To try and find out where the issues is, I turned up the debug on netlogon on the DC. This way I can see where the logon event is […]
Troubleshooting CAC Login
So we use smartcards to log onto the network, and i have a lot of users who call and say they are having problems logging on. When asked what the error is they state “its the system cannot log you on error”. Well there are around 20 different “the system cannot log you on errors”. […]
@Axel Doux
This is in response to Axel Doux’s comment. So I am assuming you created your EventLog something like this: New-EventLog -LogName “My new EventLog” -Source “My sources” And you can write events with: write-eventlog -logname “My new EventLog” -Source “My sources” -Message “Some Error happened” -id 999 Then to read the log you can use: […]
Event Forwarding of Security Logs
This is a long one, sorry but there is a lot in information here. So recently, where I work, we decided to collect a lot of the security events from all of our domain controllers. We are going to use the built-in “Windows Event Collector” service to do this. I am assuming you already have […]
AD Undelete 2008R2 (Access is Denied)
In a previous blog I wrote about Deleted AD Objects and this one touches on that a little. This morning a colleague of mine had a request to undelete a computer that had been deleted from the network. Using powershell he attempted to recover the object but got an “Access is Denied” error. Now, he […]