Archive for April, 2012

Repair KMS errors: 0xc004e002 and 0xc004f012

By SuperG - Last updated: Tuesday, April 3, 2012

Repair KMS errors: 0xc004e002 and 0xc004f012 When trying to activate Windows using a KMS server you may see the following error. It looks like the Licensing Store might have gotten corrupted – Try the below steps to recreate the Store. Open an Administrator Command Prompt (CMD.exe) stop the Software Licensing Service by running: net stop […]

Mass Power Shell AD update from CSV file

By SuperG - Last updated: Tuesday, April 3, 2012

Make mass changes to AD using Power Shell AD and CSV file You can update almost anything in AD using power shell. Here I will show how to update the company field of a user object. First look at this page for information if your power shell script does not work with the following error: […]

Password Required for Local Accounts

By SuperG - Last updated: Tuesday, April 3, 2012

Set password required and password expires for all local user accounts So I have a requirement to ensure all local accounts require a password and that the password can expire. Below is a VB script that I run as a startup script from a Machine GPO. Later we will include this into our imaging process […]

ADWS and TMG Listener

By SuperG - Last updated: Tuesday, April 3, 2012

Certificate Errors ADWS and TMG Ran into a problem when trying to setup a Web Listener on TMG. Exported the SSL Certificate from the IIS server (with private key) Imported the SSL Certificate to the TMG server Created the Web Listener When choosing the SSL Certificate to use for the Web Listener I would get: […]

Deleted AD Objects

By SuperG - Last updated: Tuesday, April 3, 2012

When an object is deleted in AD (2008R2 with recycle Bin installed), that object is marked as being deleted and moved to a special OU. You can find this object using Active Directory for Windows PowerShell. Get-ADObject -Filter ‘samaccountname -eq “<Account name>“‘ -IncludeDeletedObjects Example: Get-ADObject -Filter ‘samaccountname -eq “ThompsonDA”‘ -IncludeDeletedObjects Deleted : True DistinguishedName : […]

Logon troubleshooting

By SuperG - Last updated: Tuesday, April 3, 2012

Ok so today I had a problem with an account that kept getting locked out due to bad passwords. The user had just changed their password. To try and find out where the issues is, I turned up the debug on netlogon on the DC. This way I can see where the logon event is […]

Troubleshooting CAC Login

By SuperG - Last updated: Tuesday, April 3, 2012

So we use smartcards to log onto the network, and i have a lot of users who call and say they are having problems logging on. When asked what the error is they state “its the system cannot log you on error”. Well there are around 20 different “the system cannot log you on errors”. […]

@Axel Doux

By SuperG - Last updated: Tuesday, April 3, 2012

This is in response to Axel Doux’s comment. So I am assuming you created your EventLog something like this: New-EventLog -LogName “My new EventLog” -Source “My sources” And you can write events with: write-eventlog -logname “My new EventLog” -Source “My sources” -Message “Some Error happened” -id 999 Then to read the log you can use: […]

Event Forwarding of Security Logs

By SuperG - Last updated: Tuesday, April 3, 2012

This is a long one, sorry but there is a lot in information here. So recently, where I work, we decided to collect a lot of the security events from all of our domain controllers. We are going to use the built-in “Windows Event Collector” service to do this. I am assuming you already have […]

AD Undelete 2008R2 (Access is Denied)

By SuperG - Last updated: Tuesday, April 3, 2012

In a previous blog I wrote about Deleted AD Objects and this one touches on that a little. This morning a colleague of mine had a request to undelete a computer that had been deleted from the network. Using powershell he attempted to recover the object but got an “Access is Denied” error. Now, he […]