How to Collect Local Administrators Group

For auditing purpose was asked to collect [local]\Administrators group members on every machines.

I created a script (Get-LocalAdministratorsMember.ps1) for that and deployed via GPO to all clients. This script do not require admin rights, but a share where every users can write.

When you have all the reports of your clients on selected share, run Export-LocalAdministratorsReport.ps1 script for generate a CSV file for reporting.

Follow the Synopsis for change the settings.

Problem: “Dependecy Error” upgrading ESXi 6.0 to Update 2

Trying to upgrading ESXi 6 to update 2 with esxcli we received this error:

[DependencyError]
VIB VMware_bootbank_esx-base_6.0.0-2.34.xxxxx requires vsan << 6.0.0-2.35, but the requirement cannot be satisfied within the ImageProfile. VIB VMware_bootbank_esx-base_6.0.0-2.34.xxxxxx requires vsan >= 6.0.0-2.34, but the requirement cannot be satisfied within the ImageProfile.
Please refer to the log file for more details.

There is a KB from VMware that explain why.

This is what i did.

To check the profiles that are inside the ZIP

esxcli software sources profile list -d /vmfs/volumes/datastore1/update-from-esxi6.0-6.0_update02.zip

 

Then update the profile like explained on VMware KB:

esxcli software profile update -p ESXi-6.0.0-20160302001-standard -d /vmfs/volumes/datastore1/update-from-esxi6.0-6.0_update02.zip

 

Check the results with:

esxcli software profile get

How to Rename network interface on Ubuntu

After update to Ubuntu 1510 due to an UDEV changes, will automatically assign predictable interface names for network interfaces.

My “eth0” became “ens32”

To assign the old name to your interface follow that:

ip link

and copy the MAC address of your device.

Then edit/create this file:

sudo nano -w /etc/udev/rules.d/10-network.rules

and add the following line:

SUBSYSTEM=="net", ACTION=="add", ATTR{address}=="aa:bb:cc:dd:ee:ff", NAME="eth0"

Replace “eth0” with the wanted name of interface and “aa:bb:cc:dd:ee:ff” with your device MAC address.

A reboot is required then.

How to Add silence to the end of an MP3

You can do it easily with SoX pad argument with the following syntax:

sox [oldfile] [newfile] pad [seconds of silence at beginning of file] [seconds of silence at end of file]

SoX is not coming with MP3 support; on windows platform you should copy libmad-0.dll and libmp3lame-0.dll on the same SoX folder, respectively for decoding and encoding MP3.

These two dll can be found here: http://win-builds.org/doku.php on package “lame” and “libmad”

How to Enable Credential Guard

Here you find a nice paper on how work and how enable Credential Guard on Windows 10 Enterprise:

Protect derived domain credentials with Credential Guard

I did it on my machine and then my VMs did not start anymore displaying “incorrect parameter” error. If you recreate the VMs (with the same settings) and linking the same Virtual Disk, you can keep back your VMs running fine. Probably there are a better solution..if you find it, let me know :-)

 

Problem: Unreliability of %LOGONSERVER%

On VPN connected client, I start to check why %LOGONSERVER% variable report a not correct DC. What I suspect is that this variable is updated only at logon session. Again on Windows 7, if you logon with cached credential (no DC reachable), this variable report the last DC your machine used on past.

To check che current DC your clients is using better to use nltest:

nltest /sc_query:mydomain.local

Problem: Group Policy error on Internet Explorer Zonemapping

If you found a warning with EventID 1085 on your Windows 7 clients:

Windows failed to apply the Internet Explorer Zonemapping settings. Internet Explorer Zonemapping settings might have its own log file. Please click on the “More information” link.

You can try to troubleshoot it following these steps.
On Details Tap you can found the error code:

EventID-1085

In may case is 87 (The parameter is incorrect).

If you check on “Event Viewer\Applications and Services Logs\Microsoft\Windows\Group Policy\Operational” You will find the error with Event-ID 7016:

Completed Internet Explorer Zonemapping Extension Processing in 78 milliseconds.

Check the previous Event-ID 4016 that report the GPO that is causing the issue:

EventID-4016

Checking the GPO, I found an invalid entry on “Site to Zone Assignment List”.
To check if an entry is fine or not, you can use a machine that is not managed by GPO trying to add the entry on “Trusted Sites” directly from IE.

It’s interesting to note checking the values you found on

HKCU\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMapKey

..that also the not valid entry is there.
 

Via: https://blogs.technet.microsoft.com/askds/2008/08/21/a-test-case-for-troubleshooting-group-policy-application-event-id-1085-and-7016/