How to Disable SMB1

WannaCry and Co. suggest that it’s time to remove some old protocol, and SMB1 it’s one of that.

Here you find a script that is usefull for that; run it as admin rights:

Disable-SMB1.cmd

This batch call a powershell script (check that all the scripts is stored on the same folder and that the execution path is where you store the scripts)

I used a batch to bypass the powershell signature and make easier for helpdesk to runas as admin.

For disable it with GPO, check this:
https://support.microsoft.com/en-us/help/2696547/how-to-enable-and-disable-smbv1-smbv2-and-smbv3-in-windows-and-windows

PROBLEM: Outlook Indexing is not reliable

If you recently start to have problem with Outlook search after June patches rollout, this is a know issue:

https://support.office.com/en-us/article/Outlook-known-issues-in-the-June-2017-security-updates-3f6dbffd-8505-492d-b19f-b3b89369ed9b?ui=en-US&rs=en-US&ad=US

Based on your OS there is a fix release (check the link above) or, if you prefer a workaround; a reg key to add.

 

Some other links regarding indexing problem:

https://support.microsoft.com/en-us/help/2769651/outlook-search-returns-no-matches-found
https://support.microsoft.com/en-us/help/2925203/incomplete-search-results-may-occur-in-outlook-when-a-pdf-ifilter-is-i

How to Delete WSD printer Port

I had a Windows 2012 R2 printserver where a WSD port was still there after printer deletion. Delete only the port was not possible (operation not permit).

The spooler will delete the port only if it is assigned to a printer and you are deleting the printer. As workaround you can create a fake printer using this port and a preinstalled driver, then delete the printer.

But using powershell is possible to work less…

List all the WSD Printer Port:

Get-PrinterPort -Name wsd*

Delete the WSD Printer Port (PortName):

Remove-PrinterPort -Name PortName

or if you have only one WSD port:

Remove-PrinterPort -Name (Get-PrinterPort -Name wsd*).name

How to Create a Link to a SharePoint Library opening with Explorer

Open your SharePoint library with IE (otherwise the button “Open with Explorer” is disabled) and open it with Explorer using the button on Ribbon:

Sharepoint_OpenWithExplorer

Within Windows Explorer, right-click on a folder of your Library and select “Create Shortcut”.

Right click on the new shortcut and select “properties”.

Copy the URL you find on “Target”; Should be something like this:

\\your.sharepoint.com@SSL\DavWWWRoot\sites\LIBRARY

Explorer_SharepointLink

Now on a SharePoint page or in any HTML page, create a link with this URL:

file:////your.sharepoint.com@SSL/DavWWWRoot/sites/LIBRARY

Example:

<a href="file://your.sharepoint.com@ssl/DavWWWRoot/sites/LIBRARY/FOLDER">My Library Shortcut</a>

Notes:
In case your URL contains any spaces you need to encode them as “%20”. For other encodings see: http://www.w3schools.com/tags/ref_urlencode.asp

ERROR: dcdiag warning on userAccountControl

On a new build-up DC, running dcdiag I found this problem:

Starting test: MachineAccount
Warning:  Attribute userAccountControl of myDC is:
0x82020 = ( PASSWD_NOTREQD | SERVER_TRUST_ACCOUNT | TRUSTED_FOR_DELEGAT ION )
Typical setting for a DC is
0x82000 = ( SERVER_TRUST_ACCOUNT | TRUSTED_FOR_DELEGATION )
This may be affecting replication?

Using ADUC with “Advanced Features” enabled, on “Attributes Editor” you can change userAccountControl for your DC’s Computer Object

UserAccountControl values:
Typical user : 0x200 (512)
Domain controller : 0x82000 (532480)
Workstation/server: 0x1000 (4096)

Via: https://support.microsoft.com/en-us/help/305144/how-to-use-the-useraccountcontrol-flags-to-manipulate-user-account-properties