Windows 10 - How to install RSAT on version 1809

In previous old blog article I already discussed about RSAT installation procedure.:

• Powershell - Manage AD through Command line

Secondly I pointed opportunity to manage server only from your workstation/client executing all server plugin avoiding to connect to each server via RDP (security aspect) and having a single point of management with all rsat tools.

• Server - How to Execute RSAT snapins with different users without server/client logon necessity

With new Windows 10 version (1809) something changed slightly.

Here it is powershell installation procedure:

In any case there are other alternative procedure to get same result:

1. Execute Windows Powershell with administrative rights and launch this command to verify that no RSAT tool is really installed
   Get-WindowsCapability -Name RSAT* -Online
   
2. Using below command information would be formatted in a more readable way:
   
   Get-WindowsCapability -Name RSAT* -Online | Select-Object -Property DisplayName, State
3. To add a single tool you should use below syntax:
   
   Add-WindowsCapability –online –Name “Rsat.ActiveDirectory.DS-LDS.Tools~~~~0.0.1.0
   
4. To add all available Rsat tools this is syntax correct:
   Get-WindowsCapability -Name Rsat* -Online | Add-WindowsCapability –Online
   
5. To install only disabled RSAT components, run:
   
   Get-WindowsCapability -Online |? {$_.Name -like "*Rsat*" -and $_.State -eq "NotPresent"} | Add-WindowsCapability -Online
   
6. If you got below error it should be due to Wsus internal server pointing:
   
   Add-WindowsCapability : Add-WindowsCapability failed. Error code = 0x800f0954
   
7. In this case you should execute 
   regedit.exe  --> 
   HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU
   
   Changing  UseWUServer key to 0 and restarting Windows update service.
   
   Restart-Service wuauserv
   
   And then launching this command:
   
   Get-WindowsCapability -Name Rsat* -Online | Add-WindowsCapability –Online
   Afterward rollback previously UseWUServer key value and restarting Windows update service
   
   Restart-Service wuauserv
8. You could execute below powershell command:

• $currentWU = Get-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU" -Name "UseWUServer" | select -ExpandProperty UseWUServer
• Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU" -Name "UseWUServer" -Value 0
• Restart-Service wuauserv
• Get-WindowsCapability -Name RSAT* -Online | Add-WindowsCapability –Online
• Set-ItemProperty -Path "HKLM:\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU" -Name "UseWUServer" -Value $currentWU
• Restart-Service wuauserv

[Information found on this website]

[Other related blog articles:]

https://www.alessandromazzanti.com/2016/06/server-mmc-customization-and-add-taskpad.html

Scripting - Eseguire comandi remoti sui pc in rete con PSEXEC

Scripting - Eseguire .vbs ed installazioni programmi su pc remoti in un dominio o un workgroup con PSEXEC

PSexec - How to execute remote commands about .vbs, .exe, microsoft patch installation...

Ad test:

Server – Effettuare il test di AD

Server - Commands to verify Domain Controller/Domain Status, schema version, move 5 PDC roles, export DHCP

PSexec - How to execute remote commands about .vbs, .exe, microsoft patch installation...

Here is article that explain mmc customization process

http://social.technet.microsoft.com/wiki/contents/articles/2816.how-to-create-custom-mmc-and-add-taskpad.aspx]

Antivirus - MegaCortex Ransomware

I am going to take note on blog mention to this new Ramsoware that work attacking domain controllers at first.

Hoping to find time to create a more detailed specific blog article.

New MegaCortex Ransomware Found Targeting Business Networks

Tips - Live Optics and Vmware 5.1.0 No SOAP response error

Live Optics permits collecting all Hypervisors and VM performance counters. 

https://www.liveoptics.com/about-live-optics/

Live Optics (Dell EMC) is an industry standard method of impartially documenting server/storage configuration and performance as well as observing file characteristics of data. 

This approach permits to analyse existing infrastructure and help decisions about upgrade or hardware renewal as well.

Consider that SAN Optics can be utilized to conduct health assessments on your Storage Area Networks. 

Here it isproblem that we faced (and succesfully fixed):

• We executed Live Optics software on a W2008 R2 Server related to a Vmware vCenter Server 5.1.0.
• Collecting was not working using administrator account as well.
• "LiveOptics_TroubleshootingTrace.txt" was showing these entries

2019-05-06Thh:mm:ss+02:00 SOAP Fault: ServerFaultCode: 

2019-05-06Thh:mm:ss+02:00 Fault detail type: 

ERROR: 2019-05-06Thh:mm:ss+02:00 No SOAP response!

• We opened a Live Optics ticket.
• Support confirmed us that problem was due to an error applicative side.
  This problem was fixed yesterday with below ne version

Live Optics 2.5.20.468497

Networking - Cisco IP Base vs LAN Base differences

Today I would like to mention main differences about IP base vs LAN Base. (Cisco Switches)

High level differences are that LAN Base  support only static IP routing.

More information could be found at below link as well:

https://community.cisco.com/t5/networking-documents/what-is-the-difference-between-an-ip-base-image-and-an-ip/ta-p/3117957

Freeware - HEIC Freeware tool converter

Apple with new iOS releases store images with a new format HEIC that use less space than .JPG but converting free tool for Windows is not so easy to be found.

I share and take note about correct tool that I succesfully identified.

 iMazing HEIC Converter, free tool to convert HEIC to JPG

If you would like to disable your iphone/ipad device storing in HEIC and mantaining it when transferring foto to your pc below pictures are enough clear about necessary settings.

Backup - Client Backup tool - AOMEI Centralized Backupper 2.1

In previous blog article I discussed about Veeam Backup tool focusing on its client backup functionality:

https://www.alessandromazzanti.com/2017/05/backup-veeam-backup-for-free-v20-for.html

Today I would like to mention this product. (AOMEI Centralized Backupper 2.1)

Very briefly:

• It is a centralized backup management solution that enables you to create and manage backup tasks for all PCs, workstations, servers and virtual machines within LAN from a single central management computer.
• Price are quite cheap.
• You could remotely monitor backup jobs for all your clients with the central control server.
• You could centrally manage and backup of all these clients to network share or NAS.

I did not have time to test it, and I hope to get a free trial licence to do that. Meanwhile I preferred taking note about that on blog and share this information, hoping that would be useful for someone.

More information about features and licensing are at below link

https://www.backup-utility.com/abnetwork.html?from=en_nav_for-business#compare

Tips - Sitemap creation hosted BLOGGER web sites

Today I was working on google search console and I was surprised that only few pages was indexed, searching on internet I found problem resolution and applied some fixes.

Furthermore you may find more technical details and relative workflow.

<===========================>

• Sitemap file functionality is used mentioning all website pages, unfortunately this is not true for websites hosted on blogger environments.

• Default blogger XML file refers only to 26 most recent articles.

• Consequential limitation is easy to be understood (for search engine websites visibility and indexing first)

• You might override this limitation going to this website https://ctrlq.org/blogger/, indicate your website, get XML text and insert it in your blogger administration console ( Settings – > Search Preferences, the enable Custom robots.txt option (available in the Crawling and Indexing section).

In this way all search engines will discover your XML sitemap and indexing at all.

Here they are some screenshots 

Tips - How to get domain controller ldap string

If you need to find ldap string on Microsoft Domain Controller there are various and quickly way suitable for this purpose:

a.) dsquery

Consider that for help on a specific command, type "dsquery /?" where is one of the supported object types shown above.

For example, dsquery ou /?

Description: This tool's commands suite allow you to query the directory
according to specified criteria. Each of the following dsquery commands finds
objects of a specific object type, with the exception of dsquery *, which can
query for any type of object:

dsquery computer - finds computers in the directory.
dsquery contact - finds contacts in the directory.
dsquery subnet - finds subnets in the directory.
dsquery group - finds groups in the directory.
dsquery ou - finds organizational units in the directory.
dsquery site - finds sites in the directory.
dsquery server - finds AD DCs/LDS instances in the directory.
dsquery user - finds users in the directory.
dsquery quota - finds quota specifications in the directory.
dsquery partition - finds partitions in the directory.
dsquery * - finds any object in the directory by using a generic LDAP query.

For help on a specific command, type "dsquery /?" where
is one of the supported object types shown above.
For example, dsquery ou /?.

Remarks:
The dsquery commands help you find objects in the directory that match
a specified search criterion: the input to dsquery is a search criterion
and the output is a list of objects matching the search. To get the
properties of a specific object, use the dsget commands (dsget /?).

The results from a dsquery command can be piped as input to one of the other
directory service command-line tools, such as dsmod, dsget, dsrm or dsmove.

Commas that are not used as separators in distinguished names must be
escaped with the backslash ("\") character
(for example, "CN=Company\, Inc.,CN=Users,DC=microsoft,DC=com").

Backslashes used in distinguished names must be escaped with a backslash
(for example,
"CN=Sales\\ Latin America,OU=Distribution Lists,DC=microsoft,DC=com").


Examples:
To find all computers that have been inactive for the last four weeks and
remove them from the directory:

        dsquery computer -inactive 4 | dsrm

To find all users in the organizational unit
"ou=Marketing,dc=microsoft,dc=com" and add them to the Marketing Staff group:

        dsquery user ou=Marketing,dc=microsoft,dc=com | dsmod group
        "cn=Marketing Staff,ou=Marketing,dc=microsoft,dc=com" -addmbr

To find all users with names starting with "John" and display his office
number:

        dsquery user -name John* | dsget user -office

To display an arbitrary set of attributes of any given object in the
directory use the dsquery * command. For example, to display the
sAMAccountName, userPrincipalName and department attributes of the object
whose DN is ou=Test,dc=microsoft,dc=com:

        dsquery * ou=Test,dc=microsoft,dc=com -scope base
        -attr sAMAccountName userPrincipalName department

To read all attributes of the object whose DN is ou=Test,dc=microsoft,dc=com:

        dsquery * ou=Test,dc=microsoft,dc=com -scope base -attr *

Directory Service command-line tools help:
dsadd /? - help for adding objects.
dsget /? - help for displaying objects.
dsmod /? - help for modifying objects.
dsmove /? - help for moving objects.
dsquery /? - help for finding objects matching search criteria.
dsrm /? - help for deleting objects.

b.) Meanwhile you could find LDAP connection string launching ADSI Edit snapin:

c.) Consider that 

The full syntax is at http://www.faqs.org/rfcs/rfc2255.html

Microsoft - Windows 7, SQL 2008, 2008 R2 Server, Exchange 2010, Office 2010 EOL - End of life date

Just a quick post taking note about several Microsoft Products where End Of Life date is 2019 or 2020, the first important effect would be related about product and security patches unavailability.

End Of life Product and date

Windows 7 --> January 14, 2020
Office 2010 EOL --> October 13th, 2020
SQL Server 2008 and 2008 R2 Extended Support --> will end on July 9, 2019
Windows Server 2008 and 2008 R2 Extended Support --> will end on January 14, 2020.
Exchange Server 2010 --> January 14, 2020

Products Reaching End of Support for 2019

Products Reaching End of Support for 2020 


Here they are some interesting information:

- Windows 7 Embedded editions follow different EOL dates, you could use following official link.
- You could upgrade compatible Windows 7 PCs based on these requirements with a full license. 
- About SQL 2008 and W2008 R2 please review this article.
- Here it is indicated how Microsoft threat all its products since first release about Mainstream Support and Extended Support.
- About Windows Server Microsoft propose Microsoft Server upgrade center.
- To have visibility about all Microsoft Product EOL here it is correct link.

Network - Cisco Smart Net Total Care Service

Today I am going to take note on my blog about different Cisco Services that are provided to end users.

At below link you might find more information and specific Cisco document .pdf with whole information.

https://www.cisco.com/c/en/us/services/technical/smart-net-total-care.html#~stickynav=2

https://www.cisco.com/c/dam/en/us/products/collateral/cloud-systems-management/smart-net-total-care/datasheet-c78-735459.pdf

What I would like to focus is on below image/Table for quick reading purpose: