psexec -i -s cmd.exe
Now, VPN clients can establish VPN connections to the SSTP-based Routing and Remote Access server by using the same certificate.
To replace the certificate hash value of the SSTP-based Routing and Remote Access server certificate with the certificate hash value of the IIS Web server certificate, follow these steps:
- Obtain the Sha256 hash value for the IIS Web server certificate. You can obtain the hash value from the error message that is logged in the System event log of the VPN client. For example, the Sha256 hash value may resemble the following hash value:
- Open an elevated command prompt on the VPN server.
- At the command prompt, type the following command, and then press ENTER to configure the Sha256CertificateHash registry key value for the SSTP service:
reg add HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SstpSvc\Parameters /v SHA256CertificateHash /t REG_BINARY /d d075f96f979fd4df20f3fdf7a5335807879ca627e5f3fc0bab7a7ac067c831c6 /f
- At the command prompt, type the following commands one at a time, and then press ENTER to restart the Routing and Remote Access service:
net stop sstpsvc /y
net start remoteaccess
- At the command prompt, type exit, and then press ENTER to close the command prompt.
Now, VPN clients can establish VPN connections to the SSTP-based Routing and Remote Access server by using the IIS Web server certificate.
In Office 365 administrators can invoke the managed folder assistant by using the start-ManagedFolderAssistance command.
PS C:\> Start-ManagedFolderAssistant email@example.com
This week I had a customer present with an issue where the invocation of the managed folder assistance was failing with a generic RPC error.
“The call to Mailbox Assistance Service on server: ‘NAME’ failed. Error from RPC is –2147220989”
When this error is encountered subsequent retries of the same command can be successful.
The error can sometimes occur as portions of mailboxes are being initialized within the service. For example – if a secondary archive is being provisioned off a main archive.
As a potential workaround to this issue the primary mailbox GUID can be specified in the start-ManagedFolderAssistant command.
get-mailboxLocation –user firstname.lastname@example.org | fl mailboxGuid,mailboxLocationType
MailboxGuid : aace1f4e-5181-4855-a0c7-466f1fe2f1d1
MailboxLocationType : Primary
MailboxGuid : c2098d94-d55b-4a06-9b52-d485c54e9a19
MailboxLocationType : MainArchive
This command will dump the mailbox types and GUID of all mailboxes associated with a user.
From the list we can locate the primary mailbox and the mailbox GUID. Using this mailbox GUID we can invoke the managed folder assistance.
PS C:\> Start-ManagedFolderAssistant aace1f4e-5181-4855-a0c7-466f1fe2f1d1
When utilizing the GUID we can minimize the change that any initialization process does not cause the command to fail.
Get-Mailbox | select UserPrincipalName,ForwardingSmtpAddress,DeliverToMailboxAndForward
On Windows 10 PC:
HKCU\Software\Microsoft\Terminal Server Client\RDGClientTransport
Change to 1
Ubiquiti provides instructions here for running the UniFi Controller as a service. What they don’t tell you is that when you try to upgrade the controller, you can’t, because the service is still running. Here are the instructions for that:
1. Back up your config from Settings > Maintenance > Download Backup. If that doesn’t work from remote access, try it from a browser on the LAN. If _that_ doesn’t work, go to Settings > Auto Backup and download the most recent backup.
2. On the server running the controller, open an administrative Command Prompt. Stop the UniFi Java service:
cd "%UserProfile%\Ubiquiti UniFi\"
java -jar lib\ace.jar stopsvc
3. Overinstall the new controller (run UniFi-installer.exe). On the last page of the install wizard, check “Start UniFi Controller after installation”.
4. In the small window that opens, wait until it says “UniFi Controller (x.xx.xx) started”:
Close the window (do not launch browser).
5. Back at the administrative Command Prompt, install and start the service:
java -jar lib\ace.jar installsvc
java -jar lib\ace.jar startsvc
6. Test access from a brows
NOTE: Respect copyright and consider what you’re doing and WHY before you use this technique to download videos that may have been embedded for a reason.
I told them to download the videos with F12 tools, and they weren’t clear how. I’ll use an Azure Friday video for the example. Do be aware that there are a ton of ways to embed video on the web and this doesn’t get around ones that REALLY don’t want to be downloaded. This won’t help you with Netflix, Hulu, etc.
First, I’ll visit the site with the video I want in my browser. I’ll use Chrome but this also works in Edge or Firefox with slightly different menus.
Then press F12 to bring up the Developer Tools pane and click Network. In Edge, click Content Type, then Media.
Click the “clear” button to set up your workspace. That’s the International No button there in the Network pane. Now, press Play and get ready.
Look in the Media list for something like “.mp4” or something that looks like the video you want. It’ll likely have an HTTP Response in the 20x range.
In Chrome, right click on the URL and select Copy as CURL. If you’re on Windows pick cmd.exe and bash if you’re on Linux/Mac.
You’ll get a crazy long command put into your clipboard. It’s not all needed but it’s a very convenient feature the browser provides, so it’s worth using.
Get Curl: If you don’t have the “curl” command you’ll want to download “curl.exe” from here https://curl.haxx.se/dlwiz/ and, if you like, put it in your PATH. If you have Windows, get the free bundled curl version with installer here.
Open a terminal/command prompt – run cmd.exe on Windows – and paste in the command.
BEFORE you press enter, make sure you add “-o youroutputfilename.mp4.” Also, if you can an error about security and certificates, you may need to add “–insecure.”
In the screenshot above I’m saving the file as “test.mp4” on my desktop.
There are several ways to download embedded videos, including a number of online utilities that come and go, but this technique has been very reliable for me.
Add-VpnConnection -Name MY_VPN_NAME -ServerAddress MY_VPN_SERVER -AllUserConnection $true -SplitTunneling $true -AuthenticationMethod MSChapv2 -TunnelType Automatic -EncryptionLevel Required -PassThru
In Word, select the table.
Press Ctrl+H to activate the replace dialog.
Enter ^p in the Find what box.
Enter some text that doesn’t occur otherwise in the Replace with box, for example @@@@.
Click Replace All and don’t allow it to continue beyond the table.
Close the Replace dialog.
Copy / paste the table into Excel.
Press Ctrl+H to activate the replace dialog.
Enter @@@@ (or whatever you used in Word) in the Find what box.
Press Alt+0010 in the Replace with box.
Click Options >> and make sure that the “Match entire cell contents” check box is clear.
Click Replace All.
You may have to format the cells to wrap text.
To permanently fix the issue:
Stop the DNS service, and the QuickBooks service.
Reserve the port using netsh from an elevated command prompt
netsh int ipv4 add excludedportrange protocol=udp startport=55333 numberofports=5
then start both services