Monday 29 June 2009

A Systems Administrator's - Must Have Books

1. Microsoft Exchange Server 2007 - Administrator's Pocket Guide

http://www.amazon.co.uk/Microsoft-Exchange-Server-Administrator%2527s-Companion/dp/0735623503/ref=sr_1_6?ie=UTF8&s=electronics&qid=1246283346&sr=8-6

2. The Practice of System and Network Administration

http://www.amazon.co.uk/Practice-System-Network-Administration/dp/0321492668/ref=sr_1_1?ie=UTF8&s=books&qid=1246283369&sr=8-1

3. Microsoft SQL Server Administrators Guide

http://www.amazon.co.uk/Administrators-Guide-Server-Microsoft-Windows/dp/0321397975/ref=sr_1_1?ie=UTF8&s=books&qid=1246283394&sr=1-1

4. Network Warrior (The things they never taught you in CCNA)

http://www.amazon.co.uk/Network-Warrior-Gary-Donahue/dp/0596101511/ref=sr_1_1?ie=UTF8&s=books&qid=1246283427&sr=1-1


5. Time Management for Systems Administrators

http://www.amazon.co.uk/Management-System-Administrators-Thomas-Limoncelli/dp/0596007833/ref=sr_1_1?ie=UTF8&s=books&qid=1246283446&sr=1-1

Thursday 25 June 2009

Switch Blog

Very nice blog :o)

http://brian-dao.blogspot.com/2007/06/procurve-switch-tftp-flash-update.html

Flashing HP Procurve 2824 (Firmware upgrade)

Connect with console cable (serial port)

Use Hyperterminal and connect to the specific serial prot

Start (Solar Winds) TFTP Server on your PC
- File
- Configure
- Start (to start the tftp server)

make sure the firmware is set to c:\tftp-root\ and that your root directory is set to that.

Copy newly downloaded firmware upgrades to c:\TFTP-ROOT\

on Switch

switch# conf t
switch(config)# ping 192.168.0.2 (of the machine used for the flash)
switch(config)# copy tftp flash 192.168.0.2 I_07_68.swi
switch(config)#The primary OS Image will be deleted, continue [y/n]

Copy tftp flash from your ip address specified with the filename as copied into the tftp-root directory. Select Y to delete primary OS.

Export & Import Addresses in Outlook 2007 Folders

File,
Import Export
- Export to file
- export to csv (Windows)
- select folder
- at "import a file"
- select "Map custom fields"
- in the "map custom fields"
- click on "clear map
- drag the info you need to the right hand and click on OK

Open the csv you've just exported to

Import using import/export
- map the fields correctly and import

Wednesday 24 June 2009

Install IIS on Windows 2003 Server

Click on Control Panel

- Add Remove Programs
- Add/Remove Windows Components
- Select Application Server

Tuesday 23 June 2009

Hyper-V Virtualization

http://www.sharepointblogs.com/craiglussier/archive/2008/07/07/server-2008-hyper-v-requirements-specifications-and-compatibility-with-existing-virtual-machines.aspx

MS Exchange 2007 Server - Installation & mailbox recovery

(Using VMWare)

Installing

Friday 19 June 2009

HP Procurve switch commands

Flash version
switch(config)show flash

To get to the Default VLAN
switch(config)vlan 1
switch(vlan-1)

Setting up an IP Address for the default VLAN
switch(vlan-1)ip address 10.10.10.1/16

To reboot
switch#boot

HP Procurve Switch 2824 - Reflash

Put yourself on the same network as the switch

Download the new firmware.

1. Use HyperTerminal to connect to the switch using a serial cable.

2. issue the following commands:

switch# en (enable)
switch#conf t (configure terminal)
switch(config)# vlan 1 (to enter the default VLAN settings)
switch(vlan-1) ip address 192.168.1.1/16

3. open and start solarwinds tftp server - point to the correct location of the new firmware (c:\TFTP-root\) - please note if you dont' specify primary or secondary the primary will be used by default.

4. on the switch - tftp flash "youripaddress" the flashname"

switch#copy tftp flash 192.168.1.5 I_10_73.swi
The primary OS Image will be deleted, continue [y/n]

Thursday 18 June 2009

Windows XP - Memory

As standard XP can only see 2GB anything > 2GB needs an entry in the boot.ini

Start - Run "sysdm.cpl"
Click on Startup and Recovery
Settings

Click on "To edit the startup options file manually, click Edit"

Wednesday 17 June 2009

Setting up MS Outlook 2007 to use RPC over HTTP /S

This document explains how to setup Outlook 2007 to connect to Exchange Server 2007 using RPC over HTTP/S (connecting over a VPN (windows 2003 server)

Verify SSL Certficate

on exchange
start - run "iis.msc"
Goto Web Sites
--> Default Web Site
---> Right click and goto properties
----> Directory security (if u have a valid certificate the view certificate button will not be grayed out)

Run the command RPCDump.exe /v on the Exchange back-end server and look at the ncacn_http protocol settings, you can see some of them in Figure 3, and ensure they are listening on the proper port number.

Make sure user have VPN rights (Should be a member of the VPN AD Group)


Exchange 2007

How to Enable Outlook Anywhere


Before You Begin
To enable Outlook Anywhere, you must follow these steps in the following
order:

Install a valid Secure Sockets Layer (SSL) certificate from a trusted
certification authority (CA) that the client trusts.


Install the Windows RPC over HTTP Proxy component.


Enable Outlook Anywhere on a computer that has the Exchange Server 2007
Client Access server role installed.


When you install Exchange 2007, you can install a default SSL certificate
that is created by Exchange Setup. However, this certificate is not a valid
SSL certificate that is trusted by the client. To use Outlook Anywhere, you
must install an SSL certificate that is trusted by the client.

To perform this procedure, the account you use must be delegated the
following:

Exchange Organization Administrator role


For more information about permissions, delegating roles, and the rights
that are required to administer Exchange Server 2007, see Permission
Considerations.

Procedure
To install the RPC over HTTP Windows Networking component
Click Start, point to Settings, click Control Panel, and then double-click
Add or Remove Programs.

Click Add/Remove Windows Components.

On the Windows Components page, in the Components window, select Networking
Services, and then click the Details button.

On the Networking Services page, in the Subcomponents of Networking Services
window, select the check box next to RPC over HTTP Proxy, and then click OK.

On the Windows Components page, click Next.

Click Finish to close the Windows Components Wizard.



Enabling Microsoft Server 2003 VPN to allow ports 80 (http) and 443 (SSL)

Tools of the Trade

** Nagios (snmp trap) www.nagios.org/

** Procurve Manager (buy)

** Putty - http://chiark.greenend.org.uk/~sgtatham/putty/

** Winrar - http://www.rarlab.com/

** Textpad - http://www.textpad.com/

** Cacti - http://www.cacti.net/

** DHCP Explorer -http://www.networksecurityhome.com/network_tools/dhcp_discovery/dhcp_discovery.html

** HP IP Console Viewer - http://hp-ip-console-viewer.software.informer.com/

** SQL Server Management Studio Express - http://www.microsoft.com/downloadS/details.aspx?familyid=C243A5AE-4BD1-4E3D-94B8-5A0F62BF7796&displaylang=en

** MySQL Administratator - http://dev.mysql.com/downloads/gui-tools/5.0.html

** Vision Soft Visual Audit (buy)

** WireShark (Network packet capture) - http://www.wireshark.org/

** Tortoise SVN - http://tortoisesvn.tigris.org/

** CPUZ - System info - http://www.cpuid.com/cpuz.php

** Memtest86 - tests memory http://www.memtest86.com/download.html

** PSTools - http://technet.microsoft.com/en-us/sysinternals/bb896649.aspx

** Ophcrack - Windows XP/Vista Password breaker

** Axis IP Utility - Shows all IP addresses of Axis camera's on the network

** OutlookRecoveryToolboxSetup

** Qres - setting windows resolution & screen size via command line

** Microsoft Installer Clean Up

Vesa Standard

http://www.ergoindemand.com/about_VESA_standard.htm

Tuesday 16 June 2009

DMZ

(Def from wiki)

is a physical or logical subnetwork that contains and exposes an organization's external services to a larger, untrusted network, usually the Internet. The purpose of a DMZ is to add an additional layer of security to an organization's Local Area Network (LAN); an external attacker only has access to equipment in the DMZ, rather than the whole of the network.

Monday 15 June 2009

Admin Tools

http://www.microsoft.com/DOWNLOADS/details.aspx?familyid=86B71A4F-4122-44AF-BE79-3F101E533D95&displaylang=en

Procurve Switch Commands

conf t - to access the configuration

int/interface = the port

show int = shows the interface details

write memory = saves the configuration from flash to ram

int ## name 'newneame' changes the name of a interface (port)

Tagged vs Untagged switch ports

On switches VLAN 1 is the standard VLAN and cannot be changed: deleted or renamed.

Def: Tagged Ports

Tagged ports can belong to more than one VLAN


Def: Untagged Ports

Untagged ports can only belong to one VLAN

HP Procurve - VLAN Menu

To access the VLAN menu (for easier tag/untagged port setups)
type "menu"
choose "switch configuration"
choose VLAN menu

Thursday 11 June 2009

Exchange 2007 - Troubleshooting

Open Exchange Management Console
- Toolbox
- (Message Flow Tools)
- Message tracking

From the client:

telnet mailserver 25 (smtp)
ehlo

telnet mailserver 143 (imap)

If you can connect OK you will see the banners pop up.

systemboard replacement

uk5 datacentre

HP DL360 G5

Technical Test

Always always look very carefully at a problem...

I had a technical test this morning:

Networking had 2 connectors defined:

a Local Loopback connector name: "Local Area Connection" and a proper network interface named "Fax".

The trick was the local loopback connector was defined with a IP Address - but can't go anywhere

A certain URL cannot be reached?
  1. Ping your gateway? Can't ping it? - Check network connection.
  2. Local Loopback connector is no use on its own - make a bridged connection with the "fax" connection (As this connection is the proper networking interface)
  3. Ping gateway? can you ping it, yes? ping desired url
  4. Can you ping the url? yes it pings 127.0.0.1 --> localhost
  5. Here you should ask?? localhost?
  6. Check your host file c:\windows\system32\drivers\etc\hosts


Microsoft Loopback Connector:
(copied from: http://support.microsoft.com/kb/839013)

Manual installation

To manually install the Microsoft Loopback adapter in Windows XP, follow these steps:
  1. Click Start, and then click Control Panel.
  2. If you are in Classic view, click Switch to Category View under Control Panel in the left pane.
  3. Double-click Printers and Other Hardware, and then click Next.
  4. Under See Also in the left pane, click Add Hardware,and then click Next.
  5. Click Yes, I have already connected the hardware, and then click Next.
  6. At the bottom of the list, click Add a new hardware device, and then click Next.
  7. Click Install the hardware that I manually select from a list, and then click Next.
  8. Click Network adapters, and then click Next.
  9. In the Manufacturer box, click Microsoft.
  10. In the Network Adapter box, click Microsoft Loopback Adapter, and then click Next.
  11. Click Finish.
After the adapter is installed successfully, you can manually configure its options, as with any other adapter. If the TCP/IP properties are configured to use DHCP, the adapter will eventually use an autonet address (169.254.x.x/16) because the adapter is not actually connected to any physical media.

Note By default, TCP/IP properties are configured to use DHCP.



IIS - copying a website

To copy a website:

- if you copy a website (import/export settings) you won't export the security settings.

Step:

- Export existing website
- Create new website - import from file
- Goto new website location and set ACL's.

Wednesday 10 June 2009

Must have IT Tools

Textpad

- Spamelikeabitch - email routing software (to test email delivery)

- IIS Resources

- Putty (telnet)

- Filezilla (ftp client)

- multimon - multiple monitor connection

- Keepass (keep login details safe and central & generate random pwd's)

- XMail Manager - Gui interface for Xmail servers (very handy)

- DHCPExplorer - Explore DHCP Servers

- Remote Assistance (%windir%\explorer.exe "hcp://CN=Microsoft%20Corporation,L=Redmond,S=Washington,C=US/Remote%20Assistance/Escalation/Unsolicited/Unsolicitedrcui.htm")

Networking Tutorial

Switch Logins:

Use putty to connect to the switch

conf t (Configure terminal) to login to the admin module

sh int 2 (will show you the interface 2 / the port on the switch)

Understanding Microsoft System Restore

System restore backs triggers include:

- windows updates
- driver installations & updates
- any system changes
- manual creation of restore points

The files it monitors are:
cat, .com, .dll, .exe, .inf, .ini, .msi, .ole, .sys

Creating a system Restore Point
- All Programs - Accessories - System Tools - System Restore and follow the wizard.

System Restore uses 200mb of hdd space and will hold onto it untill its freed.

You have to have admin rights on the machine you are accessing to be able to access sytem restore.

Spamato

Download
http://www.spamato.net/index.php?option=com_content&task=view&id=30&Itemid=63

Tuesday 9 June 2009

Changing a motherboard on a DL360 G5

The Active Directory Tutorial

IIS on XP

Control Panel - Admin - IIS

Setup authentication to include windows logon (domain)

accessing http://localhost

files located c:\inetpub\wwwroot\

logs: c:\windows\system32\logfiles\

Check Event Viewer for errors

Tutorial:
http://www.advancedinstaller.com/user-guide/tutorial-iis.html

SQL Server Management Studio (2005)

Use to connect to sql servers, setup queries, check backups

To download sql server management express

http://www.microsoft.com/downloadS/details.aspx?familyid=C243A5AE-4BD1-4E3D-94B8-5A0F62BF7796&displaylang=en

Active Directory - DFS

Distributed File System (DFS) is a set of client and server services that allow an organization utilizing Microsoft Windows servers to organize many distributed SMB file shares into a distributed file system. DFS provides location transparency and redundancy to improve data availability in the face of failure or heavy load by allowing shares in multiple different locations to be logically grouped under one folder, or DFS root.

Admin Tools - Distributed File System

- New Root ( to setup a new root)

- Show Root ( to view current root)

You can right click on the target to open the path to the folder.

Active Directory Backup

Start - Run - ntbackup.exe

Backup Wizard Advanced

" Back up Selected files, drives, or network data"

Expand "my computer"

Select c:

(Sysvol)

System State (registry settings)

Windows - set automatic logon

automatic logon

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon

Change the value data for “AutoAdminLogin” from “1″ to “0″.

Inter-Tel 8520 Hunt Groups

To turn on or off hunt group calls:
Dial 3-2-4

ACD Hunt Groups
: Automatic Call Distribution (ACD) - distribute calls equally among the available members. These hunt group members are ref to as "agents" - who log in to the ACD hunt group to receive calls.

To login to more than one hunt group:
Dial 3-2-8

Setting up ACD Hunt Groups:

Choosing the correct Hunt Group
- Open up the Inter-Tel Session Manager
- Connect to the IP Address or dns name
- Click Start
- Click on System
- Click on + next to Devices & Feature Codes
- Select Hunt Groups
- Select the group you want - make a note of the 4 digit number of the hunt group

Add an extension to the Hunt Group:
- Go back to the Devices and Feature Codes
- Click on Stations
- Click on the extention
- In the right hand pane you'll see the information related to that extention
- Click on Associated Extention
- Right Click on the Attendant "value"
- Select "choose attendant"
- Click on Hunt group and click on next
- Click on the correct Hunt Group and click "finish"






Inter-Tel Model 8520 (Digital phone) User Manual

User Manual

http://www.warrencor3.org/pages/uploaded_files/8520%20User%20Guide.pdf

Friday 5 June 2009

Defrag

%systemroot%\system32\defrag.exe c: -f -v

System Info

from cmd prompt

systeminfo > c:\systeminfo


Host Name: QHQPC9
OS Name: Microsoft Windows XP Professional
OS Version: 5.1.2600 Service Pack 2 Build 2600
OS Manufacturer: Microsoft Corporation
OS Configuration: Member Workstation
OS Build Type: Multiprocessor Free
Registered Owner: QSoft Consulting Ltd
Registered Organization: QSoft Consulting Ltd
Product ID: 76487-338-4124352-22368
Original Install Date: 23/09/2008, 13:43:25
System Up Time: 7 Days, 6 Hours, 46 Minutes, 7 Seconds
System Manufacturer: Hewlett-Packard
System Model: HP xw4400 Workstation
System type: X86-based PC
Processor(s): 2 Processor(s) Installed.
[01]: x86 Family 6 Model 15 Stepping 6 GenuineIntel ~2400 Mhz
[02]: x86 Family 6 Model 15 Stepping 6 GenuineIntel ~2400 Mhz
BIOS Version: HPQOEM - 20070927
Windows Directory: C:\WINDOWS
System Directory: C:\WINDOWS\system32
Boot Device: \Device\HarddiskVolume1
System Locale: en-us;English (United States)
Input Locale: en-gb;English (United Kingdom)
Time Zone: (GMT) Greenwich Mean Time : Dublin, Edinburgh, Lisbon, London
Total Physical Memory: 2,047 MB
Available Physical Memory: 1,023 MB
Virtual Memory: Max Size: 2,048 MB
Virtual Memory: Available: 2,001 MB
Virtual Memory: In Use: 47 MB
Page File Location(s): C:\pagefile.sys
Domain: corp.qsoft.co.uk
Logon Server: \\MANX3
Hotfix(s): 281 Hotfix(s) Installed.

[226]: KB932823-v3 - Update

NetWork Card(s): 2 NIC(s) Installed.
[01]: Broadcom NetXtreme Gigabit Ethernet
Connection Name: Local Area Connection
DHCP Enabled: Yes
DHCP Server: 10.0.17.1
IP address(es)
[01]: 10.0.18.87
[02]: Microsoft Loopback Adapter
Connection Name: Local Loopback

Windows 2003 - Kerberos time error & fix

kerberos

error

The kerberos client received a KRB_AP_ERR_TKT_NYV error from the server host/baycat1.qsoft. This indicates that the ticket used against that server is not yet valid (in relationship to that server time). Contact your system administrator to make sure the client and server times are in sync, and that the KDC in realm QSOFT is in sync with the KDC in the client realm.

net time /set en yes

VI commands to be used:

vi commands

Command to be use:

“yy” copy a line
“p” paste
“/” search

Adding untagged ports on a switch

Login to the switch
Adding untagged ports to vlan 100
Qhqsw2(config)# Vlan 100
Qhqsw2(vlan-100) Untagged 7
Qhqsw2(vlan-100) Write memory
Qhqsw2(vlan-100) show run

Kill visualscan running

pskill -t \\pcname -u user -p password vsScan.exe

Win2003 Srv out of space (delete IIS logs)

Start - Run -> Services.msc

stop web publishing

delete IIS log files:
c:\windows\system32\logfiles

restart web publisher

Robocopy

robocopy source destination /eta /z /r:1 /w:1

Blog Archive