SS Technology Forum

SS Technology Forum

Computer Migration - Things to Consider

Here are a few points which you can consider while doing computer migration. These points are applicable to all migrations irrespective of the migration tool (ADMT, NetIQ, Quest etc)

Active Directory User Migration

Here is a graphical representation of the high level steps involved in an Active Directory migration using ADMT

User Migration and Merging Using Quest Migration Manager

Pre-creating user account in the target domain is a common scenario these days due to single-sign-on solution, HR management procedure etc

Microsoft Right Management Service (RMS)

Rights Management Service (RMS) is an add-on to many RMS aware applications. In this article my main focus is to explain how we can utilize RMS technology with Exchange 2003 and how we can take advantage of RMS technology to increase the email security

Microsoft ISA Server

I am sure we have all either encountered or heard of this "problem" one time or another if the ISA Server is part of the Active Directory Domain. Is it a problem?

Tuesday, April 14, 2015

Microsoft Intune – Service Status Dashboard

I am not sure you are aware of this, you can check the Microsoft Intune service status using the following URL:

 

https://status.manage.microsoft.com/StatusPage/ServiceDashboard

 

image

If you are you logged in, it will display your service instance name as shown in the following screenshot:

 

image

Tuesday, April 7, 2015

Microsoft Azure - Service Status Dashboard

Here is a great way to identify any maintenance or service related issues with Microsoft Azure service.  The http://azure.microsoft.com/en-us/status/  portal gives you a real time update on Azure services.  You can even subscribe to a feed.

 

image

Thursday, February 26, 2015

F5 VPN Plug-in and NPuroamHost.dll Issue

By default, the F5 VPN plug-in (F5 Networks Firepass Host Plugin) doesn't install from Internet Explorer 11 browser.  If you try the manual installation option, you will get only the NPuroamHost.dll file. Copying and pasting this DLL doesn’t work and also, you won’t be able to find a plug-in directory. 

 

image

You can resolve this issue by adding your VPN URL or company URL to Compatibility View Settings in IE.

image image

Thursday, February 12, 2015

PowerShell TTUC #117 - $FormatEnumerationLimit – Displaying Complete Text

PowweShell Tips, Tricks and Useful Commands #17

Some PowerShell commands don’t display the complete text in the output even if you use Format-List or Format-Table etc command with specific width information.   The result displays with … ellipsis. The $FormatEnumerationLimit variable can be used to control this behavior. Default value is 16. You can set the value to –1 to remove this limitation or set the value to unlimited characters.

 

image

Monday, December 1, 2014

Group Managed Service Account (gMSA) – Access Denied

I have seen a lot of questions on TechNet forums about Access Denied error when installing Group Managed Service Account (gMSA) using Install-ADServiceAccount PowerShell cmdlet. 

Install-ADServiceAccount : Cannot Install service account.  Error Message: ‘{Access Denied}

 

14

This error message can be little misleading if you are using proper administrative credentials.  If you are using a security group for your host servers (PrincipalsAllowedToRetrieveManagedPassword), you need ensure that this particular server is part of that security group.  If you have recently added this server to the group, you need to restart the server to get the updated group membership.  The service account cannot be installed on the server before verifying the group membership.

Thursday, October 23, 2014

Azure Directory Sync - Global Admin and Multifactor Authentication

I was trying configure Azure directory synchronization and it was keep failing with “The use name or password is incorrect.  Verify you name, and then type your password again.” error message.

 

1

I knew that the user name and password are correct.  For some other testing purpose I enabled Multi-Factor Authentication on this account that was causing the issue. Everything started working after disabling MFA on this account. 

2

Tuesday, October 21, 2014

Azure Active Directory Sync – Object Selection and Synchronization Schedule

Finally I got some time to play with the new Azure Active Directory Sync tool and configuration.   You can see the new features of this tool in Alex Simons’  blog - http://blogs.technet.com/b/ad/archive/2014/04/21/new-sync-capabilities-in-preview-password-write-back-new-aad-sync-and-multi-forest-support.aspx.

Installation

The installation was very straight forward.  The step-by-step instruction are provided in the http://msdn.microsoft.com/en-us/library/azure/dn757602.aspx article.  The administration tools and scripts are located in difference places which was little confusing in the beginning. 

Synchronization Service Manager

This is where you administer or customize your synchronization options.  It is an MIIS client. In the backend it creates Management Agent (MA) for your directory and Azure. 

1

The default location of this file (missclient.exe) is in C:\Program Files\Microsoft Azure AD Sync\UIShell

Schedule

By default, the Azure AD sync schedule to run every 3 hours.    It is Windows scheduled task as shown in the following screenshot:

2

You can manually force the replication from here if needed.   In the backend it calls the DirectorySycnClientCmd.exe file which is located in C:\Program Files\Microsoft Azure AD Sync\Bin\ folder.

Note:  If you have Office 365 in a hybrid mode, changing the default schedule or creating a custom schedule is not recommended or supported. 

3

Object Filter and Customization

Object selection and customization can be performed using the Synchronization Service Manager tool.

4

Tuesday, October 14, 2014

Windows Server 2012 R2 – Couldn’t Create A New Partition

I have spent a couple hours this weekend to troubleshoot a partition creation issue during the Windows Server 2012 R2 installation.  I was getting the infamous “We couldn’t create a new partition or locate an existing one.  Fore more information, see the Setup log files” error message.

image

I have tried all the DISKPART recommendations on the following TechNet blogs:

http://blogs.technet.com/b/mempson/archive/2012/12/13/windows-8-and-the-dreaded-couldn-t-create-a-new-partition.aspx

http://blogs.technet.com/b/asiasupp/archive/2012/03/06/error-quot-we-couldn-t-create-a-new-partition-or-locate-an-existing-one-for-more-information-see-the-setup-log-files-quot-when-you-try-to-install-windows-8-cp.aspx

In my case, the issue was related to the boot order or sequence in the BIOS.   I was trying to install OS on to an SSD drive.  It was the first boot device configured in the BIOS.  Once I change the SSD drive to the 2nd place, everything start working! 

Monday, October 13, 2014

Active Directory Migration Service (ADMS) From Microsoft

Active Directory Migration Service (ADMS) is a could based Active Directory migration service (not a solution) from Microsoft.  Behind the scene they are using ADMT and FIM.  Directory synchronization was a big drawback of ADMT.  The combination of ADMT and FIM can overcome all these challenges.

Also, the self migration portal provides an end user driver migration option. 

image

You can see a demo on the Channel9 site - http://channel9.msdn.com/Blogs/Taste-of-Premier/Taste-of-Premier-Directory-Consolidation-with-Windows-Azure-Active-Directory-Migration-Services

Thursday, August 7, 2014

PowerShell TTUC #16 – Adding Comment using # and <# #>

PowerShell TTUC (Tips, Trick, and Useful Commands) – Adding Comment using # and <# #>

In all versions of PowerShell you can use # to a text after it a comment. 

Example:

# This a PowerShell comment

In PoweShell V2 and above you can <# #> to make a block of lines comments

Example:

<# First link

Second Line – This is a PowerShell Script

#>

Popular Posts

Share

Twitter Delicious Facebook Digg Stumbleupon Favorites More