ntdsutil: metadata cleanup (enter)
metadata cleanup: select operations target (enter)
select operation target: connections (enter)
server connections: connect to domain <DNS-Domain-Name> (enter)
server connections: quit (enter)
select operation target: list domains (enter)
select operation target: select domain <Domain-Number> (enter)
select operation target: list sites (enter)
select operations target: select site <Site’s-Number> (enter)
select operation target: list servers in site (enter)
select operation target: select server <Failed-DC-Number> (enter)
select operation target: quit (enter)
metadata cleanup: remove selected server (enter)
metadata cleanup: quit (enter)
ntdsutil: quit (enter)
Tuesday, August 19, 2014
Restore system state backup to different Server windows 2012
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters]
SysvolReady to 1
http://blogs.technet.com/b/pki/archive/2013/03/22/windows-server-2012-active-directory-certificate-services-system-state-backup-and-restore.aspx
http://kpytko.pl/2013/12/06/non-authoritative-sysvol-restore-frs/
SysvolReady to 1
http://blogs.technet.com/b/pki/archive/2013/03/22/windows-server-2012-active-directory-certificate-services-system-state-backup-and-restore.aspx
http://kpytko.pl/2013/12/06/non-authoritative-sysvol-restore-frs/
Wednesday, August 13, 2014
VMware vCenter Server Appliance join Domain
Test:
/usr/sbin/vpxd_servicecfg ad test tladmin password1234 domain.name
join Domaim
/usr/sbin/vpxd_servicecfg ad write tladmin password1234 domain.name
Read Domain
/usr/sbin/vpxd_servicecfg ad read tladmin password1234 domain.name
VC_CFG_RESULT=0 ; is OK
/usr/sbin/vpxd_servicecfg ad test tladmin password1234 domain.name
join Domaim
/usr/sbin/vpxd_servicecfg ad write tladmin password1234 domain.name
Read Domain
/usr/sbin/vpxd_servicecfg ad read tladmin password1234 domain.name
VC_CFG_RESULT=0 ; is OK
Tuesday, August 5, 2014
Freeradius Proxy
note:
freeradius default stip username and realm before sending account to radius Server
nonstip => do not stip realm configure at /etc/freeradius/proxy.conf
ex.
realm stu.nida.ac.th {
authhost = 192.168.1.1:1812
accthost = 192.168.1.1:1813
secret = radproxy
nostrip
}
sending user@stu.nida.ac.th for authetication
for changing "realm" used "hints" file in /etc/freeradius/hints
ex.
DEFAULT User-Name =~ "^(*.@stu.nida.ac.th)"
User-Name := "%{1}@stu"
when account logon by user@stu.nida.ac.th Hits wil changed realm to user@stu
freeradius default stip username and realm before sending account to radius Server
nonstip => do not stip realm configure at /etc/freeradius/proxy.conf
ex.
realm stu.nida.ac.th {
authhost = 192.168.1.1:1812
accthost = 192.168.1.1:1813
secret = radproxy
nostrip
}
sending user@stu.nida.ac.th for authetication
for changing "realm" used "hints" file in /etc/freeradius/hints
ex.
DEFAULT User-Name =~ "^(*.@stu.nida.ac.th)"
User-Name := "%{1}@stu"
when account logon by user@stu.nida.ac.th Hits wil changed realm to user@stu
Wednesday, July 23, 2014
vSphere PowerShell CLI
Allow Remote Signed: Set-ExecutionPolicy RemoteSigned
ex.
export ova filter by ResourcePools
#Load the VMWare PowerCLI SnapIn
Add-PSSnapin vmware.vimautomation.core
#List VMWare cmdlets
#Get-Command -PSSnapin VMware.*
Connect-VIServer temp.domain.local -WarningAction SilentlyContinue
$VMS = Get-ResourcePool -Name "iSCSI-VM-Offline_Datastore" | get-vm
foreach ($VM in $VMS){
echo "export $VM to ova file"
Export-VApp -Destination "E:\iSCSI-VM-Offline_Datastore\" -VM $VM -Format OVA
}
ex.
Backup ova
http://idledeveloper.com/tag/export-vapp/
ex.
export ova filter by ResourcePools
#Load the VMWare PowerCLI SnapIn
Add-PSSnapin vmware.vimautomation.core
#List VMWare cmdlets
#Get-Command -PSSnapin VMware.*
Connect-VIServer temp.domain.local -WarningAction SilentlyContinue
$VMS = Get-ResourcePool -Name "iSCSI-VM-Offline_Datastore" | get-vm
foreach ($VM in $VMS){
echo "export $VM to ova file"
Export-VApp -Destination "E:\iSCSI-VM-Offline_Datastore\" -VM $VM -Format OVA
}
ex.
Backup ova
http://idledeveloper.com/tag/export-vapp/
Regular Expressions in NPS
exp:
Network ^192\.168\.10\..+
http://technet.microsoft.com/en-us/library/cc755272(v=ws.10).aspx
Network ^192\.168\.10\..+
http://technet.microsoft.com/en-us/library/cc755272(v=ws.10).aspx
Saturday, July 5, 2014
Modify LDAP Password
Find user in LDAP:
root@mail # ldaplist |grep username
dn: uid=username,ou=group4,ou=people,dc=domain,dc=ac,dc=th
Modify user in LDAP:
root@mail # ldapmodify -D "cn=directory manager" <enter>
Bind Password: blindpassword <enter>
dn: uid=username,ou=group4,ou=people,dc=domain,dc=ac,dc=th <enter> มาจากคำสั่งข้างบน
changetype: modify <enter>
replace: userPassword <enter>
userPassword: (password) <enter>
root@mail # ldaplist |grep username
dn: uid=username,ou=group4,ou=people,dc=domain,dc=ac,dc=th
Modify user in LDAP:
root@mail # ldapmodify -D "cn=directory manager" <enter>
Bind Password: blindpassword <enter>
dn: uid=username,ou=group4,ou=people,dc=domain,dc=ac,dc=th <enter> มาจากคำสั่งข้างบน
changetype: modify <enter>
replace: userPassword <enter>
userPassword: (password) <enter>
Subscribe to:
Posts (Atom)