Wednesday, November 27, 2019

Failure to Mount ISO on Windows Server 2016 and 2019

Problem

You have an ISO on a share in your network. You have mapped a drive to the share because, well, that's the right way to do it. And the users are happy about it, the service operations people can get to their stuff easily and the Admins have a share with all of the daily use tools.
Now, that library just happens to have a bunch of ISO files. You want to use one of them to install software, modify boot/install disks, etc. The easy button since Win 8 is the right click and Mount command. East peasy lemon squeezy. You get what looks like a CD Drive and you can browse the files.

Replication

Now, try that on a server with at least minimal security. Not happening.
  1. The right click Mount option is there. so the default application is Windows Explorer or File Explorer depending on your version.
  2. If you directly address the file as in \\file-01\share\mygreat.iso it will work
  3. If you map a drive "net use z: \\file-01\share" and try z:\mygreat.iso it will NOT work. It will tell you there is a problem.
  4. Yes, if you move it to a C Drive folder, or some other direct location it will work, but when you have a LIBRARY of iso files, that's not an option.

Supposition

This has to do with Administrative rights and UAC. Somehow the mapped drives (EVEN THOUGH THEY ARE MAPPED IN GROUP POLICY FOR ALL USERS) do not get mapped when you go to mount the ISO.
Before you suggest it. I'm already logged in as a domain admin.
This is a large issue. Many people are having this problem. And for those of you that are NOT having the problem. Good for you. Now lock your computers down so you don't get hacked, OK?


Monday, October 7, 2019

NetApp OnCommand Performance Manager

Installing

Installing OCPM is an easy OFV File install, but sometimes, you get a MonitorLoop error. What I found was that the OVF file had reservations for CPU and memory. Reduce those to Zero (0) and you should startup fine.
The next problem will be installing the VMWare tools. On my instance of 6.5U3, the OVF file came in with an OS Type of Other/Other and the VMware tools install can't find a disk for Other. Shut it down, go into Edit Settings and the VP Options tab. Epand General and you'll find the OS Choices. I was able to successfully install using "Centos 4/5 or higher x64". Set the VM Options to that, save, and power it back up.
You should now beable to open the console, select VMRC, Manage, Install VMWare tools. You will see the console update automatically that it is installing the tools. Eventually, it will bring you to the start of the setup questions. Location.
It's Whack-A-Mole from here.

Monday, August 12, 2019

CDBurnerXP command line problems ERROR 800402A0

An error (800402A0) occurred while executing the command

This is generally caused by an error in one of your paths. Try different options and see what the results are.

Simplify the folder option from this:
"C:\Program Files\CDBurnerXP\cdbxpcmd.exe" --burn-data -folder[\backup]:"D:\DiskBackup" -iso:"d:\datadisk.iso"

To this.
"C:\Program Files\CDBurnerXP\cdbxpcmd.exe" --burn-data -folder:"D:\DiskBackup\" -iso:"d:\datadisk.iso"

Use quotes around your paths.

Wednesday, April 24, 2019

vCenter VCSA Certificate Locations via SSH

HTTPS Strict Transport Security error

If you get the dreaded HTTPS Strict Transport Security error when going to vCenter and you CAN NOT get the certificate in order to install it. Because if you get the error, you don't get the screen that let's you download it. Catch-22.

Where it lives

Here is where it lives:
/etc/vmware/vmware-vmafd

Just putty or Secure CRT (MY ABSOLUTE FAVORITE) into the vCenter appliance, cd to the directory and cat the files. Then copy them, paste them to a notepad++file and save them with a .crt extension.

Import into Certificate Manager

Click start, and type certificate manager, run it.
The ca.crt file you should import and store in local computer in the trusted root certification authorities folder. The Machine-ssl.crt file just use local machine and let it figure it out.

DONE! 

No more red banner, no more HSTS error.

Now I'm leaving that took about 3 hours to figure out.

Thursday, March 7, 2019

Dell R640 Servers

Using these as ESXi Hosts

There are a number of things that you want to do if this is a true enterprise environment. You want to manage them as a group. that can be difficult especially in an offline environment.

Dell has lots of services for internet connected servers, but who really wants their credit card processing server touching the internet.

iDrac 9 info

https://www.dell.com/support/manuals/lt/en/ltbsdt1/poweredge-r940/idrac_3.00.00.00_ug/configuring-services-using-web-interface?guid=guid-7bb3e8b1-89f2-4ef5-94ab-146958142354&lang=en-us


VMware Enhanced Authentication not working

If you have accepted the certificates already, you next need to go to:
https://vmware-plugin:8094
and accept the certificate and all should be well. You may have to reload Firefox, but I didn't have to.

Also, if you are using Enterprise signed certificates, You will want to make sure that Firefox will recognize the Enterprise Certificate chain. If you push out your certs via Group Policy, look at the link below to get it working.




I’ve copied Tom’s Article in below to make sure that post doesn’t go away.

Configuring Firefox to use the Windows Certificate Store

·         2 months ago
·         Updated


VMware Horizon ADAM Database edits

Making changes to the ADAM Database

There are many reasons why you want to make changes to the ADAM Databse. It is the underlying database that holds the info on Pools, VDI Machines, etc. And this Database FREQUENTLY gets corrupted. I'm not sure why, I'm a big VMware Horizon fan, but man does it get messed up easily.

So to get into it there is a standard procedure that I grabbed from VMware's KB2012377 https://kb.vmware.com/s/article/2012377

Windows Server 2008 / 2012

To connect to the View ADAM database:
  1. Log in to one of the View Connection Servers as Domain Administrator.
  2. Click Start > Administrative Tools > ADSI Edit.
  3. In the console window, right-click ADSI Edit and click Connect to.
  4. In the Name field type:

    View ADAM Database
     
  5. Select Select or type a Distinguished Name or Naming Context.
  6. In the field below Select or type a Distinguished Name or Naming Context, type:

    dc=vdi,dc=vmware,dc=int
     
  7. Select Select or type a domain or server.
  8. In the field below Select or type a domain or server, type:

    localhost:389
     
  9. Click OK.
  10. Click View ADAM Database [localhost:389] to expand.
  11. Click DC=vdi,dc=vmware,dc=int to expand.
Note: If you are unable to connect using dc=vdi,dc=vmware,dc=int, try using dc=vdi;dc=vmware;dc=int.
Once in there, you have a number of common tasks that you can do.