vCenter 6.0 Content Library on Windows 2012 R2 Hosted NFS

If there is a reason or requirement for hosting NFS on a Windows environment and you would like to use that shared space for your vCenter Content Library then this might work for you:

  1. Install NFS role on Windows Server 2012 R2

  2. Read more »

Recover Deleted Microsoft SQL Server Cluster Name Object

We were faced with a deleted computer object/cluster name object/cluster resource for one our SQL clusters.

The lovely error message confirmed why the cluster was in an offline state:

Cluster network name resource ‘SQL Network Name (XXXXXSQLCLUS01)’ cannot be brought online. The computer object associated with the resource could not be updated in domain ‘XXXXXXX.com’ for the following reason:
Unable to get Computer Object using GUID.

The text for the associated error code is: There is no such object on the server.
The cluster identity ‘XXXXXXXXXXCLUS01$’ may lack permissions required to update the object. Please work with your domain administrator to ensure that the cluster identity can update computer objects in the domain.

Read more »

TFS 2013 Upgrade: Project Collection Stuck Offline (Servicing…) State

We got around to finally upgrading our TFS 2012 Update 4 & SQL Server 2008 R2 SP2 environments to TFS 2013 Update 4 & SQL Server 2014 CU6 Enterprise.

Step 0. Background

The environment consisted of 3 project collections:

  • CollectionA – 450GB – 30 projects
  • CollectionB – 10GB – 1300 projects
  • CollectionC – 1.9TB – 10 projects

All the collections BUT CollectionB upgraded (eventually) without a problem on a dedicated hardware platform consisting of 4 CPUs (HT), 32GB RAM & 15K RAID10 disk configurations.

Read more »

Altiris 7.5 Silent Certificate Deployment

I was recently faced with a task of deploying Cisco Jabber client & Cisco Media Services Interface with the help of Symantec Altiris 7.5. Software importing stage went fine, policy creation fine, filter creation fine, deployment fine until it got to the stage of installing the “Media Services Interface” package – I am told by my telephony guy that this is provides video capabilities to Jabber.

Read more »

ADFS Proxy Server CTL Issues with ADFS Server

In our ADFS & Office 365 environment there is currently a single ADFS Proxy server during the piloting phase. For various reasons there hasn’t been any external testing, therefore I was not aware that there is Certificate Trust List issue between the proxy and ADFS servers.

According to this Technet blog post:

The proxy trust relationship between a Web Application Proxy server and the AD FS 2012 R2 server is client certificate based. When the Web Application Proxy post-install wizard is run a self-signed Client Certificate is generated and inserted into the AD FS configuration store using the credentials specified in the wizard. AD FS also propagates this to the AdfsTrustedDevices certificate store on the AD FS server.

The Proxy Trust certificate is then used by the Web Application Proxy server to authenticate to the AD FS server. This also means that the Proxy Trust is independent of domain membership and that the Web Application Proxy does not need to be domain joined. The Common Name on the certificate is “ADFS Proxy Trust – machinename”

Turns out that the proxy server (being in the DMZ) had its connection to the ADFS server terminated by the network guys – probably due to lack of traffic.

Read more »

ADFS 3.0 – Error 1297

I was facing an issue with a ADFS Proxy server being unable to re-connect to the ADFS server. Upon investigation it turned out that recent Windows Updates have increased the security of ADFS environments meaning that the service account configured now has to have auditing enabled. Thus generating the below error message when trying to start the Active Directory Federation Services service:

Read more »

VMWare vCenter 5.5 Active Directory Join/Disjoin

I had a vCenter 5.5 joined to the domain had its computer object deleted from Active Directory and therefore authentication/single sign-on would no longer work.

Initially I tried to remove it from the domain by un-ticking the “Active Directory Enabled” checkbox in VMware vCenter Server Appliance Web Console but I would always get the “Enabling Active Directory failed” error:
Enabling Active Directory failed
After some time searching, I tried the following commands to join the domain but without any luck:

# /opt/likewise/bin/domainjoin-cli join labdomain.local administrator@labdomain.local
# /usr/sbin/vpxd_servicecfg ad write administrator@labdomain.local PASSWORD labdomain.local

A quick look at vpxd_cfg.log (cat /var/log/vmware/vpx/vpxd_cfg.log) revealed the issue and this time a not so vague error message:

2015-01-12 10:31:46 3565: START locking... /usr/sbin/vpxd_servicecfg ad write
2015-01-12 10:31:46 3568: [3565]BEGIN execution of: /usr/sbin/vpxd_servicecfg 'ad' 'write' 'administrator@labdomain.local' CENSORED 'labdomain.local'
2015-01-12 10:31:46 3568: Testing domain (labdomain.local)
2015-01-12 10:31:46 3568: Enabling active directory: 'labdomain.local' 'administrator@labdomain.local'
2015-01-12 10:31:47 3568: ERROR: Enabling active directory failed: Joining to AD Domain:  labdomain.local
With Computer DNS Name: vCentervAPP01.labdomain.local

Error: ERROR_MEMBER_NOT_IN_GROUP 1
2015-01-12 10:31:48 3568: VC_CFG_RESULT=302
2015-01-12 10:31:48 3568: END execution

I did not want to rebuild vCenter as I configured on it vCOps and Update Manager so I thought I would try one last time to force join:

  1. Create the missing vCenter computer object in AD
  2. Logon to vSphere Web Client
    1. Go to Home > Configuration >Identity Sources tab
      • Remove any current domain identity sources that exist
    2. Click the green cross
    3. Select as Identity source type Active Directory as a LDAP Server
      • Complete the relevant fields with the required information

 

 

Install Android (Lollipop) 5.0 on HP TouchPad

After many months on Android 4.4.4 for my HP TouchPad I decided to try out Lollipop, while I was hoping for an in place upgrade going in between ROMs is always tricky and dirty – in the sense that most of the time is never quiet right and you will get crashes etc.

First things first you will need the following downloaded and installed (only the USB drivers) before continuing.

!! Data will be lost therefore I am not responsible for anything if you brick your device, lose data etc!! Read more »

Official CyanogenMod ROM for LG G3 (855)

CyanogenMod have made available on their servers earlier today official nightly builds for the LG G3 (855) which means great news for CyangenMod fans out there!

It is uncertain at the moment what features are in or missing in the ROM but expect this to be a fairly unstable release as it is the first nightly available for download.

You will need a custom recovery to test it out so if you are still on Android 4.4.2 you can follow my guide on how to root and install a custom ROM.

Download: CyanogenMod 12 for LG G3 (855)

LG G3 – Rooted Android (Lollipop) 5.0 (85520F) Update

An update – D85520F – has been released for the LG G3 (855) a few days ago.

This assumes that you already have a rooted ROM either 4.x or 5.x as well as have a custom recovery installed.

Proceed at your own risk –  I am not responsible for anything that may happen!

Requirements:

Note:

  • If you are on stock (4.4.2) and not rooted then you can follow my guide on how to achieve a rooted Android (Lollipop) 5.0.
  • If you are coming from a different ROM then you need to do a full wipe (data, system, cache) before continuing
  • If you are running a rooted 85520D version from my previous guide then you can continue

Read more »