Pacific Computer Wizards - Repository ....

An information repository of … thoughts, data, sharing, and ideas, posted.
    – Use the information in these posts at your own risk.      
                                The ideas, thoughts, and expressions posted here are for my own use.                 
                                 
  -President & Chief Wizard                                                        


Time Services

posted by Andrew Chadick   [ updated ]


  • net stop w32time
  • w32tm /unregister
  • w32tm /register
  • Net start w32time
  • w32tm /config /update /manualpeerlist:"0.pool.ntp.org,0x8 1.pool.ntp.org,0x8 2.pool.ntp.org,0x8 pool.ntp.org,0x8" /syncfromflags:MANUAL
  • w32tm /config /update
  • net stop w32time && net start w32time
  • w32tm /resync /rediscover

Sign up your non-Gmail email address to access Google Shared Resources

posted Jan 24, 2019, 1:49 PM by Andrew Chadick

This step-by-step walkthrough will show you exactly how to use your company email address (the marketing@yourcompany.com email we recommended you set up before or another domain of your choosing) to create a Google Account.

1. Open Google.com and click the blue Sign in button at top right of your screen. If you are already signed in, log out first and then click the Sign inbutton.

sign into google

2. Next click the Create account link below the sign in box for a new Google Account sign up form.

create google account

3. Fill in your First and Last Name in the appropriate fields.

4. Under the “Choose your username” box is a link that says “I prefer to use my current email address” which, when clicked, will allow you to use your alternate email address. Click that link.

use current email address

5. Then you can enter your current (non-Gmail) email address in the box.

input email address

6. You can then continue filling out the rest of the form, which is pretty standard and doesn’t require any special steps:

  • Create and confirm a password
  • Enter your birthdate
  • Select your gender
  • Add your mobile phone number (for security)
  • Choose your geographic locations

Once you’ve filled out all the fields you can click the Next step button. You’ll then be asked to confirm that you agree with Google’s Privacy and Terms. Once you’ve done that you’ll just need to confirm your account by following the instructions sent to your email address that you gave.

And that’s it! You’ve officially set up a company Google account with your own domain name.



Credit:
https://www.steadydemand.com/how-to-setup-a-google-plus-account-with-you-company-domain-name/

Fonts adding users for Active Directory

posted Jan 18, 2019, 12:49 PM by Andrew Chadick   [ updated Jan 22, 2019, 6:57 AM ]

CMD as administrator

attrib -r -s %systemroot%\fonts
 

takeown /f "%systemroot%\fonts" /r /d n
 

After taking ownership, you can go into Explorer and add those that need to have access.

SSL Tests - Checking for Vulnerabilities on your domain

posted Jan 10, 2019, 9:13 AM by Andrew Chadick   [ updated Jan 10, 2019, 10:03 AM ]

Testing for online vulnerabilities for your website is part of both PCI compliance, but is now the best practice for systems admins around the world. Making sure your web-server is secure, and your systems are reasonably safe is a priority.  Use these tools to help develop a testing regimen to treat your systems and make sure that they are healthy.  

Do this one first: 
https://www.digicert.com/help/

Others to use:
https://www.ssllabs.com/ssltest/
https://www.sslchecker.com/sslchecker
https://www.sslshopper.com/ssl-checker.html
https://www.howsmyssl.com
https://sslanalyzer.comodoca.com
https://www.htbridge.com/ssl/
https://www.wormly.com/test_ssl
https://www.thesslstore.com/ssltools/ssl-checker.php

Other build your own option:
https://prbinu.github.io/tls-scan/

Notes:
SSL Cipher Suite:
ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256:TLS_AES_256_GCM_SHA384!DSS

SSL/TLS Protocols
TLSv1.3 TLSv1.2

Veracrypt

posted Nov 26, 2018, 6:16 AM by Andrew Chadick

Compatibility Layer
https://github.com/osxfuse/osxfuse/releases

Veracrypt
https://www.veracrypt.fr/en/Downloads.html

VeraCrypt is a free open source disk encryption software for Windows, Mac OSX and Linux. Brought to you by IDRIX (https://www.idrix.fr) and based on TrueCrypt 7.1a.

VeraCrypt main features:

Enable sandboxing for Windows Defender

posted Oct 30, 2018, 7:30 AM by Andrew Chadick   [ updated Oct 30, 2018, 7:58 AM ]

Setx Command Reference.

Running Windows Defender in a sandbox is supported on Windows 10, v1703 or later. 
You enable the sandbox by setting up a machine-wide environment variable: 
(setx /M MP_FORCE_USE_SANDBOX 1) and restarting the computer.

Run CMD as Administrator:
setx /M MP_FORCE_USE_SANDBOX 1

How it all works - and When to use it

posted Oct 12, 2018, 8:24 AM by Andrew Chadick   [ updated Oct 30, 2018, 7:37 AM ]

Microsoft Office 365 - Teams, Yammer, Outlook and SharePoint.  How all the tools work together on the one Windows 10 Interface.
https://blogs.technet.microsoft.com/cloudyhappypeople/2017/09/28/now-it-makes-sense-microsofts-collaboration-story-in-a-single-slide/

GSuite to Other (as Back up)

posted Oct 8, 2018, 10:15 AM by Andrew Chadick   [ updated Oct 8, 2018, 10:19 AM ]

Suite -> Gmail -> Adv Settings -> General Settings -> Recipient Address Map -> Edit
All Incoming Messages
Also Route to Original (True)
Add X-Gm-Original-To Header (Yes)


Note:  Name@Domain.x, Name@Domain.y   Then Click Add.

https://support.google.com/a/answer/4524505?hl=en

Let's Encrypt

posted Sep 28, 2018, 9:13 AM by Andrew Chadick   [ updated Oct 4, 2018, 12:16 PM ]

Configuration.xml - Office 2019 Standard - Office Deployment Tool

posted Sep 26, 2018, 2:48 PM by Andrew Chadick   [ updated Jan 22, 2019, 6:55 AM ]

<Configuration>
<Add OfficeClientEdition="64">
<Product ID="Standard2019Volume"  PIDKEY="AAAAA-BBBBB-CCCCC-DDDDD-EEEEE">
           <Language ID="en-us"/>
            <ExcludeApp ID="Access"/>
            <ExcludeApp ID="Groove"/>
            <ExcludeApp ID="Lync"/>
</Product>
</Add>
<Display Level="Full" AcceptEULA="TRUE"/>
<Property Name="AUTOACTIVATE" Value="1"/>
<Property Name="FORCEAPPSHUTDOWN" Value="TRUE"/>
<Property Name="SharedComputerLicensing" Value="0"/>
<Property Name="PinIconsToTaskbar" Value="TRUE"/>
<Updates Enabled="TRUE" Channel="Monthly" />
</Configuration>




Notes Office Deploy Tool / XML Usage:
Elevated CMD Prompt
setup /download configuration.xml
setup /configure configuration.xml

NOTE: CHANGE*  Now requires full path to be entered for both the setup location and the config file location:
\\ComputerName\c$\InstallSources\OfficeTemp\setup.exe /configure \\ComputerName\c$\InstallSources\OfficeTemp\configuration.xml

For the Retail version, you can use this Product ID: "Standard2019Retail"; 
<Add OfficeClientEdition="64" Channel="Monthly">
<Product ID="Standard2019Retail" PIDKEY="AAAAA-BBBBB-CCCCC-DDDDD-EEEEE">
If you want to enter your MAK key after the fact, under Account, Change Product Key, you can leave off the PIDKEY.

1-10 of 182

Comments