Error Importing Certificate in Exchange 2010

Occasionally, Exchange Server 2010 admins may encounter the following error when attempting to import a certificate or complete a certificate request:

The certificate status could not be determined because the revocation check failed

This error is thrown when your Exchange server is unable to connect outward to the appropriate certificate authority’s certificate revocation list (CRL.) Microsoft’s KB article [...]

May 26th, 2010 | Tags: , | Category: Exchange Server | 10 comments

How-To Disable Google Buzz

GMail and Google Apps users please take note: Google Buzz may have already revealed what you’re reading to any Gmail user you’ve ever contacted through your Google account, and has definitely already created a “Social networking” profile–whether you like it or not.

If this seems like deja vu from the Facebook debacle last year, you’re not alone–the [...]

February 23rd, 2010 | Tags: , , | Category: Security & Privacy | Leave a comment

How To: Configure MAC Address on Cisco ASA WAN Interface

Recently, I setup a new Cisco ASA for a customer who is stuck using a cable-modem in their office. Their particular ISP assigns a DHCP address to all clients, and makes that IP sticky to the MAC Address it is initially assigned to. If a different MAC address requests an IP through that modem, it is assigned a different address.

Since this customer’s public mail-exchanger is hosted at this address, if the IP changes, e-mail will stop arriving until we resolve the situation. To prevent this I configured the ASA to present the MAC address from the existing router when it made its initial DHCP request to the cable-company.

Continue reading How To: Configure MAC Address on Cisco ASA WAN Interface

July 9th, 2009 | Tags: , , | Category: How To, Networking | Leave a comment

Accessing SSH, ASDM Over ASA Remote-Access VPN

Recently had a customer contact me for help: He couldn’t access his ASDM on his ASA 5505 when connected to his remote-access VPN, but he was pretty sure he’d configured it correctly by permitting http access from the ip range assigned to VPN clients. But alas, no joy.

He had neglected to take one crucial step–by default remote-access VPN clients won’t be allowed to connect to SSH or ASDM even if their assigned IP address is in an “allowed” network. Fortunately, like everything goofy you’ll find under the hood of your Cisco device, there is an easy fix.

Continue reading Accessing SSH, ASDM Over ASA Remote-Access VPN

June 11th, 2009 | Tags: , , | Category: Networking | One comment

XP/Vista:

Recently I used a tool called nLite to trim down a Windows XP installation and stream in drivers for all of the hardware in a particular customer’s inventory. nLite is a tool that lets you customize which parts of Windows are included in the install so you can deploy just the parts you need. Example: Your customers don’t need the Windows XP tour which is (STILL!) inexplicably the default in Windows XP nearly nine-years after initial release. If it was irritating in 2002, you can bet its infuriating now. I’m sure there’s probably a technical justification better than that, but that’s the one I’m going with for this particular moment. It also does give you the practical benefit of adding extra drivers to the default Windows XP install–no more “Unknown Devices” after installation if you play your cards right, and also permits the creation of an answer file to allow unattended install of Windows XP. If this sounds cool to you, but you’re on Vista, take heart–they’ve started work on vLite, which as you might have guessed supports trimming down Vista installs.

Continue reading XP/Vista “Left-Hand Mouse” Before Login

June 3rd, 2009 | Tags: , , | Category: Workstation Admin | Leave a comment
 
  Older Entries »