I don’t need I.T Support - Guy goes crazy
Please do not try this at home
Windows was unable to find a certificate to log you on to the network
You come across the following message ‘Windows was unable to find a certificate to log you on to the network’ when connecting to your wireless network. Wireless is connected but you are unable to surf the Internet. Try the below to resolve:
Step 1
1) Right click on your wireless icon found towards the bottom right within the task bar
2) Click view available wireless networks
3) Click change advanced settings
4) Click the wireless networks tab
5) Click properties
6) Click the authentication tab
7) Untick ‘Enable IEEE 802.1x authentication for this network’
8.) Click OK and OK again
Step 2 - If Step 1 does not work, make sure you have the latest Windows updates installed.
Step 3 -If step 2 does not work and you have Windows XP Service Pack 2 installed, upgrade to XP Service Pack 3. Service Pack 3 can be downloaded from http://update.microsoft.com
Download WSUS Debug Tool
A visitor contacted me asking where the WSUS debug tool can be downloaded from.
The tool can be downloaded by clicking here
Unable to install Windows Updates (Vista)
Most new Vista machines experience issues when a user/admin attempts to install Windows Updates. This is due to the Windows Updates Service not running.
To resolve:
1) Click Start
2) Click run and type services.msc, click OK or press enter
3) Locate the Windows Updates service, right click and click properties
4) Set the service to automatic and click ok
5) Right click the service and click start
Try Windows Updates again
Remove Conficker from network
Conficker has become a popular virus affecting millions of users from around the world.
To remove Conficker from your network, first download Microsoft Patch here. (KB958644). Conficker will attack machines which do not have this patch installed. I recommend you convert the .exe into an MSI and roll out to your machines via group policy depending on how many machines you have on your network. Carry out tests on a few machines before rolling out to all machines on a network.
Next, make sure you have AntiVirus installed on your machines and it’s upto date.
Next, run the conficker removal tool from Sophos. This can be applied via group policy and run on system startup. You can find the download and details at Sophos Conficker Removal Tool.
The Sophos script and tool will run at system startup and detect and remove Conficker. You need to make some amendments to the script prior to adding to group policy.
If you have not applied the latest windows security updates to your machines, it’s important that you do. If you have many machines on your network, look into deploying windows updates via WSUS. See details here
Note: Test before applying to a live enviroment
SQL Server 2005 fails to install
When installing SQL Server 2005 you may come across an issue where MSXML6 and SQL Server Database Services fail to install. (See diagram below)
When SQL Server Setup tries to install MSXML 6.0 SP2, it detects that the version of MSXML 6.0 is already installed on the computer. Therefore, the validation process indicates that the current version of MSXML 6.0 should not be replaced. This stops the installation of both MSXML 6.0 and SQL Server 2005.
To resolve this click here
Remove temporary files from all profiles via script
The below script will remove temporary internet files and temp files from user profiles located on a Windows PC or server.
Copy the below code and rename with a .bat extension. e.g. remove.bat
Please test on a PC before providing to a live environment.
REM @echo off
REM - This script searches through profiles and removes temporary internet files and temp files.
set HDRIVE=c:
set HPATH=Documents and Settings
%HDRIVE%
cd \%HPATH%
REM - This line sets up the loop for the script
for /d %%i in (*) do call :ifthen %%i
goto end
REM - The below command checks for the temporary internet files directory.
:ifthen
if exist “%HDRIVE%\%HPATH%\%1\Local Settings\Temporary Internet Files\Content.IE5″ call :ContentDelete1 %1
if exist “%HDRIVE%\%HPATH%\%1\windows\Temporary Internet Files\Content.IE5″ call :ContentDelete2 %1
if exist “%HDRIVE%\%HPATH%\%1\Local Settings\temp” call :TempDelete %1
goto :EOF
REM - The below code removes all folders located at ‘Profile\Local Settings\Temporary Internet Files\Content.IE5′
REM - It then returns back to the line that it was called from.
:ContentDelete1
cd “%HDRIVE%\%HPATH%\%1\Local Settings\Temporary Internet Files\Content.IE5″
if exist “%HDRIVE%\%HPATH%\%1\Local Settings\Temporary Internet Files\Content.IE5″ for /d %%n in (*) do rd /s /q “%%n”
if exist “%HDRIVE%\%HPATH%\%1\Local Settings\Temporary Internet Files\Content.IE5″ del /q “%HDRIVE%\%HPATH%\%1\Local Settings\Temporary Internet Files\Content.IE5\*”
goto :EOF
REM - The below code removes all folders located at ‘windows\Temporary Internet Files\Content.IE5′
:ContentDelete2
cd “%HDRIVE%\%HPATH%\%1\windows\Temporary Internet Files\Content.IE5″
if exist “%HDRIVE%\%HPATH%\%1\windows\Temporary Internet Files\Content.IE5″ for /d %%n in (*) do rd /s /q “%%n”
if exist “%HDRIVE%\%HPATH%\%1\windows\Temporary Internet Files\Content.IE5″ del /q “%HDRIVE%\%HPATH%\%1\windows\Temporary Internet Files\Content.IE5\*”
goto :EOF
REM - The below code removes all folders located at ‘windows\Temporary Internet Files\Content.IE5′
:TempDelete
cd “%HDRIVE%\%HPATH%\%1\Local Settings\Temp”
if exist “%HDRIVE%\%HPATH%\%1\Local Settings\Temp” for /d %%n in (*) do rd /s /q “%%n”
if exist “%HDRIVE%\%HPATH%\%1\Local Settings\Temp” del /q “%HDRIVE%\%HPATH%\%1\Local Settings\Temp\*”
goto :EOF
:end
Only one usage of each socket address (protocol/network address/port) is normally permitted
If you find a service stops after you start it on your server and upon checking the event log you find the below error:
“Only one usage of each socket address (protocol/network address/port) is normally permitted (typically under load).”
The cause is due to TCP/IP port exhaustion can occur on a client computer if the client computer is engaging in an unusually high number of TCIP/IP socket connections. This can occur if many client applications are initiating connections. If all of the available ephemeral ports are allocated to client applications then the client experiences a condition known as TCP/IP port exhaustion. When TCP/IP port exhaustion occurs, client port reservations cannot be made and errors will occur in client applications that attempt to connect to a server via TCP/IP sockets. TCP/IP port exhaustion is more likely to occur under high load conditions than under normal load conditions. (Source: Microsoft)
The above issue can be resolved by following the below instructions. Please be careful when making any registry changes. Always take a backup.
1) Access registry and locate and click HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\
2) Find the key MaxUserPort and increase the decimal figure to 6000 or a maximum of 65534
You can also reduce the time a connection is in the TIME_WAIT state. The default is 4 minutes. See instructions below.
1) Access registry and locate and click HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\
2) Locate the key TCPTimedWaitDelay and increase the decimal figure to 30 seconds.
Restart server
Find out number of CPU’s in server
A useful tool to use to find out the number of CPU’s in a server can be downloaded by clicking here.
No installation is required, just click on the exe
A small program that detects processor name and vendor, processor features (package, current core voltage), cache information, motherboard features (name, vendor, BIOS, chipset, memory, AGP), memory info (size, type, timings, specifications) etc. Doesn’t require installation.
Sophos - Could not start installation program on the computer
Sophos - 80070035 Could not start installation program on the computer: The network path was not found
If you find that you receive the above error when trying to push Sophos out to a Vista machine using Sophos Enterprise Console, follow the instructions below to resolve:
1) Open Windows Firewall with Advanced Security:
Select Start, Control Panel, Classic View, Administrative Tools.
Change the ‘Inbound rules’ to enable the following, where present:
Remote Administration (NP-In) Domain
Remote Administration (NP-In) Private
Remote Administration (RPC) Domain
Remote Administration (RPC) Private
Remote Administration (RPC-EPMAP) Domain
Remote Administration (RPC-EPMAP) Private
Note: When installation is complete, you should disable any processes you enabled.
2) Start the ‘Remote registry’ service on the Windows Vista or Windows 2008 computer (if it is not currently running), and set it to run automatically:
Right-click the Remote Registry service
Select ‘Properties
In the ‘Startup type’ dropdown menu, select Automatic
Click ‘OK’.
3) Then either
Open the Windows Control Panel.
Select User accounts.
Select the admin account.
Select ‘Turn User Account Control on or off’.
In the dialog that opens, deselect this option.Note: When installation is complete, you should turn this back on.
or
On the Windows Vista or Windows 2008 computer, open Administrative Tools | Local security policy | Local Policy | Security Options . There is an option called ‘User Account Control: Run all administrators in Admin Approval Mode’. The default is ‘Enabled’. Change this to ‘Disabled’.
4) Reboot the computer.
5) From Enterprise Console, version 2 or above, deploy to the Windows Vista or Windows 2008 computer, specifying the local administrator credentials.
Source: http://www.sophos.com/support/knowledgebase/article/15027.html
