Sunday, December 17, 2023

HOW TO - Share a password

 q: With password complexity on the rise, what is a quick way to securely share a password without trying to spell it over the phone?

a: Password Pusher - https://pwpush.com/
You can provide your own data to share, or let the site generate a string for you.
You can control expiration by Day and View count.
You can even require a password, to access this string.
You can also share files & URLs securely. 



Saturday, December 16, 2023

WINRM cannot process the request | Kerberos authentication | unknown security error

q: A user tries to send a command to SERVER1 via PowerShell over WinRM and gets an error.
 PS > Invoke-Command -ComputerName SERVER1 -ScriptBlock {net localgroup administrators}

*[SERVER1] Connecting to remote server SERVER1 failed with the
following error message : WinRM cannot process the request. The following
error with errorcode 0x80090322 occurred while using Kerberos
authentication: An unknown*security error occurred.
Possible causes are:
-The user name or password specified are invalid.
-Kerberos is used when no authentication method and no user name are
specified.
-Kerberos accepts domain user names, but not local user names.
-The Service Principal Name (SPN) for the remote computer name and port
does not exist.
-The client and remote computers are in different domains and there is no
trust between the two domains.
After checking for the above issues, try the following:
-Check the Event Viewer for events related to authentication.
-Change the authentication method; add the destination computer to the
WinRM TrustedHosts configuration setting or use HTTPS transport.
Note that computers in the TrustedHosts list might not be authenticated.
-For more information about WinRM configuration, run the following
command: winrm help config. For more information, see the
about_Remote_Troubleshooting Help topic.
+ CategoryInfo : OpenError: (SERVER1:String) [],
PSRemotingTransportException
+ FullyQualifiedErrorId : -2144108387,PSSessionStateBroken

a: From the client machine, create this Reg Key and try again.
Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WSMAN\Client
Value type: REG_SZ (string)
Value name: spn_prefix
Value data: WSMAN

Monday, October 16, 2023

Google Workspace - We couldn’t verify it’s you

q: Customer called with Google Workspace blocking their access to log into a user account via webmail.
    Google
    We couldn’t verify it’s you
    We want to make sure it’s really you trying to complete this action.
    To help us verify it’s really you
    Use a device and browser you’ve signed in on before
    Use a familiar Wi-Fi network, such as at home or work

a: Simply disable login challenge and it will let you through.
    Log into Google Workspace Admin https://admin.google.com/
    Click users
    Click the user / username affected
    Click the ‘Security’ section
    Click ‘Login challenge’ - Turn off identity questions for 10 minutes after a suspicious attempt to sign in
    Click <TURN OFF FOR 10 MIN>
    Then try to log in as that user again.


Sunday, October 15, 2023

Azure Arc Setup

q: Customer called because they had a new Azure Arc Setup utility in their system tray.
a: This is apparently a server feature to be removed through Server Manager.  Uncheck the box & don't forget to reboot when it finishes. 


C:\Windows\AzureArcSetup\ArcSetup\AzureArcSetup.exe
C:\Windows\AzureArcSetup\Systray\AzureArcSysTray.exe


Friday, October 13, 2023

HOW TO - Curl from Task Scheduler in Windows

q: A customer requested to run a curl command on a regular schedule from a windows computer.

a: Within Windows, create a Scheduled Task that runs as system, using Powershell and Invoke-WebRequest

General tab: Use the following user account: SYSTEM
Trigger tab: At system startup - After triggered, repeat every 5min
Action tab: Start a program - C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe 
Add Arguments:  "Invoke-WebRequest -uri '"https://www.google.com/"' -usebasicparsing"

notes:
a) running an invoke-webrequest as system fails without the trailing switch -usebasicparsing
b) we ended up putting the entire argument within double quotes and then the URL nested within double quotes inside single quotes - single quote, double quote, URL, double quote, single quote.

HOW TO - Scrape an old htm / html website

q: Customer called requesting a method to download their htm based website to their local computer.

a: We recommended HTTrack - We tried a few different applications and none of them got every single site file. Some missed image files because they were configured as background images.  HTTrack got every single file and folder.  Download here: https://www.httrack.com/page/2/en/index.html
notes:
The application will rewrite an .htm site to all .html renaming files and updating hyperlinks.
The application will inject a line into each .html at the top and bottom of the file explaining that it was downloaded by httrack from the original URL.

Wikipedia: HTTrack is a free and open-source Web crawler and offline browser, developed by Xavier Roche and licensed under the GNU General Public License Version 3. HTTrack allows users to download World Wide Web sites from the Internet to a local computer.

Thursday, October 5, 2023

OneDrive 0x80070422 Something went wrong

 q: Customer tried to sign into OneDrive and got a pop-up error. 
Something went wrong
Please try again later
0x80070422
Send feedback

We got this error within Microsoft Word as well.

a: We discovered the Microsoft Account Sign-in Assistant service was stopped & disabled.
We set it to automatic, started it, tried again & were prompted for the PIN associated with the account.