Using Certify the web for lets encrypt certificates

By Matt Comment Closed
Go to cloudflare and login click profile icon select my profile go to api tokens tab create new custom token Give token a name give the following permissions Zone Zone Edit Zone DNS Edit Zone Resources Include all zones IP Address filtering none (unless you wanted to restrict access, I have not as my IP is dynamic) TTL Blank Continue to summary Create token Copy API Token Install Certify the web application https://certifytheweb.com/home/ For authentication we will use DNS verification via Cloudflare API On Certify the web go to Settings stored credentials add new stored credentials Select Cloudflare DNS API Set credentials name to easily identify fill in the api token in the api token field click save   on manage certificates page new certificate click okay on prompt about registering a new contact select certificate authority of lets encrypt enter email address,( notify you of upcoming renewals if required, invalid email addresses will be rejected by certificate authority Agree to the terms click register contact   On new certificate window leave slecte site as no IIS side selected add the required domain name and click + Go to authorization tab change challenge type to dns-01 DNS update method - cloudflare...
Read More

Permissions error when installing dropbox

By Matt Comment Closed
Hit Windows + R 2. Type regedit and hit enter 3. Navigate to HKEY_LOCAL_MACHINE\Software\Microsoft\Cryptography\Protect\Providers\df9d8cd0-1501-11d1-8c7a-00c04fc297eb 4. In the folder, right click and hit New > DWORD (32 Bit) Value 5. Name it 'ProtectionPolicy' 6. Right click 'Protection Policy' 7. Hit Modify and change the value to 1 and select Base: Hexadecimal Reboot then install dropbox ...
Read More

Office 365 – check which mailboxes a particular user has access to

By Matt Comment Closed
Connect to 365 via powershell $UserCredential = Get-Credential $Session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri https://outlook.office365.com/powershell-liveid/ -Credential $UserCredential -Authentication Basic -AllowRedirection Import-PSSession $Session -DisableNameChecking.   Get-Mailbox | Get-MailboxPermission -User userA UserA would be the user that you want to know for instance; What mailboxes does Matt have access to would be as follows: Get-Mailbox | Get-MailboxPermission -User matt  ...
Read More

Create windows admin account via bat file

By Matt Comment Closed
open notepad Paste the following @echo off net user Username Password /add /comment:"Admin" /passwordchg:NO wmic useraccount where "name='Username'" set passwordexpires=FALSE net localgroup "Administrators" Username /add PAUSE   Replace Username with the username you want to use Replace Password with the password you want to use...
Read More

Office 365 SharePoint Change External Sharing policy using Powershell

By Matt Comment Closed
  Install the modules Microsoft Online Service Sign-in Assistant for IT Professionals RTW Windows Azure Active Directory Module for Windows PowerShell (64-bit version) SharePoint Online Management Shell   1) Open Windows PowerShell as an administrator (use Run as administrator). 2) Run this command, and enter Office 365 Global Admin credentials. $credential = Get-Credential 3) Run these commands to connect to Office 365. Import-Module MsOnline Connect-MsolService -Credential $credential 4)Run these commands to connect to SharePoint Online. Replace your-tenant with the actual value for your domain. Import-Module Microsoft.Online.SharePoint.PowerShell -DisableNameChecking Connect-SPOService -Url https://your-tenant-admin.sharepoint.com -credential $credential Get-SPOSite Get-sposite https://your-tenant.sharepoint.com/Site location Look at Sharing Capability To change what one you type to change to "Disabled" – external user sharing (share by email) and guest link sharing are both disabled "ExternalUserSharingOnly" – external user sharing (share by email) is enabled, but guest link sharing is disabled "ExistingExternalUserSharingOnly" - (DEFAULT) Allow sharing only with the external users that already exist in your organization’s directory "ExternalUserAndGuestSharing" - external user sharing (share by email) and guest link sharing are both enabled   Set-SPOSite -Identity your-tenant.sharepoint.com/Site location -SharingCapability ExternalUserSharingOnly  ...
Read More

Enable bitlocker without compatible TPM

By Matt Comment Closed
1) Press the windows key and R and type gpedit.msc and click OK 2) Go to Local Computer Policy > Computer Configuration > Administrative Templates > Windows Components > BitLocker Drive Encryption > Operating System Drives And double-click the “Require additional authentication at startup” option 3) Enable and tick both to allow BitLocker without a compatible TPM ...
Read More

Disabling Windows Hello for business

By Matt Comment Closed
Disabling Windows Hello for business: I use Office 365 I wanted to test out the AD Connect. Which allows me to join the pc's the azure domain and login with AD accounts setup on the DC, this allows me to keep existing permission on Server and I do not need to join it to Azure AD. What I found was that when logging in it prompted to setup a pin, to get pass this follow the steps below: Enter in Login credentials click on setup PIN, then click on the X, it will give an error message, click on Skip for now open Group Policy gpedit.msc Got to "Administrative Templates > Windows Components > Windows Hello for Business" under both User configuration and Computer configuration, double click on Use Windows Hello for Business and select Disabled Log off and back in to confirm it is working ...
Read More