Posted by Mads Dam on 07. J 2022 in Blog
I got an assignment. Remove Google Chrome completely from all computers in the organisation. Even if it’s user-based (aka not admin-installed but user-based) Chrome can be installed in many different way: User-based (AppData\Local) msi-based (msiexec /i googleenterprise.msi /passive /norestart) other-thingie-based (where there’s a setup.exe ensuring updates, I think) The last one and user-based are tricky, when wanting to uninstall every Chrome in the...
Read More »
Posted by Mads Dam on 07. J 2022 in Blog
Running a batch-file, be it .bat or .cmd in ConfigMgr (MEMCM) – there are things you need to know. If your Program in your Package is just Run-This-File.cmd then it’ll be executed in a 32-bit cmd.exe process. And then, if you look for %ProgramFiles% in your batch file, it’ll just give you Program Files (x86) instead of the one you expect. The 64-bit one. Hence – If you want to run a cmd.exe in all 64-bit then do this in your package/program in...
Read More »
Posted by Mads Dam on 23. J 2021 in Blog
Apparently, when you clone a disk in a hardware-cloner (fx to get a bigger disk in an old Mac or upgrade from HDD to SSD), then it’s quite hard to find out HOW to get the mac to use this newly added diskspaces. Disk utility can actually see it, but you can’t seem to resize your APFS container – because it just stays the same. So, after searching for 30-45 minutes I finally found the solution. Repair it first! This is what I did to get my old Macbook Pro...
Read More »
Posted by Mads Dam on 27. J 2020 in Blog
If you own a domain, that you don’t use to send e-mail from, it would be wise to actually protect it from forgery. Just because you don’t use it, if you don’t protect it, a spammer could spoof your domain for their evil purpose. So, do the world a favour and protect all your domains that you don’t use to send e-mail with these simple DNS-records: Hostname Type Value example.com TXT v=SPF1 -all *._domainkey.example.com TXT v=DKIM1; p=...
Read More »
Posted by Mads Dam on 05. J 2019 in Blog
Versus Qualys SSL-test a normal Windows Server 2019 is capped at grade B since January 2020. The main reason for this is it’s enablement of TLS 1.0 and 1.1. SSL 2.0 and 3.0 is disabled by default. But to disable the rather unsecure TLS-versions we’ll have to create the following registry entries: Note – Client means, if the server is accessing another server with TLS then the server is a client. Server means, that if the server hosts a service which is...
Read More »
Posted by Mads Dam on 15. J 2019 in Blog
This is tested on VMware vSphere 6.5 Create a folder on a datastore you’d like to use. Fx vmware-tools Upload floppies and vmtools-folders to vmware-tools-folder Folderstructures should look like this: vmware-tools - floppies - vmtools Now go to advanced settings on each host and find UserVars.productLocker variable and change it to your new location: e.g. /vmfs/volumes/Datastore09/vmware-tools /productLocker Now enable SSH-service on each host, SSH in and remove...
Read More »