So I have a batch script that runs as a child process of a service. The service runs as "Local System" user, so the child batch script does as well.

My script uses plink to query a remote linux command line via SSH. However, plink requires the remote host SSH key to be accepted by the user upon the initial connection. Because Local System is not an interactive user I can log on as, I can't simply approve this. plink stores the SSH host keys in the HKCU reg tree on a per user basis.

So I figured that I may be successful if I could just figure out where the Local System user's HKCU value is, and then create/import the appropriate keys there.

After some digging, I found the link below which stated that Local System uses the default user profile HKCU (HKEY_USERS\.DEFAULT). Whatever values are there, are what it will read when it calls HKCU. So I imported the keys there & sure enough, my plink script is now succeeding.

Yeay.

The link where I found this was:
http://www.codeproject.com/Messages/142 ... stem-.aspx

Also, I am using SBS 2008 with this particular batch script. But the above link states that this is also relevant to Windows XP (and presumably Server 2003), and maybe Windows 2000.....?

[ add comment ] ( 57 views )   |  permalink  |  print article  |   ( 2.9 / 33 )

---

So there's supposed to be a simple GUI way to install the DFS Management Console as per:
http://technet.microsoft.com/en-us/libr ... 31089.aspx

But this feature seems to be conveniently missing from the Add Features wizard.

The following command installed it via the command prompt:
ServerManagerCmd -install RSAT-DFS-Mgmt-Con

Now "DFS Management" is now in my start menu under Administrative Tools.

[ add comment ] ( 52 views )   |  permalink  |  print article  |   ( 3 / 33 )

---

Verdict: Not to use.

The reasons:

1. Network Maintenance time/work is still required anyway.
   • Deep Freeze is not a replacement for antivirus or patching systems. In fact,
     1. Faronics (who makes Deep Freeze) sells their own antivirus product to integrate with Deep Freeze.
     2. And Deep Freeze provides a means to have a scheduled maintenance window to "thaw" (unfreeze) computers, so that network administrators can install patches and apply updated antivirus signatures.

I have been aware of Deep Freeze for at least 4 years. It is an interesting concept, but something that I have not ever decided to look into using.... until now. My company recently started doing work for a new client whose network is setup to use Deep Freeze. As we essentially were given the opportunity to become their primary I.T. provider, we decided that we really needed to take a thorough look at Deep Freeze so that we could appropriately advise them on the long-term route to take in managing their network. I may add that this is a small medical office with 1 server + 10 PCs.

It is also important to mention that this particular client also had Deep Freeze installed on their server, and have operated for 3+ years with the server generally in a "Frozen" state. This is significant, as the server is a domain controller which implies also a DNS server. It is a Microsoft SQL 2005 server, and serves various data files which the client PCs access via UNC paths.

I was familiar with the concept of Deep Freeze, but was left with a lot of questions regarding its actual implementation and the effects/implications it may have on data/databases & overall functionality on specific systems/components such as:

Active Directory
DHCP
DNS
Windows Event Logs
IIS Logs
Other Logs
SQL Databases
Other Application Databases/Data
Software & Operating System Patches
Antivirus

I first spoke with the I.T. person who previously managed their network. He did not have enough good things to say about Deep Freeze, and strongly recommended that I use it with all of my customers. The specific answers he gave to my questions were:

• Deep Freeze is not a replacement for antivirus software, and that you should still have antivirus.
• Deep Freeze has the ability to schedule maintenance windows for patch installation on clients (schedule clients to reboot thawed out at 10pm, have patches & A/V updates applied, then reboot frozen again at 4am)
• He thinks that Deep Freeze makes some kind of exception for Active Directory, so that a domain controller can be "frozen" without the Active Directory database being affected

Next I spoke with my cousin Todd, who used to work in a school district I.T. department that discontinued using Deep Freeze while he was working there.

Next we checked with the Faronics website

Next we spoke with Faronics Tech Support

Lastly I did more research online.

[ add comment ] ( 96 views )   |  permalink  |  print article  |   ( 3 / 55 )

---

I have a TrixBox CE 2.6.1 system, which is updated to FreePBX 2.5

I think since we ever deployed this box, we have been having issues with calls that somehow get stuck in a state that they are never hung up. The result is that one of my channels gets tied up forever until I manually go in and kill the call.

See image:


The above hung call shows a duration of 1340:40:52 (which is 1,340 hours, 40 minutes and 52 seconds, A.K.A. 55 days, 20 hours, 40 minutes and 52 seconds), and is still counting up. Could that be right?

I'm not sure how to find more info about the currently hung call, but I need to figure out what is causing this and how to prevent this. As my customer only have a few channels, giving one up for a few days until someone notices that it is not available to the system doesn't work for these guys.

In this example the hung call is on a SIP station that is not currently registered. Don't ask me how a call can be active with an extension that is not even online. I'm pretty sure that other times that this happens, it has been with extensions that are online/registered. So I think that the fact that this extension (703) is not currently registered is irrelevant to the problem.

Also, just a rundown of our channels. Zap channels 1-4 are a PRI, and 25-26 are standard POTS lines. Outbound calls first use the POTS lines, then switch over to the PRI when the POTS are already in use.

One thing I haven't paid attention to is whether this only happens with the POTS lines (channels 25-26), or the PRI channels too.

I appreciate any input.

[ add comment ] ( 71 views )   |  permalink  |  print article  |   ( 2.8 / 56 )

---

This is just something that I feel the need to vent about. It works great with SBS 2003 (generally takes us 3 hours to get the first BlackBerry syncing with the BPS server). But with SBS 2008, the only way to do it is to have a 32-bit Server 2003 member server that takes care of the BPS needs. And this can be expensive. This has been an issue for over an year, and I think it is all the more reason not to use BlackBerries if you work in a Small Business environment. Exchange Activesync is pretty much a standard these days (for a licensing fee from M$). And there are plenty of phones out there that will talk directly to the Exchange 2007 (or 2003) server and sync up email, calendar, contacts, notes, tasks, etc OTA no problem, while keeping the advanced security requirements.

Other phones that do this well are:

Windows Mobile phones
- iPhone
- Palm Palm OS
- Palm WebOS
- Android
- Any phone compatible with RoadSync (made by DataViz)
and the list goes on...

Except for RIM's BlackBerry phones.

RIM drives me crazy that they are unwilling to let their phones talk directly to the Exchange server. They just don't want to give up the revenue they get out of the BIS service and BES and BPS licenses....

Aargh!! :-)

[ add comment ] ( 86 views )   |  permalink  |  print article  |   ( 3 / 1002 )

---

| 1 | 2 | 3 | 4 | 5 | Next> Last>>

Copyright Doug Mortensen - Some content may be copyright by other entities, which I claim no exclusive right to use, and attempt not to misuse. - Page Generated in 1.4726 seconds | Site Views: 4399