1. Login as an administrator.
2. Go the the start screen and type “Server Manager”. Click on Manage and choose “Add roles and Features”.
3. Click “Next >” (Check the box to skip this in the future)
4. Make sure “Role-based or feature-based installation” is selected then click “Next >”
5. Choose the appropriate server then click “Next >”
6. Make no changes to the “Roles” page then click “Next >”
7. On the “Features” page scroll down and check the box by “SMTP Server”
8. Click “Add Features” (required for SMTP Server) then click “Next >”
9. Click “Install” then wait for the install to finish then click “Close”.
Configure Windows Server 2012 Google Apps SMTP Relay
1. Go the the start screen and type “Server Manager”.
2. In the Tools menu select “Internet Information Services (IIS) 6.0 Manager”
3. Expand the tree until [SMTP Virtual Server #1] is shown then right click and choose “Rename” (as appropriate)
4. Right click again and choose “Properties”.
5. Click on the “Access” tab then click the “Connection…” button
6. Select “All except the list below” then click “OK”
7. Click on the “Relay…” then select “All except the list below” then click “OK”
8. Click on the “Delivery” tab then click the “Outbound Security” button
9. Select “Basic Authentication” and type in the username and password of Google Apps user
10. Check “TLS encryption” then click “OK”
11. Click the “Outbound connections” button then change “TCP port” to 587 then click “OK”
12. Click the “Advanced” button then fill in the FQDN of the internal server (add custom DNS for future changes)
13. Fill in “Smart host” with SMTP.gmail.com – the name of the Google Apps SMTP server then click “OK” twice
Warning! You have an open relay now. Use this setup to check the email notification system. When you see it’s fully functional go back to the “Access” tab and narrow down the “Connection” settings to the necessary systems. When no other system needs to relay, just check “Only the list below” and grant “127.0.0.1” access.
Configure Google Apps SMTP relay service
1. Login to Google Apps Admin Console
2. Click on Apps
3. Click on Google Apps
4. Click on Gmail
5. Click on “Advanced settings >>”
6. In “Search settings” type SMTP relay then click the Configure button
7. Give the relay a name
8. Leave the “Only registered Apps users in my domains” option set
10. Select “Require TLS ecryption”
11. Click ADD SETTING
12. Click SAVE CHANGES at the bottom right
If your company is using Google Apps and needs a SMTP relay setup for use by a network device like a multi-function printer, then contact us for assistance.
Had a school that bought the cloud licensing for Adobe Acrobat DC and wanted help deploying Adobe Acrobat to the workstations on their network. Began the process by creating an MSI based package with the Adobe Cloud Packager for deployment via group policy, but the deployment failed. Found that this is a known issue with Adobe Acrobat DC and can only be solved by running a script instead:
Creating Script for Deploying Adobe Acrobat DC Cloud Edition
Open an administrative command prompt
Change directory to – [Package Location]\Exceptions\APRO15.0en_US\Adobe Acrobat\
Run the following – Setup.exe /sALL /extUI /sl “en_US” /msi INSTALLDIR=”” EULA_ACCEPT=”NO” SUITEMODE=1 OWNERSHIP_STATE=1 LANG_LIST=”en_US” INSTALLLEVEL=101 AS_DISABLE_LEGACY_COLOR=1 IGNOREAAM=1
Open the application then Sign In to Adobe Cloud
Paste Product Key into the prompt that opens
This was found after some deep research into the Adobe Support site. Once you have tested these line of code then a batch file can be created for deploying Adobe Acrobat DC via Group Policy.
If your company is using Adobe Acrobat DC and needs help deploying Adobe Acrobat DC to network workstations, then contact us for assistance.
Had a customer reporting that their clients receive WinMail.dat file as an attachment instead of the email that they intended. According to Microsoft Support:
The Winmail.dat file is used to preserve Rich Text formatting. Outlook uses it when sending a Rich Text-formatted message. During transport, the content of the message may be changed, preventing the receiving client from being able to read the formatting instructions. In other cases, the receiving client does not use or recognize the winmail.dat file.
Two ways to stop clients receive WinMail.dat file as attachment
Either send everyone plain text emails or change the settings on a per contact basis inside of Outlook. Here is a link for how to do it on a per contact basis, this can be tricky but worth it if you want to keep the rich text formatting of email for the rest of your contacts.
If your company is using Exchange or Office 365 for email and need help troubleshooting, then contact us for assistance.
Had a client that allows a third party bookkeeper to login remotely to one of their workstations where their accounting software is installed. This user expressed that “all of a sudden” they were unable to see any desktop icons or work with the Start menu properly. Once remotely connected into the system with the bookkeeper found an error message that access to the redirected desktop was denied. Tried changing permissions on the Desktop folder, tried renaming the folder and letting a fresh login recreate them on the server, and tried renaming the local profile folder then another login to recreate those as well. Then I finally remembered the solution – it was a corrupt user profile in the registry: z
Remember to look through this list and find the user in question, export the key (aka backup) and then remove the entire folder containing their profile. One more reboot and login fixed the issue successfully. Thanks to following Microsoft TechNet Article for the details on the fix.
If your company is using remote access or have issues with a corrupt user profile, then contact us for assistance.
Had a lower level technician try to import a large Active Directory user list of incoming freshman into a high school’s Active Directory via Powershell and mistakes were made. Basically there was no UserPrincipalName created which made logon to workstations difficult. Here is the PowerShell script used to fix the issue:
Powershell Script to Import Active Directory User List
Write-Host “Changes to the user $($GivenName) $($SurName) were made!”
For ideas on how to correctly import a large number users into Active Directory, look at how to format the spreadsheet and then how to write the PowerShell script at these links.
If your company is using Active Directory User List for import or need help managing / maintaining your active directory domain, then contact us for assistance.
Had a school that reported that several computers were unable to get new IP addresses and therefore unable to logon to the domain. Their DHCP was handled by their local domain controllers with each server handling half of the /23 address space which equates to 510 total usable address for local devices on that subnet. Checked DHCP on the primary domain controller and found that their were 450+ BAD ADDRESS items in the scopes lease, so deleted these to free up space. Checked on the secondary domain controller and found that the DHCP server had a blue exclamation point on it which meant that the scopes leases were exhausted. Tried to look at the lease list and it had a red X on it and no entries listed. So how to fix this? Here is a method that I found to perform a DHCP repair / rebuild in this kind of situation:
How to Perform DHCP Repair / Rebuild
1. On the Windows DHCP server open a command prompt with administrative privileges
2. Type the following command to backup all the DHCP configurations settings:
netsh DHCP server dump>DHCPdump.txt
3. Stop the DHCP server service
4. Delete the contents of the c:\Windows\System32\DHCP folder including all subfolders.
5. Start the DHCP server.
6. In the same administrative command prompt type to restore the DHCP configuration settings:
netsh exec DHCPdump.txt
7. Then in the administrative command prompt type to run diagnostics on the DHCP scope:
netsh DHCP server initiate reconcile
8. Open up the DHCP administrator tool and check that all of the options are intact and the Reservations are present.
9. In the same administrative command prompt type to export all DHCP information to a file:
netsh DHCP server export DHCP.txt all
10. Copy this file and the DHCPdump.txt file somewhere else as a backup.
This DHCP repair worked immediately and client workstations started to register for DHCP leases again.
If your company is using Windows DHCP Servers or need help with a DHCP repair / rebuild, then contact us for assistance.
Migrated a client to a new domain for reasons that are beyond the scope of this blog post. After the migration and proper setup of Folder Redirection to the file server, several clients were reporting that their files were not the latest version. Researched the issue and found that their was no trace of the latest versions of these files on the workstation or server via Windows Search, but did find shortcuts that pointed to a server that has not been in production for over a year. Powering on that server found none of the latest files and there was nothing at the old IP of that server that was housing them currently. Then it hits me on the way to church – Offline Files on the workstation. It turns out that during the era of the previous domain controller the Folder Redirection was not done properly and when there was a migration to a new File Server these few clients had kept a pointer to the old file server with Offline Files. All file changes and new files were stored in the local Offline Files cache up to the size limit of that cache. I had to do the following to gain access to the cache to copy all data to the newer file server:
Recovering Offline Files Cache Due to Bad Folder Redirection Link
Go through a long process of changing folder ownership one sub-folder at a time to drill down to the user’s data in a path similar to the one below. There will be several subdirectories to look through before finding the files needed. Please refer to this Microsoft TechNet Article for details on how.
Once access is gained into the folder, copied the contents to an alternate location.
Opened a Command Prompt and drilled down into that new folder.
Typed in the following command:
*.* /T /G firstname.lastname@example.org:F
then confirming the change to apply Full Permissions to all files and folders that were copied there.
Copied the newly changed files into the appropriate place on the new file server and verified with user that their files were there as expected.
This won’t save everything but is the last option for this particular peculiar issue on the clients server.
If your company is using Folder Redirection or Offline files, then contact us for assistance.
There is often the case that a female user will have a name change due to change in marital status. Here is the basics of how to change their name in both Active Directory and Office 365.
Active Directory User Changes Name objects
Open Active Directory Users and Computers
Find the user needing the changed name, right click on them and choose the “Rename” option.
Change the user’s name as needed then press Enter then in the window that opens make all the further changes needed and click the “OK” button.
Click on the View menu at the top and check the “Advanced Features” option.
Double click on the users new name to open their Properties. Change the email address if needed in the General tab.
Choose the “Attribute Editor” tab, scroll down the list to “proxyAddress” attribute and double click it. Click on the current SMTP:email@example.com and click the “Remove” button then change it to a smtp:firstname.lastname@example.org then click the “Add” button.
Type in SMTP:email@example.com for the user and then click the “Add” button. Click the “OK” button on this window and the one beneath it.
Make sure to also rename the users Redirected Folder if there is one created via Group Policy
Run a manual sync of the DirSync tool via the Microsoft Forefront Identity Manager console.
Changes to Office 365
Make sure the Windows Azure Active Directory Module for Windows PowerShell is installed properly
Open Windows Azure Active Directory Module for Windows PowerShell as administrator
Type in the following to run signed scripts for Exchange Online:
Type in the following to enter the administrative credentials for Office 365:
$creds = Get-Credential
Enter the Office 365 Administrator credentials then click “OK” button.
Type in the following to connect to Office 365 via PowerShell:
Connect-MsolService -Credential $creds
Type in the following to connect to Exchange Online via Powershell:
Had a workstation that would regularly lose connection with connected printers, so checked the Windows services. Found that the Print Spooler terminated and would repeatedly do so even when restarted. Checked the Event Logs and found that there were several instances of Event ID 7031 – Print Spooler Terminated Unexpectedly corresponding with the Services stopping.
Fix Print Spooler terminated via the registry:
Open regedit (e.g. click Start, type regedit and press Enter)
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Environments\Windows NT x86\Drivers
depending on your OS
Under this key, there will either be the keys Version-2 and Version-3 or both
The sub-keys under these contain the printer driver configuration information, so delete all the sub-keys under Version-2 and Version-3, but not these keys themselves
Restart the Print Spooler service and test printing
If your company is having issues with Print Spooler terminated events or needs help troubleshooting network printers, then contact us for assistance.
Found the amazingly easy to use Quickbooks Install Tool that fixed common installation errors after I ran into this issue with a client on two of their new workstations, same model, when trying to install Quickbooks 2014 Premier. The client had previously contacted Quickbooks for remote installation support but the technician was unable to fix it. I tried the installation from scratch using administrative credentials and got an:
Error 1904. Module “C:\Program files\Intuit\Quickbooks 2010\ICWrapper.dll” failed to register.
Which led me to the Quickbooks Support Forums that revealed a new tool in the Quickbooks support arsenal – the Quickbooks Install Tool. This handy tool does a repair of several key components for installing software, reboots the computer, and then restarts the installation before Windows finishes booting completely to avoid any conflicts. It works like a charm.
If your company is using Quickbooks for your accounting or customer database and need help getting Quickbooks Install Tool to fix your installation issues, then contact us for assistance.