Outlook RPC over HTTPS doesn’t work in Windows 7

Several of us at the office have been trying out the new Windows 7 – It’s been a positive experience so far and quite a bit faster than Vista.  One problem popped up on all the machines – When we tried to configure Outlook 2007 to connect to our hosted exchange server (using the prf file so we knew it was configured right) it would continuously prompt for the password.

This appears to be the result of the way hosted exchange systems require the use of a full email as the username to differentiate between client domains.  Windows 7 doesn’t care for this and the connection fails.  It may take a bit of doing but if you find your domain name and username from your provider and enter it as follows:

Domain\Username

You’ll find it functions perfectly.  The domain is not the domain name from your email it is something else – In our case I had to hit our server configuration and used the settings for configuring mobile activesync on my windows mobile device.  Our provider happens to use a special username to differentiate it’s users.  Once we found that we were happily reading emails again.

Netflix Watch Instantly Fails with Error 8051

I’m on the new Netflix Silverlight Beta and it’s been great, better quality, works on my mac, all around a better setup. Today when I loaded a Netflix Watch Instantly movie I recieved “ErrorCode 8051 151” Unable to watch at this time.  I thought perhaps a glitch or some server maintenance however every movie I tried resulted in the same error.

Our Xbox and my wifes computer could stream them just fine so it was something computer specific.  I tried uninstalling recent applications, clearing cache, trying another browser, and reinstalling silverlight with no luck.

Finally after a lengthy call with netflix support we found a very simple solution.

Load a movie in the netflix player normally. Once the silverlight player is active right click on the windows and choose “silverlight configuration”. Next select the “Application Storage” tab and click “Delete All”. Try your movie again and all should be well.

XP Resolves DNS with nslookup but not ping, traceroute, etc.

Today I encountered an unusual problem on a client system, they had been installing windows updates when the computer ran low on memory resources and crashed.  Following the crash they had lost all internet connectvity.  After some troubleshooting I determined it to be a DNS problem.  We could Ping DNS servers but not resolve domain names.  Changing DNS servers did not help nor did repairing the TCP/IP stack and a dozen other things I tried.  SFC /scannow did not turn up even a single invalid system file and windows was up to date with the exception of SP3.  I came to the conclusion it had to be a corrupt system file or something of the sort and in a last ditch effort installed SP3 knowing that Service Packs replace and reconfigure a large part of the system.  Sure enough once the system rebooted connectivity was restored.  So, while I do not have the problem pinned down I did see several others encountering this issue online – My best advice is to reinstall the latest service pack.  If any of you uncover more information on this issue please leave it in the comments.

TCP/IP Fundamentals Guide Released by Microsoft

Early on in my IT Career while working a temporary job as a pc tech I had the fortunate opportunity to take a Microsoft Certification course on TCP/IP.  A coworker of mine had to cancel and as such I recieved this training which was quite expensive at no cost.  I’ve always enjoyed learning and at the time thought it was a cool opportunity but since then have realized how much a simple foundation in networking, TCP/IP, and DNS is a critical part of being a quality technician, engineer, or administrator.   Tonight I came across the Guide: TCP/IP Fundamentals for Microsoft Windows which appears to be a fantastic instructional on networking and TCP/IP.  Check it out and if your new to this enter into it knowing that IP and subnettting is a boring thing but having a solid understanding of it and routing will give you a new understanding of the networks your employed to care for.

IPhone, Exchange, and RapidSSL Certificates

Today I setup my first IPhone on an Exchange Server with Mobile Activesync.  The Exchange setup was nothing special – I enabled HTTPS over RPC using a great article over at Petri.co.il – A Great website to checkout if you haven’t been there.  Next I completed the steps Found on this Apple Information Page for preparing for the IPhone – Again nothing special.  I was then able to test my Exchange setup and send the end user the setup information.  The connection tested fine in outlook but not on the IPhone.  I thought perhaps the IPhone did not have the Equifax certificate needed for the RapidSSL certificate used on the server and after a bit of research found out that correcting this is as easy as emailing the certificate to the phone.

First visit your exchange server using Internet Explorer.  Click the lock next to the address bar (if IE7) and select View Certificates.  Then click install certificate and walk through the wizard.

Next open Internet Options and click “Certificates” on the Content Tab.

Look Under “Other People” for the certificate and After selecting it click “Export”.  Name the certificate something relevant and accept all other defaults.

Once you have your certificate Email it to your Iphone.  This may require you setup a temporary IMAP or POP account with Gmail or elsewhere.  Once you have you email in hand simply open the attachment on the phone and you’ll be prompted to install it.  Once installed setup your Exchange sync as normal.

VMWare Security Advisory for ESXi and ESX in openwsman

VMware has released a Security Advisory (VMSA-0008-0015) indicating it has updated the ESXi and ESX 3.5 packages to address a vulnerability in “openwsman”. This vulnerability is due to several buffer overflow conditions in the handling of HTTP basic authentication headers. Exploitation of this vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code on the host running ESXi or ESX.

US-CERT encourages users and administrators to review VMware Security Advisory VMSA-0008-0015 and apply any necessary updates to help mitigate the risks.

http://www.us-cert.gov/current/index.html#vmware_releases_security_advisory_vmsa

Resolving DNS Event ID: 4515 – Duplicate DNS Zones

While working on a server today I ran into a reoccurring DNS event error:

This error hits the event log every time you start the DNS Service

Source: DNS
Type: Warning
Event ID: 4515

MicrosoftDNS but another copy of the zone has been found in directory partition DomainDnsZones.Domain.local. The DNS Server will ignore this new copy of the zone. Please resolve this conflict as soon as possible.

If an administrator has moved this zone from one directory partition to another this may be a harmless transient condition. In this case, no action is necessary. The deletion of the original copy of the zone should soon replicate to this server.

If there are two copies of this zone in two different directory partitions but this is not a transient caused by a zone move operation then one of these copies should be deleted as soon as possible to resolve this conflict.

Some online searching led me to the Microsoft Knowledgebase article here.

In my case the following steps resolved the issue:

First I started with Option 1:

For Option 1: [ForestDNSZones]

1. Click Start, click Run, type adsiedit.msc, and then click OK.
2. In the console tree, right-click ADSI Edit, and then click Connect to.
3. Click Select or type a Distinguished Name or Naming Context, type the following text in the list, and then click OK:

DC=ForestDNSZones, DC=contoso, DC=com
4. In the console tree, double-click DC=ForestDNSZones, DC=contoso, DC=com.
5. Double-click CN=MicrosoftDNS, and click the zone (contoso.com). You should now be able to view the DNS records which exist in this DNS partition. If you desire to remove this partition, right-click on contoso.com and then click Delete.

Note Deleting a zone is a destructive operation. Please confirm that a duplicate zone exists before you perform a deletion.

6. If you have deleted a zone, restart the DNS service. To do this, follow these steps:

a. Click Start, point to All Programs, point to Administrative Tools, and then click DNS.
b. In the console tree, right-click contoso.com, point to All Tasks, and then click Restart.

I was able to verify the DNS Zone existed there like the event log stated.

Next I Opened the Domain level with Option 2:

For Option 2: [DomainDNSZones]

1. Click Start, click Run, type adsiedit.msc, and then click OK.
2. In the console tree, right-click ADSI Edit, and then click Connect to.
3. Click Select or type a Distinguished Name or Naming Context, type the following text in the list, and then click OK: DC=DomainDNSZones,DC=contoso,DC=com.
4. In the console tree, double-click DC=DomainDNSZones,DC=contoso,DC=com
5. Double-click CN=MicrosoftDNS, and click the zone (contoso.com). You should now be able to view the DNS records which exist in this DNS partition. If you desire to remove this partition, right-click on contoso.com and then click Delete.

Note Deleting a zone is a destructive operation. Please confirm that a duplicate zone exists before you perform a deletion.

6. If you have deleted a zone, restart the DNS service. To do this, follow these steps:

a. Click Start, point to All Programs, point to Administrative Tools, and then click DNS.
b. In the console tree, right-click contoso.com, point to All Tasks, and then click Restart.

I was again able to confirm the duplicate zone existed.

I Before making any changes I fired up my backup software and took a system state backup of my DC.

Next I removed the duplicate Zone using ADSIEdit

Finally I restarted the DNS Server Service to verify the Event Log didn’t return.

Repairing Volume Shadow Copy Services

One of my coworkers at Adoni Networks ran into an issue tonight where backup software wouldn’t run.  The first software Acronis Trueimage kept crashing with the following error:

faulting application TrueImageService.exe  faulting module TrueImageService.exe fault address 0x00450f9c

After several attempts to correct the problem we switched to a backup software, DriveImage XML.  It failed backup while complaining that volume shadow services were not running however when he checked the services volume shadow copy showed running.

Checking the event logs revealed the following error:

Volume Shadow Copy Service initialization error: the control dispatcher cannot be started [0x80070427].

After some digging he found the folloiwng Microsoft Article: http://support.microsoft.com/kb/940032

The article details the following Steps to reregister Volume Shadow copy services:

1. Click Start, click Run, type cmd, and then click OK.
2. Type the following commands at a command prompt. Press ENTER after you type each command.

cd /d %windir%\system32
Net stop vss
Net stop swprv
regsvr32 ole32.dll
regsvr32 oleaut32.dll
regsvr32 vss_ps.dll
vssvc /register
regsvr32 /i swprv.dll
regsvr32 /i eventcls.dll
regsvr32 es.dll
regsvr32 stdprov.dll
regsvr32 vssui.dll
regsvr32 msxml.dll
regsvr32 msxml3.dll
regsvr32 msxml4.dll

Note The last command may not run successfully.

3. Perform a backup operation to verify that the issue is resolved.

VMware Launches VMware Fusion 2.0 – The Second Generation of Its Award-Winning Windows-on-Mac Software

VMware Launches VMware Fusion 2.0 – the second generation release of it’s software made to allow windows to run in Mac OS X.  I have been a user of VMware fusion through the entire beta and it’s a great upgrade.  With added support for more 3D technologies and games, mirroring of key folders such as desktop and pictures, and an improved interface it’s a great upgrade.  VMware has also released 2.0 as a free upgrade for existing 1.0 users.  Check out the original news release here and give the product a try.

Mac OS X 10.5.5 Available for Download Now

The following news, courtesy of Gizmodo showed up in my RSS Reader – original story here.

Mac OS X 10.5.5 update just hit Software update, and has a laundry list of fixes for not just the OS core, but apps like iCal and Mail, as well as the MobileMe and Time Machine services. TUAW got a heads up from it’s readers, and shortly after, it popped up in our Software Update. Check out the update list below. [Apple via TUAW]

What’s included?

General

* Includes recent Apple security updates.
* Addresses stability issues with video playback, processor core idling, and remote disc sharing for MacBook Air.
* Addresses an issue in which some Macs could unexpectedly power on at the same time each day.
* Resolves a stability issue in TextEdit that could be found when accessing the color palette.
* Improves Spotlight indexing performance.
* Fixes an issue in which contacts might not sync properly with PalmOS-based devices.
* Improves iPhone sync reliability with iCal and Address Book.
* Includes improvements to Active Directory (see this article for more information).
* Improves Speech Dictionary.
* Fixes Kerberos authentication issues for Mac OS X 10.5 clients that connect to certain Samba servers, such as Mac OS X Server version 10.4.
* Includes extensive graphics enhancements.

Address Book

* Addresses stability issues that may occur when creating a Smart Group.
* Resolves a printing issue with address cards containing information that spans more than one page.

Disk Utility and Directory Utility

* Improves reliability when rebuilding a software mirror RAID volume in Disk Utility.
* Improves reliability of server status displayed in Directory Utility.

iCal

* Updates iCal to more accurately handle repeating events.
* Improves performance when choosing meeting attendees.
* Resolves an issue in which the “Refresh All” option may be dimmed (“grayed out”) in the contextual menu for certain calendars.
* Fixes issues with read-only calendars.
* Addresses an issue that prevents an invitee from moving an event to a different calendar.
* Resolves an issue with syncing published calendars.

Mail

* Addresses performance issues related to displaying IMAP messages.
* Resolves an issue with SMTP settings for AIM, Compuserve, Hanmail, Yahoo!, and Time Warner Road Runner email accounts.
* Addresses stability issues that may occur when dragging a file to the Mail icon in the Dock.
* Addresses an issue with the “Organized by Thread” view in which the date does not appear when the thread is collapsed.
* Resolves an issue in which RSS feeds could temporarily disappear from the sidebar.
* Improves Mail robustness when sending messages.
* Improves reliability when saving drafts that have attachments.

MobileMe

* Improves overall sync reliability.
* Improves Back to My Mac reliability.

Time Machine

* Improves Time Machine reliability with Time Capsule.
* Addresses performance issues that may affect initial and in-progress backups.
* Fixes an issue in which an incorrect alert message could appear stating that a backup volume does not have enough free space.
* Time Machine can now back up iPhone backups that are on your Mac, as well as other items in (~/Library/Application Support).

← Previous PageNext Page →