Remove backup files ending with “~” from your system.
Filed under: , — 4 Comments May 1, 2013 Many text editors create backup files with names ending with “~”.
Most of the times these files are annoying and unnecessary … So, you can use the following piped commands to remove them : find / | grep “^.*~$” | sed -e ‘s/\(^.*$\)/”\1″/g’ | xargs rm -f > /dev/null 2>&1 Please take account that this version handles correctly also filepaths containing space characters.
Rate this:.
Share this:.
Click to share on Facebook (Opens in new window).

Click to share on LinkedIn (Opens in new window)

Click to share on Twitter (Opens in new window)

Click to print (Opens in new window)

Click to email this to a friend (Opens in new window)

Like this:.
Like Loading.
Tags: clean backup files, , , grep, , sed, .

Xargs Comments RSS feed 4 Comments:

Chatzikyriakidis May 7, 2013 at 16:25 The approach of P.
Christeas as I have written is only for GNU find version which probably is located in a GNU/Linux operating system .
However, .

The article is more general since there is no reference to GNU operating systems (e.g

GNU/Linux, GNU/Hurd).

Evaggelos Balaskas May 7

2013 at 12:16 Dude… P.
Christeas approach is the correct method.

If find missing delete then its not a GNU/Linux distro

Chatzikyriakidis May 1, 2013 at 17:25 There are many ways to achieve this.
I didn’t want to use ‘-delete’ since this option might be missing from some versions of ‘find’.

We could use also ‘-exec rm’ but both ‘-delete’ and ‘-exec’ are for GNU find

Other versions might not have these smart options yet.
Christeas May 1, 2013 at 16:59 find -name ‘*~’ -delete.
Leave a Reply Cancel reply.
Enter your comment here.
Fill in your details below or click an icon to log in:.
Email (Address never made public) Name Website You are commenting using your account.
( Log Out /   ) You are commenting using your Google account .
( Log Out /   ) You are commenting using your Twitter account.
( Log Out /   ) You are commenting using your Facebook account.
( Log Out /   ) Cancel Connecting to %s Notify me of new comments via email.
Notify me of new posts via email.
« You Came.

LISP function for inserting the GNU GPL v3 in Emacs

May 2013 M T W T F S S  12345 6789101112 13141516171819 20212223242526 2728293031   « Mar Jun ».
287,006 hits.
Send to Email Address Your Name Your Email Address Cancel Post was not sent – check your email addresses.
Email check failed.

Please try again Sorry

your blog cannot share posts by email.
%d bloggers like this:.

Storage Field Day (#SFD12) – Vendor line up.
March 7, 2017 2 Comments Following on from my previous post about a quick intro to Storage Field Day (#SFD12) that I was invited to attend in San Jose this week as an independent thought leader, I wanted to get a quick post out on the list of vendors we are supposed to be seeing.

If you are new to what Tech Field Day / Storage Field Day events are

you’ll also find an intro in my above post.

The event is starting tomorrow and I am currently waiting for my flight to SJC at LHR

and its fair to say I am really looking forward to attending the event.
Part of that excitement is due to being given the chance to meet a bunch of other key independent thought leaders, community contributors, Technology evangelists from around the world as well as the chance to meet Stephen Foskett (@SFoskett ) and the rest of the #TFD crew from Gestalt IT ( ) at the event. But most of that excitement for me is simply due to the awesome (did I say aaawwwesommmmmmeee?) list of vendors that we are supposed to be meeting with to discuss their technologies.
The full list & event agenda goes as follows Wednesday the 8th Watch the live streaming of the event @

09:00 – MoSMB presentation MoSMB is a fully compliant

light weight adaptation of SMB3 made available as proprietory offering by Ryussi technologies.

In effect its a BMS3 server on Linux & Unix systems

They are not a technology I had come across before so really looking forward to getting to know more about them and their offerings and their partnership with Microsoft…etc.

10:00 – StarWind Presents Again

new technology to me personally, which appears to be a Hyper-Converged appliance that seem to unify commodity server disks and flash with multiple hypervisors.
Hyper-Converged platforms are very much of interest to me and I know the industry leading offerings on this front such as VMware VSAN & Nutanix fairly well.
So its good to get to know these guys too and understanding what are their Unique Selling Points / differentiators to the big boys.
13:00 – Elastifile Presents Elastic Loud File System from Elastafile is supposed to be able to provide application level distributed file / object system spanning private cloud and public cloud to provide a hybrid cloud data infrastructure.
This one is again new to me so keen to understand more about what makes them different to other similar distributed object / storage solutions such as HedVig / Scality from my perspective.
Expect my analysis blog post on this one after I’ve met up with them for my initial take!.
16:00 – Excelero Presents (hosted at Excelero office in the Silicon Valley) These guys are a new vendor that is literally due to launch themselves on the same day as we speak to them.
Effectively they don’t exists quite yet.
So quite exciting to find out who they are what they’ve got to offer us in this increasingly growing, rapidly changing world of enterprise IT.
19:00 – Dinner and Reception (Storage Cocktails?) with presenters and friends at Loft Bar and Bistro in San Jose Good networking event with the presenters from the day for peer to peer networking and further questioning on what we’ve heard from them during the day.
Thursday the 9th of March 08:00 (4pm UK time) – Nimble Storage Presents Nimble are a SAN vendor that I am fairly familiar with and have known them for a fairly long time and I also have few friends that work at Nimble UK.
To be fair, I was never a very big fan of Nimble personally as a hybrid SAN vendor as I was  more a NetApp, EMC, HPe 3Par kinda person for hybrid SAN offering which I’ve always thought offer the same if not better tech for roughly a similar price point, with the added benefit of being large established vendors. Perhaps I can use this session to understand where Nimble is heading now as an organisation and what differentiators / USP’s they may have compared to big boys and how they plan to stay relevant in an industry which is generally in decline as a whole.
10:45 – NetApp Presents (At NetApp head office in Silicon Valley) Now I know a lot about NetApp :-).
NetApp was my main storage skill in the past (still is to a good level) and I have always been very close to most NetApp technologies, from both presales and deliver perspective and was also awarded as the NetApp partner System Engineer of the Year (2013) for UK & Ireland by NetApp.
However since the introduction of cDOT properly to their portfolio, I’ve always felt like they’ve lost a little market traction a little.
I’m very keen to listen to NetApp’s current messaging and understand where their heads are at, and how their new technology stack including SolidFire is going to be positioned against other larger vendors such as Dell EMC, HPe 3Par as well as all the disruption from Software Defined storage vendors.
12:45 (20:45 UK time) – Lunch at NetApp with Dave Hitz Dave Hitz  (@DaveHitz) who was the NetApp founder is a legend… Nuff said!.
14:00 – Datera Presents Datera is a high performance elastic block storage vendor and is again quite new to me.
So looking forward to understanding more about what they have to offer.

19:30 – San Jose Sharks hockey game at SAP Center Yes

its an evening watching a bit of Ice Hockey which, I’ve never done before.
To be clear, .

Ice Hockey is not one of my favourite sports but happy to take part in the event :0)

Friday the 10th of March 09:00 (17:00 UK time) – SNIA Presents (@Intel Head office) The Storage Networking Industry Association is a non profit organisation made up of various technology vendor companies.
10:30 (18:30 UK time) – Intel Presents (@Intel Head office) I don’t think I need to explain / introduce Intel to anyone.
If I must, they kinda make some processors :-).

Looking forward to visiting Intel office in the valley

All and all, its an exciting line up of vendors and some old and some new vendors which I’m looking forward to meeting.
Exciting stuff, cant wait….
Now off to board the flight.
See you on the other side.
General, Storage #SFD12, Elastifile, Excelero, MoSMB, NetApp, Nimble, SFD, SNIA, StarWind, Storage Field Day, Tech Filed Day, TFD.

Archive | XenApp/XenDesktop 7.0 – 7.7 RSS feed for this section.
July 2, .

2020 0 Comments Updated for Citrix Virtual Apps and Desktops 2006

I am sure I may have missed something, so if I did, please let me know.
You can always find the most current Excel file by going to https://carlwebst Continue reading .

Citrix XenApp/XenDesktop 7.x Documentation Script Update Version 1.45

May 6, 2020 0 Comments Version 1.45 8-May-2020 Add checking for a Word version of 0, which indicates the Office installation needs repairing Add Receive Side Scaling setting to Function OutputNICItem Change color variables Continue reading .
Group Policy Default Settings Reference for Citrix XenApp and XenDesktop V1.30.
March 28, .

2020 0 Comments Updated for Citrix Virtual Apps and Desktops 2003

I am sure I may have missed something, so if I did, please let me know.
You can always find the most current Excel file by going to https://carlwebst Continue reading .
Group Policy Default Settings Reference for Citrix XenApp and XenDesktop V1.20.
December 19, 2019 0 Comments Updated 28-Dec-2019 I missed two new Single-session OS policy settings .
The help text for those two settings shows those settings are valid for 1906, 1909, and 1912.
I added the two settings to all th Continue reading .

Citrix XenApp/XenDesktop 7.x Documentation Script Update Version 1.44

December 17, 2019 0 Comments #Version 1.44 17-Dec-2019 Add a NoSessions parameter to exclude Machine Catalog, Application and Hosting session data from the report Added missing “Will shutdown after use” to the Hostin Continue reading .
Group Policy Default Settings Reference for Citrix XenApp and XenDesktop V1.10.
September 21, .

2019 0 Comments Updated for Citrix Virtual Apps and Desktops 1909

I am sure I may have missed something, so if I did, please let me know.
You can always find the most current Excel file by going to https://carlwebst Continue reading.
Get Broker Invalid Accounts V2.00.
June 18, 2019 1 Comment Version 2.00 18-June-2019 Add support for -WhatIf and -Confirm Add switch -RemoveInvalidAccounts Add switch -UpdateNameCache with a 30-second wait At the end of the script, show: Count of the unique Continue reading.
Get Broker Invalid Accounts V1.10.
June 8, 2019 0 Comments #Version 1.10 8-June-2019 Added a line to the final output that shows the number of unique orphaned SIDs or invalid account names found Figure 1 Please let me know if there is anything else that sho Continue reading.
Group Policy Default Settings Reference for Citrix XenApp and XenDesktop V1.08.
May 27, .

2019 0 Comments Updated for Citrix Virtual Apps and Desktops 1903

I am sure I may have missed something, so if I did, please let me know.
You can always find the most current Excel file by going to https://carlwebst Continue reading.
Group Policy Default Settings Reference for Citrix XenApp and XenDesktop V1.07.
May 27, .

2019 0 Comments Updated for Citrix Virtual Apps and Desktops 1811

I am sure I may have missed something, so if I did, please let me know.
You can always find the most current Excel file by going to https://carlwebst Continue reading.
Group Policy Default Settings Reference for Citrix XenApp and XenDesktop V1.06.
May 27, .

2019 0 Comments Updated for Citrix Virtual Apps and Desktops 1808

I am sure I may have missed something, so if I did, please let me know.
You can always find the most current Excel file by going to https://carlwebst Continue reading.
Group Policy Default Settings for Citrix XenApp and XenDesktop That Changed Between 7.18 and 1808.
May 27, 2019 2 Comments Computer XenApp Settings: Remove Display mode degrade preference Rename Enable XenApp Optimization to Enable Citrix Virtual Apps Optimization Remove Image caching Remove Legacy graphics mode Remove N Continue reading.
New Script: Get-BrokerInvalidAccounts for Event ID Error 505 Citrix ConfigSync Service.
May 14, 2019 0 Comments There you are minding your own business when you (for once) look at the event logs on your delivery controllers.
Much to your dismay, what do you see.
Hundreds if not thousands of errors in the Applic Continue reading.
Citrix XenApp/XenDesktop 7.8+ Documentation Script Update Version 2.24.
April 18, 2019 2 Comments Version 2.24 18-Apr-2019 If Policies parameter is used, check to see if the PowerShell session is elevated.
If it is, abort the script.
This is the #2 support email.
From an earlier update, which app Continue reading.
Citrix XenApp/XenDesktop 7.8+ Documentation Script Update Version 2.23.
April 15, 2019 0 Comments #Version 2.23 15-Apr-2019 I would like to thank the people who helped test this script and provide input and feedback.
The script is better because of you and your time and help.
#CitrixCommunityRocks Continue reading.
Get-OfflineScoutData PowerShell Script V1.01.
April 3, 2019 0 Comments #Version 1.01 3-Apr-2019 Fix an issue where the ListOfDDCs regkey value isn’t seen by humans but PoSH “sees” it and creates an array with one element with a value of one space.
Ad Continue reading.
New Script: Get Offline Scout Data.
April 2, 2019 0 Comments Imagine you are in a Citrix environment where Internet and online access is forbidden.
Where it is forbidden by company policy to enable PowerShell Remoting or Windows Remote Management or the Remote Continue reading.
Citrix XenApp/XenDesktop 7.8+ Documentation Script Update Version 2.22.
March 28, 2019 0 Comments #Version 2.22 28-Mar-2019 Add the new parameter -Controllers In the functions ProcessControllers and OutputControllers, change function variable $Controllers to $DDCs for the new $Controllers parame Continue reading.
New Script: Get Static Desktop User.
March 11, 2019 0 Comments In March 2019, I was honored to present at the first CUGC Texas XL event held at the beautiful University of Texas Club.
My presentation was on PowerShell Scripting with Webster.  This article shows Continue reading.
Citrix XenApp/XenDesktop 7.8+ Documentation Script Update Version 2.21.
February 1, 2019 0 Comments #Version 2.21 1-Feb-2019 Added additional VDA registry key data to Machine details for Local Text Echo added back in VDA 1811 (How to enable Local Text Echo for Citrix Virtual Apps) HKLM:\SOFTWARE Continue reading.
Posts navigation.
1 2 … 5 ← Older posts.
XenApp/XenDesktop 7.0 – 7.7 (97).

8 Maret 2019 0 Comments

Kategori: DAILY BLOG.
243 Posts Featured , , Video YouTube Halo, Selamat Datang di Cakdan Vlog!.
2 Mei 2020 0 Comments , Press Release 5 Pertanyaan yang Dipakai Jurnalis/Pengecek Fakta saat Membaca Berita.
3 April 2020 0 Comments , , Video YouTube Review Element Troy 2020, Sepeda Lipat Entry Level Rp4 Jutaan Terlaris Saat Ini!.
2 April 2020 0 Comments Covid-19, , Beradaptasi dengan Situasi.
2 April 2020 0 Comments , DOKU, Garena Free Fire, Press Release Cara Beli Game Lewat UniPin dan dapet Diskon Rp10.000 dari DOKU.
27 Maret 2020 1 Komentar , , Cara Membuat Lego Macro Photography yang Menarik.

26 Maret 2020 0 Comments

Beda Giant dan Ikea.

24 Desember 2019 0 Comments

Konser, Musik 33 Kali Nonton Konser U2.

8 Desember 2019 0 Comments

, , Traveling, Video YouTube Tempat Snorkeling Terbaik di Banyuwangi!.
15 November 2019 0 Comments , , Ini Fasilitas yang Diberikan Pesawat Business Class… .
9 November 2019 0 Comments , , Traveling Review Puri Bali Stania Puncak, Villa di Puncak Rasa Bali.
15 Juli 2019 0 Comments , Deep & Extreme Indonesia 2019.
9 April 2019 0 Comments Yang Tergagap-Gagap Naik MRT.

25 Maret 2019 0 Comments


17 Maret 2019 0 Comments

, , , , Video YouTube Review dan Tes Fitur Super Steady Video Galaxy S10+ di San Fransisco.
8 Maret 2019 0 Comments , , Gokart di Bogor.
8 Maret 2019 0 Comments , , , Telkomsel Ini Perbedaan Ponsel Jadul vs Ponsel Zaman Now!.

6 Maret 2019 0 Comments

, , Makansutra In-N-Out, 70 Tahun Jual Burger yang Sama.
3 Maret 2019 2 Komentar Newspaper Box, Saksi Sejarah Media Cetak di Amerika.

2 Maret 2019 0 Comments

Feature Otomotif, , Video YouTube Cara Bersihin Mobil ala Sultan.
16 Januari 2019 0 Comments , , Surfing, Kegiatan Nirfaedah?.
13 Januari 2019 0 Comments , , Video YouTube Ini Fitur Kamera Andalan Realme U1.

11 Desember 2018 0 Comments

, Video YouTube Ini Alasan datang ke IMX 2018 di Balai Kartini, 17-18 November 2018.
16 November 2018 0 Comments , , , Traveling Mengendarai Sepeda Terbang Jetovator.
8 Oktober 2018 0 Comments , , , Comparison is the thief of joy.
28 September 2018 0 Comments , Singkat tapi Senang di Palembang.

9 Agustus 2018 0 Comments

, , Startup, Kasur Mimpi Diary #1: 5 Alasan “Berinvestasi” di Tempat Tidur.
13 April 2018 0 Comments Bercita-cita Aplikasikan Ilmu di Bidang Sosial.
22 Februari 2018 0 Comments , DOKU, , Transaksi Cashless Ternyata Tak Seberat Diet Keto.
28 Agustus 2017 1 Komentar , , DOKU, , , Tips & Trick 5 Langkah Belanja Online Menggunakan Doku.
8 Agustus 2017 1 Komentar , , Omron Nebulizer, Praktis dan Efektif Mengatasi ISPA.
10 Januari 2017 3 Komentar , , , Video YouTube Yamaha Scorpio Custom vs Yamaha NMax , edisi touring.
26 Desember 2016 1 Komentar , Internet, Sosial Media , Om Telolet Om Tembus 1,2 Juta Tweet, Ini Dia Tweet Seleb yang Bikin Viral.
22 Desember 2016 1 Komentar , , Vivo “Copy Paste” Strategi Oppo.

20 Desember 2016 0 Comments

drone, , Video YouTube Nerbangin Parrot Disco FPV di AEON Mall.
27 November 2016 0 Comments , , Video YouTube SPG Mana Paling Cantik di GIIAS 2016?.
15 Agustus 2016 0 Comments , Video YouTube Tur ke Erotica Museum di Barcelona, Spanyol, Ngeri-Ngeri Sedap!.

1 Maret 2016 0 Comments

, Video YouTube Di Bali Kita #Ngetrail!.
12 Februari 2016 0 Comments , Infografis Perjalanan Hidup Bill Gates, Mark Zuckerberg, dan Steve Jobs.

21 Desember 2015 0 Comments

Traveling, Video YouTube Cara Membuat Fake Food.
11 November 2015 0 Comments Journalist Diary #1: Dilarang Pasrah.
29 Juni 2013 0 Comments , Siapa yang Memegang Gaji.
Suami atau Istri?.
15 Agustus 2012 0 Comments , Kompetisi Robotika.
21 November 2011 0 Comments , Animal Kaiser Evolution.
14 Oktober 2011 154 Komentar , Aplikasi Smartphone Sebagai Media Belajar.
8 Oktober 2011 2 Komentar , , , review Berbagi Kenangan lewat Internet/Cloud.
2 Juni 2011 4 Komentar , Benarkah Steve Jobs Bos yang Buruk?.
21 Mei 2011 1 Komentar , , review, Traveling Traveling dengan Bayi 2 Bulan.
18 Mei 2011 4 Komentar , Traveling Membuat Itinerary Perjalanan.
9 Mei 2011 0 Comments Sleepy Wrap Review.
5 April 2011 2 Komentar Tulisan yang lebih lama CAKDAN BLOG Tema: Rowling.
Tuliskan ke.

2008 2008 R2 2012 2012 R2 active directory ADFS 3.0 Azure Azure Active Directory cloud groups hybrid IAmMEC WAP Web Application Proxy windows Configuring Sync and Writeback Permissions in Active Directory for Azure Active Directory Sync.
July 3, 2015.
47 Comments on Configuring Sync and Writeback Permissions in Active Directory for Azure Active Directory Sync.
[Last updated 11th November 2019 – added support for Exchange Server automapping support, which was announced during Microsoft Ignite 2019 and will be supported in the first half of calendar year 2020.
This is supported by adding writeback for msExchDelegateListBL and msExchDelegateListLink attributes.
The below Exchange Hybrid writeback script has been updated to support these two attributes.] [This blog post was last updated 5th October 2017 – added support to Exchange Hybrid for msExchDelegateLinkList attribute which was announced at Microsoft Ignite 2017 for the support of keeping auto-mapping working cross on-premises and the cloud] [Updated 18th June 2017 in advance of the release of AADConnect version 1.1.553.0.
This post contains updates to the below scripts to include the latest attributes synced back to on-premises including publicDelegates, which is used for supporting bi-directional sync for “Send on Behalf” of permissions in Exchange Online/Exchange Server hybrid writeback scenarios] [Update March 2017 – added another blog post on using the below to fix permission-issue errors on admin and other protected accounts at] Azure Active Directory has been l ong the read-only cousin of Active Directory for those Office 365 and Azure users who sync their directory from Active Directory to Azure Active Directory apart from eight attributes for Exchange Server hybrid mode.
Not any more.
Azure Active Directory writeback is now available.
This enables objects to be mastered or changed in Azure Active Directory and written back to on-premises Active Directory.
This writeback includes: Devices that can be enrolled with Office 365 MDM or Intune, which will allow login to AD FS controlled resources based on user and the device they are on.
“Modern Groups” in Office 365 can be written back to on-premises Exchange Server 2013 CU8 or later hybrid mode and appear as mail enabled distribution lists on premises.
Does not require AAD Premium licences.
Users can change their passwords via the login page or user settings in Office 365 and have that password written back online.
Exchange Server hybrid writeback is the classic writeback from Azure AD and is the apart from Group Writeback is the only one of these writebacks that does not require Azure AD Premium licences.
User writeback from Azure AD (i.e.
users made in Office 365 in the cloud for example) to on-premises Active Directory.
Password Hash Sync (this is not really writeback, but its the only permission needed by default for forward sync, so added here).
Windows 10 devices for “Azure AD Domain Join” functionality.
All of these features require AADConnect and not and of the earlier verions.
You can add all these writeback functions from the AADConect setup wizard, and if you have used Custom mode, then you will need to implement the following permissions.
In all the below sections you need to grant permission to the connector account.
You can find the connector account for your Active Directory forest from the Synchronization Service program > Connectors > double-click your domain > select Connect to Active Directory Forest.
The account listed here is the connector account you need to grant permissions to.
SourceAnchor Writeback.
For users with (typically) multi-forest deployments or plans or a forest migration, the objectGuid value in Active Directory, which is used as the source for the attribute that keys your on-premises object to your synced cloud object – in AAD sync parlance, this is known as the SourceAnchor.
If you set up AADConnect version 1.1.553.0 or later you can opt to change from objectGuid to a new source anchor attribute known as ms-ds-consistencyGuid.
To be able to use this new feature you need the ability for AADConnect connector account to be able to read ObjectGUID and then write it back to ms-ds-consistencyGuid.
The read permissions are typically available to the connector account without doing anything special, and if AADConnect is installed in Express Mode it will get the write permissions it needs, but as with the rest of this blog, if you are not using Express Mode you need to grant the permissions manually and so write permissions are needed to the ms-ds-consistencyGuid attribute.
This can be done with this script.
$accountName = “domain\aad_account” #[this is the account that will be used by Azure AD Connect Sync to manage objects in the directory, this is often an account in the form of MSOL_number or AAD_number].
$ForestDN = “DC=contoso,DC=com” $cmd = “dsacls ”$ForestDN” /I:S /G ”`”$accountName`”:WP;ms-ds-consistencyGuid;user”” Invoke-Expression $cmd | Out-Null $accountName = “domain\aad_account” #[this is the account that will be used by Azure AD Connect Sync to manage objects in the directory, this is often an account in the form of MSOL_number or AAD_number].
$ForestDN = “DC=contoso,DC=com” $cmd = “dsacls ‘$ForestDN’ /I:S /G ‘`”$accountName`”:WP;ms-ds-consistencyGuid;user”” Invoke-Expression $cmd | Out-Null [/code] Note that if you use ms-ds-consistencyGuid then there are changes required on your ADFS deployment as well.
The Issuance Transform Rules for the Office 365 Relying Party Trust contains a rule that specifies the ImmutableID (aka AADConnect SourceAnchor) that the user will be identified as for login.
By default this is set to ObjectGUID, and if you use AADConnect to set up ADFS for you then the application will update the rule.
But if you set up ADFS yourself then you need to update the rule.
Issuance Transform Rules.
When Office 365 is configured to federate a domain (use ADFS for authentication of that domain and not Azure AD) then the following are the claims rules that exist out of the box need to be adjusted.
This is to support the use of ms-ds-consistencyguid as the immutable ID.
ADFS Management UI > Trust Relationships > Relying Party Trusts Select Microsoft Office 365 Identity Platform > click Edit Claim Rules You get two or three rules listed here.
You get three rules if you use -SupportMultipleDomain switch in Convert-MSOLDomainToFederated.
Rule 1: Change objectGUID to ms-DS-ConsistencyGUID   Rule Was: c:[Type == “”]=> issue(store = “Active Directory”, types = (“”, “”), query = “samAccountName={0};userPrincipalName,objectGUID ;{1}”, param = regexreplace(c.
Value, “(?[^\\]+)\\(?.+)”, “${user}”), param = c.
Value);   New Value:c:[Type == “”]=> issue(store = “Active Directory”, types = (“”, “”), query = “samAccountName={0};userPrincipalName,ms-DS-ConsistencyGUID ;{1}”, param = regexreplace(c.
Value, “(?[^\\]+)\\(?.+)”, “${user}”), param = c.
Value); Preparing for Device Writeback.
Device Writeback is used where you have an on-premises ADFS server farm and implement Conditional Access on-premises.
If you do cloud based authentication, including Pass-Through Auth (PTA) then you have no requirement for Device Writeback.
If you do not have a 2012 R2 or later domain controller then you need to update the schema of your forest.

Do this by getting a Windows Server 2012 R2 ISO image and mounting it as a drive

Copy the support/adprep folder from this image or DVD to a 64 bit domain member in the same site as the Schema Master.
Then run adprep /forestprep from an admin cmd prompt when logged in as a Schema Admin.
The domain member needs to be a 64 bit domain joined machine for adprep.exe to run.
Wait for the schema changes to replicate around the network.
Import the cmdlets needed to configure your Active Directory for writeback by running Import-Module ‘C:\Program Files\Microsoft Azure Active Directory Connect\AdPrep\AdSyncPrep.psm1’ from an administrative PowerShell session.
You need Azure AD Global Admin and Enterprise Admin permissions for Azure and local AD forest respectively.
The cmdlets for this are obtained by running the Azure AD Connect tool.
$accountName = “domain\aad_account” #[this is the account that will be used by Azure AD Connect Sync to manage objects in the directory, this is often an account in the form of MSOL_number or AAD_number].
Initialize-ADSyncDeviceWriteBack -AdConnectorAccount $accountName -DomainName #[domain where devices will be created].
In the domain partition you should now see an OU called RegisteredDevices.
The AADSync account now has permissions to write objects to this container.
In Azure AD Connect, if you get the error “This feature is disabled because there is no eligible forest with appropriate permissions for device writeback” then you need to complete the steps in this section and click Previous in the AADConnect wizard to go back to the “Connect your directories” page and then you can click Next to return to the “Optional features” page.
This time the Device Writeback option will not be greyed out.
Device Writeback needs a 2012 R2 or later AD FS server and WAP to make use of the device info in the Active Directory (for example, conditional access to resources based on the user and the device they are using).
Once Device Writeback is prepared for with these cmdlets and the AADConnect Synchronization Options page is enabled for Device Writeback then the following will appear in Active Directory: Not shown in the above, but adding the Display Name column in Active Directory Users and Computers tells you the device name.
The registered owner and registered users of the device are available to view, but as they are SID values, they are not really readable.
Preparing for Group Writeback.
Writing Office 365 “Modern Groups” back to Active Directory on-premises requires Exchange Server 2013 CU8 or later schema updates and servers installed.
To create the OU and permissions required for Group Writeback you need to do the following.
Import the cmdlets needed to configure your Active Directory for writeback by running Import-Module ‘C:\Program Files\Microsoft Azure Active Directory Connect\AdPrep\AdSyncPrep.psm1’ from an administrative PowerShell session.
You need Domain Admin permissions for the domain in the local AD forest that you will write back groups to.
The cmdlets for this are obtained by running the Azure AD Connect tool.
$accountName = “domain\aad_account” #[this is the account that will be used by Azure AD Connect Sync to manage objects in the directory, this is often an account in the form of MSOL_number or AAD_number].
$cloudGroupOU = “OU=CloudGroups,DC=contoso,DC=com” Initialize-ADSyncGroupWriteBack -AdConnectorAccount $accountName -GroupWriteBackContainerDN $cloudGroupOU Once these cmdlets are run the AADSync account will have permissions to write objects to this OU.
You can view the permissions in Active Directory Users and Computers for this OU if you enable Advanced mode in that program.
There should be a permission entry for this account that is not inherited from the parent OU’s.
At the time of writing, the distribution list that is created on writeback from Azure AD will not appear in the Global Address List in Outlook etc.
or allow on-premises mailboxes to send to these internal only cloud based groups. To add it to the address book you need to create a new subdomain, update public DNS and add send connectors to hybrid Exchange Server.
This is all outlined in
This ensure’s that on-premises mailboxes can deliver to groups as internal senders and not require external senders enabled on the group.
To add the group to the Global Address List you need to run Update-AddressList in Exchange Server.
Once group writeback is prepared for using these cmdlets here and AADConnect has had it enabled during the Synchronization Options page, you should see the groups appearing in the selected OU as shown: And you should find that on-premises users can send email to these groups as well.
Preparing for Password Writeback.
The option for users to change their passwords in the cloud and have then written back to on-premises (with multifactor authentication and proof of right to change the password) is also available in Office 365 / Azure AD with the Premium Azure Active Directory or Enterprise Mobility Pack licence.
To enable password writeback for AADConnect you need to enable the Password Writeback option in AADConnect synchronization settings and then run the following three PowerShell cmdlets on the AADSync server: Get-ADSyncConnector | fl name,AADPasswordResetConfiguration Get-ADSyncAADPasswordResetConfiguration -Connector “ – AAD” Set-ADSyncAADPasswordResetConfiguration -Connector “ – AAD” -Enable $true The first of these cmdlets lists the ADSync connectors and the name and password reset state of the connector.
You need the name of the AAD connector.
The middle cmdlet tells you the state of password writeback on that connector and the last cmdlet enables it if needed.
The name of the connector is required in these last two cmdlets.
To set the permissions on-premises for the passwords to be written back the following script is needed: $passwordOU = “DC=contoso,DC=com” #[you can scope this down to a specific OU] $accountName = “domain\aad_account” #[this is the account that will be used by Azure AD Connect Sync to manage objects in the directory, this is often an account in the form of MSOL_number or AAD_number].
$cmd = “dsacls.exe ”$passwordOU” /I:S /G ”`”$accountName`”:CA;`”Reset Password`”;user”” Invoke-Expression $cmd | Out-Null $cmd = “dsacls.exe ”$passwordOU” /I:S /G ”`”$accountName`”:CA;`”Change Password`”;user”” Invoke-Expression $cmd | Out-Null $cmd = “dsacls.exe ”$passwordOU” /I:S /G ”`”$accountName`”:WP;lockoutTime;user”” Invoke-Expression $cmd | Out-Null $cmd = “dsacls.exe ”$passwordOU” /I:S /G ”`”$accountName`”:WP;pwdLastSet;user”” Invoke-Expression $cmd | Out-Null Finally you need to run the above once per domain.

Preparing for Exchange Server Hybrid Writeback

Hybrid mode in Exchange Server requires the writing back on eight attributes from Azure AD to Active Directory.
The list of attributes written back is found here.
The following script will set these permissions for you in the OU you select (or as shown at the root of the domain).
The DirSync tool used to do all this permissioning for you, but the AADSync tool does not.
Therefore scripts such as this are required.
This script sets lots of permissions on these eight attributes, but for clarify on running the script the output of the script is sent to Null.
Remove the “| Out-Null” from the script to see the changes as they occur (the script also takes a lot longer to run).
$accountName = “domain\aad_account” #[this is the account that will be used by Azure AD Connect Sync to manage objects in the directory, this is often an account in the form of MSOL_number or AAD_number].
$HybridOU = “DC=contoso,DC=com” #Object type: user $cmd = “dsacls ”$HybridOU” /I:S /G ”`”$accountName`”:WP;proxyAddresses;user”” Invoke-Expression $cmd | Out-Null $cmd = “dsacls ”$HybridOU” /I:S /G ”`”$accountName`”:WP;msExchUCVoiceMailSettings;user”” Invoke-Expression $cmd | Out-Null $cmd = “dsacls ”$HybridOU” /I:S /G ”`”$accountName`”:WP;msExchUserHoldPolicies;user”” Invoke-Expression $cmd | Out-Null $cmd = “dsacls ”$HybridOU” /I:S /G ”`”$accountName`”:WP;msExchArchiveStatus;user”” Invoke-Expression $cmd | Out-Null $cmd = “dsacls ”$HybridOU” /I:S /G ”`”$accountName`”:WP;msExchSafeSendersHash;user”” Invoke-Expression $cmd | Out-Null $cmd = “dsacls ”$HybridOU” /I:S /G ”`”$accountName`”:WP;msExchBlockedSendersHash;user”” Invoke-Expression $cmd | Out-Null $cmd = “dsacls ”$HybridOU” /I:S /G ”`”$accountName`”:WP;msExchSafeRecipientsHash;user”” Invoke-Expression $cmd | Out-Null $cmd = “dsacls ”$HybridOU” /I:S /G ”`”$accountName`”:WP;msDS-ExternalDirectoryObjectID;user”” Invoke-Expression $cmd | Out-Null $cmd = “dsacls ”$HybridOU” /I:S /G ”`”$accountName`”:WP;publicDelegates;user”” Invoke-Expression $cmd | Out-Null $cmd = “dsacls ”$HybridOU” /I:S /G ”`”$accountName`”:WP;msExchDelegateLinkList;user”” Invoke-Expression $cmd | Out-Null $cmd = “dsacls ”$HybridOU” /I:S /G ”`”$accountName`”:WP;msExchDelegateListBL;user”” Invoke-Expression $cmd | Out-Null $cmd = “dsacls ”$HybridOU” /I:S /G ”`”$accountName`”:WP;msExchDelegateListLink ;user”” Invoke-Expression $cmd | Out-Null #Object type: iNetOrgPerson $cmd = “dsacls ”$HybridOU” /I:S /G ”`”$accountName`”:WP;proxyAddresses;iNetOrgPerson”” Invoke-Expression $cmd | Out-Null $cmd = “dsacls ”$HybridOU” /I:S /G ”`”$accountName`”:WP;msExchUCVoiceMailSettings;iNetOrgPerson”” Invoke-Expression $cmd | Out-Null $cmd = “dsacls ”$HybridOU” /I:S /G ”`”$accountName`”:WP;msExchUserHoldPolicies;iNetOrgPerson”” Invoke-Expression $cmd | Out-Null $cmd = “dsacls ”$HybridOU” /I:S /G ”`”$accountName`”:WP;msExchArchiveStatus;iNetOrgPerson”” Invoke-Exp.
Preparing for User Writeback.
[This functionality is not in the current builds of AADConnect] Currently in preview at the time of writing, you are able to make users in Azure Active Directory (cloud users as Office 365 would call them) and write them back to on-premises Active Directory.
The users password is not written back and so needs changing before the user can login on-premises.
To prepare the on-premises Active Directory to writeback user objects you need to run this script.
This is contained in AdSyncPrep.psm1 and that is installed as part of Azure AD Connect.
Azure AD Connect will install Azure AD Sync, which is needed to do the writeback.
To load the AdSyncPrep.psm1 module into PowerShell run Import-Module ‘C:\Program Files\Microsoft Azure Active Directory Connect\AdPrep\AdSyncPrep.psm1’ from an administrative PowerShell session.
$accountName = “domain\aad_account” #[this is the account that will be used by Azure AD Connect Sync to manage objects in the directory, this is an account usually in the form of AAD_number].
$cloudUserOU = “OU=CloudUsers,DC=contoso,DC=com” Initialize-ADSyncUserWriteBack -AdConnectorAccount $accountName -UserWriteBackContainerDN $cloudUserOU Once the next AADSync occurs you should see users in the OU used above that match the cloud users in Office 365 as shown: Prepare for Password Hash Sync.
This set of PowerShell ensures that the AADConnect account has the correct permissions to read password hashes from the Active Directory when they are changed, so that the service can sync them to the cloud.
You need this permission whenever you enable Password Hash Sync (which could be in conjunction with another authentication method as well) $DomainDN = “DC=contoso,DC=com” $accountName = “domain\aad_account” #[this is the account that will be used by Azure AD Connect Sync to manage objects in the directory, this is often an account in the form of MSOL_number or AAD_number].
$cmd = “dsacls.exe ”$DomainDN” /G ”`”$accountName`”:CA;`”Replicating Directory Changes`”;”” Invoke-Expression $cmd | Out-Null $cmd = “dsacls.exe ”$DomainDN” /G ”`”$accountName`”:CA;`”Replicating Directory Changes All`”;”” Invoke-Expression $cmd | Out-Null Prepare for Windows 10 Registered Device Writeback Sync.
Windows 10 devices that are joined to your domain can be written to Azure Active Directory as a registered device, and so conditional access rules on device ownership can be enforced.
To do this you need to import the AdSyncPrep.psm1 module.
This module supports the following two additional cmdlets to prepare your Active Directory for Windows 10 device sync: CD “C:\Program Files\Microsoft Azure Active Directory Connect\AdPrep” Import-Module .\AdSyncPrep.psm1 Initialize-ADSyncDomainJoinedComputerSync Initialize-ADSyncNGCKeysWriteBack These cmdlets are run as follows: $accountName = “domain\aad_account” #[this is the account that will be used by Azure AD Connect Sync to manage objects in the directory, this is often an account in the form of MSOL_number or AAD_number].
$azureAdCreds = Get-Credential #[Azure Active Directory administrator account] CD “C:\Program Files\Microsoft Azure Active Directory Connect\AdPrep” Import-Module .\AdSyncPrep.psm1 Initialize-ADSyncDomainJoinedComputerSync -AdConnectorAccount $accountName -AzureADCredentials $azureAdCreds Initialize-ADSyncNGCKeysWriteBack -AdConnectorAccount $accountName To successfully run these cmdlets you need to have the latest version of the Microsoft Online PowerShell modules installed (the V1.1 versions, not the V2.0 preview).
You can get these from (which in turn needs MSOL Signin Assistant from and the Windows Management Framework v5 from
If you get errors in the above, make sure you have the correct version, download from above and try the scripts again.
Once complete, open Active Directory Sites and Services and from the View menu Show Services Node.
Then you should see the GUID of your domain under the Device Registration Configuration container.
2003 2007 2008 2008 R2 2012 64 bit backup bios hyper-v password recovery sysprep windows windows 2003 windows 2008 windows 7 windows server workstation x64 x86 Access Is Denied Message After Sysprep–How To Fix.
September 12, 2012.
1 Comment on Access Is Denied Message After Sysprep–How To Fix.
If before you use Sysprep to prepare a Windows machine for imaging you set the administrators password “User cannot change password” then sysprep will not clear this setting, but will set the “User must change password at next logon” setting.
Normally these two settings are mutually exclusive, but in the scenario for sysprep it seems they can both end up being set.
This means you get prompted to reset you password at first logon after sysprep completes and then find you have “Access Denied” as the response.
There is seemingly no way around this Catch-22.
That is unless you use the Offline NT Password and Registry Editor.
This tool allows password resets when booting the server from a CD or USB key (so physical access to the server is required).
As the download for this is an iso file, it can also be used in virtual environments by configuring your virtual machine to boot from the iso you have downloaded.
To allow you to logon to your machine following the above issue, all you need to in the Offline NT Password tool is to blank out the administrators password and unlock the account.
These are options 1 and 4 during the password reset stage.
Full instructions with screenshots follow: Boot the server with the issue with the Offline NT Password and Registry Editor iso file:.
Choose the correct boot option (or just press Enter for the defaults):.
For Vista and earlier select the default of Option 1.
For Windows 7 and Windows 2008 and later select Option 2 (to boot into the second partition on the disk).
You might need to select a different option if you have more partitions.
You need to select the partition that Windows is installed on.
If the disk is marked as Read-Only ensure that the server went through a clean boot and was not shutdown incorrectly.
Once the messages indicate a writable partition.
Select the presented folder (by pressing Enter again).
You can typically just press Enter through most of these stages.
You will be asked what you want to do – we want to reset passwords:.
Select Option 1 to Edit user data and passwords:.
Press Enter to choose the Administrator account:.
Type 1 to Clear (blank) user password.
You should get back the message “Password cleared!”:.
Press Enter again to reselect the Administrator account, and this time select Option 4 to unlock the account (even though this program tells you the account is already unlocked):.
Once you see “Unlocked!” you can quit from this program.
The process to quit requires you to save your changes.
Note that the default setting is not to save changes, so you cannot now use Enter to select the default option.
to quit from the password reset program:.
Enter q to quit from the script and to ask about saving changes:.
Enter y to write back the files that have been changed:.
You should have been told “***** EDIT COMPLETE *****”.
Press Enter to finish the program scripts:.
At this final screen you can remove the CD or unmount the iso image from your virtual machine and press CTRL+ALT+DEL to restart the server.
The server should now boot into Windows and auto-logon as it has a blank password.
Change the password and optionally untick the “User cannot change password” setting.
2008 2013 asterisknow rtp sip unified messaging voicemail Building An Exchange Unified Messaging Lab (Part 7).
August 21, 2012.

No Comments on Building An Exchange Unified Messaging Lab (Part 7)

In this series of blog posts I am looking at creating a Unified Messaging lab for Exchange Server 2010 (and 2013).
Earlier posts have looked at the installation of the PBX (AsteriskNOW) and the configuration of the Exchange Server.
This post will look at the configuration of the user’s settings.
For each user there are two settings to configure.
The first are the related settings on the telephone and the second is the configuration of the unified messaging properties on the Exchange mailbox.
The first set of settings are covered in detail in Part 4 of the blog but in brief they involve choosing a unique extension number that has the same number of digits as the dialplan (all extensions must be unique within the dialplan) and creating this extension within the PBX and configuring a phone to use this extension.
Once you have done the steps in Part 4 of the blog you should be able to ring any of your extensions and pickup the call.
If you ignore the call or press any “reject” button on the handset you will find that Asterisk voicemail answers the phone.
So this part of the blog series will go into the steps to configure Asterisk to forward voicemail to Exchange Server (and this is the same for Exchange Server 2010 or 2013).
Configuring Unified Messaging Mailboxes in Exchange Server.
For each user you need to associate their mailbox in Exchange with their extension number.
You can do with the Enable-UMMailbox cmdlet or the Enable Unified Messaging wizard in the Exchange Management Console.
For the wizard, right-click the mailbox under Recipient Configuration and select the Unified Messaging Mailbox Policy that you created earlier.
Then either choose a PIN or have the system generate on for the user automatically.
The user will get an email informing them of their PIN either way.
Click Next.
If the user already has the Business Phone attribute (or Telephone number attribute on the General tab in Active Directory Users and Computers) populated in Active Directory then the option to automatically generate the mailbox extension will be available, and the extension will be shown (greyed out) in the field to the right.
If this is incorrect, or a full phone number was not specified, then only the manual option will be available.
The Exchange Management Shell cmdlet to do the same is: Enable-UMMailbox username -PinExpired $false -UMMailboxPolicy ”policy_name”     or, if you want to specify the extension number:   Enable-UMMailbox username -PinExpired $false -UMMailboxPolicy ”policy_name” -Extensions ”8001”     As each mailbox is enabled for unified messaging, the mailbox will get an email telling them the access numbers for voicemail (the dialplan subscriber numbers), their number (which should be the same as their telephone extension number) and their PIN.
On the mailbox, if you look on the E-mail Addresses tab you will see the EUM address, and this should read ext;phone-content=policy.
You can add additional extensions (EUM addresses) here manually if you wish.
Configuring and Using Outlook Voice Access.
Now that you have the extension configured on a phone, the same extension configured against the mailbox, a dialplan with subscriber access number configured, SIP trunks to Exchange and an Outbound Route for the subscriber access number you should be able to ring the subscriber access number from your physical handset.
Upon dialling from the phone configured with your extension number you will hear the Exchange chimes and be asked to setup your Outlook Voice Access for the first time.
You will need your PIN number to complete this, and this will have been emailed to the mailbox at the time the mailbox was configured for UM.
Configure Asterisk to Forward Calls to Exchange Unified Messaging for Voicemail.
Asterisk defaults to forwarding calls to its own voicemail extensions and so edits need to be made to extensions.conf (or linked files if using FreePBX) to route calls to Exchange Server for voicemail.
In this blog series we have FreePBX installed, so we need to edit /etc/asterisk/extensions_override_freepbx.conf rather than extensions.conf.
The first change is to copy the [macro-vm] section from /etc/asterisk/extensions_additional.conf into /etc/asterisk/extensions_override_freepbx.conf.
[macro-vm] is approx 150 lines long and ends with “;–== end of [macro-vm] ==–;”.
Then we need to make some changes and additions to the macro-vm section.
The first set of changes will comment out the code the directs calls to Asterisk voicemail and the additional lines will dial the Exchange Server trunks and add SIP Diversion headers so that Exchange knows which mailbox to answer the call for.
So first, locate the following lines and comment them out.
The numbers in brackets at the start are the approx.
location in extensions_override_freepbx.conf where you will find the line: (86) exten => s-BUSY,n,VoiceMail(${MEXTEN}@${VMCONTEXT},${VM_OPTS}b${VMGAIN}) (92) exten => s-NOMESSAGE,n,VoiceMail(${MEXTEN}@${VMCONTEXT},s${VM_OPTS}${VMGAIN}) (97) exten => s-DIRECTDIAL,n,VoiceMail(${MEXTEN}@${VMCONTEXT},${VM_OPTS}${VM_DDTYPE}${VMGAIN})   Each of the above lines can be commented out by placing a semi-colon (;) at the start of the line.
Return to the s-BUSY block (starting at line 84) and add the following after the line that you just commented out: exten => s-BUSY,n,SIPAddHeader(Diversion:\;reason=no-answer\;screen=no\;privacy=off) exten => s-BUSY,n,Dial(SIP/xxxx&SIP/yyyy) /* xxxx/yyyy here are the two trunk names, one for each TCP listening port */ exten => s-BUSY,n,Hangup   This code adds the Diversion header to read tel:extension.
Note that the tel:ext block is surrounded by greater and less than signed (triangle brackets if you will) which have a habit of not being displayed on web pages.
Also note that you need to use the names of your two trunks connecting to Exchange that you will make in the final part of this blog series (Part 8).
You will make one trunk connecting to port 5065 and the other to port 5067.
The Dial() command tells Asterisk to dial both trunks at the same time and direct the call to whichever answers first.
Therefore if Exchange is listening on 5065 or 5067 the connection will work.
For ease of configuration, if you pick the names for the two trunks now you can add them to the config file here and then when you create the trunk in Part 8 you just need to use the same names.
I used ToExchangeUM5065 and ToExchangeUM5067 in my lab.
Then I replace xxxx with ToExchangeUM5065 and yyyy with ToExchangeUM5067.
The s-NOMESSAGE block (at line 92) needs the following added after the line that has been commented out: exten => s-NOMESSAGE,n,SIPAddHeader(Diversion:\;reason=no-answer\;screen=no\;privacy=off) exten => s-NOMESSAGE,n,Dial(SIP/xxxx&SIP/yyyy) /* xxxx/yyyy here are the two trunk names, one for each TCP listening port */ exten => s-NOMESSAGE,n,Hangup   Again, change xxxx and yyyy for your two different trunk names that you create in the next part of this blog and make sure that the Diversion: header includes triangle brackets around tel:ext.
Next you need to do the same for the s-DIRECTDIAL block: exten => s-DIRECTDIAL,n,SIPAddHeader(Diversion:\;reason=no-answer\;screen=no\;privacy=off) exten => s-DIRECTDIAL,n,Dial(SIP/xxxx&SIP/yyyy) /* xxxx/yyyy here are the two trunk names, one for each TCP listening port */ exten => s-DIRECTDIAL,n,Hangup   As you can see, the three blocks of inserted code are all the same apart from the s-WORD value at the start of each.
One block of code is missing through from the FreePBX defaults.
If you call an extension and it is busy Asterisk runs the code starting s-BUSY, but if the call is ignored then Asterisk attempts to find and run code starting s-NOANSWER and as this is missing it will route ignored calls to Asterisk voicemail.
To route ignored calls to Exchange Server add the following block of text: exten => s-NOANSWER,1,Noop(NOANSWER voicemail – Exchange UM) exten => s-NOANSWER,n,Macro(get-vmcontext,${MEXTEN}) exten => s-NOANSWER,n,SIPAddHeader(Diversion:\;reason=no-answer\;screen=no\;privacy=off) exten => s-NOANSWER,n,Dial(SIP/xxxx&SIP/yyyy) /* xxxx/yyyy here are the two trunk names, one for each TCP listening port */ exten => s-NOANSWER,n,Hangup exten => s-NOANSWER,n,Goto(exit-${VMSTATUS},1)   This new block is again a copy of s-BUSY (or the other two) and just the s-WORD bit changed to s-NOANSWER.
For completion the Noop line (line 1 above) is also changed to NOANSWER so that the correct text is written to the Asterisk console and log files.
No other changes are needed in extensions_override_freepbx.conf.
So save the file and restart Asterisk by using amportal restart from the console.
There is now one more thing to do.
That is to create the SIP Trunks to Exchange Server.
This is detailed in Part 8, and once you have a way to connect to Exchange Server you are able to route voicemail requests to Exchange and complete your unified messaging lab.
2008 2008 R2 2012 dell hyper-v openmanage osma server administrator server core windows server Installing Dell Open Manage 7.1 on Hyper-V R2 Servers.
August 21, 2012.

No Comments on Installing Dell Open Manage 7.1 on Hyper-V R2 Servers

This set of instructions goes through the process for installing Dell Open Manager on Windows Server 2008 R2 and Windows Server 2012.
Download both the 6.5 and 7.1 versions of Dell Open Manage You need to install 6.5 first, or you will get errors about “omchecks has stopped working” failing during the RunPreReqChecks process and an error about “Failed to load OMIL Library” when running the actual installer.
If you cannot find version 6.5 for your server, then download a copy of 6.5 for any other Dell server model such as found here or by searching via a search engine.
On the server run Dism /online /enable-feature /featurename:SNMP-SC to install SNMP.
After downloading 6.5 expand the zip to c:\OpenManage65 and if needed copy to the server you are installing on, or burn a DVD and insert it into the server in question.
Install Open Manage 6.5 with the following steps cd c:\OpenManage65\windows\prereqchecker.
runprereqchecks /s.
echo Return Code = %ERRORLEVEL%.
Check the Return Code with the codes listed at
Fix any errors listed.
You should get a 2 as the Return Code.
You might need to view the prereqchecker HTML file that it creates.
This is made in your temp directory.
Cd %TEMP% to see what this is.
It will be something like c:\Users\username\AppData\Local\Temp\2.
To open the HTML output file connect to this temp folder from a machine with IE installed on it and open omprereq.htm.
Fix any listed errors.
cd c:\OpenManage65\windows\SystemsManagement.
msiexec /i SysMgmt.msi.
Choose Custom and add the Remote Enablement option.
Allow remote access to TCP port 1311 (the Open Manage web server port) using netsh advfirewall firewall add rule name=”Dell OpenManage Server Administrator Web GUI” dir=in action=allow protocol=TCP localport=1311.
Install Open Manage 7.1.
The steps here are similar, just from the directory containing version 7.1 instead.
cd c:\OpenManage71\windows\prereqchecker.
runprereqchecks /s.
echo Return Code = %ERRORLEVEL%.
Check the Return Code with the codes listed at
Fix any errors listed.
You should get a 2 as the Return Code.
You might need to view the prereqchecker HTML file that it creates.
This is made in your temp directory.
Cd %TEMP% to see what this is.
It will be something like c:\Users\username\AppData\Local\Temp\2.
To open the HTML output file connect to this temp folder from a machine with IE installed on it and open omprereq.htm.
Fix any listed errors.
cd c:\OpenManage71\windows\SystemsManagement.
msiexec /i SysMgmt.msi.
Choose Custom and add the Remote Enablement option (though as this is now an upgrade it should already be selected).
Finish by browsing to https://remoteserver:1311 not forgetting the s in https.
You will get a certificate error and once connected you can replace this if you wish or are required to by corporate policies.
With thanks to the following two blogs:
2008 2008 R2 windows server Lab Environment: Set All Users With Non-Expiring Passwords.
July 11, 2011.

No Comments on Lab Environment: Set All Users With Non-Expiring Passwords

Using Active Directory Module for Windows Powershell (part of Windows 2008 R2 Active Directory and downloadable for earlier versions of AD) use the following cmdlet to set all your user to have non-expiring passwords.
Great for lab environments: Get-ADUser | Set-ADAccountControl –PasswordNeverExpires $True 2008 2008 R2 backup hyper-v Scheduling Backup on Microsoft Hyper-V Server.
November 17, 2009.

2 Comments on Scheduling Backup on Microsoft Hyper-V Server

To do a backup of the virtual machines installed on your Hyper-V Server (2008 or 2008 R2 editions) you need to complete the following steps.
Install the backup feature by typing start /w ocsetup WindowsServerBackup from the command prompt.
Get a list of the drives on which Hyper-V Server has stored virtual machines.
This will be C: unless you have made changes.
Determine the times you want to run the backup at.
Determine the drive letter of the removable disk by typing at the command prompt each of the following commands diskpart.
list volume.
The disk drive letter will be displayed for the disk that matches the size of your removable disk.
Type exit to exit diskpart.
From the command prompt type wbadmin enable backup -addtarget:x: -schedule:hh:mm,h2:m2 -include:y:,z: -systemState -allCritical to backup to drive X: the contents of drives Y: and Z:, the system state and all drives critical to the running of the server.
Confirm you want to schedule the backup at times HH:MM and H2:M2 (for twice a day).
If you want one backup a day use HH:MM and if you want more than two just comma separate a group of times.
Enter times as per local timezone.
Check the current time on the Hyper-V Server by typing time from the command prompt.
Start a backup now if you want by typing wbadmin start backup and confirming to use the same settings as the scheduled backup.
Backup will proceed in the console.
If you log out backup will remain running.
Enter wbadmin enable backup to see the settings you have enabled.
Type wbadmin get versions to see what backups have completed.

2008 Windows Backup Failure on Windows Server 2008

July 3, 2009.

No Comments on Windows Backup Failure on Windows Server 2008

I recently had a case where Windows Backup would fail at approx.
75% complete during a full backup.
The backup utility and command line both reported that “The system cannot find the file specified”.
The Event Viewer/Application… Services/ Microsoft/ Windows/ Backup/ Operational reads “Backup target is running low on free space.
Future backups to this target may fail for want of enough space.” and then at the same time and immediately after that we get “Backup started at ‘TimeZ’ failed with following error code ‘2147942402’” which means file not found or unknown error.
After a series of email communications with the Windows Backup team at Microsoft India (where, incidentally, the program was developed) the answer came back that I should run chkdsk /r and reboot the server.
As this process can take hours this occurred out of hours and actually in my case needed to be repeated twice.
A normal chkdsk command, run whilst the server was online, reported that the disk had errors and could not continue.
After running chkdsk /r twice, from an elevated command prompt, the backup started to work again.
2008 ebs 2008 remote desktop remote web workplace sbs 2008 windows Remote Web Workplace in Essential Business Server 2008 Always Prompts for Password and Never Logs In.
May 11, 2009.
No Comments on Remote Web Workplace in Essential Business Server 2008 Always Prompts for Password and Never Logs In.
There is a published problem with EBS 2008 where Outlook prompts for a password all the time when connected over HTTP/RPC (Outlook Anywhere) – see the Microsoft EBS Team Blog.
We have found that the same problem is also exposed in the Remote Web Workplace when trying to connect over Remote Desktop to your PC or to the servers.
The problem is that the authentication for the Remote Desktop is broken because Outlook has failed to connect based on the published issue mentioned above.
The failure of Outlooks authentication breaks the DefaultAppPool is IIS.
Recycling the application pool fixes the issue – but only for a short while.
It breaks again at the next failed Outlook login.
And because the breaks in authentication are due to Outlook it is difficult to see why Remote Desktop ceases to operate.
But apply the same fixes from the above blog and Remote Desktop begins to work and stays working.
To fix, run the following four commands from an elevated command prompt on the messaging server: %windir%\System32\inetsrv\appcmd.exe unlock config -section:system.webServer/security/authentication/windowsAuthentication.
%windir%\System32\inetsrv\appcmd.exe set config “Default Web Site/ews” -section:windowsAuthentication -useKernelMode:False /commit:apphost.
%windir%\System32\inetsrv\appcmd.exe set config “Default Web Site/AutoDiscover” -section:windowsAuthentication -useKernelMode:False /commit:apphost.
%windir%\System32\inetsrv\appcmd.exe set config “Default Web Site/OAB” -section:windowsAuthentication -useKernelMode:False /commit:apphost.
The above commands are probably wrapped for reading on your screen – each bullet point is a single command to be entered as one line.
Instructions for making changes via the GUI can be seen on the above blog post.
2008 iis remote web workplace rww sbs 2008 terminal server ts gateway windows SBS 2008 SharePoint Install Breaks Default SBS Web Site.
March 21, 2009.

No Comments on SBS 2008 SharePoint Install Breaks Default SBS Web Site

A recent installation of a second SharePoint site on Small Business Server 2008 broke the Remote Web Workplace site for access from the internet.
Intranet access to the site worked fine, but from the internet where the http request to the site is redirected to https had stopped working.
Opening up IIS 7 Manager and checking the bindings of the SBS Web Applications site showed that the site had two http bindings and a https binding.
The https binding was for * under IP Addresses and port 443.
Clicking the Edit button on this binding showed that the certificate was not correct.
This was the reason the site was not working, as a https site requires a certificate.
So I selected the correct certificate and clicked OK.
And got the following error: A specified logon session does not exist.
It may already have been terminated.
(Exception from HRESULT: 0x80070520) The reason is that the installation of the SharePoint site, and the installation of the certificate to support that site broke the binding for the TS Gateway role on the Windows 2008 machine.
The broken binding on the SBS Web Applications site was because of this broken TS Gateway configuration and to fix the above error in IIS required fixing the TS Gateway issue.
Note that at no point in the configuration of the SharePoint application was the TS Gatway role configuration changed – the installation of another certificate on the server broke the TS Gatway which broke the Remote Web Workplace SBS Web Applications site.
Opening Server Manager and navigating to the Roles/Terminal Services/TS Gateway/Servername area showed a message in the middle pane of the Server Manager saying that configuration of the TS Gateway was not complete.
Clicking this link brought up the TS Gateway SSL Certificate page of the Properties dialog.
Click Browse Certificates and select the correct certificate.
In SBS 2008 this will be the Remote Web Workplace certificate.
Click OK to close the dialog and you will now be able to check the https binding on the SBS Web Applications website.
The error will now not occur, and the https binding will be bound to the correct certificate.
If you are not running SBS 2008 then the above is possible, just it is more likely to be a problem with the Default Web Site bindinging instead.
Additionally, I noticed after I had written the above that this error also occurs if you delete the certificate used by the TS Gateway from the IIS box and as well as breaking TS Gateway (which would be expected) it also breaks the “Add a trusted certificate” wizard in the SBS Server Console.
The Add a trusted certificate wizard crashes when started with just a failed application message and nothing in the event log.
To fix make sure the SBS Web Application IIS site is bound to a valid digital certificate.
2008 backup server core Hyper-V and VSS Backups Cause Bluescreen.
March 16, 2009.

No Comments on Hyper-V and VSS Backups Cause Bluescreen

I found the other week that my Hyper-V server, running Server Core and nothing else was restarting all of its own accord.
As this is just a server at home, and the monitor is switched off 99% of the time I had not noticed it blue screening.
So looking in the event log (remotely of course, as it was running Server Core) to see why, I noticed it had done the same thing every day at a few minutes past 1pm – one of my scheduled backup times during the day.
I was getting Event ID 1001 at about 1:03pm each day.
So I changed the time of the backup (using Windows Server Backup, command line) to 11pm and I got 1001 bugchecks at 11:03pm each day.
There was nothing else recorded in the event log, apart from the usual system start/TCP-IP etc messages and no clue as to the reason for the failure.
All I had was the BugCheck, an example being 0x0000007e (0xffffffffc0000047, 0xfffff80003676b48, 0xfffffa60019ff5c0, 0xfffffa60019ff660.
A bit of research later, and ignoring most of the posts regards VSS and Hyper-V I came across and (the latter of these is a hotfix) which I applied and solved the problem.
It would seem that Hyper-V and VSS based backups have an issue with some backups if a virtual machine is in a running state.
It is possible to save the Hyper-V guest machine and then back it up without issue, but of course this kicks people of the virtual machine – a bit pointless really unless its a development machine.
To turn off backup for a Hyper-V machine, so that the server does not bluescreen then either disable the Backup (volume snapshot) option in the guest machine settings, under Integration Services or install the hotfix and reboot once.
2008 ebs 2008 windows Account Rename and Essential Business Server 2008 Installation Failure.
February 27, 2009.
1 Comment on Account Rename and Essential Business Server 2008 Installation Failure.
The error “cannot find the specified active directory object: winnt:///,user” and “program file folder creation or environment variables setting did not finish successfully” appears during the installation of Essential Business Server 2008 on the Security Server if a group policy exists in your current environment that renames the local administrator account name.
The GPO setting under “Windows Settings\Security Settings\Security Options” called “Accounts:Rename administrator account” that enforces this must be turned off for the domain, because at the time of the EBS installation the security server is located in the Computers container.
Unfortunatly, by the time this error occurs you can do nothing about it apart from format the hard disks and reinstall the server!!.
2008 ebs 2008 windows Running Schema Upgrade Tool When You Have No DVD Drive on Infrastructure Master.
February 27, 2009.
No Comments on Running Schema Upgrade Tool When You Have No DVD Drive on Infrastructure Master.
The Essential Business Server installation steps for the Management Server might require you to insert the Prerequisite Planning Tools DVD into the Infrastructure Master to run schemaupgradetool.exe.
What if you do not have a DVD drive on the current infrastructure master.
Then copy over the network the SCHEMAUPGRADETOOL.
DLL and the entire ADPREP folder.
Then run SCHEMAUPGRADETOOL from the command line on the infrastructure master.
This takes no paramaters to run, and takes a few seconds to start up.
Though when I ran it on a Windows Server 2003 SP2 infrastructure master it popped up an empty dialog box with an OK button and nothing else – this though seems to indicate success and the Management Server installation can now continue.
2008 64 bit access iis oledb proxy sql express windows x64 Windows 2008, IIS 7.0, 64 bit Server, Terminal Services Web Application and Access Databases.
November 25, 2008.
No Comments on Windows 2008, IIS 7.0, 64 bit Server, Terminal Services Web Application and Access Databases.
This is a long list of pre-requisites, but for your information they do not work together.
If you have a web site that uses Access as its data storage and you migrate that site to an x64 Windows machine then access to the Access MDB file ceases with the following error: “‘Microsoft.
OLEDB.4.0’ provider is not registered on the local machine”.
On IIS 6.0 you need to set the entire web server to 32 bit mode, but on Windows 2008/IIS 7.0 you can set each application pool to 32 or 64 bit.
This is a property found under Advanced Settings for the application pool.
To gain access to Access MDB files the application pool needs to run in 32 bit mode.
If you have TSWeb installed, then you also have installed the RPC/HTTP proxy component.
If you have the RPC/HTTP proxy component installed any 32 bit application pool will fail upon starting – Error 5139 for Microsoft-Windows-WAS.
So to use Access databases in a legacy web application migrated to Windows 2008, 64 bit, with TSWeb also installed either uninstall TSWeb (and RPC/HTTP proxy), or use a different server, or rewrite the web application to use SQL Express.
Supposedly this will be fixed in the first service pack for Windows 2008.
There – it only took 6 hours to work that one out.
2008 certificates Terminal Services Enterprise Certificate Services and Terminal Services Gateway – Certificate Issuing for Internet Usage.
October 24, 2008.
No Comments on Enterprise Certificate Services and Terminal Services Gateway – Certificate Issuing for Internet Usage.
To issue a certificate for the Windows 2008 Terminal Services gateway using your own intalled Enterprise Certificate Authority, out of the box you need to create a certificate request file, request the certificate from the Enterprise CA, install the issued certificate and map the certificate to the TS Gateway.
This can help you if you get errors such as -2146875377 or “the dns name is unavailable and cannot be added to the subject alternative name” or “denied by policy” errors.
In detail these steps are: Create MMC Console for all steps On the TS Gateway Windows 2008 server, with the remote administration tools installed, click Start > Run and enter mmc.exe.
Confirm the UAC prompt and add the following snap-ins: Certificate Authority (choose computer on which this role is installed), Certificates (for local machine), TS Gateway Manager.
Create a Certificate Request Expand Certificates (Local Computer)/Personal/Certificates and right-click Certificates>All Tasks>Advanced Options>Create Custom Request.
Click Next on the Before You Begin page.
Choose Web Server as the template.
The template type that you chose is the 2nd most important choice you make in this process.
Click Next.
Click the Details down arrow and then click Properties.
On the Subject tab, under Subject Name, select Common Name under Type and enter the URL that you will use across the internet to reach this TS Gateway.
Click OK when the names you are using have been added to the list on the right of the dialog.
The correct value for common name is the 1st most important choice you make here.
Click Next.
Enter a file name and click Finish.
Upload Certificate Request to Enterprise Certificate Authority Expand the Certification Authority node in the MMC you created above.
Right-click the CA name and choose All Tasks>Submit New Request.
Browse and select the request file created in step 7 in the previous section.
Save the issued certificate with a .cer file extension.
Install the Certificate on the TS Gateway Server Expand Certificates (Local Computer)/Personal/Certificates and right-click Certificates>All Tasks>Import and click Next.
Browse to the file created in step 4 in the previous section.
Click Next twice.
Click Finish.
You will be told the import was successful.
Map Certificate to TS Gateway Expand TS Gateway Manager in the MMC.
Right-click your TS Gateway server and choose Properties.
Select the SSL Certificate tab and ensure the “Select an existing certificate…” option is set.
Click Browse Certificates and select the new certificate that you have just created.
Click Install and OK.
Then to finish, open Remote Desktop Connection tool (mstsc.exe) and connect to a Terminal Server using the Gateway option via the Options>Advanced>Settings dialog.
To complete these steps you must also have created the policies for connection the the gateway.
2008 iis rras sbs 2008 sstp vpn windows SSTP (SSL VPN) on SBS 2008 RC0.
June 23, 2008.
No Comments on SSTP (SSL VPN) on SBS 2008 RC0.
Updated 31st March 2008: Please see as this new article replaces the below, as the below refers to a pre-release version of SBS 2008.
The working instructions for configuring SSTP on SBS 2008 is much more complicated than the steps below.
SSL based VPN’s are great.
In short it is VPN without firewall or NAT issues (both of which you get with PPTP and IPSec VPN’s).
But the current release of SBS 2008 (RC0) does not enable SSTP VPN’s by default.
It uses RRAS, so SSTP is possible, but it is not as easy as it first looks.
Ensure that you have run the connecting to the internet wizard, and that you are using a third party certificate (as there are less steps if you do this).
Enable remote access from the SBS Console > Network > Connectivity page.
Add some SSTP ports to the VPN in the Routing And Remote Access management program.
Right-click Ports and choose Properties and enable SSTP for remote access inbound connections.
Leave PPTP enabled as Windows XP does not support SSTP VPN tunnels (only Vista SP1 does at this time).
View the properties of your certificate and note down the Thumbprint value.
Ensure that this certificate is associated with and [::]:443: certificate bindings on the server.
Type “netsh http show ssl” from elevated command prompt to get this information.
You typically get four entries with IP:port being the first line of each.
Check for IP:port reading “” and [::]:443 as this shows the IPv4 and IPv6 mappings for SSL certificates on the server.
Ignore the :8172 and :987 entries (these are for IIS Management Service and companyweb).
For both “” and [::]:443 make a note of the Certificate Hash.
It needs to be the same for both and the same as the earlier Thumbprint value (ignore any spaces).
If not see for instructions on resetting this, noting that you need to ensure that the correct certificate is bound to the SBS Web Applications website on the SBS 2008 server (in IIS manager).
Install the “Certificate Authority Web Enrollment” role service to Active Directory Certificate Services snapin within Server Manager.
This adds a virtual directory to the default website in IIS called CertEnroll which contains the certificate revocation list for the certificate you are using.
Only do this if you are using the built in default issued certificate.
If you are using certificates from a third party then you need to ensure you can reach their CRL publishing site without issue – see the certificate details for information on the CRL publishing site location.
Expand the Certificate Authority on your server and right-click Revocated Certificates.
Under tasks choose Publish.
This updates the CRL with the new publishing location that SSTP needs to connected to.
Again, use a third party certificate to make this easy!.
On a Vista SP1 client create a new VPN connection and in properties > networking ensure that the Type of VPN is set to SSTP (for normal use set this to Auto, and it will find the best (starting with PPTP), but for testing set it specifically to SSTP).
Also ensure that the name of the server you are connecting to is the same name that the certificate uses for the certificate common name.
Connect the VPN and all should work.
2007 2008 Exchange 2007 Clustering on Windows 2008.
August 30, 2007.

1 Comment on Exchange 2007 Clustering on Windows 2008

I have just spent an hour or three installing two Windows 2008 Enterprise Edition boxes to create an Exchange 2007 SCC cluster using Microsoft Virtual Server 2005 R2 to create the environment.
But I did not get that far, as Windows Server 2008 Failover Clustering shared storage requires SAS (Serial SCSI) or iSCSI and not traditional SCSI (Parallel SCSI).
Microsoft Virtual Server 2005 R2 only emulates IDE (not supported for clusters anyway) or Parallel SCSI.
So I could not create a failover cluster with shared storage tonight.
I will install the iSCSI target that I have and try again in a few weeks.
Posts navigation.
← Newer Posts 1 2 Older Posts → Select Category 2003 2004 2007 2008 2008 R2 2010 2012 2012 R2 2013 2016 2019 2FA 64 bit AADConnect aadrm AADSync access acdc active directory activesync add-in ADDS ADFS ADFS 2.0 ADFS 3.0 ADFS Connector AdminSDHolder adsiedit Advanced Threat Protection agent AIP android antivirus anycast app password Application Guard archive asterisk asterisknow ATP Authentication autodiscover autodiscover v2 az Azure Azure Active Directory Azure AD Azure Information Protection AzureAD backup baseline bing bios booking bpos branding cafe calendar certificates Chrome citrix Click To Run Click2Run cloud Cloud PBX Clutter cmak compliance conditional access conversation crm cross-forest cyber bullying dell Deployment device device registration dirsync dkim DLP dmarc DNS domain door download draytek DSC duplicate dynamic delivery Dynamics EAS ebs 2008 Edge EM+S email encryption Endpoint Manager enterprise mobility + security Entourage EOP    Exchange Online Protection error EWS exchange exchange online Exchange Server EXO ExpressRoute federation FIDO firewall Focused Inbox FOPE Free/Busy GeoDNS Global Catalog GPO Group Policy groups hosting hotfix https hybrid hyper-v IAmMEC IFilter iis illustration install Intune iOS ip iPad iPhone ipsec ipv4 ipv6 iQ.
Suite IRM isa ISA Server 2004 ISA Server 2006 JetNexus journal journaling Kemp kerberos lab licence Live Event load balancer Load Master loadbalancer logo Lync Server mailbox malware management mcafee mcas mcm mcsm mdatp MDM media player MFA microsoft Microsoft 365 Microsoft Cloud App Security Microsoft Defender Advanced Threat Protection Microsoft Teams migration Mobile Device Management mobile phones modern authentication monthly channel move msExchDelegateListBL msExchDelegateListLink MSOL multi-factor auth Multi-Factor Authentication MVP MX ndr Netscaler networking NTL OAuth OD4B ODFB off offensive Office Office 365 Office 365 Advanced Threat Protection Office 365 Groups Office 365 ProPlus oledb OneDrive OneDrive For Business openmanage orange organization relationships osma Outlook owa OWA for Devices password paxton pbx permissions PFDAVAdmin phish phishing phone factor pkcs pki places policy powershell pptp preview Proof Of Concept proxy pst PSTN PSTN Conferencing Public Folders recovery remote desktop remote web workplace retention retention policies rms room router rras rtp rules rww Safe Attachments Safe Documents Safe Links Salesforce sbs 2008 SCOM sdk search security Security and Compliance Center self-service password reset semi-annual channel send-on-behalf server administrator server core shared mailbox sharepoint sip Skype For Business Online Skype for Business Server smarthost smartphone sms smtp spam spf spoof spv SQL sql express SSL SSO sspr sstp starttls storage card Stream supervision sync error sysprep Teams TechEd terminal server Terminal Services text message Threat Management TLS tmg token2 transport transport agent ts gateway Uncategorized unif unified messaging update upgrade vc++ vhd virtual pc virtual server virtualisation vista visual studio vm VNet Voicemai voicemail.

type in your search and press enter.

On Loving a Game You Never Expected

July 28, 2020.
Google +.
I stumbled into this hobby 7 years ago, unaware of what I was getting myself into.
A young father with no friends in the area and few hobbies, I was eager to find something – anything really – that I could call my own.

After an unsuccessful attempt to return to Magic the Gathering over the winter

I spent a few minutes every day on, attempting to fill that social gap in my life with a new activity.  Board games were the answer, and boy did they fill it.
More than seven years, 350+ combined podcast episodes, and 400 games in my collection let’s just say I have a thing for board games.  But I’m still continuously surprised by this hobby.
When something new captures my attention, I almost ever see it coming.
I think I know what I like and why I like it, and then bam – a new game or a full genre of games sneaks up on me.
Let’s take a closer look at three games that did just that – ones I was SURE I was going to dislike but that are now in my top 100 and have opened my eyes to entire new genres.  Caverna., @aldoojeda On paper, .

Caverna is exactly my kind of game

It’s a sweeping, .

Sandbox-style worker placement game by the Master himself – Uwe Rosenberg

But before I ever heard of this one

I had been dragged into a game of Agricola.

It was a typical first time Uwe experience

I can’t recall if I scored any points in that game (it was mercifully before I started tracking these things), but I do recall round after round over the course of three-plus hours, getting absolutely annihilated and then having to feed people with non-existent food.  My card draws were bad.
My placement options were bad.
It was a bad game.
And so I don’t like Agricola.
I’ve played it again since and while it wasn’t nearly as bad as that first play, I can’t get myself back to a blank slate to try it with fresh eyes.
Caverna was that opportunity.  A brand new game that built on the core mechanics of Agricola in clever, exciting new ways.
More worker placement options, more flexibility in how you built out your board.
Less random cards dictating the flow of the game.
Yes, you still feed your people, but it’s not particularly hard to do so.  While Caverna is not my favorite Uwe Rosenberg game, it remains the one that dragged me into that entire genre of farming-based worker placement and helped me discover other favorites like A Feast for Odin and Le Havre.  Zombicide: Black Plague., @bennyace If there was a game I wanted nothing to do with upon entering the hobby it is Zombicide.
Even now, I could not possibly be less interested in this game.
The theme, the mechanics, the aesthetic.
It all screams “don’t play me!” at the top of its lungs and I’ve listened ever since.  The original game was still very hot when I got into the hobby.
Our friend Frank would bring in his massive collection and carefully pull each piece out of the thermoformed plastic trays at Myriad Games.
He even played a super-sized, 12-hour version of the game during our first 24 hour gaming marathon back in 2013 for Extra Life.  But Black Plague managed to overcome all of that with a handful of small changes and one big change.
Mechanically, the game was more interesting, giving you better decisions to make.
Solo play still required all six survivors to balance the game, but it was easier to track everything with the push-peg plastic trays.

But the biggest change was the theme

Instead of yet another urban-nightmare zombie movie pastiche, CMON gave us medieval zombies.
Characters from classic fantasy fiction abounded and the monsters were incredible, going beyond your classic Zombie archetypes and bringing in legitimate monsters.  I don’t know why, but this game captures my imagination in a way the original cannot.
I have still only backed one Zombicide Kickstarter – Green Horde – and am unlikely to back any others until they release Black Plague 2.0 or whatever comes next in the line.  1846., @msaari This is the biggie.
The most recent game to break through nearly a decade of gaming preferences and prejudices and force me to rethink what I like to play and why I like to play games.  1846 is not my first introduction to 18XX.

Our friend Chris in Brooklyn showed us a bagged 18xx-style game back in 2015

straight from Essen – and it was fine.
Short, but fine.

But I had never played the real deal – the full 3-6 hour experience

complete with stock market, track laying, and hostile takeovers (or getting a bum company dumped on you).  1846 is where I was introduced to all of this and I instantly loved it.
These games are long and we entered a pandemic about three months later, so I’ve still only played maybe a dozen 18xx games, including online, but I love it, .

And now own half a dozen (with many more to come via Kickstarter)

The interaction is on a level like few other games, and the way you manipulate and manage the companies in which you are invested is so much fun.  The mere idea that nothing I’m doing really belongs to me.

I’ve since played games like Roads and Boats that have a similar concept

but few games really drive home that impermanence like an 18xx game and it all started for me with 1846.  Facebook.
Google +.

Episode 284 – Best of Queen Games

Episode 283 – Top Ten Board Game Artists.
Show Comments.
BGA on Patreon Join the BGA Newsletter Categories.
Recent Comments on.
Recent Posts.
Categories Categories Select Category 2 Player Games BGA Podcast Blog Board Game Geek Cons Every Night is Game Night Featured Gift Guide Kickstarter News Reviews Top Lists Uncategorized Archives Archives Select Month September 2020 August 2020 July 2020 June 2020 May 2020 April 2020 March 2020 February 2020 January 2020 December 2019 November 2019 October 2019 September 2019 August 2019 July 2019 June 2019 May 2019 April 2019 March 2019 February 2019 January 2019 December 2018 November 2018 October 2018 September 2018 August 2018 July 2018 June 2018 May 2018 April 2018 March 2018 February 2018 January 2018 December 2017 November 2017 October 2017 September 2017 August 2017 July 2017 June 2017 May 2017 April 2017 March 2017 February 2017 January 2017 December 2016 November 2016 October 2016 September 2016 August 2016 July 2016 June 2016 May 2016 April 2016 March 2016 February 2016 December 2015 November 2015 October 2015 September 2015 August 2015 July 2015 June 2015 May 2015 April 2015 March 2015 February 2015 January 2015 December 2014 November 2014 October 2014 September 2014 August 2014 July 2014 June 2014 May 2014 April 2014 March 2014 February 2014 January 2014 December 2013 November 2013 October 2013 September 2013 December 1.
Fix My Game Contest.
We’re excited to bring you another contest opportunity this month, sponsored by Geeks 1st.
September 25, 2017 1 Shares.
Board Gamers Anonymous is a network of board game lovers who write, record, and publish reviews and articles about their favorite games.
Featuring two podcasts, weekly written reviews, and an active YouTube channel, BGA is the place to be for all board game content.
If you have a question about any of our publications or would like to submit an article tip or game for review, you can.

Alles über smarthandwerk .

Tipp des Monats September: Grafiken und Ausblenden in smarthandwerk

Tipp des Monats September : Grafiken und Ausblenden in smarthandwerk.
Firmenbriefbögen, die mit einem Logo individuell gestaltet sind, gehören heute zum erfolgreichen Auftreten eines Handwerk unternehmen s dazu.
In unserer Software smarthandwerk lassen sich solche Formulare gestalten.
Wer vorgedrucktes Firmenpapier hat und darauf Dokumente aus der Software smarthandwerk ausdrucken möchte, möchte natürlich an entsprechend er Stelle das Firmenlogo oder bestimmte Grafiken ausgeblendet haben.
Im E-Mail-Versand wiederum müssen die Freitag, 13.
September 2019 Weiterlesen .

Tipp des Monats Juli 2018 smarthandwerk: UGL-Schnittstelle in smarthandwerk einsetzen

Tipp des Monats Juli 2018 smarthandwerk: UGL- Schnittstelle in smarthandwerk einsetzen.
Schnittstellen in einer Bürosoftware , die die Türen für die Übertragung von Daten, sowohl nach Außen als auch nach Innen öffnen, sind wichtige Werkzeuge zur Zeitersparnis.
Weil beispielsweise Artikel und Preise von Lieferanten nicht mehr händisch in unsere Software smarthandwerk eingegeben werden müssen, sparen Handwerker jede Menge Zeit.
Und: Der Handwerker punktet bei seinem Kunden mit Dienstag, 24.
Juli 2018 Weiterlesen .

Tipp des Monats März 2018: Seitenumbruch und Fotos im Dokument einfügen

Tipp des Monats März 2018: Seitenumbruch und Fotos im Dokument einfügen.
Kenne Sie das.
Sie erstellen ein Angebot mit mehreren Positionen, bei denen die Beschreibung (Kurz- und Langtext) etwas umfangreicher sind.
Jedoch ist dabei nicht immer der Seitenumbruch optimal.
Unser Beispiel zeigt das Problem: Bei der Position 1.6 verbleibt die ersten Zeile der Bezeichnung auf der ersten Seite, der Rest des Textes wird auf der Folgeseite Donnerstag, 29.
März 2018 Weiterlesen GoBD betrifft auch kleine Handwerksunternehmen.
GoBD betrifft auch kleine Handwerksunternehmen.

Als kleines Handwerksunternehmen glauben Sie

dass GoBD für Sie kein Thema ist.
Für Sie gilt: GoBD – was ist das eigentlich.
Und nach dem Gespräch mit Ihrem Steuerberater zu diesem Thema kreisen noch mehr Fragezeichen über Ihrem Kopf.
Nahezu jeder Handwerksbetrieb muss sich mit dem Thema, buchhaltungsrelevante Daten (z.
Rechnungen oder andere Dokumentationen von Geschäftsvorfällen) Donnerstag, 22.
März 2018 Weiterlesen Tipp des Monats August 2017 smarthandwerk: Aus dem Dokument heraus eine PDF-Datei erzeugen.
Tipp des Monats August 2017 smarthandwerk: Aus dem Dokument heraus eine PDF-Datei erzeugen.
Wird ein Dokument als PDF-Datei (Portable Dokument Format, (trans)portables Dokumentenformat) exportiert, kann es per E-Mail an Dritte versendet werden.
In unserer Software smarthandwerk kann eine solche Rechnung ganz einfach in eine PDF umgewandelt werden.
Wie das funktioniert, .

Erklären wir in unserem Tipp des Monats August für unsere Software smarthandwerk

Um eine Rechnung direkt in eine Dienstag, 08.
August 2017 Weiterlesen smarthandwerk Onlineshop erhält Trusted Shops Zertifikat.
smarthandwerk Onlineshop erhält Trusted Shops Zertifikat.
Onlineshops, wohin das Auge im Internet reicht.
Doch welchem Shop, welchem Anbieter kann ich trauen.
Welcher Shop bietet mir einen guten Service im Problemfall.
Wo sind meine Daten sicher.
Wie verlässlich und seriös ist der Onlineshop.
Fragen, die Onlinekäufer bewegen.
Die Antwort liefert das Gütesiegel von Trusted Shops, das wir für unseren smarthandwerk Onlineshop jetzt Donnerstag, 05.
Januar 2017 Weiterlesen sirAdos-Kalkulationsdaten komplett und vollautomatisch integriert.
sirAdos-Kalkulationsdaten komplett und vollautomatisch integriert.
Gesetzeskonforme Leistungstexte in Angeboten oder Ausschreibungen zu verwenden ist für die erfolgreiche Arbeit eines Handwerkers sehr wichtig.
Praktisch, wenn diese automatisch in der Bürosoftware zur Verfügung stehen.
In der Handwerkersoftware TopKontor Handwerk und smarthandwerk sind sirAdos Kalkulationsdaten jetzt nach einer Installation automatisch und vollständig integriert.
Die Vorteile: Mit den Kalkulationsdaten, die der Handwerker gegen eine einmalige geringe Dienstag, 16.
August 2016 Weiterlesen .

Tipp des Monats Juni – Adressenlimit in der Software smarthandwerk aufheben

Tipp des Monats Juni – Adressenlimit in der Software smarthandwerk aufheben

Vom Handwerk fürs Handwerk – so lautet unser Credo.
Deshalb fließen in die Optimierung unserer Produkte auch immer wieder technisch umsetzbare Wünsche unserer Anwender ein.
Dazu gehört beispielsweise auch das Aufheben des Adressenlimits der anzuzeigenden Adressen in der Software smarthandwerk.

Diese neue Funktion beschreiben wir im aktuellen Tipp des Monats Juni

Praktisch ist diese Funktion Dienstag, 28.
Juni 2016 Weiterlesen smarthandwerk ab jetzt auch zur Miete.
smarthandwerk ab jetzt auch zur Miete.
Flexibel bleiben.
Immer auf dem aktuellsten technischen Stand sein.
Unbegrenzt Support in Anspruch nehmen wollen.
Kein Update mehr verpassen.
Wer genau darauf gewartet hat, kann jetzt unsere Handwerkersoftware smarthandwerk bequem mieten.
Damit erweitern wir unser Angebot um eine weitere Option: Bisher konnte smarthandwerk für das kleine Handwerksbüro als lokale Software einmalig gekauft werden oder als Dienstag, 15.
März 2016 Weiterlesen .

Tipp des Monats März – Neuer Mandanten-Assistent in smarthandwerk Version 3

Tipp des Monats März – Neuer Mandanten-Assistent in smarthandwerk Version 3.
Mit der neuen Version 3 für unsere Software smarthandwerk wurde der Mandanten-Assistent überarbeitet.
Wer einen neuen Mandaten in der Software smarthandwerk erstellen möchte, dem gelingt das jetzt noch einfacher und komfortabler.

Im Tipp des Monats März zeigen wir

wie der neue Mandanten-Assistent funktioniert.
Einen Mandanten erstellen Um einen neuen Mandanten zu erstellen, öffnen Sie wie Freitag, 11.
März 2016 Weiterlesen 2 ©    blue:solution software GmbH | |.

Motivation Archives – Black Mouse Design .
, If you are a small business owner or have an entrepreneurial mindset, you believe to some degree in your ability to take effect ive action, do something and make a difference.
This attitude or state of mind is your personal power.
, Are you dragging your feet and struggling to maintain focus.
A lack of enthusiasm is a recipe for disaster especially for small business es.
When the honeymoon phase of your new business is over and that passion and excitement you initially felt has worn off, how do you maintain momentum and growth.
This is much easier said than done.
, , Habits go hand in hand with success.
But, where good habits propel you forward, bad habits hold you.
A habit is a routine that helps you simplify your life.
Here are three bad habits that are easy to slip into and some suggestions for how to get over them.
, , Life is busy.
Tomorrow always brings more to do.
When I ask people how things are going, the answer I generally get is that they are busy.
This is really no surprise as everyone has to be doing something every minute of every day but what are we doing with our time.
Do you feel you need a lift in your spirits.
Are you searching for a small burst of inspiration .
A great quote can condense a large web of emotions and values into a few words or sentences and have the power to inspire as well as remind us of what we are and what we can be by resonating with our values and beliefs.
Quotes help us to see the light at the end of the tunnel, giving us that extra burst of hope and courage to persevere.
, , As 2014 draws to a close, I am energised by the thought of a new year just around the corner.
A new year brings with it challenges and opportunities.
It also provides a moment to pause and reflect on what worked well in the year that has past and make plans for what need to be improved or changed in the year ahead.
The end of the year is a special time for two reasons.
I look forward to spending time with my family and friends.
I also enjoy having the time to reflect on lessons learned, successes and mistakes made and plan what I will change moving forward.
, , Have you got the grit to not give up when life gets hard? Can you consistently keep your focus on your goals when you hit a hurdle.
Life is full of challenges that make your goals seem difficult.
Have you got the perseverance to push on.
defines this as grit – “perseverance and passion for very long-term goals.
Grit is having stamina.
Grit is sticking with your future”  Famous quotes by Robin Williams.
No Comments Robin Williams Academy Award-winning actor and comedian has died aged 63.
He leaves behind a vast body of work and some great quotes.
Here are just a few.
Fifty empowering and inspirational quotes.

No Comments The wisdom of the wise

and the experience of ages, may be preserved by quotation.

Benjamin Disraeli Why do we like quotes

Quotes that you relate to are not generally new information.
They are well formed phrases that neatly express what we know or believe.
They are bite size snippets of what people have learnt over their life and can act as reminders for values and behaviours that can get lost or forgotten in the whirlwind of life.
They can also empower and inspire you to be the person you want to be.
Here are just a few motivating words from  variety of sources:.
Time management is an important life skill that we can all constantly reflect and improve on.
Practicing strategies and techniques to manage time enables you to embark on new challenges with confidence.
Time management is mainly about controlling your environment, rather than allowing your environment to control you.
If you tolerate and allow the interruptions and demands of others then you effectively encourage these time management pressures to continue.
Although everybody works differently, the following four steps are a framework to enable you be the boss of your time.
2 Next.

Read More Intriguing…

Category: Whinge.
For those posts about stuff we hate or things that have pissed us off.
Indie games aren’t all about narrative.
August 26, 2018August 26, 2018 2 Comments I hear a lot of people saying that indie games are more focused on narrative or story.
This is said in implicit (or explicit) contrast with traditional games, which are more… I don’t know… gamey.
It often flows from the said people having read and (IMO) misunderstood GNS theory.
So here’s the thing: it isn’t […].

Read More Apocalypse World: Fronts

April 11, 2014April 11, 2014 Leave a comment I’ve recently started a new Apocalypse World campaign and re-reading got me thinking about the Fronts system. Apocalypse World Fronts are basically a set of linked threats that the MC writes down with countdown clocks and stakes questions as a means to (a) give him interesting things to say that aren’t just improvised from scratch and […].

Read More Comedy Racism in Historical Games

October 25, 2013October 25, 2013 5 Comments There is a genre[*] of roleplaying game that covers a mix of historical games that are trying to be faithful (in a strictly non-academic way[**]) to “real life” and pulp games set in historic-ish settings, more like Pirates of the Caribbean than the actual pirates of the Caribbean, if you see what I mean.
This […].
Read More Intriguing….
June 9, 2013June 9, 2013 5 Comments Lately I have been mostly reading A Song of Ice and Fire RPG.
It’s a pretty trad game as these things go, but what makes it stand out is the machinery provided to enable you to play politics.
And one particular aspect of the game that’s interesting is the Intrigue system.
In essence, it’s a […].

Read More Your gaming group needs YOU (to GM)

November 7, 2012November 7, 2012 10 Comments A lot of gaming groups have just the one person who does the GMing.

And it’s legendarily difficult to get GMs to run games at conventions

even though there’s no shortage of people who want to play.
So why is it that some people are happy to play but don’t GM.
Part of the story […].

Read More Leverage: Points of drama

September 24, 2012September 24, 2012 11 Comments This weekend just gone was Admiral Frax’s birthday roleplaying party.
Amongst many other great games, I ran Leverage, which uses the Cortex Plus system.
Believe it or not, this was the first time I’d run or played in a game that uses Drama Points as a currency for making minor changes to the in-game situation […].

Read More A deadly game

September 7, 2012September 7.

2012 7 Comments In my ponderings around combat systems

I have realised something that somehow escaped my notice previously.
Virtually every combat system I know of is designed with just one thing in mind: implacable foes beating seven shades of hell out of each other with the intention of killing their opponent.
Most systems give some consideration to […].

Read More Spam irony

July 14, 2012July 22.

2012 Leave a comment “Hi

I just wondered how you protect your blog against spam.
I get a lot of spam on my blog so I’d really appreciate any advice.
Put it up here so everyone can see it!” …clever.

Read More Rolling the bones… or not

June 6, 2012June 6, 2012 8 Comments I have noticed recently a trend for using electronic dice rollers in place of, you know… dice.
Now, while I can fully understand the desire to make things simpler in roleplaying games[*], this is not the way, people.
Maybe I’m getting old, but the feel of the dice in my hands, the noise they […].
Read More Updates roughly once a month.
indicates required Email Address (107).
(2) (2).
September 2020 M T W T F S S      123456 78910111213 14151617181920 21222324252627 282930   sparkling Theme by Powered by bloggers like this:.

ActiveCampaign vs Drip A Review & Comparison [Updated 2020]

Choose ActiveCampaign if you run a small to medium sized business

for example an online store, that relies on email automation.

This software is extremely powerful when creating email campaigns that generate ROI

$9 $17 $39 $111 $179 $299 $129 No – 1000+ US 2003 Choose Drip if social media integration and automation are your business’ main requirements.
This software is suitable for any business such as salons, hotels, healthcare clinics, and single owner blogs.
– – $41 $148 $253 $779 $99 30 Days – 1000+ US 2012 Choose GetResponse if your business generates revenue through lead generations and conversions.

From Medical professionals to Bloggers to Restaurants

you will find GetResponse to be an ideal solution.
$15 $15 $25 $65 $250 $450 $1199 30 Days – – – – – – – 135 Poland 1998 ActiveCampaign vs Drip Summary.
ActiveCampaign is much more than an email marketing automation tool as it covers a variety of marketing aspects for a business, for example: customer relationship management, sales processes automation and website messaging, etc.
When it comes to email marketing, ActiveCampaign focuses on personalization and segmentation of target groups and in addition to this, it automates many of the mundane tasks within a typical email marketing campaign such as sending emails based on customer’s actions.
With ActiveCampaign, triggers can be set up to send automated emails when a customer performs a certain action on a website.
Sales automation is where ActiveCampaign goes a step further and overshadows other marketing automation tools.
It saves time on sales by simplifying contact management and automating the lead prioritization processes.
ActiveCampaign offers some of the most robust features for managing a sales funnel; it helps update the location of potential leads and prospects on sales funnels automatically.
Additionally, contact records provide every piece of detail needed regarding a customer on an intuitive interface.
Social media integration is one of Drip’s strong suits.
There is no doubt that social media is at the forefront of every company’s marketing strategy these days.
Drip offers a Facebook integration option that sends relevant emails to customers according to their preferences and actions on your business’ Facebook advertisements.
In addition to this, Drip is a viable automation software tool and companies that do not necessarily link with social media can still use this software purely for its automation features.
Businesses seeking purely email automation solutions should refrain from purchasing this software.
Not only will they find its features to be slightly complicated, but it will also be an expensive and unjustified option for them.

There are technical aspects to Drip that newbies might find difficult to understand

The most obvious difference between ActiveCampaign and Drip is the price

It’s evident that Drip has numerous advanced features

however, smaller companies will find it difficult to fit it in their budgets.
ActiveCampaign, although simpler and more limited with its features, offers great value for money.
Lack of pre-designed templates for emails and a slightly slow interface are a couple of areas where ActiveCampaign require improvement.
Additionally, .

Drip has the edge over ActiveCampaign in e-commerce automation

Despite their difference in features, prices, and functions, the ratings of these two software tools are equal.
Choosing one over the other in this case is hard because both of them have their own unique set of features to offer.
Choose one that most suits your business needs.
If you run a large-scale business (for example a chain of restaurants) and rely on primarily social media marketing.
if you own an eCommerce store with a few thousand visitors a month and your primary focus is email marketing.
report this ad.