Category Archives: System Administration

View Certificates Issued to Hostname in ADCS

Active Directory Certificate Services (ADCS) is a useful service to provide in a Windows Domain environment. If you’re managing ADCS, you might want a quick way to list issued certificates to a specific hostname. Here’s a quick PowerShell script that … Continue reading

Posted in System Administration | Tagged , , , | Leave a comment

Clear adminCount and Enable Inheritance on User

Users in Active Directory that belong to factory default privileged groups will be protected by an hourly process called SDProp (Security Descriptor Propagator) on the Primary Domain Controller (PDC Emulator). This process sets the adminCount attribute to 1 and disables … Continue reading

Posted in System Administration | Tagged , , | Leave a comment

View Server Certificate with PowerShell

This is a follow-up to my previous post on checking Server Certificate detail with OpenSSL. Note that this example lacks error checking – that is left as an exercise for the reader. This is based on the “Parallel Universe” blog … Continue reading

Posted in System Administration | Tagged , , | Leave a comment

Verify Server Certificate with OpenSSL

Here’s a quick note for checking the contents of a TLS (SSL) server certificate with the OpenSSL command-line tools. Comments: echo “Q” causes the openssl s_client to disconnect (quit) immediately after verifying connectivity. Replace your hostname and port for “your.fqdn.com:443”. … Continue reading

Posted in System Administration | Tagged , | Leave a comment

Set Windows Firewall Zone to Domain

The Windows native host-based firewall is zone-based. This would be fine if you could set the zone for a given interface, but Microsoft has designed it to automatically determine the zone for a network interface using their Network Location Awareness … Continue reading

Posted in System Administration | Tagged , , | Leave a comment

Windows Tomcat Manager GUI non-Admin

To workaround UAC limitations, the Apache Tomcat Monitor GUI app (tomcat8w/tomcatNw) has an embedded manifest to force elevation (requestedExecutionLevel = requireAdministrator). You can view the manifest settings in the Apache Commons Daemon Procrun prunmgr source code. Because the manifest is … Continue reading

Posted in System Administration | Tagged , | Leave a comment

PowerShell Foreach-Object Modify Pipeline Objects

You can modify pipeline objects on-the-fly using Foreach-Object. The syntax is a little strange because you need to put the object back on the pipeline if desired for additional processing. WordPress.com code-sanitization is eating my $_ so trying Gist, BLAH. … Continue reading

Posted in System Administration | Tagged | Leave a comment

JIRA Export Import Project Issues

This is a topic that seems to be poorly documented – exporting and importing projects between JIRA instances. There is an entire system backup, but the documentation makes it clear that restoring individual projects from the system backup is not … Continue reading

Posted in System Administration | Tagged , | Leave a comment

Exchange Offline Address Book Troubleshooting

The Exchange Offline Address Book (OAB) for Outlook clients can be a difficult beast to troubleshoot. When it’s not working correctly, Outlook clients may fail to report an error and continue to synchronize stale Global Address List records. Here are … Continue reading

Posted in System Administration | Tagged , | Leave a comment

Cisco ASA Command Line Basics

This post is for people who are new to the Cisco ASA command line, or seasoned network administrators like myself who need to review or brush up on the command line basics for the ASA console. Instead of using my … Continue reading

Posted in Networking, System Administration | Tagged , , | Leave a comment