Home
Microsoft 365
Linux
Windows
Powershell
Cloud Computing
    Citrix Xendesktop
    Citrix XenApp
Useful links
About
ajni.IT -
  • Home
  • Microsoft 365
  • Linux
  • Windows
  • Powershell
  • Cloud Computing
    • Citrix Xendesktop
    • Citrix XenApp
  • Useful links
  • About

Windows Server 2022 Freezing/Very Laggy Taskbar

December 27, 2022 by AJNI 2 Comments

Having odd issues with the task bar/random task bar freezing on Windows Server 2022 RDS? Or explorer.exe using around 10% of the CPU for every user that is logged in? This might save your day. This issue occurs if you have MS Teams installed on the RDS.

First of all, export the registry path HKLM\SYSTEM\Software\Microsoft\TIP\TestResults\27641370 and look at the file size. If it is around 40MB in size, then you have the same issue.

To resolve the issue, delete the key and disable the TabletInputService service (Touch Keyboard and Handwriting Panel Service). Afterwards, take ownership of C:\Program Files (x86)\Common Files\Microsoft Shared\ink\TabTip32.exe and C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe and rename both executables into TabTip32.exe.orig/TabTip.exe.orig.

After that, reboot your server.

References:

https://learn.microsoft.com/en-us/answers/questions/909494/windows-2022-server-rds-laggyslow-taskbar.html

https://learn.microsoft.com/en-us/answers/questions/752491/server-2022-and-teams-bloats-hkey-local-machinesys.html

Reading time: 1 min

Renew Always On VPN IKEv2 Server Certificate

December 20, 2022 by AJNI No Comments

If you need to renew the Always On VPN IKEv2 server certificate, here are three lines that will help you. Assuming you have the right certificate and the thumbprint, execute the following commands on the VPN server:

$cert = Get-ChildItem -Path Cert:\LocalMachine\My\ | where { $_.Thumbprint -eq "thumbprint" }

Set-VpnAuthProtocol -CertificateAdvertised $cert

Restart-Service RemoteAccess

If these commands saved your day, leave a comment!

Reading time: 1 min

Citrix Virtual Apps Published Application start OneDrive in the background

November 10, 2022 by AJNI No Comments

If your users use a published application, you might have noticed that OneDrive does not automatically start after starting the app. This is by design, as it will only start in the full desktop, when Explorer.exe is running.

To ensure that Onedrive is starting with the Citrix Published Application, you can create a user logon script. This is one solution I have implemented, there are many others though.

C:\Program Files\Microsoft OneDrive\OneDrive.exe

/background

The other challenge: If the published application is closed, the session will still be open because Onedrive is still running, and the user will not be logged off. To change that behaviour, add Onedrive.exe and Microsoft.Sharepoint.exe as a value of this key:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Citrix\wfshell\TWI

REG_SZ LogoffCheckSysModules OneDrive.exe,Microsoft.Sharepoint.exe

References:

https://support.citrix.com/article/CTX891671/graceful-logoff-from-a-published-application-renders-the-session-in-active-state

Reading time: 1 min

Microsoft SQL Server 2019 Installation and Configuration Step by Step

October 26, 2022 by AJNI No Comments

Microsoft SQL Server administration is a big topic, but this short installation and configuration guide might help you get started with that.

First of all, download Microsoft SQL Server 2019 Express. You might get other versions (like MS SQL Standard) from your organization's Licensing Portal (VLSC). The installation and configuration steps are the same. SQL Express can only have a maximum database size of 10GB and some other limitations.

https://www.microsoft.com/en-us/download/confirmation.aspx?id=101064

Run the setup and download media:

Run the downloaded installer and export it somewhere. The setup will launch. We need a new SQL Server instance:

We are performing a brand new installation (I already had installed an instance on this server)

We need the database engine services:

Give the instance a name. You might name the instance after your application.

Leave all this to default

The User Database and log directory should be changed. Normally you have one disk for the database and another disk for the log database, like this:

In some cases, you might limit the amount of RAM the instance can use:

Hit next and let the installation finalize.

Open SQL Server Configuration Manager. Here you should activate the TCP/IP protocol, so that your instance is reachable from a server in the network.

The service has to be restarted:

By default, the instance will have a high port assigned. This can be changed to a lower port like 1433,1434, etc.

Do not forget to restart the instance service after the changes.

Next, configure Windows Firewall. You will need these ports: UDP 1434 for SQL Server Browser and the instance port (the high port TCP 64891 or the manually configured port TCP 1434).

To verify the connection, install Microsoft SQL Server Management Studio on another server in the same domain.

https://learn.microsoft.com/en-us/sql/ssms/download-sql-server-management-studio-ssms?redirectedfrom=MSDN&view=sql-server-ver16

Verify login:

On the left side, you should see something if the login was successful:

In some cases you might need to enable mixed mode authentication, which allows you to authenticate with SQL users (for example the SA user) while also maintaining Windows Authentication.

After this change, the instance service has to be restarted.

Reading time: 1 min

Fresh Exchange 2013, 2016, 2019 OnPrem Zero Day – Steps to mitigate

September 30, 2022 by AJNI 4 Comments

Exchange Zero days are very common these days and there is a freshly baked one today (30th September 2022 as of writing). If you want to know what how the vulnerabilities work, take a look at the reference at the bottom. As a sysadmin I care about securing my systems.

Here are a few steps to mitigate this zero day vulnerability:

In IIS Manager on the Exchange Server, select the Autodiscover virtual directory and open URL Rewrite and add a new rule.

Select Request Blocking

Enter the string

.*autodiscover\.json.*\@.*Powershell.*

Using should be changed to Regular Expression.

Change URL to REQUEST_URI and save the changes.

References:

https://msrc-blog.microsoft.com/2022/09/29/customer-guidance-for-reported-zero-day-vulnerabilities-in-microsoft-exchange-server/

Reading time: 1 min
Page 1 of 121234»10...Last »

Tip Of the Day

  • Outlook 2016/2019/365 Problems connecting to Exchange Online mailbox

    1 month ago

Keep in touch

Oh hi there 👋
It’s nice to meet you.

Sign up to receive my awesome blog posts in your inbox, every week.

Check your inbox or spam folder to confirm your subscription.

Recent Posts

  • Outlook 2016/2019/365 Problems connecting to Exchange Online mailbox
  • Windows Server 2022 Freezing/Very Laggy Taskbar
  • Renew Always On VPN IKEv2 Server Certificate
  • Sophos SG/XG Firewall Site To Site SSL VPN apc to ovpn
  • Citrix Virtual Apps Published Application start OneDrive in the background

Categories

  • Azure (14)
  • Citrix XenApp (14)
  • Citrix Xendesktop (8)
  • Cloud Computing (31)
  • Coding (1)
  • Hyper-V (9)
  • Linux (8)
  • Microsoft 365 (14)
  • Powershell (13)
  • Security (6)
  • VDI (10)
  • Virtualization (18)
  • VMware (9)
  • Windows (21)
  • Windows Client OS (24)
  • Windows Server (60)

Archives

  • January 2023
  • December 2022
  • November 2022
  • October 2022
  • September 2022
  • August 2022
  • July 2022
  • June 2022
  • May 2022
  • February 2022
  • January 2022
  • December 2021
  • November 2021
  • October 2021
  • September 2021
  • August 2021
  • June 2021
  • May 2021
  • April 2021
  • March 2021
  • February 2021
  • December 2020
  • November 2020
  • September 2020
  • August 2020
  • July 2020
  • June 2020
  • May 2020
  • April 2020
  • March 2020
  • February 2020
  • November 2019
  • October 2019
  • September 2019
  • August 2019
  • July 2019
  • June 2019
  • May 2019
  • April 2019
  • March 2019

ajni IT © 2019