Monthly Archives: February 2011

Stuff, symantec, windows

My own Symantec Stupidity

Leave a comment

Having not looked at the SEPM console for a while, I failed to ntice that there were hardly any clients listed. Approximately 1000 were missing. Ooops. The upshot of this is that I discovered fixing this is a total pain. The problem began when I decided to load balance clients between our two management servers. However, I managed to do the following.
Make a typo in both of the server names
Enable SSL without an actual SSL cert

This took a long time to fix, mostly because I tried things suggested on forums before using my own brain. A lot of them suggested pushing out a new sylink.xml file to the clients to get them to update the server they conenct to. This had no effect. The file is never read from what I can tell. The registry entries didn’t change. I tried both of Symantec’s tools but after a few days of messing around with SCCM advertisements I gave in.

The simple solution for me, was to add a CNAME in DNS for the wrong server name, and point it to the correct one. Once they connected, they will pick up the new policy with the corrected server names. I also added the correct certificate in IIS on the SEPM server. I assumed it used its own server rather than IIS, but there we go.

Stuff

DDWRT PPTP VPN 807

Leave a comment

I’ve been getting an error 807 which caused some trouble. I read various conflicting documents on how to set it up correctly. What has worked for me is:
server ip -0.0.0.0
client IP(s) – 192.168.1.200-210
Chap-Secrets – username * password *
NB: Spaces in the chap secrets!

This worked fine for me, substitude the “client IP(s)” for a range that is ON your lan

Stuff

Bitlocker GPO

Leave a comment

“The Group Policy settings for BitLocker startup options are in conflict and cannot be applied.  Contact your system administrator for more information.”

Microsoft information in the GPO setting is incorrect. Try this:

under “Require additional authentication at startup”

– either you “allow” each option so you can choose which one when you set Bitlocker on,

– or you can “require” an option and disable all the others, so you will not be able to make a choice when you set bitlocker on.

computers, windows

2008 R2 SQL Reporting Services 2005

Leave a comment

Well I’ve been having a lot of fun trying to get this installed. For anyone else wondering why the option to install it is greyed out. I’ve discovered that you need the folling installed on the 2008 R2 box:

The most trouble is caused by IIS, and the fact that you need the following bits and pieces in order to make it work.

Component Folder
Static Content Common HTTP Features
Default Document Common HTTP Features
HTTP Redirection Common HTTP Features
Directory Browsing Common HTTP Features
ASP.Net Application Development
ISAPI Extension Application Development
ISAPI Filters Application Development
Windows Authentication Security
IIS Metabase Management Tools
IIS 6 WMI Management Tools

Hopefully, when you have those installed everything should work ok and it will no longer be greyed out. Don’t forget to put SQL SP3 on afterwards!