Elevate'd Privilege - ACLs of Folders - Backup operator

Using PSCX powershell module to give backup operator rights (also might need to do a file server level)

ipmo pscx
$priv=get-privilege
$priv.Enable("SeRestorePrivilege")
$priv.Enable("SeBackupPrivilege")
$priv.Enable("SeSecurityPrivilege")
$priv.Enable("SeTakeOwnershipPrivilege")
set-privilege $priv;
$report=$null
$Report=@()
$InputFile = "C:\temp\Folders.txt"
$OutputFile = "C:\temp\FolderPermissions.csv"
$FolderList = Get-Content $InputFile

ForEach ($Folder in $FolderList)
{
# Get access list items of the folder
$Permissions = (Get-Acl -Path $Folder).Access | 
# Add the path property and assign its value, -PassThru so the object is assigned to $Permissions
forEach-Object { $_ | Add-Member -MemberType NoteProperty -Name Path -Value $Folder -PassThru }

$Report += $Permissions
}

$Report | Select-Object path,IdentityReference,FileSystemRights,IsInherited | Export-CSV $OutputFile -NoTypeInformation 

thanks to whoever's code source I used... so much internet so little time.

802.1x vs Symantec Endpoint

Recently I have been on a BYOD/ Enterprise mobility project.
As part of this project we are deploying CISCO ISE.

at first network engineer could not work out why the authentication box was missing need to start the wire, so my problem

Could not get the SOE\MOE device to authenticate against the switch. Basically the prompt for auth would never happen. Stock devices were okay.

Pretty sure it was Symantec EndPoint

Symantec couldn't understand the different between Symantec NAC and CISCO ISE. Sigh. I repeated myself about 20 times.
All I got was articles about Symantec NAC.
When Symantec looked at the policies they didnt check what policy was being used on the device. (I am not AV Engineer)

The default firewall policies has a bunch of exceptions at a very low level to allow the 802.1x requests. Once I added these into the policy.. everything worked. :)

clumsy, an utility for simulating broken network for Windows Vista / Windows 7 and above

http://jagt.github.io/clumsy/index.html

Leveraging the awesome WinDivert library, clumsy stops living network packets and capture them, lag/drop/tamper/.. the packets on demand, then send them away. Whether you want to track down weird bugs related to broken network, or evaluate your application on poor connections, clumsy will come in handy


from :http://trentent.blogspot.com.au/2014/11/best-windows-network-bandwidth.html

Storefront Web Receiver White theme

Storefront Web Receiver White theme

1. Create my_backgroud.jpg plane white or with colored top, 2035x1534 put in contrib folder
1a. Create my_logo.png (209x35) and put in contrib
2. Dump this css into custom.style.css http://pastebin.com/mSU8jwuH
3. Fix any issue based round your environment, I suggest chrome

Citrix Netscaler Access Gateway Mobile Friendly White Theme

Hi,

If it helps anyone attached is some of my code to make the logon page white and mobile friendlier.

Assume you have 

1. Set Theme to Green bubble

2. Followed the ctx to create the custom theme

then in theory here is minimal touch to existing base code of the index.htm

3. Update index.html in /var/ns_gui_custom/ns_gui/vpn

<HEAD><TITLE>Citrix Access Gateway</TITLE>

<META http-equiv="Content-Type" content="text/html; charset=UTF-8">

<META content=noindex,nofollow,noarchive name=robots>

<meta http-equiv="X-UA-Compatible" content="IE=IE9">

<meta name="viewport" content="width=device-width, initial-scale=1" />

<link rel="SHORTCUT ICON" href="/vpn/images/AccessGateway.ico" type="image/vnd.microsoft.icon">

<link href="/vpn/css/ctxs.mainstyle.css" rel="stylesheet" type="text/css" media="screen" />

<link href="/vpn/css/ctxs.authentication.css" rel="stylesheet" type="text/css" />

<link href="/vpn/custom/custom.css" rel="stylesheet" type="text/css">

http-equiv – fixes the IE10/11 compatibility viewing issue.

Viewport – supposed to make the  mobile play nice, good for sharefile logins.

Download CSS - http://pastebin.com/N2DaY3hV

4. Create folder ‘custom’ in /var/ns_gui_custom/ns_gui/vpn

Update the custom.css with your logo_company size/dimensions.

Copy in the custom.css

cipy in your Logo_company.png

 For me Iphones don’t render the best because of the screen size and my company logo image.

Nexus work so J

Thanks to chrome browser for screen size emulation feature !

Tasker text to speech for sms fire pager

I was using 'fire alert 2' to notify me of any for calls. Unfortunately my fire control center uses all capitals in the  SMS fire call pager messages.

Also some acronyms didn't sound good on the text to speech function.

A1 test text [therefore optional]
A2 convert text to variable
A3 STOP if there is not the word "incident" in text
A4 Split at word "testmonkey" (this would be my unit/brigade name so dont need to know this)
A5 split at - for formatting
A6 convert to lower case
A7 modification on text

A8 modification on text
A9 clean up text
A10 talk.

So created a task

FireCallSMS (2)
A1: [X] Variable Set [ Name:%fullstr To:INCIDENT - testmonkey - ASSIST FRNSW
Do Maths:Off Append:Off ]
A2: Variable Set [ Name:%fullstr To:%SMSRB Do Maths:Off Append:Off ]
A3: Stop [ With Error:Off Task: ] If [ %fullstr !~ *INCIDENT* ]
A4: Variable Split [ Name:%fullstr Splitter:testmonkey Delete Base:Off ]
A5: Variable Split [ Name:%fullstr2 Splitter:- Delete Base:Off ]
A6: Variable Convert [ Name:%fullstr2 Function:To Lower Case Store Result In: ]
A7: Variable Search Replace [ Variable:%fullstr2 Search:frnsw Ignore Case:Off Multi-Line:Off One Match Only:Off Store Matches In: Replace Matches:On Replace With:fire rescue new south wales ]
A8: Variable Search Replace [ Variable:%fullstr2 Search:m.v.a Ignore Case:Off Multi-Line:Off One Match Only:Off Store Matches In: Replace Matches:On Replace With:motor vehicle accident ]
A9: Variable Split [ Name:%fullstr2 Splitter:* Delete Base:Off ]
A10: Say [ Text:Fire Call, %fullstr21 Engine:Voice:default:default Stream:3 Pitch:5 Speed:5 Respect Audio Focus:On Network:Off Continue Task Immediately:Off ]

Then a profile
 

'Received text any' from the pager 'contact'

XRDP on lubuntu - HP Thin client

if installing lubuntu on older device (like VIA Eden HP Thin Client)  start with forcepae
https://help.ubuntu.com/community/PAE

With the cursor on the top choice press F6.

A menu with a number of options appear. The option 'forcepae' is not there, so press Escape to close the list.

Now a string of options is visible, often with 'quiet' or 'quiet splash --' at the end. Add 'forcepae' to the string.

---

I installed to a external HDD on my HP Thin client, good enough for now.

came across sata hack, but not enough info for me. not sure what was pin 1. so have not done.

--

Getting xrdp to work with lubuntu

was getting black and white mesh, might of been in a rush

http://www.youtube.com/watch?v=Lenp_T_tbOI

from 8:50

added

echo "lxsession -s Lubuntu -e LXDE" > ~/.xession

tried again, and it worked.

Updated the theme causing issue with xml in blogger

Changed the theme because I can,
forgot to check my customisation that I put in before
google's code says use

<script src="https://google-code-prettify.googlecode.com/svn/loader/run_prettify.js?lang=css&skin=sunburst"></script>

which causes a xml error where the delimiter ; is missing

change
& to &amp;

<pre><script src="https://google-code-prettify.googlecode.com/svn/loader/run_prettify.js?lang=css&amp;skin=sunburst"></script>
</pre>

sigh.. 40 mins lost

Comparing AD object security

$tango=(Get-Acl "AD:$((Get-ADUser tango).distinguishedname)").access | select identityreference, accesscontroltype
$cash=(Get-Acl "AD:$((Get-ADUser cash).distinguishedname)").access | select identityreference, accesscontroltype
compare $tango $cash

still couldn't get to root cause of the issue.(automated system cant update account)

Getting your Apple USB Ethernet Adapter to work on your Windows 8 64-bit computer

1. Goto http://www.asix.com.tw/
2. support/downloads
3. Family "USB 2.0 to Fast Ethernet"
4. Product "AX88772A"
5. Download the windows 8.0 / 8.1 driver
6. In device manager choose update driver for the 'Apple USB Ethernet'
7. follow the 'Have Disk' method to the driver
8. choose the 'ASIX AX88772A....' driver
9. enjoy your internetz

Sort\Move files based on first letter

#
# Sort Files based on first letter
#
#
$path='P:\vid\Movies'
# Issue : anything starting with "the" can cause the Q-Z to fill up
# comment out if not required
$thefiles=Get-ChildItem $path -af the*.* -recurse -exclude *.txt,*.jpg,*.nfo
foreach($file in $thefiles){
ren $file ($file.Name).Substring(4)
}
#
#
#
Get-ChildItem $path -af -recurse -exclude *.txt,*.jpg,*.nfo,*.xml | Where-Object {$_.Name -match "^[a-e]"} | ForEach-Object {move $_.fullname P:\sorted\A-E}
Get-ChildItem $path -af -recurse -exclude *.txt,*.jpg,*.nfo,*.xml | Where-Object {$_.Name -match "^[f-k]"} | ForEach-Object {move $_.fullname P:\sorted\F-K}
Get-ChildItem $path -af -recurse -exclude *.txt,*.jpg,*.nfo,*.xml | Where-Object {$_.Name -match "^[l-p]"} | ForEach-Object {move $_.fullname P:\sorted\L-P}
Get-ChildItem $path -af -recurse -exclude *.txt,*.jpg,*.nfo,*.xml | Where-Object {$_.Name -match "^[Q-Z]"} | ForEach-Object {move $_.fullname P:\sorted\Q-Z}