How to add multiple RDC listening Ports?

For Multiple RDC listening ports Five things have to Happen.
(Do not do this unless you know the security risks and how to edit your registry)
*This is not  for “MULTIPLE CONNECTIONS” this is “Multiple Listening PORTS”

I. PC must have a login Password configured.
II. PC has to enable RDC Connections (Must not be “Home” Versions of Windows)
III. Firewall Ports on Router must be opened.
IV. Add Listening Ports to PC. Regedit.
V. Open Firewall Ports on PC. Firewall Config…

I.  Create a Login Password. (If you have one skip this)

  1. Click on Start and then Control Panel.
  2. Click on the User Accounts.

Note: If you’re viewing the Large icons or Small icons view of Control Panel, you won’t see this link. Simply click on the User Accounts icon and proceed to 4.

  1. Click on the User Accounts.
  2. In the Make changes to your user account area of the User Accounts window, click the Create a password for your account.
  3. In the first two text boxes, enter the password you would to use.
  4. In the final text box, you’re asked to Type a password hint.
    *Although Optional Please do this, however don’t make it too obvious
  5. You can now close the User Accounts window.

II Enable Remote Desktop:
Remote Desktop is disabled by default in Windows Vista, 7 or 8.
If you have Remote Desktop Enabled, you may skip this step and go to step 3….

To get to the configuration window, you can either right-click the Computer icon and choose properties, or you can type in “system” into the start menu search box, and then select “System” (in the Control panel Section)

RDC1

Now you’ll want to click the “Remote settings” on the left side.

RDC2

Next Check Box “Allow Remote Assistance Connections to this computer”
If this option is Grayed out, either you have a non Pro or Business version of Windows.
(or if this is a PC in a Domain, your Domain admin my disabled this, contact them.)

RDC3

You can allow from any version, This is in case you have an older PC and you still want to connect.

III. Open PORTS on your Firewall.

This Example of Ports Forwarded to the PC from the Router (Your Internal IPs will differ)
You need to see “your” Firewall Instructions on how to forward to each PC

RDC4

Example
Bob Port: 3390
Mary Port: 3391
Frank Port : 3392
Helen Port: 3393

Save Port 3389 for your main Server…

IV.  Add Remote Listening Port to Each PC (On Each PC)

1)    Run REGEDIT on your PC.

2) Export the following key To Desktop: (Save as RDC.reg)
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp 

3) Edit the REG file and change the name of the Existing key to something like:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp-New 

4) In the Current file find
PortNumber 
and change it, “Decimal” to the Port for each Person
Bob Port: 3390
Mary Port: 3391
Frank Port : 3392
Helen Port: 3393

5) Go back to the Desktop double click on the RDC.Reg
and Import the Original REG file back to the registry.

 

V. Next Firewall Ports need to be opened on Each PC

From the Start Menu type in: WF.msc

The Windows Firewall Snap-In will load…

 

RDC5

 

Next Select on left “Inbound Rules”

Once it changes…

On the right now select “New Rule…”
RDC6

 

 

Select “Port”
RDC7

Make sure it’s TCP and Add the port corresponding to the PC you have.

RDC8

 

Allow the Connection:

RDC9

This doesn’t matter in Desktops in Domains that don’t move, but if it’s a laptop I’d say remove the Public

RDC10

Then Name the Firewall Rule.. Click Finish
RDC11

You will now see the new rule.
RDC12
Do this on Each PC and You MUST REBOOT Each PC for it to work…

To Remote from outside use the External IP a Colon and then the Port, or use an Fully qualified External Domain that you created.
Open up your Favorite RDC Program and put in the Following

Examples:
132.212.122.55:3390
r
emote.YourDomain.com:3390

Posted in TIPS, VISTA, Win7, Win8, XP. Comments Off on How to add multiple RDC listening Ports? »

What is a Good Replacement for LogMeIn Free?

What is a Good Replacement for Log Me In Free?

Many of you got this email from LogMeIn Today! (Jan 21st 2014)
LogMeInEOL
Many of my Non Profits, that have ZERO Budget! To Purchase The Pro Version Even if it’s 50% First year.
So what to do?  (Of course SBS2003/SBS2008/SBS2011) included remote to Desktops.
And Yes Essentials Server Does that also, But remember theses are Non-Profits with ZERO MONEY!
So No Server, at all, Can’t afford LogMeIn, or GoToMyPC,
Some People use Join.me but that’s not true unassisted Remote.
TeamViewer? Well you aren’t supposed to use it for Business, but It’s not True Unassisted Remote.
VPN? Too complicated for most Non Profits.
TightVNC, Again Complicated for many Non Profits PORTS to open up.. (Security issues etc.)

OK WHAT THEN?
Google Remote Desktop..

OH NO YOU SAY I HATE GOOGLE!
Well that’s tough,  It works and it’s FREE.
Pro’s:  FREE, PC/MAC, Not required to use Chrome as primary Browser, or running on remote PC/MAC
Unknown how many Connections? (Email me if you find out russ at sbits.biz)

Con’s: No File Transfer etc. like LogMeInPro just remote control. (But just email yourself the file)
Note: Chrome is Required to be used to Connect to the REMOTE desktop…

So you can’t get away from using Chrome 100% but hey guys it’s FREE what can you expect!

Requirements: Google Login, Chrome Browser on Each System, Chrome Remote App on Each System.

How to Remote Desktop with Google Chrome.. (This is a quick Post not all screens are shown but even a monkey can do this.)

First get an Google ID, you will not be required to enter a credit card (unlike iTunes)
https://accounts.google.com/SignUp
Google account

Complete what ever you need to do to create a NEW Account. Yada Yada Yada… *Yes you can do this on your own!

Next You need to Download and install Chrome: (For your PC/MAC that you want to remote to.)
https://www.google.com/chrome/

Chrome
NOTE: You do NOT need Chrome as your Default Browser or even have Chrome up and running, that is the beauty of this!

Next, From the PC/MAC you want to Add to Remote access to…

Start Google Chrome: Login to Google…
https://accounts.google.com/Login
Go to The Chrome APPS Store.
https://chrome.google.com/webstore/category/apps
Search For “Chrome Remote Desktop”
GoogleLogin

Using your new Google Email account of course… DUH!
Search for “Chrome Remote Desktop” (It’s FREE)
Or Click Link below:
https://chrome.google.com/webstore/detail/chrome-remote-desktop/gbchcmhmhahfdphkhkmpfmihenigjmpp?
Chrome Remote Desktop App
Install App! (CLICK the Blue FREE Button)
It will take a while saying “Checking” (Which Means it’s Downloading a 23.3Mb App file)

After Finished Click the Launch App Button.

Google Remote Desktop Launch App

Next you will be prompted to allow Access…
Google Remote Authorize
And Another one!
Chrome Remote Access 2

OK now you will See Options.. Wait REMOTE SUPPORT?

Chrome Remote Desktop Options
Yes REMOTE SUPPORT! But I am not going to cover that in this post This is just for Users to connect to their Desktop
(Choose the Access your own computer from Anywhere. “Get Started”) For now… 🙂

Next you must enable this PC/MAC (Yes again)

Enable

Now you need to setup a PIN (I recommend a Different PIN in Each PC/MAC and use http://keepass.info/ to keep the info in

PIN

Once you enter the PIN you will get a confirmation:
Chrome Enabled
Add the Next PC/MAC the Same way. (Similar)

After you Add the second PC/MAC you will see this.. (Or Similar)
My ComputersOK now you are asking? NOW WHAT? How do I connect once it’s done?
(On the Example Click of course on the other System that you are not Local to.. (The MAC in this case)
Enter your PIN and You are Connected…

Once Chrome is Closed and you need to do remote access. (The Next Time you need it.)
Simply Open Chrome  Either Enter: chrome://apps/    (in the Chrome Address)
(Of course this has to be a PC/MAC that you’ve installed the steps above in)
or if you see to the Left the Little APPS Icon Click that. AppsLink

If you are Logged in! (If not do that) You should see Below: (Or Similar)
Apps
Choose Chrome Remote Desktop and you will get to this: My Computers
Click on a Computer you want to connect to and Enter the PIN
PINPCAnd BINGO you are Remotely Connect for FREE, Just like LogMeIn FREE 🙂
And yes FREE ALSO!

Posted in TIPS, Tools, Win7, Win8. Comments Off on What is a Good Replacement for LogMeIn Free? »

Quick Fix Backup Volume Shadow Copy Error SBS2003 SBS2008 SBS2011

I discovered that Shadow Copy both Wonderful thing, and a PAIN IN THE #@$#
Some servers have Shadow copy errors every 6months or so.

This is a Quick Fix, (Won’t Work for every Issue)
But I’ve found it very Useful.

(Since you may have found this post from searching for Backup Failed SBS2003 I’ll give you the fix here)

SBS2003 Backup Failed nearly blank log
On SBS2003 First Go into Scheduled Events And Delete your backup Events.
(If you see a Blank Backup this is the Number 1 Cause is the Corrupt Schedule)
Next Recreate the Schedule.. with the wizard.

Next Follow the fixes For Shadow Copy Error…

How to repair Volume Shadow Copy Error Backup SBS2003 SBS2008 SBS2011

First Open up Computer (To see  your Drives)
Then Right click on 1 drive and select “Configure Shadow Copies”1

 

Once you are in “Shadow Copies” Configuration Select each Physical Drive (Not the Backup Drive)
And Click on “Create Now”  And a Shadow Copy will be created. (Do this for Each Drive)
(If it crashes during this, or hour glasses for a long time) Delete/Disable the Scheduled Shadow copy and Re enable it.)

Note: I normally don’t use “Shadow Copy Schedule” on C: Or any drive with Exchange just Data Files.
(This is just a Test server in these images)

In addition take note on how much SPACE your Shadow copy is using, if it’s large. Either Adjust space, or Disable and recreate the Shadow copy, and configure the space you want to use..
This is For C:  2
Drive D: 3
And Drive E: (Drive G: is a backup drive and No need to run one on that.)
4
This should fix about 90% of all Volume Shadow Copy Errors on SBS..
*Should 😉

 

 

 

Posted in SBS2003, SBS2008, SBS2011, TIPS. Comments Off on Quick Fix Backup Volume Shadow Copy Error SBS2003 SBS2008 SBS2011 »

QuickBooks Connection Diagnostic Tool 4.0 Download

Problem with QuickBooks Not Connecting to Database?
and you don’t know what Firewall Ports that need to be open?

Or Other QuickBooks Database Connecting Issues?
Try using the QuickBooks Connection Diagnostic Tool 4.0
Download Zip File here http://www.sbits.biz/QuickBooks_Connection_Diagnostic_Tool_4.0_Download/Nettool.zip

If you think you already have it on your Server/PC  but can’t remember the name of the Program it’s Nettool.exe 1,732KB

Nettool.exe  AKA QuickBooks_Data_Tool 4.0

Basically this program tests the ability to connect to the database, works on PC’s and Server’s (And it will open Ports)

QuickBooks Data Tool 4.0 Download
Some Tools Are Priceless

 

Posted in QuickBooks, TIPS, Tools. Comments Off on QuickBooks Connection Diagnostic Tool 4.0 Download »

Adobe Vulnerabilities Spotted

http://www.trendmicro.com/us/marketing/newsletter/flod/20130222/spotlight.html

Zero-Day Season Continues: Adobe Vulnerabilities Spotted

A zero-day exploit targeting Adobe Reader vulnerabilities was spotted days after the discovery of exploits for Adobe Flash Player. These two incidents were the latest addition to a slew of high-profile cases this year involving zero-day exploits.

Cracks in Adobe Programs

The Adobe Reader zero-day exploit is disguised as a .PDF file and targets still-unpatched vulnerabilities in Adobe Reader versions 9 to 11. Once launched, this exploit drops malware, including one for 64-bit computers, to evade detection. The exploit also drops a nonmalicious .PDF file to make you believe the exploit is just a regular .PDF file.

Exploits targeting Adobe Flash Player vulnerabilities are passed off as email attachments or downloaded via malicious sites. They drop backdoors onto your computer and gather information like your computer name and OS version. They can also send and receive information from a malicious website, compromising your computer’s security.

Posted in News For Small Business. Tags: . Comments Off on Adobe Vulnerabilities Spotted »

How to Whitelist a domain or email address in Microsoft Exchange 2010

How to Whitelist a domain or email address in Microsoft Exchange 2010

 

Whitelist features are not available via Exchange Management Console (the GUI), so this will have to be completed via the Exchange Powershell
Open powershell via the exchange menu item and run one of the following scripts, based on your requirement:

To check whats currently whitelisted (Bypassed Recipients):

Get-ContentFilterConfig

To whitelist a single email address:

$list = (Get-ContentFilterConfig).BypassedSenders
$list.add("new.mail@address.com")
Set-ContentFilterConfig -BypassedSenders $list

 

To whitelist an entire domain:

	
$list = (Get-ContentFilterConfig).BypassedSenderDomains
$list.add("domain.com")
Set-ContentFilterConfig -BypassedSenderDomains $list

That's it!
Posted in Exchange 2010. Comments Off on How to Whitelist a domain or email address in Microsoft Exchange 2010 »

Unable to Restore BKF SBS2003 files to SBS2008R2 or SBS2011

OK you are are unable to restore because the BKF is not supported
So you Try to “download NTBACKUP Restore Utility” and it Says
You need to “Install Removable Storage Manager”

So you Google/Bing  “how to install Removable Storage Manager ”
or you Google/Bing “how to enable Removable Storage Manager ”

And you get Microsoft saying that “Removable Storage Manager is not Available”… (in R2 and Above)
Well isn’t that just Nice!

Never Fear the Solution is a HotFix Update

Update for Windows Server 2008 R2 x64 Edition (KB974674)

Utility for restoring backups made on Windows XP and Windows Server 2003 to computers that are running
Windows 7 and Microsoft Windows Server 2008 R2.
http://www.microsoft.com/en-us/download/details.aspx?id=24057

Or if Microsoft deletes it http://www.sbits.biz/Microsoft/Windows6.1-KB974674-x64.zip

The Backup Restore Utility will show up on Accessories/System Tools/NTBackup-RestoreUtility
That’s it! you can Restore..

(Thanks Microsoft for making this so dificult for people, gives IT professionals Job Security..)

Russ 🙂

Posted in SBS2008, SBS2011, Win7. Comments Off on Unable to Restore BKF SBS2003 files to SBS2008R2 or SBS2011 »

AutoPlay or AutoStart does not work with my SD Card on Laptop

Many of use the SD Card Reader in our Laptop (this fix also works for other AutoPlay Issues)
As amateure photographer I love nothing more to throw my SD card in the Laptop and have it ask me what I want to name the files/Directory and Auto Download and Delete my files off the Card (instead of Openening the SD card in Computer)

Yes Some could say I could Open Windows Live Photo Gallery and then insert the SD card, but What If I don’t want to Open it,
And I don’t even want to use that Program?  Example I use SD Cards for Video…

Remember the Day when it worked Like you wanted?  Well Somewhere Security Nazis Fixed something that is not Broken.
(First of course you should have a AV on your system at ALL times) I like Trend Micro but at least  AVG Free

The First step after you assume the responsiblity of an AUTO Start and you have AV on your system is to make sure your settings are correct.

In Win7 type AutoPlay in the search, the Option will apear of “AutoPlay” above, Select it..
Next (As a Safety Issue/concern) Please Chose  “ASK” what to do on everything this will help you from being 1/2 stupid…. The other 1/2 Stupid if you say yes to an unknown device and it’s an Application)

I suggest something like this! (Other Options at your own Risk)

Once you have done that and you still don’t get an AutoPlay /Start from the SD Card
Check your AV Settings Some AV’s have Auto Play/Start Disabled.. (If you are in a Corporate Enviroment you may be required by Group Policy or AV Settings to NOT allow Any AutoPlay even if prompted.)

Once you have checked all that and it Still Doesn’t Prompt Try this..

Open Up NotePad.exe and copy and paste this into it
—————–START COPY BELOW ————————–

Windows Registry Editor Version 5.00   [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer]  “NoActiveDesktop”=dword:00000001  “NoActiveDesktopChanges”=dword:00000001  “ForceActiveDesktopOn”=dword:00000000  “EnableShellExecuteHooks”=dword:00000001  “NoDriveTypeAutoRun”=dword:00000000   reg file 2:   Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer]  “NoDriveTypeAutoRun”=dword:00000000

——————- END COPY ABOVE —————————–

Save the file as a .reg (Example AutoPlay.reg)
Make sure it’s not AutoPlay.reg.txt (NotePad will auto add a .txt if you don’t change it)

Remember where you save it. (I save things like this to the Desktop)
(Note: if you are not Admnistrator of this PC login as Adminstrator to Change Reg settings)

Then Launch the .reg  it will prompt you…

And Hit, “Yes”, (don’t worry the Sky is not going to Fall.)
Then “OK”
Reboot the PC and your AutoPlay (or Prompt for what to do.)
On your SD Card or Device will work again..
Use this Mod/Tweak at your own Risk..
(As a Photographer, I can’t live without auto downloading my pictures.. Yes I’m Lazy 🙂 )

Posted in 64bit, TIPS, Win7, XP. Comments Off on AutoPlay or AutoStart does not work with my SD Card on Laptop »

Tweak Exchange 2010 Memory Usage

From URL

http://eightwone.com/2010/03/25/limiting-exchange-2010-database-cache/

Limiting Exchange 2010 Database Cache

Note (6apr2011): Setting the MsExchESEParamCacheSizeMax only doesn’t produce the required result as of Exchange 2010 SP1. For more information on how to limit the database cache size in Exchange 2010 SP1, see Limiting Exchange 2010 SP1 Database Cache.

Exchange 2010 (2007 as well) memory allocation is dynamic, contrary to Exchange 2003 and earlier versions where, depending on the situation, you had to fiddle around with boot.ini switches like /3GB to make memory available to Exchange. Also, the maximum database cache size was limited in Exchange 2003 to around 1.2 GB due to virtual address space limitations (see MSKB 815372).

The main reason Exchange 2007/2010 claims memory for its database cache is performance. The more memory is assigned to the database cache, the less I/O’s are generated because things can be dealt with in-memory and the database cache becomes more effective. When a certain amount of transactions has been reached, changes will be physically written to databases (so far they’ve been stored in-memory and written to transaction logs). This limit is called the log checkpoint depth target.

Since Exchange 2003, the log checkpoint depth target is 20 MB databases. As of Exchange 2007, for configurations existing of 2+ database copies, the depth target is 100 MB for active copies and 5 MB for passive copies. This means, after 100 MB of transactions changes will be physically flushed to the database. The more changes are delayed (i.e. stored in-memory and in transaction logs), the chance of overlapping changes or combined writes increases lessening I/O’s required. Note that to lessen the time to fail-over, passive copies have a lower depth target making them commit changes more often, minimizing the log files to replay after a fail-over.

Back to the topic, Database Cache. Exchange uses by default certain mailbox database cache sizes for certain amounts of memory. The table below contains these values for systems holding the mailbox server role as well as servers holding multiple roles (source):

RAM Physical Memory Database Cache Size, Mailbox Role Database Cache Size, Multiple Roles
2 GB 512 MB Unsupported
4 GB 1 GB Unsupported
8 GB 3.6 GB 2 GB
16 GB 10.4 GB 8 GB
32 GB 24.4 GB 20 GB
64 GB 53.6 GB 44 GB
128 GB 111.2 GB 92 GB

Now what if you have a real uncontrollable urge to limit Exchange in its attempt to optimize its database cache and you want to restrict its growth?  You can do this by changing the following Active Directory property (per store) using ADSIEDIT.msc (or using another tool or scripting language of your liking) as follows:

  1. Start ADSIEDIT.msc
  2. Navigate to Configuration > Services > Microsoft Exchange > <Organization Name> > Administrative Groups > <Administrative Group> > Servers > <Server Name> > InformationStore
  3. Right-click InformationStore, and edit msExchESEParamCacheSizeMax. Set it it to the number of pages to maximize the Database Cache to. Note that Exchange 2007 works with 8 KB pages and Exchange 2010 with 32 KB pages!
  4. Restart the Microsoft Exchange Information Store service for the change to become effective.

So, for instance, if you want to limit the Database Cache to 4 GB of  an Exchange 2010 server, set msExchESEparamCacheSizeMax to 131072  (4 GB = 4.194.304 KB / 32 KB). If you want to limit the Database Cache to 2 GB of an Exchange 2007 server, set msExchESEparamCacheSizeMax to 262144 (2 GB = 2.097.152 KB / 8 KB).

You must also Set msExchangeESEparamCacheSizeMin size also, set it to 1024

I’ve found 8GB is good for most Medium Sized SMB Enviroments

Note that lowering these values may degrade performance, in terms of server performance as well as in terms of end-user experience. However, smaller organizations with a limited number of mailbox users may benefit because they don’t let Exchange claim significant amounts of memory which it will never use.

Posted in Exchange 2010. Comments Off on Tweak Exchange 2010 Memory Usage »

Office 365 Update Issues on outages

on November 13

I lead the engineering organization responsible for Office 365. My team builds, operates and supports our Office 365 service, and over the last few days, we have not satisfied our customers’ needs. On Thursday, November 8 and today, November 13 we experienced two separate service issues that impacted customers served from our data centers in the Americas. All of these issues have been resolved and the service is now running smoothly. These incidents were unique to the Office 365 Exchange Online mail service, not related to any other Microsoft services.

I’d like to apologize to you, our customers and partners, for the obvious inconveniences these issues caused. We know that email is a critical part of your business communication, and my team and I fully recognize our responsibility as your partner and service provider. We will provide a post mortem, and will also provide additional updates on how our service level agreement (SLA) was impacted. We will be proactively issuing a service credit to our impacted customers.

I also want to provide more detail about the recent issues.

The first event occurred on November 8th from 11:24AM to 7:25PM PST. This service incident resulted in prolonged mail flow delays for many of our customers in North and South America. Office 365 utilizes multiple anti-virus engines to identify and clean virus messages from our customers’ inboxes. One of these multiple engines identified a virus being sent to customers, but the engine started to exhibit a lot of latency even as it handled the messages. To compound the issue, our service was configured to allow too many retries and provide too long of a timeout for these messages. Given the flood of these specific emails to some of our service capacity, this improper handling caused a significant backlog of valid email message throughput in these units. We resolved the issue by deploying an interceptor fix to deal with the offending messages and send them directly to quarantine. Going forward, we are instituting multiple further levels of defense. In addition to fixing the engine handling, we now have instituted more aggressive thresholds for deferring problem messages. We have also built and implemented better recovery tools that allow us to remediate these situations much faster, and we are also adding some additional architectural safeguards that automatically remediate issues of this general nature.

From 9:08AM to 2:10PM PST today, November 13th, some customers in North and South America were unable to access email services. The service incident resulted from a combination of issues related to maintenance, network element failures, and increased load on the service. This morning, the Office 365 team was performing planned non-impacting network maintenance by shifting some load out of the datacenters under maintenance. In combination with this standard process, we experienced a ‘gray’ failure of some active network elements; the elements failed, but did not alert us to their failure. Additionally, we have an increasing load of customers on-boarding to the service. These three issues in combination caused customer access to email services to be degraded for an extended period of time. By 10:42am PST, remediation work was underway to balance users to healthy sites, broaden the service access points and remediate the failed network devices. At 2:10PM PST all services were fully restored. Significant capacity increase has already been well underway, but we are also adding automated handling on these gray failures to speed recovery time. Across the organization, we are executing a full review of our processes to proactively identify further actions needed to avoid these situations.

As I’ve said before, all of us in the Office 365 team and at Microsoft appreciate the serious responsibility we have as a service provider to you, and we know that any issue with the service is a disruption to your business – that’s not acceptable. I want to assure you that we are investing the time and resources required to ensure we are living up to your – and our own – expectations for a quality service experience every day.

As always, if you are experiencing any service issues, we encourage customers to check the Service Health Dashboard for the latest information or contact our customer support team. Our customer support is available 24 hours a day via Service Requests submitted from the Office 365 Portal.

Rajesh Jha

Corporate Vice-President, Microsoft Office Division

Posted in Cloud, News For Small Business, Office365. Comments Off on Office 365 Update Issues on outages »