Latest Server related questions

I am so sorry to seek your attention for a question of a foolish action. I accidentally renamed the server (Domain controller) when it was already active as domain controller, completely forgetting that the error written in the title came out. Any idea how to fix this, or how to create a new DC without losing all the data? (I would just need to save the users and some RADIUS settings.

Thank you v ...

i have vsphere 8 set up, and am trying to get a horizon desktop deployed using PCoIP. It is a windows 10 desktop with an Nvidia 3080ti in passthrough. everything is working and the deployment functions completely.......until i install the graphics card driver :/ then i get the infamouse black screen and disconnect after 10-15 seconds.

could someone tell me which passthrough settings to review?

• i have th ...

I am trying to figure out why Business Phone is not populating in the report. Any assistance with be greatly appreciated

    # Connect to AzureAD
Connect-AzureAD

# Get all Azure AD users
$AzADUsers = Get-AzureADUser -All $true

# Display progress bar
$progressCount = 0
for ($i = 0; $i -lt $AzADUsers.Count; $i++) {

    Write-Progress `
        -Id 0 `
        -Activity "Retrieving User " `
        ...

I have been following the guide below and have set up the auditing from the two SQL server boxes. I don't understand how to do the Sentinel part as our Sentinel doesn't have the options shown in the second screen shot from the web page.

https://techcommunity.microsoft.com/t5/microsoft-sentinel-blog/monitoring-sql-server-with-azure-sentinel/ba-p/1502960

The workspace is set on basic and to capture all even ...

Is libvirt capable of doing a live storage migration but keep the VM on the same host?

I have two NFS Network filesystem pools on one host. I would like to live migrate the underlying qcow2 disk files from one pool to the other.

I am unable to find any related documentation regarding live storage migration only. All examples and documentation seem to require a live VM migration at the same time.

I have used aws-vault add production to create a temporary credentials. Because there is no production named profile in .aws/credentials I decided to remove the credentials and configure a new one, with corrected name. For that I used aws-vault remove production. That of course only deleted the credentials, but not the profile name shown in the aws-vault list command output. Is there a way to del ...

all.

Strange problem. We renewed our wildcard cert on the Zimbra email server over the weekend, and on Monday several users reported their Outlook no longer connected to the server (fortunately the web client still worked for them).

Looking at the Zimbra logs on the affected machines, I am seeing this:

### WARNING ### Failed to obtain server cert. Error: 12019 @   Connection.cpp#1869[SaveCertAndCalcFinge ...

I'm nearly done migrating our cloud service (classic) deployments to cloud service (extended support). I'm working now on updating deployment pipelines. My package blob is located in a storage account. I create a SAS for the blob and use an API call to management.azure.com to create/update the deployment, passing ARM template as the body of the request.

This works correctly as long as the storage a ...

Probably not a great title, but when I run Get-RDServer I get a name: xxxxx-TERMNEW.xxxx.com

The name of the server is: xxxxx-TERMINAL.xxxx.com

I was getting redirection errors, but then added a record in my hosts file to point the local IP to the xxxxx-TERMNEW.xxxx.com name. When I look at RDS Overview (Server Manager), I see the name TERMNEW in the deployment servers.

Under RDS > Servers, I see ...

Looking for an option to update address (configured via SLAAC) on interface when new RA was received (maybe with some timeout)

I've tried to set net.ipv6.conf.interface.max_addresses, but on network change, original address remained

What could be done on the host side? Guess there should be an option to up-down interface upon receiving new prefix in RA? Or reducing prefix lifetime is the way to g ...

We have a kubernetes cluster with one linux master node and two windows worker nodes. To make this work we are using flannel. The nfs is running on the linux master node (but not inside kubernetes). Kubernetes version is v.1.25.5. When creating a pod with the nfs mounted into the pod, the pods does not start. The kubectl describe pod <pod-id> tells that the following events happened:

Events:
  Type  ...

Ok, previous question about using different lambda versions on different stages here: AWS - lambda versions to different gateway stages?

Now I'm trying to put it all together using AWS SAM cli but still getting an error:

template.yaml

Relevant parts of my template

Resources:
  AppApi:
    Type: AWS::ApiGateway::RestApi
    Properties:
      Name: HelloWorldApiGateway

  HelloWorldResource:
    T ...

odd request maybe, but I have a need to proxy between a HTTP-only client and a WebSocket-only server. these are not long-lived connections; the client does a POST with some binary data that needs to be forwarded to the ws:// server and the response back to the client. session done.

Is this possible with haproxy?

This is my nftables.conf:

#!/usr/bin/env nft -f

flush ruleset
define interface = "venet0"



table inet filter {

set tcp_ok {
    type inet_service
    }

set udp_ok {
    type inet_service
    }

set trusted {
    type ipv4_addr
    }

set filter {
    type ipv4_addr
    }

set martians {
    type ipv4_addr
    flags constant, interval
    elements = {
        0.0.0.0/8
        127.0.0.0/8
    } ...

I need to redirect from URL like example.com/some-urltext-nav.html to example.com/some-urltext.html (remove "-nav" only). I've tried some regular expressions in server block like rewrite ^.*?-nav\.html$/, but nothing happened...

server {
    server_name example.com cdn.example.com www.example.com;
    charset off;
    index index.php index.html;
    disable_symlinks if_not_owner from=$root_path;
 ...

I'm currently attempting to setup a mail server on Debian. So far I've installed postfix and opendkim. I've also configured an FQDN, rDNS, DKIM, DMARC, and SPF, but the latter doesn't work somehow.

An SPF record for mydomain.net gets recognized, when I run an online test (e.g. mxtoolbox.com, appmaildev.com), but not for myhostname.mydomain.net (which is from where the mail gets sent). Both DKIM and  ...

I have seen this asked before, but none of the solutions works for me. I managed to make sftp login for a user, but I didn't manage to give the user permission to upload.

As far as I can understand, I am using OpenSSH's SFTP subsystem (ftp over ssh, port 22, and not a separate FTP server software):

$ ps -ef | grep sftp-server
otheruser   61324   32347  0 14:57 pts/0    00:00:00 grep --color=auto sftp- ...

I have the machine dnsserver with the bind9 service in domain ent.com. I also boot other machines: firewall and webserver. All machines are operated by Ubuntu-server-22.04.

I’ve configured these files:

/etc/bind/named.conf.options

listen-on {
        192.168.0.0/24;
}
allow-query { any ;};
dnssec-validation auto;
forwarders {
                192.168.0.1;
        };

/etc/bind/named.conf.local

zo ...

I want simulate a password change towards Active Directory using Apache Directory Studio. Is there a command line interface or dialog to perform this operation:

ldap modifyRequest
  delete unicodePwd ...
  add unicodePwd ...

Reference

https://ldapwiki.com/wiki/UnicodePwd

Curl returns curl: (60) SSL: no alternative certificate subject name matches target host name 'elasticsearch-0.elasticsearch' even if SAN clearly stands DNS:elasticsearch, DNS:*.elasticsearch

Wikipedia https://en.wikipedia.org/wiki/Wildcard_certificate points out that wildcards for top level domains are not allowed e.g. *.com but does not provide a proof

I looked at RFC 6125, RFC 2818 and RFC 2459 but c ...

I was wondering if any of you know how to achieve that a GCP load balancer redirect to an url with "CORS enabled". What do I mean by that?, well I have the following scenario:

• One load balancer that has to redirect to other load balancers depending on the path of the URL (LB A)
• "Simple" load balancer that has many backends attached (LB B, LB C, etc)

So my flow is as follow:

• LB A (/pathB) -- redir ...

I have a number of Dell PER740 servers running iDRAC 9 in a lab.

As they are in a lab, I only need/want/have capacity for one power supply connected to each server.

However, I cannot find a way to remove the alert/status that appear in the iDRAC (and also in OpenManage Enterprise) - like this one: iDRAC Health Issues

Such status appears when either the PSU is installed but disconnected ("input lost") ...

we've got a Samba Domaincontroller running on Ubuntu Server. There is multiple workstations accessing different Shares. There is one Server outside of the Domain which provides a share for Database Access. That Server is not joined to the domain which leads to huge performance limitations if compared between a Workgroup and a Domain Computer. Where is this technically coming from, are packets doing extr ...

Currently, I am working on a TSN project and I am trying to implement a TSN scenario in a Ubuntu 20.04 VM.

I leverage on tc qdisc command:

tc qdisc replace dev gateway-eth0 parent root handle 100 taprio \ 
num_tc 8 \
map 0 1 2 3 4 5 6 7 1 1 1 1 1 1 1 1 \ 
queues 1@0 1@1 1@2 1@3 1@4 1@5 1@6 1@7 \ 
base-time 1000 \

clockid CLOCK_TAI \ 

sched-entry S 10 300000 \ 
sched-entry S 32 500000 \
sched-entry S ...

I have a Redshift serverless workgroup inside a VPC, and I want to securely create a federated schema of an RDS Aurora cluster through a security group or another mechanism. The Aurora cluster is in the same VPC and uses the same public subnets as Redshift serverless. I created a security group for Redshift serverless and a different one for the Aurora cluster instance. Connecting only works for me by o ...

My SSH key(s) refuses to work on my new KDE neon install. I tried reinstalling the keys and finally found the problem in debug mode. The key file is not used because it has a custom name. This is surprising because it worked fine on Ubuntu 18.04 in the past years, but on the new KDE neon it has this bug.

The procedure is the usual (already worked on Ubuntu 18.04)

-generate key pair on admin side

Due some Bug testings there are tons of request made to my squid server on debian. Because it is a test i can't disable logging, restart the Server or block the requests. Due the growing size of the logfile i decided to delete it while writing. Squid did not create a new one (first with the next restart).

I tried to figure out what happens now in the background, is this data still written somewhe ...

The background

For some time now, apt-key warn users with deprecated messages like this one:

use of apt-key is deprecated, except for the use of apt-key del in maintainer scripts to remove existing keys from the main keyring

There is a lot of documentation online (on SE network and elsewhere) about "fixing" those apt-key warning by using gpg directly. For instance:

curl -sS <https://example.com/ke ...

I deployed an ocserv on my VPS but my android client raise below error:

AnyConnect

Connection attempt has timed out. Please verify Internet connectivity.

I stop ocserv service on the VPS and run as debug mode, output messages of ocserv when this client try to connect is:

# /usr/sbin/ocserv --foreground --pid-file /tmp/ocserv.pid --config /etc/ocserv/ocserv.conf --debug=10
note: skipping 'pid-fil ...

I have a server running Ubuntu 21.04.1 LTS with daily incoming file transfers via SFTP. For the most part, these work fine, but there is one particular client where the transfer speeds are unreasonably slow.

Using a python script to monitor the growth of the incoming files, I noticed that the transfers come in bursts, rather than continuously. For example:

2023-01-10 10:57:50 --> 900.94 MiB (0.00 B ...