This is the lighting setup that I used for the kids (and my) passport photos. keeping it here so i won't lose it.
Friday, July 3, 2009
Passport Photo Lighting Setup
This is the lighting setup that I used for the kids (and my) passport photos. keeping it here so i won't lose it.
Wednesday, July 1, 2009
OWA Session Timeout Ticking You Off?
Are your users complaining about the short session timeout for Exchange 2007 Outlook Web Access? OWA users who have selected the "This is a private computer" login option either from home or at the office are subject to the default 10 minute session timeout. Use this easy fix to increase the value to something more acceptable to your users (if your local security policy allows it) say... 8 hours?As you may know, Powershell can access the Registry directly, just as it can access the file system. There are two predefined psdrives available when you load Powershell that point to the Registry hives HKEY_LOCAL_MACHINE (HKLM) and HKEY_CURRENT_USER (HKCU). You can add others if you choose by configuring your Powershell user or machine profile.
To use Powershell to add (or change) an entry in the registry to increase the OWA session timeout for "trusted" clients to 8 hours (480 minutes), use the Exchange Management Shell and type the following command or use Regedit: (the usual warnings apply)
New-ItemProperty -Path 'HKLM:\SYSTEM\CurrentControlSet\Services\MSExchangeOWA' -Name TrustedClientTimeout -Value 480 -Type dword
Restart IIS from a command prompt using iisreset /noforce and your users will love you.
Thursday, June 18, 2009
Confluence Automation with Powershell - Pt 1
For those of you who use the Confluence wiki to maintain documentation, this post will show you how we at ITEC use Powershell scripting to automate reports and build pages using the Confluence Command Line Interface (CLI). The Confluence CLI is a Java based set of procedures for automatically creating/updating pages in your Confluence spaces.We have several systems that report their status to various tools that generate reports for internal staff. Read on for details on how we use Powershell and the Confluence CLI to automate documentation for internal system status reporting as well as usage statistics for campus applications that we host.
How We Use It
Responsible for managing and maintaining our Exchange environment as well as our hosted mailboxes, I am always looking for ways to streamline procedures and to minimize the chances of human error through automation. The discussion that follows shows a detailed example of how we use both Powershell and Confluence to produce high quality, accurate, and timely system status information for our campus customers.
Exchange Mailbox Status Reporting
The goal here is to provide our campus customers easily accessible, up-to-date information on the status of their mailboxes. Information such as current mailbox sizes per user, mailbox forwarding, time of last logon, etc.
Saturday, June 13, 2009
Understanding Powershell Profiles
Powershell uses profiles to configure the user experience. There are two main profiles that are typically configured, the machine profile and the user's personal profile.
MSDN has a nice description of the different profiles found in Powershell. You can pre-define variables, drive mappings, custom functions, etc. Shared routines can be loaded into the machine profile to provide access to ANY Powershell user on the system.
The machine profile is found at
%windir%\system32\WindowsPowerShell\v1.0\ Microsoft.PowerShell_profile.ps1
and is used to configure the Powershell session for ALL users on the system. I generally use the machine profile to define custom functions that should be available to anyone who logs onto the box and will use Powershell. Examples could include writing a custom function and add it to the machine profile on a domain controller that would open a csv file or make a database connection, read its data, and create a new AD user, configure a home directory on a file share for that user, and add them to the appropriate security groups.
Another example would be writing a function that lives in the machine profile of an Exchange server, available to ALL admins who log onto the machine. I have a custom script that I've turned into a Powershell function for planned failover of our clustered mailbox servers. The script (function) takes input from the admin, verifies that the target node is not already the active node, displays the status of the cluster copy queue, then warns the admin that this procedure will failover the production mailbox cluster. No browsing folders searching for the location of the failover script... when it's defined as a function, it's available from any location.
The user personal profile is found at
%UserProfile%\My Documents\WindowsPowerShell\Microsoft.PowerShell_profile.ps1
and is used to configure the user's personal settings. Screen color preferences, personal drive mappings (psdrives) , and functions that should not be made public on that system. Security Credential Objects that will be used within the Powershell session can also be defined here.
You can edit this profile with any standard text editor such as Notepad, but there are many IDE applications available to make script editing easier. Powershell 2.0 includes a builtin IDE.
Get a quick reference here.
Friday, June 12, 2009
Working with CSV Files
Working with CSV file content in Powershell is a perfect match, and very easy and efficient. Reading data from a csv file for use in Powershell is done using the Import-CSV cmdlet. The data is read from the file and stored in an object that you define.
Consider the following users.csv file content:
| FName | LName | samAccountName | PrimarySMTPAddress |
|---|---|---|---|
| John | Smith | smithj | smithj@contoso.com |
| Mary | Jones | jonesm | jonesm@contoso.com |
To import the data from the users.csv file into an object called NewUsers, use the following Powershell cmdlet syntax...
$NewUsers = Import-CSV users.csv
After the import, you will have an object called $NewUsers to work with in Powershell. You can display the entire contents by typing the variable name $NewUsers.
You can process the entries individually by using the ForEach statement shown below:
ForEach ($User in $NewUsers) {write-host Email $User.Fname $User.LName at $User.PrimarySMTPAddress}
Output from the statement above would produce:
Email John Smith at smithj@contoso.com
Email Mary Jones at jonesm@contoso.com
Although this is a very simple example, it shows how easy it is to work with csv file data in Powershell. We make extensive use of csv files in our Exchange hosting environment for creating new mailboxes for our campus customers as well as modifying existing users, distribution groups, forwarding addresses, quota, etc. It works well for use and has made day-to-day mudane tasks much easier to process.
...more to come in our Bulk User & Mailbox Management post.
Thursday, June 11, 2009
Be a Hero, take charge and Get-Proactive
There are many things that you can do to be proactive with your Exchange environment and make yourself look like Wonder Boy to the higher ups, and to your customers. Here is a list of some things you can do to support your cause.
The Hero List
Produce a list of users with mailbox folders containing more than 5000 items (performance limit for Outlook folders)
Intercept Delivery Failure messages from users by creating a Transport Rule to forward a copy of the Failure message to your admin mailbox. React to the problem before your users complain.
Generate a report of all mailboxes that have not been logged onto in the past 90 days.
Tuesday, June 9, 2009
Hey dude, is your #550 cataddr: string too long?
Are you experiencing delivery problems from your Exchange 2007 servers to IBM.com and other sites using Sendmail 8.x? Is the error "#550 cataddr: string too long" being returned when users try to send to certain domains?
The problem (as worked through by our colleague Brian at SUNY Canton with HP Support) was tracked down to be a TLS negotiation issue between Exchange and Sendmail. Apparently there is a fix for Sendmail, but if you're running as an admin on the Exchange side, you'd rather not have to contact all the Sendmail site admins that you exchange email with and have them "fix" their systems.
Follow the more... link for a workaround from Brian, as well as a thought that I had for an alternate solution.
Brian's Solution from working with HP Support:
Set-SendConnector "Internet" -IgnoreStartTLS $true
Sets the default "Internet" send connector for ALL internet mail to ignore TLS negotiation.
My Alternate Suggestion:
Create a custom send connector that will be used for ibm.com (and other domains that are deemed problematic to this issue) and turn off TLS negotiation for that connector only. Other domains that are found to exhibit the same problem can easily be added to the custom connector via the Exchange Management Console (or through Powershell) when discovered.
Subscribe to:
Comments (Atom)
