• hi,
    how would you do when part of your sent emails are sent from third party mail server ?
    Like when you use other service to send your marketing emails, etc.
    Whe use google workspace, but also have an internal mail server and external mail sender service…

  • Thank you for sharing.
    For some reason the switch “–accept-package-agreements” didn’t work for my case.
    Below is the output at the end.

    Do you agree to all the source agreements terms?
    [Y] Yes [N] No: An unexpected error occurred while executing the command:
    0x8a150042 : Error reading input in prompt

    The command I ran is “winget install wingetcreate –accept-package-agreements”

  • Do you need to disable TLS 1.3 on Server 2022 for Exchange to work with Windows 11 clients for exmaple (Outlook and/or OWA)

  • Worked perfectly. Thanks for the posting. Always hated having to reboot when adding a computer to a Security group. Many times, you simply cannot restart a server to pick it up.

  • Hi Emanuel!

    Giving credit to you as my online ‘mentor’, I now have scripts on how to automate VM creation (complete with virtual hard drive and Win10 OS, and virtual network). Another one that I was able to create is a script that automates network configuration and internet settings configuration to enable internet access for the generated VMs. All thanks to you!

    Now as I went back in here, it seems like I’m not the only one having trouble with parameter availability across Powershell versions. We use Powershell 5.1 in here. Now I’m looking forward to create 2 programs/utilities out of the 2 scripts that I’ve mentioned above, complete with password verification before you can use said utilities. However, I’ve just found out that the parameters -MaskInput and -AsPlainText are only available in PowerShell 7.0.

    Admitting again that I’m a newbie in PowerShell coding, I wanted to create codes to verify equality of passwords being entered. If you have a more efficient syntax that is 5.1 friendly, that would be great! But my obvious question should be: What equivalent parameters can I use? Or is there a workaround set of syntax in 5.1 so I can convert to plain text string what has been stored in System.Security.SecureString (in readable or unencrypted form, of course).

    Good to be back in this forum! Hehehe!

    Thank you!

  • Hi Robert,
    It shows nothing special just I set up:
    ExtensionInstallForcelist: cchlfgjjhgdoibhfabfonddfjhmocjcg;C:ProgramDataEdgeupdate.xml

    I try to relocate extension files to another directory, maybe Edge doesn’t reach them in ProgramData.
    Thanks for the reply and I’ll let you know about result.

  • Hi,
    If I want to install extensions from the local file system how I need to add its path, please?
    I create these keys buth the extension doesn’t installed:



  • I have a shared VSAN 7.0U2 and VSphere 7.U2. it is shared across several Business Units.
    none of those Business units care related and therfore they do NOT share any common VLANs. They all have their own virtualized Infra / AD / DNS etc.

    I am interrested to use this VSAN files services, but i have issues to figure out if it can be implemented in my use case ( providing indemendent FS to each BU) or if it needs / can be implemented several times (1 instance per BU )?

    thanks in advance

  • Ah thanks for your comment. I now understand a bit of why it wasn’t working before.
    I was running the remove/block script by as is without having used your add extension script first.
    After I ran the add extension script and then followed up with the removal it works as intended.
    When I ran this without using the add extension script it would just disable and grey out the ability to enable the extension but doesn’t remove the extension from the list (chrome://extension).
    Would you be able to expand on how I could run the removal/block script, and have it also remove the it from the list without going through the add extension script first? Hopefully that makes sense haha.

  • I am trying to use this method to set a file association for JPG/JPEG files to use either Edge, Firefox or Paint (basically anything but Win Photo viewer), however I can not get it to work this way at all. Even if I go in Windows settings on the test machine and set the default app associations for those file extensions, when I export them to the XML file it does not reference JPG files that way. So if I import that XML or reference it in the GPO, it still does not create the file association. It seems like the only way to change the file assoc for JPG files in via the Windows settings GUI, which is not practical for hundred or thousands of machines.

    Please help. Thanks

  • Thank you very much for the great article. But where do I have to save the $EmailBody on the exchange server and in which format? Best regards, Ralf

  • Hi Robert,

    Thanks for the write up. From my understanding of this script should also remove the extension from the Chrome extension list (chrome://extension) right?
    If it is meant to I can’t seem to get that bit to work. If not how does one remove the extension from the chrome list?


  • There’s a typo in the Windows 11 PowerShell command.
    Instead of :
    Get-WindowsCapability -Name RSAT* -Online | Add-Windows Capability -Online

    It should be:
    Get-WindowsCapability -Name RSAT* -Online | Add-WindowsCapability -Online

  • Hi Thank you, great blog post, but you say “By installing the necessary Kerberos components, you can use your Active Directory credentials to manage your Windows Server deployments, which makes authentication very easy.” But how do you install those required kerberos items and setup the /etc/krb5.conf file on a recent awx deployment that is in a Kubernetes cluster (minikube for me) deployed by the operator?

  • I’m not seeing this setting when I create a new GPO and look for it in the location you mentioned.

  • Error 0x800f0954 usually occurs at the time of installing the .NET Framework or sub-components on Windows 10. Here’s how to resolve this issue in simple steps.

    In recent days, most Windows 10 users are reporting error 0x800f0954 while installing .NET Framework 3.5 or its subcomponents. Whatever may be the reason behind the error, the good thing is that you can fix the error by following some simple steps. Here are the best possible solutions to deal with this situation.

  • Well, the bad actor would need access to the device _and_ credentials, and they would only get local adminastrator rights at the end. No guarantee for lateral movement, privilege escalation in a domain, etc. The same thing can be achieved on a new (not reset) device simply by not connecting it to the network at OOBE, create a local account, join with credentials to azure AD once inside windows. An added bonus is that installation of malware would be through the regular gui. Local admin guarantee, autopilot circumvented.

    Long story short, you can’t really trust that all your devices are without local admin without additional verification.You can create a proactive remediation to uncover local administrators and subsequently remove them.

  • Load More
© 4sysops 2006 - 2022


Please ask IT administration questions in the forums. Any other messages are welcome.


Log in with your credentials


Forgot your details?

Create Account