Crochet 60 : a big warm triangular schawl

I like the color green a LOT!

And the pattern I used :

Posted in Relaxation | Tagged , | Comments Off on Crochet 60 : a big warm triangular schawl

WIN 7 and PATH variable

Definition :
The system path is a list of folders, separated by a semicolon, that identifies the folders that the system should search when looking for files that are called from the Run dialog box, command line, or other processes. Normal program installation changes this path to include the program’s installation path.
PATH may be set on a system and user level.
An alternative to setting the path at system level is to change it at user level; however, doing so will affect only your logon session and not other users who might use the computer or system processes, which might cause confusion and unexpected behavior.

How to change the PATH variable :
1. Go to : Start – Settings – Control Panel – System
2. Select the Advanced tab.
3. Click the Environment Variables button.
4. Under System Variables, select Path, then click Edit.
You’ll see a list of folders, as this example shows: C:\Program Files\Windows Resource Kits\Tools\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Support Tools\;C:\Program Files\Common Files\Roxio Shared\DLLShared;C:\Program Files\Common Files\Ulead Systems\MPEG;C:\Program Files\Intel\DMIX;C:\Program Files\Executive Software\Diskeeper\;C:\Program Files\Bonjour\;C:\Program Files\QuickTime\QTSystem\;C:\Program Files\Misc
You can add additional folders that you want to include in searches, with “;” at the beggining and at the end. Click OK.
You’ll need to restart the processes (e.g., command prompt) that use the system path to see the added folders.

Note1 : if you type in Start/”Run” “Environment” (no “), you will get the list of all environment variables.
Note2 : WIN 2012 does NOT have a PATH variable, so you only add it in the above mentioned place.

Here is the place from where I took the above mentioned : link1. And another good link2.

Posted in WIN | Comments Off on WIN 7 and PATH variable

WIN 2012 R2 abbreviations

Why this?
Well, I need to learn about WIN 2012 R2 and pass a MSCA, (first is 70-410).
Since I am not exactly knowledgable about WIN servers, I have to familiarize myself with a LOAD of new abbreviations!
Abbreviations :
ACL – access control lists
AD CS – active directory certificate services
AD DS – active directory domain services
AD FS – active directory federated services (Trustbridge)
AD LDS – active directory lightweight directory services
AD RMS – active directory rights management services
ADSI – active directory service interfaces
API – application programming interfaces
APIPA – automatic IP addressing
AXFR – full (DNS) zone transfer (all the data in the DNS database)
BIND – Berkley internet name domain, SW for DNS servers
BOOTP – bootstrap protocol, for DHCP
CHAP – challenge handshake authentication protocol, for iSCSI
CNAME – alias record, or a canonical name, DNS record entry
DISM – deployment image servicing and management
DDNS – dynamic DNS standard, DNS DB is automatically build and may be updated by DNS clients
DHCP – dynamic host configuration protocol
DN – distinguished names, unique name under the AD (defines the complete path from the top of the tree to the object)
DNS – domain name system, resolves a name to a IP address, RFC 1034+1035, do NOT map directly to AD domains
DNSSEC – DNS security extensions
DORA – discover, offer, request, acknowledge – DHCP process list
EFI – extensible firmware interface
FQDN – fully qualified domain name (computer name + domain name)
FSMO – flexible single-master operations
GPT – GUID partition table (newer partition style for HDDs)
GUID – globally unique identifiers, under AD
HBA – host bus adapter
IANA – Internet Network Information Center
ICANN – internet corporation for assigned names and numbers
ICMP – internet control message protocol, ping command
IETF – Internet engineering task force
IFM – install from media
IIS – Microsoft web server (internet information services)
IHV – independent HW vendor
IN – Internet class, zone class in a DNS record
IPAM – IP address management
IPsec – internet protocol security
iSCSI – internet small computer system interface (port 3260), block level storage access
iSNS – internet storage service name, finds iSCSI storages on a network
IXFR – incremental (DNS) zone transfer
JET – joint engine technology, database technology used in DHCP servers
KCC – knowledge consistency checkers, part of the AD for application data replication
KDC – Kerberos distribution center
LBFO – load balancing and failover
LDAP – lightweight directory access protocol
LUN – logical unit number, used in storages
MADCAP – multicast address dynamic client allocation protocol, protocol that controls multicasting
MBR – master boot record (older partition style for HDDs, bootable)
MMC – Microsoft management console
MPIO – multipath I/O
MSA – managed service accounts
MX – mail exchange record, part of a DNS record
NAP – network access point
NAP – network access protection
NAS – network attached storage, file level access, NFS, CIFS, HTTP protocols
NDDNS – non-dynamic DNS does not automatically populate the DNS database
NIC – network interface controller
NLB – network load balancing
NOS – network operating systems
NPIV – N port identification virtualization, FC facility
NS – name server
NTFS – Windows NT (new technology) file system
PDC – primary domain controller
PIN – personal identification number
PKI – public key infrastructure
PTR – pointer record, a DNS entry for a reverse DNS zone (mapping IP address to a hostname)
PXE – preboot execution environment
RAID – redundant array of independent discs
RDN – relative distinguished name, part of a AD
ReFS – resilient file system
RFC – request for comments, documents that regulate IT
RODC – read-only domain controller, a full copy of a Active Directory DB, without the write ability to write in AD
RR – resource record, information about a DNS zone
RRSIG – digital signature
SOA – start of authority, part of a DNS record, defines general zone parameters
SID – security identifier, a value that uniquely identifies a security principal in AD
SPN – service principal name
SRV – service record, part of a DNS record
SSL – secure socket layer
SSO – single sign-on
SSP – security support provider
SSPI – security support provider interface
TCP/IP – transmission control protocol/internet protocol
TLD – top level domain(s), directly under a root “.” domain
TLS – transport layer security
TTL – time-to-live, how long the record is valid (how long it may be cached, before making another query)
UDP – user datagram protocol
UPN – user principal name, under AD
VDI – virtual desktop infrastructure
VDS – virtual disk service, application for managing all storage devices
VID – virtual infrastructure driver
VHD – virtual hard disc
VLSM – variable length subnet masking
VM – virtual machine
VPN – virtual private network
VSP – virtual service provider
WAN – wide area network
WBF – windows biometric framework
WDS – Windows deployment services
WINS – Windows internet name service, MS TCP/IP name resolving, old and now abandoned (Win 2000 onward)
WSUS – windows server update services
WWN – world wide name

Posted in WIN | Tagged , | Comments Off on WIN 2012 R2 abbreviations

ITIL Service Strategy and/or Service Offerings and Agreements

Since I have passed ITIL CSI (!!!!!), I am going for the next exam.
New abbreviations :
ASP – application service provider
BIA – business impact analysis
BMP – best management practice
BPO – business process outsorcing
BU – business unit
DIY – do it yourself
FMEA – failure modes and effect analysis
IRR – internal rate of return, a discounted cash flow method
KPO – knowledge process outsorcing
MoP – management of portfolios
MoR – management of risks
MoV – management of value
MSP – management successful programmes
NPV – net present value
ROI – return on investment, financial benefits
ROIC – return on invested capital
SIP – service improvement plan
SPI – service provider interface
SSU – shared business unit
TCO – total cost of ownership
VOI – value on investment VOI=financial value+intangible benefits

Some definitions :
Effective – conforms to a set norm, repeatable, measurable, managable, achieves the required outcome
Efficient – activities can be carried out with a minimum use of resources
Output – refers to a specific level of service, NOT a business objective.
Outcome – when business is able to perform activities which meet business objectives.
Economic value – total value that the customer perceives the service to deliver.
Aggregation – centralized services resulting in a single type II service provider
Insourcing – going to a type I or II of a IT service provider
Disaggregation – decentralization resulting in a number of type I IT service providers
Outsourcing – IT services sourced from outside (type III provider)
Service archetype – basic building blocks for services
Discounted cach flow – the fluctuation in the value of income and expenditure over a period of time.

Posted in ITIL | Tagged , | Comments Off on ITIL Service Strategy and/or Service Offerings and Agreements

SNMP connectivity

I have problems with a WIN Vista machine, so WinRM can not be used. I am instead using SNMP.
Problem is, that it is not available through RD, and I am checking ports.
Check-ups :
How to check open ports (take care, these are only TCP ports) :
# nmap -sT -O
If I want to check UDP ports too :
# nmap -sU -p 161

Check direct SNMP connectivity (from a Linux machine) :
# snmpwalk -v2c -c SNMP-community
In paralell see also :
# tcpdump -vv -n -tttt -i eth3 |grep

Check SNMP connectivity from WIN 7 machine :
Which tools I have tried :
(Must be done : Start > Run > services.msc, then look into the properties of “SNMP service”, Navigate to “Security” tab, and try to set to “Accept SNMP packets from any host” to ask itself)
1. Net-SNMP – a bit older but it works
2. iReasoning MIB browser (free version) – works
3. PowerSNMP – not able to install it
4. Snmpwalk.exe (link) – this is only a file you put on WIN 7, and is used from a command line, and this is somehow the most comfortable for me :
>SnmpWalk.exe -c:SNMP-community -r:

Posted in WIN | Tagged , | Comments Off on SNMP connectivity

Crochet 60 : my pilates bag

This is a messenger bag, worn over one shoulder, across the body. I am planning it for my things when I go to my pilates class.
It has also means to be “locked up”.

Posted in Relaxation | Tagged , , | Comments Off on Crochet 60 : my pilates bag

Query from WIN 7 to AD DC server

1. Command “net group” may be used only directly on AD server
2. Iz komandne linije (koja je OBAVEZNO otvorena kao user pod željenim domenom) pustiti komandu :
“C:\Windows\System32\rundll32.exe” dsquery.dll,OpenQueryWindow
Koja otvara prozor sa upitima :

I to daje priličnu količinu podataka koji su povučeni sa AD-a.
ALI ne daje korisnički user, što mi treba radi upita kroz PHP skripte.
3. Podatak o username-u sa na kraju dobila korišćenjem upita sa nivoa Linux-a :
# ldapsearch -h IP-AD -x -D “veldaebel@moj.domen” -b “dc=moj,dc=domen” -W “(cn=petar petrovic)”
4. Postoji gomila free GUI tool-ova za WIN 7 za pretragu AD zapisa :
a) LDAPExplorerTool 2 – radi, ali daje samo “drvo” bez opcija pretrage (link)
b) Softerra LDAP Browser 4.5 (link) – mnogo opcija (što je malo zbunjujuće), ali deluje dobro i daje mi potrebne podatke!

Posted in WIN | Tagged , | Comments Off on Query from WIN 7 to AD DC server

Zenoss and possible problems

Note at the beggining : if a WIN server is not in AD, WinRM will not work!!!
Link towards error numbers which WinRM gives.

1) When host is „Modelled“, and this appears :
2016-12-26 08:19:08,767 ERROR zen.PythonClient: Error on myserver.mydomain: Server not found in Kerberos database: HTTP@
♥It is most probably this :
A service principal name (SPN) is a unique identifier of a service instance. SPNs are used by Kerberos authentication to associate a service instance with a service logon account. This allows a client application to request that the service authenticate an account even if the client does not have the account name.

What can be done :
Button „Start“/Run/gpedit.msc :
Individual Machine configuration:
Open ports 5985 (http)/5986(https) for WinRM
winrm quickconfig
winrm s winrm/config/service @{MaxConcurrentOperationsPerUser=”4294967295″}
winrm s winrm/config/winrs @{MaxShellsPerUser=”2147483647″}
winrm s winrm/config/winrs @{IdleTimeout=”7200000″}
Basic Authentication (Windows default is Kerberos see note below for more information):
winrm s winrm/config/service/auth @{Basic=”true”}
winrm s winrm/config/service @{AllowUnencrypted=”true”}

Entry in /etc/hosts file on Zenoss server :
[root@zenoss etc]# more hosts localhost localhost.localdomain zenoss.mydomain myserver1.mydomain myserver2.mydomain myserver2 myserver3.mydomain myserver3

2) Error during modelling :
2016-12-26 09:06:36,534 ERROR zen.PythonClient: Connection refused on mojserver.mojdomen: Verify WinRM setup
♥Solution :
a) check if the user used for monitoring is in a local administrators group
b) check from a Zenoss server command line :
[root@zenoss etc]# nc -z -w1 5985;echo $?
(“1” means it is OK)

Check the PowerShell version, using command : $PSVersionTable
If there is no output, it means it is a version 1, and we need 2.0 (at least)!
♥Install the necessary PowerShell version!

3) Modelling error : AttributeError: ‘NoneType’ object has no attribute ‘DomainRole’

4) Modelling error : WARNING zen.ZenModeler: The plugin zenoss.winrm.IIS returned no results.
♥This usually menas that the IIS is not active on server. If that is the case, turn off that module (Modeler Plugins).

5) Modelling error : HTTP Unauthorized received on kerberos initialization. Kerberos error code -1765328343
♥Check the AD entry for this server.

6) Modelling error : ERROR zen.PythonClient: Error on mojserver.mojdomen : Cannot determine realm for numeric host address
♥Solution is to set Configuration Properties/ zWinRMServerName as a FQDN of the server!

7) Error : The following exception was thrown when trying to enumerate the collection : Failed to connect to server myserver.mydomain
♥Solution : add a user for the overseeing of MS SQL (with at least public)

8) Modelling error : ERROR zen.PythonClient: Query error on myserver.mydomain : HTTP status: 500. The system cannot find the file specified.
♥Solution : lookup at event log on server, and if there is a problem with a user profile of the account used for monitoring, do as this text.

9) Modelling error : SQL Server Management Object Assemblies were not found on the server. Please be sure they are installed.
♥Solution : Install a SQL SMO (Server Management Objects) in version adequate for the SQL server. File downloaded from Microsoft site : SharedManagementObjects.msu
Folder for installation : C:\Program Files\Microsoft SQL Server\130\SDK\Assemblies\
Link :

10) Error :
Event Class : /Status/Winrm/Ping
Status : New
Message : Device is DOWN!

But server can be pinged!
♥ Solution 1 : install adequate PoSh version
♥ Solution 2 : do as under No (8)

Posted in Uncategorized | Tagged , | Comments Off on Zenoss and possible problems

Crochet 58 : bown fingerless gloves

They turned out very well, and are quite cozy :

and a pattern I have used :

Posted in Relaxation | Tagged , , | Comments Off on Crochet 58 : bown fingerless gloves

Zenoss monitoring tool

We have a new monitoring tool : Zenoss
Some notes :
Somewhat unclear overview
VERY bad documentation
Not particularily user-friendly
Conclusion : if I did not have to, I would not use it

Zenoss and IIS
It is not easy to set up IIS monitoring, and there is NO good explanation in (sparse) documentation.
WIN 2003
It is necessary to install a Windows Management Framework for WIN Server 2003 (it has a Windows PowerShell 2.0, WinRM 2.0, BITS 4.0 in it).
You have to set up one user under AD, for monitoring purposes, for all WIN servers, and it has to be a member of a local Administrators group.
WinRM Service has to be enabled :
Allow automatic configuration of listeners -> Enabled -> Under IPv4 filters input “*” without the quotation marks
Allow Basic authentication -> Enabled
Allow unencrypted traffic -> Enabled
Windows Remote Shell has to be enabled :
Allow Remote Shell Access -> Enabled
Specify maximum number of processes per Shell -> Enabled -> MaxProcessesPerShell = 2147483647
Specify maximum number of shells per user -> Enabled -> MaxShellsPerUser = 2147483647
Specify shell Timeout -> Enabled -> ShellTimeOut = 2147483647

WIN 2008
For IIS to be “seen” in Zenoss, „IIS Management Scripts and Tools“ has to be installed :
Select Start > Administrative Tools > Server Manager
Server Manager appears. Select Web Server (IIS) under Roles, and click Add Role Services
And of course WinRM, WinRS, and AD user from above…..

When adding a new server, it MUST go under pod Device Class : /Server/Microsoft/Windows (or nothing will work as it should!)
Pod Configuration Properties configure the following :
zWinRMUser, zWinRMPassword, zWinKDC (it is a IP address or the name for your AD server)
Add modules that are needed, and supported by WinRM (under Modeler Plugins)

When all configuration and changes are done, do the “Model Device” and study the output carefully!
After this, under “Monitoring Templates” a Template for IIS should show up.

Posted in Linux, WIN | Tagged , , | Comments Off on Zenoss monitoring tool