Manage Windows Server with Process Explorer

Ever wondered which program has a particular file or directory open? Now you can find out. Process Explorer shows you information about which handles and DLLs processes have opened or loaded.

Ever wondered which program has a particular file or directory open? Now you can find out. Process Explorer shows you information about which handles and DLLs processes have opened or loaded.

The Process Explorer display consists of two sub-windows. The top window always shows a list of the currently active processes, including the names of their owning accounts, whereas the information displayed in the bottom window depends on the mode that Process Explorer is in: if it is in handle mode you’ll see the handles that the process selected in the top window has opened; if Process Explorer is in DLL mode you’ll see the DLLs and memory-mapped files that the process has loaded. Process Explorer also has a powerful search capability that will quickly show you which processes have particular handles opened or DLLs loaded.

The unique capabilities of Process Explorer make it useful for tracking down DLL-version problems or handle leaks, and provide insight into the way Windows and applications work.

https://docs.microsoft.com/en-us/sysinternals/downloads/process-explorer

Configure the Windows firewall to allow pings ICMP Ping

This information shows you how to Configure the Windows firewall to allow pings ICMP Ping.

  1. Open Windows Firewall
  2. Click Advanced Settings on the left.
  3. From the left pane of the resulting window, click Inbound Rules.
  4. In the right pane, find the rules titled File and Printer Sharing (Echo Request – ICMPv4-In).
  5. Right-click each rule and choose Enable Rule.

Changing File Ownership in Windows

Taking Ownership of Files and Folders in Windows Server. Here are some notes on how to do this:

If you are an administrator, an authorized user, or a backup operator, you can take ownership of a file or folder by completing the following steps:
1. In Windows Explorer, open the file or folder’s Properties dialog box by right-clicking the file or folder and then clicking Properties.
2. On the Security tab, click Advanced to display the Advanced Security Settings dialog box.
3. On the Owner tab, click Edit.This opens the Advanced Security Settings dialog box for editing.
4. In the Change Owner To list, select the new owner.If you’re taking ownership of a folder, you can take ownership of all subfolders and files within the folder by selecting the Replace Owner On Subcontainers And Objects option.
5. Click OK twice when you have finished.

Assigning Ownership
If you are an administrator or the current owner of a file, you can assign ownership of a file or a folder to another user or group by completing these steps:
1. In Windows Explorer, open the file or folder’s Properties dialog box by right-clicking the file or folder and then clicking Properties.
2. On the Security tab, click Advanced to display the Advanced Security Settings dialog box.
3. On the Owner tab, click Edit. This opens the Advanced Security Settings dialog box for editing.
4. Click Other Users Or Groups to display the Select User, Computer, Service Account, Or Group dialog box.
5. Type the name of a user or a group, and then click Check Names. If multiple names match the value you entered, you’ll see a list of names and can choose the one you want to use. Otherwise, the name will be filled in for you, and you can click OK to close the Select User, Computer, Service Account, Or Group dialog box.
6. In the Change Owner To list, select the new owner. If you’re assigning ownership of a folder, you can assign ownership of all subfolders and files within the folder by selecting the Replace Owner On Subcontainers And Objects option.
7. Click OK twice when you have finished.
Codero

Copy files from Windows Desktop to Server with Robocopy

Robocopy

Robocopy (Robust File Copy) is a command-line file copying tool included with the Microsoft Windows Server 2003 Resource Kit, free to licensed users of Windows. The tool, as with much of the resource kit, works under Windows XP as well as under the Windows Server platform.

Download Robocopy Command Line Tool for Windows 2003 and 2008 Server / Windows XP / Vista / 7
Please visit Microsoft web site to download Robocopy (rktools.exe – 11.8M). It is part of Windows Server 2003 Resource Kit.

https://www.microsoft.com/en-us/download/details.aspx?id=17657

GUI Tools:

Robocopy GUI is a free GUI frontend to the robocopy command.
RichCopy is a free new utility which offers a number of improvements over Robocopy GUI.

Let’s Encrypt for Windows Server 2012 R2

I recently added MailEnable to a Windows server and wanted to add SSL. I checked and there is an application that you can use to add the Let’s Encrypt SSL.

Quick Start
Download from https://certifytheweb.com/ and install it.
Click ‘New Certificate’, choose your IIS site (which must have 1 or more hostname bindings set). Save your settings and click ‘Request Certificate’
All done!

Some Articles and Videos on Setting Up Windows for AD, ADFS, ADCS

Microsoft Windows

Below are some articles and video that I found to be useful to set up Windows for Active Directoiry, ADFS, ADCS and AWS.

Domain Controller/Active Directory

https://social.technet.microsoft.com/wiki/contents/articles/22622.building-your-first-domain-controller-on-2012-r2.aspx

https://blogs.technet.microsoft.com/canitpro/2017/02/22/step-by-step-setting-up-active-directory-in-windows-server-2016/

https://msdn.microsoft.com/en-us/library/bb742437.aspx

Read moreSome Articles and Videos on Setting Up Windows for AD, ADFS, ADCS

Enabling Federation to AWS Using Windows Active Directory, ADFS, and SAML 2.0

Setting up and Enabling Federation to AWS Using Windows Active Directory, ADFS, and SAML 2.0. This KB assumes that you have a windows server with IIS, Active Directory, Active Directory Federation Services and Certificate Services Installed.

First, perform the following in your domain:

  1. Create two AD Groups named AWS-Production and AWS-Dev. AWS Production will have users that have administrative access and the AWS-Dev will have S3 , EC2 and RDS servies in AWS.
  2. Create users that will go into the accounts.
  3. Give the users email address (e.g., dev@myemail.com).
  4. Add users to the AWS-Production and AWS-Dev groups.

Read moreEnabling Federation to AWS Using Windows Active Directory, ADFS, and SAML 2.0