Category Archives: Windows

Creating AD Group Policies

After installing Active Directory and working with it for about a week you maybe like me and are sick of the crazy default password restrictions. The solution is to create your own group policy. To do this you just need to follow these steps:

Step 1: Disable the Default Group Policy


Step 1

In your Server Manager click Features>Group Policy Management>Forrest:Your Domain>Domains>Your Domain. Then Right click on the Default Domain Policy and uncheck Enforced and Link Enabled. This should disable the policy, but I like to disable the functions itself so click Edit.

Step 2

Within this window right click on the top Default Policy and choose Properties.

Step 3

Check the box that Disables Computer Configuration settings and Disable User Configuration settings.

Step 2: Create a New Group Policy


Step 4

Close out and right click on your domain and choose Create a GPO in this domain, and Link it here… After that a pop-up comes up and you can name it what you wish. Following that you will see it listed next to where you found the Default Domain Policy. You can right click that again and choose Edit.

Step 5

Here you need to navigate to the Password Policy as in the image and here you can edit the following rules. These rules are pretty simple, but they are to require passwords to be not used within so long in the past, not so old, not to be changed so fast, this long in length, the password is complex enough, and encryption.

Enjoy and if you have any questions comment or send me a message on from the Contact Page.

Error 0xC004C020 In Windows 2008 r2

0xC004C020 Error:

0xC004C020 error means the Activation key has exceeded its limit. If you have activated the server once, it is expected behavior.

1. Run the command “slui 4” from the Elevated Command Prompt.
2. Please choose the nearest location where you live, click next.
3. Call the Activation Department with the telephone number provided by the last step.
4. Provided them with the Installation ID and they generate a corresponding Confirmation ID.
5. Enter the Confirmation ID.

You will be able to activate the Windows Server 2008 successfully, and remove that pesky error 0xC004C02.

As always leave me a comment or contact me via the contact page.

Windows Clock/NTP Sync

For awhile I noticed that my desktop’s clock was off by about an hour and some and this finally bugged me enough to find the cure. Essentially it was my active directory server’s clock was off as well and that’s where the desktop’s clock pulls its time from. So with a few google hits I found how to force a refresh of the clock. In command line simply punch in:

w32tm /resync

Unfortunately my Windows 2008 R2 server only spit out this error after that:

C:\Users\Administrator> w32tm /resync
Sending resync command to local computer
The computer did not resync because no time data was available.

After googling around I then found a series of commands to sync to another NTP server:

C:\>netdom /query fsmo
C:\>net stop w32time
C:\> w32tm /config /syncfromflags:manual /manualpeerlist:",,"
C:\>w32tm /config /reliable:yes
C:\>net start w32time
C:\>w32tm /query /configuration

Following this all clocks were running on time for once.




TFTP Server

There are plenty of TFTP (Trivial File Transfer Protocol) servers out there and even more ways to deploy them and use them, but in this post I will go over my favorite choice TFTPd32. To begin I will explain the uses of a TFTP server, as some of you maybe asking, “Andy, why is a TFTP server even used for?” I’ll tell you! It is used for transferring files using nothing, but UDP connectionless setup. This can be extremely useful for networking equipment to transfer new IOS images or just doing configuration backups for when you have a curious college student that messes with the router a little too much during peak traffic hours, oops! Well the point of the story is if you goof up the running configuration you can easily copy from your previously setup TFTP server to your router or switch to save the day.

Alright now that we know the importance of a TFTP server in your arsenal of tools lets go over the setup and features of TFTPd32. To begin this is the site for downloading: Pick the newest, most stable, and compatible version for you and start that download. Pick the newest, most stable, and compatible version for you and start that download. Pick the newest, most stable, and compatible version for you and start that download. After it finish the download, depending on your version (either .zip or .exe), unzip it and then install it. Very basic setup and now we need to get to configuring it.

A quick note is to make sure that Server Interface drop down is set to your computer’s interface that you wish. Sometimes if you are running this program on a laptop or a server with multiple interfaces you need to have the TFTPd32 server listening on the correct interface for it to operate correctly. The settings button in the bottom middle is where we do the most configurations at. Under the TFTP tab there is a key change that needs to be made. You can see a base directory option, you change this to a more reasonable folder on your computer. There also a ton of other options to change such as the listening port, max retransmits, and creating MD5 hashes to verify the integrity of the file transfered. This is pretty much the basics of the configurations, but there is always more if you decide to tinker with.

Using TFTPd32:
Sending a IOS from your computer to a Cisco router-

Router#copy tftp flash
Address or name of remote host []? (The server interface’s IP)
Source filename []? (File Name)
***TIP: In the GUI for TFTPd32 there is button labeled Show Dir, this will show all the files in your base directory. You can select your file and click copy, then paste it your telnet session to make it easier.

Sending a running-configuration from the router to your computer-

Router#copy running-config tftp
Address or name of remote host []? (The server interface’s IP)
Destination filename [2811-cme-confg]? (File Name)

This concludes the post on TFTPd32. Thank you for your time.