The Network Stack (Page 2)

WebEx and ADFS

Implemented WebEx with ADFS 3.0 (Windows 2012R2), and found these articles helpful: https://cisco-support.webex.com/guest/articles/en_US/Usability_FAQs/WBX63102/myr=false https://digitalglue.wordpress.com/2014/02/11/configuring-cisco-webex-meeting-server-to-work-with-adfs-2-0/ But those guides do not go over configuring the sign-out process. By default, when a user

office-365

Office 365 - Powershell

Connecting to Office 365 via Powershell for the first time? Here are the steps to get started: 1. Install the Microsoft Online Services Sign-In Assistant for IT Professionals RTW 2. Install the Azure Active Directory Module for Windows Powershell (64-bit version) 3. Open Powershell and run this command the first

general

The Unspoken Truth About Managing Geeks

Interesting article on IT culture, definitely worth a read: http://www.computerworld.com/article/2527153/it-management/opinion--the-unspoken-truth-about-managing-geeks.html

cisco

CUCM IM change postgres external database

If you need to change the postgres external database for CUCM, there a few steps to follow: 1. Change database server name a. External server setup -> External databases 2. Unassign servers and disable persistent chat a. Messaging -> Group Chat and Persistent Chat b. Change "Persistant Chat Database Assigntment"

cisco

ASR 1001-X Show Transceiver

On our new ASR I was looking for a command similar to show interface 1/0/1 transceiver, but that didn't exist. Here are the commands I found relevant to the ASR: To show transceiver hardware details: #show hw-module interface g0/0/1 transceiver idprom To show transceiver temp and

active-directory

Active Directory Transfer Roles

If you need to transfer the Active Directory FSMO roles to a new server, these simple steps were easy to follow. Took about 5 minutes. http://www.techieshelp.com/how-to-transfer-fsmo-roles-graphical-and-command-line/

windows

Windows SSL Certificate Installation

The Digicert cert utility for Windows make the process so much easier: To generate the CSR: https://www.digicert.com/util/csr-creation-microsoft-active-directory-ldap-2012-digicert-utility.htm To install the Cert: https://www.digicert.com/ssl-certificate-installation-microsoft-active-directory-ldap-2012.htm For LDAPS on a domain controller, I did not have to import the cert file into the

duo-security

Duo Security - HA Radius Servers

If you are using Duo Security MFA (highly recommended), you may want high-availability for your Duo Radius servers. Duo doesn't currently have a "supported" solution for this, but keepalived worked great after a quick call to support. This is also assuming you have followed Duo's instructions to install their radius

cisco

Cisco ISR4431 Random Reboot

My ISR4431 router has randomly rebooted a couple times, finally found this field notice: http://www.cisco.com/c/en/us/support/docs/field-notices/639/fn63938.html The router is being used for light VPN duties, nothing too heavy. After upgrading per the Field Notice, all has been fine.

active-directory

Active Directory Health Check

Migrated a DC and wanted to do some basic AD health checks. From the cmd prompt (domain joined pc with sufficient privileges or on the DC): Replication Info: repadmin /replsummary repadmin /showrepl Query FSMO role holders, which should confirm that they are online: netdom query fsmo General Server Diagnosis: dcdiag

cisco

Cisco Router Packet Capture and Export

I've recently had to troubleshoot some SIP calls going through a Cisco router (CUBE) and needed a way to capture the stream and view it easily. To do this, you will need: 1. CLI access to the router 2. Wireshark installed on your PC 3. tftp server installed on your

cisco

Cisco CUCM/CUBE SIP Troubleshooting

Some quick notes on troubleshooting tools in a Cisco SIP Call Manager environment: Commands on the CUBE router: show call active voice compact debug ccsip messages debug voip ccapi inout Article on understanding SIP traces: https://supportforums.cisco.com/document/113271/understanding-sip-traces SIP call flows and troubleshooting: https://supportforums.cisco.

cisco

Nexus C9372PX NX-OS Upgrade

Recently upgraded a pair of C9372PX switches with the following commands: 1. Copy new .bin file over to switch copy scp://username@scpserverIPaddress//n9000-dk9.7.0.3.I1.2.bin bootflash:n9000-dk9.7.0.3.I1.2.bin 2. Show the impact of installing the new version show install all

singlewire

Singlewire Informacast Upgrade

Upgraded from Informacast 9.0.2 to 9.1.1. Upgrade was very simple and went smoothly following these instructions: https://www.singlewire.com/help/advanced/cucm/Administer_the_Virtual_Appliance/Virtual_Appliance_Upgrade_Process/Install_New_Software_Package(s).htm Observations: 1. If you are doing this upgrade from

cisco

Jabber for iPhone Move to Mobile

I noticed on the Cisco Jabber for iPhone app there is a "Move to Mobile" option when you are on a VoIP call. This feature did not work for me initially, so here are my steps to get it working. 1. User Profile: Make sure "Enable Mobility" is checked 2.

ruckus

Ruckus ZoneDirector HA Firmware Upgrade

The process to upgrade your Ruckus ZoneDirectors in a Smart-Redundancy (HA) pair is extremely simple. 1. Login to the shared management interface (or the active ZD) 2. Navigate to Administer -> Upgrade and browse for the new firmware file on your desktop 3. Once uploaded, the browse button now says

windows

Export User List of AD Security Group

If you need to get a list of all members in an AD Security Group, open up powershell and try the following commands from a DC: 1. This command will list all the members and the OU structure they below to: dsquery group -name "GroupName" | dsget group -members 2. Add

cisco

CUCM Phone Firmware Update

1. Go to cisco.com, search for your phone model and download the relevant firmware 2. Copy firmware to a SFTP server (I run Solarwind's free SFTP server on my laptop) 3. Log into CUCM Pub: OS Administration->Software Upgrade->Install/Upgrade->Remote Filesystem 4. Go through the steps to

cisco

Cisco CUCM, CUPS, Unity Upgrade to 10.5.2

I recently upgraded a Cisco Call Manager environment from 10.5.1 to 10.5.2, and since I had to figure out all the upgrade steps, I figured I'd post my process. I used the upgrade guide found here: Cisco Upgrade Guide 1. Login to CM Publisher Disaster Recovery

vmware

Backup VMware Virtual Machines

If you need a free, open-source alternative for backing up your virtual machines, look no further than XSI Backup. Before I did an upgrade to some VM's I wanted to completely back them up (not just a snapshot), so I downloaded XSI Backup here: http://sourceforge.net/projects/xsibackup/ Once

palo alto networks

Palo Alto Firewall LDAP Failover

With the default LDAP settings on a Palo Alto firewall, failing over from one LDAP server to another may not work correctly. You need to tune the LDAP timers and retry intervals down to a lower level. The settings I used are: Time Limit: 3 Bind Time Limit: 4 Retry

call-manager

CUCM LDAP Sync Based on User Group

If you don't want CUCM to sync your entire LDAP directory, you will need to use a LDAP Custom Filter. This filter can be used to sync based on AD Security Group. The filter is: (&(objectclass=user)(!(objectclass=Computer))(!(UserAccountControl:1.2.840.113556.1.4.803:=2)) (memberOf=CN=

call-manager

Cisco Mobile and Remote Access via Expressway

Deployed Cisco Expressway C & E for a CUCM deployment, and found these guides most helpful: Installing the VM on vSphere: http://www.cisco.com/c/dam/en/us/td/docs/voice_ip_comm/expressway/install_guide/Cisco-Expressway-Virtual-Machine-Install-Guide-X8-1.pdf Configuration and Deployment Guide: http://www.cisco.com/c/dam/en/us/

call-manager

Cisco IM&P Chat Room Postgres Server

If you want to implement chat rooms/persistent chat or chat logging with Cisco IM and Presence, you need to setup an external postgres server. The setup is relatively easy (I used a ubuntu server), and can be found here. The problem I came across was that while testing, I

call-manager

Cisco CUCM TFTP server

If you want to view the files loaded on your CUCM TFTP server, you don't have to download and open the file. Just navigate to http://cucm-ip-address:6970/file.xml For example, if I wanted to view my jabber config, I would go to: http://cucm-ip-address:6970/jabber-config.xml Alternatively,