Configuring VPN connection on server 2008 R2 using RRAS and configuring clients

One colleague ask me to help him with detailed steps how to configure VPN on server 2008 R2 and how to configure Windows XP and Windows 7 clients. So here it is.

Configuring VPN on server 2008 R2

Configuring VPN start with adding server role for RRAS.

Just follow next two pictures what to choose

Capture1

Capture2

Wait for wizard to finish, and then you will get this picture

Capture3

Now you have role installed. You must configure and enable RRAS

When you click on option Configure and Enable RRAS new wizard will start. Just follow the wizard in next 5 pictures.

Capture4Capture5Capture6

NOTE: You MUST have two NIC configured, one for internal use (LAN) and one for external use (WWW)

Capture7

Capture8

I prefer to choose IP address range and number of possible connecting clients son next picture will shown how to do that

Capture9

Capture10

If you have AD infrastructure configure your RRAS like this

Capture11

After this you will get this picture and click Finish

Capture12

Now your Server have successfully configured RRAS. Smile

Capture 14

Configuring client on Windows 7  for VPN access

Go to network and sharing center and choose option set up a new connection or network

Capture

Choose option Connect to a workplaceCapture2

For previously described configuration of RRAS option Use my Internet connection (VPN) will be right choice.

Capture3

Type your DNS name of RRAS server or public IP address, and follow steps in next three pictures.

Capture4Capture5Capture6

Additional option as authentication protocols can be founded in properties of your VPN connection. Most commonly used is already checked.

Capture7

Configuring client on Windows XP for VPN access

On Windows XP go to Network Connections and click Create a new connectionCapture1

A wizard will start. Follow next three pictures.

Capture2Capture3Capture4

Choose name for your VPN connection

Capture5

Type DNS name or public IP address of your previously configured RRAS (VPN) server

Capture6

Well done you are configure client for VPN access. Now you need to type your username and password before connect.

Capture8

Steps for configuring additional authentication protocols (if needed) is described in next two pictures. At first you must click Properties.

Capture9Capture10

I hope that this is helpful

BR

D.

How to delete EISA recovery partition from Windows

 

I had problem with deleting EISA partition on several old disks from IBM/LENOVO computers. Usually solutions was to contact manufacturer for some tools but I found this solution on www.mydigitallife.info

Solution is for Windows Vista but it also works on Windows XP.

Here is quotation of solution:

Here’s the trick to delete and remove the EISA recovery or diagnostic partition in Vista. Before proceeding with the deletion action, make sure that at least a set of Recovery Disc Media has been created. Else, you won’t be able to restore your computer to working and factory default condition when any problem on PC requires reinstallation.

  1. Open a command prompt as administrator.  (On Windows XP just open Command Prompt)
  2. Run Diskpart application by typing Diskpart in the command prompt.
  3. In the “Diskpart” prompt, enter rescan command and press Enter key to re-scan all partitions, volumes and drives available.
  4. Then type in list disk and press Enter key to show all hard disk drive available.
  5. Select the disk that contains the partition you want to remove. Normally, with just 1 hard disk, it will be disk 0. So the command will be:

    select disk 0

    Finish by Enter key.

  6. Type list partition and press Enter key to show all available and created partition in the disk selected.
  7. Select the partition that wanted to be deleted by using the following command, followed by Enter key:

    select partition x

    where x is the number of the EISA based recovery partition to be removed and unlocked its space. Be careful with the number of this partition, as wrong number may get data wipes off.

  8. Finally, type in delete partition override and press Enter key.

Once the partition has been deleted, exit from Diskpart, and now users can use the much familiar and much easier Disk Management tool in Windows (diskmgmt.msc) to manipulate the freed unallocated partition. Users can create a new volume (partition) with this space, or simply merge it to existing partition by extending the size of the existing partition.

 

And here is picture of diskpart

Diskpart Window

SCCM Client won’t show device is server console

Usually when You install SCCM 2012 client after few minutes device appear in console view. But what if device wont show after couple restarts? (couple days)

I don’t know why this error occurred but, this is steps for resolving problem.

No Site Configured

At first, you must check connectivity to SCCM 2012 server. If connectivity is ok and you can reach server by its name do this.go to tab SITE

go to tab SITE

Site Configuration

Write number of assigned site and press Find Site

You will receive notification that Configuration Manager has successfully find site to manage this client

Site COnfigured

Check General tab again now it looks like this

Site showed up in Config client

Notify that you still don’t have “Client certificate” and “Connection Type”

But after few minutes everything is fine

After Few minutes

Your client is now visible in your SCCM console and you can manage it.

Deploying Windows XP SP3 without GPO and WSUS

If You are managing wide infrastructure of your organization You could be unpleasantly surprise that Windows XP SP3 is not deployed to every Windows XP machine.

For some reason WSUS is not an option and GPO is upgraded to Windows Server 2008 R2 functionality. What You will do?

Using GPO is not an option because of too much configuration and lot of requested modification.

Using of logon script could be a point.

Requests is that you can deploy and install Windows XP SP3 without disturbing users.

At first we must create temporary user with administrative rights

After that we must download lsrunas tool. We will use it for passing the password. You can download it from here.

After that we will put Windows XP SP3 (WindowsXP-KB936929-SP3-x86-ENU) in network share accessible for domain users.

Check that every user can see it.

Create .bat script with following parameters

lsrunas.exe /user:tempadmin /password:password /domain:domain /command:xpsp3.cmd /runpath:

Create .cmd script with parameters:

net use x: /delete /y (where x is logical name of ntw share where SP3 is)

net use x: \\server\share ( reconnect share)

x:

cd sp3 (where Sp3 is name of directory where .exe file is)

WindowsXP-KB936929-SP3-x86-ENU.exe /quiet /promptrestart

Job done.

You can use this switches:

[/help] [/quiet] [/passive] [/norestart] [/forcerestart] [/warnrestart] [/promptrestart] [/overwriteoem] [/nobackup] [/forceappsclose] [/integrate: ] [/d: ] [/log: ]
/help Displays this message
SETUP MODES
/quiet Quiet mode (no user interaction or display)
/passive Unattended mode (progress bar only)
RESTART OPTIONS
/norestart Do not restart when installation is complete
/forcerestart Restart after installation
/warnrestart[: ] Warn and restart automatically if required (default timeout 30 seconds)
/promptrestart Prompt if restart is required
SPECIAL OPTIONS
/overwriteoem Overwrite OEM files without prompting
/nobackup Do not backup files needed for uninstall
/forceappsclose Force other programs to close when the computer shuts down
/integrate: Integrate this software update into
/d: Back up files into
/log: Create log file at