This one courtesy of the amazing Mike Hunsinger.
- Run the web site SSL test here, specifying the URL to study:
https://www.ssllabs.com/ssltest/
- A rating of A through F, or T, will be reported. T means a fundamental problem with the certificate install itself.
An A rating means the server is set to only accept protocols such as TLS1.2, that are currently recognized as secure. Anything below an A rating means the server responded on SSL or other protocols considered insecure.
Scroll down on the SSL Labs rating page to see the technical details on what protocols were detected and which are failing security checks.
If this is a Windows web server, remote in and:
- Download the portable app, IISCrypto from here:
https://www.nartac.com/Products/IISCrypto/Download
Run this program on the server which hosts the website.
You’ll get a window showing all protocols that are on this server and whether they’re enabled or not. To achieve an A rating, use the details view from SSL Labs as a guide. Disable any protocols in IIS Crypto that SSL Labs flags as a security risk. Only do these after verifying that the web site / web application will certainly work with the newest protocols and does not depend on the older ones.
The protocols that a Windows webserver will accept are specified via Regedit entries. IIS Crypto reads and modifies these Regedit entries automatically.
- Reboot the webserver. Then retest with SSL Labs. Make further changes as dictated by the scoring detail.
- If you have control over workstations, use Group Policy to deploy the certificate to all of them, and to disable insecure protocols, and to enable the secured protocols.
If you see this while trying to share a calendar to another Exchange or Exchange Online user, thus far this has been seen to be caused by (a) duplicate Permissions user entries in the calendar, and (b) user entries in the calendar belonging to deleted, disabled, or otherwise invalid user accounts. Remove the duplicates or invalids, and it goes away!
Excellent site, even lets you select tracks out of the MIDI file you send up:
https://solmire.com/
Methods for both O365 web console and PowerShell, right here:
https://community.spiceworks.com/how_to/102462-office365-all-users-distribution-group
Notes:
- Checking the contents works perfectly in PowerShell, not always in Outlook.
- Users who default to the offline address book in Outlook, may have to download the Global Address List or wait a day. Downloading is accomplished within Send/Receive; in 2016 open the dropdown “Send/Receive Groups” and choose “Download Address Book”. There are Office 365 configurations in which this dropdown item does not exist.
It’s called the “Microsoft Office Configuration Analyzer Tool”, or OffCAT. Courtesy of the excellent Kaleb Carrol.
https://www.microsoft.com/en-us/download/details.aspx?id=36852
“Free and open source software for video recording and live streaming. Download and start streaming quickly and easily on Windows, Mac or Linux.”
https://obsproject.com/
Microsoft-provided removal tools for Office. A new page for 2007 through 2016:
https://support.office.com/en-us/article/Uninstall-Office-from-a-PC-9dd49b83-264a-477a-8fcc-2fdf5dbf61d8?ui=en-US&rs=en-US&ad=US
Fix-Its now exist for Office 2010, 2007, and 2003:
http://support2.microsoft.com/kb/971179
A utility for manual removal of Office versions at and before XP, is reportedly in the 2003 Office Resource Kit, confirmed available at the link below as of right now, although the installer appears to crash:
http://download.microsoft.com/download/0/e/d/0eda9ae6-f5c9-44be-98c7-ccc3016a296a/ork.exe
To set a Windows NIC to full DHCP via netsh, do this, replacing “Local Area Connection” to the name of the NIC if it’s not the same:
netsh interface ip set address "Local Area Connection" dhcp
netsh interface ip set dns "Local Area Connection" dhcp
netsh interface ip set wins "Local Area Connection" dhcp
Sometimes, if WINS is set static, you have to do this before WINS can be set DHCP:
netsh interface ip set wins "Local Area Connection" static none
