THE OFFICIAL BLOG OF THE SBS "DIVA"

http://msmvps.com/blogs/bradley/archive/2009/10/30/so-what-about-those-action-pack-licenses.aspx

It's been several days and I still don't have any word one way or the other about the status of those folks in the MPAN program that no longer "fit" into the new Microsoft Partner Network.

And I'm not feeling good about the fact that the gentleman from the MPN phone number 800-765-7768 hasn't called me back when he said he would the following day.  The problem with dealing with a large blob of a corporation is that it's hard to find the right person to talk to and when you call into 800 numbers you may not be in the right spot to get an authoritative answer.

First off to anyone who signed up for MPAN or who urged their clients to sign up for MPAN, especially if it was due to something I posted, I'm sorry. I'm not feeling good if you did so on my recommendation and now this occurred.  If I were even a moderately rich person, any CPA who was in this limbo state of not possibly now being licensed properly, I'd offer to buy them licenses.  But I can't afford that.  All I can do is say I'm sorry and be more wary about marketing based offers next time.

I still hope that someone in a position of power will understand the situation here and waive the licensing for these impacted folks and just let them continue to use the existing Action pack licenses and grandfather their use rights.  I only hope that someone at Microsoft understand that it's not good business to design a marketing plan for a product that entices folks into a software licensing offer that was designed to get CPAs to be interested in an accounting product, that if they can now no longer qualify for, means that it's a big chunk of change that suddenly comes due that no one was anticipating.  Especially now in this economy.

My firm is not in this category of being affected, because I kept on recommending that we buy the Software assurance via the 3 year licensing.  So maybe that makes me a bit of an ingenuous person since if I kept recommending 'normal licensing' to my firm, in the back of my mind, I guess I always had a doubt that Office Accounting would never stand a chance and that some day Microsoft would pull back on the MPAN program and folks would be left high and dry.

Some of these CPA firms do have an IT side of them, do have folks that are SBSCs, do qualify to be in a competency in the Microsoft Partner Network.  Those firms are not at risk because the qualify as a "traditional" Microsoft Partner.  Either in general IT, or in Microsoft Dynamics, they will fit.  But if they fit, it's probably because they always fit as they had an IT niche.  

But it's the folks that are only in the program because Office Accounting thought they'd go after Quickbooks that concern me.  It's these folks, a small group of people that I just can't see fitting anymore into the Microsoft Partner Network.  Their primary focus was and still is Quickbooks and not the Dynamics stack.  I can't see where they fit into the Microsoft Partner Network.  Microsoft can say 'well we separated out the Action pack, Microsoft Partner network and the MPAN program about a year ago'. 

That's all fine and good, but Microsoft, you don't treat your customers like this.  It's not their fault you took on the 80 pound Gorilla of Intuit and you lost.  It's not their fault the economy kicked in and someone decided to retrench. It's not their fault they are not caught in the downsizing, layoffs and product cutting that Microsoft is into now. 

But it is Microsoft's fault that even with the layoffs you are still so big that I can't find the answer, and we're still in limbo. 

I'm still hoping that someone in a position of power will do the right thing and grandfather folks that were in the MPAN program and allow their licenses to be in perpetuity just this one time.  I honestly don't think it's too much to ask for given the circumstances of the reason for the closing of the MPAN program.  I'm hoping that like in most instances of dealing with Microsoft, that silence I'm getting means that someone somewhere is taking action.

I hope.

http://technet.microsoft.com/en-us/sysinternals/ee656415.aspx

Testing this out.  Have a HP ML370G4 that has a physical install of SBS 2003 on a raid/hardware system.  Have a HyperV on an HP ML370G6.  In a test run (where I screwed up because I didn't understand that I needed to ensure I copied the VOLUME which included both an Exchange data drive and a data data drive) I booted up the resulting VHDs and they didn't BSOD with the move.

Mind you they had ghosted nics so that's to be totally expected, and easily removed from the machine and then a rerun of the CEICW and that box was basically a running system.

How to remove ghost nics on vmware machines that have been P2Ved « Ramblings of a semi sane person:
http://secadmin.wordpress.com/2009/02/11/how-to-remove-ghost-nics-on-vmware-machines-that-have-been-p2ved/

Step 1: Open up a command prompt

Step 2: Type – “SET DEVMGR_SHOW_NONPRESENT_DEVICES=1″ and hit

Step 3: Type – “START DEVMGMT.MSC” and hit

Step 4: Once the Device Manger opens to the “View” menu and select “Show Hidden Devices”. Expand the Network Interface portion of the device tree and you should be able to remove the phantom NIC.

I'm doing it again as I need the second volume copied, and it will want reactivation in three days because I just ripped it off the hardware it was tied to, but it appears to do a physical to virtual without causing a bsod.  I'll do a longer blog post explaining the process tomorrow.

The other thing you can use this for (assuming the proper XP movable licenses) is that you can PtoV and make a real XP that XP Mode underneath that Windows 7.  Kinda kewl huh?

So I'd always heard about this, not seen this in action... well now I did today.  Nvidia video driver and AFTER the installation of .NET family patch (that I had been holding off installing) I could no longer remote to a machine.  I would rdp and the windows would immediately come back.

When remotely connecting to the event viewer I saw this:

Mind you, nothing was actually being seen on the workstation in question, I just couldn't connect to it after the install of the .NET family update. (951847 - http://msmvps.com/blogs/bradley/archive/2009/11/02/net-patch-gets-offered-up-all-by-itself.aspx)

Brad Rutkowski's Blog : \SystemRoot\System32\RDPDD.dll failed to load:
http://blogs.technet.com/brad_rutkowski/archive/2008/01/04/systemroot-system32-rdpdd-dll-failed-to-load.aspx

Getting a new driver didn't help, I had the latest driver.

Only the registry fix worked:

It's a registry fix that increases the size of the session image space.  Add the following key:

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management]

"SessionImageSize"=dword:00000020

Where 00000020 is hex for 32

Tonight to answer the door of the trick-or-treaters I'm answering the door as Danica Patrick's older, less sexy, sister that is a Mini Cooper race car driver.

Okay so it's a stretch, I'll admit, but with a Mini Cooper racing shirt and a black wig, what do you expect?

I'm also remoting back into the office and doing the annual "what icons landed up on the desktop" review of the desktops.  While most of us do remote work as a matter of ease and efficiency, sometimes the only time you see issues is looking at the actual desktop.  So I'll take my secondary admin account and log into the workstations remotely and see what icons are there.  See if there's patches that WSUS or Shavlik missed, see if the event viewer looks good.  While I have remote tools that also pull this info, sometimes actually LOOKING at the desktop is like most picture experiences, a picture is worth a thousand words.

In my case, that picture of Danica is worth way more than what I look like in my Mini Cooper get up.

Check out my pumpkin! http://halloween.cloudapp.net/pumpkin/98338f63-ccce-4ee0-a7bd-3ff27ae837d8

Well look at the bright side.  There's no icky disgusting azure and silverlight seeds to scoop out and throw away now is there?

http://blogs.msdn.com/bardak/archive/2009/10/30/happy-halloween-from-the-silverlight-team-and-archetype.aspx

>>> NEW TOOL: Exchange Remote Connectivity Analyzer <<<:
http://social.microsoft.com/Forums/en-US/partnermsgexchange/thread/421c8eb2-7579-4806-a276-3aaeb90a10a4

Announcing the release of Exchange Server Remote Connectivity Analyzer for Exchange 2003, 2007, and 2010: https://www.testexchangeconnectivity.com/

Client connectivity and inbound email scenarios make up a significant portion of the Exchange support calls.  This tool will allow you to remotely test the following client types and services:

Exchange ActiveSync

Windows Mobile 5, 3rd party devices

Windows Mobile 6.1+ with AutoDiscover

Outlook Anywhere (aka RPC/HTTP)

Outlook 2003

Outlook 2007 with AutoDiscover

Inbound SMTP

The tool will simulate the protocol logic used by the specific client and not only tell you if the scenario was successful, but if it fails, it will tell you exactly where in the process it failed as well as try to guide you to the problem resolution.

HELPFUL LINKS:

More information https://www.testexchangeconnectivity.com/Pages/ChangeList.htm

Exchange team blog http://msexchangeteam.com/archive/2009/03/25/450908.aspx.

Exchange Remote Connectivity Analyzer Forum: http://social.technet.microsoft.com/Forums/en-US/exrca/threads

Provide feedback to exrcafb@microsoft.com

So I got a question today as to whether or not Exchange 2007 sp2 should be installed on a SBS 2008 box.

And I said:

1. there's an icky KB you have to work through

2. it breaks the sbs sites without the kb

3. IMHO it doesn' add any value (the Exchange backup we already have)

4. You wanna keep a test box for the sp2 wrapper that they will be building out

5.  You want to wait for that sp2 wrapper that they will be offering up for SBS boxes

There is no reason limited reasons that I can see at this time to be installing SP2 for Exchange 2007 on SBS 2008.  Thus don't. consider it carefully.

EDIT - it has been pointed out that Powershell v2 is not supported on SBS without Exchange 2007 sp2.  Thus for those folks who envision themselves on a remote beach in Bora Bora, sipping fruit drinks with umbrellas on them and using remote Powershell v2 commands to administer their Exchange 2007 sp2 boxes, you "may" want to consider going through the KB and apply the service pack.

The rest of us grunts may want to wait until the wrapper comes out.

http://msmvps.com/blogs/bradley/archive/2009/10/30/mpan-program-closed.aspx

So the bigger and more important question is ...what about the action pack license that was allowed to be purchased by CPAs as a result?  Are they still licensed?  Can they renew?  Can they keep the licenses or do they have to buy all new Server and OS licenses to make themselves legal?  [notice I'm using the word they as I've kept my firm buying software assurance for the server all this time and didn't use the action pack for the firm]

I don't know the answer to that one.  Stay tuned.

[and shame on the Office Accounting team that didn't anticipate that this would be the bigger question of the morning]

Dear valued MPAN member:

 We are writing to let you know that Microsoft^® Office Accounting will no longer be distributed by Microsoft after November 16, 2009. As such, MPAN membership will also be closed to new members effective November 16, 2009 and the complimentary download of Office Accounting Professional 2009 and the Office Accounting Customization will be discontinued November 16, 2009. Some existing MPAN benefits, such as online on demand training, will remain.

 We would like to thank the many dedicated users and partners who have been enthusiastic supporters of Microsoft Office Accounting and MPAN over the years.

 As a registered Office Accounting user, you may continue to use Office Accounting after November 16, 2009 and Microsoft will continue to offer product support for Office Accounting in accordance with the terms of the support policy. Your current MPAN membership entitles you to unlimited phone support through January 15, 2011.

 To learn more about other Microsoft offerings that can be useful to your business, please visit the following:

   -   Microsoft's Small Business site is a great resource for small businesses.

   -   Microsoft Office is a great tool for small businesses, especially when used with our easy-to-use templates.

   -   Microsoft Dynamics products offer adaptable business management solutions, and we invite you to visit the Microsoft Dynamics Community Web site, which offers role-based content, including a Finance sub-community, product forums and networking functionality.

 Please refer to MPAN FAQs for more information on MPAN benefits going forward.

 If you have further questions about Office Accounting changes, including changes to add-on services, additional information can be found on the Office Accounting FAQ page.

 Again, we thank you for your support of MPAN and Office Accounting. 

MPAN US Team

So an interesting topic came up recently.  As a professional with clients and an industry that expects confidentiality, for those that are consultants in this space, do your clients require you to sign a confidentiality agreement?  Do you offer it up in your contract that you supply to them?

If you don't you should.  If they aren't asking you this, they should.

When you work on their network you are an extension of their access.  If you have admin rights, even more so. 

SANS policy center has a sample access policy here:

http://www.sans.org/security-resources/policies/Third_Party_Agreement.pdf

And here's a sample policy at my firm for temporary employees....

1.  CONFIDENTIAL INFORMATION

In the course of the discharge of your duties, you may have access to and become acquainted with confidential information and trade secrets relating to the Firm’s business and clients.  Such confidential information and trade secrets include, without limitation, information concerning the Firm’s financial, personnel, sales, planning and other operations that are owned by the Firm and regularly used in the operation of the Firm’s business.  Access to such confidential and trade secret information should be on a “need-to-know” basis only and must be authorized by those Supervising you.  Any breach of this policy will not be tolerated and may lead to discipline up to and including immediate termination and, under certain circumstances; the Firm may take legal action.

2.  INSPECTION AND SEARCH POLICY

All furniture, equipment, computers, files, etc. on the Firm’s premises are the Firm’s property and must be maintained according to the Firm’s rules and regulations and should only be used for work-related purposes.  The Firm has implemented an inspection and search policy to protect against the unauthorized removal of Firm property from its premises, to keep alcohol and illegal drugs off the premises, and for general safety reasons.

Therefore, the Firm reserves the right to inspect and/or search any item brought onto Firm premises.  This includes, without limitation, any laptop or personal computer, or any package, lunch, toolbox, purse, briefcase or other personal item the employee may bring on the premises.  The Firm also reserves the right to monitor the use of its computer system and electronic communications devices, such as the voice mail system and fax machine, and reserves the right to access, review, copy, delete and disclose any personal information contained on any Firm electronic communication device or on its computer system, including Firm-owned PCs used by individual employees.

Any such inspection and/or search may be done with or without notice and with or without your consent.  Your refusal to cooperate in an inspection and/or search may result in termination.
    
If you do not want any personal item inspected and/or searched pursuant to this policy, you should not bring such item onto Firm premises or property.  Additionally, you should not use the Firm’s computer system, e-mail system, voice mail system, or fax machine for any personal information they wish to keep private, as the Firm treats all such information as business information and it will be treated no differently than other business information.  

3.    ELECTRONIC COMMUNICATION DEVICES POLICY

The Firm uses various forms of electronic communication devices, including, but not limited to, computers, e-mail, telephones, voice mail, and fax machines.  All electronic communications, including all software and hardware, are the sole property of the Firm and are to be used only for Firm business to transmit or receive business information and are not to be used for personal use.  The Firm treats all messages sent, received or stored in any of the electronic communication devices as business messages.  The Firm reserves the right to access and review, copy or delete electronic files, voice mail messages, etc., for any purpose and to disclose them to any party (inside or outside the Firm) it deems appropriate.  The Firm further reserves the right to monitor the use of electronic communications as is necessary to ensure that there is no misuse or violation of Firm policy. Use of any of the Firm’s electronic communications devices in violation of this policy may lead to discipline up to and including immediate termination.

Should you make incidental use of the e-mail system, fax machine, etc., to transmit personal messages, such messages will be treated no differently than other messages, i.e., the Firm reserves the right to access, review, copy, delete or disclose them for any purpose.  Accordingly, you should not use the computer, e-mail system, voice mail system, or fax machine for any personal information they wish to keep private.  

The Firm’s e-mail system permits employees to communicate with each other internally and with selected outside individuals and companies that the Firm, in its sole discretion, decides should be connected to the system.  Users should treat the computer and e-mail systems like a shared file system -- with the expectation that messages sent, received or stored in the system (including any individual hard disks) will be available for review by any authorized representative of the Firm for any purpose.

Confidential Information

Essentially, Firm e-mail messages should be treated in the same way as other Firm confidential printed material.  There are three common circumstances where confidentiality can be breached:

An employee leaves the e-mail program running on his or her screen, or leaves an e-mail message on his or her screen.  In either case, this allows others to view e-mail messages should they sit at the employee’s computer.

A confidential message is printed on a printer in an employee’s office or perhaps on a shared printer down the hall.  Anyone with access to that printer can view this document.

An e-mail message is inadvertently sent to someone who was not intended to receive it. Caution should be exercised regarding any confidential message before it is sent.  

Caution should be used when using the Internet.  The Internet is a convenient, cheap way to send business communications that are not security risks or time sensitive.  You should not rely on the Internet for critical communications due to the possibility of compromise.

Users must exercise a greater degree of caution in transmitting Firm information on the e-mail system than they take with other means of communicating information, (e.g., written memoranda, letters or phone calls) because of the reduced human effort required to redistribute such information.  Confidential information should never be transmitted or forwarded to outside individuals or companies not expressly authorized to receive that information and should not even be sent or forwarded to other users inside the Firm who do not need to know the information.  Always use care in addressing e-mail messages to make sure that messages are not inadvertently sent to outsiders or the wrong person inside the Firm.  In particular, exercise care when using distribution lists to make sure that all addressees are appropriate recipients of the information.  Lists are not always kept current and individuals using lists should take measures to ensure that the lists are current.  If highly confidential information needs to be transmitted, please contact IT Administrator, for assistance in sending confidential information via encrypted means.  It is against Firm policy, and possibly the law, to e-mail information that contains social security numbers.

E-Mail Security and Computer Security

The security on the Firm e-mail system and other computer programs is as good as password security can be.  If your network and e-mail passwords are easy to discover, your e-mail may easily be accessed by anyone with that intention.  It is strongly advised that you not use their first or last name, the Firm name or other such passwords.  It is also advisable that employees change their passwords periodically.  

Viewing and Protecting E-Mails

In order to guard against dissemination of confidential information, users should not access their e-mail message for the first time in the presence of others.  E-mail passwords (as well as other computer passwords) should be routinely changed every ninety days and will be reset by the Network Administrator.  

Copyrighted Information

Use of the e-mail system to copy and/or transmit any documents, software, or other information protected by copyright laws is prohibited.

E-Mail Etiquette

Please bear in mind that your e-mail messages may be read by someone other than the addressee you sent them to and may even someday have to be disclosed to outside parties or a court in connection with litigation.  Accordingly, please take care to ensure that your messages are courteous, professional and businesslike.

Other Prohibited Uses

The Firm prohibits use of the e-mail system or the Firm computer system to engage in any communications that are in violation of Firm policies including, but not limited to, transmission of defamatory, obscene, offensive or harassing messages, or messages that disclose personal information about other individuals without authorization.




Storing and Deleting E-Mail Messages

The Firm strongly discourages the storage of large numbers of e-mail messages for a number of reasons.  First, because e-mail messages frequently contain confidential information, it is desirable to limit the number, distribution and availability of such messages to protect the Firm’s information.  Second, retention of messages fills up large amounts of storage space on the network server and personal hard disks, and can slow down the performance of the network server, backup tapes, or individual hard disks for genuinely important documents.  The fewer documents the Firm computer has to search through, the more economical the search will be.

Accordingly, it is Firm recommendations that you do not retain e-mail messages in their electronic inboxes longer than 90 days.  Messages older than 90 days are recommended to be deleted from the your electronic mailbox.

Internet Access

The Internet offers a vast amount of easily accessible information to those who access it. The Firm is linked to the Internet to allow all members of the firm access to information and resources for Firm purposes and in order to enable you to perform their job duties more efficiently.  Anyone accessing the Internet for non-Firm purposes must obtain authorization in advance and in writing.  Any “downloading” from the Internet by employees for their personal use must be authorized in advance and in writing.  Accessing pornographic, offensive or other inappropriate information in violation of Firm policy is expressly prohibited and may lead to discipline up to and including immediate termination.  You are urged to use common sense and judgment.


Personal Programs, Screen Savers, Wallpaper and Games

You may not load or unload any programs on the Firm’s computer system without management approval. Any unauthorized personal programs, screen savers, wallpaper or games found on the computer system will be removed from the system without contacting you. Unauthorized loading or unloading of programs may result in disciplinary action up to and including termination.

Hacking

Anyone caught “hacking,” introducing a “virus” or foreign agent, or attempting to pierce the Firm’s security arrangements on the Firm’s computer system will be subject to immediate termination.

Firm Information

Anyone who removes information concerning the Firm or the Firm’s clients or employees from any part of the Firm’s computer system and uses that information for personal reasons is subject to discipline, up to and including immediate termination




4.    E-MAIL MANAGEMENT AND RETENTION POLICY

The Firm’s electronic mail (“e-mail) system allows everyone in the firm to communicate with each other internally and with outside individuals, companies and agencies in order to conduct the Firm’s business.  It is your responsibility to manage and protect the Firm’s business records resulting from all e-mail communications.  

E-mail messages on the Firm’s computer system, including personal e-mail messages, will be treated in the same manner as any other correspondence received by the Firm.  For example, regular mail of importance is kept, whereas junk mail is discarded.  The Firm reserves the right to access, review, copy, delete or disclose them for any purpose. Accordingly, you should not use the Firm e-mail system to transmit personal information you wish to keep private.      

All e-mail communications are subject to discovery during legal proceedings and can be used as electronic evidence in the event the Firm is involved in litigation.  Furthermore, unmanaged and unidentified e-mail messages residing on the Firm’s computers may pose a threat to the Firm’s ability to document and reconstruct business and decision-making processes.  

The following policy advises you of your responsibilities regarding the routine removal of messages from electronic file folders, and the storage and retention of e-mail communications which constitute official Firm records.

E-mail messages generally fall into three categories:

1.    Records which document the business of the Firm, such as those involving clients.  These types of e-mail should promptly be printed and a hard copy should be placed into the relevant subject matter file.  Internal e-mails pertaining to internal Firm business and employee and personnel matters will be kept by the Personnel Manager.
    
2.    Messages that have a limited or transitory value to the Firm, such as a message announcing the date and time of a meeting, need not be saved pursuant to this policy.  Retention of such messages serves no purpose and takes up space.  Such messages should be deleted as soon as they no longer serve an administrative purpose.  However, if the purpose of the meeting were to discuss a particular Firm project or client, the e-mail would be considered a business record and should be treated as such.
    
3.    Non-records, such as personal e-mails.  These types of e-mail messages should promptly be deleted from the electronic inbox.   

It is Firm recommendation that you may not retain e-mail messages in their electronic inboxes longer than 90 days.  Messages older than 90 days are recommended to be deleted.  If the e-mail message pertains to Firm business, a printed hardcopy of the e-mail message must be retained for the Firm’s files.  If an e-mail is sent internally, the person who sent the e-mail is responsible for ensuring that a printed hard copy of the e-mail is put in the appropriate file.  The same is true of e-mails sent to persons outside the Firm.  With respect to e-mails received from outside parties, the person to whom the e-mail is addressed is responsible for ensuring that a printed hardcopy of the e-mail is placed into the appropriate file promptly upon its receipt.   

If you are unsure as to whether to retain a particular e-mail message or the appropriate file to which it belongs, please check with the Personnel Manager.  


4.    ANTI-VIRUS AND ANTI-SPYWARE POLICY

The Firm provides corporate antivirus and antispyware software for all attached workstations.  Anyone found disabling or tampering with that antivirus software will be subject to disciplinary actions.  

Files or macros attached to an e-mail from an unknown source should not be opened.  These should be deleted from the system immediately and deleted from the “trash” folder.  

If a file that has been blocked by the e-mail system due to its potentially hazardous attachment and the sender is known and the e-mail is expected, contact the IT Administrator for access to this e-mail.  

Users who work at home on Firm projects are required to maintain antivirus, antispyware and firewall protection on their home computers.  If such protection is not already on a user’s home system, contact the IT Administrator for inexpensive resources for this home protection.

Delete spam, chain and other junk mail and do not forward any e-mails regarding potential viruses.  Many times these are hoaxes and should not be forwarded.

5.    PASSWORD POLICY

The Firm will change employee passwords on an as needed basis.  It is recommended that the following guidelines are used when setting up any Firm password:

•    The password should not contain less than eight characters.
•    The password is a word not found in a dictionary (English or foreign).
•    The password is not a common usage word such as:
o    Names of family, pets, friends, co-workers, fantasy characters, etc.
o    Computer terms and names, commands, sites, companies, hardware, software.
o    The words "<Firm Name>", "sanjose", "sanfran" or any derivation.
o    Birthdays and other personal information such as addresses and phone numbers.
o    Word or number patterns like aaabbb, qwerty, zyxwvuts, 123321, etc.
o    Any of the above spelled backwards.
o    Any of the above preceded or followed by a digit (e.g., secret1, 1secret).

Strong passwords have the following characteristics:

•    Contain both upper and lower case characters (e.g., a-z, A-Z).
•    Contain digits and punctuation characters as well as letters (e.g., 0-9, !@#$%^&*()_+|~-=\`{}[]:";'<>?,./).
•    Are at least eight alphanumeric characters long.
•    Are not a word in any language, slang, dialect, jargon, etc.
•    Are not based on personal information, names of family members, etc.
•    Try to create passwords that can be easily remembered. One way to do this is create a password based on a song title, affirmation, or other phrase. For example, the phrase might be: "This May Be One Way To Remember" and the password could be: "TmB1w2R!" or "Tmb1W>r~" or some other variation.

NOTE: Do not use either of these examples as passwords!


Firm Information

Any temporary employee or external consultant who removes information concerning the Firm or the Firm’s clients or employees from any part of the Firm’s computer system and uses that information for personal reasons is subject to discipline or legal action, up to and including immediate termination and lawsuit.

First off I'd like to say that Karl Palachuk really screwed up this time.  Calling his company "Great Little Book" when his latest is great, but it sure isn't little, is not truth in advertising.  At a whopping 590 pages, that is not a little book by any means.  http://greatlittlebook.com/  Great yes, little, no way.

I'm in the pre-planning mode for the migration... or rather I should say the "Ghost of Karl Paluchuk" is hanging around me in my server room tonight telling me to "Document!  Document!  Document!" as I'm setting up a new firewall, writing down (YES WRITING DOWN) the passwords and making sure that they aren't variations of the SAME password over and over again.  For a temp dry run test setup, I have the server and the new Calyptix firewall hanging off the second of two DSL connections (long story as to why we have two, the old one was under the original firm name and when we went to change the name they said "Oh no we have to set up a new account".  I tested the DSL line when it first came in and it was SLOWER than our old line so I've kept the old line all this time while waiting for about 6 months for the speed to bump up to the promised speed.)  It's now coming in handy as a second line to stage some of this stuff without interacting and interfering with my real server just yet.

But I realized that on this Netopia DSL router model I had never bothered to change the default password from the serial number default it was.  Way to go Susan on that one.  Just stick a "Hack me" sign on my router on that one.  So I've changed that from the default it once was.

In addition I want to ensure that I have a "bus book".. you know ensuring that someone will have the documentation of the network should I get hit by a bus?  And too many times in small firms we do not take the time to document what we should.

Quick, where's the passwords for your routers that you have, that you manage?  Do you use the same variation of a password over and over again?  If someone guessed just ONE of your passwords, could they guess at the others?  See how important it is to understand the human nature of password choosing and just using the variations of that and doing something better than that?  Right now this box is bog standard, and not with what I'd consider to be fighting condition for production. 

Right now I have full RDP open to anyone not limited down to a per IP restricted range. Port 25 is also not limited.  AuthAnvil is not loaded up for the two factor authentication I need.  All of these screws to tighten up my firm I'll add, I'll document, and I'll ensure they aren't the defaults.

HP SmartStart Software -  Download drivers and software - HP Business Support Center:
http://h20000.www2.hp.com/bizsupport/TechSupport/SoftwareIndex.jsp?lang=en&cc=us&prodNameId=344318&prodTypeId=18964&prodSeriesId=345557&swLang=8&taskId=135&swEnvOID=4024

Throw away the CD/DVDs that come with it and start downloading the latest stuff.

HP Smartstart 8.25 was shipped with the server and already 8.3 is out and is highly recommended as the one to use for the install.

When I get new hardware, the first thing I do is open it up... okay for a large server.. when did big hunking servers start shipping with laptop harddrives?

Another entire bay unused for future expansion

Lots of room for expansion!

And the box "just" fit in the back of the mini cooper... a few more laptop harddrives and I may have needed to get a Uhaul to get the server back to the office!

Another reason to do clean install versus inplace from Vista.

It ain't gonna fit.  You need at least 20 gigs free and on this year old Vista system even after using the Compcln.exe tool it didn't thin down the drive enough for comfort.  And that WinSxS folder is still huge.

"After the cleansing process, users will notice the free hard disk space has increased substantially. "

Uh...not in my personal experience....

http://www.cigear.com/support/2009/10/21/aastra-releases-rp-to-sip-conversion-firmware-for-aastralink-rp-phones/

Aastra released an RP to SIP conversion firmware today. This is designed to help customers of AastraLink RP phones to re-use their existing phones with standard SIP based phone systems and soft switches.

The Aastralink RP phones were originally designed to work only with Microsoft Response Point phone systems including the Aastralink Pro RP system. Since the fate of Response Point is up in the air with Microsoft’s plans for further development on hold, some customers are looking for alternate solutions in case they outgrow RP or in case Microsoft decides to pull the plug on it.

This conversion release provides some investment protection for AastraLink RP customers since it helps simplify the upgrade path by preserving the customer’s investment in phones. This release will change the firmware in the Response Point phone to that of an Aastra standards-based SIP phone – allowing it to be used with standard based SIP PBXs such as the Aastralink Pro 160, 3CX, pbxnsip, Trixbox and hosted soft-switches, such as Asterisk, MetaSwitch and BroadSoft. The conversion process is easily accomplished through the phone’s Web UI, requiring only a TFTP server and the firmware downloaded from our website.

The new conversion firmware can be downloaded here.

"Join the live celebration of worldwide availability of Windows 7 with Microsoft CEO Steve Ballmer at the Windows 7 Launch event on October 22, 2009, at 8:00 A.M., Pacific daylight time. If you can’t watch the event live, come back later to watch the webcast on demand."

Well we had our party... Snow Leopard versus Win7.  Snow booted faster but to be fair, Vlad stacked the deck as it was newer hardware.  We talked about our likes, (faster boot, performance), I talked about how folks in my CPA listserves were already buzzing about Windows 7.

Tomorrow is the "official" party day.

Having a launch party here at the office tonight for our SMB Fresno group...

And we're doing a MacBook Pro (courtesy of Vlad from www.ownwebnow.com) versus Win7 comparison.  First comparison, there's no video output for the MacBook Pro.

Tomorrow  Steve Ballmer will be doing the "official launch".

So how do you check the binding order in Windows 2008?

Like this:

When you are in the network connections window, click the Alt key.  This opens up the advanced button which then exposes the advanced settings button.  Then click that and find the binding order.

And remember.. don't uncheck that IPv6 as it needs to be enabled on SBS 2008

The new baby will be arriving soon.. but for those into hardware...here's the specs.  Yes, I overbuy.  Yes I ensure that RAM is way way way plentiful but it's going to be a HyperV base (I have premium).

519578-005
1 HP ProLiant ML370 G6 Small Form Factor Tower Server
Quad-Core Intel® Xeon® Processor E5530
(2.40GHz, 8M Cache, 80 Watts, 1066MHz)
HP 6GB PC3-10600R 3x2GB 2Rank Memory
Embedded P410i/512MB with battery (SAS Array Controller)
HP 8-Bay Drive Cage
HP Half-Height SATA DVD-ROM Optical Drive
HP NC375i Integrated Quad Port Multifunction Gigabit Server Adapter
HP 750W CS HE Hot-Plug Power Supply
HP 750W CS HE Hot-Plug Power Supply
Hot-plug fans standard
HP Insight Control Suite Server ManagementSoftware
3 years parts, labor and onsite service (3/3/3)
standard warranty. Certain restrictions and exclusions apply.

7 300GB SAS 10K RPM 6G 2.5 DP HDD 507127-B21 

3 2GB 2RX8 PC3-10600R-9 KIT 500656-B21 
3 4GB 2RX4 PC3-10600R-9 KIT 500658-B21

http://www.thirdtier.net/2009/10/special-webinar-windows-7-its-like-crystal-meth-for-geeks/

October 22nd... we have a presentation for you.  Noon Eastern.  A windows 7 launch party but without the cheesy balloons, Japanese animation inspired bags, Windows 7 playing cards, and Windows 7 commemorative napkins. 

One lucky viewer will get a Windows 7 ultimate retail license (not the Steve Ballmer signed one mind you, but a full retail license nonetheless).

Third Tier is proud to present our friends Tim Barrett and Susan Bradley in a special webinar this Thursday at Noon Eastern.

Tim Barrett: Windows 7 addict. Susan Bradley: Windows 7 addict.  Heck, she even loaded up Windows 7 on Parallels to be able to Remote Web Workplace on a Mac Book Pro that Vlad from Ownwebnow gave her.

This presentation will help you understand the very coolest features of Windows 7. This version of Windows has many, many cool new features that end users are going to love and geeks will become addicted to. Join us and learn more about Windows 7.

Third Tier has invited you to attend an online meeting using Live Meeting.
Join the meeting.