Keith Smith - My Blog - Twitter @_KeithIT

Keith Smith - My Blog - Twitter @_KeithIT


locked-out-of-sharepoint-site

Sunday, March 19, 2017 - Posted by Keith A. Smith, in SharePoint

*run in a cmd prompt from C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\BIN *
STSADM.EXE -o siteowner -url http://site.domain.net -ownerlogin domain\user

iisreset after the cmd above to make it take affect

-End

View Comments 0 Comments
Share Post   


Failed to execute SharePoint BI Maintenance Job

Friday, March 17, 2017 - Posted by Keith A. Smith, in SharePoint

Run this from the sharepoint management shell

Get-SPServiceApplication

$sts = Get-SPServiceApplication | ?{$_ -match "Security"}


$sts

$sts.Status

$sts.Provision()


-End
View Comments 0 Comments
Share Post   


mysite hosting error

Sunday, February 19, 2017 - Posted by Keith A. Smith, in SharePoint

ProblemAngry
Title
Validate the My Site Host and individual My Sites are on a dedicated Web application and separate URL domain.
Severity
2 - Warning
Category
Configuration
Explanation
It is recommended that the My Site Host and individual My Sites are deployed on a dedicated Web application for performance and manageability reasons.  Additionally not having a separate URL domain for the My Site Host and individual My Sites poses a security risk because the owner can introduce same-domain scripting attacks on other sites hosted on the same URL domain.

SolutionClap
Create a new web application, use template my site host under enterprise tab

-End
View Comments 0 Comments
Share Post   


Unable to edit the DCOM settings for IIS WAMREG admin service

Saturday, February 18, 2017 - Posted by Keith A. Smith, in SharePoint

Unable to edit the DCOM settings for IIS WAMREG admin service on a Windows Server 2008 R2

1. Run Regedit.exe and browse to "HKEY_CLASSES_ROOT\AppID\{61738644-F196-11D0-9953-00C04FD919C1}" key.
2. Secondary-mouse click on the {61738644-F196-11D0-9953-00C04FD919C1} key and select Permissions...
3. Click the Advanced button in the Permissions window and select the Owner tab. Under Change owner to select the local Administrators group and click on Apply, then OK.
4. Then under Permissions window, select the local Administrators group and under Permissions for Administrators select Full Control and click on Apply, then OK.

NOTE: DO NOT modify/change any permissions for the TrustedInstaller account.

5. Re-run the Component Services management console (dcomcnfg.exe) and you should now be able to modify the settings for IIS WAMREG admin service package.

a.     Expand Component Services, expand Computers, expand My Computer, and expand DCOM Config.
b.     Right-click IIS WAMREG admin Service, and then click Properties.
c.     Click the Security tab.
d.     Under Launch and Activation Permissions, click Edit.
e.     Under Group or user names section, add the sharepoint farm account, and select the user account
f.     Under Permissions for the Business Connector Proxy User account, select the Local Launch and Local Activation checkboxes
g.     Click OK and OK and close the Component Services management console.

-End
View Comments 0 Comments
Share Post   


Evernote snooping

Wednesday, December 14, 2016 - Posted by Keith A. Smith, in Security

Evernote announced an upcoming change to its privacy policy that would allow company employees to “exercise oversight of machine learning technologies applied to account content” to improve the service.


Evernote’s privacy changes will take effect Jan. 22, 2017 and users are threatening to abandon the service. A few years ago Dropbox also made changes to it's privacy policy to allow it's staff to snoop around in your stuff.


The policy changes have to do with machine learning, which Evernote says it is using to “help get you the most out of your Evernote experience.”


According to the company’s policy update notice, "Only employees who are fulfilling one of the customer or business needs... will be able to access your data.” Evernote claims a limited number of employees who have undergone background checks will be able to access user data and that users can encrypt notes to prevent employees from reading them.


I said it once, and I'll say it again if you upload data, virtual machines, etc. to any cloud provider you essentially have transferred ownership of that data the cloud provider simply allows you to access it. It is imperative that everyone implement encryption and Multi-factor authentication (MFA) also known as (also known as 2FA) where ever possible.


I also recommend that everyone use the EULAlyzer to analyze end user license agreements for interesting words and phrases in order to make sense of the nonsensical agreements.


-End
View Comments 0 Comments
Share Post   


Page  <1...910111213...17>