In getting ready to move Panorama to PAN-OS 12.1 from 11.1 (to manage some new PA-5×0 series firewalls) if you haven’t already performed the ‘224GB’ disk size increase you are likely to bump into this error message: Successfully downloaded Software version: 12.1.2 Preloading into software manager Failed to create required free space. Free space: 3191 MB, Required space: 3717 MB… Read more
Category: Software
This section looks at what is new in the world of software (Operating Systems included) and how to take best advantage of what is out there.
Processing Active Directory timestamps in Node-RED
I recently had a need to process Active Directory timestamps in Node-RED (based on the output from LDAP) to work out if a specific action should be carried out on a user or not. Microsoft is a bit weird (Microsoft) here where ‘the value is stored as a large integer that represents the number of 100-nanosecond intervals since January 1,… Read more
Connect-SPOService with a YubiKey
When connecting to SharePoint using PowerShell the default authentication prompt does not permit the use of hardware security keys (such as YubiKeys or the Security Key by Yubico), to get around this limitation use the -UseSystemBrowser $true parameter at the end of the connection command. Reference example 6 (at time of publication) at: https://learn.microsoft.com/en-us/powershell/module/microsoft.online.sharepoint.powershell/connect-sposervice?view=sharepoint-ps#example-6
Renewing a SubCA, the CA just restarts the service without prompting to save the request
An interesting problem solved by a simple solution. When renewing the SubCA certificate for an Active Directory Certificate Authority and clicking through the ‘Renew CA Certificate…’ prompt after being asked if you want to keep the current private key or not the CA service simply restarts without displaying the usual CA Certificate Request prompt (as above). The solution – a… Read more
Microsoft Remote Desktop connection – ‘An internal error has occurred’ and ‘The server security layer detected an error (0x80090304)’ event ID 139.
An interesting issue that was discovered after deploying security certificates for Remote Desktop Authentication into the TPM of desktop computers and some (physical) servers, after go live with the security certificate clients could no longer connect with the error below being displayed in the Remote Desktop Services log on the server. The server security layer detected an error (0x80090304) in… Read more
FIDO2 Security Key Sign-In to Windows – Your credentials couldn’t be verified.
When setting up Passwordless security key sign-in Windows and attempting to sign-in to the first machine you have setup (although it could be any machine!) you may encounter the error: Your credentials couldn’t be verified. (code: 0x000006d, 0x0) This error message appears even though you can sign-in with the key to AzureAD and other web services. The cause is likely… Read more
Ruckus Cloudpath – setting an SMTP server does not allow disabling of CAPTCHA
A bit of an odd one here (and has been reported to Ruckus as something that either needs clarifying or fixing) in that if you want to remove the requirement for CAPTCHA when self registering in a ‘out of band’ workflow block you need to configure your own SMTP server. Now that’s all fair however even with the server configured… Read more
CITC 2022 Integrating systems through their APIs
After a few years on hold it’s great to be back at CITC this time in the British Motor Museum. The video presentation covers a short (if speedy) introduction to Node-RED and it’s ability to integrate systems through their APIs. Demo 2 is of note and shows how a user visiting a malicious website can have their internet access revoked… Read more
Aruba Instant – PAN Syslog Parse Profile
A little treat that I hope will help someone at some point, for those with Palo Alto Networks Next Generation Firewalls (NGFW) and Aruba Instant Wi-Fi you can forward syslog messages from the controller to the NGFW and parse them with the profile below to map users to IP addresses. There is plenty of information on syslog to User-ID at… Read more
Palo Alto Networks GlobalProtect and Azure AD – AADSTS700016: Application with identifier was not found in the directory.
When setting up a GlobalProtect Portal/Gateway with AzureAD you may find you receive the error message: AADSTS700016: Application with identifier <Entity ID> was not found in the directory ‘<Directory ID>’. The fix here is easy – the GlobalProtect client injects a :443 at the end of the domain name which isn’t mentioned in the guide from Microsoft (https://docs.microsoft.com/en-us/azure/active-directory/saas-apps/palo-alto-networks-globalprotect-tutorial) but is… Read more