Month: May 2019

Q: When attempting to add some website to our Windows 2012 R2 server, the Trusted sites is grated out and i can’t add them. Why?

chicagotech.net: You may want to check the group policy settings. Go to ser Settings -> Administrative Templates -> Windows Components -> Internet Explorer -> Internet Control Panel -> Security Page. If it is enabled, the Trusted sites will be grated out. If you don’t want to disable it, you can modify policy Preferences Registry Items to add the websites. Please refer to this link:

https://blog.thesysadmins.co.uk/group-policy-internet-explorer-security- zones.html

U

Q: When installing Malicious Removal Tool, we get Windows update, error code: 801901F7. How can we fix it?

chicagotech.net:

1. download the actual tool from Microsoft. This Link: https://www.microsoft.com/en-us/download/malicious-software-removal-tool-details.aspx an dinstall it. Then check the update status.

Q: My Windows 10 gets this error message when I do the Windows update: Error 0x80d02002. Any fix?

chicagotech.net: Search online find these suggestions:

[Fix] Windows Update Error 0x80d02002 in Windows 10 » Winhelponline

Solution 1: Reset Windows Update Components

Follow these steps to reset the Windows update components manually.

1. Open an Command Prompt (Admin).
2. On the admin Command Prompt window, type (copy and paste) the commands below one at a time, and press ENTER:

net stop wuauserv
net stop cryptSvc
net stop bits
net stop msiserver
ren C:\Windows\SoftwareDistribution SoftwareDistribution.old
ren C:\Windows\System32\catroot2 catroot2.old
net start wuauserv
net start cryptSvc
net start bits
net start msiserver

 
3. Exit the command prompt.
4. Restart Windows and then attempt to install the problematic update. 

[Fix] Windows Update Error 0x80d02002 in Windows 10 » Winhelponline

Solution 2: Check the Regional and Language settings

It’s possible that your regional settings are incorrect. For instance, you may have the region set for a different country where you visited earlier, and have forgot to update the setting after returning to your home country.

[Fix] Windows Update Error 0x80d02002 in Windows 10 » Winhelponline

1. Open Settings (WinKey + i)
2. Click Time & Language
3. Select Region & Language from options on left
4. Verify your Country/Region is correct from drop down list
5. Ensure the appropriate Language Pack is installed. If it’s in the state of being “available”, click Download and let the system install it from Microsoft servers.

Solution 3: Run the Windows Update troubleshooter

1. Download the Windows Update Troubleshooter, and then select Open or Save in the pop-up window.
2. Select Next and follow the steps in the wizard to find and fix problems with Windows Update.

Solution 4: Check For Corrupted System Files

If any System Files get corrupted or Missing From Windows computer, you may get different problems include update installation errors. We Recommend To Run System File Checker to make sure any corrupted system file not causing the issue.

To Run SFC (System File Checker ) Utility Open command prompt as administrator, Type sfc /scannow and hit the enter key. this will scan for missing corrupted system files if found any the utility restore them form a special folder located on %WinDir%\System32\dllcache. Wait until 100% complete the scanning process, Then After Restart windows and check for updates. If SFC Utility Scan Results found corrupted files but unable to fix then Run DISM Tool Which enables SFC Utility to Do its job.

Solution 5: Perform Clean boot and install the Windows update.

Solution 6: Download the Windows update to the local machine and install from there.

Solution 7: If there are multiple Windows updates, install them one by one.

Solution 8: I fixed this problem on my computer by downloading and installing  KB890830 manually.

https://www.catalog.update.microsoft.com/Search.aspx?q=kb890830

https://www.catalog.update.microsoft.com/Search.aspx?q=kb890830

Situation: The client is running SEP v14. All servers and workstations can’t download the definition.

Troubleshooting: 1. Make sure all ports such as 443 and 80 are open.

2. May sure no IP and hostname conflicts.

3. Restart the Symantec service by running smc -stop and -start.

Q: We have a X-ray machine running Windows XP. Sometimes, we do need to access web email. However, it is very slow or doesn’t work.

chicagotech.net: The Internet browser comes with XP is very old version, please download Chrome browser.

Situation; The client has Brother MFC. It can’t send fax and Comcast confirm the line is good.

Troubleshooting: 1. Make sure the telephone cable is 4 pins cable. 2 pins may not work.

2. make sure you connect to dedicate fax line.

3. Some Brother MFC may not work for Comcast service.

To test it, press Hook key. You should get dialing tone and the display show telephone. If you don’t hear the tone, check the cable.

Q: We have Symantec Endpoint Protection 14. One of the SEP client can’t update the definition. Clicking fix gets update destination failed message.

Chicagotech.net: Open SEP and check the Help>Troubleshooting. If ti shows self-managed, please convert it to managed client by following this post:

• How to convert self-managed SEP client to managed client

Q: After making chance, I can’t run Commit with this error: “Other administrators are holding device wide commit locks”. How can I find out who is holding commit and disable it?

chicagotech.net: On the right top, you should see Commit, Lock icon with number. Click the number, you will see all admins and you can log them off

Q: We have PA850 firewall in the office and our VPN users use GlobalProect to establish the VPN connection. However, once for a while, the VPN users may have this problem: GlobalProect VPN shows Connecting and still working forever. What could be the problem/

chicagotech.net: 1. The VPN may have a session still connecting to the firewall. On the client site, restart the computer may fix the problem. In the server site, re-configure ideal time and disconnect time so that the server logoff the remote session in a short time.

2. Disable any security software for a test.

3. Re-install GlobalProect software.

Q: We are using Palo Alto firewall VPN software GlobalProtect. One of VPN users has a problem to access most LAN resources after establishing the VPN. The problem is his home network uses the same IP range (10.0.0.0/24) and the default gateway is 10.0.0.1.

He doesn’t want to change his home network IP range and gives us this reason: “Comcast recommended that changing it wouldn’t be a good idea”.

My temporary resolution is assigning his computer static IP address at home: 10.0.0.3/252. It works, but with some problems, for example some mapping may not work. I think the problem is both network using the same default Gateway. He asks why he doesn’t have this problem before we use Cisco ASA? Do you have any suggestions?  

A:

If he’s using a class C subnet we can make the Palo VPN DHCP pool use a class B, that would make it on different networks.

If we made that change, everyone that is connected on VPN will need to disconnect and reconnect to get the new subnet IP pool.

We can also make the VPN pool something like 192.168.76.X so hopefully, no one else would have that IP address running locally at home