Situation: The client uses Microsoft 365. One of the users can’t login with User in risk message.
Troubleshooting: You may need to dismiss user risk. To do that, login Azure. Search Dismiss user risk.
Highlight the user and click on Dismiss user(s) risk.
Situation: The client uses Microsoft 365. One of the users can’t get her verification code no matter she try email or phone.
Troubleshooting: You may need to dismiss user risk. To do that, login Azure. Search Dismiss user risk.
Highlight the user and click on Dismiss user(s) risk.
Situation: The client is running Windows server 2019. When he tries to take over owner on one of the folders with “Replace all child object permissions entries with inheritable permission entries from this object.’ option checked, he gets this message: ‘Failed to enumerate objects in the container. Access is denied’
Resolution 1: Use takeown command, for example
takeown /f * /r /d y
Resolution 2: propagate the owner
propagate the owner, then close out of ALL dialogs, before you propagate the actual permissions.
I can’t really say how it got messed up, but this should fix it. These steps are a bit involved, but just take it step-by-step (some users print them and mark off what step they’ve done). If you get stuck, just let me know what step you’re on.
Note: We find we need to run takeown /f * /r /d y on each level of the folder or each subfolders.
Situation: The user can’t see the Navigate Bar in her Outlook.
Resolution 1: Make sure the Folder Panel is not off.
Go to View>Folder Panel and make sure it is not Off.
Resolution 2: Check the Navigation Option settings by going to File>Options>Advanced>Navigation Option.
Situation: When a user tries to establish VPN using GloablProtec, he gets this message: could not verify the server certificate of the gateway.
Troubleshooting: Make sure the PA Firewall has corrected certificate setup.
2. Go to Network>GloablProtect>Portals>Agent. Make sure you add the corrected certificate.
Situation: The user has assigned full permissions, Sens as and Send on behalf. However, she tries to send email behalf another user, she gets undeliverable message:
Your message did not reach some or all of the intended recipients.
Subject: RE: Administrative Copy: Welcome! | 246594
Sent: 6/8/2022 10:12 AM
The following recipient(s) cannot be reached:
‘Bob Smith’ on 6/8/2022 10:12 AM
This message could not be sent. You do not have the permission to send the message on behalf of the specified user.
Troubleshooting 1: When she sends email behalf another user, she may need to select the user From. For example
If you don’t see the From, select the Options tab and press the “Show From” button to enable the from field for all sent emails
Troubleshooting 2: In our cases, the user has two email addresses, user@Aemail.com as default email address and user@Bemail.com. The From should be user@Aemail.com instead of user@Bemail.com.
Situation: The client has a PA Firewall. After they added a domain account into Administrator, the user can’t login.
Troubleshooting:
After adding a domain account into Administrator under Device, you also need to add it into Authentication Profile under Device.
Situation: The client has deployed Microsoft LAPS. However some of computers don’t show the administrator password when checking local administrator under User’s Property>Attribute Editor.
Troubleshooting 1: Run gpdaute /force or restart the computer to apply the GPO.
Troubleshooting2: The local administrator account is disabled. Enable it.
Troubleshooting 3: GPO can’t install the LAPS software as showing gpupdate /R:
Computer Policy update has completed successfully.
The following warnings were encountered during computer policy processing:
The Group Policy Client Side Extension Software Installation was unable to apply one or more settings because the changes must be processed before system startup or user logon. The system will wait for Group Policy processing to finish completely before the next startup or logon for this user, and this may result in slow startup and boot performance.
User Policy update has completed successfully.
For more detailed information, review the event log or run GPRESULT /H GPReport.html from the command line to access information about Group Policy results.
Certain Computer policies are enabled that can only run during startup.
OK to restart? (Y/N)
If the gpupdate /force doesn’t install LAPS, please install it manually.
Summary of resolution:
-Toggled the cached exchange mode
-checked on outlook web – all good / sent items are there
-Look up the lost messages in the outlook all file – no go
-Search tool = Indexing – no go
-Choose location to search = good
-Created registry dword value = SaveSent =
-Clear the outlook profile – no go
-Run dsregcmd /forcerecovery
-Please create a new windows profile.
-Run the Outlook and Sync the emails from cloud.
-Export the PST file and Import it to the original windows profile.
-Go to the Registry edit HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search > New DWORD (32-Bit) “PreventIndexingOutlook”> Edit the DWORD and set the value to “1”. The search function works
-unchecked the option of “Improve search speed by limiting the number of results shown” from File > option > Search in Outlook
-close outlook and go to Windows search and run outlook.exe /resetnavpane
-Restart Windows Search in task manager.
Situation: The VPN use lost one of network mapping drives. Can’t access it any more with access denied error.
Troubleshooting: Bring the laptop back to office and connect the mapping drive, but the same problem.
Resolution: Re-create the user profile.