|
|
Articles
Q. What is the Windows PowerShell
line-continuation character?
by John
Savill
6.30.08
A. The back-tick (`) symbol is the PowerShell
line-continuation character. The character lets youcontinue a command on
multiple lines, as you can see in the following example:
PS D:\temp> write-host
`
>> hello
The output would
be
>>
hello
Q. What is the cmd.exe
line-continuation character?
by John
Savill
7.1.08
A. The caret (^) symbol is the cmd.exe line-continuation
character. This character lets you continue a command on multiple lines,
as you can see in the following example:
Users\john>echo ^
More? hello world
The output would
be
hello world
Q. I want to enable BitLocker on a
Windows Server 2008 or Windows Vista system, but what if I didn't create
a separate system partition when I installed the OS?
by John
Savill
7.2..08
A. Ideally, when you install Server 2008 or Vista, you
create a 1.5GB partition that will be the boot partition ( marked as
active), then a main partition that will be the system partition (with
the primary OS installed). The only data installed on the boot partition
is the bootmgr file and the content of the boot folder.
If you don’t create the 1.5GB boot partition but want to enable
BitLocker, you need to manipulate your disk layout.
First, you need to create the partition that will become the boot
partition. If you have unpartitioned space on the disk, simply create a
new 1.5GB partition. If you don't have 1.5GB of space to spare, you can
use the Microsoft Management Console (MMC) Disk Management snap-in to
shrink an existing partition: Select the Shrink Volume option and
specify the amount of space to shrink (e.g., 1500MB).
Next, you need to boot the machine from the Server 2008 or Vista
DVD-ROM. Select the Repair Computer option, then select the Command
Prompt option after selecting your Windows installation.
Now you need to verify the partitions. The C partition should be the
OS’s system partition, and the D partition should be the new 1.5GB
BitLocker partition. However, be sure to change to each drive so that
you know for sure. In this example, C is the system partition and D will
be the boot partition.
Copy the content of the boot folder to the new boot partition.
xcopy c:\boot d:\boot /h /e
Does D:\boot specify a file name
or directory name on the target
(F = file, D = directory)? d
Notice that the system
asks you to confirm whether the target is a file or directory. Select D
for directory.
C:\boot\BCD
C:\boot\BCD.LOG
C:\boot\BCD.LOG1
C:\boot\BCD.LOG2
C:\boot\bootstat.dat
C:\boot\memtest.exe
C:\boot\cs-CZ\bootmgr.exe.mui
C:\boot\da-DK\bootmgr.exe.mui
C:\boot\de-DE\bootmgr.exe.mui
C:\boot\el-GR\bootmgr.exe.mui
C:\boot\en-US\bootmgr.exe.mui
C:\boot\en-US\memtest.exe.mui
C:\boot\es-ES\bootmgr.exe.mui
C:\boot\fi-FI\bootmgr.exe.mui
C:\boot\Fonts\chs_boot.ttf
C:\boot\Fonts\cht_boot.ttf
C:\boot\Fonts\jpn_boot.ttf
C:\boot\Fonts\kor_boot.ttf
C:\boot\Fonts\wgl4_boot.ttf
C:\boot\fr-FR\bootmgr.exe.mui
C:\boot\hu-HU\bootmgr.exe.mui
C:\boot\it-IT\bootmgr.exe.mui
C:\boot\ja-JP\bootmgr.exe.mui
C:\boot\ko-KR\bootmgr.exe.mui
C:\boot\nb-NO\bootmgr.exe.mui
C:\boot\nl-NL\bootmgr.exe.mui
C:\boot\pl-PL\bootmgr.exe.mui
C:\boot\pt-BR\bootmgr.exe.mui
C:\boot\pt-PT\bootmgr.exe.mui
C:\boot\ru-RU\bootmgr.exe.mui
C:\boot\sv-SE\bootmgr.exe.mui
C:\boot\tr-TR\bootmgr.exe.mui
C:\boot\zh-CN\bootmgr.exe.mui
C:\boot\zh-HK\bootmgr.exe.mui
C:\boot\zh-TW\bootmgr.exe.mui
35 File(s) copied
Next, copy the bootmgr file. Again, the system asks you whether the
target is a file or directory. This time, select F for file.
xcopy c:\bootmgr d:\bootmgr /h
Does D:\bootmgr specify a file name
or directory name on the target
(F = file, D = directory)? f
C:\bootmgr
1 File(s) copied
Now, using the Diskpart utility, set the 1.5GB partition to be the
active partition, as follows. (When you run the following commands, be
sure to select the 1.5GB partition.)
diskpart
Microsoft DiskPart version 6.0.6001
Copyright (C) 1999-2007 Microsoft Corporation.
On computer: MINWINPC
DISKPART> list disk
Disk ###
Status Size Free Dyn Gpt
-------- ------- ---- ------ ------- --- ---
Disk 0 Online 186 GB 0 B
DISKPART> select disk 0
Disk 0 is now the selected disk.
DISKPART> list part
Partition ###
Type Size Offset
-------------
----- ---- ------- -------
-------
Partition 1 Primary 1500 MB 1024 KB
Partition 2 Primary 49
GB 1501 MB
Partition 3 Primary 136 GB 50 GB
DISKPART> select part 1
Partition 1 is now the selected partition.
DISKPART> active
DiskPart marked the current partition as active.
DISKPART> exit
Leaving DiskPart...
Finally, reboot the
system. It should boot from your new boot partition, and BitLocker will
be available for activation.
Q. Why can't I communicate with any
computers outside my local subnet?
by John
Savill
7.3.08
A. I recently had this exact problem. My connection had
been working fine, then suddenly I couldn’t communicate with any
computer outside my local subnet. Internet connectivity had also failed.
These symptoms pointed to the gateway configuration, but I hadn’t
changed anything. I could ping the gateway just fine. So, I ran the
Ipconfig utility and saw the following output.
Windows IP Configuration
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
IPv6 Address. . . . . . . . . . . . . . :
2002:4cb7:32c7:1234:c13b:de8e:5abc:330f
Temporary IPv6 Address. . . . . . . . . :
2002:4cb7:32c7:1234:9c4d:fd1b:79c9:4318
Link-local IPv6 Address . . . . . . . . :
fe80::c13b:de8e:5abc:330f%8
IPv4 Address. . . . . . . . . . . . . . : 192.168.1.15
Subnet Mask . . . . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . . . . : fe80::21d:7eff:fe0d:1c91%8
0.0.0.0
192.168.1.1
Notice the
second-to-last line: A 0.0.0.0 gateway (above the real gateway) was
taking precedence, thus stopping traffic outside my subnet. I printed my
routing table by entering
Users\john>route
print
The output was
===========================================================================
Interface List
8 ...00 1d 7d 07 a2 fc ...... Realtek RTL8168B/8111B Family PCI-E
Gigabit Ethe
rnet NIC (NDIS 6.0)
1 ........................... Software Loopback Interface 1
13 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
12 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
===========================================================================
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 On-link 192.168.1.15 20
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.15 266
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
169.254.0.0 255.255.0.0 On-link 192.168.1.15 30
169.254.255.255 255.255.255.255 On-link 192.168.1.15 266
192.168.1.0 255.255.255.0 On-link 192.168.1.15 266
192.168.1.15 255.255.255.255 On-link 192.168.1.15 266
192.168.1.255 255.255.255.255 On-link 192.168.1.15 266
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.15 266
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.15 266
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 192.168.1.1 Default
===========================================================================
Nothing explained why I
was seeing a 0.0.0.0 gateway,so I decided to try deleting the persistent
route for my gateway.
Users\john>route delete
0.0.0.0 mask 0.0.0.0
OK!
Next, I checked
Ipconfig. The 0.0.0.0 gateway along with my normal gateway of
192.168.1.1 had been removed. I went back into my adapter properties,
set the default gateway, and the 192.168.1.1 gateway returned (without
the 0.0.0.0). The problem was solved.
I'm not 100 percent sure why this problem occurred. After some research,
I found that it might be an incompatibility between Windows Vista and my
router.
Q. How do I configure my BitLocker
recovery password to be stored in Active Directory
(AD)?
by John
Savill
7.4.08
A. The Windows Server 2008 schema contains an update to
allow the BitLocker recovery password to be stored in a child object of
the BitLocker-enabled computer object. Doing so is a good idea if
you’re deploying BitLocker within your organization.
If you’re running Server 2008 domain controllers (DCs), no schema
changes are necessary. If you’re running Windows Server 2003, please
see the Microsoft article “Configuring
Active Directory to Back up Windows BitLocker Drive Encryption and
Trusted Platform Module Recovery Information.”
To enable the BitLocker backup, you’ll need to enable the "Turn on
BitLocker backup to Active Directory Domain Services" policy, which
you’ll find at Computer Configuration, Policies, Administrative
Templates, Windows Components, BitLocker Drive Encryption, as you see in
Figure
1.
If you use GPresult /v to examine the Group Policy Resultant Set of
Policy (RSoP) (the /v option enables verbose output), you should find
the following setting in the output:
GPO: BitLocker AD Recovery Store
KeyName:
Software\Policies\Microsoft\FVE\RequireActiveDirectoryBackup
Value: 1, 0, 0, 0
State: Enabled
When BitLocker is
enabled on the computer, the recovery password will be stored in a child
object of the computer of type msFVE-RecoveryInformation, as Figure
1 shows. Note that the actual recovery key is stored in the
msFVE-RecoveryPassword attribute. A child object will be created for
each volume encrypted with BitLocker.
Events & Resources
Continuous Data Protection and
Recovery for Microsoft Exchange
It’s 3:00 pm and your Exchange server's hard drive
array has failed. You get a call from the president of your company
wanting to know where his email regarding a pending major purchase has
gone. He and other executives have been working on the project all day,
and the deadline is less than 30 minutes away. Download this white paper
to learn about continuous data protection (CDP), Exchange 2007's local
continuous replication and cluster continuous replication features, and
other more robust third-party offerings.
http://windowsitpro.com/whitepapers/Index.cfm?fuseaction=ShowWP&wpid=7e376ca8-18e2-4c42-9bea-58fbd007fd58&code=070208er
The Shortcut Guide to SQL Server
Infrastructure Optimization
As companies find more uses for SQL Server, there are
inevitably more SQL Server installations to deal with. This eBook share
some new techniques for optimizing your SQL Server infrastructure and
explores why so many organizations aren't really optimizing their SQL
Server platforms.
http://sqlmag.com/ebooks/index.cfm?fuseaction=ebook&ebid=e0c1dfe3-c117-44d9-9d48-6dd7a0a003b7&code=070208er
SharePoint Replication
Tips
Many leading organizations look to Microsoft SharePoint
as an essential online collaboration platform and enterprise-wide
content repository. In order to provide continuous, reliable information
access to geographically dispersed audiences, you must deploy a
high-performance content replication strategy. This Webcast discusses
key considerations for ensuring a successful SharePoint replication
strategy.
http://windowsitpro.com/Downloads/Index.cfm?fuseaction=ShowDownload&uuid=4c5fdfa9-f209-4cb0-a422-407b3158aaca&partnerref=070208er
Featured White Paper
Sustainable Compliance: How to
Reconnect Compliance, Security, and Business Goals
Large enterprises are seeking ways to actively
streamline their compliance activities, operationalize their security
management programs, and gain value from automating and integrating
both. Unfortunately, streamlining compliance activities has not proven
to be simple. Download this paper to get started reducing the impact of
compliance programs on your resources.
http://www.windowsitpro.com/Whitepapers/Index.cfm?fuseaction=ShowWP&WPID=c748c2a5-dce9-4784-a10e-030925aa32b9&code=070208er
Announcements
Get It All with Windows IT Pro
VIP
Stock your IT toolbox with every solution ever printed
in Windows IT Pro and SQL Server Magazine, plus bonus
Web-exclusive content on fundamentals and hot topics. Order today to
receive the VIP CD and a subscription to your choice of Windows IT
Pro or SQL Server Magazine!
https://store.pentontech.com/index.cfm?s=1&promocode=EU2786V1&
Windows IT Pro Master CD: Take
the Experts with You!
Find the solutions you need within the thousands of
searchable articles, helpful bonus content, and loads of expert advice
on the Windows IT Pro Master CD. A Master CD subscription buys
you portable access to the entire Windows IT Pro article database
plus access to all the new articles that we publish exclusively on
WindowsITPro.com every day. It's like having a team of consultants in
your pocket! Get real-world solutions fast--order the Windows IT
Pro Master CD today.
https://store.pentontech.com/index.cfm?s=1&promocode=EU2284WC&
Rev Up Your IT Know-How with Our
Recharged Magazine!
The improved Windows IT Pro is packed with
trusted content and enhanced with a fresh new look! Subscribe today to
- stay ahead of industry trends with comprehensive coverage of topics
such as Windows Vista and virtualization
- solve tough technical problems with advice from veteran IT experts
such as Guido Grillenmeier and Mark Minasi
- find real-world solutions easily, along with fast facts and quick
tips
https://store.pentontech.com/index.cfm?s=1&promocode=EU2085R1&
|
|
If you use a product that has made a tremendous impact in your
organization and is a product that you can't live without, tell us about
it at whatshot@windowsitpro.com
and we'll feature your review in a future issue of the magazine, under
the "What's Hot" section.
|
|
Back to newsletter list
