Header Shadow Image


Archive for the 'NIX Posts' Category

WrongHost: Peer certificate subjectAltName does not match host, expected 1.2.3.4, got DNS: host1.domain, DNS: host2.domain, DNS: host3.domain

Another form of this error is when the certificate validation produced an IP instead of a host, such as this: WrongHost: Peer certificate subjectAltName does not match host, expected 1.2.3.4, got DNS:srv-c01.earth.water.fire, DNS:cm-r01nn01.earth.water.fire, DNS:cm-r01nn02.earth.water.fire [02/Jan/2021 03:15:59 +0000] 32309 Thread-13 downloader   ERROR    Failed fetching torrent: Peer certificate subjectAltName does not match host, expected 1.2.3.4, […]

Fixing FreeIPA Replication Issues

Case example of an HBAC service ID that is not consistent across the master-master FreeIPA implementation: # ./cipa -d mws.mds.xyz -W "<PASS>" +——————–+————+————+——-+ | FreeIPA servers:   | idmipa04   | idmipa03   | STATE | +——————–+————+————+——-+ | Active Users       | 3          | 3          | […]

Fixing a broken AD trust on a FreeIPA replica in a Master-Master configuration. 

Fixing a broken AD trust on a FreeIPA replica in a Master-Master configuration.  Investigation: ./cipa –debug -d sub.domain.com -W "<PASSWORD>" | FreeIPA servers:   | idmipa03   | idmipa04   | STATE | +——————–+————+————+——-+ | Active Users       | 3          | 3          | OK   […]

init_smb_request: invalid wct number 255 (size 248)

Getting this SMB error? init_smb_request: invalid wct number 255 (size 248) Solve it using this parameter in the SMB conf file on the server: # grep -Ei "max protocol" /etc/samba/smb.conf; cat messages|grep -Ei smb|grep 255|tail         max protocol = SMB2 Cheers,

Kerberos authentication failed: kinit: Cannot read password while getting initial credentials

Sometimes for messages like this:   Kerberos authentication failed: kinit: Cannot read password while getting initial credentials There is a simple solution.  Reset the user's password, because it probably expired or the user account used was just created without the user having set a new password on it.  In our case, running the following FreeIPA command […]

User is not authorized to read Azure subscriptions. Permission elevation is required to proceed.

Getting this while trying to delete Azure Active Directory Tenants? {"errorCode":"PermissionsElevationRequiredToReadSubscriptions","localizedErrorDetails":{"permissionsElevationRequiredToReadSubscriptions":"User is not authorized to read Azure subscriptions. Permission elevation is required to proceed."},"operationResults":null,"timeStampUtc":"2020-11-23T02:38:42.————-","clientRequestId":"—————","internalTransactionId":"——————–","tenantId":"——————–","userObjectId":"—————————","exceptionType":"UnauthorizedAccessException"} Switch Directories to another one.  Then from there, click on Overview of this Active Directory, then click on Switch Tenant.  Delete the Tenant from here.  Deleting a Tenant whilst selected won't […]

C:\Program Files\WindowsApps\Microsoft.Darwin_100.1.38862.0_x64__8weekyb3d8bbwe\InputSystem_w32.dll is either not designed to run on Windows or it contains an error.

Receiving the following when trying to start Age of Empires: Definitive Edition? C:\Program Files\WindowsApps\Microsoft.Darwin_100.1.38862.0_x64__8weekyb3d8bbwe\InputSystem_w32.dll is either not designed to run on Windows or it contains an error. Try installing the program again using the original installation media or contact your system administrator or the software vendor for support. Error status 0xc0000022.

OpenWRT: Microsoft Azure to Cloudera CDH via VPN Gateway

In this post, we'll show you how to create and connect your local home network to the Azure space network.  We'll take this a step further by connecting this Microsoft Azure VM instances defined to an on premise Cloudera CDH cluster.  Together, the on-prem cluster will be extended with compute capacity from Azure while the […]

Asus Merlin Firmware: Wrong date shows set to Sat May  5 01:07:40 DST 2018

Do you end up with the wrong date when using Asus or Asus Merlin software? admin@ASUS-MERLIN-INTERNET:/tmp/home/root# date Sat May  5 01:07:40 DST 2018 admin@ASUS-MERLIN-INTERNET:/tmp/home/root# Not yet clear what is really causing this but a temporary workaround is shown below using the Asus Merlin startup scripts: admin@ASUS-MERLIN-INTERNET:/tmp/home/root# cat /jffs/scripts/init-start #!/bin/sh NTP0=$(nvram show 2>/dev/null | awk -F'=' […]

iPhone Bricked: Update or Recovery

Had the misfortune of experiencing of doing the Apple equivalent of bricking my iPhone while doing an iOS update.  Why did I do an iOS update?  Well here's how I did this without any data loss. 


     
  Copyright © 2003 - 2013 Tom Kacperski (microdevsys.com). All rights reserved.

Creative Commons License
This work is licensed under a Creative Commons Attribution 3.0 Unported License