Finding Superseding WSUS updates in PowerShell

Whenever I see a superseded update, I usually want to know which update supersedes it.
Finding it from the console is easy enough:

But of course, working through the UI is no fun.
After you got an update object through PowerShell, like this:

$wsus = Get-WsusServer WSUS2 -PortNumber 8530
$update = $wsus ...
more ...

Reading Daylight Saving Time Data in Windows

When it comes to DST complexity, Israel has it worst (I think). We have our DST definition changed on a yearly basis, and consequently we have to repeat the DST deployment cycle (install update, check for timezone data, test DST-sensitive resources like Outlook calendars...) twice a year.
Even simple users ...

more ...

Network Monitor capture filter limitations

I recently had to deal with some network traffic issues, so naturally I turned to NetMon.
My problem was with some TCP packets not reaching their destination.
Since TCP has packet acknowledgements (meaning the receiving end says "packet received" or the packet is sent again), the issue was detectable as ...

more ...

Putting your Windows to sleep

Although there are many blog posts about configuring standby ("sleep") in Windows, each one with its own insomnia joke, I thought I'd share my methodology .

PowerCfg -energy:  The one tool to sort it all

I only learnt about this command near the end of my testing, but it still ...

more ...

Adding .net 3.5 to a Windows Server 2012 template

I was approached by some colleagues building a new VM template for Windows Server 2012 who wanted some help with .NET framework 3.5.

The .NET oddity

As anyone who messed a bit with Windows Server 2012 knows, the .NET framework 3.5 is one of two features (along with ...

more ...

Remotely changing DNS server list through registry

Recently I was called to help some some friends who had an unusual problem:
They demoted an old DC because they needed to raise the domain functional level, and after doing so many of their servers stopped working - they wouldn't allow remote logins, the Exchange services wouldn't start ...

more ...

Filtering Windows Event Log using XPath

When I want to search for events in Windows Event Log, I can usually make do with searching / filtering through the Event Viewer. For instance, to see all 4624 events (successful logon), I can fill the UI filter dialog like this:

  • Event Logs: Security
  • Event IDs: 4624

But sometimes I ...

more ...

Preventing Users from Adding Computers to a Domain

Some time ago, we've come to the conclusion that the computer accounts in the domain are disorganized. After doing the tedious job of sorting existing accounts, we saw that new computer accounts are still being added to the "Computers" container, and we had no idea which computer was behind ...

more ...

Investigating Repeatedly Locked Out Users

I often get asked by some other IT guy "why does user XXXXX keep on getting locked out?"

Let me clue you in on something - users (almost) always get locked out for the same reason: They try the wrong password too many times.The reasons for THAT, however, are quite ...

more ...