Dave Shackelford


What are “Good Backups” when it comes to Ransomware?

I’ve been responding to multiple ransomware outbreaks for clients, and there’s something I’ve been noticing: having backups isn’t enough. They have to be “good” and that deserves some explaining. – A domain joined system with a “backup” share isn’t going to cut it. It will quickly be compromised. – An external drive that remains attached […]


KB3002657 can cause Outlook auth issues with Exchange 2013 1

This week I’ve had two clients have sudden issues with auth prompts in previously trouble-free Exchange 2013 environments. One of them worked with a Microsoft engineer and eventually determined that a recent patch pushed out on Tuesday that was meant to block the Poodle exploit caused issues with NTLM with HTTPS authentication. Since Exchange 2013 […]


Pruning Exchange Distribution Lists

Some organizations end up having cluttered distribution lists still populated with mailboxes belonging to employees who have left the company. One strategy I’ve employed is when an employee leaves, to add their mailbox to a Distribution List I call “Sunset”. That list contains all non-active employees whose mailboxes have not been deleted yet. Once the […]


Setting up Autodiscover for SBS 2011 14

If you already have a domain name registered and are able to create your own DNS SRV records (some DNS hosts don’t allow SRV record creation), it would be a good idea to create an Autodiscover SRV record to make it easier for Outlook 2007/2010 clients to autoconfigure themselves for Outlook Anywhere (RPC-over-HTTPS) and ActiveSync.


Install or Uninstall of CAS Role Seems to Hang

Sometimes when you are installing or uninstalling the CAS role from an Exchange 2010 server, the setup process hangs during the CAS installation/uninstallation process, right at the point that the GUI says: performance counters for the client access server role are being configured It would be good to wait up to 30 minute, but if […]


Public Folder problem caused by Client-side Outlook Security update

Just a heads up. If any of your clients have a user that complains that they can’t access public folders, they may be having a problem with a recent client-side Outlook 2007 security update. If they attempt to access public folders and are getting this error: Cannot expand the folder. The attempt to log on […]


Giving one user access to another's mailbox via PowerShell

There are plenty of reasons why you might want to give one user access to another user’s mailbox. The first user may be in the hospital, or under HR review, or maybe they’ve been dropping the ball lately and management need to make sure that certain projects have been followed up on. It’s not really our job to care. The fact is, Bill in management has requested that you give Paul Stanley access to Gene Simmon’s mailbox, and for various reasons, logging on to Gene’s mailbox to set these permissions up is not a good option. For one, you’d only be able to delegate access to certain primary folders, not to the whole mailbox, and second, you’d have to know Gene’s password to do that. Because you are a smart admin, you tell Bill you can take care of it easily from the server.