DNS Server Service – Error 1717: The interface is unknown

Hi everyone

Yesterday I stomped into a new bug, I wanted to share it with you guys.

After some Windows Update on a Server 2008 R2, I got that wonderful message from the service manager for the DNS server service:

Windows could not start the DNS Server service on Local Computer. 
Error 1717: The interface is unknown.


After some research I found this blog post and some Microsoft KB that talk about the EventLog that can have bad permission, thus I resetted those permission:

Per the MS KB, it’s those I need to set: (KB there: Error message when attempting to start the Windows Event Log Service: “Access denied”)

Restore the default permissions on %SystemRoot%\System32\winevt\logs.

Authenticated user – List folder/read data, Read attributes, Read Extended attributes, Read permissions
Administrators – Full control 
SYSTEM – Full control 
EventLog – Full control

After that, the service still give me an Access Denied 5 error, now I simply moved all EventLog file from that folder to a backup folder, and I tried to restart the eventlog service, and now it was working ok !


After that change the DNS Server Service was able to start with the eventlog ! 🙂



Image took from there and there


Posted in microsoft | Leave a comment

Migrating files from an Active Directory Domain to another, unblocking the files ?

Hi everyone

Today I will discuss a small tip used when you migrate a file server to another domain.

The goal is to prevent all user to see the warning that file can be dangerous, as the client OS detect and treat that old domain as a internet domain, not an internal’s domain when the migration is finished.

An easy way is with Unblock-File commandlet from powershell.

Naviguate into your server, and issue that powershell command:

Get-ChildItem c:\path -recurse | Unblock-File


That will prevent that dialog from all the files:



Enjoy the small tip



Posted in microsoft | Leave a comment

Active Directory: Reset the clock on an expired password for an account

Hi everyone

Ever wondered how to re-activate an old Active Directory account and prevent a password change directly ? Like on a return paternity / maternity leave.

It’s really easy to do or script that way 🙂

pwdLastSet attribute is used to calculate the password age.

The value is protected, and the only value you can set there is 0 or -1.

The value you look for is -1, the system will put the pwdLastSet to the current date/time. Thus the 90 days, or any defined time period, will start again from the start.

0 would do the opposite, it would expire the password right now.

You set it to 0, manually or with a script, you then set it to -1 and uncheck the Never Expire option after for the account.

An example when used:





It’s that simple 🙂





Posted in microsoft | Leave a comment

OneDrive on Local Account ?

Hi everyone

Today I will share a marvelous tool to use OneDrive / SkyDrive if you use a local account, or an domain account.

The tool is named syncDriver.

3-6-2018 1-32-15 PM

A side note the login option no longer work in the application, but an alternative login work as it directly open onedrive’s website.

After that you can map a letter to the root folder you defined.

The official website is dead, as such I offer a link there to the wayback machine to download the tool.

wayback link

or home hosted

Posted in microsoft | Leave a comment

Windows Server 2016: Shared Access Database Getting Corrupt on SMB

Hi everyone

Today less and less people use msaccess, but some still, and some still use multiuser database.

In such case after Windows 2008 R2 it can cause problem with new layer of SMB version, that allow oplock to be used, thus it can cause bug from the Access GUI, or even corruption of the data file.

To disable, on the server :


OplocksDisabled REG_DWORD 0 or 1
Default: 0 (not disabled)


EnableOplocks REG_DWORD 0 or 1
Default: 1 (enabled)

To be disabled at 100% let’s do the client’s computers too. Easily with a GPO


Posted in microsoft | Leave a comment

Exchange 2016 – You don’t have permission to perform this action (OWA)


If you receive the error You don’t have permission to perform this action while any user try to send an email, then you are in big trouble..

2-5-2018 10-18-14 AM

Just kidding.

Some FAQ tell to go check the server DNS setting, to be sure it’s only internal’s DNS server listed there, but I found another cause for that problem.

It can happen when you do a CU (Cummulative Update) and the service get stuck in a Inactive state. No windows event log are logged too when such happen and your receive connector can still connect on port 25, but the server just look to do nothing.

To validate please run that powershell commandlet;


You can see some component in inactive state;

2-5-2018 3-54-02 PM

At this point you can put each component active, by issuing that command;

Set-ServerComponentState -Identity ServerName -Component HubTransport -State Active -Requester Functional

After all component are active it should be listed more like that;

2-5-2018 3-54-27 PM





Posted in microsoft | Leave a comment

Quick tip to change the default search engine from Internet Explorer, bing to google

Hi everyone


Today I will show a small tip to change bing to google for your new tab in Internet Explorer.

1-3-2018 9-16-04 AM

First you go select Manage add-ons

1-3-2018 9-16-18 AM

You click Find more search provider

1-3-2018 9-16-37 AM

You select Add on Google Search

1-3-2018 9-16-50 AM

You click Add again

1-3-2018 9-16-58 AM

In the add-ons’s windows, make sure the Default is set to the one you want

1-3-2018 9-18-20 AM



Now you should be ok to change the search provider !

Posted in microsoft | Leave a comment