Sending Test Emails with Telnet

October 24, 2012August 31, 2015 Josh Reichardt 13 Comments

I’d like to talk quickly about a great and underutilized method for troubleshooting email flow problems. Today I had to rebuild an Exchange Hub Transport server after a slight catastrophe from last week in which the VM the Hub lived on was completely unrecoverable. That is another story but it brings up the need for using a great tool that is often skipped over, and that is sending test email via telnet.

The reason I say that this method is underutilized is because, well who uses telnet these days? What’s great about using this is that you can test different aspects and essentially pinpoint where mail flow issues are occurring. In my case I was have trouble relaying email from an internal account to outside mail servers. So let’s jump into how to use this tool, its easy but I feel like not enough people know about it, so here we go.

First, since I was testing from inside, I need to connect to the local server name.

telnet hubserver.psa.local 25

Easy enough, we are using telnet to connect to the hub server, hubserver.psa.local on port 25 (SMTP). Once we get in we run a simple,

ehlo

That gives us back a little bit of information, basically telling us that this is an email server and some of its capabilities. Next, we will need to run through the following set of commands to send out the test email. It is important that these commands are entered in exactly, with no backspaces, otherwise it will break the command and you will get an error message spit back out from your telnet session.

MAIL FROM: [email protected]
RCPT TO: [email protected]
DATA
SUBJECT:

message content.

.
QUIT

MAIL FROM: This is telling the mail server who this message is being sent from.
[email protected] is the internal mail sender I was using.
RCPT TO: Tells the mail server the email address that is being sent to.
[email protected] is the address we are sending to. It can be any of your internet based mail addresses (google, yahoo, etc.).
DATA signifies the start of the message body.
SUBJECT: This line is optional, probably a good idea to include a subject so the message doesn’t get blocked or sent to spam. Hit enter twice after this to drop into the message content.
message content is whatever you want to include in your message. Follow your message by hitting enter.
“.” (read dot) on a line by itself will tell the mail server to end the message and send it. It is basically the equivalent of an escape character for emails.
QUIT leaves the telnet session from the mail server.

It is important that the previous set of commands is run the way that they look. This whole string of commands should look something similar to the following inside of your shell when things are all said and done, assuming everything is working properly.

In my case, I was unable to enter an address for the RCPT TO: command. To fix this, among with a few other steps in rebuilding the hub was to grant anonymous send permission on the Exchange side of things, then after that mail began flowing through the newly rebuilt Hub Transport server perfectly.

That should be it, I highly suggest going through the process of sending out a few test emails to get this method stuck in your brain for later on down the road if you ever have to do any mail flow type troubleshooting. Good luck!

Quickly Add Users to Lync 2010 Environment

October 9, 2012August 31, 2015 Josh Reichardt 16 Comments

Update (10/11): new script posted

I had the chance to work on this script a little bit more and was able to add a few of the features and checks that I wanted originally such as the ability to check if a user is a member of Active Directory or not, if the user is already of member of the Lync environment and also a very simple logging mechanism to gather information on names that weren’t in AD, users already in Lync, etc. to make life easier if the script has been run but there were misspellings or whatever other anomalies in the CSV file that is read in.

The format for reading in users is exactly the same, so just look at the example CSV file posted at the bottom of the page to get an idea of how users should be entered and look in the file for getting read in properly.

The updated code is posted below. I will be adding this onto my github account in the future as well so check out github if you aren’t already a member.

##======================================================================================
##Script:  EnableLyncUsers.ps1
##Name:    Josh Reichardt
##Email:   [email protected]
##Date:    10/9/12
##Purpose: Use this script to add users already in AD domain into Lync 2010 environment.
##Notes:   Reads in a CSV file with pre populated AD Display names.  Can be adjusted to
##	   work with alternate AD names (eg SIP address, UPN or AD log on name).
##======================================================================================

#Variables.
$File = "C:\Lync\test.csv"
$Log = New-Item -ItemType File -Path "C:\Lync\userlog.txt" -Force

#Import CSV File
$UserArray = Import-CSV -Path $File

#Check if user file is empty.
if ($UserArray -eq $null)
{
	 write-host "No Users Found in Input File"
	 exit 0
}

#Get total number of users in CSV file and begin proccessing.
$count = $UserArray | Measure-Object | Select-Object -expand count
Write-Host "Found " $count "Users to import."
Write-Host "Processing Users.....`n"
$index = 1

ForEach ($User in $UserArray) {

	Write-Host "Processing User " $index " of " $count
	$Fullname = $User.DisplayName
	$aduser = get-csaduser -Identity $Fullname

	#Check if user is in AD.  Log if they are NOT.
	if ($aduser -eq $null) {
		$notinad = $true
		Write-Host "User " $Fullname " is not in AD.  Double check spelling, etc." -Foregroundcolor Red
		Add-Content -Path $Log -Value "$($Fullname) is not in AD.  Double check spelling, etc."
	}

	else {
		$notinad = $false
	}

	#If user is in AD check if enabled in Lync and log if enabled.
	if ($aduser.Enabled) {
		Write-Host $User.DisplayName "is already enabled in Lync, skipping."  -Foregroundcolor Yellow
		Add-Content -Path $Log -Value "$($Fullname) is already enabled in Lync."
	}		

	#User not enabled.
	else {
		Write-Host "Adding user " $User.DisplayName -Foregroundcolor Green
		Enable-CsUser -Identity $User.DisplayName -Registrarpool "lyncpoolGMRC.gmrcnt.local" -SipAddressType Emailaddress

		#Check if last command failed.  If it does, log it.
		if(!$?) {
			Add-Content -Path $Log -Value "$($Fullname) not enabled.  $(Get-Date)$($error[0])"
			continue
		}

	}

	$index++	

}

Below I have posted the quick and dirty method to bulk import a list of users from a CSV file into your Lync environment using their first and last name using the Lync Management Shell (LMS). I say quick and dirty because it lacks a way to tell if users are already in the Lync environment as well as not having the ability to cope with users that have misspelled or changed names in the CSV file. But it works, for the most part in a jam.

I should mention that this can be modified to cope with different user views. For example,

The user’s Active Directory display name (e.g., “John Doe”)
The user’s SIP address (e.g., “sip:[email protected]”)
The user’s User Principal Name (e.g., “[email protected]”)
The user’s domain name and logon name, in the format domain_name\logon_name (e.g., psa\jdoe)

And here is the original code to get the users imported into your Lync environment. Again, very rough, check the updated version if you want more features.

#Variables
$File = "C:\Lync\lyncusers.csv"

#Import CSV File
$UserArray = Import-CSV -Path $File

if ($UserArray -eq $null)
{
write-host "No Users Found in Input File" -foregroundcolor red -backgroundcolor black
exit 0
}

ForEach ($User in $UserArray) {

#Check if user is in AD
$aduser = Get-CsAdUser -Identity $User.Name | Where-Object {$_.enabled -ne "true"}

#Enable user
if($aduser -ne $()) {
Enable-CsUser -Identity $User.DisplayName -Registrarpool "lyncpoolGMRC.gmrcnt.local" -SipAddressType Emailaddress
}
}

Write-Host "Users added successfully."

The CSV file will look similar to the following (in my case, DisplayName, or First and Last name):

I’ve found this to be helpful any time I need to add more than just a few users at a time into the current environment because the GUI is so cumbersome.

Helpful Keyboard Shortcuts in Server 2012

October 2, 2012August 31, 2015 Josh Reichardt 236 Comments

I am currently evaluating Server 2012, looking at all the new improvements it has to offer and have been playing with it in a test environment over the past week and am slowly gaining my bearings with regards to navigation and getting around in the new OS. This newest Microsoft release has definitely been an overhaul and it takes a certain amount of adjustment in getting used to. I would like to highlight a few useful commands that will tremendously decrease the burden and learning curve when you look at this new OS and adjust to its differences.

I should mention that if you are managing these servers through RDP you will need to change the default keyboard behavior to “On the Remote Computer” on the keyboard resource screen.

Windows key

This is the first and most obvious shortcut I would like to mention. It is probably the most important though as well and is also much easier in my opinion to access then placing your cursor in the bottom left corner. This will pull up the new and improved Start menu (though some would disagree). From here you can browse basic tasks or start typing to pull up the built in Search menu, which is actually pretty slick. The search feature along with the new Server Manager will quickly become your best friend in Server 2012.

Windows key + c

Opens the new Windows “Charm” bar, for those of you that are still new to 2012 like I am, this is the sidebar in the right if you drag your mouse the top right corner. It is so much easier to just use the keyboard shortcut here for the same reason that the Win key is for opening the Start menu. It is just annoying not to use the keyboard shortcut.

Windows key + x

This one is very handy once you get used to using keyboard shortcuts for everything. It essentially pulls up a list of some of the most common menus in the bottom left corner. It becomes very useful when you are doing a lot of maintenance on numerous 2012 servers.

Windows key + d

This is another great time saver. It has been around for awhile but it has become so much more useful in 2012 because of the change in the GUI. So if you’re like me and put a lot of stuff on the desktop then this is super helpful, especially if you have a bunch of windows open and your desktop is seemingly buried. To put things back to where they were then just punch in the key combo to restore your work space.

Windows key + q

This will pull open the search bar immediately which will skip the initial Start Menu screen, which isn’t always super useful in the first place.

Even with just these few shortcuts you will vastly improve your user experience in Server 2012, at least I did. Getting familiar with the newest version of Windows quickly will be an important step for administrators because the latest version offers so many improvements and useful features. It would be a foolish mistake not to invest in learning this GUI just because it is different and isn’t what people are used to.

Resource(s):
http://technet.microsoft.com/en-us/library/hh831491.aspx#BKMK_keys

Reset your ASA5505 Password

August 28, 2012August 31, 2015 Josh Reichardt 7 Comments

If you have forgotten the password to access your ASA configuration or need to perform maintenance on an ASA device but do not have administrative access, this process will guide you through the steps that are necessary to recover the password to administer it. You must be physically connected to the device for this method to work. In my case, I am directly consoled to the device through a serial cable connection and using PuTTY to reach into the device itself.

Reboot the device. While it is powering up, press the escape key to enter ROMMON.
To tell the device to ignore its normal configuration when the device is reloaded enter the following while in ROMMON:

rommon #0> confreg

You will see the current configuration register (normally 0x00000001) and will be prompted to to change its value. Be sure to make note of the register value so you can change it back later, when you are finished making changes.

Enter Y at the “Do you wish to change this configuration?” prompt to change the register value.
Accept the defaults (you don’t not need to specify Y/N, the default is already picked for you, simply hit enter to accept) for all settings except the “disable system configuration?” setting, select Y at this prompt as depicted below.

Reload the ASA to have it pick up the changes you just made.

rommon #0> boot

You should now be able to access the ASA by typing “en” to get to enable mode and then “conf t” to enter global config mode. From here you can paste in the config file you would like to use or simply change the password so you can administer the device as you normally would.

hostname(config)# password password
hostname(config)# enable password password
hostname(config)# username name password password

Finally, to exit out of ROMMON and have the ASA boot with its normal startup configuration, enter “confreg” value, where value is the previously noted registry value we recorded, 0x1. If you have trouble finding the usage or syntax of this command type “help” to well, help you.

rommon #1> confreg 0x1

Followed by a reload, as pictured below.

The ASA should boot up normally now and you should be able to go about your business without any further complications. Let me know if you know of any easier or better ways of resetting passwords for ASA devices.

Resources:
http://www.cisco.com/en/US/docs/security/asa/asa72/configuration/guide/trouble.html#wp1049302

Protip August: Quickly Determine Linux System Info

August 17, 2012August 31, 2015 Josh Reichardt 59 Comments

If you have ever found yourself in a situation where you are looking at a foreign Linux OS you know how handy it is to know exactly what type of system you are dealing with. Practically all modern flavors of Linux offer the following commands to quickly determine important information about a particular system.

lsb_release -a

This command is handy for obvious reasons. It quickly tells you what OS version you are looking at. As you can see it looks like my OS is a little bit out of date. 🙂

uname -a

This one is handy for quickly obtaining kernel information as well as generic OS info (OS, platform, etc).

Update (11/1/12)

I just found another way to gather the OS version quickly from the command line using the venerable cat command. The syntax for the command is as follows.

cat /etc/issue

Sweet! This is handy if you are only concerned with looking up the OS and version you are working.