Tachytelic.net

How To

Disable Pause Updates for 7 days feature of Windows 10

by Leave a Comment

The May 2019 update of Windows 10 (version 1903) introduced a new feature which allows users to Pause Updates for 7 days. This post covers how to disable that feature in a domain environment.

Update ADMX Templates from build 1903

At the time of writing this post, Microsoft have not made an updated ADMX template bundle for the May 2019 update of Windows 10.

So the easiest (but maybe not ideal) solution is to copy the ADMX files from an updated Windows 10 machine to your central store, you can find them in:

C:\Windows\PolicyDefinitions

Simply copy the contents of the folder into your domain controller, most likely in:

C:\windows\SYSVOL\domain\Policies\PolicyDefinitions

Make sure that you copy the definitions from an updated version of Windows 10, check the version using these instructions.

If you do not have easy access to the files, I have made them available here. But please understand that the zip file contains only the en-US and en-GB folders, so if you need another language then this download will not be suitable for your environment:

Download Windows 1903 ADMX Templates by clicking on this link.

Edit Group Policy Settings to disable the Pause Updates feature

Once you have updated the Policy Definitions on your domain controller, you will be able to disable the pause updates feature by doing the following:

  • Open Group Policy Management
  • Create and Link a new Group Policy or edit an existing one which targets the machines you want to edit the behaviour on.
    Image showing creation of a new Group Policy Object to disable the Pause Updates Feature of Windows 10 May 2019 Update
  • Navigate to:
    • Computer Configuration
    • Policies
    • Administrative Templates
    • Windows Components
    • Windows Updates
      Image showing Windows Update branch in Group Policy Settings
  • In the right hand pane, double click on:
    Remove access to “Pause updates” feature
  • Set it to “enabled” to disable access to the feature.
    Image showing how to disable the Pause Updates Feature in Windows 10 in a domain environment

Now you can either reboot or force a group policy update and the option to pause updates will have been disabled.

How to change the default Dell iDRAC Password

by Leave a Comment

The Dell iDRAC is so useful for many things, but in its default configuration it is very insecure:

  • The default username is “root”
  • The default password is “calvin”

In this post I will show you how both rename the root account and change the password.

Renaming the root account adds a layer of obscurity making it more difficult for unauthorised users to gain console level access.

How to rename the iDrac root account and change the password.

  • Login to the iDRAC using your credentials or use the default if they have not been changed
  • On the left hand menu, choose “iDRAC Settings” and then “User Authentication”:
    Image showing User Authentication Settings on Dell iDRAC Enterprise
  • Click on the User ID that corresponds to the root account, to edit it:
    Image showing root account of Dell iDrac
  • The default action of “Configure user” should already be selected, so click on “Next”
  • Change the username as per your preferences and set the new password:
    Image showing root account of Dell iDrac being renamed and password changed.
  • Scroll to the bottom of the page and click apply.
  • Log-out of the iDrac and check your new settings.

Check if File Exists with Powershell

by 1 Comment

It’s very easy to check if a file exists with Powershell and take an action if so, here are some examples:

Check if a file exists

$fileToCheck = "C:\tmp\test.txt"
if (Test-Path $fileToCheck -PathType leaf)
{
    #do some stuff
}

Delete file if it exists 

$fileToCheck = "C:\tmp\test.txt"
if (Test-Path $fileToCheck -PathType leaf)
{
    Remove-Item $fileToCheck
}

An even shorter method….

$fileToCheck = "c:\tmp\test.txt"
Remove-Item $fileToCheck -ErrorAction Ignore

Check if a file exists and get the content

$fileToCheck = "C:\tmp\test.txt"
if (Test-Path $fileToCheck -PathType leaf) {Get-Content $fileToCheck}

Check if a file exists and print a message if it does or does not exist

$fileToCheck = "C:\tmp\test.txt"
if (Test-Path $fileToCheck -PathType leaf) 
{"File does Exist"}
else
{"File does not exist"}

Check if a file exists and show the properties of the file

$fileToCheck = "C:\tmp\test.txt"
if (Test-Path $fileToCheck -PathType leaf)
{
    $file = Get-Item $fileToCheck
    $file.FullName
    $file.LastAccessTime
    $file.Length
    $file.Extension
    #etc...
}

Check if a file exists and move it to a new location

$fileToCheck = "C:\tmp\test.txt"
$newPath = "c:\tmp\newFolder"
if (Test-Path $fileToCheck -PathType leaf) 
{
    Move-Item -Path $fileToCheck -Destination $newPath
    "$fileToCheck moved to $newPath"
}

It’s obvious from the above examples that Test-Path simply returns a Boolean (i.e. True or False) and executing it on its own will produce exactly that:

Image showing result from Powershell "Test-Path" to check if a file exists.

The PathType parameter is not strictly required, but it is useful if you want to be sure the check you are performing is actually a file, not a directory.

You can check for a directory by setting PathType to “container”

Use Windows Powershell to provide GNU Grep Functionality

by 1 Comment

Unix and Linux have had the incredibly powerful grep tool for decades but windows has always been lacking. PowerShell brings the functionality of grep with the Select-String cmdlet.

Use Select-String to Grep a Single File

To grep a simple text file is as easy as:
Select-String -Path "D:\script\Lorem-Ipsum.txt" -Pattern 'Tachytelic'

You can also use a wildcard:
Select-String -Path "D:\script\*.txt" -Pattern 'Tachytelic'

Grep Recursively with Get-Childitem

Unlike grep, Select-String does not have the ability to search recursively, but you can pipe output to it from Get-ChildItem, like this:
Get-ChildItem -Path "D:\Script\*.txt" -Recurse | Select-String -Pattern 'tachytelic'

Piping to Select-String

Just like grep, you can pipe to Select-String like this:
Get-Content "D:\Script\Lorem-Ipsum.txt" |Select-String "tachytelic"

If you want to make it more like Unix/Linux, add an alias to the Select-String cmdlet:
Set-Alias -Name grep -Value Select-String

Then you can simply pipe to Select-String like this:
cat "D:\Script\Lorem-Ipsum.txt" |grep "tachytelic"

Loop through results from Select-String

Here is an example that greps for a string and uses the results in a loop to determine if some action should be taken:

$pattern = "tachytelic"
$files = Select-String -Path "d:\script\*.txt" -Pattern $pattern
foreach ($file in $files) {
  $filename=$file.Filename
    $item = get-item $file.Path
    "File '{0}' matches the pattern '{1}'" -f $item.FullName, $pattern
    "It was last modified on {0}" -f $item.LastWriteTime
 
  $response = Read-Host -Prompt "Set the archive bit on this file?" 
  If ($response -eq 'Y') {
    $item.attributes="Archive"
    }
}

Which produces output like this:
Example output from Powershell providing grep functionality

grepping in Powershell seems to be incredibly fast, I have not conducted any testing against the performance of GNU Grep, but I don’t think you will be disappointed by the performance.