Resizing KVM qcow2 images

Expanding images

  1. Shut down the virtual machine
  2. Resize the image with
    qemu-img resize image.qcow2 +SIZE
    Where SIZE is the size (e.g. 10G for 10 gigabytes).
  3. Boot into gparted live and resize the partition.

Shrinking images

  1. Boot into gparted live and resize the partition smaller.
  2. If you managed to resize the partition from within the virtual machine (and thus didn’t shut it down already for resizing), shut it down now.
  3. KVM/QEMU images are stored in /var/lib/libvirt/images by default. I store them under /storage/images for my purposes. This process is done by root-only, so su is acceptable in this case. Create a new smaller qcow2 file to store the copied data
    qemu-img create -f qcow2 -o preallocation=metadata newimage.qcow2 NEW_SIZE
    where NEW_SIZE is the size (10G for the exampl...
Read More

Reset a Granstream GXP21xx phone without the menu

Pull the power cord and re-plug it.
When the phone says “booting” hold the 1 and the 9 keys and keep holding until the phone says Factory Reset and asks for the admin password.
To enter the password, you will need to press a key multiple times to get the character you want, such as “ABC1abc” you would press 1 several times to get to get to the small ‘b’.

Password: Grandstr3am

Press the large DOT key in the middle of the arrow keys.
Phone should reboot and re-program itself.

Read More

Auto Deploy Registry Key Through Group Policy

Not written yet.

Read More

Allow Access to Network Drives from Software Running as Admin

  1. Open Registry Editor.
  2. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System
  3. New DWORD value called EnableLinkedConnections, set to 1.
  4. Restart.
Read More

Office 365 Activation TPM error 80090034

This was a royal pain to solve!

  1. Is your BIOS up to date? Like really really up to date? I had to use the latest BETA version, not the latest STABLE version.
    • Remember to DECRYPT BEFORE bios updates or have your recovery key handy.
  2. tpm.msc
    • Does the system see the TPM? Yes/No, solve this.
  3. Can you encrypt with bitlocker? Yes/No, solve this next. Mine worked.
  4. sfc /scannow (does this finish or pass? Mine hung at 56%)
  5. chkdsk /r /f c: (does this finish? Mine did.)
  6. sfc /scannow (after chkdsk, does this now finish? Now it passed.)
  7. Is Windows completely up to date? Check over and over until ALL windows updates are installed. All optional updates too!
  8. Have you removed ALL office accounts from Windows?
    • Settings > Add, edit, delete users > Email & Accounts
    • Launch WORD > (Upper right corner, your username and a...
Read More

Domain Password Policy Location GPO

Computer Configuration > Policies > Windows Settings > Security Settings > Account Policies > Password Policy

Read More

Screensaver Lockscreen and Background GPO

Idle lock screen timeout settings:

Computer Configuration > Policies > Windows Settings > Security Settings > Local Policies > Security Options
  • Interactive logon: Machine inactivity limit
    • Enable
    • Set timeout in seconds.

Force a specific Background:

User Configuration > Policies > Administrative Templates > Desktop > Desktop
  • Desktop Wallpaper
    • Enable
    • Set a UNC path to the wallpaper ( i.e. \\path\to\file.jpg )
Read More

Disable Slow Link Detection GPO

Create a GPO and enable these settings. Related descriptions and values explained in citations.

Both Computer Configuration and User Configuration may have these policies modified:

Policies > Administrative Templates > System > Group Policy
  • Configure Group Policy slow link detection
    Enable the policy and set value to 0 to disable slow link detection.

Read More

Trust the Server/Intranet GPO and Trust Yourself

Create a GPO and enable three settings. Related descriptions and values explained in citations.

Both Computer Configuration and User Configuration need these policies modified:

Policies > Administrative Templates > Windows Components > Internet Explorer > Internet Control Panel > Security Page
  • Intranet Zone Template > Enabled > Low
  • This template policy setting allows you to configure policy settings in this zone consistent with a selected security level, for example, Low, Medium Low, Medium, or High. If you enable this template policy setting and select a security level, all values for individual settings in the zone will be overwritten by the standard template defaults.
  • Site to Zone Assignment List > Enabled > Show…
      A host for an intranet site, ...
Read More

Enable Linked Network Drives over UAC

Windows 10, Windows 8, Windows 7 and Windows Vista come with a special Group Policy option which unlocks network drives for programs running elevated:

  1. Open Registry Editor.
  2. Go to the following Registry key:
  3. Create a new DWORD value called EnableLinkedConnections, and set it to 1.
  4. Reboot.
Read More