Topics started by Iams3le
If you wish to explore the capabilities of Veeam Backup and Replication v11A, then you probably upgrade to this version. Kindly visit the following URL for more of these capabilities/features.Here is a link to the complete guide highlighting on all the needed steps.You may be notified if there is an update of the Veeam Backup and Replication. Upon clicking on this notification, you will be redirected to the following KB (download) link. Note: I will be upgrading from Veeam v11 Build 220.127.116.119 → 18.104.22.1681.I will be downloading the new 11A ISO as shown below. If you are not prompted that an update is available, you can download the latest version of the Veeam Backup and Replication ISO from the following Veeam Backup & Replication Download page. You will be required to login in order to access the download. Before proceeding to upgrade, ensure all existing jobs are successfully completed. If there are any filed jobs, ensure to re-run them.- Also, ensure there isn't any restore s
Git has released a new verson to address some security vulnerabilities, As reported, we are aware that GitHub is affected. But there is a need to upgrade your local installation of Git, especifially when you are using Git on Windows or on multi-user machines. All credit goes to to 俞晨东, and the fix was authored by Johannes Schindelin. CVE-2022-24765As stated in this article, this vulnerability affects multi-user machines, Git users might find themselves unexpectedly in a Git worktree, e.g. when another user created a repository in C:\.git, in a mounted network drive or in a scratch space. Merely having a Git-aware prompt that runs git status (or git diff) and navigate to a directory that is supposedly not a Git worktree, or open such a directory in an editor or IDE such as VS Code or Atom, which will potentially run commands defined by that other user. Vulnerability ImpactSince part of Git for Windows’ uninstaller is copied into the current user’s temporary directory and run in that pla
Microsoft says that Windows 11 will get more security improvements in upcoming releases, which will add more protection against cybersecurity threats, offer better encryption, and block malicious apps and drivers. Perhaps you want to learn how you can protect your device against theft as a consult due to frequent travels etc: Kindly take a look at link1 and link2. I have a torn of guides on this topic. Kindly ensure to search the archive!It was also noted in the report that significant security updates which adds even more protection from the chip to the cloud by combining modern hardware and software will be added. Below are some of the key features.Enhanced phishing protection against targeted phishing attacks with the help of Microsoft Defender SmartScreen, a cloud-based anti-phishing and anti-malware service. With SmartScreen integrated into the OS, Windows users will be warned when entering their credentials into malicious applications or hacked websites. This has been proven to w
The following disclosure vulnerability (CVE-2022-22948) was reported to VMware by Yuval Lazar (@Ul7raVi0l3t) of Pentera. To remediate this vulnerability, apply the patch in the response matrix below as it applies to you. The vCenter Server contains an information disclosure vulnerability due to improper permission of files. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 5.5.Below are the affected productsVMware vCenter Server (vCenter Server) VMware Cloud Foundation (Cloud Foundation)An information disclosure vulnerability in VMware vCenter Server was privately reported to VMware. Updates are available to remediate this vulnerability in affected VMware products.Known Attack VectorsA malicious actor with non-administrative access to the vCenter Server may exploit this issue to gain access to sensitive information.ResolutionTo remediate CVE-2022-22948 apply the patches listed in the 'Fixed Version' column of the 'R
There are two critical CVEs that affect Veeam Backup & Replication and account for two of the three critical Veeam Backup & Replication CVEs, and the most serious of the products affected. The Critical Veeam Backup & Replication vulnerability notes include: CVE-2022-26500 | CVE-2022-26501CVE-2022-26500, CVE–2022-26501: These two CVEs relate to Veeam Backup & Replication allow executing malicious code remotely without authentication. This may lead to gaining control over the target system. This carries a CVSS rating of 9.8 and is classified as Critical.Cause? – The vulnerability is caused by the Veeam Distribution Service, running on TCP 9380 by default, allows unauthenticated users to access internal Veeam API functions. An attacker may send input to the Veeam API which may allow uploading and executing malicious code.It is worth nothing that patches are available for Veeam 11a and 10a as follow11a – Build 22.214.171.1241 P20220302: https://www.veeam.com/kb4245?ad=in-text-l
Vulnerability (CVE-2022-26503) in Veeam Agent for Microsoft Windows allows local privilege escalation. An attacker who successfully exploited this vulnerability could run arbitrary code with LOCAL SYSTEM privileges.https://www.veeam.com/kb4289
Hello Legends/Vanguards in the building,I would like to write about this course (VMCA) on my blog and also share the write up here word to word. If any of you is interested in saying a word (contributing) to the reviewing the Veeam Backup & Replication: Architecture and Design (VMCA) course, please pleat me know. You can share your thoughts in the comment session or send me a message privately. I will collate all information and post it online. I will do a lot of social media promotion on it as well. An opportunity to affect and influence the product, let’s seize it guys!Kindly spare some minutes of your time as this will greatly influence the outcome for many future VMCAs. After reading @MicoolPaul post today “Veeam Legend Experience - Year One Review” I have gotten more points to write on :-) Hello @haslund , can I also reference your videos thread? I can see some of us already contributed in the comment session via this post from @regnor!I will be looking forward to some lines
Error 1064 - An exception occurred in the service when handling the control request : No connection can be made because the active machine rejected it
For some reason and to come to speed with all the Veeam components, I decided to revive my Veeam Lab and during the process, I encountered the following error “Error 1064 - An exception occurred in the service when handling the control request : No connection can be made because the active machine rejected it “. Before I proceed to fix this issue, I would love to discuss the capabilities of Veeam for anyone that may stumble on this article. Veeam Backup & Replication is comprehensive data protection and disaster recovery solution that provides a centralized console for administering backup, restore, replication operations in all supported platforms (virtual, physical, cloud). Regardless of what your needs are ranging from flexible hybrid cloud capabilities from AWS, Azure, and Google Cloud, or the most robust ransomware protection and recovery options. Veeam brings hardened immutable storage options, dependable cloud-native backup options, Continuous Data Protection, and much more
The Cisco Champion program is now accepting applications. Cisco Champions are passionate about technology. They enjoy sharing their knowledge and thoughts with the technical community.Members gain early insights into Cisco products and solutions; provide candid feedback through message testing, beta testing and EFTs; and receive exclusive access to a diverse peer network. Applications are open for a limited time. Use the following hyperlink to Apply by Friday, March 4.
How to synchronise your Active Directory (On-Premise) with Azure Active Directory via the Azure AD Connect
Azure AD is a cloud-based multi-tenant directory and identity service that provides identity and access management capabilities in the cloud.Since choosing the correct authentication method is the first concern for organisations wanting to move their apps to the cloud. The following section helps you decide which authentication method is right for you by using a decision tree. It helps you determine whether to deploy cloud or federated authentication for your Azure AD hybrid identity solution.Scr: MicrosoftTo choose an authentication method, you need to consider the time, existing infrastructure, complexity, and cost of implementing your choice. These factors are different are different from Organisation to organisation. Because of this, I will be highlighting on the different authentication methods. They are as follow;Azure AD password hash synchronization: This is basically the simplest way to enable authentication for on-premises directory objects in Azure AD. Users can use the same
Impacted Products: VMware NSX Edge A CLI shell injection vulnerability affecting VMware NSX Edge was privately reported to VMware.- Updates are available to address this vulnerability in affected VMware products.- VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 8.8. Known Attack VectorsA malicious actor with SSH access to an NSX-Edge appliance can execute arbitrary commands on the operating system as root.ResolutionTo remediate CVE-2022-22945 apply the patches listed in the 'Fixed Version' column of the 'Response Matrix' below.Workarounds: NoneResponse MatrixProduct Version Running On CVE Identifier CVSSv3 Severity Fixed Version Workarounds Additional Documentation VMware NSX Edge Any Any CVE-2022-22945 8.8 Important 6.4.13 None None Downloads and Documentation:- https://customerconnect.vmware.com/en/downloads/details?downloa
Some potential security vulnerabilities have been reported on the 8th of this month on the impact / vulnerabilities in the BIOS firmware for some Intel® Processors which may allow escalation of privilege, denial of service or information disclosure. Intel ID: INTEL-SA-00527 Advisory Category: Firmware Impact of vulnerability: Escalation of Privilege, Denial of Service, Information Disclosure Severity rating: HIGH Original release: 02/08/2022 Last revised: 02/08/2022 All affected products are listed on the intel website and the recommendations as well as I quote below.Intel recommends that users of listed Intel® Processors update to the latest versions provided by the system manufacturer that addresses these issues. You may want to read more about the Intel vulnerabilities in the following URL below- https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00527.html
Issue Date:2022-01-04Updated On:2022-01-27VMSA-2022-0001 - VMware Workstation, Fusion and ESXi updates address a heap-overflow vulnerability (CVE-2021-22045)- Please see the updated advisory here: https://www.vmware.com/security/advisories/VMSA-2022-0001.html Below is a related post.https://community.veeam.com/topic/show?tid=1966&fid=81
For those of use that have won the “Nike Air Force 1 shoes”. Kindly endeavour to share on your Twitter and Facebook, and Reddit (sub-reddit) platforms. https://www.reddit.com/r/TDArchive/comments/sdb0id/my_nike_air_force_1_shoes/ (Unfortunately, Reddit yanked my old community off.. Here is a new one and I have no time yet to grow it). https://www.facebook.com/TechDarchive/photos/a.135315758105436/487508049552870/ https://www.instagram.com/p/CZM4fhaI_mN/There is a flyer in the pack to this effect! You can find some of the other winners in the link below.
Failed to connect to Veeam Backup and Replication server: How to fix Remote Channel Sink UriNotPublished, remote connection refused, and failed to start the service
Veeam Backup and Replication is comprehensive data protection and disaster recovery solution which is capable of creating image-level backups of virtual, physical servers, cloud machines, and restoration as well. You may encounter the following errors when installing the Veeam backup and replication tool “VEEAM service is unable to start, error 1064: An exception occurred in the service when handling the control request”. Therefore, I will be showing you the steps on how to resolve this issue very quickly. Here is a detailed link to this post.If you are here reading this troubleshooting guide "new Veeam Backup server but then Veeam won’t start", this means you must have recently installed Veeam Backup and Replication Server or must have recently upgraded it. As you can see from the images below, these are some errors I encountered while installing Veeam Backup and Replication in my test environment before deployment.The "Failed to start service / connect to Veeam" and "connection refus
Veeam Backup for Microsoft Azure is purpose-built for simplicity, scale, savings, and security for your Azure environment. Veeam Backup for Microsoft Azure is available as a virtual machine (VM) offer exclusively through the Azure Marketplace in both Free and BYOL editions.Here are some guides that may interest you: How to set up Veeam ONE 11 Server, What’s new in Veeam Backup and replication v11?, how to install and configure Veeam Backup and Replication 11 Community Edition with its default SQL Server Express Edition, how to migrate Veeam MsSQL Database to a new MsSQL Server, and how to install Veeam Backup and Replication 11 Community Edition with a dedicated SQL Server.Due to the Shared Responsibility Model by Cloud providers, it is evident that it is still your data and that you retain the responsibility to secure and protect it. You may want to take a look at Veeam Backup & Replication which can also enable you to centrally manage Azure backup with another cloud, virtual, phy
Trilled to announce I have won a pair of the hand-painted and custom designed Nike Air Force 1 VeeamON shoes
I am more than excited to announce today that I was selected from the raffle as a winner of this amazing prize. Basically I love kicks and this will be my regular henceforth.My enthusiasm go make me to use this shoe almost every day eeehn (Naija pidgin) . Special thanks to @Kseniya and @Rick Vanover for this special opportunity as a Veeam Legend. I am grateful once again.This bring me to the question @Rick Vanover, how can Veeam maximise my sites? I love to even showcase Veeam more and more on my site. I get thousand of visitors and viewers around the world each day, and I want Veeam to leverage on this.
Since majority of us use Windows for our day to day operations, in this guide, you will learn about Windows update expiration policy.By expiring older, redundant packages, you will get better performance, shorter scan times, a faster user experience, and a reduced risk of deploying older updates that have been superseded with newer, more secure ones.Note: This policy only applies to Windows updates. Updates for other Microsoft software or firmware may have different policies and should be considered separately.An expired package will not appear in Windows Update scan results thereby reducing internet data usage.Kindly visit this link to learn more.
Recently, I have noticed on this platform that most of us work with Windows Server 2016, 2019, and now 2022. Also even Windows 10. In this guide, I will be showing you how to update the Windows installation image (install.wim) file with the latest security intelligence package available. I have successfully tested this on Windows 10 Enterprise, Pro und Home-Edition and Windows Server 2016 and 2019. Here is a detailed guide on "how to install ADK, MDT, and WDS: How to deploy Windows images via Microsoft Deployment Toolkit and Windows Deployment Services".How do you provision your new servers? Regardless of how this is done, you may also find this guide useful.Microsoft Defender Antivirus, formerly known as Windows Defender, is an antivirus protection program that’s included with Windows 10. Unlike other antivirus programs like McAfee, Microsoft Defender is free and doesn’t require any additional installation. After the installation of Windows 10, the built-in version of Microsoft Defend
Veeam ONE is a comprehensive solution developed by Veeam Software and it enables real-time monitoring, business documentation, and management reporting for Veeam Backup & Replication, VMware vSphere, VMware vCloud Director, and Microsoft Hyper-V. Veeam ONE is designed to give IT administrators peace of mind to manage every aspect of the modern virtual environment.Do not turn your eyes away from unknown issues lurking in your environment. Mitigate potential issues even before they occur (threats) with 340+ preset alarms and 150+ prebuilt reports available in Veeam One.Veeam ONE brings deep visibility that helps you prevent common backup problems, stay informed about your storage trends and cut costs through better storage usage and planning, thanks to new insights for NAS data.In the typical deployment scenario, all Veeam ONE components are installed on a single machine, and this comprises of the Veeam ONE Client and Veeam ONE Web Client.– Veeam ONE Client is the primary tool used f
Veeam Backup & Replication is a data protection and disaster recovery solution for virtual, physical, and cloud environments. With Veeam Backup & Replication you can Create crash-consistent and application-consistent backups of virtual and physical machines, quickly restore physical machines, EC2 instances, VMs, VM disks, guest OS files, and application items, perform a backup health check to verify that backups are not corrupted and are ready for restoring, create VM replicas and switch to them in case of a disaster and automate transferring of backups to tapes and other external repositories. Veeam Backup and Replication Configuration Database Settings come with the Veeam.Backup.DBConfig.exe utility that allows you to manage connection settings for Veeam Backup & Replication and/or Veeam Backup Enterprise Manager configuration database. Using this utility, you can:1. Connect to a different Microsoft SQL Server instance. If you specify a database that does not exist yet, i
It is being found that the official app used in installing SteelSeries devices on Windows 10 can be exploited to grant Admin rights as discovered by some security research “Lawrence Amer“. As stated by BleepingComputers, the bug can be leveraged during the device startup process using a link in the License Agreement screen that is opened with SYSTEM privileges. A real SteelSeries device is not necessary to exploit the bug. Also, a bug was discovered in the Razer Synapse software that granted unauthorised admin access. Now, a similar bug was found in SteelSeries software that gives anyone who plugs in a device complete control over a Windows 10 PC with admin rights. Emulating a device also works: This discovery became known after news broke out about the Razer Synapse software as it was able to grant administrative privileges when connecting a Razer mouse or keyboard. This motivated the research from Jorhat, offensive security researcher Lawrence Amer (research team leader at 0xsp) foun
Yet another Windows print spooler zero-day Vulnerability: Mitigate Windows Print Spooler Remote Code Execution – CVE-2021-36958
Microsoft has issued an advisory for another zero-day Windows print spooler vulnerability tracked as CVE-2021-36958 that allows local attackers to gain SYSTEM privileges on a computer. As stated by Microsoft, an attacker who successfully exploits this vulnerability could run arbitrary code with SYSTEM privileges.I you wish to have more detailed information on the development of this vulnerability, when it was first discovered, its workaround and patches released so far, please visit the following links.Unlike the previous exploits, this vulnerability affects for the Windows print spooler, Windows print drivers, and Windows Point and Print. For a detailed guide, please refer to this link. Here is a link to the video (Twitter trend) as discovered by Benjamin Delpy. How do you mitigate this issue? There isn’t a patch (update) as at the time of this writing. The good thing is, there is always a workaround.– You can disable the Print Spooler service or allow your device to install printers
This is a recent research by security specialists of the Dolos Group to determine if an attacker can access the organisation network from a stolen device and also perform lateral network movement.They were handed a Levovo Laptop preconfigured with the standard security stack for this organization. No prior information about the laptop, test credentials, configuration details, etc were given. They stated it was a 100% blackbox test.Once the got hold of the device, they headed straight to work and performed some reconnaissance of the laptop (BIOS settings, normal boot operation, hardware details, etc) and noted a lot of best practices were being followed, negating many common attacks. For example:Pcileech/DMA attacks were blocked because Intel’s VT-d BIOS setting was enabled. All BIOS settings were locked with a password. The BIOS boot order was locked to prevent booting from USB or CD. Secureboot was fully enabled and prevented any non-signed operating systems. Kon-boot auth bypass did
Login to the community
Log in with your Veeam account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.