Windows,AWS and Vmware Insight

How to create Group on AWS 1) Login to AWS management console 2) Search IAM in AWS services 3) Click Groups in IAM 4) Click on "create new group" 5) Specify group name 6) Select Policy to attach     Policy defined the level of permissions to the member of group.      7) Select AWS managed role based policy      AWS provides AWS managed policies for role based access. E.g. "AmazonEC2FullAccess"      or      You can select Job function related policies E.g. "NetworkAdministrator"      or      You can select Customer Managed policy (custom policies created by customer) 8) Review and click create Group Note: Groups are used for better management of access and permissions, It is recommended to use groups to provide permissions instead of providing to individual users.

Cloud Formation Script for VPC creation 1) Copy below text of script in notepad and save it as .yaml file 2) Go to AWS and cloud formation 3) click create stack 4) select template already exists and upload this .yaml file 5) It will prompt you to provide VPC name and IP range as those are kept as parameter in this template Note: make sure empty spaces are not changed before the command starts -------------------------------------------------------------------------------------------------------------- AWSTemplateFormatVersion: 2010-09-09 # This CloudFormation template deploys a basic VPC / Network. Parameters:   VPCName:     Type: String     Description: Please provide VPC name as per naming convention   CIDRBlock:     Type: String     Description: Please provide IP range for VPC e.g 10.10.0.0/16 Resources: # VPC Build   VPC:     Type: AWS::EC2::VPC     Properties:       CidrBlock: !Ref CIDRBlock       EnableDnsSupport: true       EnableDnsHostn

How to create NAT GATEWAY on AWS Use of NAT GATEWAY: Nat Gateway is service provided by AWS to provide internet access to private subnet without exposing to internet through Natting. Prerequisites: EIP (public IP) and Public Subnet Steps: 1) on Home page in find services search box type "Nat Gateway" and search 2) VPC page will open 3) Click Nat Gateway from options on the left panel 4) Click create Nat Gateway 5) Select Public Subnet created as part of prerequisite 6) Select Elastic IP created as part of prerequisite 7) click create Nat Gateway Best Practice: Create Nat Gateway for each AZ to avoid single point of failure in case of AZ outage

How to create user and assign permission on AWS IAM 1) Login to AWS management console 2) Search IAM in AWS services 3) in IAM click on users 4) click on ADD user 5) Type username that you want to create 6) select access type  Programmatic access or  AWS Management Console access or select both    a)  Programmatic access: S elect this if user need to access AWS through CLI or through Application     b)   AWS Management Console  access  : Select this if user need to login through console Note: Select only required access, if user will be used only to run scripts then do not give console access and if user will login only through console then do not give programmatic access 7) Select autogenerated password or custom password   Autogenerated password : AWS will generate random password   custom password: You need to specify password 8) Select require password reset if you want user to reset password at next sing in 9) Click next 10) Add user to existing group

VMware SRM best practices 1) If you have different types of replicated storage for DR then create separate SRM plan for each type of storage instead of one plan 2) Keep DRS enabled at recovery site to balance the load during DR recovery 3) Create priority groups based on inter dependencies of VMs 4) Keep same ESXI versions at protected and recovery site 5) Keep separate network link for replication

How to backup and restore NTFS permissions of shared folder 1) Map shared drive to your computer/server (e.g. Z) 2) Open command prompt 3) go to shared drive (z:) 4) run command "ICACLS Z:\* /save filename /T" replace filename with name of file which you would like to give to save permissions this command will save permissions of files and sub folders inside share 5) to restore permissions run command "ICACLS Z:\ /restore filename" replace filename with name of file that you used during backup

How to take backup of DHCP server 1) Start command prompt 2) Run command "netsh dhcp server export "file name" all" to export all scopes of DHCP servers in file name specified in command How to Restore DHCP server from backup taken as per above section 1) Start command prompt 2) Run command "netsh dhcp server import "file name" all" to import all scopes on DHCP server How to take backup of particular scope 1) Start command prompt 2) Run command "Netsh DHCP server v4 export "Scope name" "subnet" How to restore only particular scope 1) Start command prompt 2) Run command "Netsh DHCP server v4 import "Scope name" "subnet"

How to change windows based vCenter 6.5 service account name  In vSpeher 6.5 windows based vCenter does not have a separate service in services.msc as it used to be till vSphere 6.0. In vSphere 6.5 it runs as a standalone server rather than a service.  This makes difficult for admins to change the name of the vCenter service account if someone wants to change it post installation. Below are the steps to change the service account for a windows based vCenter instance. Before you proceed please take a snapshot of the vCenter VM  or backup the system in case of physical machine. Step 1 :  First you need to check with which account the service is running. Please go to task manager or use powershell to get the service account details. Step 2:   Go to "C:\ProgramData\VMware\vCenterServer\cfg\vmware-vmon\svcCfgfiles" and  Step 3:   Edit files  .state_vpxd ,  .state_vdcs ,  .state_perfcharts and .state_vpxd-svcs  and change the username  to the

Script to ping multiple devices This Script can be used by admins to generate a ping response to any device in a one go. It can be used to check the connectivity to a number of devices post activity in a one go. Prerequisite:- 1. Windows PowerShell How To:- 1. Provide the devices name in a .csv file (file name devices.csv) and keep that file on system drive(C:) 2. csv file should have two columns dev and ipaddress. dev column should contain device hostnames and ipaddress column should have device ipadderss.  3. Script is tested and safe to run. 4. Result will be saved on the C drive, if you need to save it somewhere else then please modify the last line of the script with the desired path 5. Out-put of the script will be saved in a .csv format. Code:- $report=@() $Devs=import-csv "$env:homedrive\Device.csv" foreach($dev in $devs){ $data=''|select Host, IP, Result, Response $data.host=$dev.dev $data.IP=$dev.ipadd