Everything IT
Short post here, went to manage a VM and when opening it’s console windows was presented with a skewed image of the Guest VM OS console:
PowerShell to check the resolution:
Get-DisplayResolution
and then change it:
Set-DisplayResolution -Width 1280 -Height 800 -Force
I’ll keep this post short and to the point. Gott errors in the alerts.
I was like huh, interesting… go to validate it on the host by logging in via SSH then typing the command:
vdf -h
At the bottom you can see /tmp space usage:
I then found out about this cool command from this thread:
find /tmp/ -exec ls -larth '{}' \;
This will list all the files and their sizes to gander at, when I noticed a really large file:
I decided to look up this file and found this lovely VMware KB:
The Workaround:
echo > /tmp/ams-bbUsg.txt
The solution:
To fix the issue, upgrade to VMware AMS to version 11.4.5 (included in the HPE Offline Bundle for ESXi version 3.4.5), available at the following URLs:
HPE Offline Bundle for ESXi 6.7 Version 3.4.5
https://www.hpe.com/global/swpublishing/MTX-a38161c3e8674777a8c664e05a
HPE Offline Bundle for ESXi 6.5 Version 3.4.5
https://www.hpe.com/global/swpublishing/MTX-7d214544a7e5457e9bb48e49af
HPE Offline Bundle for ESXi 6.0 Version 3.4.5
https://www.hpe.com/global/swpublishing/MTX-98c6268c29b3435e8d285bcfcc
Procedure
esxcli -s <server> -u root -p mypassword software vib install -d <depotURL/bundle-index.xml>
esxcli -s <server> -u root -p mypassword software vib install -d <ESXi local path><bundle.zip>
esxcli software vib install -d <ESXi local path><bundle.zip>
esxcli software vib list
esxcli software vib remove -n <vib name>
Summary
Use the commands shown to trace the source of the usage, your case may not be as easy. Once found hopefully find a solution. In my case I got super lucky and other people already found the problem and solution.
So real quick one here. I edited a Replication job and changed it source form production to a backup dataset within the Veeam Replication Job settings. I went to run the replication job and was presented with an error I have no seen before…
I had an idea of what happened (I believe the original ESXi host might have been rebuilt) I’m not 100% sure, but just speculating. I was pretty sure the change I made on the job was not the source of the problem.
Since I wasn’t concerned about the target VM being re-created entirely I decided to go to Veeam’s Replica’s, and right clicked the target VM, and picked Delete from Disk… to my amazement the same error was presented…
Alright… kind of sucks, but here’s how I resolved it.
Sadly I had to right click the Target VM under Veeams Replicas, and instead picked “Remove from Configuration”. What’s really annoying about this is it will remove the source VM from the replication job itself as well.
Why? Unno Veeams coding choices...
So after successfully removing the target VM from Veeam’s configuration, I manually deleted the target VM on the host ESXi host. Then I had to reconfigure the replication job and point it to the source VM again. Again if your interested in why that’s the case see the link above.
After that the job ran successfully. Hope this helps someone.
Quick Post here… If you need to change Certificates on a SMTP receiver using TLS.. how do you do it?
You might be inclined to search and find this MS Doc source: Assign certificates to Exchange Server services | Microsoft Docs
What you might notice is how strange the UI is designed, you simple find the certificate, and in it’s settings check off to use SMTP.
Then in the connectors options, you simply check off TLS.
Any sensible person, might soon wonder… if you have multiple certificates, and they can all enable the check box for SMTP, and you can have multiple connectors with the checkbox enabled for TLS…. then… which cert is being used?
If you have any familiarity with IIS you know that you have multiple sites, then you go enable HTTPS per site, you define which cert to use (usually implying the use of SNI).
When I googled this I found someone who was having a similar question when they were receiving a unexpected cert when testing their SMTP connections.
Anyway, from the first post seems my question was answered, in short “Magic”…
“The Exchange transport will pick the certificate that “fits” the best, based on the if its a third party certificate, the expiration date and if a subject name on the certificate matches what is set for the FQDN on the connector used.” -AndyDavid
Well that’s nice…. and a bit further down the thread someone mentions you can do it manually, when they source non other than the Exchange Guru himself; Paul Cunninham.
So that’s nice to know.
You may have noticed a fair amount of chatter in that first thread about the default certificate. You may have even noticed some stern warnings:
“You can’t unless you remove the cert. Do not remove the built-in cert however. ” “Yikes. Ok, as I mentioned, do not delete that certificate.”-AndyDavid
Well the self signed cert looks like is due to expire soon, and I was kind of curious, how do you create a new self signed certificate?
So I followed along, and annoyingly you need an SMB shared path accessible to the Exchange server to accomplish this task. (I get it; for clustered deployments)
Anyway doing this and using the UI to assign the certificates to all the required services. Deleted the old Self Signed Cert, wait a bit, close the ECP, reopen it and….
I managed to find this ms thread with the same issue.
The first main answer was to “wait n hour or more”, yeah I don’t think that’s going to fix it…
KarlIT700 – ”
Our cert is an externally signed cert that is due to expire next year so we wanted to keep using it and not have to generate a new self sign one.
We worked around this by just running the three PS commands below in Exchange PS
Set-AuthConfig -NewCertificateThumbprint <WE JUST USED OUR CURRENT CERT THUMPRINT HERE> -NewCertificateEffectiveDate (Get-Date)
Set-AuthConfig -PublishCertificate
Set-AuthConfig -ClearPreviousCertificate
Note: that we did have issues running the first command because our cert had been installed NOT allowing the export of the cert key. once we reinstalled the same cert back into the (local Computer) personal cert store but this time using the option to allow export of the cert key, the commands above worked fine.
We then just needed to restart ISS and everything was golden. :D”
Huh, sure enough this MS KB on the same issue..
The odd part is running the validation cmdlet:
(Get-AuthConfig).CurrentCertificateThumbprint | Get-ExchangeCertificate | Format-List
Did return the certificate I renewed UI the ECP webUI… even then I decided to follow the rest of the steps, just as Karl has mentioned using the thumbprint from the only self signed cert that was there.
Which sure enough worked and everything was working again with the new self signed cert.
Anyway, figured maybe this post might help someone.