Lync 2013 / SfB 2015 Client Updates – 2020

I last blogged updates to the Office 2013 / Skype for Business 2015 client in August last year. There appear to have been two releases in the intervening period.

Lync 2013 / SfB 2015 Client Update – March 2020

Kb 4484097. The version number of this update is 15.0.5223.1000.

It contained one documented fix:

  • Kb 4538707 Allow Skype for Business 2015 (Lync 2013) user to start a meeting to share screen or have a group call with a Microsoft Teams user.

Continue reading ‘Lync 2013 / SfB 2015 Client Updates – 2020’ »

Use PowerShell to clear stubborn file attributes

For several years we’ve used a basic data backup program that exploits the archive bit on files to determine if they need to be backed up or not. We run a weekly full backup with daily differentials. After the weekly backup is run, the archive bit is reset on all files, ready for the next week.

Except it isn’t.

It turns out that if the file has both the system and hidden bit set, you can’t change any of the attributes. This is apparently a known issue that goes right back to the attrib command back in the MS-DOS days.

The end result is that our differential backups end up full of seemingly empty directories that simply don’t need to be there. The usual culprit is a hidden desktop.ini or thumbs.db file.

The simple solution would of course be to run the attrib -a /s /d command on the drive after the weekly backup has completed. But as we now know, that doesn’t work:

PowerShell to the Rescue!

Continue reading ‘Use PowerShell to clear stubborn file attributes’ »

Ribbon SBC v9 Adds Emergency Notifications

Amongst the new features in Ribbon’s v9 release of firmware for its 1k, 2k and SWe-Lite family of SBCs is support for “Kari’s Law”.

Kari’s Law

Kari’s Law is named in honour of Kari Hunt, who was killed by her estranged husband in a motel room in Marshall, Texas in 2013. Ms. Hunt’s 9-year-old daughter tried to call 911 for help four times from the motel room phone, but the call never went through because she did not know that the motel’s phone system required dialing “9” for an outbound line before dialing 911.

Congress responded by enacting Kari’s Law in 2018, and in August 2019, the FCC adopted rules implementing Kari’s Law and Section 506 of RAY BAUM’S Act.

Under the statute and the Commission’s rules, multi-line telephone systems (MLTS) manufacturers and vendors must pre-configure these systems to support direct dialing of 911 — that is, to enable the user to dial 911 without having to dial any prefix or access code, such as the number 9. In addition, MLTS installers, managers, and operators must ensure that the systems support 911 direct dialing.

The Commission’s rules also implement the notification requirement of Kari’s Law, which is intended to facilitate building entry by first responders. When a 911 call is placed on a MLTS system, the system must be configured to notify a central location on-site or off-site where someone is likely to see or hear the notification. Examples of notification include conspicuous on-screen messages with audible alarms for security desk computers using a client application, text messages for smartphones, and email for administrators.

(The above text is from the FCC webpage, see References at the bottom of this post.)

Continue reading ‘Ribbon SBC v9 Adds Emergency Notifications’ »

SfB 2019 Server Update – September 2020

With the dust still settling from last week’s Ignite we can get back to our usual routine, and what better way to do this than with CU4(?) for SfBS 2019.

Our last update was July’s security update to 7.0.2046.236, and this new release (7.0.2046.244) updated nine components on my Standard Edition Front-End.

What’s Fixed?

  • Kb 4538699 Wrong end point shown for a transfer call in Skype for Business Server
  • Kb 4537395 SQL Server Agent LcsLog purge job fails with error in certain scenarios in Skype for Business Server
  • Kb 4538703 Increase characters limit for Notification URI in Skype for Business Server Control Panel and PowerShell
  • Kb 4538700 PSTN call transfer fails if agent anonymity is enabled in Skype for Business Server
  • Kb 4583494 Missed call notification occurs due to wrong handling of SIP header in Skype for Business Server 2019
  • Kb 4507230 Support LBR and branch site voice resiliency conflicting requirements in Skype for Business Server
  • Kb 4576667 Skype for Business Server 2019 fabric logging folder consumes more than 60 GB
  • Kb 4537396 IM filter doesn’t work if network path has host server name in Skype for Business Server
  • Kb 4518679 Skype meeting disconnection because of missing session refresh in Skype for Business Server
  • Kb 4537394 UCWA unhandled exception – InvalidDataException in Skype for Business Server
  • Kb 4512879 UCWA client can’t make a P2P call or join a conference when EnableExternalAccessCheck is True and EnableOutsideAccess is False in Skype for Business Server
  • Kb 4510856 User can’t create Skype meeting for a delegator via Skype for Business on Mac if they’re homed in different pools in Skype for Business Server
  • Kb 4510852 UCWA client is disconnected because w3wp.exe crashes when you use clarity connect in Skype for Business Server
  • Kb 4538701 Conference call dropped after 28 or 56 minutes joining from Cisco phone in Skype for Business Server
  • Kb 4576666 Contact card shows wrong title in a meeting on Skype for Business on Mac
  • Kb 4537398 PII data (IM contents of push notification) is shown in Skype for Business Server UCWA mobile clients
  • Kb 4537397 Wrong time zone in Skype for Business Web Scheduler in Skype for Business Server
  • Kb 4549672 Update set-cookie response header to use SameSite=none in Skype for Business Server UCWA

Continue reading ‘SfB 2019 Server Update – September 2020’ »

Server 2016 – Unable to set Certificate to Issue

I recently hit a brick wall while trying to update a certificate template in my stand-alone Server 2016 Certificate Authority.

My goal was to add the “Client Authentication” policy to the the Web Server template, but whilst I could create the new template without any problems, Windows wouldn’t let me add it to the list of “certificates to issue”.

Copying Templates

The process to copy a certificate template is fairly well documented. The short version is:

  1. Launch the Certificate Authority MMC:
  2. Right-click Certificate Templates and select Manage, which opens the “Certificate Templates Console”.
  3. Right-click on the certificate you want to copy and select Duplicate Template.
  4. Continue reading ‘Server 2016 – Unable to set Certificate to Issue’ »

A home-brew autocue (teleprompter)

My introduction to desktop video came back in the days of OCS 2007 R1.

It quickly occurred to me that this wasn’t going to take off until we had two things: 1) the upload bandwidth to support a decent outgoing video stream; and 2) the ability to look at the incoming video of the person you were speaking with, whilst at the same time staring directly down the lens of the camera.

Thankfully the NBN has delivered on the first component here in Oz, but technology has so far failed to come through on the second, and so most of us participate in video calls with the participants all looking off to the side while you’re talking to them.

I theorised that the fix would be when a screen vendor figured out how to place a camera mid-screen directly behind the glass. I remember saying I’d race out and buy two the day they hit the market (so my two monitors matched).

The hubby has more recently suggested it’ll be delivered via algorithm instead. There will be a camera in the four corners of the screen and digital magic will stitch together a coherent moving image of you with eyes pointing ‘naturally’ at the camera.

I saw on Twitter only yesterday that Microsoft has apparently delivered something similar in the Surface Pro X with a feature they’re calling "Eye Contact".

Roll forward to 2020 though, and with lots of us now working from home and participating in non-stop meetings, I thought it was time to make matters into my own hands.

Continue reading ‘A home-brew autocue (teleprompter)’ »

SfB 2019 Server Security Update – July 2020

Today we see one of a (thankfully) rare occurrence – a security update for Skype for Business Server (both 2015 and 2019). A quick search through my blog history says our last one of those was for SfBS 2015 back in September 2015! (Has it really been that long?)

Otherwise it’s been four months since our last bugfix update, to CU2 HF1 (7.0.2046.216). This is build 7.0.2046.236 and it updated only three components on my Standard Edition Front-End.

What’s Fixed?

At the time of writing this post (July 15th), the main kb article hasn’t been fully updated. Its “Improvements and fixes in the July 2020 update” still lists the content from the March update.

If you drill further into the listed fixes below however, you do find yourself at the same OAuth related security fix as SfBS 2015, as per my previous post today.

Continue reading ‘SfB 2019 Server Security Update – July 2020’ »

SfB 2015 Server Security Update – July 2020

Today we see one of a (thankfully) rare occurrence – a security update for Skype for Business Server (both 2015 and 2019). A quick search through my blog history says our last one of those was in September 2015! (Has it really been that long?)

Otherwise it’s been two months since our last bugfix update. That was 6.0.9319.580.This is build 6.0.9319.591, and it updated only two components on my Standard Edition Front-End.

What’s Fixed?

  • Kb 4564307 Vulnerability exists when Skype for Business Server incorrectly handles OAuth token validation

This security update resolves vulnerabilities that exist when Skype for Business Server incorrectly handles OAuth token validation. To learn more about these vulnerabilities, see Microsoft Common Vulnerabilities and Exposures CVE-2020-1025:

An elevation of privilege vulnerability exists when Microsoft SharePoint Server and Skype for Business Server improperly handle OAuth token validation. An attacker who successfully exploited the vulnerability could bypass authentication and achieve improper access.

To exploit this vulnerability, an attacker would need to modify the token.

The update addresses the vulnerability by modifying how Microsoft SharePoint Server and Skype for Business Server validate tokens.

What’s New?

Nothing noted. No cmdlets have been added to the SfB module in this update.

Continue reading ‘SfB 2015 Server Security Update – July 2020’ »

New-OoklaSpeedTest.ps1

In my post “Get-WeatherLinkData.ps1” I mentioned we use the free version of Paessler’s PRTG Network Monitor to monitor all we have here. It’s a great little monitoring platform, and we use it to not only keep an eye on the servers and various web-pages we run, but also track and trend our weather.

After suffering poor service from a previous ISP a few years ago, we started running a script utilising H.Merijn Brand’s Perl Speedtest CLI on our PRTG server to keep a track of speeds. It did the job but meant that Perl needed to be installed on the server.

It thus caught our eye when we saw recently that the world standard “speedtest.net” by Ookla has spawned an API.

And thus, New-OoklaSpeedTest.ps1 was born.

Continue reading ‘New-OoklaSpeedTest.ps1’ »

Make Microsoft Teams shortcuts global

I live for keyboard shortcuts.

Microsoft Teams has plenty of useful keyboard shortcuts, but if you’re running a complex meeting and maybe using OBS Studio like I did recently, they’re probably not going to work. Why’s that? They’re not ‘global’ – they’ll only work when the Teams client has the focus.

The fix is relatively simple, disguised as the open-source utility AutoHotkey, or AHK.

Continue reading ‘Make Microsoft Teams shortcuts global’ »