iDRAC Java connection error – work around for old iDRAC versions (6,7,8)

The issue is unsupported algorithms by the iDRAC system. iDRAC6 still has yet to fix this (9/3/2018) but is resolved on 7+ AFAIK

There is only a single item to remove from your java.security file to retain the IDRAC6 functionality.

jdk.tls.disabledAlgorithms=SSLv3, RC4, MD5withRSA, DH keySize < 1024, \
    EC keySize < 224, DES40_CBC, RC4_40, 3DES_EDE_CBC

need to be changed to

jdk.tls.disabledAlgorithms=SSLv3, RC4, MD5withRSA, DH keySize < 1024, \
    EC keySize < 224, DES40_CBC, RC4_40

Effectively it’s only `3DES_EDE_CBC` instance should be removed from this directive and nothing more.

Additionally i would reccommend you make the following change in the IDRAC
webpage:
iDRAC Settings –> Network/Security –> Services: Change the SSL
Encryption to 256-bit or higher.
This doesn’t negate the above change thats needed in your java.security
file until Dell makes a Fix.

Power Shell Get Members from AD Group

Get Members’ names from Active Directory Group (you need the ActiveDirectory Module added to your powershell if not doing it from a DC.

Get-AdGroupMember -identity "Group Name" | select name

If you want to dump it to a CSV, you can add this to the end of the above command

| Export-csv -path C:\Output\Groupmembers.csv -NoTypeInformation

Exchange log Clear (Fake Backup)

Open Command Prompt as Administrator

Diskshadow
Add volume d: (optional, add one line for each additional drive to include) 
Begin Backup
Create
End Backup

At this step you should notice the following events in the application log indicating that the backup was indeed successful and logs will now be deleted.

Setup nginx Reverse Proxy

install nginx
ubuntu:

sudo apt-get update
sudo apt-get install nginx

Centos: yum install ngix

Edit the config

Ubuntu: sudo nano /etc/nginx/sites-enabled/default
You might need to delete the config file contents and start fresh


server {
    listen 80;
    return 301 https://$host$request_uri;
}

server {

    listen 443;
    server_name blabla.domain.com;

    ssl_certificate           /etc/nginx/cert.crt;
    ssl_certificate_key       /etc/nginx/cert.key;

    ssl on;
    ssl_session_cache  builtin:1000  shared:SSL:10m;
    ssl_protocols  TLSv1 TLSv1.1 TLSv1.2;
    ssl_ciphers HIGH:!aNULL:!eNULL:!EXPORT:!CAMELLIA:!DES:!MD5:!PSK:!RC4;
    ssl_prefer_server_ciphers on;

    access_log            /var/log/nginx/jenkins.access.log;

    location / {

      proxy_set_header        Host $host;
      proxy_set_header        X-Real-IP $remote_addr;
      proxy_set_header        X-Forwarded-For $proxy_add_x_forwarded_for;
      proxy_set_header        X-Forwarded-Proto $scheme;

      # Fix the “It appears that your reverse proxy set up is broken" error.
      proxy_pass          http://localhost:8080;
      proxy_read_timeout  90;

      proxy_redirect      http://localhost:8080 https://blabla.domain.com;
    }
  }