Markus Lassfolk – Page 8

Azure Pack: change Web Sites Default Domain DNS Suffix

To change the Default URL (DNS Suffix) for your Web Sites in Windows Azure Pack, follow these simple steps;

On the computer that is hosting the Web Sites Controller, run the following Windows PowerShell command:

## Now Working anymore 
Import-Module WebSites
Set-WebSitesConfig Global -DnsSuffix your-new-domain.com
## Now Working anymore

## Now Working anymore

Import-Module WebSites

Set-WebSitesConfig Global -DnsSuffix your-new-domain.com

## Now Working anymore

Update (2014-07-14): It looks like the command above does not support -DnsSuffix anymore, but one of my readers has posted an alternative solution in the comments;

As an alternative you can use the following approach:

Import-Modules WebSites 
$Global = Get-WebSitesConfig -Type Global 
$Global.DNSSuffix = "new-domain.com" 
Set-WebSitesConfig -Type Global -pipelinevariable Global

Import-Modules WebSites

$Global = Get-WebSitesConfig -Type Global

$Global.DNSSuffix = "new-domain.com"

Set-WebSitesConfig -Type Global -pipelinevariable Global

Check the change by using

get-WebSitesConfig -type Global | select DnsSuffix

1	get-WebSitesConfig -type Global \| select DnsSuffix

And you’ll after that also have to do this:
On your SQL Server, open Management Studio.
In the Hosting Database admin.WebSystems table, change the
PublishingDns, FtpDns, and Subdomain to your desired URLs.

Restart your AzurePack servers to make the changes apply everywhere.

Azure Pack: Web Sites MBCA 2.0 Model preventing Feature Pack for Windows Azure Pack Web Sites v2 (KB2927682) from installing.

Windows Update is failing to install “Feature Pack for Windows Azure Pack Web Sites v2 (KB2927682)” on one of my Azure Pack servers. And just give the error message: 0x80070643

The event log shows a slightly better error message; “Product: Web Sites Local Feed — A newer version of Web Sites Local Feed was found on this machine.”

After further investigation, the MSI Logfile reveals some great information and clues;

It lists a program with GUID {BE2AD1F0-C5FF-4F62-95BD-44C829150573} that prevents the installation from completing.
And that GUID turned out, after a quick Registry search, to be “Web Sites MBCA 2.0 Model”.

And after uninstalling “Web Sites MBCA 2.0 Model” from Add/Remove Programs, my Windows Update installation went through at once!

Success!

WSUS: New Products available for AzurePack

i just noticed that there are some new Products added to the WSUS Server that can be synchronized and approved to keep your Azure Pack environments up to date!

AzurePack: Components for Website Feature failed to install

I had to install a new Frontend and Publishing server for my Web Sites components inside Azure Pack, unfortunately the installation failed so I had to find out what was wrong.

First check on the troubleshooting step by step list is to control the Firewall, which also revealed the problem:

The automatically created Firewall Rule for the “WebFarmAgentService” which is used to install the rest of the components, only enables the rule for “Public interfaces”. So my interface that’s being used, that’s connected to the Domain, did not obviously allow that traffic.

Enabling “Domain” in the Firewall Rule solved the problem, and the installation went through! I can’t see any reason for the devs to make that decision to only enable the rule for Public… But maybe there is some strange reason that you guys can come up with?

SCVMM : Automatic Baseline update script

SCVMM (System Center: Virtual Machine Manager) 2012 and 2012R2 can manage the patch compliance on your servers. That’s a great feature but normally involves some manual work as you have to add each update to the Baselines manually.

My colleague Mikael Nyström (MVP) made a script to handle this automatically, which I’ve developed a bit further.

<#
.Synopsis
   Script to automatically keep SCVMM Baselines in sync with WSUS 
.DESCRIPTION
   Script that synchronizes WSUS Updates with SCVMM, both adding new updates and removes old inactive updates. 
.EXAMPLE
   Update-BaseLineUpdates $Baselinename

# Author
Current Author, Markus Lassfolk @Truesec 
Original Author, Mikael Nyström @Truesec 

# Version 1.2
  Markus Lassfolk 
 - Added section to remove inactive updates 

# Version 1.0 
  Markus Lassfolk 
 - Initial Release 

# Version 0.5 
  Mikael Nyström 

#>

Function Update-BaseLineUpdates{
Param
 (
 [Parameter(Mandatory=$false,
 ValueFromPipeline=$true,
 ValueFromPipelineByPropertyName=$true,
 ValueFromRemainingArguments=$false,
 Position=0)]
 [String]
 $BaseLineName
 )
$baseline = Get-SCBaseline -Name $BaseLineName

# Set-SCBaseline -Baseline $baseline -Name $BaseLineName -Description $BaseLineName -RemoveUpdates $baseline.Updates
write-host $baseline.UpdateCount : Current number of Updates in Baseline $BaseLineName

$addedUpdateList = ""
$addedUpdateList = @()

if ($baseline.UpdateCount -eq 0) { 
        write-host "No previous updates in" $BaselineName", adding all existing updates for" $BaseLineName "from WSUS"  
        $addedUpdateList += Get-SCUpdate | Where-Object -Property UpdateClassification -EQ -Value $BaseLineName | Where-Object -Property IsApproved -Like -Value "True" | Where-Object -Property IsDeclined -Like -Value "False"| Where-Object -Property IsExpired -Like -Value "False" | Where-Object -Property IsSuperseded -Like -Value "False" | Where-Object -Property Products -like "*Windows Server 2012*"
        write-host $addedUpdateList.Count ": New updates to add in" $Baseline 
        Set-SCBaseline -Baseline $baseline -Name $BaseLineName -Description $BaseLineName -AddUpdates $addedUpdateList -RunAsynchronously
  }

if ($baseline.UpdateCount -gt 0 ) { 
        write-host "Scanning Newest 500 WSUS Updates for matching updates for $BaselineName" 
        $LatestUpdates = Get-SCUpdate -Newest 500 | Where-Object -Property UpdateClassification -EQ -Value $BaseLineName | Where-Object -Property IsApproved -Like -Value "True" | Where-Object -Property IsDeclined -Like -Value "False"| Where-Object -Property IsExpired -Like -Value "False" | Where-Object -Property IsSuperseded -Like -Value "False" | Where-Object -Property Products -like "*Windows Server 2012*"
        write-host $LatestUpdates.Count ": Updates found, verifying if update(s) already exist in" $BaseLineName 

        Compare-Object -ReferenceObject $baseline.Updates -DifferenceObject $LatestUpdates -IncludeEqual | % {
        if($_.SideIndicator -eq '=>') { $addedUpdateList += Get-SCUpdate -ID $_.inputobject.id } 
        }

    write-host $addedUpdateList.Count : New updates to be added to SCVMM for $BaseLineName 
    write-host $addedUpdateList | ft
    Set-SCBaseline -Baseline $baseline -Name $BaseLineName -Description $BaseLineName -AddUpdate $addedupdateList -RunAsynchronously 
    }

    write-host "Scan WSUS for Updates that should not be Checked anymore" 
    $remove = ""
    $remove = @()
    $removeUpdateList = ""
    $removeUpdateList = @()

    $remove += Get-SCUpdate | Where-Object -Property UpdateClassification -EQ -Value $BaseLineName | Where-Object -Property IsApproved -Like -Value "False" | Where-Object -Property Products -like "*Windows Server 2012*"
    $remove += Get-SCUpdate | Where-Object -Property UpdateClassification -EQ -Value $BaseLineName | Where-Object -Property IsDeclined -Like -Value "True"| Where-Object -Property Products -like "*Windows Server 2012*"
    $remove += Get-SCUpdate | Where-Object -Property UpdateClassification -EQ -Value $BaseLineName | Where-Object -Property IsExpired -Like -Value "True" | Where-Object -Property Products -like "*Windows Server 2012*"
    $remove += Get-SCUpdate | Where-Object -Property UpdateClassification -EQ -Value $BaseLineName | Where-Object -Property IsSuperseded -Like -Value "True" | Where-Object -Property Products -like "*Windows Server 2012*"

    write-host $remove.count "Remove Unapproved/Superseded/Expired/Declined updates" 

        Compare-Object -ReferenceObject $baseline.Updates -DifferenceObject $remove -IncludeEqual | % {
        if($_.SideIndicator -eq '==') { $removeUpdateList += Get-SCUpdate -ID $_.inputobject.id } 
        }

    Set-SCBaseline -Baseline $baseline -Name $BaseLineName -Description $BaseLineName -RemoveUpdates $RemoveupdateList 
}

Function Add-BaseLine{
Param
 (
 [Parameter(Mandatory=$false,
 ValueFromPipeline=$true,
 ValueFromPipelineByPropertyName=$true,
 ValueFromRemainingArguments=$false,
 Position=0)]
 [String]
 $BaseLineName
 )
$baseline = New-SCBaseline -Name $BaseLineName -Description $BaseLineName
$scope = Get-SCVMHostGroup -Name "All Hosts"
Set-SCBaseline -Baseline $baseline -AddAssignmentScope $scope
$scope2 = Get-SCVMMManagedComputer
ForEach($Server in $scope2){
Set-SCBaseline -Baseline $baseline -Name $baseLine -AddAssignmentScope $Server
}
}

Write-Host "Synchronizing with WSUS Server" 
Get-SCUpdateServer | Start-SCUpdateServerSynchronization 

. Update-BaseLineUpdates "Security Updates"
. Update-BaseLineUpdates "Critical Updates"
. Update-BaseLineUpdates "Updates"
. Update-BaseLineUpdates "Update Rollups"

#. Update-BaseLineUpdates "Definition Updates"
#. Update-BaseLineUpdates "Service Packs"
#. Update-BaseLineUpdates "Feature Packs"

write-host "Start Compliance Scan for all Servers" 
Get-SCVMMManagedComputer | Start-SCComplianceScan

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

.Synopsis

Script to automatically keep SCVMM Baselines in sync with WSUS

.DESCRIPTION

Script that synchronizes WSUS Updates with SCVMM, both adding new updates and removes old inactive updates.

.EXAMPLE

Update-BaseLineUpdates $Baselinename

# Author

Current Author, Markus Lassfolk @Truesec

Original Author, Mikael Nyström @Truesec

# Version 1.2

Markus Lassfolk

- Added section to remove inactive updates

# Version 1.0

Markus Lassfolk

- Initial Release

# Version 0.5

Mikael Nyström

Function Update-BaseLineUpdates{

Param

(

[Parameter(Mandatory=$false,

ValueFromPipeline=$true,

ValueFromPipelineByPropertyName=$true,

ValueFromRemainingArguments=$false,

Position=0)]

[String]

$BaseLineName

)

$baseline = Get-SCBaseline -Name $BaseLineName

# Set-SCBaseline -Baseline $baseline -Name $BaseLineName -Description $BaseLineName -RemoveUpdates $baseline.Updates

write-host $baseline.UpdateCount : Current number of Updates in Baseline $BaseLineName

$addedUpdateList = ""

$addedUpdateList = @()

if ($baseline.UpdateCount -eq 0) {

write-host "No previous updates in" $BaselineName", adding all existing updates for" $BaseLineName "from WSUS"

$addedUpdateList += Get-SCUpdate | Where-Object -Property UpdateClassification -EQ -Value $BaseLineName | Where-Object -Property IsApproved -Like -Value "True" | Where-Object -Property IsDeclined -Like -Value "False"| Where-Object -Property IsExpired -Like -Value "False" | Where-Object -Property IsSuperseded -Like -Value "False" | Where-Object -Property Products -like "*Windows Server 2012*"

write-host $addedUpdateList.Count ": New updates to add in" $Baseline

Set-SCBaseline -Baseline $baseline -Name $BaseLineName -Description $BaseLineName -AddUpdates $addedUpdateList -RunAsynchronously

}

if ($baseline.UpdateCount -gt 0 ) {

write-host "Scanning Newest 500 WSUS Updates for matching updates for $BaselineName"

$LatestUpdates = Get-SCUpdate -Newest 500 | Where-Object -Property UpdateClassification -EQ -Value $BaseLineName | Where-Object -Property IsApproved -Like -Value "True" | Where-Object -Property IsDeclined -Like -Value "False"| Where-Object -Property IsExpired -Like -Value "False" | Where-Object -Property IsSuperseded -Like -Value "False" | Where-Object -Property Products -like "*Windows Server 2012*"

write-host $LatestUpdates.Count ": Updates found, verifying if update(s) already exist in" $BaseLineName

Compare-Object -ReferenceObject $baseline.Updates -DifferenceObject $LatestUpdates -IncludeEqual | % {

if($_.SideIndicator -eq '=>') { $addedUpdateList += Get-SCUpdate -ID $_.inputobject.id }

}

write-host $addedUpdateList.Count : New updates to be added to SCVMM for $BaseLineName

write-host $addedUpdateList | ft

Set-SCBaseline -Baseline $baseline -Name $BaseLineName -Description $BaseLineName -AddUpdate $addedupdateList -RunAsynchronously

}

write-host "Scan WSUS for Updates that should not be Checked anymore"

$remove = ""

$remove = @()

$removeUpdateList = ""

$removeUpdateList = @()

$remove += Get-SCUpdate | Where-Object -Property UpdateClassification -EQ -Value $BaseLineName | Where-Object -Property IsApproved -Like -Value "False" | Where-Object -Property Products -like "*Windows Server 2012*"

$remove += Get-SCUpdate | Where-Object -Property UpdateClassification -EQ -Value $BaseLineName | Where-Object -Property IsDeclined -Like -Value "True"| Where-Object -Property Products -like "*Windows Server 2012*"

$remove += Get-SCUpdate | Where-Object -Property UpdateClassification -EQ -Value $BaseLineName | Where-Object -Property IsExpired -Like -Value "True" | Where-Object -Property Products -like "*Windows Server 2012*"

$remove += Get-SCUpdate | Where-Object -Property UpdateClassification -EQ -Value $BaseLineName | Where-Object -Property IsSuperseded -Like -Value "True" | Where-Object -Property Products -like "*Windows Server 2012*"

write-host $remove.count "Remove Unapproved/Superseded/Expired/Declined updates"

Compare-Object -ReferenceObject $baseline.Updates -DifferenceObject $remove -IncludeEqual | % {

if($_.SideIndicator -eq '==') { $removeUpdateList += Get-SCUpdate -ID $_.inputobject.id }

}

Set-SCBaseline -Baseline $baseline -Name $BaseLineName -Description $BaseLineName -RemoveUpdates $RemoveupdateList

}

Function Add-BaseLine{

Param

(

[Parameter(Mandatory=$false,

ValueFromPipeline=$true,

ValueFromPipelineByPropertyName=$true,

ValueFromRemainingArguments=$false,

Position=0)]

[String]

$BaseLineName

)

$baseline = New-SCBaseline -Name $BaseLineName -Description $BaseLineName

$scope = Get-SCVMHostGroup -Name "All Hosts"

Set-SCBaseline -Baseline $baseline -AddAssignmentScope $scope

$scope2 = Get-SCVMMManagedComputer

ForEach($Server in $scope2){

Set-SCBaseline -Baseline $baseline -Name $baseLine -AddAssignmentScope $Server

}

Write-Host "Synchronizing with WSUS Server"

Get-SCUpdateServer | Start-SCUpdateServerSynchronization

. Update-BaseLineUpdates "Security Updates"

. Update-BaseLineUpdates "Critical Updates"

. Update-BaseLineUpdates "Updates"

. Update-BaseLineUpdates "Update Rollups"

#. Update-BaseLineUpdates "Definition Updates"

#. Update-BaseLineUpdates "Service Packs"

#. Update-BaseLineUpdates "Feature Packs"

write-host "Start Compliance Scan for all Servers"

Get-SCVMMManagedComputer | Start-SCComplianceScan

The script has a few Pre-Requisites;

A WSUS Server defined in SCVMM
Approved patches for “Windows Server 2012” and “Windows Server 2012 R2” in WSUS
Pre-Defined Baselines (you can use Add-Baseline to create them) with these names;
- Security Updates
- Critical Updates
- Updates
- Update Rollups

That’s it! You can now run the script and automatically import all matching updates.

The following actions will be performed;

Synchronize updates with WSUS
Check if there are any updates in the Baseline already
- If the baseline is empty, import ALL matching updates
- If the baseline is NOT empty, check the Newest 500 updates and import all matching updates
Remove inactive updates
Repeat for all Baselines
Start a compliance scan

The script will not initiate any remediation. And as the script normally only checks the newest 500 updates, it has to be run fairly regular. In my environment, 500 updates is about 1 month of updates. Though to be safe, run it once a week.

Azure Pack : Database creation failed with internal server error

If you experience problems creating MS SQL Databases as an Azure Pack tenant, with the very descriptive error message “Database creation failed” and details “internal server error” you may have run into the same problem I had today.

Azure Pack states that the user needs to have a 8 character complex password, but in truth it’s using the settings from the Local Security Policy on the MS SQL Server, which in my case was 12 characters long. So any attempt to create a database with username and a password shorter than 12 characters gave that error message.

Quick solution, set a new Local Security policy with length of at least 8 characters. Problem Solved!

Azure Pack : Tenant Site automatic installation

If you want to install Azure Pack : Tenant Site in a distributed installation meaning not an Express installation on just one server. It’s possible to do it manually, OR … of course in a scripted way, so it’s automatic, scripted and unattended. Same result each time and smallest amount of time wasted on installations. Here is a small powershell script that will take care of all the dependencies and install all the packages for the Public Tenant Site.

Import-Module ServerManager
Add-WindowsFeature Web-Server -IncludeManagementTools
# You may have to add -source d:\source\sxs to the following 2 lines. 
# We use a GPO that distributes that source-path to all servers. 
Add-WindowsFeature Web-Asp-Net
Add-WindowsFeature Web-Net-Ext
Add-WindowsFeature Web-Asp-Net45
Add-WindowsFeature Web-Net-Ext45
Add-WindowsFeature Web-ISAPI-Ext
Add-WindowsFeature Web-ISAPI-Filter
Add-WindowsFeature Web-Mgmt-Console
Add-WindowsFeature Web-Basic-Auth
Add-WindowsFeature Web-Windows-Auth
Add-WindowsFeature Web-Dyn-Compression

# Download The following files manually and install them manually, or install with Wep Platform Installer.
# Cloud Cruiser for Azure Pack - Tenant Site Extension
# Windows Azure Pack - Tenant Site
# Windows Azure Pack - Tenant Authentication Site
# Windows Azure Pack - Tenant Public Api
# Some packages will automatically be added as Dependencies

#### Download WEB Platform Installer
# write-host Downloading WebPlatform Installer
# $source = "http://go.microsoft.com/fwlink/?LinkId=255386"
# $destination = "$env:temp\wpilauncher.exe"
# $wc = New-Object System.Net.WebClient
# $wc.DownloadFile($source, $destination)

####Start WEB Platform Installer
# Start-Process -wait -FilePath $destination

# This list of URL's is up to date 2013-11-18 and can be used for Automatic installation.

# Windows Azure Pack - Tenant Site
$source = "http://download.microsoft.com/download/8/7/2/87230A1A-D4CA-4925-B57B-8C27E5BD153C/MgmtSvc-TenantSite.msi"
$destination = "$env:temp\MgmtSvc-TenantSite.msi"
$wc = New-Object System.Net.WebClient
$wc.DownloadFile($source, $destination)
Start-Process -wait -FilePath $env:SystemRoot\System32\msiexec.exe -ArgumentList "/i $destination /norestart /passive"

# Windows Azure Pack - Tenant Authentication Site
$source = "http://download.microsoft.com/download/8/7/2/87230A1A-D4CA-4925-B57B-8C27E5BD153C/MgmtSvc-AuthSite.msi"
$destination = "$env:temp\MgmtSvc-AuthSite.msi"
$wc = New-Object System.Net.WebClient
$wc.DownloadFile($source, $destination)
Start-Process -wait -FilePath $env:SystemRoot\System32\msiexec.exe -ArgumentList "/i $destination /norestart /passive"

# Windows Azure Pack - Tenant Public Api
$source = "http://download.microsoft.com/download/8/7/2/87230A1A-D4CA-4925-B57B-8C27E5BD153C/MgmtSvc-TenantPublicAPI.msi"
$destination = "$env:temp\MgmtSvc-TenantPublicAPI.msi"
$wc = New-Object System.Net.WebClient
$wc.DownloadFile($source, $destination)
Start-Process -wait -FilePath $env:SystemRoot\System32\msiexec.exe -ArgumentList "/i $destination /norestart /passive"

# These will automatically be added as Dependencies
$source = "http://download.microsoft.com/download/8/7/2/87230A1A-D4CA-4925-B57B-8C27E5BD153C/MgmtSvc-ConfigSite.msi"
$destination = "$env:temp\MgmtSvc-ConfigSite.msi"
$wc = New-Object System.Net.WebClient
$wc.DownloadFile($source, $destination)
Start-Process -wait -FilePath $env:SystemRoot\System32\msiexec.exe -ArgumentList "/i $destination /norestart /passive"

$source = "http://download.microsoft.com/download/2/F/6/2F63CCD8-9288-4CC8-B58C-81D109F8F5A3/AspNetMVC4Setup.exe"
$destination = "$env:temp\AspNetMVC4Setup.exe"
$wc = New-Object System.Net.WebClient
$wc.DownloadFile($source, $destination)
Start-Process -wait -FilePath $destination -ArgumentList "/norestart /passive"

$source = "http://download.microsoft.com/download/2/D/C/2DCA2ADA-AD18-40FC-9F2D-715977CB2FCC/AspNetWebPages2Setup.exe"
$destination = "$env:temp\AspNetWebPages2Setup.exe"
$wc = New-Object System.Net.WebClient
$wc.DownloadFile($source, $destination)
Start-Process -wait -FilePath $destination -ArgumentList "/norestart /passive"

$source = "http://download.microsoft.com/download/6/7/D/67D80164-7DD0-48AF-86E3-DE7A182D6815/rewrite_amd64_en-US.msi"
$destination = "$env:temp\rewrite_amd64_en-US.msi"
$wc = New-Object System.Net.WebClient
$wc.DownloadFile($source, $destination)
Start-Process -wait -FilePath $env:SystemRoot\System32\msiexec.exe -ArgumentList "/i $destination /norestart /passive"

$source = "http://download.microsoft.com/download/8/7/2/87230A1A-D4CA-4925-B57B-8C27E5BD153C/MgmtSvc-PowerShellAPI.msi"
$destination = "$env:temp\MgmtSvc-PowerShellAPI.msi"
$wc = New-Object System.Net.WebClient
$wc.DownloadFile($source, $destination)
Start-Process -wait -FilePath $env:SystemRoot\System32\msiexec.exe -ArgumentList "/i $destination /norestart /passive"

# Cloud Cruiser for Azure Pack - Tenant Site Extension
$source = "https://file.ac/kLa3HIp4zBg/CloudCruiser.AzurePack.TenantSite_v1.0.3.msi"
$destination = "$env:temp\CloudCruiser.AzurePack.TenantSite_v1.0.3.msi"
$wc = New-Object System.Net.WebClient
$wc.DownloadFile($source, $destination)
Start-Process -wait -FilePath $env:SystemRoot\System32\msiexec.exe -ArgumentList "/i $destination /norestart /passive"

function Disable-InternetExplorerESC {
    $AdminKey = "HKLM:\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A7-37EF-4b3f-8CFC-4F3A74704073}"
    $UserKey = "HKLM:\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A8-37EF-4b3f-8CFC-4F3A74704073}"
    Set-ItemProperty -Path $AdminKey -Name "IsInstalled" -Value 0
    Set-ItemProperty -Path $UserKey -Name "IsInstalled" -Value 0
    Stop-Process -Name Explorer
    Write-Host "IE Enhanced Security Configuration (ESC) has been disabled." -ForegroundColor Green
}
function Enable-InternetExplorerESC {
    $AdminKey = "HKLM:\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A7-37EF-4b3f-8CFC-4F3A74704073}"
    $UserKey = "HKLM:\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A8-37EF-4b3f-8CFC-4F3A74704073}"
    Set-ItemProperty -Path $AdminKey -Name "IsInstalled" -Value 1
    Set-ItemProperty -Path $UserKey -Name "IsInstalled" -Value 1
    Stop-Process -Name Explorer
    Write-Host "IE Enhanced Security Configuration (ESC) has been enabled." -ForegroundColor Green
}
function Disable-UserAccessControl {
    Set-ItemProperty "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System" -Name "ConsentPromptBehaviorAdmin" -Value 00000000
    Write-Host "User Access Control (UAC) has been disabled." -ForegroundColor Green    
}

Disable-InternetExplorerESC
Start-Process -FilePath https://localhost:30101/

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

Import-Module ServerManager

Add-WindowsFeature Web-Server -IncludeManagementTools

# You may have to add -source d:\source\sxs to the following 2 lines.

# We use a GPO that distributes that source-path to all servers.

Add-WindowsFeature Web-Asp-Net

Add-WindowsFeature Web-Net-Ext

Add-WindowsFeature Web-Asp-Net45

Add-WindowsFeature Web-Net-Ext45

Add-WindowsFeature Web-ISAPI-Ext

Add-WindowsFeature Web-ISAPI-Filter

Add-WindowsFeature Web-Mgmt-Console

Add-WindowsFeature Web-Basic-Auth

Add-WindowsFeature Web-Windows-Auth

Add-WindowsFeature Web-Dyn-Compression

# Download The following files manually and install them manually, or install with Wep Platform Installer.

# Cloud Cruiser for Azure Pack - Tenant Site Extension

# Windows Azure Pack - Tenant Site

# Windows Azure Pack - Tenant Authentication Site

# Windows Azure Pack - Tenant Public Api

# Some packages will automatically be added as Dependencies

#### Download WEB Platform Installer

# write-host Downloading WebPlatform Installer

# $source = "http://go.microsoft.com/fwlink/?LinkId=255386"

# $destination = "$env:temp\wpilauncher.exe"

# $wc = New-Object System.Net.WebClient

# $wc.DownloadFile($source, $destination)

####Start WEB Platform Installer

# Start-Process -wait -FilePath $destination

# This list of URL's is up to date 2013-11-18 and can be used for Automatic installation.

# Windows Azure Pack - Tenant Site

$source = "http://download.microsoft.com/download/8/7/2/87230A1A-D4CA-4925-B57B-8C27E5BD153C/MgmtSvc-TenantSite.msi"

$destination = "$env:temp\MgmtSvc-TenantSite.msi"

$wc = New-Object System.Net.WebClient