Installation Failed in Safe_OS Phase with Windows 10 Upgrade

So if you are one of the user has mcafee antivirus, specially the drive encryption enabled, you will run into issue upgrading Win 10 patches or upgrade. Usually the error pretty similar to below,

Image result for windows 10 date  safe_os error

So solution would be upgrading OS via mcafee switch enabled via CMD. Here is what I did,

*****Copy Windows update to C: folder called updates( This was 1903 update and I downloaded it as ISO from Microsoft site and then mount and copied to the folder)

******Then bring up CMD as administrator and type cd c:\update, which change the directory.

******Then run this

Setup.exe /ReflectDrivers “%programfiles%\McAfee\Endpoint Encryption\OSUpgrade


Setup.exe /ReflectDrivers “C:\Program Files\McAfee\Endpoint Encryption\OSUpgrade”

Upgrade should run without and error.

Here is the full KB article link,

Change iTunes Backup Location

These days more and more PC/laptops comes with SSD drive and most of them are either 128 or 256 and some are even smaller drives. If you are one of the user don’t want top pay for more storage with iphone and backing up your phone to PC, you will face some challenge with drive space. Specially with ever expanding iphone storage size.

Issue is itunes saves this backups under userprofile, usually in C drive. Solution would be change this location and point to a external drive or different drive. All the credit should goes to

I’m gonna list the Windows way first.

Usual backup location for iphone located under C:\Users\*current user name*\AppData\Roaming\Apple Computer\MobileSync\Backup

Navigate to folder and rename or delete folder called “backup”

Then Shift+Right click and select open powershell windows OR you can bring command prompt (go to run type CMD) and the type

cd C:\Users\*current user name*\AppData\Roaming\Apple Computer\MobileSync

then type

mklink /J “%APPDATA%\Apple Computer\MobileSync\Backup” “D:\iTunes Backup”

****Note that above I send my backups to D:\ drive.

and you done!!

So now in Mac OSx

Bacup folder located under ~/Library/Application Support

Go to search and type ~/Library/Application Support/MobileSync/ and this will point to backup location and as previous Windows remove the folder called backup.

Then bring up terminal and type

ln -s /Volumes/location where the backup should go/MobileSync/Backup ~/Library/Application\ Support/MobileSync/Backup


Disable Windows UAC Completely

I know once in a while windows UAC tend to interfere with application. I seen many issues with some ERP programs. You can simply disable UAC via control panel in Windows 7 but Windows 10 will not completely disable UAC via control panel. Because if it completely disable metro app will not work on Win10.

This is reg edit to disable UAC completely, if you ever have to fight with it to get application working.

Click run and type regedit.exe and go to the path


In the right side select EnableLUA and set the value to 0 and restart the PC.


Godaddy cPanel and Office 365 autodiscover issue. Autodscover not working moving from Godaddy mail to 365

Few days ago I was doing office 365 migration and I had strange issue with outlook not picking up auto discover settings. End customer was setup with godaddy imap mail and want to move to office 365. I can see from 365 panel DNS was setup correctly but whatever the reason, mail client was keep going toward instead ( Yes I pick domain right out of the Microsoft teaching : )

Finally I ran Microsoft connectivity analyzer and it spit out below error,

  1. We got an unexpected autodiscover response.
    We can see that your mailbox is in Office 365. However, AutoDiscover service seems to have configuration issues that prevent Outlook to connect o Office 365. An intermediate web server at is interfering with AutoDiscover service and responding with incomplete data.

Your administrator need to either remove or correct the AutoDiscover component from

To work around this issue if your administrator can’t resolve the above soon, please take the following action:

Create an Outlook registry key to exclude the HTTPS root domain. For more information about how to do this, see the following Microsoft Knowledge Base article: 2212902Important Excluding the HTTPS root domain is not a long-term solution for this issue. This workaround is provided as immediate relief for it. As soon as your administrator resolves the above AutoDiscover issue, the Outlook registry key must be removed.
You need to either remove or correct the AutoDiscover component from If is managed by a web hosting provider, please contact them, and make sure that the web server is not responding to Autodiscover requests.

I read through several auto discovery troubleshooting article but none point to correct solution but after few read through I found a article at go daddy portal which point me to correct solution. Also last part of the above error log point to godaddy setup instead actually 365 or dns config error.

So this issue cause by godaddy cPanel pointing all mail request to particular domain to thier internal hosting server. I’m not sure why godaddy do this but again I’m not admin for godaddy.

Also this also cause headache if you are current office365 customer via godaddy setup but if you decide to go to office 365 and host your mail. Because I seen many posting related to issue with moving from godaddy version of 365 to MS direct office 365 exchange. But surprisingly godaddy tech support has no clue and also MS support. Ms support solution would be adding a reg key to stop going https look up for autodiscover but this won’t solve the problem with mobile devices.

Okey enough with rant and here is the solution,

Log into godaddy and from My Product page click mange next to domain hosting

Click on three dot and click on settings

Then click on cPanel admin

Then you will end up in cpanel and then go to email section and click on Email Routing

once you there configure email routing and select Remote Mail Exchanger and change.

Also you can click on Zone editor and edit correct MX entry and point that to office 365 mx entry.

After that mail client will point to correct place without and issue.

Change Password Complexity in AD or Local PC

Here is short summery of how to change password requirement in AD environment.

First go to run and type gpmc.msc or go through admin tool and group policy.

I would highly recommend starting a new GP. It is not a good practise to tinker around default GP.

Then go to Computer configuration—> Policies—->Windows Settings—>Security Settings—>account Policies and then Password policy.

There are many things that can be enable, so you can force users you complex password instead using simple 123 password 🙂

You can also find similar config this under local PC local security policy and account policies and password policy.

“Cannot change the host configuration” error message on VMware ESXi Host

First need to enable SSH access fro ESXI host via ESXI firewall

Once you done that connect to ESXI via putty and run this command

ls -lha /vmfs/devices/disks

This will list all the all the disks in datastore and make sure to mark down the datastore ID. Its is something like naa.1234abcd1234XXXXX. Be careful not to choose wrong data drive!!!

Then run this command

partedUtil setptbl /vmfs/devices/disks/ < ID from the disk that you copied above> msdos

After that you will be able to create data store without an issue.

Credit goes to

How to remove Webroot AV when you have no access to management console.

I had a situation where whatever the reason when I sent command to uninstall webroot from cloud console AV will not get removed from the PC. It was annoying and solution from webroot support tool didn’t work and here is the one of the solution I found. Unfortunately, you will have to boot machine to safe mode.

First boot the PC to the safe mode. If you are doing this remote, you can use remote software to boot the PC to the safe mode too. This will save you on site visit 🙂

Bring up the cmd and type

“C:\Program Files (x86)\Webroot\WRSA.exe” -uninstall

In a bit you will see AV get uninstall and then you can boot back to normal mode. Done!!

Setup Direct RDP to Windows PC with non standard port.

Recently I had situation that I had to setup direct RDP access to PC behind firewall. I know some of you think why you did that but the issue was application user was using wasn’t displaying properly any other remote software. Yes, I did all of those remote software and none work. But you know you cannot use usual 3389 RDP port it is known security issue.

So here is how setup non standard port for RDP access.

First go to System properties and enable RDP access

After that go to run in start menu and type regedit.exe this will bring up registry editor and navigate to

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp\PortNumber

When you open port number switch the base to decimal and enter port that you are prefer. I mean of course valid port.

Now you have to go to control panel and firewall and allow inbound and outbound for port that you need. I don’t know how many time I forgot to do this step and tried to rdp and got rejected 🙂

Click on advance and create inbound and out bound rule for the port that you created.

Make sure to restart the PC.

Of course if you are doing RDP from outside you will need DNAT rule or port forward rule on firewall. This is a topic for another blog I guess!

How to Uninstall Microsoft Office 2011 (Mac)

So here I bring one of the best article I’ve visited so many times up until last month. It is surprising to see how many users still use old Office 2011 but again everything getting way expensive and really how many of us really need latest and the greatest ( Except all the apple share holders 🙂 )

Anyways, I’m going to copy past article entirely, because there is nothing to edit. Even though it says OS X 10.7 nothing change even for the latest OS. So all the credit goes to

Just a few cent from me, before do anything try to do time machine backup and make sure you don’t have anything sitting in the trash that you need again. Yes backup takes time but it take even longer if you have to reload system!!

  1. Start Finder, go to Applications and delete the folder Microsoft Office 2011.
  • Navigate to the system libraryNB! Please keep in mind that all users have their own library as well.
  • Open Internet Plug-Ins and delete all Sharepoint files.

  • Return to the library and open LaunchDaemons.
  • Delete

  • Go back to the library and open Preferences.
  • Delete

  • Navigate to the folder PrivilegedHelperTools, also in the system library.
  • Find the file called and delete it.
  • Empty the trash and restart the computer to complete the operation.