Excessive TAP-Windows Adapter V9 Cleanup

-
I had an issue recently where the client machine could not connect to any network resources. We noticed that the user had many TAP-Windows Adapters for VPN (OpenVPN). Some research suggests it occurs due to Microsoft products activating against a KMS server.

Anyway, I have created a simple vbs (wsh) script which removes the excess devices in a safely manner. All you might need to change is the location of tapinstall.exe as it might be deployed with your VPN application.

I have actually deployed the script by placing it in the netlogon share and using a GPO to create a scheduled task which executes the script on a weekly basis. I used a WMI filter and only targeted laptops. 

Here is the script. Its not perfect, but I think it does a good job.

Dim Shell,path,tempPath,tapInstPath32,tapInstPath64,objFSO
Set Shell = CreateObject ("Wscript.Shell")
Set objFSO = CreateObject("Scripting.FileSystemObject")
strComputer = "."
count = 0
tapInstPath32 = "c:\program files\securePoint SSL VPN\bin\tapinstall.exe"  
tapInstPath64 = "c:\program files (x86)\securePoint SSL VPN\bin\tapinstall.exe"

 Set objWMIService = GetObject("winmgmts:\\" & strComputer & "\root\cimv2")

 Set TapDriver = objWMIService.ExecQuery("Select * from Win32_PnPSignedDriver")
Set OSType = objWMIService.ExecQuery("Select * from Win32_OperatingSystem", , 48)
'Identify whether OS is x64 or x32 and change file path variable accordindly. 
For Each OSTypeItem In OSType       
If OSTypeItem.OSArchitecture = "64-bit" Then
path = tapInstPath64
Else '32-bit
path = tapInstPath32
End If

Next

 'Check if tapinstall.exe exists and exit if does not 
If not objFSO.FileExists(path) Then
Shell.LogEvent 0, "VPNTapDeviceCleanup.vbs: path not found for tapinstall.exe executable - " & testpath & " Script quitting...."
wscript.quit
End If

 'Find TAP Network Devices
For Each TapDriverItem in TapDriver
If inStr(TapDriverItem.DeviceName, "TAP-Windows Adapter V9") Then
Count = count + 1
'View deletion of drivers when cleanup occurs. Disabled.
'tempPath = chr(34) & "c:\Windows\System32\cmd.exe" & chr(34) & "/k " & chr(34) & path & chr(34) 
tempPath = chr(34) & path & chr(34)
'Wscript.Echo "Device Name: " & TapDriverItem.DeviceName
'Wscript.Echo "Device ID: " & TapDriverItem.DeviceID
'Remove excess TAP drivers, preserving the first detected device
If Count > 1 Then
'Wscript.Echo "Device ID: " & TapDriverItem.DeviceID
TempPath = TempPath & " remove @" & TapDriverItem.DeviceID
Shell.Run TempPath 
End If
End if
Next

 'Write Windows Event Log under application and source of WSH for script success activity
If Count > 1 Then
Count = Count -1
Shell.LogEvent 0, "VPNTapDeviceCleanup.vbs: Total excess TAP-Windows Adapter V9 Devices Removed: " & Count
Else
Shell.LogEvent 0, "VPNTapDeviceCleanup.vbs: No VPN TAP devices removed due to their being no excess"
End If


I accept no responsibly for my script above, and suggest you test in a lab environment before bringing into production. 

Comments

Post a Comment

Popular posts from this blog

Create bootable CUC CUCM CUP Image / ISO

-
The following script allows you to automatically create a bootable CUCM/CUC/CUP image without the need for any paid for software when you only have access to the update outside of put or the datastore for the new server. I have spent several hours on this, but I just wanted to make it simple. Only really for lab purposes, the checksum will fail due to the ISO being manipulated but essentially once you fill in the variables, you will just be left with a single ISO file in the staging directory. To use; 1. Download the mkisofs.exe file as described in the script 2. Paste script below into Powershell ISE Script Editer 3. Modify the variables 4. Execute the script. Simple. Tested creating an ISO on a Windows 10 machine and running the ISO on a ESXI server. Thanks for this guy Aaron Harrison as per the URL, was helpful in the finding out the mkisofs.exe command syntax. http://www.ipcommute.co.uk/technical-articles/17--creating-isolinux-boot-dvds-with-free-software-cucm-uccx-cups.
Read more

Configuring Oracle 12c backups on Veritas Backup Exec 16.

-
Image
This is a short guide to configuring backups of Oracle 12c using Veritas Backup Exec 16. 1.        Establish trust with Oracle Database server within Backup Exec console and ensure agent is installed. 2.         Create a login to the database for backup purposes in Oracl e; Open up a command prompt and run the following command – Sqlplus / nolog Log in with your database admin account as sysdba Connect myusername / mypassword@databasename as sysdba CREATE USER BACKUP IDENTIFIED BY MYPASSWORD; GRANT UNLIMITED TABLESPACE TO BACKUP; GRANT AQ_ADMINISTRATOR_ROLE TO BACKUP; GRANT DBA TO BACKUP; GRANT CONNECT TO BACKUP; ALTER USER BACKUP DEFAULT ROLE ALL; ALTER USER BACKUP DEFAULT TABLESPACE SYSTEM; 3.        Within the Local Users and Groups section of Computer Management on the Oracle database server, add the backup servers windows domain administrator account to the following groups – a.        ORA_OraDB12Home1_SYSBACKUP b.    
Read more

CUCM 11.5 - Esxi 6.5 - unable to create VM

-
Image
Hi Guys Had an issue where I was unable to deploy a Cisco Unified Call Manager 11.5 OVA to the VMWare Esxi 6.5 standalone server. The following error would appear during the provision of the VM - "At least one extra disk image was provided that will be ignored". The solution to import the Cisco OVA into VMware is to use VMware's OVFTool. The commands I used worked for also UCCX and Cisco Unity Connect - CUCM Deployment for 2500 Users --------------------------------- ovftool --acceptAllEulas --datastore="datastore1" -dm="thick" --name="CUCM01-PUB" --net:"eth0"="Voice" --deploymentOption="CUCM_2500" "c:\temp\cucm_11.5_vmv8_v1.1.ova" vi://UserName:Password@IPAddress UCCX ---- ovftool --acceptAllEulas --datastore="datastore1" -dm="thick" --name="UCCX1" --net:"eth0"="Voice" --deploymentOption="UCCX_400_Agent" "C:\temp\UCCX_11.
Read more