User of the restrictions-pix/asa

Similar Questions

• ORA-01035: ORACLE only available for users with the RESTRICTED SESSION privilege

  Whenever I have to connect as user sys as sysdba, I can connect at ease.
  
  But every time that I try with a user (one for monitoring tool). I get a message, database is in restricted mode.
  
  SQL > connect patrol05/patrol $05
  
  ERROR:
  ORA-01035: ORACLE only available for users with the RESTRICTED SESSION privilege
  
  WARNING: You are more connected to ORACLE.

  Your database was opened with restricted session.
  As sysdba, run the following command to session restrcited dissable the option:

  alter system disable restricted session;
  

  Best regards
  Norbert

• Mobile Xperia Z2 D6502 unable Email data connection application to the user after the restriction.

  Hello

  I use D6502 Z2 Xperia.

  E-mail application default of the Xperia unable to use the Mobile data connection after she returned to "Restrict the database" defined.

  It works fine with WiFi. I tried resetting the application Email and MS Exchange Service, but the problem is still there.

  Is there a solution for this problem.

  This problem has been resolved after update to Android (Lolipop) 5. Thanks Sony.

• How Anyconnect VPN users will connect with cisco ASA, which uses the server (domain controller) Radius for authentication

  Hi team

  Hope you do well. !!!

  currently I am doing a project which consists in CISCO ASA-5545-X, RADIUS (domain controller) server for authentication. Here, I need to configure Anyconnect VPN and host checker in cisco asa.

  1 users will connect: user advanced browser on SSL VPN pop past username and password.

  2. (cisco ASA) authentication: VPN sends credentials to the RADIUS server.

  3 RADIUS server: authentication: receipt and SSL VPN (ASA) group.

  4 connectivity creation: If employee: PC so NAW verified compliance, no PC check Assign user to the appropriate role and give IP.

  This is my requirement, so someone please guide me how to set up step by step.

  1. how to set up the Radius Server?

  2. how to configure CISCO ASA?

  Thanks in advance.

  Hey Chick,

  Please consult the following page of installation as well as ASA Radius server. The ASA end there is frankly nothing much difference by doing this.

  http://www.4salesbyself.com/1configuring-RADIUS-authentication-for-webvp...

  Hope this helps

  Knockaert

• I get an error, the "restricted user" when I try to install a program on the administrator account.

  Original title: usuario restrito

  I have two users in my laptop. The two are of me. One is administrator, and the second is a standard user. I set it up like this for more security.

  This week I had issues with Real Player, it took too long to open, modify and restore the db. I deleted his PB and it was always damaged for some reason any. So, I decided to remove the real player and do a fresh install.
  But I could ' t because I get a message that I am a user 'restricted' (usuario restrito) and need to seek special privileges to the system administrator.
  Then, I installed Real Player successfully to the administrator account. And it works. But I can't access it from my normal user account.
  So I have two questions:
  1. How can I install the software in the standard account (overcoming the "restricted" user).
  
  
  OR
  
  
  2. How can I use the Real Player software installed in my standard account administrator account?
  
  
  
  

  You can allow ordinary users to perform installations by disabling UAC. Not recommended!

  Sorry, I can't tell you what the problem is when you run RealPlayer as a standard user. Your report "But I can not access it from my regular user account" is too vague to draw conclusions.
  You write "I have two users in my laptop. One is administrator. ' It is a very risky way of running Windows. If your machine develops a problem with your account only admin and then you are in a diabolical situation. Happens all the time... At any time, you must have a spare fully tested and documented, even admin account that you have a spare House key (so that you don't break a window in the case where he lead astray you).

• Vault to Oracle set up rules to restrict the user and the type of application that can connect

  Oracle 11 g 2 (11.2.0.4.3)

  RHEL 6

  Hi all

  We are experiencing a few problems to configure the following condition:

  Users A, B, and C will not be able to connect via SQLPLUS.

  So I took note of the political examples on how to Set Up database Vault (Doc ID 972477.1() -section restrict access to the database (sqlplus) unwanted tools:

  However, it doesn't evaluate the rule in the rule set correctly. The rule set is as follows:

  DVF. F$ MODULE! = ' SQL * MORE AND DVF. F$ SESSION_USER NOT IN ("USERA", "USERB", "USERC")

  This rule allows all users to connect except those defined in the rule. And it applies also to the developer SQL (and all other connections). If I change to be 'IN' he also allows users in the list, but no one else. In addition, somewhere I think it evaluates it as "OR" rather than "AND". What I want to do is:

  IF user IN ("USERA", "USERB", "USERC") AND SYS_CONTEXT ('USERENV', 'MODULE') = ' SQL * MORE

  SO, do not allow the user to connect.

  Note: The factor (MODULE) has been created by me and her expression is SYS_CONTEXT('USERENV','MODULE')

  Any help on this would be greatly appreciated.

  I tested these rules and they work:

  (1) ((upper (sys_context ('userenv', 'module')) like '%%') and (not in sys_context ('userenv', 'session_user') ('A', 'B'))) or ((upper (sys_context ('userenv', 'module')) like ' % %') and DEVELOPER (not in sys_context ('userenv', 'session_user') ('A', 'B'))))

  (2) ((upper (sys_context ('userenv', 'module')) not like ' %PLUS%')) or ((upper (sys_context ('userenv', 'module')) not like ' % DEVELOPER %'))))))

  I'm blocking users A and B to connect from SQL * more and SQL Developer

  -set the rule defined for all THE TRUE evaluation

• Possible way is to restrict the user to the planning an application

  Hello Experts,

  I have a requirement as I want to restrict bit user related to the demand for labour in the planning depends on business unit and product.

  that is... The test user could not access of the user to the company as an employee depends on some operational units and related products. So is it possible to do outside the [Chronicle] manual process.

  Thanks in advance...

  Are you just wanting to restrict access to specific members to enter data to or it also includes being able to 'see' only the data based on some examples.  For example, in the type of financing plan, I have write access to the Dept 123 for all accounts of actual Net profit, I want they have read access to this Department?  In this case, I would make sure that specific effective accounts, that I make sure that the user/group has only read access.

  Thank you

  Mark

• Restrict access to the Page of the user in the relational database

  I have a relational database with two tables on a common ID field. The user can access all their entries in the child table with simple SQL queries and then select from a list of correspondence which of its documents records in the child table that they wish to change (i.e. ['ID'] ParentTable, ChildTable ['ID'])). Registration is then displayed using $_GET passed through the URL as parameter "recordID". However, when the user is connected and accessing a folder that matches the query, they can then enter another "RecordID" number in the URL and go to any record in the table child whether they are 'owner' of the record or not.
  
  I tried to put a statement of equivalence in the authorization user code to restrict the access to the child records users since ParentTable ['ID'] == ['ID'] ChildTable only when you are connected the user accesses the records they created previously. (In other words, when a user type a different "RecordID" in the URL, the ParentTable ['ID'] and ChildTable ['ID] are not equivalent.) The code that I entered in the authentication of the user generated by DW is as follows:
  
  If ((isset ($HTTP_SESSION_VARS ["MM_Username"]) & & ($row_ParentTable ['ID'] == ['ID'] $row_ChildTable))) {}
  ...
  
  Is still not accessible, even if tests show the ParentTable ['ID'] and ChildTable ['ID'] are not equivalent
  
  Any ideas on how to restrict access to the child records "unknown"? I'm sure it's relatively simple, but I'm having trouble to get through this obstacle.
  
  Thank you

  Thank you, Philo. In fact I got it to work by initializing a session variable of tha parent ID of the table and comparing it to the variable ID of child table, then using a header redirect in case of inequality. Part of my problem was where I put the code in the page. Anyway, it works now. It seems that the answer is always just after you have posted the question.

• PIX, ASA, and RSA SecureID

  Hi all

  I replaced our old Pix 515 for a new ASA 5520.

  On the Pix (running ios 6.x) we have configured the pix to use an RSA SecurID appliance AAA server to authenticate remote VPN clients. To do this, we set up a group AAA using the radius Protocol. Now, for the SAA, I found documentation indicating that I need to create a group AAA that uses the SDI Protocol.

  Now my questions are

  (1) can I still use the RADIUS Protocol on the SAA is to authenticate with RSA SecureID, or what I have to use SDI?

  (2) if I have to use SDI does mean I also have to change the configuration on my RSA I used to authenticate users of the PIX?

  Kind regards

  Screech

  Hi little Duke

  (1) you can still use the RADIUS.

  (2) Yes, you would need to allow auth requests come from ASA

  Roman

• I restricted to a drive to access by others.now I want to remove the restriction.i am not able to do.

  I restricted to a drive to access by others.now I want to remove the restriction.i am not able to do.

  Hi nagendrasharmanarayanam,

  1. what operating system do you use?
  2. What is the exact error message you get when you try to access the drive?
  3. How is - that prevent you the user from accessing the drive?
  4. what kind of Player do you use internal or external?
  5. When you say than any other user, do you mean an another user account on your computer?

  I suggest you try the steps from the following link and see if that helps.

  What to know before applying permissions to a file or folder
  http://Windows.Microsoft.com/en-us/Windows7/what-to-know-before-applying-permissions-to-a-file-or-folder

• Access to the LDAP VPN ASA group

  Hello, I have configured the access remote vpn on asa with ldap authentication. But I can't limit access vpn with specific ldap group.

  Here is my config:

  AAA-server AZPBTDC01 (DC_Internal) host 192.168.10.250
  LDAP-base-dn dc = company, dc = com
  LDAP-scope subtree
  LDAP-naming-attribute sAMAccountName
  LDAP-login-password *.
  LDAP-connection-dn cn = Netuser, OU = Services users, or is ASM HQ, dc is company, dc = com
  microsoft server type
  LDAP-attribute-map AZPBTDC01

  LDAP attribute-map AZPBTDC01
  name of the memberOf Group Policy map
  map-value memberOf "CN = VPN_Admin, OU = ASM group, OU = ASM HQ, DC = company, DC = com" RA_ADMIN_GP

  internal group NOACCESS strategy
  NOACCESS group policy attributes
  VPN - concurrent connections 0
  client ssl-VPN-tunnel-Protocol ikev1
  address pools no

  internal RA_ADMIN_GP group policy
  RA_ADMIN_GP group policy attributes
  value of server DNS 192.168.10.251
  VPN - connections 3
  Ikev1 VPN-tunnel-Protocol
  Split-tunnel-policy tunnelspecified
  value of Split-tunnel-network-list IPSEC_RA_ACL_ADMIN

  attributes global-tunnel-group DefaultRAGroup
  NOACCESS by default-group-policy

  type tunnel-group IPSEC_RA_ADMIN remote access
  attributes global-tunnel-group IPSEC_RA_ADMIN
  authentication-server-group LOCAL AZPBTDC01
  authorization-server-group AZPBTDC01
  Group Policy - by default-RA_ADMIN_GP

  The problem is all the domen users can connect to the vpn. ASA does not ranking filter in a group, no VPN_Admin group users can connect, but the man should not be able to connect.

  If it is possible to make this approach work, I wouldn't do it this way.  Use rather DAP (Dynamic Access Policy).

  The instructions for this are here:

  http://www.Cisco.com/c/en/us/support/docs/security/ASA-5500-x-series-next-generation-firewalls/108000-DAP-Deploy-Guide.html

  Search for "Active Directory group" to jump directly to the corresponding section.  Note that you may need two policies DAP.  One to match users living in VPN_Admin and another default policy to deny access to everyone.

  Note for the default "opt-out" policy, that I often make it pop up a message to the end user, saying that they do not have VPN access and contact xxx if they want to fix it.

• Authenticate users in the other domain Windows

  Hello

  I'm trying to authenticate users in a different Windows domain. The correct version of the Remote Agent is installed on the domain controller. Director of company "runs" the service.

  I discovered that the group nesting is not working in version 3.3.3. Is this correct?

  I also have a universal and domain local group. In this group, I put some users in the domain, the trust.

  Authentication will not work: error on ACS: external DB account restriction.

  Also, I tried to do a group directly mapping in the trusted domain. When I click on 'Add Group Mapping', this is the error: "unable to enumerate windows... groups."

  How can I fix these problems?

  Thank you

  Remco

  Hi Remco

  Looking at the release notes under known issues in Cisco Secure ACS for Windows Server 3.3

  CSCei01730

  The EAP - TLS authentication to the trusted domain controller failed

  Authentication succeeded only when the customer the EAP - TLS to authenticate to the domain controller which connected directly to GBA, but when the user is in the ms trust (only in the ms trust) that linked to the first domain controller, the authentication has failed and has been the message of attempts fail: 'External account DB Restriction'.

  Same message is produced if the activation of the field stripping in database settings outside of Windows or not.

  CSCee13658

  Report of failed attempts for statement is not clear enough

  When the user validation fails for some reason any (external server is down, the right SSL certificate or key shift with NAS), attempts to csv report failed indicates that the failure of the authentication code is "restriction of account external db" or "CS password invalid.

  Workaround: this issue is cosmetic. No work around.

  Cordially MJ

• Outdoor access for users of PPTP on PIX

  Hello everyone I have a PIX 506 6.3 (5) software running and configured to accept PPTP VPN from outside connections.  It works very well, the PPTP users get a local IP address of the configured pool and can access inside the hosts as expected.  What I want now, is that PPTP users can access the internet from here like inside hosts using dynamic NAT to the external interface. On ASA5505 this is achieved by the same-security-traffic permit intra-interface and corresponding nat (outside) configuration (with IPsec-VPN-Clients, not PPTP). On the PIX with the PPTP clients, I can not get this result.  Is it possible somehow?  Thanks a lot for any suggestion, Grischa

  grischast wrote:
  Dear all  I have a PIX 506 running Software 6.3(5) and configured it to accept PPTP VPN connections from outside.  This works very well, PPTP users get a local IP address from the configured pool and can access inside hosts as expected.  What I want now is that PPTP users can access the internet from here just like inside hosts via dynamic NAT to the outside interface. On ASA5505 this is achieved by    same-security-traffic permit intra-interface and corresponding    nat (outside) configuration (with IPsec-VPN-Clients, not PPTP, though). On the PIX with PPTP clients I cannot achieve this result.  Is it possible somehow?  Thanks a lot for any suggestion,  Grischa
  

  Grischa

  Unfortunately no, it is not possible on the pix 506 v6.x running. The reason is that the feature you need is called "bundling", which is activated by using the command "permit same-security-traffic intra-interface". But it is not available on code v.6.x pix.

  It is available on pix v7.x code and leave, but unfortunately the pix 506 cannot be upgraded to code v7.x. The minimum pix model that can run code v7.x is a pix 515E.

  Jon

• PIX - ASA, allow RA VPN clients to access servers at remote sites

  I got L2L tunnels set up for a couple of remote sites (PIX) for several months now. We have a VPN concentrator, which will go EOL soon, so I'm working on moving our existing customers of RA our ASA. I have a problem, allowing RA clients access to a server to one of our remote sites. PIX and ASA (main site) relevant config is shown below. The error I get on the remote PIX when you try a ping on the VPN client is:

  Group = 204.14. *. *, IP = 204.14. *. * cheque card static Crypto Card = outside_map, seq = 40, ACL does not proxy IDs src:172.16.200.0 dst: 172.16.26.0

  The config:

  Hand ASA config

  access extensive list ip 172.16.0.0 inside_nat0_outbound allow 255.255.255.0 172.16.26.0 255.255.255.0

  access extensive list ip 172.16.1.0 inside_nat0_outbound allow 255.255.255.0 172.16.26.0 255.255.255.0

  access extensive list ip 172.16.22.0 inside_nat0_outbound allow 255.255.255.0 172.16.26.0 255.255.255.0

  access extensive list ip 172.16.200.0 inside_nat0_outbound allow 255.255.255.0 172.16.26.0 255.255.255.0

  access extensive list ip 172.16.0.0 inside_nat0_outbound allow 255.255.255.0 172.16.200.0 255.255.255.0

  access extensive list ip 172.16.0.0 outside_cryptomap_60 allow 255.255.255.0 172.16.26.0 255.255.255.0

  access extensive list ip 172.16.1.0 outside_cryptomap_60 allow 255.255.255.0 172.16.26.0 255.255.255.0

  access extensive list ip 172.16.22.0 outside_cryptomap_60 allow 255.255.255.0 172.16.26.0 255.255.255.0

  access extensive list ip 172.16.200.0 outside_cryptomap_60 allow 255.255.255.0 172.16.26.0 255.255.255.0

  card crypto outside_map 60 match address outside_cryptomap_60

  outside_map 60 set crypto map peer 24.97. *. *

  card crypto outside_map 60 the transform-set ESP-3DES-MD5 value

  map outside_map 65535-isakmp ipsec crypto dynamic outside_dyn_map

  outside_map interface card crypto outside

  =========================================

  Remote config PIX

  access extensive list ip 172.16.26.0 inside_nat0_outbound allow 255.255.255.0 172.16.0.0 255.255.255.0

  access extensive list ip 172.16.26.0 inside_nat0_outbound allow 255.255.255.0 172.16.1.0 255.255.255.0

  access extensive list ip 172.16.26.0 inside_nat0_outbound allow 255.255.255.0 172.16.22.0 255.255.255.0

  access extensive list ip 172.16.26.0 inside_nat0_outbound allow 255.255.255.0 172.16.200.0 255.255.255.0

  access extensive list ip 172.16.26.0 outside_cryptomap_60 allow 255.255.255.0 172.16.0.0 255.255.255.0

  access extensive list ip 172.16.26.0 outside_cryptomap_60 allow 255.255.255.0 172.16.1.0 255.255.255.0

  access extensive list ip 172.16.26.0 outside_cryptomap_60 allow 255.255.255.0 172.16.22.0 255.255.255.0

  access extensive list ip 172.16.26.0 outside_cryptomap_60 allow 255.255.255.0 172.16.200.0 255.255.255.0

  card crypto outside_map 60 match address outside_cryptomap_60

  peer set card crypto outside_map 60 204.14. *. *

  card crypto outside_map 60 the transform-set ESP-3DES-MD5 value

  outside_map interface card crypto outside

  EDIT: Guess, I might add, remote site is 172.16.26.0/24 VLAN VPN is 172.16.200.0/24...

  What you want to do is 'tunnelall', which is not split tunneling. This will still allow customers to join the main and remote site, but not allow them to access internet... unless you have expressly authorized to make a 'nat (outside)"or something. Your journey on the client will be, Secured route 0.0.0.0 0.0.0.0

  attributes of group policy

  Split-tunnel-policy tunnelall

  Who is your current config, I don't see where the acl of walton is attributed to what to split tunnel?

• Windows Installer error only by the installation of the machine is allowed. Please make sure that the user has the appropriate rights to do so.

  Trouble with trying to install an MSI Package. Receive the error message only by the installation of the machine is allow. It's when you try to run manually. When you try to run msiexec cmd

  msiexec /i "C:\Mimecast Services for Outlook 4.0.411.5287 (32 bit) GPO.msi" /qb/log "C:\install.log.

  = Recording started: 04/09/2013-10:36:27 Build type: SHIP UNICODE 5.00.7601.00 appeal process: C:\windows\system32\msiexec.exe =.
  MSI (c) (58:C0) [10:36:27:087]: established police.  Charset: Req = 0, Ret = 0, fonts: Req = MS Shell Dlg, Ret = MS Shell Dlg

  MSI (c) (58:C0) [10:36:27:087]: established police.  Charset: Req = 0, Ret = 0, fonts: Req = MS Shell Dlg, Ret = MS Shell Dlg

  MSI (c) (58:88) [10:36:27:107]: Resetting cached policy values
  MSI (c) (58:88) [10:36:27:107]: value of strategy Machine 'Debug' is 0
  MSI (c) (58:88) [10:36:27:107]: * RunEngine:
  Product: C:\Mimecast Services for Outlook 4.0.411.5287 (32-bit) GPO.msi
  Action:
  Command line:
  MSI (c) (58:88) [10:36:27:107]: Client and UI is none or basic: full installation running on the server.
  MSI (c) (58:88) [10:36:27:107]: grabbed execution mutex.
  MSI (c) (58:88) [10:36:27:147]: Cloaking enabled.
  MSI (c) (58:88) [10:36:27:147]: attempt of activation of all disabled privileges before calling install on server
  MSI (c) (58:88) [10:36:27:147]: meter is incremented to disable the stop. Counter after increment: 0
  MSI (s) (C 54:4) [10:36:27:157]: running the installation inside the multi-package transaction Services C:\Mimecast for Outlook 4.0.411.5287 (32-bit) GPO.msi
  MSI (s) (C 54:4) [10:36:27:157]: grabbed execution mutex.
  MSI (s) (54:F8) [10:36:27:157]: Resetting cached policy values
  MSI (s) (54:F8) [10:36:27:157]: value of strategy Machine 'Debug' is 0
  MSI (s) (54:F8) [10:36:27:157]: * RunEngine:
  Product: C:\Mimecast Services for Outlook 4.0.411.5287 (32-bit) GPO.msi
  Action:
  Command line:
  MSI (s) (54:F8) [10:36:27:477]: value of strategy Machine 'DisableUserInstalls' is 0
  MSI (s) (54:F8) [10:36:27:477]: value 'SearchOrder' user policy is 'nmu '.
  MSI (s) (54:F8) [10:36:27:477]: "DisableMedia" user policy value is 0
  MSI (s) (54:F8) [10:36:27:477]: value of strategy Machine 'AllowLockdownMedia' is 0
  MSI (s) (54:F8) [10:36:27:477]: SOURCEMGMT: Media enabled only if the package is safe.
  MSI (s) (54:F8) [10:36:27:477]: SOURCEMGMT: looking for sourcelist for product {C28136F7-F2C7-4426-B26F-F7E03922B34B}
  MSI (s) (54:F8) [10:36:27:477]: SOURCEMGMT: added {C28136F7-F2C7-4426-B26F-F7E03922B34B}; for the potential sourcelist (pcode; disc; relpath) list.
  MSI (s) (54:F8) [10:36:27:477]: SOURCEMGMT: check now product {C28136F7-F2C7-4426-B26F-F7E03922B34B}
  MSI (s) (54:F8) [10:36:27:477]: SOURCEMGMT: Media is enabled for the product.
  MSI (s) (54:F8) [10:36:27:477]: SOURCEMGMT: attempting to use LastUsedSource from source list.
  MSI (s) (54:F8) [10:36:27:477]: SOURCEMGMT: source C:\windows\ccmcache\4\ by train.
  MSI (s) (54:F8) [10:36:27:787]: entering CMsiConfigurationManager::SetLastUsedSource.
  MSI (s) (54:F8) [10:36:27:787]: source specified is already in a list.
  MSI (s) (54:F8) [10:36:27:787]: value 'SearchOrder' user policy is 'nmu '.
  MSI (s) (54:F8) [10:36:27:787]: value of strategy Machine 'DisableBrowse' is 0
  MSI (s) (54:F8) [10:36:27:787]: value of strategy Machine 'AllowLockdownBrowse' is 0
  MSI (s) (54:F8) [10:36:27:787]: adding new sources is allowed.
  MSI (s) (54:F8) [10:36:27:787]: the LastUsedSource value: C:\windows\ccmcache\4\.
  MSI (s) (54:F8) [10:36:27:787]: value LastUsedType: n.
  MSI (s) (54:F8) [10:36:27:787]: A LastUsedIndex: 1.
  MSI (s) (54:F8) [10:36:27:787]: SOURCEMGMT: resolved source: 'C:\windows\ccmcache\4\ '.
  MSI (s) (54:F8) [10:36:27:787]: value of strategy Machine 'LimitSystemRestoreCheckpointing' is 0
  MSI (s) (54:F8) [10:36:27:787]: Note: 1: 1715 2: Services for 32-bit Outlook Mimecast
  MSI (s) (54:F8) [10:36:27:787]: SRSetRestorePoint API call. dwRestorePtType: 0, dwEventType: 102, llSequenceNumber: 0, szDescription: «Installed it Services for Outlook 32-bit»
  MSI (s) (54:F8) [10:36:27:787]: the system restore service is disabled. Referred State: 1058. GetLastError() returned: 1058
  MSI (s) (54:F8) [10:36:28:117]: file will have the applied safety of OpCode.
  MSI (s) (54:F8) [10:36:28:147]: STRATEGY of RESTRICTION SOFTWARE: Verifying package--> ' C:\Mimecast Services for Outlook 4.0.411.5287 (32 bit) GPO.msi ' against the software restriction policy
  MSI (s) (54:F8) [10:36:28:147]: STRATEGY of RESTRICTION SOFTWARE: Services C:\Mimecast for Outlook 4.0.411.5287 (32-bit) GPO.msi has a digital signature
  MSI (s) (54:F8) [10:36:28:547]: STRATEGY of RESTRICTION SOFTWARE: C:\Mimecast Services for Outlook 4.0.411.5287 (32-bit) GPO.msi is allowed to run at the level of authorization 'unlimited '.
  MSI (s) (54:F8) [10:36:28:547]: dialogue of end not activated
  MSI (s) (54:F8) [10:36:28:547]: ==> C:\windows\ccmcache\4\Mimecast4.0.msi original packaging
  MSI (s) (54:F8) [10:36:28:547]: we're running out of ==> C:\windows\Installer\14b48052.msi package
  MSI (s) (54:F8) [10:36:28:547]: APPCOMPAT: looking for entry with ProductCode '{C28136F7-F2C7-4426-B26F-F7E03922B34B}' appcompat database
  MSI (s) (54:F8) [10:36:28:547]: APPCOMPAT: no matching ProductCode found in the database.
  MSI (s) (54:F8) [10:36:28:557]: MSCOREE not loaded loading copy from system32
  MSI (s) (54:F8) [10:36:28:557]: value of strategy Machine 'DisablePatch' is 0
  MSI (s) (54:F8) [10:36:28:557]: value of strategy Machine 'AllowLockdownPatch' is 0
  MSI (s) (54:F8) [10:36:28:557]: value of strategy Machine 'DisableLUAPatching' is 0
  MSI (s) (54:F8) [10:36:28:557]: value of strategy Machine 'DisableFlyWeightPatching' is 0
  MSI (s) (54:F8) [10:36:28:557]: APPCOMPAT: looking for entry with ProductCode '{C28136F7-F2C7-4426-B26F-F7E03922B34B}' appcompat database
  MSI (s) (54:F8) [10:36:28:557]: APPCOMPAT: no matching ProductCode found in the database.
  MSI (s) (54:F8) [10:36:28:557]: transformations are not secure.
  MSI (s) (54:F8) [10:36:28:557]: PROPERTY CHANGE: adding MsiLogFileLocation property. Its value is 'C:\install.log.
  MSI (s) (54:F8) [10:36:28:557]: command line: MSIINSTALLPERUSER = 3 CURRENTDIRECTORY = C: \ CLIENTUILEVEL = 2 CLIENTPROCESSID = 3672
  MSI (s) (54:F8) [10:36:28:557]: PROPERTY CHANGE: adding PackageCode property. Its value is '{6C9809C5-9DBC-4683-AE5F-3E05D53939EA} '.
  MSI (s) (54:F8) [10:36:28:557]: Product Code spent in Engine.Initialize: "{C28136F7-F2C7-4426-B26F-F7E03922B34B}".
  MSI (s) (54:F8) [10:36:28:557]: the Product Code of the table of properties before transformations: "{C28136F7-F2C7-4426-B26F-F7E03922B34B}".
  MSI (s) (54:F8) [10:36:28:557]: the Product Code of the table of properties after transformations: "{C28136F7-F2C7-4426-B26F-F7E03922B34B}".
  MSI (s) (54:F8) [10:36:28:557]: unregistered product: first start installation
  MSI (s) (54:F8) [10:36:28:557]: has determined that the existing product (this product or the product being upgraded with a patch) is installed by user.
  MSI (s) (54:F8) [10:36:28:557]: PROPERTY CHANGE: adding MSIINSTALLPERUSER property. Its value is '3'.
  MSI (s) (54:F8) [10:36:28:557]: PROPERTY CHANGE: deleting ALLUSERS property. Its current value is '1 '.
  MSI (s) (54:F8) [10:36:28:557]: PROPERTY CHANGE: deleting MSIINSTALLPERUSER property. Its current value is '3'.
  MSI (s) (54:F8) [10:36:28:557]: product {C28136F7-F2C7-4426-B26F-F7E03922B34B} is assigned admin: LocalSystem has the key to publish.
  MSI (s) (54:F8) [10:36:28:557]: product {C28136F7-F2C7-4426-B26F-F7E03922B34B} is managed.
  MSI (s) (54:F8) [10:36:28:557]: MSI_LUA: invites of credentials not required, the user is an administrator
  MSI (s) (54:F8) [10:36:28:557]: PROPERTY CHANGE: adding ProductState property. Its value is '1 '.
  MSI (s) (54:F8) [10:36:28:557]: entering CMsiConfigurationManager::SetLastUsedSource.
  MSI (s) (54:F8) [10:36:28:557]: source specified is already in a list.
  MSI (s) (54:F8) [10:36:28:557]: value 'SearchOrder' user policy is 'nmu '.
  MSI (s) (54:F8) [10:36:28:557]: adding new sources is allowed.
  MSI (s) (54:F8) [10:36:28:557]: the Package name from the configuration data: "Mimecast4.0.msi."
  MSI (s) (54:F8) [10:36:28:557]: Note: 2 1: 2262: AdminProperties 3:-2147287038
  MSI (s) (54:F8) [10:36:28:557]: Machine policy value 'DisableMsi' is 0
  MSI (s) (54:F8) [10:36:28:557]: value of strategy Machine 'AlwaysInstallElevated' is 0
  MSI (s) (54:F8) [10:36:28:557]: "AlwaysInstallElevated" user policy value is 0
  MSI (s) (54:F8) [10:36:28:557]: product {C28136F7-F2C7-4426-B26F-F7E03922B34B} is assigned admin: LocalSystem has the key to publish.
  MSI (s) (54:F8) [10:36:28:557]: product {C28136F7-F2C7-4426-B26F-F7E03922B34B} is managed.
  MSI (s) (54:F8) [10:36:28:557]: the product '{C28136F7-F2C7-4426-B26F-F7E03922B34B}' is running with elevated privileges: product is affected.
  MSI (s) (54:F8) [10:36:28:557]: PROPERTY CHANGE: adding MSIINSTALLPERUSER property. Its value is '3'.
  MSI (s) (54:F8) [10:36:28:557]: PROPERTY CHANGE: adding CURRENTDIRECTORY property. Its value is "C:\". ».
  MSI (s) (54:F8) [10:36:28:557]: PROPERTY CHANGE: adding CLIENTUILEVEL property. Its value is '2'.
  MSI (s) (54:F8) [10:36:28:557]: PROPERTY CHANGE: adding CLIENTPROCESSID property. Its value is '3672'.
  MSI (s) (54:F8) [10:36:28:557]: value of strategy Machine 'DisableAutomaticApplicationShutdown' is 0
  MSI (s) (54:F8) [10:36:28:567]: PROPERTY CHANGE: adding MsiRestartManagerSessionKey property. Its value is 'b9237eca8dffb44583db9105bf61f283 '.
  MSI (s) (54:F8) [10:36:28:567]: MANAGER of REBOOT: logon.
  MSI (s) (54:F8) [10:36:28:567]: PROPERTY CHANGE: adding MsiSystemRebootPending property. Its value is '1 '.
  MSI (s) (54:F8) [10:36:28:567]: PROPERTY CHANGE: deleting MSIINSTALLPERUSER property. Its current value is '3'.
  MSI (s) (54:F8) [10:36:28:567]: TRANSFORMS property is now:
  MSI (s) (54:F8) [10:36:28:567]: PROPERTY CHANGE: adding PRODUCTLANGUAGE property. Its value is "1033".
  MSI (s) (54:F8) [10:36:28:567]: PROPERTY CHANGE: adding VersionDatabase property. Its value is "200".
  MSI (s) (54:F8) [10:36:28:567]: SHELL32::SHGetFolderPath returned: \\gblon-v-fp001\users$\tech.support\Application data
  MSI (s) (54:F8) [10:36:28:567]: SHELL32::SHGetFolderPath returned: \\gblon-v-fp001\users$\tech.support\Favorites
  MSI (s) (54:F8) [10:36:28:567]: SHELL32::SHGetFolderPath returned: \\gblon-v-fp001\users$\tech.support\Application Data\Microsoft\Windows\Network shortcuts
  MSI (s) (54:F8) [10:36:28:567]: SHELL32::SHGetFolderPath returned: \\gblon-v-fp001\users$\tech.support\Documents
  MSI (s) (54:F8) [10:36:28:567]: SHELL32::SHGetFolderPath returned: \\gblon-v-fp001\users$\tech.support\Application Data\Microsoft\Windows\Printer shortcuts
  MSI (s) (54:F8) [10:36:28:567]: SHELL32::SHGetFolderPath returned: \\gblon-v-fp001\users$\tech.support\Application Data\Microsoft\Windows\Recent
  MSI (s) (54:F8) [10:36:28:577]: SHELL32::SHGetFolderPath returned: \\gblon-v-fp001\users$\tech.support\Application Data\Microsoft\Windows\SendTo
  MSI (s) (54:F8) [10:36:28:577]: SHELL32::SHGetFolderPath returned: \\gblon-v-fp001\users$\tech.support\Application Data\Microsoft\Windows\Templates
  MSI (s) (54:F8) [10:36:28:577]: SHELL32::SHGetFolderPath returned: C:\ProgramData
  MSI (s) (54:F8) [10:36:28:577]: SHELL32::SHGetFolderPath returned: C:\Users\tech.support\AppData\Local
  MSI (s) (54:F8) [10:36:28:577]: SHELL32::SHGetFolderPath returned: C:\Users\tech.support\Pictures
  MSI (s) (54:F8) [10:36:28:577]: SHELL32::SHGetFolderPath returned: \\gblon-v-fp001\users$\tech.support\Application Menu\Programs\Administrative of Directors Data\Microsoft\Windows\Start
  MSI (s) (54:F8) [10:36:28:577]: SHELL32::SHGetFolderPath returned: \\gblon-v-fp001\users$\tech.support\Application Data\Microsoft\Windows\Start Menu\Programs\Startup
  MSI (s) (54:F8) [10:36:28:577]: SHELL32::SHGetFolderPath returned: \\gblon-v-fp001\users$\tech.support\Application start\program Data\Microsoft\Windows\Start
  MSI (s) (54:F8) [10:36:28:587]: SHELL32::SHGetFolderPath returned: \\gblon-v-fp001\users$\tech.support\Application Data\Microsoft\Windows\Start Menu
  MSI (s) (54:F8) [10:36:28:587]: SHELL32::SHGetFolderPath returned: \\gblon-v-fp001\users$\tech.support\Desktop
  MSI (s) (54:F8) [10:36:28:587]: SHELL32::SHGetFolderPath returned: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative of Directors
  MSI (s) (54:F8) [10:36:28:587]: SHELL32::SHGetFolderPath returned: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
  MSI (s) (54:F8) [10:36:28:587]: SHELL32::SHGetFolderPath returned: C:\ProgramData\Microsoft\Windows\Start start\program
  MSI (s) (54:F8) [10:36:28:587]: SHELL32::SHGetFolderPath returned: C:\ProgramData\Microsoft\Windows\Start Menu
  MSI (s) (54:F8) [10:36:28:587]: SHELL32::SHGetFolderPath returned: C:\Users\Public\Desktop
  MSI (s) (54:F8) [10:36:28:587]: SHELL32::SHGetFolderPath returned: C:\windows\Fonts
  MSI (s) (54:F8) [10:36:28:587]: Note: 1: 2898 2: MS without Serif 3: MS without Serif 4: 0 05:16
  MSI (s) (54:F8) [10:36:28:597]: MSI_LUA: the MsiRunningElevated of the parameter property to 1 because the installation is already running high.
  MSI (s) (54:F8) [10:36:28:597]: PROPERTY CHANGE: adding MsiRunningElevated property. Its value is '1 '.
  MSI (s) (54:F8) [10:36:28:597]: PROPERTY CHANGE: adding privileged property. Its value is '1 '.
  MSI (s) (54:F8) [10:36:28:597]: Note: 1: 1402 2: HKEY_CURRENT_USER Software Microsoft MS Setup (ACME) \User Info 3:2
  MSI (s) (54:F8) [10:36:28:597]: PROPERTY CHANGE: adding USERNAME property. Its value is "Oriel securities user".
  MSI (s) (54:F8) [10:36:28:597]: Note: 1: 1402 2: HKEY_CURRENT_USER Software Microsoft MS Setup (ACME) \User Info 3:2
  MSI (s) (54:F8) [10:36:28:597]: PROPERTY CHANGE: adding COMPANYNAME property. Its value is "Oriel Securities Ltd.".
  MSI (s) (54:F8) [10:36:28:597]: PROPERTY CHANGE: adding a DATABASE property. Its value is 'C:\windows\Installer\14b48052.msi '.
  MSI (s) (54:F8) [10:36:28:597]: PROPERTY CHANGE: adding OriginalDatabase property. Its value is 'C:\windows\ccmcache\4\Mimecast4.0.msi '.
  MSI (s) (54:F8) [10:36:28:597]: value of strategy Machine 'MsiDisableEmbeddedUI' is 0
  MSI (s) (54:F8) [10:36:28:597]: Note: 1: 2205 2:3: Package_correctif
  MSI (s) (54:F8) [10:36:28:597]: policy value 'DisableRollback' Machine is 0
  MSI (s) (54:F8) [10:36:28:597]: strategy user 'DisableRollback' is 0
  MSI (s) (54:F8) [10:36:28:597]: PROPERTY CHANGE: adding UILevel property. Its value is '3'.
  = Logging started: 04/09/2013-10:36:28 =.
  MSI (s) (54:F8) [10:36:28:597]: PROPERTY CHANGE: adding ACTION property. Its value is 'INSTALL '.
  MSI (s) (54:F8) [10:36:28:597]: doing action: INSTALL
  Action start 10:36:28: INSTALL.
  MSI (s) (54:F8) [10:36:28:597]: ExecuteSequence running
  MSI (s) (54:F8) [10:36:28:597]: action driving: FindRelatedProducts
  Action start 10:36:28: FindRelatedProducts.
  MSI (s) (54:F8) [10:36:28:597]: action driving: AppSearch
  Action ended at 10:36:28: FindRelatedProducts. Returns the value 1.
  Action start 10:36:28: AppSearch.
  MSI (s) (54:F8) [10:36:28:597]: Note: 2 1: 2262: Signature 3:-2147287038
  MSI (s) (54:F8) [10:36:28:597]: PROPERTY CHANGE: adding NETFRAMEWORK40FULL property. Its value is '#1 '.
  MSI (s) (54:F8) [10:36:28:597]: Note: 2 1: 2262: Signature 3:-2147287038
  MSI (s) (54:F8) [10:36:28:597]: action driving: OutlookVersionCheck
  Action ended at 10:36:28: AppSearch. Returns the value 1.
  MSI (s) (54:C8) [10:36:28:627]: call for a custom action to distance. DLL: C:\windows\Installer\MSI837D.tmp, point of entry: OutlookVersionCheck
  MSI (s) (54:B8) [10:36:28:627]: generation random cookie.
  MSI (s) (54:B8) [10:36:28:637]: created server custom with PID 4656 (0 x 1230) Action.
  MSI (s) (54:80) [10:36:28:667]: running as a service.
  MSI (s) (54:80) [10:36:28:667]: Hello, I am your 32-bit custom action Server Impersonated.
  Action start 10:36:28: OutlookVersionCheck.
  SFXCA: Extraction of a custom action to the temporary directory: C:\windows\Installer\MSI837D.tmp-\
  SFXCA: Link to the CLR version v4.0.30319
  Call to the custom action CustomAction_OutlookCheck! CustomAction_OutlookCheck.CustomActions.OutlookVersionCheck
  BEGIN OutlookVersionCheck
  OUTLOOK BITNESS IS: x 86
  Key checking: Software\Microsoft\Office\11.0\Outlook
  Key checking: Software\Wow6432Node\Microsoft\Office\11.0\Outlook
  Key checking: Software\Microsoft\Office\12.0\Outlook\InstallRoot
  Key checking: Software\Wow6432Node\Microsoft\Office\12.0\Outlook\InstallRoot
  MSI (s) (54. 68) [10:36:28:827]: PROPERTY CHANGE: adding OUTLOOK_INSTALLED property. Its value is 'TRUE '.
  Key checking: Software\Microsoft\Office\14.0\Outlook\InstallRoot
  Found version: Outlook 2010
  Key checking: Software\Wow6432Node\Microsoft\Office\14.0\Outlook\InstallRoot
  MSI (s) (54. 68) [10:36:28:827]: PROPERTY CHANGE: property to change OUTLOOK_VERSION. Its current value is 'NONE '. Its new value: "Outlook 2010".
  Found version: Outlook 2010
  OUTLOOK_INSTALLED is: TRUE
  IS THE VERSION of OUTLOOK: Outlook 2010
  MSI (s) (54:F8) [10:36:28:830]: action driving: LaunchConditions
  Action ended at 10:36:28: OutlookVersionCheck. Returns the value 1.
  Action start 10:36:28: LaunchConditions.
  MSI (s) (54:F8) [10:38:26:502]: product: service Mimecast for 32-bit Outlook - only by the installation of the machine is allowed. Please make sure that the user has the appropriate rights to do so.

  MSI (c) (58:C0) [10:36:28:850]: established police.  Charset: Req = 0, Ret = 0, fonts: Req = MS Shell Dlg, Ret = MS Shell Dlg

  Installation is allowed only by the machine. Please make sure that the user has the appropriate rights to do so.
  Action ended at 10:38:26: LaunchConditions. Return value 3.
  Action ended at 10:38:26: INSTALL. Return value 3.
  Property (S): UpgradeCode = {586A589B-D6D5-48D3-9B6D-571EF230ED6A}
  Property (S): NETFRAMEWORK40FULL = 1 #.
  Property (S): LAUNCHOUTLOOKONEXIT = 1
  Property (S): WIXUI_INSTALLDIR = INSTALLDIR
  Property (S): OutlookOpen = false
  Property (S): ProgramFilesFolder = C:\Program Files (x 86).
  Property (S): VersionNT = 601
  Property (S): Manufacturer = Mimecast Ltd
  Property (S): ProductCode = {C28136F7-F2C7-4426-B26F-F7E03922B34B}
  Property (S): ProductLanguage = 1033
  Property (S): ProductName = Mimecast Services for 32-bit Outlook
  Property (S): ProductVersion = 4.0.348.5166
  Property (S): ARPPRODUCTICON = MainIcon.exe
  Property (S): ARPHELPLINK = * address email is removed from the privacy *
  Property (S): ARPNOMODIFY = 0
  Property (S): Platform = *.
  Property (S): ROOTDRIVE = C:\\
  Property (S): MsiBitness = x 86
  Property (S): MimecastInstaller = *.
  Property (S): CAP_Common = *.
  Property (S): CAP_Common.Options = *.
  Property (S): CAP_Common.Options.Credentials = *.
  Property (S): CAP_Common.Options.ChangePassword = *.
  Property (S): CAP_Common.Options.Network = *.
  Property (S): CAP_Common.Options.Network.Read = *.
  Property (S): CAP_Common.Options.Network.Update = *.
  Property (S): CAP_Common.Options.Capabilities = *.
  Property (S): CAP_Common.Update.Manual = *.
  Property (S): CAP_Archive = *.
  Property (S): CAP_Archive.Search = *.
  Property (S): CAP_Archive.Search.Quick = *.
  Property (S): CAP_Archive.Search.Basic = *.
  Property (S): CAP_Archive.Search.Builder = *.
  Property (S): CAP_Archive.Search.Context = *.
  Property (S): CAP_Archive.Search.Recent = *.
  Property (S): CAP_Archive.Search.Favourite = *.
  Property (S): CAP_Archive.Search.Manage = *.
  Property (S): CAP_Gateway = *.
  Property (S): CAP_Gateway.Block = *.
  Property (S): CAP_Gateway.Block.Address = *.
  Property (S): CAP_Gateway.Block.Domain = *.
  Property (S): CAP_Gateway.Block.ReportSpam = *.
  Property (S): CAP_Gateway.Block.ManagedSenders = *.
  Property (S): CAP_Gateway.OnHoldItems = *.
  Property (S): CAP_Gateway.OnHoldItems.Personal = *.
  Property (S): CAP_Gateway.OnHoldItems.Moderated = *.
  Property (S): CAP_Gateway.OnHoldItems.Release = *.
  Property (S): CAP_Gateway.OnHoldItems.Block = *.
  Property (S): CAP_Gateway.Track = *.
  Property (S): CAP_Gateway.Transport = *.
  Property (S): CAP_Gateway.Transport.Secure = *.
  Property (S): CAP_Gateway.Transport.CCM = *.
  Property (S): CAP_Gateway.Transport.Stationery = *.
  Property (S): CAP_Gateway.Transport.Stationery.None = *.
  Property (S): CAP_Gateway.Transport.Stationery.Select = *.
  Property (S): CAP_Gateway.Transport.Attachments = *.
  Property (S): CAP_Gateway.Transport.Attachments.Convert = *.
  Property (S): CAP_Gateway.Transport.Attachments.Metadata = *.
  Property (S): CAP_Gateway.Transport.Attachments.StripLink = *.
  Property (S): CAP_Continuity = *.
  Property (S): CAP_Continuity.Mailbox = *.
  Property (S): CAP_Continuity.Mailbox.ReceivedItems = *.
  Property (S): CAP_Continuity.Mailbox.SentItems = *.
  Property (S): CAP_Continuity.Monitor = *.
  Property (S): CAP_Continuity.Monitor.Auto = *.
  Property (S): CAP_Continuity.Monitor.User = *.
  Property (S): CAP_Continuity.Monitor.Admin = *.
  Property (S): CAP_Continuity.Enable = *.
  Property (S): CAP_Continuity.Enable.Auto = *.
  Property (S): CAP_Continuity.Enable.Admin = *.
  Property (S): CAP_Piits = *.
  Property (S): CAP_Piits.Management = *.
  Property (S): CAP_Piits.AutoMount = *.
  Property (S): Global.Service.AccountType = *.
  Property (S): Global.Service.Username = *.
  Property (S): Global.Service.Password = *.
  Property (S): Global.WebProxy.Enable = *.
  Property (S): Global.WebProxy.Type = *.
  Property (S): Global.WebProxy.URL = *.
  Property (S): Global.WebProxy.Username = *.
  Property (S): Global.WebProxy.Password = *.
  Property (S): Global.Settings.IgnoreLocal = *.
  Property (S): Global.AutoUpdate.URL = *.
  Property (S): Global.AutoUpdate.Enable = *.
  Property (S): Global.Logging.LogDirectory = *.
  Property (S): Global.Logging.MaxFileSize = *.
  Property (S): Global.Service.MaxRolls = *.
  Property (S): Global.Logging.Level = *.
  Property (S): Session.Pits.FolderSyncInterval = *.
  Property (S): Global.Piits.MaxMessagesPerFolder = *.
  Property (S): Global.Service.InstallDirectory = *.
  Property (S): Global.Service.DataCacheSize = *.
  Property (S): Session.Continuity.PreDupeDuration = *.
  Property (S): Session.Continuity.PostDupeDuration = *.
  Property (S): Session.Continuity.HardFrequency = *.
  Property (S): Session.Continuity.SoftDuration = *.
  Property (S): Session.Continuity.EndContinuityExchangeAvailable = *.
  Property (S): Session.Continuity.EndContinuityMimecastUnavailable = *.
  Property (S): Global.Feedback.Recipients = *.
  Property (S): DefaultUIFont = *.
  Property (S): MSIRESTARTMANAGERCONTROL = DisableShutdown
  Property (S): REBOOT = ReallySuppress
  Property (S): OUTLOOK_VERSION = Outlook 2010
  Property (S): OUTLOOK_BITNESS = x 86
  Property (S): ErrorDialog = ErrorDlg
  Property (S): SERVICE_DIR = Windows Service Mimecast
  Property (S): SecureCustomProperties = NETFRAMEWORK40FULL; NEWERPRODUCTFOUND; OLDAPPFOUND; PREVIOUSVERSIONSINSTALLED; WIX_DOWNGRADE_DETECTED; WIX_UPGRADE_DETECTED
  Property (S): MsiHiddenProperties = _LicenseAgreed; CAP_Archive; CAP_Archive.search; CAP_Archive.search.Basic; CAP_Archive.search.Builder; CAP_Archive.search.context; CAP_Archive.search.favourite; CAP_Archive.search.manage; CAP_Archive.search.quick; CAP_Archive.search.recent; CAP_Common; CAP_Common.options; CAP_Common.options.capabilities; CAP_Common.options.ChangePassword; CAP_Common.options.credentials; CAP_Common.options.network; CAP_Common.options.network.read; CAP_Common.options.network.Update; CAP_Common.update.manual; CAP_Continuity; CAP_Continuity.enable; CAP_Continuity.enable.admin; CAP_Continuity.enable.Auto; CAP_Continuity.mailbox; CAP_Continuity.mailbox.ReceivedItems; CAP_Continuity.mailbox.SentItems; CAP_Continuity.monitor; CAP_Continuity.monitor.admin; CAP_Continuity.monitor.Auto; CAP_Continuity.monitor.user; CAP_Gateway; CAP_Gateway.block; CAP_Gateway.block.address; CAP_Gateway.block.domain; CAP_Gateway.block.ManagedSenders; CAP_Gateway.block.ReportSpam; CAP_Gateway.OnHoldItems; CAP_Gateway.OnHoldItems.block; CAP_Gateway.OnHoldItems.moderated; CAP_Gateway.OnHoldItems.personal; CAP_Gateway.OnHoldItems.release; CAP_Gateway.track; CAP_Gateway.transport; CAP_Gateway.transport.attachments; CAP_Gateway.transport.attachments.convert; CAP_Gateway.transport.attachments.metadata; CAP_Gateway.transport.attachments.StripLink; CAP_Gateway.transport.CCM; CAP_Gateway.transport.secure; CAP_Gateway.transport.stationery; CAP_Gateway.transport.stationery.None; CAP_Gateway.transport.stationery.Select; CAP_Piits; CAP_Piits.automount; CAP_Piits.Management; DefaultUIFont; Global.AutoUpdate.Enable; Global.AutoUpdate.URL; Global.Feedback.Recipients; Global.Logging.Level; Global.Logging.LogDirectory; Global.Logging.MaxFileSize; Global.Piits.MaxMessagesPerFolder; Global.Service.AccountType; Global.Service.DataCacheSize; Global.Service.InstallDirectory; Global.Service.MaxRolls; Global.Service.Password; Global.Service.Username; Global.Settings.IgnoreLocal; Global.WebProxy.Enable; Global.WebProxy.Password; Global.WebProxy.Type; Global.WebProxy.URL; Global.WebProxy.Username; MimecastInstaller; PLATFORM; Session.Continuity.EndContinuityExchangeAvailable; Session.Continuity.EndContinuityMimecastUnavailable; Session.Continuity.HardFrequency; Session.Continuity.PostDupeDuration; Session.Continuity.PreDupeDuration; Session.Continuity.SoftDuration; Session.Pits.FolderSyncInterval
  Property (S): MsiLogFileLocation = C:\install.log
  Property (S): PackageCode = {6C9809C5-9DBC-4683-AE5F-3E05D53939EA}
  Property (S): ProductState = 1
  Property (S): PRODUCTLANGUAGE = 1033
  Property (S): CURRENTDIRECTORY = C:\
  Property (S): CLIENTUILEVEL = 2
  Property (S): CLIENTPROCESSID = 3672
  Property (S): MsiRestartManagerSessionKey = b9237eca8dffb44583db9105bf61f283
  Property (S): VersionDatabase = 200
  Property (S): MsiSystemRebootPending = 1
  Property (S): VersionMsi = 5.00
  Property (S): VersionNT64 = 601
  Property (S): WindowsBuild = 7601
  Property (S): ServicePackLevel = 1
  Property (S): ServicePackLevelMinor = 0
  Property (S): MsiNTProductType = 1
  Property (S): WindowsFolder = C:\windows\
  Property (S): WindowsVolume = C:\
  Property (S): System64Folder = C:\windows\system32\
  Property (S): SystemFolder = C:\windows\SysWOW64\
  Property (S): RemoteAdminTS = 1
  Property (S): TempFolder = C:\Users\TECH~1.SUP\AppData\Local\Temp\
  Property (S): CommonFilesFolder directory = C:\Program Files (x 86) \Common Files\
  Property (S): ProgramFiles64Folder = C:\Program Files\
  Property (S): CommonFiles64Folder = C:\Program Files\ Files\Fichiers
  Property (S): AppDataFolder = \\gblon-v-fp001\users$\tech.support\Application Data\
  Property (S): FavoritesFolder = \\gblon-v-fp001\users$\tech.support\Favorites\
  Property (S): NetHoodFolder = \\gblon-v-fp001\users$\tech.support\Application Data\Microsoft\Windows\Network Shortcuts\
  Property (S): PersonalFolder = \\gblon-v-fp001\users$\tech.support\Documents\
  Property (S): PrintHoodFolder = \\gblon-v-fp001\users$\tech.support\Application Data\Microsoft\Windows\Printer Shortcuts\
  Property (S): RecentFolder = \\gblon-v-fp001\users$\tech.support\Application Data\Microsoft\Windows\Recent\
  Property (S): SendToFolder = \\gblon-v-fp001\users$\tech.support\Application Data\Microsoft\Windows\SendTo\
  Property (S): TemplateFolder = \\gblon-v-fp001\users$\tech.support\Application Data\Microsoft\Windows\Templates\
  Property (S): CommonAppDataFolder = C:\ProgramData\
  Property (S): LocalAppDataFolder = C:\Users\tech.support\AppData\Local\
  Property (S): MyPicturesFolder = C:\Users\tech.support\Pictures\
  Property (S): AdminToolsFolder = \\gblon-v-fp001\users$\tech.support\Application Data\Microsoft\Windows\Start administration Tools\
  Property (S): StartupFolder = \\gblon-v-fp001\users$\tech.support\Application Data\Microsoft\Windows\Start demarrer\programmes\demarrage\
  Property (S): ProgramMenuFolder = \\gblon-v-fp001\users$\tech.support\Application Data\Microsoft\Windows\Start Menu\Programs\
  Property (S): StartMenuFolder = \\gblon-v-fp001\users$\tech.support\Application Data\Microsoft\Windows\Start Menu\
  Property (S): DesktopFolder = \\gblon-v-fp001\users$\tech.support\Desktop\
  Property (S): Font = C:\windows\Fonts\
  Property (S): GPTSupport = 1
  Property (S): OLEAdvtSupport = 1
  Property (S): ShellAdvtSupport = 1
  Property (S): MsiAMD64 = 6
  Property (S): Msix64 = 6
  Property (S): Intel = 6
  Property (S): PhysicalMemory = 4027
  Property (S): VirtualMemory = 5339
  Property (S): AdminUser = 1
  Property (S): MsiTrueAdminUser = 1
  Property (S): LogonUser = tech.support
  Property (S): UserSID = S-1-5-21-583907252-2049760794-725345543-5685
  Property (S): UserLanguageID = 2057
  Property (S): ComputerName = OSLLONPC052
  Property (S): SystemLanguageID = 2057
  Property (S): ScreenX = 1024
  Property (S): ScreenY = 768
  Property (S): CaptionHeight = 22
  Property (S): BorderTop = 1
  Property (S): BorderSide = 1
  Property (S): TextHeight = 16
  Property (S): TextInternalLeading = 3
  Property (S): ColorBits = 32
  Property (S): TTCSupport = 1
  Property (S): Time = 10:38:26
  Property (S): Date = 04/09/2013
  Property (S): MsiNetAssemblySupport = 4.0.30319.1
  Property (S): MsiWin32AssemblySupport = 6.1.7601.17514
  Property (S): RedirectedDllSupport = 2
  Property (S): MsiRunningElevated = 1
  Property (S): The privilege = 1
  Property (S): Name of USER = Oriel securities user
  Property (S): COMPANYNAME = Oriel Securities Ltd.
  Property (S): basis of DATA = C:\windows\Installer\14b48052.msi
  Property (S): OriginalDatabase = C:\windows\ccmcache\4\Mimecast4.0.msi
  Property (S): UILevel = 3
  Property (S): ACTION = INSTALL
  Property (S): OUTLOOK_INSTALLED = TRUE
  MSI (s) (54:F8) [10:38:26:532]: see clean files/packages, if there
  MSI (s) (54:F8) [10:38:26:532]: MainEngineThread returned 1603
  MSI (s) (C 54:4) [10:38:26:542]: RESTART MANAGER: closed Session.
  MSI (s) (C 54:4) [10:38:26:542]: sequence number number for this installation system restore.
  = Logging stopped: 04/09/2013-10:38:26 =.
  MSI (s) (C 54:4) [10:38:26:542]: strategy user 'DisableRollback' is 0
  MSI (s) (C 54:4) [10:38:26:542]: policy value 'DisableRollback' Machine is 0
  MSI (s) (C 54:4) [10:38:26:542]: meter is incremented to disable the stop. Counter after increment: 0
  MSI (s) (C 54:4) [10:38:26:542]: Note: 1: 1402 2: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\Rollback\Scripts 3:2
  MSI (s) (C 54:4) [10:38:26:542]: Note: 1: 1402 2: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\Rollback\Scripts 3:2
  MSI (s) (C 54:4) [10:38:26:542]: Note: 1: 1402 2: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\InProgress 3:2
  MSI (s) (C 54:4) [10:38:26:542]: Note: 1: 1402 2: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Installer\InProgress 3:2
  MSI (s) (C 54:4) [10:38:26:542]: disable the stop against the decrement. If counter > = 0, will be denied the stop.  Counter after decrement:-1
  MSI (s) (C 54:4) [10:38:26:542]: restoration of the environment variables
  MSI (s) (C 54:4) [10:38:26:542]: object to destroy RemoteAPI.
  MSI (s) (54:B8) [10:38:26:542]: end of thread Custom Action Manager.
  MSI (c) (58:88) [10:38:26:542]: disable the stop against the decrement. If counter > = 0, will be denied the stop.  Counter after decrement:-1
  MSI (c) (58:88) [10:38:26:542]: MainEngineThread returned 1603
  = Recording stopped: 04/09/2013-10:38:26 =.

  Appreciate that any direction. Seems that maybe the MSI package might have broken this machine

  Hi Dan,

  This computer is on a domain network?

  I suggest that post you the question in Mimecast forums for more information support:

  Support community-powered Mimecast

  https://community.Mimecast.com/Mimecast

  Hope this information helps.