Quantcast
Channel: Sysadmin
Viewing all 164934 articles
Browse latest View live

Singular website will not work once a month on one Static Public IP

July 30, 2019, 7:47 am
$
0
0

I'm pretty much stumped here. At this client there is a pfsense firewall. Roughly once month a service website that controls 2 major parts of the business will not connect. Can't even ping to the websites IP. BUT. If you either change the WANs IP to another in the range they own, or switch to the backup ISP, the website works.

And the ONLY setting being changed is the Wan IP. literally everything else is kept the same. Because of the hybrid O365 setup here I can't leave the Ip changed.

The weirdest part is after a few hours it just works again on the old IP.

The most I got from the support for that service is "Well don't use that Ip address then"

Any ideas are appreciated.

submitted by /u/GoodTofuFriday
[link] [comments]
Search

OU that gives local admin rights?

July 30, 2019, 7:48 am
$
0
0

Hey gang...we have a workstation OU that gives local admin rights to anyone that logs into a PC. InfoSec isn't a particularly big fan of this.

How are others handling legit local admin right granting?

submitted by /u/Morrowless
[link] [comments]

RDS Server 2019 HTML 5 Client issues.

July 30, 2019, 7:49 am
$
0
0

Hi, there.

I've been wrestling with the HTML5 RDS client all day.

Situation:
Rds farm with 2 Brokers, 1 Webaccess/Gateway server and 1 Sessionhost. The Webaccess/Gateway server is in DMZ. Everyting, even the classic web access interface is working fine.

Except the HTML 5 client. I can open the webpage and see the published apps. When I start an app, it gives me an error:
“Unfortunately we could not connect with “Calculator”. The connection to the remote computer was lost. There may be a problem with the network connection. If the problem occurs repeatedly, contact your administrator or technical support.”

It looked to me like it was a firewall issue, but I don't see anything getting blocked there. I tried temporary any to any rules between DMZ and LAN and between LAN and DMZ, but that did not change the situation. So I guess the problem is not firewall related.

Than after hours I got mad, trew the entire environment, servers and everything away, created a new one from scratch, just to get back into the same problems. Been digging events, but do not see any that looks like a logical explanation.

Anyone any idea what could be the cause of this ?

submitted by /u/NorthOfTheBigRivers
[link] [comments]

Script to rearrange displays in Windows 10

July 30, 2019, 7:11 am
$
0
0

Hello,

We have a few conference rooms where I set a docking station and a screen at the request of my users.

So now there's the laptop's monitor, the external monitor and the TV monitor on the wall. The layout looks like this in Windows.

Problem is, some users don't know how to rearrange the screens and I thought about deploying a shortcut on everyone's desktop that's called "Fix screens in conf room" that will activate a script to automatically arrange the screen in the correct order.

What do you think? Is this doable? If so, how?

Thanks

submitted by /u/bei60
[link] [comments]

NanoBeam 2AC 13 for outdoor use

July 30, 2019, 7:28 am
$
0
0

I work IT for a construction company and i am currently looking for a wireless point to point connection to connect a workzone camera to the job trailer which has an internet connection. I'm trying to find a solution for about 100 dollars per unit so I was looking at the ubiquiti NanoBeam 2AC 13 or one of the powerbeam options. My main concern is if they would hold up in outdoor conditions. Does anyone have experience with them?

submitted by /u/PhreshlyShaven
[link] [comments]

Reporting on end user MFA status in Office 365

July 30, 2019, 6:15 am
$
0
0

We are in the process of rolling out MFA for all users across our org. Once we get through the initial setup, our helpdesk will be responsible for enrolling new employees. I would like to create a recurring powershell report that will notify admins of any new users that have not yet enrolled in MFA so we can be aware and escalate appropriately.

I found this, but when I run it, it's not giving me any MFA info so I'm guessing something may have changed since that forum post was published.

Can anyone point me to an example showing how to retrieve MFA enrollment state for all users via powershell?

submitted by /u/vrtigo1
[link] [comments]

Dear Vendors, I'm not restarting my entire network because your piece of garbage equipment isn't working

July 30, 2019, 6:24 am
$
0
0

So back in January Pitney Bowes made us replace our old postage unit with a new one. Problem is, the old unit was rock solid for many years, and the new unit, is a total piece of shit. After 3 months they had to send a tech out to replace the tablet that powers the unit because it was defective, and it drops wifi CONSTANTLY. But now it won't phone home at all, says "connected, no internet". But there's nothing wrong with our equipment because I have tons of other devices connected to the same SSID with ZERO issues (We only have 1 WAP). I literally stood next to the machine with my phone connected to the same SSID and was browsing ESPN with no problems. However, this isn't good enough for Pitney Bowes. They REFUSE to send a tech out because I won't restart our UTM and WAP in the middle of business hours because their piece of shit machine can't phone home.

IMO this is a totally unreasonable request.

EDIT: So after doing literally nothing (no whitelisting, left geoblocking on, same SSID) we rebooted this piece of shit once more and now it works. Unbelievable.

submitted by /u/Panacea4316
[link] [comments]

Azure subscription with a named account or generic account?

July 30, 2019, 8:01 am
$
0
0

Company is looking at setting up some azure resources. In terms of the user setting up the subscription I was curious if anyone had any recommendations of if this should be a generic user like azure01@comany.com or just set it up with a normal user account and just handle any needs with normal RBAC roles?

I'm mostly just trying to avoid weird issues where ted@company.com doesn't work here anymore but we're still having to login with ted@company or some such non-sense.

submitted by /u/rschapman
[link] [comments]
Search

History question.

July 30, 2019, 8:02 am

Help understanding an event log with different source user and user accounts

July 30, 2019, 8:12 am
$
0
0

Hey all,

I'm confused as to why I'm seeing an event 4771 with a source username of one account and the username of another account. What exactly does that mean? Does it mean that user #1 is logged into the machine and then trying to fire up an application using user #2's login details? I'm very perplexed by this as these users involved are not particularly technical so I can't imagine they even know how to run a process as another user so I don't know what's causing it or where to being. I've pasted the log from our SIEM software below and have highlighted the important bits (at the end). I'd appreciate any help you can provide on this.

Certificate

[[Certificate Issuer Name]] [[Certificate Serial Number]] [[Certificate Thumbprint]

Collector ID

10000

Count

1

Destination Host Name

XXXXDC01.xxxx.Local

Destination IP

10.20.10.20

Destination MAC

00:50:56:9A:70:54

Device Time

Jul 29 2019, 01:48:34 PM

Event Action

1 (Deny)

Event ID

6474065202932554989

Event Name

Windows kerberos domain authentication failed

Event Occur Time

Jul 29 2019, 01:47:53 PM

Event Parse Status

1

Event Parser Name

WinOSWmiParser

Event Receive Time

Jul 29 2019, 01:48:34 PM

Event Rule Trigger

1

Event Severity

3

Event Severity Category

LOW

Event Source

Microsoft-Windows-Security-Auditing

Event Type

Win-Security-4771

External Event Receive Protocol

WMI

Kerberos Fail Code

0x18 (Pre-authentication info invalid)

Latency

41000.00

Message

Kerberos pre-authentication failed.

Organization ID

1

Organization Name

Super

Relaying IP

10.200.2.67

Reporting Device

XXXXDC01.xxxx.Local

Reporting IP

10.20.10.20

Reporting Model

Windows

Reporting Vendor

Microsoft

Sequence Number

3032352713

Service Name

krbtgt/xxxx.LOCAL

Source Host Name

HOST-10.21.60.10

Source IP

10.21.60.10

Source TCP/UDP Port

55423

Source User

JDOE

Source User Full Name

Doe, Jane

System Event Category

0 (External)

Time skew

0

Type

Audit Failure

User

jsmith

User Full Name

Smith, John

Windows Srvc Name

krbtgt/xxxx.LOCAL

submitted by /u/BeerJunky
[link] [comments]

How do you deal with crapware from OEMs embedded in the UEFI Firmware in your Org?

July 30, 2019, 7:15 am
$
0
0

I'm noticing that more and more laptops are coming preloaded with a bunch of software and misc crap from the OEM that you can't completely remove. From what I understand they use WPBT to have Windows load whatever crap they put in there. It seems to me this is done per user and needs to be removed for each profile. These are all Windows 10 Pro machines purchased from our VAR.

We do a fresh install of Windows 10 Pro using the media from VLSC and this stuff gets preloaded anyway. How do you deal with this in your environment? Has anyone found a way to stop this from getting preloaded?

submitted by /u/Try_Rebooting_It
[link] [comments]

Verizon Wireless down across the Midwest

July 30, 2019, 7:57 am

Looking for NAS suggestions. What's the next step up from QNAP/Synology?

July 30, 2019, 8:42 am
$
0
0

We have quite a few QNAPs installed out there, but only for backup purposes. While QNAPs are good for backups, they are a little too flakey for anything business-critical. However, I don't want to go full enterprise NAS with the associated astronomical cost increase.

What's your favorite middle-ground NAS vendor?

submitted by /u/TheAnusOfSauron
[link] [comments]

Best practices for managing user data with G Suite?

July 30, 2019, 9:03 am
$
0
0

Greetings,

I'm in charge of Windows deployment and PC rollouts, among other things, at a mid-sized corp. Biggest headache with rollout currently is migrating user data/profiles. We're a Windows shop but unfortunately we use G Suite instead of O365.

Looking at different options it appears I have:

-USMT. Haven't figured out to use this to remotely and silently migrate a user from their current machine to a new machine yet, otherwise this would be great. Hate that it's all script/xml based. Any good guides out there?

-Folder redirection. We're already very tight on network storage space as we do a lot of photo/video production. IT director doesn't allocate any additional storage for user data when we already have G Suite and unlimited Drive storage. Thus, redirecting to a network share is out, and because of the way Google Drive's Filestream service works, I can't redirect there either. I would love to utilize One Drive but we already spent

-G Suite options. Backup and Sync and/or Filestream. Filestream seems to be their preferred business solution but lacks the ability to sync user folders. Backup and Sync looks like it will do what I want but it's not really set up for businesses so end-users still have to log in and configure it.

Any suggestions here? Currently I've been getting the user's passwords, logging in to their new computer, then copying their data via smb sharing over the network. I hate this practice and want to streamline it.


[link] [comments]

Modern guide to setting up a Clonezilla server

July 30, 2019, 9:04 am
$
0
0

Hello All,

The documentation seems patchy at best, so I am curious. Has anyone set up a Clonezilla server recently? I am trying to look for some more up to date information on the subject, and so far, everything looks older.

Basically, the server is going to be plugged into a big switch with all the other devices. No other networking, no other computers on the network other than those to be imaged, and no other extra bits.

Just trying to see if I need to finagle older documentation, or if there is some more up to date stuff I am missing.

There were a few reddit posts on the subject, but most were either a pointed question about something specific, or for a setup that is nothing like my own.

Thank you!

submitted by /u/domstang68
[link] [comments]
Search

Ubiquity or subscription device (meraki, sonicwall, etc)?

July 30, 2019, 10:00 am
$
0
0

I'm having trouble seeing the benefit of a subscription security device vs. something like a USG for a small office setup. Anyone have a good recommendation for an office with <10 users?

submitted by /u/drunk_voltron
[link] [comments]

Mitel 3300 and VxWorks Urgent11 Vulnerability

July 30, 2019, 8:59 am
$
0
0

With the recent info about the vulnerabilities in VxWorks versions prior to version 7.0 I was wondering if anyone has info on what version of VxWorks the Mitel 3300 runs and if they have any plans to update the VxWorks running on it to patch these vulnerabilities?

submitted by /u/HanSolo71
[link] [comments]

Question on how your team tracks scheduled routine procedures

July 30, 2019, 9:15 am
$
0
0

Hey! First time poster on this sub - I had a question for you all. As we grow into a larger corporation our laundry list of things to do and check (daily, weekly, monthly, quarterly, and annually) continues to grow.

Does your team use a product or procedure for tracking all of these things and the results? Right now we just have a lot of calendar reminders but if they never get done we don't really track it until audits (when it's too late).

We also thought about automating tickets for each item on a scheduled basis but that can be a lot of overhead to create the automation process on our system.

Any thoughts or advice would be awesome. Thanks!

submitted by /u/watusa
[link] [comments]

Smartnet renewal 50% more than last year with no equipment changes...

July 30, 2019, 9:18 am

"Sole source justification"

July 30, 2019, 8:41 am
$
0
0

I started working in government about a year ago, and I'm posting to rant about the asinine process of "sole source justification." Many states have laws stating that state and other municipalities cannot do what they call a "non-competitive" bidding process. In other words, you need to provide documentation showing that you have thoroughly vetted the competition for a product. This is a somewhat common process in the private sector too, because you have to show that you're spending the company money wisely. But in government, this documentation is public, and if a vendor is reviewed and not selected, they can attempt to sue if they think their product wasn't fairly considered.

When comparing products, how do you "professionally" say that, while one product technically checks all the boxes for our requirements, that it's a steaming pile of crap? For example, Veeam vs. Symantec Backup Exec. They both do most of the same things, but I have personal experience with both and know that Backup Exec is one of the worst IT products ever made, and that Veeam is more or less the gold standard when it comes to backup. How are you supposed to navigate this garbage in government? The last thing I want is a lawsuit because I opted to not get saddled up with a crappy, but cheaper, solution, just because a vendor and an archaic law system said I must.

submitted by /u/butthole-scientist
[link] [comments]
Viewing all 164934 articles
Browse latest View live
Search