Still using LastPass Families. Works well for us, no reason to switch to something else.
Best posts made by Obsolesce
-
RE: Password Managers
-
RE: User Profile handling anno 2022
We keep it simple, vanilla PC through Autopilot if possible, or set up PC with work or school account. In either case, sign in with Okta account and Intune takes over... Config, compliance, policies, remediations, required apps, settings, etc. Typically from opening box to end user working in less than 15 minutes without IT ever having touched the device at all.
-
RE: User Profile migration Problem AAD -> AD
@d-cunnings said in User Profile migration Problem AAD -> AD:
Customer pulling in smaller firm running Windows clean Azure.
I am to get those users off their Azure and onto the On-prem domain and have been given the task to move not only their data but also their current user account experience.
Going through everything I could find over the weekend I get to the point where I conclude that there is no way to do this.
-There doesn't even seem to be a way to link a local or domain profile to an Azure account?
Has anyone of you done this?
Maybe just get rid of computers and go back to pencil and paper?
-
RE: User Profile handling anno 2022
@xavierdelaraunt said in User Profile handling anno 2022:
I have quite a lot of settings I cannot get into the default settings in any way like that.
I have not ran into any policies, settings, etc that could not be don't through Intune. It would be very hard for me to think of something that I can't do to a device related to those through Intune.
If you are referring to user profile migrations across different devices (old device > new device), most of that can be resolved by better systemic practices prior. That can be a shitty experience regardless of MDM or device management system.
-
RE: OneDrive to Google Drive / Wasabi Sync ?
Just to make it clear, I'm using rclone sync to do the job on a headless Ubuntu container.
Revisiting this now two years later, as it's been that long since I last synchronized my personal OneDrive photo and video archives to Wasabi.
Most everything is great, except when doing a few
--dry-run
tests on some already-synchronized source/destination remotes, I noticed a few thousand files in total among several OneDrive archives result in a potential re-sync. Not a huge deal, except it's a slow process to sync.The files themself didn't change. I verified from both the source and backup that the CRC is the same on a bunch of to-be re-synced files, but perhaps the modification time changed at the source due to other syncs or who knows.
I would like to force RClone to use checksum only when synchronizing. Is that possible with an rclone sync between OneDrive and Wasabi?
-
RE: Production KVM server "hardening"?
@Pete-S said in Production KVM server "hardening"?:
I'm thinking about running pure KVM on debian for virtualization hosts. Not Proxmox. There will be no GUI on the servers, no web interface, only ssh for management.
Do I need to do anything special to lock down the security?
I've never used KVM in production, only on my desktop and then I've had virt-manager as well as tools like virtsh. So I don't really know what is required for a pure KVM server to be as "secure" as proxmox, xcp-ng or whatever.
Keep the OS and everything updated. Keep drivers updated. Keep firmware updated. Use only key-based auth for SSH, add only specific devices to authorized_keys file. Ensure firewall configured well. Set up log alerts for access.
-
RE: How can I remove these items with powershell?
@JaredBusch I did not use an elevated ISE window:
And it worked for me:
-
RE: 1 large disk or 2 smaller disks for a file server?
@Fredtx said in 1 large disk or 2 smaller disks for a file server?:
I'm creating a new file server, which will be a VM. The source (original file server) has 1.7TB of used storage. 641GB of that is Marketing (mainly videos), and the rest is Engineering (cad files), User folders (docs,etc), and miscellaneous folders.
Would it be better for me to create 2 virtual disks on the target (new file server), and give the Marketing team their own disk? Or should I just move everything over to 1 big virtual disk?
2 virtual disks versus 1 virtual disk would only matter if you need to do some kind of QoS at the vdisk level. Also, depending on how you do shares and your backup infra may matter, or maybe not.
-
RE: Query Regsitry using a Variable
@DustinB3403 said in Query Regsitry using a Variable:
@Obsolesce Yeah I got that far along, what I need to pull is a specific string from the output.
I have a few other ways that I was manipulating the string, like writing the entire output to a file and then pulling the 23rd line (for example) but that literally gets everything on that line.
When all I want is the InstallDate
Get-ChildItem -Path 'HKLM:\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall' | Get-ItemProperty | Where-Object -Property DisplayName -EQ "Microsoft Edge" | Select-Object -Property InstallDate $InstallDate = Get-ChildItem -Path 'HKLM:\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall' | Get-ItemProperty | Where-Object -Property DisplayName -EQ "Microsoft Edge" | Select-Object -Property InstallDate $InstallDate $InstallDate.InstallDate
-
RE: Running X11 - Ubuntu 22.10 - Should I care?
I did this in the past, but not sure how relevant it is for you here?
I've just been gaming on Windows lately, bottom line is it's just easier and less time consuming for some of the games I play. So it's dependant on that.
-
RE: Word to PDF converter ...
@BraswellJay said in Word to PDF converter ...:
@Obsolesce said in Word to PDF converter ...:
@BraswellJay you don't need one with word. In Word, just export as pdf.
I can't do that in bulk that way though, can I?
My user may have 50 or so word files and she wants to convert them all to separate PDFs without having to open each one individually in word.
I thought there may be a tool that would just let her bulk select all and convert them all at once.
You can do it with PowerShell. Make a simple script for the user to run.
-
RE: GitLab Now Integrates VS Code Into the Browser
@Pete-S said in GitLab Now Integrates VS Code Into the Browser:
@scottalanmiller said in GitLab Now Integrates VS Code Into the Browser:
This is a really cool update to GitLab. Microsoft's VS Code is now the web IDE used online in GitLab. So you can use VS Code without needing to install it. This is the coolest!!
That's interesting.
Editing on the webserver breaks the idea of how git is suppose to work though. Basically makes it a central version control and repository, instead of a distributed one.
Good to know that it exists though!
Of course, it totally depends on what you're working on. Now that that's out of the way...
You can still do a lot the same as far as branching and PRs. If you're not compiling or testing things locally or need local resources, then there's not much other benefit doing it on your local PC versus some more simpler editing directly, besides some efficiency factors. But that other stuff should be done automatically anyways when you (for example, create a PR) via automation / pipelines.
If I need to fix something real quick and don't have my local environment ready or for whatever reason, it seems nice to not have the typical shitty editor like GitHub has, and I can easily create a new branch and make the changes, create a PR, and get it merged in in the end. It's not a bad thing to be able to do it from the browser, the same as you would from your local environment in VSCode (if what you are doing works out that way). All the testing, cleanup/linting, security checks, building, etc. should be kicked off automatically anyways no matter from where your changes come from.
-
RE: Proxmox hates security
@Pete-S said in Proxmox hates security:
KVM by default for instance is managed by libvirt and by default doesn't open any tcp ports at all. That gives the administrator the option to decide what level of security versus convenience they want.
Remotely using Virt-manager for example, via remote SSH connection.
-
RE: How to use different accounts on the same website/service with profiles
@Pete-S said in How to use different accounts on the same website/service with profiles:
Profiles in Chrome
In Chrome you can add a new profile (aka user) by clicking on the person icon (You) on the top right and select + Add.
Here you can also switch profiles. When you add a profile Chrome asks if you want to create a shortcut on the desktop (Windows).
The target will look like this:
"C:\Program Files\Google\Chrome\Application\chrome.exe" --profile-directory="Profile 1"For those who don't use Firefox or Chrome:
Similar to Chrome...
Microsoft Edge
Target will be like this, e.g.:
"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --profile-directory="Profile 1"
-
RE: User migration to azure
@lilyleiden
There are some imaging options that have built-in profile migration capabilities as well, such as SmartDeploy. Starting fresh while preserving their data could be a workable compromise, perhaps. -
RE: User migration to azure
@pmoncho said in User migration to azure:
@Dashrender said in User migration to azure:
@Pete-S said in User migration to azure:
@Dashrender said in User migration to azure:
@Pete-S said in User migration to azure:
@lilyleiden said in User migration to azure:
We just tested migrating a small batch of test users to our new Azure tenant.
While migrating the PC/user account was no problem, the fact that people get a completely blank user profile, certainly was a showstopper!!
Many of our users has had their AD profile for years, even a decade and has a lot of individual settings, ways to work, shortcuts, quick links, favorites/browser cached passwords etc. and they loose all that.
Management has currently halted the process due to the protests.So I am on the lookout for a way to link/migrate the old profile/profile settings, when Azure joining the PC?
I would use this as an opportunity to remove unneeded customizations and old ways of doing things and introduce new ways of working instead.
For instance is it really wise to rely on browser cached passwords? To me that's a signal that you need to look over you password management policy. Maybe your users need a real password manager or setup SSO to apps they're using.
I'm really on board with this! We don't migrate when people get new machines, that said - we have few users that do much customization to their setup...
Yes and it's also question of setting the right expectations. For instance saying: IT allows users to customize their desktops but will not provide support for it. New machines, reimaged desktops etc will be reset to company default.
I do this - I don't support end user shortcuts to their desktop. If you figure out how to get it - or get others around you to do it for you, fine... but IT does not support your shortcuts.
Wondering what others do for users bookmarks? Do you just have them create and use their own Google/Firefox/Microsoft account so they follow the user?
They can sign in and use their corporate email to sync in the web browser.
-
RE: PS to download latest microsip version
@Dashrender said in PS to download latest microsip version:
I just installed it on a test machine with chocolatey - it installed it into the local admin profile - so any normal non admin user can't use it.
You can use chocolatey to get the current version and download url. I don't install apps from chocolatey corporately, but I use it to obtain current versions of software and/or download links.
-
RE: MS Edge and pop-ups
I use the same popup blocker in every web browser, even Edge, and it blocks everything. I've not come across any weird issues like that otherwise.
Have you tried this one?
https://microsoftedge.microsoft.com/addons/detail/ublock-origin/odfafepnkmbhccpbejgmiehpchacaeak -
RE: Marketing - Video Editing Storage
@Obsolesce said in Marketing - Video Editing Storage:
@Jimmy9008 said in Marketing - Video Editing Storage:
Originally, I was looking at proposing a 20 - 30 TB NAS populated with SSDs in the local office, with 10 Gbps NIC. This would provide high speed local access over the LAN to 6 marketing users.
If their PCs accessing a NAS at 1-10Gbps isn't good enough because their primary concern is speed, why would they push for way slower cloud storage, assuming no on-prem cache?
I archive my video in the cloud, but I would not want to work from it without a local cache.
-
RE: Can the target of a One Drive link be changed ?
@scottalanmiller said in Can the target of a One Drive link be changed ?:
I don't know any platform like that that has built in editors to modify the files that are in the storage
OneDrive does let you edit files directly, in the storage.