@Dashrender said in "Access Denied" RENAME.bat:

Manually running the script won't give you the same results you would get running it via GPO - FYI.. there are subtle differences.

In this case it's the same.

@JaredBusch

@JaredBusch said in Nginx setup:

@smartkid808 said in Nginx setup:

@thwr said in Nginx setup:

I prefer nginx over everything else when it comes to reverse proxies. There are special purpose proxies like Traefik, but nginx is the ultimate general purpose swiss army knife.

Nice. That's what I gathered from what I read. Now to work on getting it setup. Tried once a while ago and gave up. Now to try again ^_^

https://www.mangolassi.it/topic/16651/install-nginx-as-a-reverse-proxy-on-fedora-27

@JaredBusch said in Nginx setup:

@smartkid808 said in Nginx setup:

@thwr said in Nginx setup:

I prefer nginx over everything else when it comes to reverse proxies. There are special purpose proxies like Traefik, but nginx is the ultimate general purpose swiss army knife.

Nice. That's what I gathered from what I read. Now to work on getting it setup. Tried once a while ago and gave up. Now to try again ^_^

https://www.mangolassi.it/topic/16651/install-nginx-as-a-reverse-proxy-on-fedora-27

Thanks Jared, I'll take a look at that.. I'll follow your CentOS7 steps in the link. Hopefully I can figure out the conf file. Looks confusing. My brain hasn't been really working lately. lol

@scottalanmiller said in Calling MeshCentral Users / Experts:

@JaredBusch said in Calling MeshCentral Users / Experts:

Can a moderator edit post 3 to wrap all of that is code block tags ```

Done

Thanks.

So without a time clock, you can't be sure employees are at work or working? I haven't used a timeclock since my teens. I know this doesn't address your issue, but didn't realize time locks were still a thing. I only note time deviations at my current job, such as PTO or sick pay.

However, I agree with the others. Fire people who are stealing from the company. Time = money, no difference here. As IRJ pointed out, limiting this from only Onprem may cause unintended limitations and force the bad actors to do it in other ways anyways. I'd only do that if they forced me to after explaining it may not be a real solution.

@wrx7m said in VMware Host Cannot Connect from vSphere Client:

Could also be an issue if a vendor-specific ISO was used to initially install ESXi. I ran into a similar problem with Dell; I had to get the Dell ISO from their downloads for the specific server model/service tag.

For 6.0 this is fine (you'll use this to get ASNC drivers). You can also add the dell VIB depot to get them this way also.
For 6.7 Dell has (thankfully) stopped shipping ASYNC drivers and moved 100% to inbox. It's all for 3rd party management VIBs. Honestly I've seen 3rd party VIBs be a culprit for updates before. I'd make sure you are updating the BIOS/FIrmware also when updating ESXi (People forget this sometimes).

@IRJ said in Documenting Firewall Exceptions and Rules:

@DustinB3403 said in Documenting Firewall Exceptions and Rules:

I had to add some rules to a CentOS 8 server because some things stopped working that were previously working. (Not sure why this worked before, but it did)

Adding a few rich rules resolved the issue immediately.

None of this makes any sense. It's deny all and permit by exception. Why would you do anything else?

That's the default, and that's what was working just fine for a long time. Suddenly it began "not working" and needed the exceptions made.

Also another thing is that XCP-ng it is finally able to support UEFI boot which was nice.

@dave_c said in Microsoft Cloud Solution Provider:

@JasGot
I am an indirect CSP but I do not handle any non-profit organization.
My customers can see the subscription but they cannot change the licenses assigned to it from the Office 365 Admin portal; they need to request the addition/subtraction to my company or use the portal of my direct CSP. They can request the cancellation of a subscription but we need to authorize it.

The client is able to have subscriptions with more than one reseller and directly with Microsoft.

Thanks. That clarifies some worries we had about being trapped with a bad CSP.

@JaredBusch said in VoIP Drama Sangoma vs. Clearly IP:

Please also recall that the Rob being discussed as the co-owner of the key, is the person that prompted me to start the thread Revisiting ZFS and FreeNAS in 2019 after seeing him post about it on Facebook.

I had no idea what kind of a shit show that thread was going to turn in to.

Yeah, holy hell, I'd not trust anything that ClearlyIP produces. I'd be pretty worried to depend on them as a service provider!

@black3dynamite said in Remote PowerShell from Fedora to Windows:

@stacksofplates said in Remote PowerShell from Fedora to Windows:

Sssd works with multiple domains.

If sssd is installed will I be able to use -Authentication Kerberos without needing to join to a domain or when accessing Windows machines that isn’t joined to a domain?

No it only works for domains.

@frodooftheshire said in Windows NLA service on 2016/2019 DCs:

@CCWTech Exactly - it's mainly about firewall rules. Like you said I guess I could go into all the firewall rules and make sure its ticked for private as well as domain. It's just annoying because this shouldn't be an issue.

I can see a member server getting confused if the DC isn't booted up and it boots up, but for a DC not to know it's in a domain is just a bit crazy.

@wrx7m said in Virtualization when there is only one VM?:

@scottalanmiller said in Virtualization when there is only one VM?:

@DustinB3403 said in Virtualization when there is only one VM?:

@Pete-S said in Virtualization when there is only one VM?:

@DustinB3403 said in Virtualization when there is only one VM?:

@scottalanmiller said in Virtualization when there is only one VM?:

@DustinB3403 said in Virtualization when there is only one VM?:

It's super simple to take a closet for example and put a vent near the top of the wall to let heat escape.

Not if you don't have that closet, the vent would let in hotter air, or you don't have outside access from a closet.

Of course, if you physically don't have any space, then using this example doesn't make sense. The question really is "at what point should a business start looking at different form factors (from the desktop style)?"

It ridiculous to even think there is no space for a rack. Unless someone runs a company out of their bedroom. A rack takes what, 5 square feet?

Ha. yeah I get it I totally do. And you can get a rack for pennies on the dollar if you are really looking.

Cost of the rack isn't the issue. Space to put it that is safe, clean, has power, central to the cabling, can be cooled, etc.

So, not here-
3f76310c-9206-4120-9925-2be21d8de33c-image.png

I see that as a productive use of extra space!

You could even hang a 1/4 rack above the toilet to help get things cleaned up and organized.

Generally, for most use cases, just having two servers and good backups is the best option. If you have a greenzone, turn your VMs off, do your updates, turn them back on.

Updates essentially never cause issues. Not on hypervisors (at least not on KVM/Xen.) Putting in a lot of complexity, cost, or risk to mitigate a shark attack isn't worth it. You will focus on a false risk.

2nd attempt worked!

@Dashrender Yes, well of our domains ,we have several variants. It was more of a phishing attempt/scare tactic from a Russian script kiddie from what we were able to gather.

@brandon220 said in HP EliteDesk 800 G5/G6 mini - error on windows update:

@Dashrender I had it on a new 800 mini a few weeks ago. I clicked through it and it has been running fine since. Several reboots and it never happened again.

I just updated the OP. sadly, after rebooting, the system locked up, requiring another hard reboot, another flashing of this HP screen, hit esc to bypass and the user is back up and running.

@Romo said in Polycom VVX450 Parking BLF key:

Any of you guys with more polycom experience have been able to configure the parking lots from a (freepbx/vitalpbx) asterisk server In a single key BLF key?
Testing this
I have the key setup like this
1a9f8e10-3d28-4e93-83d0-92fad626dfe1-image.png

But it doesn't appear to do anything when pressing it. I did find this document https://community.polycom.com/t5/VoIP-SIP-Phones/FAQ-Setting-up-a-Call-Park-Feature-using-an-Asterisk-Server/td-p/73565 which it appears to show that it can only be done by transfering to the call parking extension and not directly to the slots but not sure if this still applies as the document is from 2015.

anyone have an idea?

From the phone point of view, parking a call is nothing more than a blind transfer to an extension.

So, you need to look if you can have a BLF do a blind transfer on press during a connected call.

This HIPAA compliance service directly recommends never storing your PHI/PCI data in Excel specifically because it is so easy to have it accidentally be the cause of a breach.

https://pcihipaa.com/how-to-protect-your-practice-from-common-hipaa-violations-and-fines/

"A Credit Card Data Breach: Every practice handles patient credit card information. A Payment Card Industry (PCI) violation can also end up being a reportable breach under HIPAA. Securing and properly handling credit card data is imperative. Don’t store any credit card information in QuickBooks, Excel or any other software. Also make sure you are PCI certified and using EMV devices to limit chargeback liabilities." They only mention the PCI piece, because it is so much less of a concern, storing health data in there would be so much worse.

@pattonb said in SEO primer:

@scottalanmiller Is Matomo,Open Web Analytics,AWStats of any value. I suspect am I asking as to whether tying into the Google World provide any advantage. or will the other software provide me with the data I need. as for as data , I only really need traffic, visits, pages, how long they stay, or pages they view. Basic ( in my mind) , to see whether traffic is increasing/decreasing , and which pages draw the most interest. The audience is local, services provided don't extend beyond the local area , pop, ~1.4 million

Matamo provides all this. It is what I use.

@benhooperastrix said in Adding LDAP role to domain controller:

@dbeato Thanks for the referral. 😊

Didn't know I referred you and now I notice you wrote it. It was well done.