Domain name doesn't matter, unless you're signing with a public CA. I'd think self-signed vs internal CA vs public CA would depend on what the authentication mechanism supports and how you have to manage the certificates. (i.e. if there are going to be a ton of them it might be easier for the authentication mechanism just to trust certificates signed by a certain internal CA rather than having to make each certificate trusted.

If you did something like host the files in an Azure Storage Account then they could download using an SAS token that's passed in as a request parameter

.\ Won't necessarily refer to the folder the script is in, it will refer to the working directory at the time that the script is launched.

%~dp0 refers to the directory the script is in, but I don't recall if it works for Network shares.

You want the path to the folder that the script is in? %~dp0

@PhlipElder said in Use PowerShell to Disable UAC on Windows 10:

@scottalanmiller said in Use PowerShell to Disable UAC on Windows 10:

@Obsolesce said in Use PowerShell to Disable UAC on Windows 10:

What special case needs UAC completely off?

Company purchases an application that requires it.

For those kinds of apps we use ProcessExplorer and ProcessMonitor to find where it needs MOD access and tweak accordingly.

Shimming also works.

The most common culprit is it writing to its Program Files folder

Some companies around here will install a booster on every vehicle in their fleet.

@scottalanmiller said in Looking to Buy a SAN:

@flaxking said in Looking to Buy a SAN:

@ScottyBoy said in Looking to Buy a SAN:

@flaxking said in Looking to Buy a SAN:

I've recognized an IPOD and witnessed it play out.

In the end the business decided it made more financial sense to put 200 VMs in Azure.

This is for a TV station cloud simply isn't an option to run this stuff unfortunately.

My point is that putting a bunch of VMs in Azure is a pretty expensive solution, but dealing with an IPOD ends up costing the business enough that the cost is acceptable.

Right, why would either option even be considered? Good cloud or good on premises is where you start. An IPOD shouldn't even enter the decision matrix. It's called a false option, that kind of stuff is used in psychology to trick an emotional response to choose something obviously bad based on a known absurd alternative that isn't a reasonable alternative.

I can't afford a Porsche!

But a Ferrari is SO much more!

Oh yeah, I guess a Porsche is a good deal.

Um, no, go price out a Toyota to compare!

I'm not saying anyone should actually do a comparison like that. Poor infrastructure decisions brought us to a breaking point where we needed to do an immediate nuke and pave of the whole environment in order to save the business.

@ScottyBoy said in Looking to Buy a SAN:

@flaxking said in Looking to Buy a SAN:

I've recognized an IPOD and witnessed it play out.

In the end the business decided it made more financial sense to put 200 VMs in Azure.

This is for a TV station cloud simply isn't an option to run this stuff unfortunately.

My point is that putting a bunch of VMs in Azure is a pretty expensive solution, but dealing with an IPOD ends up costing the business enough that the cost is acceptable.

I've recognized an IPOD and witnessed it play out.

In the end the business decided it made more financial sense to put 200 VMs in Azure.

@dbeato said in Need help trouble shooting GPO.:

The GPO at the root of your domain will be applied to all your users and computers. However if you create one GPO and then link it only to the OU then only the members of that OU will get it to apply.

Also is this GPO a USer or Computer policy?

My money is with dbeato on it being created under a user policy.

Also note, to create desktop shortcuts for everyone on a computer you probably want to create it in the Public desktop