I'll break down what I want/need.

This is the current set-up:-
47 Sites connected to a MPLS, internet breaks out inside of the MPLS. This is the only way out for most sites, some sites now have two connections the MPLS (Citrix) and a FTTC connection for internet. At the moment the FTTC only has a SOHO grade draytek router.
At the moment we have no control or visibility on the WAN or LAN at any site so they could be doing anything i.e. downloading P2P, on facebook/youtube all day etc.

What I see we need to do:-
Get all 47 sites connected up with the Fastest connection possible including FTTC so they one have one connection, then have control on Web/Application filtering and monitoring on WAN activities. It has been suggested to me to have a Sophos UTM at HO and make that the "breakout" on the 100MB Leased line then have RED devices everywhere.

So from another thread Scott said:-

UTMs are generally a bad idea. At least that is @JaredBusch and my opinion.

So what is the best idea to secure a network/MPLS ?? As this is something i'm going to be starting to look at in the next 6months,

@scottalanmiller said:

@JaredBusch said:

@wrx7m said:

It must be that I am using Firefox. Every single time I double click the computer via the Web interface it wants to download a tiny exe that I have to save then run. After that it loads the connection.

You are doing it wrong somewhere.

When I was on Firefox and Windows 10 I had the same issue. It would download an executable every time, and display a .NET error telling me to install something that would not install and because the installation would fail it would need the EXE file each time.

It's some combination of things. If I switched browsers or OSes, it just worked. It was just that combination, I think.

Windows 10 and Edge seem to work fine, don't really use firefox.

@scottalanmiller said:

@hobbit666 said:

I really want to play with Xen and Xen Orchestra but don't have two spare servers ........ Yet!

Only one needed to get started playing with that.

Yeah but I like the sound of replication

I really want to play with Xen and Xen Orchestra but don't have two spare servers ........ Yet!

Think I've finally crack Fog Server did a test upload and deploy yesterday.

So in the process of uploaded the "Master Gold" image for the Windows 7 POS machines. If that works onto a Windows 10 Image

Oh and about to go investigate why one of our Unifi AP's is showing as isolated.

@wrx7m said:

One thing I didn't like about screenconnect (unless I am missing something) is that you have to use the website and download an exe per session to connect to the remote computer for remote access. LMI has a client that just has a list of the computers on your account that you can launch directly from your systray whenever you need to.

You can also create a "unattended" installer if you need regular access to machines. This runs as a service in the background. The Published sessions are for your Ad-Hoc connections.

In bed watching a windows 7 VM do updates lol

Screenconnect here love it, but not the new pricing lol

And we back

Want one of these:-
http://www.hobbyking.com/hobbyking/store/uh_viewitem.asp?idproduct=80455

still off here

Sorry a UK thing
BT = British Telecom

They own all the copper phone lines in the UK so a lot of peoples internet just went off!!! lol

Looks like BT are having major issues!!

Even the website is down

Ordered 3 batterys and a new charger for the AR Drone (Charger on back order :()
Plus a universal mount for Tablet/phone to place on a RC controller that i'll be purchasing next month.

Then to start particing flying so I can do some photo/video work for this event maybe lol - http://www.nobullbeerandbikes.co.uk/

Determined to crack Fog Server today once and for all lol

@Carnival-Boy said:

@Breffni-Potter said:

I just don't give out the private wifi key. Works a lot here.

What's to stop people from simply getting it off their laptop (or their colleague's laptop)?

I will watch this thread with interest as I have a similar problem. At the moment I go into Unifi and manually block any devices that I don't recognise, which keeps things under control but isn't ideal.

Similar to us at the moment. What I want as a end goal is once a machine has been imaged and logged on with new user Via a cable. It will get WiFi settings from GPO and just connect when the machine is out and about.

Then change the SSID to Corp leaving the guest one for phones and other devices that's isolated already

@Dashrender said:

If you have Active Directory, you could look at their implementation of RADIUS so you only have one user account to worry about, though that probably wouldn't solve your phones on the wrong network problem.

Yeah we have AD.
Is just using Username good enough or should we look at using certificates?

@scottalanmiller said:

That must be editable. Where is it storing them now and what is the problem caused by that?

Seems when I take an image of the "gold" machine it's naming the folder containing the image as the MAC address and also putting it in the dev folder.

When I go to deploy it looks for the name of the image and in the /images folder.

Woop think I've cracked the FOG Server issues. Got it working on Ubuntu 14.04, got issues with the Images and where they are being stored, not sure if it a bug or I need to edit something.