Also consider that nearly all enterprises use WiFi. So that's something to worry about.

@jimmy9008 said in Domain Trust failed on a VM:

Disconnect the VM from the virtual NIC. Reboot VM from host management. Connect to VM from host management (the VM is now not on the network). Login with domain admin creds. This will be allowed as 'offline login/admin'.

Then put the VM back on to the network whilst logged on and rejoin the VM back to the domain. Then restart. Easy.

Rejoining to the domain will create a new SID. Not sure if that would cause issues for the CA in AD.

Yeah, all the EdgeRouters will do WAN fail over. I had an ER-X at the old job doing this, an many ER-POE now as well.

@ramblingbiped There are multiple sites you can use to do this.

@jaredbusch said in It looks like a Mac problem, but...:

@dashrender said in It looks like a Mac problem, but...:

@kelly said in It looks like a Mac problem, but...:

@dashrender said in It looks like a Mac problem, but...:

@kelly said in It looks like a Mac problem, but...:

@dashrender said in It looks like a Mac problem, but...:

@kelly said in It looks like a Mac problem, but...:

@dashrender said in It looks like a Mac problem, but...:

@kelly said in It looks like a Mac problem, but...:

Well, the solution was no less peculiar. In my firewall config I had specified authenticated users for LAN to WAN in my work to

What firewall?

Juniper SRX.

I'm guessing some big money for that UTM.

About $2k for each node. We have an HA pair.

What was the reasoning behind the purchase?

I'm not sure what you're getting at.

A general consensus around ML is that UTMs are unnecessary, i.e. a waste of money. Additionally, Scott is pretty adamant that there is only one primary vendor (drawing a blank right now) that is good for UTMs.

So what I'm getting at is, what was the decision tree that lead to purchasing two $2000+ UTM firewalls? Why were they felt to be worth the value versus say a pair of Edge Routers? etc

You are conflating shit and coming up with something none of us have said.

I have repeatedly said that the typical SMB has no need for a UTM. I have never said that a UTM is unnecessary.

But once you need a UTM, then you need a real UTM and not some $300 piece of crap.

Palo Alto is the gold standard in the space IMO. It does not mean that other units are shit. Just not as good, IMO.

You also assumed that he bought these units for UTM. Which as you can see by the follow up response, he did not.

I made no assumption - I asked a question. Period. Then he was confused by the question, so I explained my reason for asking.

So the answer to my question was - because FIPS. Period, end of line. FFS

@Kelly said in How would you run Windows applications in your preferred Linux Distro?:

So we have a business need that requires we run Microsoft Office. This is not on the table for discussion of whether or not that can be changed.

With that out of the way, how would you all handle that in your preferred distro? We're looking at running Fedora/Ubuntu/Korora on Dell laptops, but we have to have MS Office because we have to be able guarantee the output we produce is viewed by our government customers exactly as we create it.

Running a full Windows VM is an option. I've wondered if there is something the equivalent of Parallels, where it exposes guest applications to the host OS, for Linux.

Any thoughts, questions, etc.?

there are 2 options: wine or full vm with windows licence. according to the hypervisor your use there is a mock up to add win apps to the linux menu when the VM is running in background.

in my experience wine is basically broken. anyway you can have a look at the compatibility list

here where the installer of MS works or not
if apps work has to be searched through the DB

And then they make whatever need that is sound general and ubiquitous. Same trick, but way more powerful, than what FreeNAS does. FreeNAS says "to get X you need to do Y" but don't mention that X isn't something you want, they present it as a foregone conclusion and people just get suckered right into that. At least FreeNAS never pretends to be neutral or giving advice. People just convince themselves of that.

@olivier said in KVM vs XenServer:

@scottalanmiller said in KVM vs XenServer:

@kuyaz said in KVM vs XenServer:

Can memory be shared also between VM?

That depends on the hypervisor. VMware ESXi can do this. It's an extremely limited feature and of little value. It's neat and good for things like VDI, typically, but not very useful for servers and there is a reason most platforms don't work towards adding it.

I concur. For most workloads, it's more a pain than a solution.

yes I just realize that my question is stupid for the RAM part 😄

To disable for individual users:

Set-clutter -identity [email protected] -Enable $false

For an entire organization (tenant)

Get-Mailbox | Set-Clutter -Enable $false

You do have to be signed into your O365 environment by PowerShell:

$session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri "https://outlook.office365.com/powershell-liveid/" -Credential $cred -Authentication Basic -AllowRedirection

It will ask you to authenticate. Use your normal creds.

Import-PSSession $session
You will see another module load and you're in to run the above scripts.

@Kelly yeah the HC3 Move (powered by Double-Take) is certainly easier and more direct...

if the xenserver export virtual disk file is a VHD file, you can probably skip converting it to qcow2 but simply renaming the file to match the guid of the exported empty qcow2 file (so it will still be named <guid>.qcow2 even though it's actually your VHD file.) Our import is actually using the qemu-img convert tool which will automagically detect that it's really a VHD format and do the conversion at the same time it imports it to save that extra step. (and also you can use that same "import shell" over and over... just keep replacing the guid.qcow2 file with the one you want to import)

But you might want to see if the same thing happens first when another user logs in. If so, then it's not a user profile issue most likely.

SAR is likely already installed and collecting, making it that much easier.

@Reid-Cooper said in Fortinet Experiences:

I guess it matters then... who else is on the list? What about Sophos, are they an option?

Looks like only their disk encryption is.

Here is the list: http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/1401vend.htm.

It does "act" an awful lot like Ubuntu. But it's a very existential naming conundrum.

@coliver said in Windows 10 and SSH:

@Mike-Davis said in Windows 10 and SSH:

When you SSH in, does it put you in a powershell console?

That would be awesome! That would probably be the best feature of Windows 10 and Server 2016.

Yeah. They've been saying that for forever.

@JaredBusch Thank you

@s.hackleman said in Mocking the Apple live event:

Maybe I'm OCD, but I don't want anyones nasty fingers on my monitor.. especially my own.

Disinfects and removes grime - even the crustiest user filth.

0_1477606306096_20161027_150943.jpg

@Dashrender said in Update your iOS devices. This flaw is a doozy.:

What is your driving feature(s)?

Not what I have 😛

I want Windows 10 Mobile to be stable, supported, and have a thriving app ecosystem with all the major apps. And a pony.

Now that that is out of the way, I like the consistency of iOS, but I don't like iOS. iOS X is light years better from a UX perspective imo than iOS 9 was, but there are still niggling little things that annoy me. And Apple irritates me on so many levels, and that irritation is only exacerbated by managing a network that is 95% Mac.

I don't know Android well enough to know what I want there, but I dislike what Samsung has done with their bloat ware. I was looking at Nexus for my WP replacement, but Alphabet chose to kill that in favor of a flagship that is more aimed at a consumer, than creating a clean experience (I'm guessing, not having used a Pixel).

OnePlus 3 looks promising. If I had to choose today it would probably be one of these.

@IRJ said in Well, that was quick...:

My boss knew I was leaving for a while and asked me not to announce it until he made the announcement several weeks later.

The I'm Back thread was about the hurricane not work related.

But still funny in that above context.

I'm looking at the Xiaomi Mi 5s for my next one to replace my Nexus 5!