@nerdydad said in wireless screen mirror:
The only downside is that it isn't too mobile and costs a little bit of money
yeah, that would be ugly hanging off the side of the tablet. Also $1,500 seems a bit steep for something that Windows 10 is supposed to have built in. Thanks for the eval though.
I just read about it too, but it seems some vendors have patched their systems. I checked for Ubiquiti and that article says "One researcher told Ars that Aruba and Ubiquiti, which sell wireless access points to large corporations and government organizations, already have updates available to patch or mitigate the vulnerabilities."
I can't seem to find a list of which Ubiquiti products have patches available. Can anyone find a link to that?
@gjacobse said in domain controller in the cloud for small office?:
HIPAA security without it.
How do you create a password change policy that gets enforced without a domain controller?
@scottalanmiller said in domain controller in the cloud for small office?:
GPO, Salt, JumpCloud, AzureAD, etc.
Hadn't heard of JumpCloud, but this may be the answer. 10 users free.
I'm running a UniFi Switch 48 POE-500W for a client. I know I won't go beyond the features of it for that client and being able to manage it through the controller is cool. It gives me great visibility in to their environment.
@dashrender said in domain controller in the cloud for small office?:
You get baseline AzureAD by using O365 (anything other than hosted Exchange only). This is what I use at one of my clients, works great!
I tried looking this up. Do I understand that you install the Azure AD Connect client on all the computers and it lets them sign in with their o365 credentials?
@dashrender said in domain controller in the cloud for small office?:
That said, Passwords being the main thing that @Mike-Davis asked about, that's handled through O365 itself, no GPOs needed.
This is true. o365 admin center lets you create password change policies. If the Azure AD will let me create shares based on o365 usernames, I'll be all set.
@dashrender said in domain controller in the cloud for small office?:
No, Windows 10 will join an Azure AD just like it joins a local onsite AD. Then any users in your O365 system can log into the computers.
I'll have to find a spare Windows 10 box so I can run through the "Join this device to Azure Active Directory" wizard. I have a spare Windows 7 box on my bench, but Windows 7 is not supported.
I found this chart of features:
https://azure.microsoft.com/en-us/pricing/details/active-directory/
It looks like:
MDM auto-enrollment, Self-Service Bitlocker recovery, Additional local administrators to Windows 10 devices via Azure AD Join, Enterprise State Roaming
Is available in the Premium P1 and up. $6/user /month
At that price the $26/month domain controller running on Vultr looks like a pretty good deal. Combine it with ZeroTier and I should be all set.
@larsen161 said in domain controller in the cloud for small office?:
@mike-davis do you have an hhs.gov or gpo.gov link to where it mentions the requirement for passwords to be changed?
From what I understand ยง164.308(a)(5)(ii)(D) requires you to define the password policy. Since the "best practice" in many circles was to change your password every XX days in case someone observed your password, many places still have it in their policy to change passwords every 90 days.
It was only last year that mainstream media ran that article that explained that a longer pass phrase is better than a short complex password, but getting organizations to change their policies doesn't happen quickly.
Do you have a sample policy (or just that part) that you could share to replace the complexity and change requirement?
I have 4 Samsung Android based tablets that are for corporate use. I would like to prevent the users from installing anything. Does anyone have a tool for lock down they like? I read about KioWare for Android on Spiceworks, but the posts were from 3 years ago.
I'm using SpiceWorks. I'm getting to the point where I would like some accounting integration. I have written some SQL reports that kind of give me the information I need, but as the company grows, I could use a little more information.
I should add I'm running on a server in vultr so there is a cost, but better than running my own server.
@mike-davis said in EdgeRouter routing:
Since 10.1.62.x is NATed behind the ER how would the other networks know about it?
Wouldn't they only need to get back to 192.168.62.20 ?
I think that partially answers my question. I'm not NATing eth3 yet....
Got it. 
Added a static route of 10.66.1.0/24 192.168.62.1 eth3 and life is good.
The tracert is interesting. The server that I thought was across a site to site VPN is more likely in the building due to the ping times:
Tracing route to 10.66.1.100 over a maximum of 30 hops
1 <1 ms <1 ms <1 ms 10.1.62.1
2 1 ms 2 ms 1 ms 192.168.62.1
3 2 ms 2 ms 1 ms 192.168.180.2
4 2 ms 2 ms 1 ms 10.66.1.100
Trace complete.
@travisdh1 said in EdgeRouter routing:
Gotta love finding equipment you didn't know was on-site...
I once found a 48 port switch bolted to the top of a partition wall up above a ceiling. If I can find a picture, I'll start a new thread.
As a consultant, it's getting harder and harder to surprise me and I don't really trust what users say about how they think things work anymore.
Installed the sit and stand frame a two weeks ago. Still need a little more cable management and have to figure out what to do about the sub to neaten up the wires.
@bigbear said in VoIP Taxes - Are you paying them?:
I was gonna ask you if you had to time to strike out your personal info and send a screen shot of the actual charges and recovery fees etc.
PMed you one.
@jaredbusch said in To Cable, or Not to Cable:
Because I will not, ever, use a company that has such shit software, that I have to fork over sales info to watc( a 3 minute demo video.
Someone watched a video on the sales funnel and decided to add a filter right at the top.