After over 6 straight years of actual larger-Enterprise (heavy Windows/Linux infrastructure) experience and 3 intense years of practice and self-study, I finally made MCSE: Server Infrastructure (2012 R2).
http://www.mycertprofile.com/Profile/1943383021
My real (relevant) experience hadn't started in a business environment until closer to 2004, but it has been a goal of mine since then.
It just feels good to have finally reached that goal in a good way.
My wife is becoming a U.S. citizen today. As well as everyone else on the bottom floor. People still coming in.
Some entertainment on the stage while everyone waits for the Oath Ceremony to begin.
I posted a guide on my blog about setting up a Fedora 26 KVM / QEMU hypervisor that uses the Kimchi-project for remote virtualization management, which includes a working web-based VM console.
Here's the link: https://www.timothygruber.com/linux/fedora-26-kvm-html5-remote-access-with-web-console-via-kimchi-part-1/
I hope it helps anyone who needs it as much as it would have helped me had I came across it a long time ago.
It's easy to create on my blog because I can copy/paste images into the editor... it's like working inside of MS Word.
I was thinking of recreating it on here for ML, but not sure if it's worth it or not, as well as the chance of hurting SEO.
Should I take the time to do it and just change the wording a bit?
@scottalanmiller said in Miscellaneous Tech News:
I know y'all are concerned... Snapchat just went down.
Nope, the whole Snapchat company could disband and I'd never even know it (until you post about it).
@momurda said in What Are You Doing Right Now:
Ordered 2 ssd from newegg. They show up in 2 8"x4"x3" boxes which are packaged inside a 24"x18"x4" box. And lots of those airbag things.
Literally could have fit hundreds of ssd in this packaging.
Now if one doesn't work, you need to ship it back inside of a refrigerator box...
@dustinb3403 said in Recommendations for Cameras:
He wants something "more serious looking" what does that even mean?
I have had great experience with these:
That VMQ thing can be an issue on 1 GB NICs with out-dated firmware/drivers. The info of affected drivers and NICs and the resolution can be found here:
This is a good write-up and how to resolve it. Or you can just run firmware and driver updates.
VMQ should be disabled on 1 GB NICs. The issue with the broadcoms is that it's enabled by default, and shouldn't be.
@scottalanmiller said in What Are You Doing Right Now:
I'm in Houston. Getting some work done before turning in for the night. Long, but good, day of travel.
How long you going to be in Houston?
@WrCombs said in Task Schedule Failed:
@Obsolesce said in Task Schedule Failed:
@WrCombs said in Task Schedule Failed:
SO Iknow whats causing the issue, I'm just not sure how to fix it.
Windows 11 device, Task is scheduled to start a program
c:\program files (x86)\Parent Director\Subdirectory\program /switch1 /switch2 /switch3It shows Last Run results
0x4Which I find out means "System can't access path/file"I Changed user, and tried running it again (different admin user) no change, same status.
I go to CMD to see if I can path to it - Can't find path specified - tried writing it a different way (with spaces, without spaces)
Having a hard time understanding why it can't run this program - it's needed to import sales into a different system every day.
The owner of the software suggested making sure DotNetFramework 4.5 or higher was installed and repair it. which it is, 4.8 is installed currently.
Any ideas how I can resolve this?
Export the scheduled task as xml so we can get a clearer picture of what it is. Clean it up before posting.
what do you mean "clean it up before posting" ?
As in censor sensitive info before posting it publicly.
Having the xml export of the scheduled task will show us exactly all configured options and settings of the scheduled task.
And yes, it would have shown that you were missing quotes in the command / paths.
@WrCombs said in Task Schedule Failed:
SO Iknow whats causing the issue, I'm just not sure how to fix it.
Windows 11 device, Task is scheduled to start a program
c:\program files (x86)\Parent Director\Subdirectory\program /switch1 /switch2 /switch3It shows Last Run results
0x4Which I find out means "System can't access path/file"I Changed user, and tried running it again (different admin user) no change, same status.
I go to CMD to see if I can path to it - Can't find path specified - tried writing it a different way (with spaces, without spaces)
Having a hard time understanding why it can't run this program - it's needed to import sales into a different system every day.
The owner of the software suggested making sure DotNetFramework 4.5 or higher was installed and repair it. which it is, 4.8 is installed currently.
Any ideas how I can resolve this?
Export the scheduled task as xml so we can get a clearer picture of what it is. Clean it up before posting.
@JasGot said in How Do You Replace Active Directory?:
@scottalanmiller said in How Do You Replace Active Directory?:
Just use local accounts. It's so easy that you can manage the whole environment for less effort than maintaining AD.
Curious.... How are you enforcing password changes at the local PC for users?
If you are using corporate identities for employees on corporate owned devices, there's no need for local user accounts. You can use, for example, Okta/Azure AD/etc as your identity provider along with MFA with Azure/Okta/Duo/etc and the users can use their corporate provided identities to log on to their devices. Using that method there is no need to do anything there locally on the device.
@Dashrender said in How Do You Replace Active Directory?:
@scottalanmiller said in How Do You Replace Active Directory?:
@Dashrender said in How Do You Replace Active Directory?:
@scottalanmiller said in How Do You Replace Active Directory?:
@Dashrender said in How Do You Replace Active Directory?:
@scottalanmiller said in How Do You Replace Active Directory?:
@Dashrender said in How Do You Replace Active Directory?:
@scottalanmiller said in How Do You Replace Active Directory?:
@siringo said in How Do You Replace Active Directory?:
I saw @jt1001001 mention they could upgrade so they can use Intune &/or Azure AD. Azure AD is AD, but Intune is an MDM.
Azure AD is not AD. It's a directory service, but in no way is it AD. It's no more AD than JumpCloud or Okta is AD. They are all directory services, but that's where the similarity ends.
Intune is MDM, that is true. And MDM is a vastly better way to do system management than GPO. GPO is horrible. One of the biggest problems with GPO is the lack of an agent, which is really what is needed. So something that is MDM or MDM-like in that way is exactly what you want as an alternative to GPO.
Why do you dislike the lack of a client? Sure it's LAN-centric, and we should be looking for LANless options these days...
Reliability. Hoping that the operating system will successfully pull GPO without an agent is a flaky process. You can make a lot of billable hours getting paid to troubleshoot GPO failures because Windows doesn't have a good way to get the data, process the data, and report on that processing. It's the agents that do all the things that make this type of process reliable.
I guess I don't follow. Something in Windows Pro is what tells the PC to pull and process the GPO - there are logs for that process in Windows. of course I've had issues before - are you saying you've never had issues with something that has a third party agent before?
I'm saying that the GPO system is flaky and useless. It's pathetically complex and unreliable. Those that use it tend to either have to keep it very, very basic or do a ton of work to make it work and rarely can you find a shop that's really confident that it is working.
The very idea that you have to go onto the endpoints to look at logs shows how big the problem is. There's no warning, no alerting that something has failed. No central repository. You have to build out some kind of log monitoring solution with an AGENT and deploy it to the end points to bandaid the kind of centralized data into GPO that you'd just expect with any modern solution (or competent solution.)
Everything "has" problems. But how often they have problems, how the agent handles problems, and how you have to deal with problems are what matters. And obviously nothing you'd actually deploy should have the kinds of unreliability or difficulty in monitoring as GPO. If it even comes close, it's not something you'd trust.
You are asking "GPO is bad, so you are saying other solutions are perfect?" Do you see why that is a bad question? Nothing is perfect, why do you ask if other solutions are perfect but don't expect GPO to be?
The way that you ask these questions makes you sound crazy. Don't ask if GPO is perfect. What you should be asking is something like "Oh, so you've found that the good third party agents are reasonably more reliable than the native GPO?" It's logical, it's rational, and it doesn't imply that perfect is a requirement, because obviously it is not.
I guess I've just had good luck. I haven't had to poor huge amounts of time into my GPOs not working.
not zero - but no RMM type solution would I expect zero issues with when setting up.No, not zero for sure. GPOs tend to be better when you have a very LAN-centric, very homogenous environment. The more variation you add, especially in terms of latency and connection, the harder it gets. GPOs start to get flaky, especially over the WAN, and you start getting a lot of time spent just trying to get them to process.
yeah - that definitely makes sense.
I'm curious - haven't dug in enough yet - how much Intune notifies you of non compliant machines?
You can get total sight and notification of any kind of compliance you want. The default no-setup-needed compliance policies are a great start, and now you can use your own custom compliance scripts. Additionally, through automation, the possibilities are endless.
@siringo said in Migrating to xxxxx:
Questions that dig into how a person thinks and solves, rather than past job history.
That's one thing to look for when you are the one being interviewed. I've interviewed for shitty companies that don't know how to interview and I basically let them know afterwards I'm no longer interested in the position.
@siringo said in Migrating to xxxxx:
But how do you/we get around the problem of an interview panel asking " so how much experience do you have with Ansible, Salt, AD etc"
Either don't interview for those positions, or get experience doing the stuff you want to be doing.
@scottalanmiller said in Wsus for remote vpn and on-premise users:
There is little different between an MSP and internal IT.
They are basically the same thing. In many cases the internal IT is a separate entity that basically bills the company and/or child companies, but is on the payroll of the company.
@pete-s said in Password Managers:
That why there are plenty of vulnerabilities and bugs in everything.
You can't take from them something they don't have...
