@gjacobse said in MS O365 Autodiscovery: Failing:
Sidetracked, late update.
Signed the user out of all MS products, One sign in received a message that the user didn’t have an account.ADUC / AAD both showed the user as valid and licensed
Have you tried the troubleshooting tool yet? It's worked for me a lot lately when nothing else makes any sense.
That or just break down and install the PWA version and be done with it.
Overtime tonight. An AzureDC is seeing thousands of login attempts every minute.... From Russia, with love I'm sure, ha!
@dustinb3403 said in What Are You Doing Right Now:
Looking up if its possible to reset the master key on a SQL database, because documentation means nothing...
Master key or SA password?
Either way, you have to take down the DB server to accomplish the reset, don't remember the details off the top of my head.
@gjacobse said in MS O365 Autodiscovery: Failing:
Has anyone encountered this issue today when trying to create the Outlook User profile on initial signon.
Yes. Had to use the troubleshooting tool to get it to work (locally installed Outlook sucks, I stick with the PWA version whenever possible now). Tool can be found here: https://support.microsoft.com/en-us/office/resolve-outlook-for-windows-issues-with-automated-troubleshooting-tools-38e2342d-3527-4190-8754-a82d8b970fe2
@voip_n00b said in DNS Filtering Service:
- WebTitan
- DNS Filter
- Umbrella
- Next DNS
- Webroot DNS
Leaning towards DNS Filter
I'd avoid using Webroot DNS. It's filtering seems to be overly broad, and the company I work for is moving away from it.
@obsolesce said in VPN vs SDP?:
@travisdh1 said in VPN vs SDP?:
@gjacobse said in VPN vs SDP?:
Because - a LinkedIN advert is where you want to learn from - but taking a referenced technology FROM there and doing your search and learn.
This advert implied that SDP is the next thing to replace a VPN - Oh-kay what is it. What is an SDP and why would I want to investigate it.
SDP: Software Defined Perimiter
Software Defined Perimeter (SDP), also called a "Black Cloud", is an approach to computer security which evolved from the work done at the Defense Information Systems Agency (DISA) under the Global Information Grid (GIG) Black Core Network initiative around 2007.[1] Software-defined perimeter (SDP) framework was developed by the Cloud Security Alliance (CSA) to control access to resources based on identity. Connectivity in a Software Defined Perimeter is based on a need-to-know model, in which device posture and identity are verified before access to application infrastructure is granted.[2] Application infrastructure is effectively “black” (a DoD term meaning the infrastructure cannot be detected), without visible DNS information or IP addresses.[dubious – discuss] The inventors of these systems claim that a Software Defined Perimeter mitigates the most common network-based attacks, including: server scanning, denial of service, SQL injection, operating system and application vulnerability exploits, man-in-the-middle, pass-the-hash, pass-the-ticket, and other attacks by unauthorized users.[3]Time to get some popcorn and read a little..
So they came up with a new term for what @scottalanmiller has been talking about for YEARS?
I don't remember him talking about it in 2007/2008 when it became prominent as I understand.
I wouldn't call it prominent yet. In halfway competent companies, yes. But those are quite rare.
@gjacobse said in VPN vs SDP?:
Because - a LinkedIN advert is where you want to learn from - but taking a referenced technology FROM there and doing your search and learn.
This advert implied that SDP is the next thing to replace a VPN - Oh-kay what is it. What is an SDP and why would I want to investigate it.
SDP: Software Defined Perimiter
Software Defined Perimeter (SDP), also called a "Black Cloud", is an approach to computer security which evolved from the work done at the Defense Information Systems Agency (DISA) under the Global Information Grid (GIG) Black Core Network initiative around 2007.[1] Software-defined perimeter (SDP) framework was developed by the Cloud Security Alliance (CSA) to control access to resources based on identity. Connectivity in a Software Defined Perimeter is based on a need-to-know model, in which device posture and identity are verified before access to application infrastructure is granted.[2] Application infrastructure is effectively “black” (a DoD term meaning the infrastructure cannot be detected), without visible DNS information or IP addresses.[dubious – discuss] The inventors of these systems claim that a Software Defined Perimeter mitigates the most common network-based attacks, including: server scanning, denial of service, SQL injection, operating system and application vulnerability exploits, man-in-the-middle, pass-the-hash, pass-the-ticket, and other attacks by unauthorized users.[3]Time to get some popcorn and read a little..
So they came up with a new term for what @scottalanmiller has been talking about for YEARS?
@gjacobse said in What Are You Doing Right Now:
trying to not repeatedly smash my head against the open frame rack in the other room... OH - My - Lord! Such the 'This is the way it was always done' mentality.
(counts number of physical PRIs and DiD per PRI,...) I just,..
And then there is this:
Due to license violation, access to Director will be locked in 38 days. Take proper action before the grace period has expired. Note that there are additional charges if you need to recover from a locked Director.
My "It's Mitel" spidey sense is tingling... I'm so sorry.
@wrcombs said in What Are You Doing Right Now:
/Sigh.
FML . Boss lady had a Coin Changer in her office for over 1 year. She gave it to me maybe a month ago. I had the coin changer working on the POS system Lab I have in the office in 45 minutes total (this was 2 weeks ago) so I did some documentation on it and passed it on to the tech i was working with.
We sent them a new cable to put on their existing Coin Changer (same POS system as my lab), 2 weeks ago, Apparently this call was passed onto me without me being on the email that passed the buck to me.
So now I'm putting out a fire on a client I've never worked with directly while taking the responsibility for this issue cause the other tech stopped responding to emails..
am I wrong to be Pissed off at this? - Maybe I'm over reacting to it. .
Nope, that's more than enough reason to be pissed off.
@irj said in A Startdocprinter Call Was not Issued:
@jaredbusch said in A Startdocprinter Call Was not Issued:
@dafyre said in A Startdocprinter Call Was not Issued:
@gjacobse said in A Startdocprinter Call Was not Issued:
they should be ONEDRIVE, but doesn't always happen...
Hopefully you find this out before re-imaging the machine...
Not an IT problem.
Chair to keyboard interface problem
PEBKAC - Problem Exists Between Keyboard And Chair
@dustinb3403 said in What Are You Doing Right Now:
@scottalanmiller said in What Are You Doing Right Now:
CHilling at the hotel today. Guests came by and wanted to drink. So we drank all morning. Feeling pretty tired now!
Most hotel operators don't drink all day with their guests...
Most hotel operators aren't anything like @scottalanmiller
@stacksofplates said in NG AV / Endpoint Protection in 2021:
@scottalanmiller said in NG AV / Endpoint Protection in 2021:
@travisdh1 said in NG AV / Endpoint Protection in 2021:
I'm curious, how do you handle centralized reporting with Defender? That's still the 1 missing piece most places I deal with want, and I don't know of a way to do it with Defender itself.
Reporting on it being up to date and running? Both MeshCentral and TacticalRMM report on that. So do lots of other tools.
Can you give a screenshot of this? I just can't conceptualize how these tools can give you a report on running, updates, number of findings, what the findings are, etc.
I can understand how MeshCentral and TacticalRMM can keep you informed of updates, it's what they do, but how do they alert you to detections?
@scottalanmiller said in NG AV / Endpoint Protection in 2021:
@dbeato said in NG AV / Endpoint Protection in 2021:
Centralized management is not about knowing the status of the agents, it is also the way to manage all the settings and policies from one place instead of doing manual work on each computer (Windows Defender) to apply the changes.
Sure, but what settings and policies do you need? Keep the computer safe, stop monkeying about with policies. I truly believe this entire policy market is a scam. All these unnecessary settings, that put customers at risk, to justify paying for a centralized system.
Skip it all. Problem solved. Centralized reporting of status so that you know things are running and up to date: great. But with Defender, that's free. All the rest, I absolutely, 100% think it's BS that people are trying to charge for that.
Don't get me wrong, I know why it is a good market of easy money and that it is super easy to get customers to request it. But as a CIO, my job is always to educate my customers that this is not in their interest and it is all "sounds good" mombo jumbo that is hard to refute, but in practice is not in any way done for their benefit.
I'm curious, how do you handle centralized reporting with Defender? That's still the 1 missing piece most places I deal with want, and I don't know of a way to do it with Defender itself.
Prepping for foot surgery tomorrow. Going to be off work for 2 weeks.
Wish I didn't have to have surgery to have that much time off work.
@scottalanmiller said in Miscellaneous Tech News:
That news is just now being reported? I'd be surprised if the ransomware gangs took an entire day to start using the exploits.
@mlnews said in Miscellaneous Tech News:
Google may cut pay of staff who work from home
Google employees in the US who opt to work from home permanently may get a pay cut.
The technology giant has developed a pay calculator that lets employees see the effects of working remotely or moving offices. Some remote employees, especially those with a long commute, could have their pay cut without changing address. Google has no plans at this time to implement the policy in the UK. Employees in many businesses have proved that working from home permanently is viable during the Covid pandemic. Many companies are looking ahead to how employees will work as the pandemic recedes, even as the US continues to battle the Delta variant of the disease.
Google confirming they are a horrible company to work for. What does the area you live in have to do with the amount of value you bring to the company?
@dashrender said in NG AV / Endpoint Protection in 2021:
@travisdh1 said in NG AV / Endpoint Protection in 2021:
@notverypunny said in NG AV / Endpoint Protection in 2021:
@travisdh1 said in NG AV / Endpoint Protection in 2021:
@notverypunny said in NG AV / Endpoint Protection in 2021:
Any vendors people want to recommend or warn off with regards to endpoint and server protection? We're shopping options to replace our current NG solution. Currently on a call and it's kinda meh.... I'm not a fan of sales in any context and this seems to be lots of sizzle and not a lot of steak (or bacon... substitute your delicious protein of choice)
What is NG?
NG = Next Generation.... in the AV or Enpoint Protection space it's vendor-speak for non-signature based, usually with other functions and integrations
Ah, I was trying to think of a specific product and recoiling because the only thing that came to mind was a Norton product of some sort!
Also a load of marketing, non signature has been a thing for years now, if not a decade.
Frankly, none of them do any better job than the one included with your OS (which ever OS that happens to be). The only reason for most 3rd party software today is to get a single management console for a large number of computers/servers.
This is why I want to use MS's Defender, but DAMN they want a bloody fortune... I pay like $25/u/y right now... Defender is like $10/u/m or $120/u/y WAY more expensive... but, I have a baseline AV, perhaps it's just not something I can compare. My current AV vendor of course has something more akin price wise to Defender, Until recently the spend would have been a no go...
Yeah, to get the centrally managed console with Defender is crazy expensive compared to the competition.
@notverypunny said in NG AV / Endpoint Protection in 2021:
@travisdh1 said in NG AV / Endpoint Protection in 2021:
@notverypunny said in NG AV / Endpoint Protection in 2021:
Any vendors people want to recommend or warn off with regards to endpoint and server protection? We're shopping options to replace our current NG solution. Currently on a call and it's kinda meh.... I'm not a fan of sales in any context and this seems to be lots of sizzle and not a lot of steak (or bacon... substitute your delicious protein of choice)
What is NG?
NG = Next Generation.... in the AV or Enpoint Protection space it's vendor-speak for non-signature based, usually with other functions and integrations
Ah, I was trying to think of a specific product and recoiling because the only thing that came to mind was a Norton product of some sort!
Also a load of marketing, non signature has been a thing for years now, if not a decade.
Frankly, none of them do any better job than the one included with your OS (which ever OS that happens to be). The only reason for most 3rd party software today is to get a single management console for a large number of computers/servers.
@notverypunny said in NG AV / Endpoint Protection in 2021:
Any vendors people want to recommend or warn off with regards to endpoint and server protection? We're shopping options to replace our current NG solution. Currently on a call and it's kinda meh.... I'm not a fan of sales in any context and this seems to be lots of sizzle and not a lot of steak (or bacon... substitute your delicious protein of choice)
What is NG?
@scottalanmiller said in I can't even:
Ever wonder why the competition is so cheap....
The vendor that got a large account from us, and honestly they've been great to work with for handover up till now, asked us today to train them on how to manage phone systems as "part of the handover process"... three weeks after our engagement with the account had ended.
Um.... what? No.
They needed training on things like "how to log in" and "how to add a new user" and "how to attach a phone."
For the record, this is FreePBX running totally vanilla, that we didn't even set up!
Wow... just, wow.
Channeling @JaredBusch FFS!
