I am seeing the error, "Agents.Error. globalAgent is null", in a banner at the top of the page when I login to Kibana/Wazuh. It has been happening since I installed it (about 2 weeks ago). I only have 4 agents/systems while I play with it.
I can't seem to find much on it when Googling it. Does anyone know what it is/how to resolve?
I figured it out. You need to enable the HTTP Proxy (CDN) option for the CNAME record. AKA, the orange cloud.
I created the following PowerShell script that works to create a new AD user and respective attributes, as long as I update the script with the user's name every time I want to run it. Here is what I have:
Import-Module ActiveDirectory
New-ADUser -Name "John Doe" -GivenName "John" -Surname "Doe" -SamAccountName "John" -DisplayName "John Doe" -UserPrincipalName "[email protected]" -Country "US" -EmailAddress [email protected] -Path "OU=email1.com,OU=User Accounts,DC=ADDomain,DC=com" -AccountPassword(Read-Host -AsSecureString "Input Password") -Enabled $true
Set-ADUser -Identity John -Add @{Proxyaddresses="SMTP:[email protected]", "smtp:[email protected]", "smtp:[email protected]", "smtp:[email protected]", "smtp:[email protected]", "smtp:[email protected]"}
Add-ADGroupMember -Identity Office365Users -Members John
I would like to do something with prompts to set variables regarding the name. I have tried doing this, but can't get the combined variables with a period in between working properly for the email addresses, the space in between the first and the last name for name/display name and possibly adding them to the the various domains, both UPN and email. Here is what I have so far.
Import-Module ActiveDirectory
$GivenName = Read-Host -Prompt "Enter First Name"
$Surname = Read-Host -Prompt "Enter Last Name"
$SecurePW = Read-Host -Prompt "Enter a Password" -AsSecureString
New-Variable -Name $DisplayName = "${GivenName}${Surname}"
New-ADUser -Name "$DisplayName" `
-AccountPassword $SecurePW `
-SamAccountName $GivenName `
-DisplayName $DisplayName `
-PasswordNeverExpires $True `
-UserPrincipalName $GivenName + "@UPNDomain.com" `
-Country US `
-EmailAddress $GivenName + "." + $Surname + "@email1.com" `
-Path "OU=email1.com,OU=User Accounts,DC=upn,DC=com" `
-Enabled $True
Set-ADUser -Identity $GivenName -Add @{Proxyaddresses="SMTP:[email protected]", "smtp:[email protected]", "smtp:[email protected]", "smtp:[email protected]", "smtp:[email protected]", "smtp:[email protected]"}
Add-ADGroupMember -Identity Office365Users -Members $GivenName
I get an error starting at New-ADUser : A positional parameter cannot be found that accepts argument '+'. on line 6 char1. I have messed around with syntax several times, so it may or may not be "complete", but I do know that it is wrong LOL
We are going to be remodeling our offices soon. We are adding several more conference/meeting rooms and would like to have some sort of display that is integrated with the respective resource mailbox in Office 365.
I have found several different options, like Evoko - https://www.evoko.se/products/evoko-room-manager/
Any recommendations/suggestions?
@Donahue said in Remote viewing software:
@wrx7m said in Remote viewing software:
Screenconnect for Windows works well. We have it hosted by them.
You can also control mobile devices. My only complaint is that the Android app used to remote in to other devices, is not that great. The mouse control is the main issue. They recently updated it to be better than before, but it is still not great.
can you remote into phones? I constantly get calls from people out in the field that have problems with their iPhones, but have no way to help the remotely.
Yup -
https://www.connectwise.com/software/control/remote-support/compatibility
Hi,
One of our websites was hacked last weekend. I am still waiting for our web dev/design consultants to give a report on what transpired. However, I want to get recommendations for hiring a 3rd party to audit the sites to see what else should be done to help prevent this from happening again and to our other sites.
We are running Wordpress in AWS.
Anyone know of someone?
I used to use a barracuda 300 (for about 6 years) in conjunction with their cloud filtering for our on-prem Exchange 2010 server. I think there were 2 times that they had some sort of issue where they let a crap-ton of spam through, unfiltered.
I have moved to Office 365 and am exclusively using their filtering. I think barracuda was better at filtering. Especially, when it comes to phishing messages that pretend to be from Microsoft's services. You'd think that Microsoft would be able to catch those better than anyone. Not in my experience.
@Pete-S There were a few reasons I didn't do byod.
Configuration of the tablet and the app
If I had issues, I would have to deal with 2 companies.
Also, I got 10% off of the whole price, making it much closer to the byod option. It was $1798-$180=$1618 to have the things ready to rock out of the box. For the $82 difference, it would have been a break even or even cost more for me to do the configuration.
Edit - Another thing was I didn't know which model the tablet was going to be. It only said 10" Philips LED.
Conversely, I over-allocated vCPUs across several VMs (ESXi) when I was new to type 1 hypervisors and ran into performance issues associated with high CPU ready times. After scaling down, performance improved dramatically.
I have the following FTP upload script that stopped working after a server migration and IP change.
$File = "D:\Data\BAUPC.CSV"
$ftp = "ftp://user.name:[email protected]/BAUPC.CSV"
"ftp url: $ftp"
$webclient = New-Object System.Net.WebClient
$uri = New-Object System.Uri($ftp)
"Uploading $File..."
$webclient.UploadFile($uri, $File)
It was run on a schedule to upload a csv file to a web server. I changed the IP address (obviously, not the one above). The username is now in a [email protected] syntax. After updating credentials, I get a 530 error (not logged in).
I am guessing it no longer likes the username and password as part of the URL. Any suggestions on how to modify this script?
And yes, I did verify that the settings work in FileZilla (I did have to change it to Only use plain FTP).
After changing the user syntax back so it does not include @domain.com, it started working again.
Never fear. They have a back door to it 
I am trying to install JRE on Fedora 29 as part of a Wazuh server install. After I successfully download the latest jre installer with
curl -Lo jre-8-linux-x64.rpm --header "Cookie: oraclelicense=accept-securebackup-cookie" "https://download.oracle.com/otn-pub/java/jdk/8u202-b08/1961070e4c9b4e26a04e7f5a083f551e/jre-8u202-linux-x64.rpm"
I run
yum -y install jre-8-linux-x64.rpm
and I get these errors
Error:
Problem: conflicting requests
- nothing provides /bin/basename needed by jre1.8-1.8.0_202-fcs.x86_64
- nothing provides /bin/cp needed by jre1.8-1.8.0_202-fcs.x86_64
- nothing provides /bin/ls needed by jre1.8-1.8.0_202-fcs.x86_64
- nothing provides /bin/mkdir needed by jre1.8-1.8.0_202-fcs.x86_64
- nothing provides /bin/mv needed by jre1.8-1.8.0_202-fcs.x86_64
- nothing provides /bin/pwd needed by jre1.8-1.8.0_202-fcs.x86_64
- nothing provides /bin/sort needed by jre1.8-1.8.0_202-fcs.x86_64
(try to add '--skip-broken' to skip uninstallable packages)
I have seen some posts regarding Java not having updated the proper path, but I wouldn't know how to modify that. Anyone know how to get past this?
@dbeato Thanks. I did some research and found that elasticsearch needs at least java 8. JB suggested using dnf install java. It contained version 11 jdk. I have done that and am trying to complete the reset of the wazuh installation.
From what I found online,
write memory
is the command to copy the running config to the startup config.
Managing these licenses and their bizarre limitations, caveats, etc. is even greater still. 2 audits and 1 they are trying to get me to do, (but have ignored so far) are also not included in most people's cost projections.
@scottalanmiller said in ISP Failover with Cisco ASA:
A Ubiquiti will replace an ASA as well. For just failover, it works just fine. Both EdgeRouter and Unifi USG lines will do that.
For the savings, you could get 2 (and then some) and have redundancy there, as well.
@scottalanmiller said in DNS - am I taking crazy pills?:
@frodooftheshire said in DNS - am I taking crazy pills?:
I feel like in the past with other hosting companies I've just been able to edit the DNS records even if they weren't the registrar? I feel like this is the first time this has happened.
Well this is just silly. Why the heck is the DNS with NS anyway? And especially if they don't do what is needed? Just fix that, right now. Move the DNS to CloudFlare, problem solved.
As @scottalanmiller says, move to CloudFlare and don't worry about the rest. It is only a waste of time.
I am trying think of the best way to have a shortcut for launching Chrome in Icognito mode with specific proxy settings. Thanks to @JaredBusch for this idea. The only way I have found to get it working is running it in CLI. I can create a shortcut to a bat file. Is there a way to make it an actual shortcut (.lnk) with arguments like in GPP/GPO?
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --incognito --proxy-server="http://squid.domain.com:3128" --user-data-dir="%LOCALAPPDATA%\Google\ChromeProxy01\User Data"