|
Likely a dumb question, but is there any sort of web based client to access hyper-v console sessions on 2012 R2? I know other virtualization technologies support VNC console access like this (qemu-kvm over html5). Or do I have to look into some sort of Azure thing to do this? Edit: We do have systemcenter but I'm not 100% on all the parts of that, just the webdev. poxin fucked around with this message at 17:43 on Aug 13, 2016 |
#
?
Aug 13, 2016 17:35
|
|
|
|
| # ? May 14, 2024 21:58 |
|
|
Gotchu fam https://technet.microsoft.com/en-us/library/hh831611%28v=ws.11%29.aspx?f=255&MSPPError=-2147217396
|
|
#
?
Aug 15, 2016 18:09
|
|
|
poxin posted:Likely a dumb question, but is there any sort of web based client to access hyper-v console sessions on 2012 R2? I know other virtualization technologies support VNC console access like this (qemu-kvm over html5). Or do I have to look into some sort of Azure thing to do this? App Controller used to be the go to for Web Based access to VMs and VM Consoles. Not sure if it's still the right tool for the job but it's work checking into.
|
|
#
?
Aug 15, 2016 18:17
|
|
|
Zaepho posted:App Controller used to be the go to for Web Based access to VMs and VM Consoles. Not sure if it's still the right tool for the job but it's work checking into. Yeah I think that requires silverlight or something stupid incoherent posted:Gotchu fam Seems cool, but not really RDP? poxin fucked around with this message at 01:13 on Aug 16, 2016 |
|
#
?
Aug 16, 2016 01:09
|
|
|
Looks like individual patches are going away on Windows 7/8/2008 etc for rollups like Windows 10 https://redmondmag.com/articles/2016/08/15/monthly-update-model-for-windows-7.aspx
|
|
#
?
Aug 16, 2016 01:12
|
|
|
GreenNight posted:Looks like individual patches are going away on Windows 7/8/2008 etc for rollups like Windows 10 This new model also apparently applies to Server 2012 R2, Server 2012 and Server 2008 R2. 
|
|
#
?
Aug 16, 2016 01:27
|
|
|
I mean it simplifies things, so you know which month you stopped patching because they backported or decided to enforce a (vista-era) fundamental security function.
|
|
#
?
Aug 16, 2016 06:47
|
|
|
So
|
|
#
?
Aug 16, 2016 06:47
|
|
|
Maybe we'll see more reliab.... AHaha no, who am I kidding?
|
|
#
?
Aug 16, 2016 14:11
|
|
|
Has anyone been involved in rolling out ticketing/documentation software to a more general audience, not just IT? We are undergoing some management changes at my small company and we are considering having the administrative staff (Accounting, Billing, HR) run in a more organized fashion. We've looked at ZenDesk and JIRA, but both seem to have their flaws. ZenDesk doesn't really do sub-tickets or sub-tasks, making things like a new hire ticket that creates sub-tickets for the other departments, kind of difficult. JIRA seems like it could fit the bill, but the learning curve and time to implement seem somewhat daunting for us. On the documentation side, we are just looking to allow departments to better document their processes and share that knowledge with other departments. I have used Confluence extensively in the past and I am sure that would fit the bill, but so would ZenDesk's knowledge base or whatever. Anyone been through this and have some thoughts?
|
|
#
?
Aug 16, 2016 21:29
|
|
|
I'd look at the problem you're trying to solve. So in the new hire process you can have something like Okta handle account creation based on a new user being added in Workday, and then have the information in the HR record populate AD. I have no idea if your company is big enough for that to be something worth having. Rather than looking for a single product to do all of this, you could have a service like Zendesk handle all of your support ticketing, and then integrate with Asana if you decide a ticket is going to become a project - I'd assume you can also trigger Asana task creation based on Zendesk rules and macros but I haven't really looked into it too much. Obviously this pushes your monthly spend up on SaaS but that's sort of the new normal since every product does about 80% of what you need it for but hey look if you pay the same again to a third party you can get that up to 95%!
|
|
#
?
Aug 16, 2016 21:43
|
|
|
Internet Explorer posted:Has anyone been involved in rolling out ticketing/documentation software to a more general audience, not just IT? We are undergoing some management changes at my small company and we are considering having the administrative staff (Accounting, Billing, HR) run in a more organized fashion. We've looked at ZenDesk and JIRA, but both seem to have their flaws. ZenDesk doesn't really do sub-tickets or sub-tasks, making things like a new hire ticket that creates sub-tickets for the other departments, kind of difficult. JIRA seems like it could fit the bill, but the learning curve and time to implement seem somewhat daunting for us. On the documentation side, we are just looking to allow departments to better document their processes and share that knowledge with other departments. I have used Confluence extensively in the past and I am sure that would fit the bill, but so would ZenDesk's knowledge base or whatever. I'm kind of obsessed with ServiceNow for this - however, it can get pricey so it's really only a good solution if you're a reasonably sized company that can invest in a developer or willing to pay a consultant to do it on a per-project basis. JIRA is flat out bad for this, even with the Service Desk module. For all that Atlassian is trying to push it as a general purpose solution, it's still fundamentally a bug & release tracker at heart and the architecture reflects this.
|
|
#
?
Aug 16, 2016 22:06
|
|
|
Internet Explorer posted:Has anyone been involved in rolling out ticketing/documentation software to a more general audience, not just IT? We are undergoing some management changes at my small company and we are considering having the administrative staff (Accounting, Billing, HR) run in a more organized fashion. We've looked at ZenDesk and JIRA, but both seem to have their flaws. ZenDesk doesn't really do sub-tickets or sub-tasks, making things like a new hire ticket that creates sub-tickets for the other departments, kind of difficult. JIRA seems like it could fit the bill, but the learning curve and time to implement seem somewhat daunting for us. On the documentation side, we are just looking to allow departments to better document their processes and share that knowledge with other departments. I have used Confluence extensively in the past and I am sure that would fit the bill, but so would ZenDesk's knowledge base or whatever. I will second the comments that you need an actual Service Management system for this. A Ticket system is not Service Management. Service management should include at minimum:
This pieces really make up the bulk of whats needed to manage services provided to end users whether those services are IT services or Business services. ITSM (assuming this one is still around and not as much of a flaming pike of crap as it was 10 years ago), Service Now (pretty much the go to as far as I have seen in the Enterprise space) and System Center Service Manager (oh god don't use this, you will hate yourself) are all examples of this stuff
|
|
#
?
Aug 16, 2016 22:39
|
|
|
My computer forgot what PSExec is maybe 30 seconds after I last used it. Is this a known problem? It's happened twice, I think it's falling off the path system variable. It's really annoying.
|
|
#
?
Aug 16, 2016 23:04
|
|
|
22 Eargesplitten posted:My computer forgot what PSExec is maybe 30 seconds after I last used it. Is this a known problem? It's happened twice, I think it's falling off the path system variable. It's really annoying. That sounds like it could be anti-virus. A lot of them begrudge PSexec's existence because it can be used to execute a hacker's elevated command.
|
|
#
?
Aug 16, 2016 23:38
|
|
|
That might be. It's been maybe a week or two. Is Trendmicro one of them? Maybe I should make a script to add PSExec to the path variable so I can use PSExec while making scripts 
|
|
#
?
Aug 17, 2016 00:40
|
|
|
 ITS HAPPENING https://ifap.ed.gov/dpcletters/GEN1612.html quote:Dear Colleague: TL;DR a large amount of student data now has security requirements that, in much of the generally-awful EDU IT / Info Security space, is waaaaaaaay above their current level of capabilities. I am debating creating a compliance thread here and seeing if it goes anywhere -- I have a lot of experience with 800-171 CUI and ITAR/EAR topics in IT, but would really like to bounce ideas off others in a non-committal environment like SA. Potato Salad fucked around with this message at 16:25 on Aug 17, 2016 |
|
#
?
Aug 17, 2016 16:22
|
|
|
Potato Salad posted:
drat, if nothing else, that's gonna be a huge market for managed security/audit vendors, TONS of folks get federal aid dollars.
|
|
#
?
Aug 17, 2016 16:38
|
|
|
Potato Salad posted:
|
|
#
?
Aug 17, 2016 16:43
|
|
|
anthonypants posted:I'm shocked that there's an "ifap.ed.gov" domain. The best.
|
|
#
?
Aug 17, 2016 16:46
|
|
|
Yeah I thought the domain was some sort of joke URL shortener and then I saw the .gov on the end.
|
|
#
?
Aug 17, 2016 18:45
|
|
|
Just wanted to stop by and say thank you for the feedback regarding "Service Management" for not IT folks. Still struggling to find a solution for us, but I've broadened my search a bit.
|
|
#
?
Aug 17, 2016 19:08
|
|
|
Anyone have experience installing Microsoft Dynamics AX? I'm installing on one computer, and it's been doing the first checking for updates step for going on 3 hours now. Has anyone seen that happening?
|
|
#
?
Aug 17, 2016 19:21
|
|
|
So, we changed our company name and added the new domain on O365 Exchange, and now emails from the new domain are getting flagged as spam for some companies we normally converse with. I'm assuming this is because it's just new so some spam filters don't trust it yet. Is there a quick-and-dirty workaround for this? Microsoft told me I can just make a shared folder with the old SMTP email domain and people can send emails from there, but when I click that shared mailbox and send an email, it still sends from the new name.
|
|
#
?
Aug 17, 2016 22:14
|
|
|
uh, did you fix your spf for the new domains?
|
|
#
?
Aug 17, 2016 22:52
|
|
|
SPF, DKIM will go a long way to helping you. What does the actual bounce message say?
|
|
#
?
Aug 17, 2016 23:01
|
|
|
Thanks Ants posted:SPF, DKIM will go a long way to helping you. What does the actual bounce message say? O365 wouldn't even let us add the new domain without verifying the SPF records were set exactly as they require. I can double-check the DKIM. The bounce messages are things like: code:
|
|
#
?
Aug 17, 2016 23:48
|
|
|
I like how http://www.symanteccloud.com/troubleshooting redirects to https://www.symanteccloud.com/troubleshooting, which is an error about how the domain https://www.symanteccloud.com doesn't match their ssl cert. I don't think this is going to be on your end. e: And after that SSL cert error it's a "Service Unavailable - DNS failure" error from Akamai. anthonypants fucked around with this message at 23:58 on Aug 17, 2016 |
|
#
?
Aug 17, 2016 23:56
|
|
|
remember, SPF relies on TLD propagation. I'd check mxtoolbox and a few other DNS sites to make sure it populated.
|
|
#
?
Aug 17, 2016 23:55
|
|
|
Went through it with Microsoft; long story short we did everything correctly, I'm having to just track down the spam companies on the other end and find their "false positives submissions" email address, send the bounced message to them, and they update it.
|
|
#
?
Aug 18, 2016 20:29
|
|
|
What do you guys do with laptops and redirected folders? We redirect the desktop and the documents folder to the network. 4 or 5 years ago, we rolled out Windows 7 laptops for the teachers. We found that offline files was pretty much hit or miss and we ended up using a custom sync script with synctoy (when they log in to a laptop, there's a GPO that disables folder redirection and starts the sync with their folder on the network.) This has been working pretty well, but it's a bit hackish. I was wondering if offline files has been improved in Windows 10, if not, what other solutions are there?
|
|
#
?
Aug 20, 2016 16:41
|
|
|
https://technet.microsoft.com/en-us/library/dn265974(v=ws.11).aspx
|
|
#
?
Aug 20, 2016 17:06
|
|
|
Interesting! We're actually migrating our file server to 2012 R2, so I'll be testing work folders very soon.
|
|
#
?
Aug 20, 2016 19:18
|
|
|
pofcorn posted:What do you guys do with laptops and redirected folders? One thing I found that pretty much solved all of our issues with Offline Files is to specify a automatic conflict resolution policy... http://stealthpuppy.com/configuring-an-automatic-resolution-policy-for-offline-files-in-windows-7/ I used option 4; keep the newest version. Anytime a sync is started, this automatic policy will apply. I did discover however that if there were any unresolved conflicts prior to setting this policy, those will still need to be resolved manually. Any future conflicts follow the selected policy.
|
|
#
?
Aug 22, 2016 15:42
|
|
|
uh brb immediately applying that to the folder redirection GPO. Also i'm glad I know what i'm doing when it comes to Active Directory, I've been doing a bunch of domain controller adds/changes all day long with no impact.
|
|
#
?
Aug 22, 2016 17:58
|
|
|
stevewm posted:One thing I found that pretty much solved all of our issues with Offline Files is to specify a automatic conflict resolution policy... http://stealthpuppy.com/configuring-an-automatic-resolution-policy-for-offline-files-in-windows-7/ This is seriously great. Thank you for posting it.
|
|
#
?
Aug 22, 2016 19:16
|
|
|
Editing HKEY_CURRENT_USER is just going to change settings for the currently logging user, right? You would have to change local machine to change the settings for everyone on the computer? E: yep, seems like it. The consultant told us that what we were doing wasn't going to work right because it only changes the settings for one account. Then he says the better way is to edit the registry for each account that might use the computer, when we could do the same thing with the method we were already using without touching the registry. On top of that, our security makes that impossible because we're not letting normal accounts edit the registry. He's also saying everything is saved on the current user account when there are identical local machine keys, and the initial install was machine-wide. Goddamn am I tired of these people. 22 Eargesplitten fucked around with this message at 20:26 on Aug 25, 2016 |
|
#
?
Aug 25, 2016 20:10
|
|
|
HKCU is indeed linked to the user who is currently logged in. You can limit access to RegEdit, but you cannot limit access to HKCU and have programs still work properly. HKCU is where any setting that doesn't reside in a .config or .ini file exists for a user. HKLM is the registry for that machine. Generally, this is locked down so that only administrators can edit it. You CAN give normal users rights to keys in HKLM if you absolutely need to. How software uses those keys and what keys need to be edited depends on the software. Very generally speaking - a key for a setting will only exist in HKCU or HKLM, depending on if the software expects the user to be able to change the setting or not. Again, generally speaking, if there is a key in both places HKLM exists to serve as the "default" and HKCU exists to allow the users to set their own setting, so if the key exists in both places HKCU will win. A very useful method to figuring out how registry keys are impacted when you make a change in the UI is to use something like RegShot. It will allow you to run a "first pass" which records registry settings, then you make your change, then run a "second pass" and it will tell you the differences. Try to make small changes at a time so you can more easily see the impact. It can also monitor folders and files to look for changes in other places, like AppData, ProgramData, or (ugh) Program Files. Learning how to dictate (or set a preference on) user settings is super useful and something every Windows admin should know. It starts becoming really important when you deal with rolling out software, especially on things like RDS or Citrix. Also, I think we've had this conversation before, but this is what Group Policy exists for. If you aren't going to get access to it, tell them to either give you the tools to do your job or stop asking you to do poo poo you don't have the proper access to do.
|
|
#
?
Aug 25, 2016 20:42
|
|
|
22 Eargesplitten posted:Editing HKEY_CURRENT_USER is just going to change settings for the currently logging user, right? You would have to change local machine to change the settings for everyone on the computer? Group Policy can edit registry settings for each user that logs into a machine. Might be worth looking at for cases where things really are only in local user.
|
|
#
?
Aug 25, 2016 20:56
|
|
|
|
| # ? May 14, 2024 21:58 |
|
|
Internet Explorer posted:HKCU is indeed linked to the user who is currently logged in. You can limit access to RegEdit, but you cannot limit access to HKCU and have programs still work properly. HKCU is where any setting that doesn't reside in a .config or .ini file exists for a user. Nah let's just manage our domain by doing edits on EVERY loving MACHINE.
|
|
#
?
Aug 25, 2016 20:57
|
|