|
Avenging_Mikon posted:Got a ticket to give a few people read-only access to a calendar used for that department's absences. It's set up as a disabled user with people being given access to the calendar. I've usually been handling thing by enabling the user, changing the password, logging in as the user, handing out the changes, then disabling the user again. Is that about the best way to handle that? Or is there some wonderful way to give calendar rights without logging in to the account? Yes. You use a Shared Mailbox named "PTO", put an auto-attendent on it and then people schedule their time out of the office on their own calendars like an adult. The answer(s) you probably need. A) You create a Shared Mailbox and delegate permissions exactly as you described by giving their departmental security group Author access so that people can add, delete and edit their own events while retaining read-only access to everyone else's events booked on that calendar and they can book on a common calendar that they will cry and throw tantrums about because they can't get it on their cell phones. B) You just change the permissions on the $OfficeManager[-3]'s calendar to grant Anonymous the Publishing Editor role. C) You create a Public Folder calendar on SBS03 then mangle your way back up this list in reverse order until everyone in the company has some unique combination of permissions that grants some of them full Publishing Editor access but no read access to some small portion of the company's executive leadership, and Full Access with Send-As as well to the rest of board of directors emails. In my hear of hearts I know you'll end up with the 3rd option SeaborneClink fucked around with this message at 16:17 on Aug 22, 2017 |
# ? Aug 22, 2017 15:54 |
|
|
# ? Jun 7, 2024 10:07 |
|
Basically my new company has a firewall setup that doesn't make sense. Basically its ISP A is setup by a static route of 0.0.0.0 to go this ip/interface , exactly how I expect. But ISP B is just a second 0.0.0.0 route of a different metric put pointing to another virtual router group B as the handoff. That virtual router group B has its own static route of of 0.0.0.0 that points back to the original virtual router group A. This in my mind would just make ISP B never something that is going to work because its a loving loop. This is made more complicated that the guest wifi is in virtual router group B and works just fine despite this dumb static route entry that doesn't make sense. (They aren't using Policy Based Forwarding if that also doesn't confuse things) rafikki posted:Try a "test routing fib-lookup" from the cli with your vrouter and see if that helps clear it up. I will give this a shot.
|
# ? Aug 22, 2017 15:56 |
Boogalo posted:Powershell is your friend. Looks right. Keep in mind that if the user is using a non-English version of Outlook the folder name you need in the command might be localized. You can use Get-MailboxFolderStatistics to list all folders in a mailbox to see any localized names.
|
|
# ? Aug 22, 2017 15:57 |
|
Boogalo posted:Powershell is your friend. gently caress yeah powershell! I'm still learning, so I don't really remember that it can do stuff like that. SeaborneClink posted:Yes. You use a Shared Mailbox named "PTO", put an auto-attendent on it and then people schedule their time out of the office on their own calendars like an adult. Pretty sure we don't have SBS03. And gently caress, A sounds awesome. Too bad the calendar's already created as an individual user rather than a shared mailbox. I should look in to having that process updated.
|
# ? Aug 22, 2017 16:01 |
|
Sickening posted:Basically my new company has a firewall setup that doesn't make sense. Are there Nat rules for specific vlans that get pushed to router group B's interface? I can't imagine access rules would do it because the traffic would stop instead of pushing to another interface. But NAT can be used in... Unconventional ways on firewalls.
|
# ? Aug 22, 2017 16:02 |
|
Judge Schnoopy posted:Are there Nat rules for specific vlans that get pushed to router group B's interface? Yes, sorry, these are nat rules.
|
# ? Aug 22, 2017 16:06 |
Avenging_Mikon posted:Pretty sure we don't have SBS03. And gently caress, A sounds awesome. Too bad the calendar's already created as an individual user rather than a shared mailbox. I should look in to having that process updated. Unless by "an individual user" you mean "a user account also belonging to a person" you can convert a user mailbox into a shared mailbox very easily: code:
Convert all your shared mailboxes/calendars to real Shared (or resource) type, it makes several behaviors more reasonable and also lets you enable things like MessageCopyForSendAs.
|
|
# ? Aug 22, 2017 16:14 |
|
nielsm posted:Unless by "an individual user" you mean "a user account also belonging to a person" you can convert a user mailbox into a shared mailbox very easily: I know the act is easy. It's getting a process changed that's hard!
|
# ? Aug 22, 2017 16:23 |
|
Avenging_Mikon posted:Pretty sure we don't have SBS03. And gently caress, A sounds awesome. Too bad the calendar's already created as an individual user rather than a shared mailbox. I should look in to having that process updated. The correct answer was the first one. Then tell people to schedule their poo poo on their own calendars like a grown up and set their event as "Out of Office" then add an Out of Office reply as appropriate. It's still arguably permissible to also create the Shared Mailbox (please for fucks sake do not covert a user mailbox to a shared), and have people just add it as a Resource to their event if there must ABSOLUTELY be a master list of who is not in the office at a given time. nielsm posted:Unless by "an individual user" you mean "a user account also belonging to a person" you can convert a user mailbox into a shared mailbox very easily: Edit: I also hosed up, it's Author not Editor that should be granted to allow people to only edit/delete their own events. SeaborneClink fucked around with this message at 16:33 on Aug 22, 2017 |
# ? Aug 22, 2017 16:30 |
|
A ticket came in: 250687 - making strange noise. User reports desktop is making a strange noise and would like it to be investigated. Ticket closed: A small gecko crawled into the PSU and died, and was getting hit by the fan. Vacuumed it out.
|
# ? Aug 22, 2017 16:52 |
|
Sickening posted:Yes, sorry, these are nat rules. Do the configured routes clear anything up, either on the firewall or on the router group? And does the router group have separate NAT rules to change the traffic before it gets sent back to group A? Don't know if I'm helping at all here. I'm more familiar with ASAs or Checkpoint, and most of my head-scratchers come from looking at NAT and Routes individually rather than combining them for the big picture of traffic flow.
|
# ? Aug 22, 2017 16:56 |
|
A ticket came in: User wants to remove all appointments from a conference room calendar(resource) because we're going to renovate the space. Cool. Let me just fire up powershell. Hmmm... I wonder if there's a way to send out notifications that the appointment has been deleted. Let's google it! Hmmm... nothing easy or immediately definitive, better call the user to see if that's a necessity before I finish this script. After a brief conversation, I figured out that she was actually tasked with rescheduling all the appointments to other spaces during the renovation. That includes discussing each appointment with the booker and confirming that the new appointment is in an amenable space / time. NOT deleting them from that room being renovated. Lady, you don't know how close you were to pissing off a whole bunch of people. Nice job trying to pass your work off on me though! Even after I explained that just deleting all the appointments is definitely not what she wants me to do. She then proceeded to ask me if there was a way for me to just move all the appointments to other calendars. Look, I get that this is a poo poo task that you got stuck with, but gently caress if you think I'm gonna make this my problem.
|
# ? Aug 22, 2017 17:05 |
|
SeaborneClink posted:A was intended to be one of the "please god don't do this!" answers Okay Mr. Smartypants, given it's for a different department, and that the department's been using this user-mailbox for years, how do you propose to have a central calendar that shows the department's absences at a glance and is actually kept accurate? Hrm?
|
# ? Aug 22, 2017 17:06 |
|
Avenging_Mikon posted:Got a ticket to give a few people read-only access to a calendar used for that department's absences Boogalo posted:Powershell is your friend. Something even cooler to do is make a security group for said department and mail enable it, hide from address book, drop in all relevant members, then give Reviewer/Whatever permissions for the calendar to said security group. Bingo now every one in that department can automatically cock around with that calendar with no fuss.
|
# ? Aug 22, 2017 17:18 |
|
Judge Schnoopy posted:Do the configured routes clear anything up, either on the firewall or on the router group? And does the router group have separate NAT rules to change the traffic before it gets sent back to group A? I am look at it from single nat rules. Palo alto has this way of linking nat rules together if the first static route doesn't work, or at least it looks that way. You can say, default is this path. Second path, if this doesn't work, is this other set of nat rules. The problem is the second set is just linking back to the first set by default and in my eyes this shouldn't work at all. I am looking at it from the cisco way of thinking and it doesn't make sense. Its also not setup the way palo alto suggests and I have a support ticket open with them to figure it out. Sickening fucked around with this message at 17:21 on Aug 22, 2017 |
# ? Aug 22, 2017 17:19 |
|
Super Slash posted:Something even cooler to do is make a security group for said department and mail enable it, hide from address book, drop in all relevant members, then give Editor/Whatever permissions for the calendar to said security group. Bingo now every one in that department can automatically cock around with that calendar with no fuss. Read Only, Slash, no cocking around :p
|
# ? Aug 22, 2017 17:20 |
SeaborneClink posted:It's still arguably permissible to also create the Shared Mailbox (please for fucks sake do not covert a user mailbox to a shared), and have people just add it as a Resource to their event if there must ABSOLUTELY be a master list of who is not in the office at a given time. Can you elaborate on the evils caused by the procedure? Genuinely want to know because we have a shitton of shared mailboxes/resources that were created as user mailboxes originally (because nobody knew better), and we have converted a few as other requests about them came in.
|
|
# ? Aug 22, 2017 17:22 |
|
Avenging_Mikon posted:Okay Mr. Smartypants, given it's for a different department, and that the department's been using this user-mailbox for years, how do you propose to have a central calendar that shows the department's absences at a glance and is actually kept accurate? Hrm? The addendum about putting the PTO Calendar as the booked resource is as far as I know still within the realm of suggested best practices. You can turn off auto acceptance on the Auto Attendant if someone needs to go in and manually approve the events. You'd probably also need to override the conflict setting as well. nielsm posted:Can you elaborate on the evils caused by the procedure? Genuinely want to know because we have a shitton of shared mailboxes/resources that were created as user mailboxes originally (because nobody knew better), and we have converted a few as other requests about them came in. Now we start asking the fun questions. Did someone once try to integrate Skype for Business, and they tried to replace every desk phone with the Skype soft phone as well? Are you still hauling around old extended attributes from that awful timekeeping integration someone tried to force on the company back in 2003? Does your print tracking software require a unique AD attribute for each user? Are you really certain that there is absolutely no one that has access to this person's old mailbox, not even through an inherited membership or recursive group? (Pro-tip this is nearly impossible to get to correct, even in Powershell) For all the time you have to spend to actually convert a user account to a shared resource, it's always 100x easier to just create the correct resource in the first place, and export select calendar events by proper filtering and import into the new shared box. SeaborneClink fucked around with this message at 17:50 on Aug 22, 2017 |
# ? Aug 22, 2017 17:23 |
|
duz posted:Do we really need a web based lotus notes? You joke, but that is a thing that exists. So, really, the universe jokes, and we can but echo the punchline.
|
# ? Aug 22, 2017 18:58 |
GnarlyCharlie4u posted:A ticket came in: User wants to remove all appointments from a conference room calendar(resource) because we're going to renovate the space.
|
|
# ? Aug 22, 2017 19:43 |
|
Cross posting from PYF:
|
# ? Aug 22, 2017 20:22 |
|
|
# ? Aug 22, 2017 20:36 |
|
|
# ? Aug 22, 2017 20:37 |
|
tactlessbastard posted:Cross posting from PYF: I originally posted that in AI
|
# ? Aug 22, 2017 21:36 |
|
D. Ebdrup posted:But since the user specifically mentioned in the ticket that they wanted to remove all appointments, isn't your rear end covered unless you're expected to fully and completely sanity-check everything your users do (in which case, no salary would be too high)? Search your heart, what does it tell you?
|
# ? Aug 22, 2017 21:52 |
|
But it is a bug!
|
# ? Aug 22, 2017 21:54 |
|
SeaborneClink posted:You mean like the Scheduling Assistant? Also I suggest telling people that keeping accurate accounting of their availability is an expectation of their continued employment? Alright, you win THIS TIME. And probably next time too. Doing it without auto-acceptance would probably be best for our needs due to some departments being tight and not wanting to schedule time off for more than one person at a time. I really like this idea, even more than A. I wish I could tell people accurate accounting of availability was an expectation, but colleges. *shrug* They expect better attendance out of the students than they do faculty.
|
# ? Aug 22, 2017 22:14 |
tactlessbastard posted:Cross posting from PYF: Literally the best possible vanity plate.
|
|
# ? Aug 22, 2017 22:16 |
|
ConfusedUs posted:Literally the best possible vanity plate.
|
# ? Aug 22, 2017 22:25 |
That's pretty good too
|
|
# ? Aug 22, 2017 22:29 |
|
Alright this is also good, but I think I personally like the beetle more.
|
# ? Aug 23, 2017 00:06 |
|
Holy poo poo
|
# ? Aug 23, 2017 01:50 |
|
SeaborneClink posted:This can get really edge case rather quickly, dependent on how many dumb things someone or someones in your org done in the past, but the technical debt has already been spent so On account of that person used to be a person, they probably had auser@contoso.com, you'll need to change their primarySMTPAddress, emailAddress (did you remember to set SMTP: as well as smtp:), you'll probably also need to set a proxyAddress to get it to map correctly with 365.
|
# ? Aug 23, 2017 02:02 |
|
All users are superfluous.
|
# ? Aug 23, 2017 02:05 |
|
Sefal posted:I have the same experience as MF_James except that my mother is completely computer illiterate to the point she has trouble copy pasting stuff. That's my mother as well. She is in her 80s though.
|
# ? Aug 23, 2017 03:08 |
|
iospace posted:I originally posted that in AI Sorry
|
# ? Aug 23, 2017 04:31 |
|
tactlessbastard posted:Sorry It's ok
|
# ? Aug 23, 2017 04:37 |
|
My dad worked in IT for the first half of my life; he can do his own drat tech support
|
# ? Aug 23, 2017 04:51 |
|
Malachite_Dragon posted:My dad worked in IT for the first half of my life; he can do his own drat tech support And if he begs you'd just turn a deaf ear?
|
# ? Aug 23, 2017 04:55 |
|
|
# ? Jun 7, 2024 10:07 |
GnarlyCharlie4u posted:Search your heart, what does it tell you?
|
|
# ? Aug 23, 2017 12:03 |