|
psydude posted:
Congrats on the new job. Always like reading your posts, you basically have the career I'd kill for.
|
#
?
Aug 7, 2017 21:45
|
|
|
|
| # ? Jun 12, 2024 10:33 |
|
|
Kashuno posted:Just finished an Exchange 2010 -> Exchange 365 migration AMA I did an Exchange 2010 -> Google Apps migration about a year and half ago and everything went surprisingly smoothly, but we had a whole migration team from the VAR that knew what they were doing to help us. Did you use any third party applications? I know the one we had supported O365 as well. For some reason I feel like it's probably more of a nightmare moving from a Microsoft product to a Microsoft product than it was to go from Microsoft to Google.
|
|
#
?
Aug 7, 2017 21:45
|
|
|
Kashuno posted:Just finished an Exchange 2010 -> Exchange 365 migration AMA I did this recently and it was really.
|
|
#
?
Aug 7, 2017 21:50
|
|
|
Thanks Ants posted:Do you wish you'd upgraded to Exchange 2013+ first? I have no idea what the benefits would've been, so nah probably not. The Fool posted:Did you completely decommission all of your on prem exchange servers? Or are you leaving one up for management purposes? we are finishing up some last exports of former employees (turns out some of the employees from before my time were never exported) as a precaution, then we'll be taking them all offline. Had to disable MAPI for all but those mailboxes since the CAS server handles all exports. siggy2021 posted:I did an Exchange 2010 -> Google Apps migration about a year and half ago and everything went surprisingly smoothly, but we had a whole migration team from the VAR that knew what they were doing to help us. We used a third party application (CodeTwo Migration) for the bulk migration. It doesn't currently import archives though so I did that manually (and because we had no limits in place for a long time, I got the joy of exporting and uploading archives that were 60-75+ gigs of poo poo). Overall the process wasn't bad, went pretty smoothly, and Microsoft's walkthroughs are pretty useful. That said, poo poo can get weird and complicated if your domain is .net/.local etc and your email addresses are .com when you do Azure Active Directory syncs.
|
|
#
?
Aug 7, 2017 21:51
|
|
|
Ours didn't do archives either. The solution was giving users instructions on moving poo poo from their archives to their live mailbox, and telling them to do that with anything they want on gmail before x date or get hosed. Queue users screaming that they are missing their archives on Google.
|
|
#
?
Aug 7, 2017 21:55
|
|
|
siggy2021 posted:Ours didn't do archives either. The solution was giving users instructions on moving poo poo from their archives to their live mailbox, and telling them to do that with anything they want on gmail before x date or get hosed. Well, whose dumb idea was this? Trusting your users to do something critical is like mistake 1 in the "Top 10 Stupid IT Mistakes to Avoid" book.
|
|
#
?
Aug 7, 2017 21:56
|
|
|
I mean the other option was to track down 600 people and do it for them, which 300 of them would never have time for, and the project would never move forward.
|
|
#
?
Aug 7, 2017 22:00
|
|
|
Internet Explorer posted:Well, whose dumb idea was this? Seems like a very sensible idea to me. gently caress archived email.
|
|
#
?
Aug 7, 2017 22:02
|
|
|
Proteus Jones posted:I wouldn't think it was a bad thing. If I saw you actively taking notes during the interview (paper or iPad) that would definitely be a positive. At my last interview I had some Python code on my iPad, and when it came up I pulled out the pad and did the side-by-die presentation thing. It seemed well received.
|
|
#
?
Aug 7, 2017 22:02
|
|
|
mllaneza posted:side-by-die Hardcore interview.
|
|
#
?
Aug 7, 2017 22:12
|
|
|
psydude posted:The few that I've worked on so far in my current/previous gig have been fairly modern, thankfully. The engineering manager for this new company said it's not uncommon to run into token ring and FDDI still running in certain verticals, though, especially petrochemical. Token ring and FDDI both provide very predictable latency due to their token passing designs. I'd imagine in many "real time" applications that is a pretty big deal and much more important than overall performance. FDDI's redundant ring capability also has pretty obvious appeal.
|
|
#
?
Aug 7, 2017 22:46
|
|
|
Sickening posted:Seems like a very sensible idea to me. gently caress archived email. We still have a Lotus Notes server running so that people can access their mail from before we moved to Exchange around 2009. Everything is archived, nothing gets deleted.
|
|
#
?
Aug 7, 2017 23:04
|
|
|
If you think you need email from before 2009, you're either mistaken or you have a terrible internal knowledge base.
|
|
#
?
Aug 7, 2017 23:20
|
|
|
Thanks Ants posted:If you think you need email from before 2009, you're either mistaken or you have a terrible internal knowledge base. Or you're bound by regulatory, audit, or contractual requirements.
|
|
#
?
Aug 7, 2017 23:27
|
|
|
You can love or hate email archiving all you want, but if you had archiving and were getting rid of it and your approach was to rely on the users to grab what they needed, don't be surprised when it comes back to bite you in the rear end. They aren't going to go back through 5 years of emails that they had easy access to yesterday but are going to lose tomorrow to sort out the important stuff. You can only fire an employee once. If they hosed up and it's a bigger issue than just this one employee (like breach of contract, or whatever), then you can bet your rear end they are coming for IT next. Yes, emails related to a project or topic should be moved into project or topic-related storage, but crappy employees exist and mistakes get made. Email archiving is pretty much a solved issue at this point, so it makes sense to keep it around as last resort backstop. By all means, have a policy on how long you keep stuff for and don't deviate from what the stake-holders decided was appropriate, but to just pull the rug out from under users one day is asking for pain.
|
|
#
?
Aug 7, 2017 23:35
|
|
|
Thanks Ants posted:If you think you need email from before 2009, you're either mistaken or you have a terrible internal knowledge base. Recently went EX2010 --> Google, in academia. There were emails from 1997 that needed to be migrated. E: actually, that's a bit harsh. They were migrated, just because we migrated anything and everything. Free unlimited storage, so why not? CloFan fucked around with this message at 00:11 on Aug 8, 2017 |
|
#
?
Aug 8, 2017 00:02
|
|
|
Our CFO is asking IT to setup a rule in Exchange that all email gets deleted after 1 year. No email older than a year old is to be kept or saved. That'll be fun telling the users that.
|
|
#
?
Aug 8, 2017 00:25
|
|
|
GreenNight posted:Our CFO is asking IT to setup a rule in Exchange that all email gets deleted after 1 year. No email older than a year old is to be kept or saved. Good. People save way too much poo poo
|
|
#
?
Aug 8, 2017 00:33
|
|
|
Kashuno posted:Just finished an Exchange 2010 -> Exchange 365 migration AMA If it gets approved I'll be going through this. Is there a smilie for crossing your fingers?
|
|
#
?
Aug 8, 2017 00:35
|
|
|
We've been on 365 for a day and I like it more than 2010. Syncing things to on-site AD means you better get used to using AD Attribute Editor to change things though
|
|
#
?
Aug 8, 2017 00:38
|
|
|
Kashuno posted:We've been on 365 for a day and I like it more than 2010. Syncing things to on-site AD means you better get used to using AD Attribute Editor to change things though That's why you keep an on prem exchange 2013 server with no mailboxes on it.
|
|
#
?
Aug 8, 2017 01:20
|
|
|
If this project even gets approved I can't imagine I'll be around long enough to manage it. Let the chips fall where they may!
|
|
#
?
Aug 8, 2017 01:36
|
|
|
Thanks Ants posted:If you think you need email from before 2009, you're either mistaken or you have a terrible internal knowledge base. The response to this seems to be "lawyers". This is my first gig in legal IT, and I'm only a few months in, so I don't have a sense yet for what's normal and what's completely insane. I guess I can see needing access to old correspondence for cases that are still ongoing, but isn't that what Filesite should be for?
|
|
#
?
Aug 8, 2017 01:56
|
|
|
you ate my cat posted:The response to this seems to be "lawyers". This is my first gig in legal IT, and I'm only a few months in, so I don't have a sense yet for what's normal and what's completely insane. I guess I can see needing access to old correspondence for cases that are still ongoing, but isn't that what Filesite should be for? Get out. Get out while you still can.
|
|
#
?
Aug 8, 2017 02:16
|
|
|
In the long run it turned out most of those people didn't really need the archived emails. People are God drat hoarders and I don't understand it.
|
|
#
?
Aug 8, 2017 02:48
|
|
|
GreenNight posted:Our CFO is asking IT to setup a rule in Exchange that all email gets deleted after 1 year. No email older than a year old is to be kept or saved.
|
|
#
?
Aug 8, 2017 03:31
|
|
|
We already got users with thousands and thousands of msg files saved to their network drive.
|
|
#
?
Aug 8, 2017 03:49
|
|
|
Started my new job today, old job had their new nepotism hired at a title exponentially higher than his skill level delete the salt config repo today in github. 
|
|
#
?
Aug 8, 2017 04:25
|
|
|
H110Hawk posted:Started my new job today, old job had their new nepotism hired at a title exponentially higher than his skill level delete the salt config repo today in github. How satisfying was rejecting THAT phone call?
|
|
#
?
Aug 8, 2017 04:50
|
|
|
Thanks Ants posted:If you think you need email from before 2009, you're either mistaken or you have a terrible internal knowledge base.
|
|
#
?
Aug 8, 2017 09:25
|
|
|
GDPR is gonna clean up so many mailboxes.
|
|
#
?
Aug 8, 2017 13:11
|
|
|
Kashuno posted:Good. People save way too much poo poo In some cases though it does have merit... I've not deleted any work related email since approx 2008-9 when we migrated over to Google apps. The only exception to this is anything with a large attachment; I delete those, or save them elsewhere. And believe it or not, when dealing with typical office politics, it has saved my rear end on more than a few occasions.
|
|
#
?
Aug 8, 2017 13:39
|
|
|
Collateral Damage posted:2007 for us. We have a 10 year traceability requirement for all customer communication. Technically it only applies to investment advice, but it's easier to just archive everything. Yeah we have a 7 year financial hold requirement for all documentation, but our Finance team prints out everything anyway and archives it via Iron Mountain. Has anybody felt overqualified when interviewing for a position, or is it just me? It could also be me looking at a job with actual reasonable expectations instead of my current one where I play any role between helpdesk and sysadmin/DBA daily. Counting out the days until Friday. They're apparently going to make a decision by then. I'm drafting my thank you e-mail this morning and I'll send it out by lunch. Got a really good feeling that will happen.
|
|
#
?
Aug 8, 2017 13:40
|
|
|
Our pre-sales guy just called a hybrid cloud design "partly cloudy" I like that.
|
|
#
?
Aug 8, 2017 15:09
|
|
|
How  was he when he said that?
|
|
#
?
Aug 8, 2017 15:14
|
|
|
So, I'm going to be doing a list of recommendations for AD best practices in some time, for a big company. I've checked out the main resources that are the results of "Active Directory Best Practices" on Google, but you guys generally know obscure and awesome poo poo. Do you guys know of any guides/books that I can use? I want to establish a plan, separated by sections (AD Topology, Least Privilege for main applications and AD, Deprecated objects, Security Enhancements, LAPS, for example), but I kind of wanted a better structure for this. Has anyone done this?
|
|
#
?
Aug 8, 2017 15:31
|
|
|
https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/plan/security-best-practices/best-practices-for-securing-active-directory You can use that in combination with https://www.ncsc.gov.uk/guidance/end-user-device-security
|
|
#
?
Aug 8, 2017 15:45
|
|
|
Sepist posted:Our pre-sales guy just called a hybrid cloud design "partly cloudy"
|
|
#
?
Aug 8, 2017 16:22
|
|
|
Vargatron posted:How Let's be fair, he's earned the right to be for that one  .
|
|
#
?
Aug 8, 2017 16:40
|
|
|
|
| # ? Jun 12, 2024 10:33 |
|
|
Kashuno posted:We've been on 365 for a day and I like it more than 2010. Syncing things to on-site AD means you better get used to using AD Attribute Editor to change things though I'll be keeping an Exchange server on-prem for service accounts so I guess I can upgrade that from 2010 to something modern. Even if we double in size we'll still be pretty small so I'm not concerned about user management.
|
|
#
?
Aug 8, 2017 17:22
|
|