Systems Administration

Reset windows on a reboot?

Sysadmin - 2 hours 30 min ago

Been googling about but guess my google-fu isn't as good today as usual.

Want the ability to give users quite a lot of access in machines but want the machines to reset to an image or something at shutdown.

submitted by /u/GeoffreyMcSwaggins
[link] [comments]

Finally got the green light to begin removing local admin rights from users machines, looking for advice

Sysadmin - 2 hours 39 min ago

Hi all,

I'm looking for any advice or "gotchas" from folks who have been through this process before, as of right now, every user is a local admin on their company issued device. We're putting together our plan and need to test things out on a few users for ~30 days before we're allowed to go ahead.

All machines are domain joined, and all buildings on our campus are accessible from one another. With that said, our "few test users" are going to be several members of a department that is several miles from our main campus. This building is connected to our LAN, so remote assistance is possible on our end but I don't think it would do any good due to the user no longer having rights.

Obviously there will be growing pains with something like this, just looking for a starting point.

Here are my thoughts, but I'm looking for feedback:

  • Remove Local Admin and Make Local Power User for 2 weeks, if there are no issues, Remove Local Power User rights and test as standard user for additional 2 weeks.

  • Remove Local Admin and Make Standard User with Help Desk technician stationed in office for the entire first day.

  • Remove Local Admin and Make Standard User, and preinstall some sort of application for Help Desk to "approve" installations. (We can leverage SCCM or install via KACE SMA Agent, but I'm not building remote install packages for hundreds of softwares?)

Don't know if I'm over thinking this whole thing, or if I'm justified in trying to protect our end users.

Thanks for any and all advice/criticism.

submitted by /u/VideoGamesAreMyDrug
[link] [comments]

Lords of the DNS remind admins about Flag Day, Juniper likes Watson and more

The Register - 2 hours 41 min ago
PING, PING, PING … it's your networking roundup for the week

Roundup To cure some persistent security, implementation, and performance problems in the Domain Name System, the lords of the DNS have proclaimed older implementations as end of life.…

Email Solution for 200 users?

Sysadmin - 3 hours 1 min ago

I have 200 users, of which 150 need about 20 gigs of storage maybe slightly more. O365 is too expensive for us. I currently use a service for webmail provided my our registrar. The rest of the addresses are really forwards and makeshift 'groups'. Can I do this in-house cheap? I have experience with Linux, not sure if people still run mail servers?

submitted by /u/wolfrollingstoned
[link] [comments]

Help: Authenticate to wireless before login (windows 10 home)

Sysadmin - 3 hours 8 min ago

I have a Windows 10 Home laptop that I would like to automatically connect to my home wifi each time I reboot and prior to logging on.

Note that since the OS is Windows 10 Home, there is no GPO, Radius, or domain. It only has a single user defined. Prior to numerous Windows updates, this was possible.

I would prefer to do this without any 3rd party apps.

Any help would be greatly appreciated!

submitted by /u/lfewarez
[link] [comments]

Anyone got any experience with VMware 5.1?

Sysadmin - 3 hours 18 min ago

We've just updated our domain admin password, and so I'm going through all the various services and updating as needed. I came to the VMware VirtualCenter Server service, updated the details, and then boom the service fails to start so I currently have no access to any of our VMs...

It's all good fun for a Friday

submitted by /u/OhBuggery
[link] [comments]

Lawyers' secure email network goes down, firm says it'll take two weeks to restore

The Register - 3 hours 21 min ago
And could wipe users' inboxes during that fortnight of faffery

Barristers and court prosecutors have been left scratching their heads this morning after Egress Technologies' CJSM email system went down – with the firm saying it could take up to a fortnight to fully restore it.…

Reset password web page?

Sysadmin - 3 hours 36 min ago

Hello r/sysadmin,

I need to implement a way for users to change their domain password from outside the office. What would you suggest? Unfortunatly I'm given an impressive budget of $0 so paid products are not an option.

Thanks.

submitted by /u/as96
[link] [comments]

3 layer network architecture?

Sysadmin - 4 hours 6 min ago

In your opinion, how well thought out is the 3 layer network architecture?

So far I like it but I am willing to listen to cons and pros. The only con I can think of is the cost right now. But that can be mitigated with its 'sister' collapsed core architecture.

submitted by /u/Irkutsk2745
[link] [comments]

Smoke coming from Server Room

Sysadmin - 4 hours 11 min ago

3rd party Engineer working in the server room

Smell something

Check

HE'S FUCKING VAPING!

What the actual FUCK!

submitted by /u/TalTallon
[link] [comments]

Reading through the CIS RHEL7 benchmark - they switched from recommending firewalld to recommending iptables, why?

Hi all,

I'm going through the CIS Red Hat Enterprise Linux 7 benchmark documentation, implementing anything relevant. I noticed in the latest version, v2.2, they recommend using iptables. This piqued my interest as we've been using firewalld since the RHEL7 release.

Going back, they recommended firewalld in the v1.x documentation but switched to iptables in v2.x.

Anyone have any idea why this might be?

Thanks in advance.

submitted by /u/andrewrmoore
[link] [comments]

Help diagnose cause of crash from recovered logs and data

Sysadmin - 4 hours 16 min ago

I had a lightsail instance where I ran a flask webapp with gunicorn and nginx. AWS had a hardware failure and rebooted the instance. After that I could not SSH into the instance in any way and the website was down. They helped me recover the data and I have access now to the previously inaccessible instance.

I downloaded my project repo and the `/var/logs` files but unsure where to start to understand what was the root cause of such a massive failure, i.e. a simple restart bricked the instance (it wasn't an SSH only problem).

I want to avoid that my current instance runs into the same issue. What should I look at to narrow down the cause of failure?

submitted by /u/finloa
[link] [comments]

Migrate DC to VM using Disk2VHD recommend or not?

Sysadmin - 4 hours 19 min ago

I have a small network with 2-4 users and we have 1 DC (yes I know we should have 2 or more but no budget currently). So we are looking to move the DC onto a VM so its easier to manage and its currently on an old machine which could give up any minute.

Is it recommended to use Disk2VHD to move it as theres only 1 DC or will this cause issues? Should I be setting up a new DC and then decommissioning the old one?

submitted by /u/entertheunkown96
[link] [comments]

I used to be a dull John Doe. Thanks to Huawei, I'm now James Bond!

The Register - 4 hours 20 min ago
We'll know for sure when Huawei reveals a shoe-shaped smartphone

Something for the Weekend, Sir? The name's McLeod. Alessandro McLeod. I am a spy for the secret services.…

How can I disable the "disconnect" wifi button with GPO's / Regedit?

Sysadmin - 4 hours 28 min ago

Hi all, How can I disable the "disconnect" wifi button with GPO's / Regedit?

I know how I can add a network profile through Group Policies.

There are also a few options at User Configured / Administrative Templates / Network/Network Connections but nothing like my question.

Anyone? or is it impossible?

submitted by /u/baswijdenesdotcom
[link] [comments]

Issue: Only iPhones can't connect via wi-fi to Mikrotik router .

Sysadmin - 4 hours 30 min ago

I'm no mikrotik/network expert. I'm basically stuck with this and I'm not sure if this is the right sub/r . Only iPhones can't connect to this network. Any help would be appreciated.

submitted by /u/ErLabi247
[link] [comments]

SEEKING ADVICE!

Hello everyone,I am about to start my semester and planning to to specialisation in cloud computing.Any particular language that i should learn which could give me an edge or any particular certification that i i should give for my own advantage(career wise)?

submitted by /u/helpnhelper
[link] [comments]

Office 2019 installation ISO question

Sysadmin - 4 hours 49 min ago

Hello, company I work at are gold partners with microsoft, and we've just got MAK keys for office, vision and project, the problem is - no installs. I have managed to download deployable package with ODT, but I don't want to install Office through cmd, I would prefer an .iso so that the users could install it themselves when they need to. Anyone might know how to get those isos ?

submitted by /u/Mysteriousbucket
[link] [comments]

At 900k lines of code, ONOS is getting heavy. Can it go on a diet?

The Register - 4 hours 53 min ago
'Net greybeard Douglas Comer talks SDN with El Reg

Interview Software Defined Networking (SDN) has changed the landscape of networking, but along the way it has created its own problems. Doug Comer of Purdue University thinks disaggregating SDN controllers like the Open Source Network Operating System (ONOS) could be a way forward.…

Pages