Systems Administration

Potential issues with using Domain Controllers for other services?

Sysadmin - Thu, 11/15/2018 - 09:31

I’m looking to compile a list of corroborative reasons it’s not a good idea to use the only 2 (physical) domain controllers in the org for a bunch of other stuff such as MDT/WDS, File and printer servers, PDQ Deploy and Inventory, Backup repository for workstations, helpdesk tools, software share repository, etc.

submitted by /u/Adminim
[link] [comments]

Microsoft and Glasswall Collaborate on Azure and O365 - Virtualization Information - Thu, 11/15/2018 - 09:31
Glasswall has developed a uniquely effective, award-winning and patent-protected Deep-File Inspection, Remediation and Sanitisation Technology - d-FIRST - a disruptive methodology for the prevention of malware and understanding of organizational risk from file-borne cyber-attacks....(read more)

DDN Storage Powers Research Beyond the Earthly Data Center - Virtualization Information - Thu, 11/15/2018 - 09:28
DataDirect Networks (DDN) announced that NASA's Mars InSight lander, which is preparing for arrival on Mars on Monday, November 26, to conduct an in-depth study into the crust, mantle and core of Mars, is being supported by DDN solutions to manage the intensely important information linked to the mission....(read more)

Cohesity Research Underscores Critical Challenge Facing Enterprises in a Data-Driven Economy: Mass Data Fragmentation - Virtualization Information - Thu, 11/15/2018 - 09:25
Cohesity announced the results of a global survey that validates a critical problem plaguing enterprises around the world: mass data fragmentation. ...(read more)

Find Win10 embedded licenses on network?

Sysadmin - Thu, 11/15/2018 - 09:23

Upgrading all machines to Win10 soon. I have quite a few that came with a Win10 upgrade license embedded along with the installed Win7. Is there any tool to discover, on the network, which machines already have a win10 license.. so I can determine how many licenses I need to purchase or how many computers to replace?

Of course, I don't want to walk around to all of them and run a keyfinder or whatever. Is there a remote network "keyfinder" type thing?

submitted by /u/sknnypup
[link] [comments]

OpenStack: We've seen the future, and it's metal (and infrastructure, natch)

The Register - Thu, 11/15/2018 - 09:20
No need to learn Mandarin, we collaborate in English

OpenStack Summit The OpenStack Foundation took to the stage in Berlin this week to talk infrastructure because, heck, everyone loves infrastructure, right? Especially open infrastructure.…

Intel Unveils the Intel Neural Compute Stick 2 at Intel AI Devcon Beijing for Building Smarter AI Edge Devices - Virtualization Information - Thu, 11/15/2018 - 09:19
The company kicked off the event with the introduction of the Intel Neural Compute Stick 2 (Intel NCS 2) designed to build smarter AI algorithms and for prototyping computer vision at the network edge....(read more)

iboss Announces Integration with Microsoft Cloud App Security - Virtualization Information - Thu, 11/15/2018 - 09:17
iboss announced an integration partnership with Microsoft Cloud App Security (MCAS). The partnership allows organizations to leverage Microsoft Cloud App Security in a more powerful way by integrating it with the iboss cloud....(read more)

Silverfort Partners with Check Point to Deliver Threat-Driven Multi-factor Authentication (MFA) - Virtualization Information - Thu, 11/15/2018 - 09:16
Silverfort announced that it has partnered with Check Point Software Technologies Ltd. to enable customers to respond to detected threats in real-time by stepping-up authentication. The joint solution enables unparalleled risk-based adaptive authentication throughout the organization....(read more)

Activating Windows with GenuineTicket.xml

Sysadmin - Thu, 11/15/2018 - 09:04

Good day folks,

we've probably all heard about activating Windows with the GenuineTicket.xml trick. My question is: can a company use that trick legally without any problems? We have around 100 machines running Windows 7 Pro which need to be upgraded to 10 soon.

submitted by /u/cashida
[link] [comments]

OEM deployment

Sysadmin - Thu, 11/15/2018 - 08:54

So my new director thinks he is a "visionary" and instead of using a custom image with lock downs and tweaks he wants to deploy OEM windows with bloatware for "performance stability" because he hasn't had any of the issues as some of the other execs that use our deployment image. I find this lazy and gross because our tweaks help keep the computer safe and secure.

submitted by /u/hyper_boreans
[link] [comments]

Took over SMB IT Department from an MSP. Looking for software solutions to make my job easier

Sysadmin - Thu, 11/15/2018 - 08:52

Hi All,

About 5 months ago I took over as the IT person for a manufacturing company of over 50 people. In that time I have become very well acquainted with our stack and started to clean up systems, patch up pain points in the infrastructure, and streamline processes. In the next month or two my boss and the CEO are very interested in taking the MSP out of the equation, except for backup purposes when I'm away or genuinely stuck. Basically, this is the time to get them to spend money on new, and helpful IT services.

I already have everything planned out in terms of anti-virus, backup solutions, system monitoring, and intrustion detection. I'm looking for suggestions on other things or services that might make my job easier or make the IT department work smoother. Things like PDQ Deploy. What would you guys suggest?

submitted by /u/SOSovereign
[link] [comments]

IDS configuration: how specific do you get?

Sysadmin - Thu, 11/15/2018 - 08:50

I'm tasked with setting up AIDE on our Ubuntu servers. It's my first time setting up an intrusion detection system and I'm finding it kind of a slog. The recommended process, as far as I can tell, is to start off flagging pretty much everything (with just the default rules that come with the OS's AIDE package) and iteratively add rules until the daily reports are quiet in normal operation.

But it seems to never really settle down. Every day there's some new set of files that get legitimately modified for the first time since I installed AIDE.

It is tempting to put coarse-grained "ignore" rules in place targeting some of the directories where this happens a lot, but of course the broader the set of exclusions, the more places an attacker can hide malicious scripts, etc.

I guess my goal here matters: We're not doing this for compliance reasons, but rather to harden our systems against possible attacks. So I'm free to choose how strict the configuration is, but I'd like it to actually have useful security value rather than just being a formality that checks off a box on an auditor's checklist.

What approach do you take here? How do you balance reducing administrative overhead with maximizing the coverage of your IDS?

submitted by /u/koreth
[link] [comments]

Instaclustr 2019 Predictions: DBaaS Providers Turn Attention to Containerization - Virtualization Information - Thu, 11/15/2018 - 08:41
Here's what the industry ought to expect from the DBaaS ecosystem in 2019: ...(read more)

[HELP] Add a todo to Microsoft To-Do

Tasker: Total Automation for Android - Thu, 11/15/2018 - 08:32

I am trying to create a task in Microsoft To-Do via android. How can I do this? Should I use the Outlook Api or is there any intent that can achieve the same? If I should use the api can someone help me to set up in Tasker?

submitted by /u/abinmn619
[link] [comments]

iManage 2019 Predictions: How Security Threats Will Be Addressed in 2019 - Virtualization Information - Thu, 11/15/2018 - 08:22
Since the dawn of this century, you have heard a consistent drumbeat: "Make sure your machines are patched", "Make sure your Wi-Fi is secure", "Make sure you have a firewall on the perimeter of your network"....(read more)

profile active, but task doesnt run

Tasker: Total Automation for Android - Thu, 11/15/2018 - 08:21

ok, i have this super simple profile... wifi near(my work wifi) runs a vol down task that turns my notification volume to 2 and my ringer to 4... with an exit task of turning them both back up.

now here is the issue... 40% of the time i come in to work and when i eventually get a notification i all of a sudden get my ears destroyed from a loud notification... i check my phone, wifi connected, open tasker(or check notificationpull down)... my profile is green and active... but if i open my volume settings, the volume hasnt been turned down.

if i go into the task and click play, it turns them to the appropriate levels.

so why is my task not actually running, even though the profile is active.

submitted by /u/ushutuppicard
[link] [comments]

Backup Exec 15 problems w/incremental backup

Sysadmin - Thu, 11/15/2018 - 08:20

I have inherited a Backup Exec 15 installation where with a particular Hyper-V server the first incremental backup always falls back to the full option. The subsequent incremental backups for the week will be incremental as usual. Anyone ever run into this problem or have ideas on how to solve it? I really haven't been able to find anything remotely helpful on the net.

submitted by /u/smith_x_tt
[link] [comments]

Mi 8 Pro: Xiaomi early buyers wait for modern firmware

The Register - Thu, 11/15/2018 - 08:18
Xiaomi your underpants: When will the UK market get its branded undies?

Prospective phone buyers may want to wait before plumping for a new Xiaomi. The newcomer’s flagship ships with MUIU 9 firmware, which is stuck on 2017’s Android Oreo.…