• 4 Votes
    15 Posts
    3k Views
    scottalanmillerS

    @dashrender said in Server 2012 R2 not installing Updates:

    @scottalanmiller said in Server 2012 R2 not installing Updates:

    @dashrender said in Server 2012 R2 not installing Updates:

    Of course though - this thread is about Windows Server, not desktop - where this should be MUCH less of an issue with properly designed code.

    Same code, they don't make it twice. Less hardware hotplugging, but probably just as many lines of code in use.

    Less desktop apps on the platform, but you're right - the base code is the same.

    Fewer desktop apps, maybe. But in the Windows world, server often is treated as a desktop (like 90% of the time) so the reduction is rarely what you'd hope. And there tends to be lots of server-only code too, often running as desktop apps.

  • Reboot on ping loss

    31
  • Will faxes ever die - cheapest way to forward a DID

    53
    0 Votes
    53 Posts
    4k Views
    DashrenderD

    @oliverparker said in Will faxes ever die - cheapest way to forward a DID:

    It is very hard to say that whether they will die and remain out of the market. Such inventions are the ones which become the part of people everyday's routine. The Assignment Help UK Cheap services also have individuals in the team which produce the assignments after deep and thorough research to help the individuals lay the foundation for various inventions etc.

    it may never die 100%, just like VHS and Betamax players are still out there and used by few.

  • UniFi Network With "Isolated" Access Points and Extenders

    9
    0 Votes
    9 Posts
    2k Views
    DashrenderD

    Extenders aren't really the answer.

    If you can't do real ethernet - I'd consider using ethernet over Power to get another or two wired level APs around that place.

    You've mentioned that the construction is rather dense - you're halving the max bandwidth each time you setup an extender (half of max for a given extender, etc) - moving back to wired will bring about your best results.

  • CVE-2017-8563 Ldap Enforce Channel Binding

    1
    1 Votes
    1 Posts
    154 Views
    No one has replied
  • free clone/imaging solution needed

    12
    0 Votes
    12 Posts
    1k Views
    J

    @gjacobse said in free clone/imaging solution needed:

    There are a few options and that aren't that difficult

    CloneZilla
    While Linux based - is not difficult to use, and if you follow the prompts (Read them unlike me) It's easy.

    I use CloneZilla with CloneZilla SE (Server) to do this. Just make sure you can boot to PXE or leave a USB onsite for other people to stick in and power on.

    Hint: With Wake-On-Lan and PXE we reimage PCs at schools all the time without ever going there. Takes only a few minutes to get a PC back up and running. πŸ˜€

  • Adding Public Location to Outlook Appointment / Meeting

    2
    0 Votes
    2 Posts
    370 Views
    DashrenderD

    Have you tried putting in the address?

  • Zerotier issues

    3
    0 Votes
    3 Posts
    497 Views
    1

    @adamf said in Zerotier issues:

    Weird

    Not particularly weird at all. All services have outages, partial or full.

    Could be anything. Redundancy doesn't prevent outages when the redundant nodes have a common failure mode - such as running the same software or being centrally automated by the same thing.

  • ZeroTier & Security

    15
    1 Votes
    15 Posts
    1k Views
    S

    @pete-s said in ZeroTier & Security:

    @scottalanmiller said in ZeroTier & Security:

    @pete-s said in ZeroTier & Security:

    @notverypunny

    If you assume that being connected to an ZeroTier network is the same as having the host sitting directly on the internet, you'll be fine.

    That is the basic premise of the zero trust security model - assuming that the network is hostile.

    Ding ding, exactly. It's a connectivity tool, not a security tool. The security has to be provided normally. Any ZT provided security, is purely extra.

    Yes, and when it comes to security ZeroTier, as any other VPN, shows up as a virtual network adapter. So you can apply the OS' firewall like you could on any network adapter.

    And the ZeroTier network itself also has some limited L2 rules to control the traffic, similar to a switch. It lacks tcp sessions and other things though so it's not like a real router/firewall.

    There is also the possibility to connect ZeroTier to a compatible firewall and not the host directly.

    I'm running OPNSense at home and have the plugin working and connected to a client's PC's from my house.

    Works great.

  • Looking for a remote access solution

    22
    0 Votes
    22 Posts
    4k Views
    scottalanmillerS

    @dashrender said in Looking for a remote access solution:

    @scottalanmiller said in Looking for a remote access solution:

    @jaredbusch said in Looking for a remote access solution:

    @dashrender said in Looking for a remote access solution:

    @jaredbusch said in Looking for a remote access solution:

    Put zerotier on the box in the DC and the user's box. restrict it to only RDP.

    Done.

    I really like this - sadly - our insurance policy requires MFA for remote access. I'll have to see if ZT has anything for that.

    Then put the 2fa on the Windows RDP login with a service like Duo.
    https://duo.com/docs/rdp
    https://duo.com/editions-and-pricing/duo-free

    Just use ZT to lower (all but remove) the attack surface.

    That would get them up to 3FA (which isn't a bad thing) assuming ZT isn't somehow tied to some other authentication mechanism.

    As it's been AGES since I've used ZT - can you make the user have to log into it each time they launch it? If yes - and it's logon isn't associated with AD (as you mentioned) then OK - I see how you consider ZT and RDP MFA.

    The user can be forced to start or stop the process. The fact that it uses a key (something you have) owned by the user makes it MFA regardless of if they automate the login or force it to be manual.

    Don't try to compare it to Duo or something like that which uses "something you have" to generate "something you know." Compare it to a security USB stick like YubiKey. It's a direct "something you have" 2FA in that sense.

  • VDI Options - Modernization

    76
    1 Votes
    76 Posts
    7k Views
    scottalanmillerS

    @dashrender said in VDI Options - Modernization:

    @scottalanmiller said in VDI Options - Modernization:

    @pete-s said in VDI Options - Modernization:

    @scottalanmiller said in VDI Options - Modernization:

    @pete-s said in VDI Options - Modernization:

    I'm not talking cached files here but client side databases and local storage as defined in html5. Another reason you might insert VDI into the chain.

    Worth pointing out that this "should be" a configuration thing and not something you need heavy VDI to work around. But here in the real world, it isn't always configurable and VDI can be used to deal with that.

    Yeah, it depends entirely on what the html/javascript code looks like. Which in most cases depends on what framework was used.

    It was easier to keep track of the data when a html browser was as dumb as a vt100 terminal.

    Wanna take bets that a new "HTML-lite" protocol surfaces that has modern GUI and graphical components, but none of the heavy data-handling components so that people can be confident that no data leaks beyond what is seen on the screen?

    why did some move away from that model in the first place? to put the processing power onus on the end user?

    Oh it makes TONS of sense. If you saw every day apps built both ways side by side you'd chose this "every" time. First, it saves the hosts and the ISPs tons of money because it shifts lots of processing power out to the end units where typically there is loads of excess power. Why do something in an expensive way when there is a free way waiting to be utilized?

    Second, it makes websites a lot faster. I mean a LOT faster. It means you can do lightning fast calculations without waiting for long internet round trips, you can cache data, etc.

    Third, you can work offline. People always complained that apps were unable to work offline. This is what allows things like email or document editing when you still lose your Internet connection, and what allows many things to keep working when your Internet might be flaky.

  • UniFi Wi-Fi Has No Internet

    16
    0 Votes
    16 Posts
    3k Views
    garak0410G

    Thanks for the suggestions, help and talking it through...it is always something simple and overlooked.

  • MS Teams file attachments and changing primary email address

    8
    0 Votes
    8 Posts
    2k Views
    scottalanmillerS

    @gus said in MS Teams file attachments and changing primary email address:

    It’s good that MS is upgrading Outlook to make it work better with Teams work. let's see what happens

    Or people could catch up to 2003 and have everything fully integrated already like all of MS' competitors have had for nearly two decades now, lol. The use of Outlook remains pretty silly and it would be better if no one cared rather than MS trying to shoehorn Teams into a product that people shouldn't be deploying.

  • Looking for MICR check printing software that doesn't suck

    6
    0 Votes
    6 Posts
    840 Views
    dave247D

    Turns out I would also need proper MICR font, like this https://www.1001fonts.com/micr-encoding-font.html

  • printing notes section of Calendar Outlook on the web

    6
    0 Votes
    6 Posts
    1k Views
    DashrenderD

    @pete-s said in printing notes section of Calendar Outlook on the web:

    @dashrender said in printing notes section of Calendar Outlook on the web:

    I have a user who wants to print what's written into the notes section of a calendar entry. Unfortunately, it's more than one page, and when you ctrl ^ P you only get the first page worth.

    Outlook-on-the-web is pretty thin on printing features. I logged in and tried a couple of different ideas but couldn't find a way to print a long event description either. It is what it is I guess.

    We use Zoho primarily and as a comparison Zoho's calendar lacks rich text formatting in the description but render links and will print multiple pages of description - if you pick print while viewing an event, not ctrl+p.

    Gmail on the other hand will also print several pages of the description - if you pick print on an appointment, not ctrl+p. It supports rich text formatting but will drop the formatting when printing.

    Thanks for looking - I'm definitely not changing systems just for that function - but perhaps that will be helpful for someone else.

  • Remembering the MCSE+I

    4
  • 1 Votes
    4 Posts
    10k Views
    scottalanmillerS

    @justal said in Create a New User on macOS from the Terminal Command Line:

    @scottalanmiller Hi Scott, thanks for the post, unfortunately this works not on Mac OS X Mojave. I'm able to create a user but not able to login with this user account. It stucks after the login prozess. Is there any workaround?
    Thanks!

    I switched offices for a couple days to one where I'm on Ubuntu rather than my Mac. I'll look into it once I'm back to my Mac.

  • Chrome OS Flex

    5
    0 Votes
    5 Posts
    578 Views
    jclambertJ

    @gjacobse It is not compatible. There was another project out there that was ARM compatible. I think it fizzled or was bought by Google several years ago now. Sigh

  • Free Hosted Help Desk?

    19
    1 Votes
    19 Posts
    1k Views
    1

    @gjacobse said in Free Hosted Help Desk?:

    "Free Hosted" doesn't mean it's the right thing. But in many cases - you can beat it to work for you. Just depends on the work and stress you want to deal with, what you want to give up and what you will never have..

    I'd go as far to say that the "free" version is seldom the right thing. Often the reason to look for a solution in the first place is to become more effective and spend less time on something. Just stepping up to the first paying tier usually gets you a lot of features that will save you time for a very modest monthly cost.

  • Ubiquiti Edgemax Router

    12
    0 Votes
    12 Posts
    1k Views
    DashrenderD

    @adamf said in Ubiquiti Edgemax Router:

    @jaredbusch said in Ubiquiti Edgemax Router:

    @adamf said in Ubiquiti Edgemax Router:

    Makes no sense. I have a feeling that something is buggy in the firmware.

    What makes no sense is that you think it is firmware.

    Just throwing out ideas because it doesn't make logical sense to me. Any thoughts as to what else it could be? Why would the device reply to pings for an hour after reboot, then suddenly stop?

    Any chance your ISP is what is blocking you?