Sysadmin

This is an automated archive.

The original was posted on /r/sysadmin by /u/slisklotta on 2023-08-18 10:54:50+00:00.

Hi,

As the topic says we have a user that wants a name change and works withing our QA department and now they are asking if the name change will affect the past signed documents with a name update or will it still use the past used username?

We are signing with docusign.

I have no idea, my guess is that it shouldnt affect past signs but i can't find any info on it.

This is an automated archive.

The original was posted on /r/sysadmin by /u/smaxxx1337 on 2023-08-18 10:25:58+00:00.

Of course they have edge routers with BGP and core switches and so on, but I am more interested in the hypervisor networking.

They probably have a huge amount of hosts running a hypervisor technology like KVM with VMs running on it.

My question is how did they setup the network regarding this topic?

Do they have a bridge running on the hypervisor that interconnects all VMs together? Wouldn't that be insecure because VM 1 could potentially sniff / spoof VM 2 network?

Are they using the host as a kind of router (also known host-routed mode) where VMs are separately connected?

Does every VM have its own VLAN? Probably VXLAN I guess if so, because VLANs are limited at 4094. VXLAN at 16 mil.

Are there any whitepapers on this? The nearest thing I found was from DigitalOcean, but they do only talk about the network itself:

As example, if you do a traceroute on a hetzner VPS you always see _gateway (172.31.1.1) as first hop, but the public IP of the VPS has /32 configured. How?

This is an automated archive.

The original was posted on /r/sysadmin by /u/AutoModerator on 2023-08-18 10:01:46+00:00.

There is a great deal of user-generated content out there, from scripts and software to tutorials and videos, but we've generally tried to keep that off of the front page due to the volume and as a result of community feedback. There's also a great deal of content out there that violates our advertising/promotion rule, from scripts and software to tutorials and videos.

We have received a number of requests for exemptions to the rule, and rather than allowing the front page to get consumed, we thought we'd try a weekly thread that allows for that kind of content. We don't have a catchy name for it yet, so please let us know if you have any ideas!

In this thread, feel free to show us your pet project, YouTube videos, blog posts, or whatever else you may have and share it with the community. Commercial advertisements, affiliate links, or links that appear to be monetization-grabs will still be removed.

This is an automated archive.

The original was posted on /r/sysadmin by /u/mobohasfleas on 2023-08-18 09:59:50+00:00.

Hi all

Small one but it's driving me nuts. Don't have any official support for the device and in a tricky spot since it's not working, can't sign up for any.

Currently have a a Kodak 730ex scan station that will not boot properly. It just goes to a black screen. Can see mouse moving about, nothing else. Can get it to boot into bios but device has an unknown password that Kodak support will not devulge.

Tried checking manuals and various Google searches but these devices seem to be neiche and not used much.

Long shot but does anyone here have any experience with these devices and have any suggestion what to do next?

Cheers

This is an automated archive.

The original was posted on /r/sysadmin by /u/agricoltore on 2023-08-18 09:48:53+00:00.

So one of the senior managers at my org has come to me this week asking for a tool to do sentiment analysis on the content of a backlog of more than 800 customer service emails. Do any folks here have any recommendations for such a task?

Unfortunately they don't use any kind of content management tool or ticketing system, they are literally emails in a shared mailbox. I've been trying for years to get them to change that, but to no avail. Any advice is hugely appreciated, as I've become a bit lost in my research so far.

Thanks in advance

This is an automated archive.

The original was posted on /r/sysadmin by /u/HahaIOwnedYou263 on 2023-08-18 08:49:14+00:00.

I am looking for a GPO that blocks the Credential Manager from working. I remember at one of my ex-companies we had this GPO that would make CM not run at all when the standard user tried to run it from the search bar. There wasn't any specific error message popup, it just wouldn't be launched.

But the problem is I can't remember the name of the GPO and don't know where to find it, and google ain't helping either.

Can someone help?

This is an automated archive.

The original was posted on /r/sysadmin by /u/Outside-Umpire6079 on 2023-08-18 08:47:20+00:00.

There is a glassfish service and the admin portal can be accessed on port 7006. It allows both http and https traffic. What is the easiest way to disable http traffic on this port ?

This is an automated archive.

The original was posted on /r/sysadmin by /u/TerryWoganJnr on 2023-08-18 08:31:21+00:00.

Trying to setup a machine for a user. We have auto pilot profiles setup and when adding their corporate email address in it going to check updates and then loops back to put the email in again. Anyone had this at all???

This is an automated archive.

The original was posted on /r/sysadmin by /u/yamamsbuttplug on 2023-08-18 07:46:15+00:00.

Hello,

I'm in the final day of a printer rollout project and we have decided to move away from scanning to folders, opting for scanning to email instead.

I was speaking to a staff member late last night about this and he wasnt very happy with the change, I understand some people just dont like change... I got him to show me his process and what he has to do after scanning. In his defence, scan to email does involve more work for the users.

the reason for moving away from folder scans is mainly due to moving into azure files, and wanting to save storage costs. I'm abit unsure If I should push back to my manager and see if network scanning could be possible the cost would be extremely minimal, but really unsure of the security implications.

Any advise?

This is an automated archive.

The original was posted on /r/sysadmin by /u/Busy_Reporter4017 on 2023-08-18 07:40:25+00:00.

Do Seagate Exos hard drives support instant secure erase or encryption at rest? I can't find the information in the datasheet. There is a good deal locally now on the 14TB Exos model ST14000NM001G.

This is an automated archive.

The original was posted on /r/sysadmin by /u/QuestConsequential on 2023-08-18 07:31:11+00:00.

So our netadmin, who has been in burnout for nearly a year, has put in production over 50 VyOS running on consumer grade desktops to establish remote site vpns. Brilliant savings.

Our current netadmin is "not really trusting" that our nagios host status duration changes dues to soft down alerts that do not yet explicitly notify of a downtime. Sure, the pings are wrong.

Meanwhile some 700+ users are using rds over those janky remote site vpn, some of which are as bad as the provided capture : . They don't call for help anymore.

Apparently old netadmin usually blamed old sysadmin for unreliable rds. Of course both went in burnout.

Understaffed. Mistreated. Unhappy. Out of my depth. Scattered.

Anyone relates?

This is an automated archive.

The original was posted on /r/sysadmin by /u/G883 on 2023-08-18 06:18:18+00:00.

Someone appears to have big brained at Microsoft and is routing all their emails via office 365. However their SPF doesn't include them servers!

FROM: IP: SERVER

hotmail.com 104.47.108.158 kor01-sl2-obe.outbound.protection.outlook.com

hotmail.com 40.92.62.155 aus01-sy4-obe.outbound.protection.outlook.com

hotmail.com 40.92.63.164 aus01-me3-obe.outbound.protection.outlook.com

hotmail.com 40.92.45.82 nam04-dm6-obe.outbound.protection.outlook.com

hotmail.com 40.92.63.157 aus01-me3-obe.outbound.protection.outlook.com

wooo!

This is an automated archive.

The original was posted on /r/sysadmin by /u/ReactNativeIsTooHard on 2023-08-18 05:02:19+00:00.

So just a general poll, how many of you are actually willing to fix an non-work related problem with an employee’s personal phone? I’ve got quite a few people at my job who come to me asking me to fix their phones or tablets because “x doesn’t do y anymore” or their photos aren’t showing up, or don’t know something. I’m starting to think I should implement a personal policy of not working on personal device problems like that to avoid liability and other things

This is an automated archive.

The original was posted on /r/sysadmin by /u/mfessl on 2023-08-18 04:25:18+00:00.

Hello,

does anyone have any idea why Microsoft's HEVC (H.265) Video Extensions has so often vulnerabilities?

I have stopped counting, but by now there must have been a double-digit number of remote code execution vulnerabilities alone.

Btw... the latest one is CVE-2023-38170.

What is the reason for this?

What is so special about these extensions?

Thanks and greetings,

Martin

This is an automated archive.

The original was posted on /r/sysadmin by /u/thejonson on 2023-08-17 15:14:47+00:00.

So I'll try to keep it brief, but...

K-12 Customer decided to shutdown an old physical DC without checking what it's roles were, and it's been off now for 58 days. Of course it was the FSMO role holder!

Situation is now there are 2 remaining DCs (one physical Server 2019, one virtual Server 2012R2) that now haven't been able to speak to it or each other for the same 58 days. I've removed the old server from AD and have seized the FSMO roles on the VM with idea being that its more portable as a VM, however now I'm in a scenario where DNS no longer works as it can't read the AD partitions (Event ID 4007), opening the DNS snap-in just gives an Access Denied error.

What's people opinions on where to go next?

Option 1 - Restore a backup of the virtual DC to a lab so I can test things there, with the idea that I try and remove the other DCs and get a fully operational single Virtual Domain controller that I could then in theory drop in to the production network. Which is what would be required if it was a full DR scenario with the whole site being blown away.

Option 2 - Battle through trying to get the 2 "working" DCs in sync. So far it doesn't look good, I found an article about resetting the DCs computer password, which seems risky (but at this point what isn't).

I've tried added the names/IPs to the hosts file just to get the servers to be able to resolve each other, as you can nslookup anything as DNS isn't loading the partitions. But this hasn't improved anything.

Any pointers for recovering an entire dead domain would be much welcomed.

The original post: /r/selfhosted by /u/AC_Astro on 2024-05-18 00:30:46.

Planning on building a home server and thought I could self host a VPN with it but its still a ways away from coming to fruition. I really like ProtonMail, much better than Gmail (spyware). I don’t use most of a vpn’s countries so thats not a big concern.

Currently have SurfShark but its been kind of trash lately and no port forwarding / torrent support, my question is, what are the key differences, pros & cons of either one and is it worth switching to proton permanently / temporarily until Project server comes online?

This is an automated archive.

The original was posted on /r/sysadmin by /u/Plane_Garbage on 2023-08-18 00:50:04+00:00.

I'm in a school district that centrally managed most things. YouTube Live is blocked for good reason. However, there is a need for us to bypass this for an educational live stream coming up for a staff meeting. Aside from hotspotting, is there any way to bypass this for one stream?

I'll ask our district help desk but tickets are rarely answered.

This is an automated archive.

The original was posted on /r/sysadmin by /u/2muchvolcano0 on 2023-08-17 23:30:15+00:00.

My job didnt exist when I was hired and just kinda became. Im not even sure if my title makes sense or if Im paid accurately. Im scared there are several people who frequent this reddit who will know who this is, please dont out me. Also please excuse any typos or formatting, on mobile, had a few.

Company: couple billion in rev

7 yrs with company, hired as cyber analyst 3 years, promoted to cyber engineer for the last 4.

2 associates, general ed and network technician.

Certs : A+ ( Expired), PC Pro (Expired), CCNA RS (expired), CCNA Security (Expired), CEH (Expired), ITIL (Expired), GICSP (Expired), zscaler basic ( NOT EXPIRED!) Im sorry but Im sick of paying all these orgs just to admit I passed their test I already paid for.

Experience:

All things PKI, Multi-tier PKI w/dual mdm connectors, including distribution policies and assisted with ISE EAP-TLS deployment via AD and Intune.

All things filevault and bitlocker, including key escrow.

Front end ssl and protocal configuration in major web services. IIS, apache, tomcat, nginx, etc.

Migrated ADFS to Azure AD and manage all external connections to SAML, OAUTH, GRAPH, SCIM, External facing LDAPS for SaaS.

Managed and maintain a zscaler ( non private access) deployment.

Built and manage virtual palo firewalls providing data center edge and VPN as well as on sight physical appliances.

Multiple AV deployments currently the Full M365 stack. MCAS, IDENTITY, ENDPOINT. ETC

Manage azure conditional access

Oversee AD to Azure and HRIS provisioning.

Migrated skype on prem to skype in the cloud to teams ( with help. Thank you! You know who you are)

Migrated exchange online.

Assisted migrating SharePoint online.

Siem deployments in logorythm and now Sentinel.

Manage all audit configuration on everything and SIEM forwarding.

Physical security backend. Badging, cameras, storage, licensing.

SAP IAS (I hate you)

Things I assist in but dont run today... ISE, SDWAN, MPLS, VMWARE, AZURE NETWORKING, VEEAM, SOLARWINDS, DNS, AD, GP, INTUNE (i am not calling this MEM until they update their own damn urls), JAMF, Apple DEP, Trend Micro, D4IOT, Hyper-v, SAP connections from on-prem to cloud.

My day to day is configuring anything someone didnt understand when i asked them to do it. Managing and MSP SOC, Security based project deployment in their entirety, and sitting in on all non-security projects as and advisor.

Today I earn 138k with a 20 percent comp pakage that regularly pays out full. Hyrbid, 2 days onsite.

Thoughts? Im sure this missed a lot.

This is an automated archive.

The original was posted on /r/sysadmin by /u/captahab52 on 2023-08-17 21:45:09+00:00.

Any experience with this? Moved client to ProofPOint and they're not a fan.

How much of a pain is it to move the archived emails from ProofPoint to Barracuda? (i now what a pain it is to move archives from barracuda to proofpoint, really hoping its easier the other way.)

This is an automated archive.

The original was posted on /r/sysadmin by /u/MekanicalPirate on 2023-08-17 21:01:53+00:00.

Looking for some confirmation I'm thinking about this correctly.

If we are using Exchange Online for email delivery and already have include:spf.protection.outlook.com as a lookup, we don't need our own IP block as an ip4 lookup because emails will never be sourced from on-prem due to the use of Exchange Online.

Is that correct?

TIA,

MP

This is an automated archive.

The original was posted on /r/sysadmin by /u/Hollowpoint357 on 2023-08-17 19:52:26+00:00.

Banging my head trying to figure this one out. We got a shipment of Lenovos in, they're Gen3 Lenovo P15v models. They're stock Windows 11, and during our prep process we noticed that software installations are moving incredibly slow. Like Adobe Acrobat taking 25+ min slow. This is what we've done so far:

OS Updates

Vantage for business updates

Firmware Updates

Fresh Win11 install

Fresh Win10 install (this broke the computer)

Manual installations rather than automated

Swapped out SSD to another manufacturer and performed fresh Win11 install

Swapped SSD into other slot on mobo

Yelled at it

None of these have improved the process. Once things are installed, they seem to work fine, rather quick actually. But the installs are painful. We're debating if we can deploy these to execs because in theory, once they're setup they're fine. But god forbid a travelling employee has to update or install something, it will cause issues.

Never seen this before, kind of driving me crazy. Anyone have this experience?

Additional note - we've replicated this behavior on 3 models. It's uniform across them.

This is an automated archive.

The original was posted on /r/sysadmin by /u/Prestigious_Button22 on 2023-08-17 18:55:21+00:00.

I have only been in my sysadmin role for a couple of years now. When I started, I was given an access control system that had gone untouched for about 15-20 years. Many components, including the server itself, were in desperate need of upgrading. After taking almost a year of working with a vendor to get installers on campus, they can’t get their own software installed. I had two different companies do this for two separate systems and I think it’s ridiculous. Please tell me I’m not alone in my access control woes.

This is an automated archive.

The original was posted on /r/sysadmin by /u/HellYaBrotherCheers on 2023-08-17 18:19:07+00:00.

Please enlighten me

The original post: /r/itookapicture by /u/Ragged_Insomnia-A on 2024-05-17 22:39:40.

The original post: /r/itookapicture by /u/sabretewth on 2024-05-17 22:39:12.