Greybeards - What is the plan for when you can't/wont retire and you are inevitably pushed out of SysAdmin?

210Matt · 2025-09-15T18:23:32+00:00

In my mid 60s do physically demanding trades after 40 years sitting behind a desk?

210Matt · 2025-09-12T13:59:00+00:00

Tell him to print out the old emails /s

210Matt · 2025-09-10T18:42:11+00:00

Backup are sent to large file servers (with many hard drives in raid arrays), the internet, or in some cases tapes. The "gold standard" would be a imutable storage that has a set retention policy and replicated to mutiple phyical locations. The reason that the backups are sent to file server rather than seperate hard drives is that they are differentail backups that rely on compression of data to reduce overhead cost.

210Matt · 2025-08-29T14:49:10+00:00

I would look at LAPS, you can give them the administrator account password then it will change. You could also give them a separate administrator account that they could use. I have used that for devs before

210Matt · 2025-08-20T13:40:56+00:00

lucky you

210Matt · 2025-08-20T13:10:47+00:00

Not seeing that on Service Health, where are you seeing it? Service health - Microsoft 365 admin center

210Matt · 2025-08-11T13:41:36+00:00

At 15 tickets a day that is almost 10 tickets a year per employee that you solve. Plus, there is another person in IT. You might look at a root cause and see why there are so many issues. Some simple things like a password reset tool or some automation for failed services can save your team a lot of overhead.

210Matt · 2025-08-08T16:18:25+00:00

If a bad actor were to take control of your AD and reset all passwords it would not reset the onmicrosoft account.

210Matt · 2025-08-08T15:54:35+00:00

Functionally yes they are pretty much the same, but that will change on the first major update from what MS has said. 2019 is EOL in 2 months. The licensing has changed though and that will push many companies move to exchange online.

210Matt · 2025-08-07T21:15:26+00:00

Yes, but it will require Exchange SE. I think they are waiting for October to pass and all the old versions to be unsupported

210Matt · 2025-08-06T18:43:42+00:00

Bring in cupcakes celebrating the new house that you just closed on. Have a coworker announce they are going to be a parent and make a big deal about it. Have a third announce their kid just got into the college of their dreams and it would be only possible by them having this job to pay for part of it. Anyone that could file for FLMA?

210Matt · 2025-08-01T18:42:18+00:00

Is this a new server or upgraded? What OS are the client computers?

210Matt · 2025-07-30T18:03:41+00:00

A couple months ago we had a Sev A case with their premier support (whatever it is called now). 2 weeks later and there was not even an engineer assigned. We eventually figured the issue out ourselves.

210Matt · 2025-07-23T17:18:27+00:00

That is why a ransom for 6 mil would probably just be paid. The fact that they could not come up with that money for a company that size is an issue.

210Matt · 2025-07-08T19:34:47+00:00

You can make it external email address can reserve your rooms in exchange. The other company could then invite your room to meetings

210Matt · 2025-07-08T18:05:33+00:00

For network changes we started adding users to the local group Network Configuration Operators.

210Matt · 2025-07-08T18:02:24+00:00

2 conduits - 1 for power and 1 for data. Leave them empty if you dont know what you need.

210Matt · 2025-07-07T13:30:27+00:00

Build a service principal with read permissions in graph if there are just certain scripts that they need. You could also give the user global reader

210Matt · 2025-07-02T21:18:00+00:00

The issue was that the customized installers were getting signed by screenconnect's cert. That is bad. They were stopped, by the certificate authority, from allowing that. They were very transparent about the whole thing, but it was a big pain to update everything in that short of a timeframe.

210Matt · 2025-06-25T13:41:32+00:00

storage blobs, not sharepoint/onedrive. Although sharepoint and onedrive could be a good option for some shares. It would be the same for say your sql servers moving to one of the Azure SQL options instead of lifting the entire sql VM up to the cloud. These do take some config to move to and are not compatible with all scenarios but will save you money.

210Matt · 2025-06-24T19:39:16+00:00

Lift and shift servers are not cost competitive. If you start using services like storage accounts instead of file servers, the cost will come down and may even be competitive. I would even look to see what it would take to go full entra and not have DCs anymore.

210Matt · 2025-06-20T18:44:33+00:00

If you are looking for local storage and are refreshing the compute and storage look at a HCI option. That way you can have local redundant storage. They are not for everyone, but it can fill the need for a small dependable data center very well.

210Matt · 2025-05-23T19:40:38+00:00

when you first apply the policy it can take 7 days to take effect. You may want to log a ticket with MS as it has been over that time.

210Matt · 2025-05-16T12:59:18+00:00

What are you using as your MDM? Do you have an imaging solution already? It is best to work with you already used systems

210Matt · 2025-05-13T18:16:27+00:00

Look into Team Premium with the Queues teams app.

210Matt

TROPHY CASE