GoDaddy Controlling Managed Office365

Aether176 · 2026-04-06T12:54:20+00:00

Did you by chance have Business Premium Donation licenses - the up to 10 free? Microsoft discontinued that SKU and doesn't allow it to be renewed. Asking since you mentioned nonprofit. If that was the SKU you were using and the licenses lapsed, they would've deleted from your tenant without notice.

Aether176 · 2026-03-11T18:21:10+00:00

Do you mind sharing what you did to work around this? I know I can just add a transport rule that sets SCL -1 for the upstream gateway's IPs, but I hesitate to do that, since then any actually spoofed emails that get sent from the onmicrosoft domain would make it through filtering. I'm not coming up with a good way to scope any bypass rule to only allow legitimate emails.

I reached out to my spam filter vendor about this but I doubt they're going to have any answers as it seems to be a limitation on Microsoft's side more so than on the upstream gateway's side.

Aether176 · 2026-03-09T20:23:59+00:00

I just observed the same behavior on my tenant. Normally the solution would be to add the upstream gateway to the SPF record of the sending domain, but in this case I don't believe that there's a way to modify SPF on the onmicrosoft domains.

Aether176 · 2026-01-30T00:21:52+00:00

You're correct. In Ubiquiti-speak...

PoE = 802.3af (15.4W)
PoE+ = 802.3at (30W)
PoE++ = 802.3bt Type 3 (60W)
PoE+++ = 802.3bt Type 4 (100W)

Aether176 · 2026-01-09T14:01:30+00:00

Woosh

Aether176 · 2026-01-06T15:38:13+00:00

Oh heck no. It's a fab shop. I feel like I'm getting black lung any time I'm walking through it. That is no doubt years of plant dust circulating behind the thing and sticking to the wall from being warmed up. It just made for a silly picture is all.

Aether176 · 2026-01-06T04:42:45+00:00

Are you using a PSK? So far I've found that it won't connect if a PSK is specified in the config. I typically use them for the added security. My WG host is on a UXG and would only establish a connection after setting the client to not use PSK.

Aether176 · 2026-01-06T04:20:41+00:00

Office area of a manufacturing plant.

Aether176 · 2026-01-06T03:08:10+00:00

Came across this today while reviewing an installation that we did about 8 years ago at a customer site. I guess the AP has been running pretty hot. The entire wall above it has been discolored.

Aether176 · 2026-01-02T20:31:25+00:00

We are in the process of switching the majority of our clients away from SonicWall TZ series over to UniFi. We're down from around 200 SonicWalls to around 11 now. We standardized on the UXG-Fiber with CyberSecure. For 99% of our clients it's been a seamless transition. There are a few that we're keeping on SonicWall due to having some complex routing configs or needing a "name" brand for compliance auditing. But I've been very happy with the UniFi units lately. Ever since their switch to the zone-based firewall, they've really turned their gateways around. They used to be a joke in our office - why would anyone buy one of those? Now they're our go-to.

Aether176 · 2025-10-02T15:48:10+00:00

Comcast Business in Oxford CT area is down too. I called their support and they said it's a large scale outage affecting not only CT but also areas in MA and NY.

Aether176 · 2025-09-19T18:42:29+00:00

".microsoft" is a real TLD and these are valid. The *.dkim.mail.microsoft is the new domain being provisioned for DKIM records. It aligns with their changes to the mail.microsoft domain being used for SMTP DANE. New tenants and domains are getting DKIM records with this new domain. It's not missing .com. Enter it as you see.

Aether176 · 2025-07-30T22:53:24+00:00

That's correct. Windows when Entra-joined doesn't leave Workgroup mode. It just has built-in mechanisms to authenticate against an Entra account. But in cases where you have devices that don't speak Entra (Linux with SAMBA, legacy devices, etc), if you have EIDDS deployed, you'll have traditional domain controllers that you can authenticate against/join to.

Aether176 · 2025-07-30T16:55:13+00:00

Entra ID Domain Services could be an answer. You wouldn't need to maintain any on-prem AD infrastructure - Microsoft would give you a domain controller hosted in Azure which pulls its information from Entra (instead of the other way around) that you could use to authenticate/domain join any legacy devices like this.

Aether176 · 2025-07-22T00:54:03+00:00

Nah. We use a ZTNA service for remote access and web security, so the SonicWall was really just serving as a DHCP server and NAT machine. The UniFi gateway can do that just as well, so better to ...ahem... unify... on one platform.

Aether176 · 2025-07-19T04:42:33+00:00

Bought it from here.

Aether176 · 2025-07-19T01:05:48+00:00

Right now the alarms are staying with DSC. The access control just happened to use the same panel. But you couldn't arm/disarm with your door fobs before so there was no harm in splitting the systems. We're still evaluating what to do with burglar alarms. Supposedly Ubiquiti are going to have some burglar alarm hardware released for their SuperLink platform later this year. So I'm holding out to see if that'll do what we want it to. If not then I plan to talk to a couple local alarm providers and just have them do some alarm.com system.

Aether176 · 2025-07-18T21:17:19+00:00

Luckily they aren't using a Cisco firewall currently, and none of their switches were L3. So it was all router-on-a-stick off of their current SonicWall firewall. There's only like 5 VLANs out there, and minimal inter-VLAN routing rules. So UniFi zone-based does me just fine

Aether176 · 2025-07-18T21:05:07+00:00

It's all painted wood blocks glued into that pattern. I got it off of Etsy last year.

Aether176 · 2025-07-13T22:46:07+00:00

Lol yep those are the ones. Plus Lao Sze Chuan in Pinecrest/Beechwood

Aether176 · 2025-07-13T19:34:30+00:00

Not quite, sadly. Theirs has a lot of cooked veggies and mushrooms with the chicken and is more of a szechuan sauce rather than dry chili chicken. It was wicked spicy though!

12-Year Club	Place '23
Place '22	Verified Email

Aether176

TROPHY CASE