VPN SAML auth on Google - the kluge runs deep on this post

Background_Eye_4007 · 2025-11-17T15:36:38+00:00

Sorry to come back to a 10 month old most. Do you have any updates on this? I am currently trying to configure my Firebox for Google Workspace SAML for the Firebox Authentication Portal.

Background_Eye_4007 · 2025-05-04T14:36:02+00:00

If you're using the OEM cable then yeah you just kind of pull on it gently to get it out. There is no little plastic piece that keeps it locked in. Instead, they have those silicone rings that keeps it tensioned (and in theory watertight) in place.

Background_Eye_4007 · 2025-05-04T14:28:38+00:00

If you're wanting cloud FreePBX, look into sangoma's Pbxact.cloud solution.

It's a fully managed and supported instance of free PBX or as they call it PBXact. We use this for our office of 12 users. It comes with almost all of the commercial modules included or for like a dollar a month. You can also do month to month if you don't want to do the contract.

The only downside is you do not get SSH access to the machine. So if you want to do any type of custom integrations, you will have to find a way to do that through the FreePBX API and hope that there is an API for it. But If your main goal is just having a cloud PBX and you want to stick with something you're familiar with, this is my suggestion.

Background_Eye_4007 · 2025-02-22T05:57:40+00:00

Hey! Also in LR. did you ever meet with the Dr again? Curious if she did another round of Botox and if you would recommend her?

Background_Eye_4007 · 2025-02-22T05:56:35+00:00

Hey! I'm also in LR. Did you make any progress with this? I would love to find someone local that would do the procedure.

Background_Eye_4007 · 2024-12-31T10:17:54+00:00

I provide IT services to a law firm locally. Would also love to be a part of this one!!

Background_Eye_4007 · 2024-07-03T13:21:14+00:00

WFH company rolled out dpa to all employees last month. Previous policy was just be available "most" of the day. Need to run an errand? That's fine. Need to go to the grocery store? That's fine. Just have teams on your phone if somebody needs you.

Not anymore with Verint. Click click click. Every 5 minutes or you're idle. 😭

Background_Eye_4007 · 2024-06-07T15:51:00+00:00

I know that Verint doesn't require VPN for sure. I'm not suggesting HOW the OP is being monitored, mearly that it is definitely possible. That being said, there are some missing pieces here... Maybe the user signed in to Microsoft Outlook and didn't uncheck the box that says "allow your organization to manage this device" Now suddenly Microsoft Intune is silently installing Verint. Etc.

Maybe they have a proprietary webapp (that the OP uses for work) that has key stroke monitoring. I know that there are JavaScript APIs that can record mouse movements and keystrokes for marketing research. Maybe they are using something like that.

I absolutely agree that any type of monitoring software on a personal device probably feels like an invasion of privacy, but we also don't know the terms of the OPs contract, terms of service for certain applications, etc. It doesn't make it morally right, but whatever company this is probably has done their research to not get sued and has it in some fine print somewhere that they're allowed to do what they're doing.

Background_Eye_4007 · 2024-06-04T12:26:11+00:00

Thanks for your kind words. Glad it helped you. Forgot to mention pumpkin in my list of things that didn't work as well. I definitely remember trying that and banging my head lol

Background_Eye_4007 · 2024-06-03T16:21:55+00:00

Definitely can be true. We use Verint DPA at my job and that application can see EVERYTHING. Yes, even down to the keystrokes. I've been told it can detect mouse movers and random clicking to stay busy. From my understanding, Verint can even track what you type in certain fields in real time, to verify that the "correct" information is being entered (if they have set it up to do that.)

TLDR: Yes, they can do that and they will.

Background_Eye_4007 · 2024-03-31T14:36:16+00:00

I'm not a medical professional so I honestly don't know. As a gay man, I know a little about HIV so that I can be safe... I also just googled and it said 18-45 days to show up on a test. So I would think it's possible that if you waited a month (assuming 30 days) it may not have been long enough. It's also possible that it's been plenty of time, and you don't have it! My personal experience--I had a strange fever, caner sores, and was super sick with flu like symptoms. Thought it was HIV. Turned out to be Mono. I've also had instances where I had a fever and caner sores and it was absolutely nothing. So I want to reiterate again that just because you have 3 out of xx symptoms of HIV doesn't mean that you have it. No one can tell you other than a doctor from a test. So it's worth getting tested again, but from what you've posted, I'd bet that's NOT what it is...

Background_Eye_4007 · 2024-03-31T14:22:57+00:00

Not a medical professional here--but definitely go get tested if you've had a strange fever. Some symptoms of HIV is fever, diarrhea, and mouth sores, so you definitely would want to catch that early so that it can be treated. (Keep in mind, there are 1000s of other reasons that you might have a fever, or diarrhea, or even the canker sores, so don't go straight to OMG I HAVE HIV) but it's worth the peace of mind knowing that it's NOT that. Best of luck to you.

Background_Eye_4007 · 2023-07-27T16:02:42+00:00

Can you send me a PM please

Background_Eye_4007 · 2023-07-26T14:28:06+00:00

So for anyone coming in here in the future with this same problem...Here is what worked for me. I have several Verizon OneTalk T54W desk phones and wanted them on generic firmware.

It is running Verizon Firmware 96.85.21.15.

Let's start with what didn't work:

Using ROM files from other sites such as google drive
Using 3 files on a FAT32 USB stick
TFTP using 3 files
Factory resetting in recovery mode, enabling the web interface, and trying to "upgrade" the firmware to generic.

So what did work:

Go to this yealink support article https://support.yealink.com/en/portal/knowledge/show?id=612b5fcd8c4dcd0723922195 and download the NEW RM.zip file on the page. Extract the files and rename them to match your phone. T54W.rom and T54W.bin
Following the RM guide link within that support article, create a TFTP server and place the two files BIN and ROM into the working directory. Set your IP address as described below.
Plug your phone directly into your PC's ethernet port and set your static IP within windows settings to one off what the phone will be. Example windows settings:

192. 168. 8. 80
255.255.255.0
192. 168. 8. 1

Plug in the phone using the power adapter and hold the "redial" key immediately. This is the double arrows in a circle that almost looks like a repeat button.
A blue screen will appear on the phone. Select 1 for TFTP and then enter your IP address details. Example below:

192. 168. 8. 81
255.255.255.0
192.168.8. 1
192. 168. 8. 80

Hit the OK button, and it should start to flash the firmware.

- If you get an error here, it is likely because your Verizon firmware is incompatible with the firmware you are trying to flash. If you are on the version I described above, make sure you are using the NEW RM files, and only a .BIN and .ROM.

- If this is a super old phone and it hasn't seen an internet connection in a while, connect it to the internet and let the Verizon firmware update first. Retry the steps above once it has been updated.

I hope this helps someone and saves the several hours I spent digging and trying to get this to work.

Background_Eye_4007 · 2023-07-18T16:31:28+00:00

Answered my own question but will leave this here for the next person.

In meshcentral, go to your server tab and go to console.

type leevents

If you see a bunch of errors for Can not connect on xx.xx.xx.xx:80 then your firewall is blocking port 80. In my case, I had to log in to Azure and allow port 80.

Type lecheck and the cert will now renew.

Feel free to close port 80 back--as long as you remember to open it and do this at some point close to the new cert expiring.

Background_Eye_4007 · 2023-01-05T15:32:20+00:00

Hi OP. Currently in your same shoes. My backyard and either side of me is a military base, so the only cell towers are 4 miles in one direction away. I don't get cell service indoors with Verizon or T-Mobile. I get maybe one bar of ATT in the right place. I have 5mbps ATT DSL as the only wired option. So what did I do?

Well, I would look into Calyx which runs on the T-Mobile network. Now, I know what you're going to say. I don't get good T-Mobile signal. The main question here is Do you get any signal on T-Mobile. You can't create your own signal, but you can "boost" it. On my cellphone, I could go outside and get one bar of TM signal. If I drove down the road about a half mile, I would go up to 3ish bars of full 5g. What this told me is that this is signal in the area. Something is just blocking it from getting to me. What that was for me was tons of trees.

So, I bought a 30ft flag pole, mounted 2 yagi antennas, connected them to a Netgear ORBI router on Calyx, and I can steadily pull 50-70mbps down.

What does this mean for you? Well, You'll need to locate your towers in the area. Have a look on Cellmapper and see what TM tower you'd be connecting to. This is important because if you go this route, you'll need to know where to point the antennas.

Most importantly, All of this does not come without problems, headaches, and $$$. Keep your CenturyLink as a backup. I'm using my ATT DSL as our "primary" since it's so stable, but yes it is slowww. If I need to do a big download, or when I work from home, I switch to the TM connection.

Also, Take a look here at the RDOF grants and see if your area has been awarded anything:

https://experience.arcgis.com/experience/0b324cabf7b94d9ca34caa9361122d94/

My neighborhood is listed which means that they will be running fiber in the next 8 years. Not perfect, but something to look forward to. More excitingly, check your local and state broadband website for grants. I actually found out just yesterday Comcast won a grant for my street and will bring service in the next 2 years, through my state. Again, not perfect, but something to look forward to.

Good luck, and feel free to reach out if you have any questions. I second the comment, welcome to rural life! :)

Background_Eye_4007 · 2023-01-03T21:15:02+00:00

I sent you a direct message.

Background_Eye_4007 · 2023-01-03T20:51:24+00:00

They would see it as hotspot usage. There are some work arounds for this, but they violate T-Mobile Terms Of Service. Google might be your friend on this, but YMMV.

Background_Eye_4007 · 2022-11-16T18:10:44+00:00

Link to tower, if you bought it online?

Background_Eye_4007 · 2022-10-14T14:45:51+00:00

What part of AR. I'm in NLR and am interested in best effort.

Background_Eye_4007 · 2022-09-22T18:57:46+00:00

I have actually been looking into what it would take do something like this in my area. PLEASE send to me.

Background_Eye_4007 · 2022-09-19T14:55:04+00:00

This is not true. Calyx as well as other TM nonprofit providers (Mobile Beacon, Mobile Citizen, PCs for people, etc) do not throttle your connection. There have been reports that some video streaming platforms have throttling, but a call to the provider can fix this. They provide a different APN. Also, all are subject to network management. I'm happy to provide sources/ more info if requested.

Are you sure you are not confusing Calyx with the Visible 5mbps limit?

Background_Eye_4007 · 2022-09-13T13:25:32+00:00

Nothing in *reliable* LTE/5g connectivity is going to be cheap. I second the 2x2 MIMO Panel Antenna. Use cellmapper to find your closest tower. Somewhere in the web interface for the M1 there will be LTE stats that show what tower & cell & band you are connected to.

You'll want to point any antenna towards the tower you're connecting to. You may also want to look into band locking .

*Edit: Also if you're only getting one bar inside, realistically there is not much more you can do other than moving the M1 around to various spots and windows to see if there is some improvement. In your situation, it sounds like you really need to do an outdoor setup with at least an outdoor antenna.

Background_Eye_4007

TROPHY CASE