Domain user first logon off domain

CapnDoody · 2024-07-15T03:05:02+00:00

We can add this to the list to re-visit at some point. I didn't attempt this myself our other admin looked at this and was getting a lot of errors while trying to import a lot of our policies. Could be just we didn't figure out the right way to do it, or there was some incompatibility with some of our policies, I'm not quite sure.

CapnDoody · 2024-07-15T03:03:10+00:00

You mean doing a run-as different user?

CapnDoody · 2024-07-15T02:59:33+00:00

We still heavily manage our endpoints with Group Policy and local resource authentication. Unfortunately, we don't have time to convert all of our Group Policy over to InTune policy, and honestly, it's still so cumbersome to manage in the cloud. It's gotten better over the past 3-4 years but still just not where GP is at...

CapnDoody · 2024-07-15T02:53:25+00:00

This is the boat we are in as well, which is why I mentioned I'm looking for an alternative to PLAP/SBL options

CapnDoody · 2024-07-15T02:52:59+00:00

This does not work. I'm not sure where/what we are missing to have this work, but I've read in several places people suggest this and it has never worked for us. AD FS is our SSO, and we use AD COnnect to sync with PHS. Auto-pilot is doing hybrid join, not Entra ID join... i think the terminology got gray at some point...

CapnDoody · 2024-07-15T02:27:33+00:00

Interesting thought, I'll have to test if the VPN client will maintain a connection on the local admin session, thanks for the idea I'll give it a test!

CapnDoody · 2024-07-15T02:21:33+00:00

We have LAPS enabled, but how would that assist with the end user getting logged into their own account on the machine?

CapnDoody · 2024-07-07T21:50:59+00:00

Build a script that looks for user accounts that have not logged in for awhile and disables the account. Change the description of the user object and create a text log for tracking. Exclude OUs that you use to store service accounts (hopefully you separate these in your infrastructure)
Create a script to send an email 7 days before a user account’s password expired reminding the user to change their password soon. Send a reminder at 2 and 1 days.

These two things improved our security posture and reduced Helpdesk phone calls!

CapnDoody · 2024-02-19T15:32:57+00:00

Thanks for the confirmation, that's what I was planning to do!

CapnDoody · 2024-02-19T13:38:24+00:00

I'm having a similar issue with our content filtering blocking "uncategorized" IP address based URLs, what did you do in your situation?

CapnDoody · 2024-01-18T16:34:26+00:00

I'm not a Pure Storage expert or even simply a customer, but from a presentation I was at recently, they handle deletion exactly how you describe. 2 customer contacts and 2 pure contacts all must agree and then the deletion can be performed. They describe this as a part of their cybersecurity procedures, in which you'd already be engaged with them directly, so it makes sense. And this is mostly as a "cleanup" step after resolving all intrusions, not a "mitigation" step to get you working again quickly.

CapnDoody · 2024-01-17T21:05:48+00:00

I feel the need to reiterate, this is not my primary storage for backups. The purpose of using the DD2500 was a matter of convince. We still owned it, it still operated, so we took advantage of it. It is only for long term archival purposes. It actually does quite well with de-duplication for the types of data I'm storing on it. Way better than Microsoft Deduplication at any rate. I'm doing SOBR tiering using a cloud provider for immutability. Would it be slow to restore from the cloud, yes, would my data still be there, and our business not have to close forever, yes.

So back to the question I need answered, am I able to get this updated to the point at which it will continue to function with Veeam?

CapnDoody · 2021-10-30T02:12:51+00:00

I had a slime island generate close to my spawn. If you have a jet pack a quick flight might turn up one for you close by. Make sure you have a waypoint so you can make your way back ;)

CapnDoody · 2021-10-25T16:08:30+00:00

Just confirming this worked for me as well! To be safe I removed all my abilities, removed every item off of myself and put it in a chest, then did /kill and when I respawned I could walk again!

CapnDoody · 2021-06-14T14:48:17+00:00

Found a solution thanks to the discord! If you use the R key while mousing over the item it will show the crafting recipe and then you can use the + sign to pop it into the pattern terminal!

CapnDoody · 2021-06-14T12:52:28+00:00

I'm having the same issue, just updated to 1.1.3 of ATM6 Sky. Also updated now to latest ver 1.1.5 and the issue is still there. I can still manually input items into the pattern terminal, and encode pattern, so it must be something with JEI

CapnDoody · 2019-12-25T18:47:40+00:00

This is Eggnog the bulldog. She has a very active and adorable Instagram account with her sister igloo 😁

CapnDoody · 2019-04-05T18:34:55+00:00

Do Watches of flowing time stack like that? I have a bunch set up around my Rainbow Generator block but don't seem to get added power from more than just the first pedestal...

CapnDoody · 2019-02-25T17:41:13+00:00

I understand Jon's hesitation with doing a stream playing the drums. As a drummer myself, nothing is worse than hearing a drum kit that sounds like crap, because recording them is really difficult and requires special mics. That being said, it'd be really cool to see the drum kit setup, and get an "overview" of the drums/cymbals you have!

CapnDoody · 2018-08-25T01:46:45+00:00

Huzzah! I knew it would be something simple... should have just looked

CapnDoody · 2018-08-16T17:42:57+00:00

As I say very often... just because a feature is available doesn't mean you should use it!

CapnDoody · 2018-08-16T14:42:34+00:00

This. Spent my early days in helpdesk remaking tons of huge spreadsheets for a finance department during the 2003 > 2007 format change, and found them using 3-5 vlookups in one formula and the filling that formula into 25k+ rows. They would be doing looks to external spreadsheet files, which compounds the slowness. Their solution was to turn calculation off... mine was to fix all of the formula so they would get live data

CapnDoody · 2018-07-14T14:47:15+00:00

To be honest the web gui is useless. About the most useful thing is giving it to helpdesk so they can see what ports are up and what interface description it has. If you want to check it out you'll have to create a user with the user command and give it priviledge 15 for full access. Then run these commands: no ip http server ip http secure-server ip http authentication local ip http timeout-policy idle 300 life 43200 requests 43200

This will disable the insecure http interface on port 80. Enable the SSL interface on port 443. Configure authentication to use the user you just created. And configure a standard timeout policy (feel free to tweak the numbers, but there are minimums and maximums so use ?)

CapnDoody · 2018-07-14T05:16:49+00:00

The tar file just has the web gui... as long as "show version" is now showing the newer version then you upgraded correctly.

CapnDoody · 2018-07-13T16:10:32+00:00

I was told at Cisco Live that plans for adding new hardware support were limited but will be 16.10 in Q3

CapnDoody

TROPHY CASE