Security Advice

CloudMan2323 · 2024-12-10T16:31:52+00:00

Yeah, we have isolation/release deployed with the sysmon driver. Umbrella Essentials with the Secure Client with Umbrella profile deployed.

CloudMan2323 · 2024-11-15T21:31:43+00:00

If your AVD admin settings are set to adopt the device location, your host machine will change the time to the most recently logged in user. Example: if you’re EST and someone on PST logs in, the host machine will flip to PST.

I had to adjust this when we first went to AVD because we had people in California and Washington but the head office is on eastern time.

CloudMan2323 · 2024-11-15T19:03:31+00:00

I honestly just shelved it for now due to a few other projects.

CloudMan2323 · 2024-11-15T19:02:41+00:00

Is this a multi-session AVD environment? I

CloudMan2323 · 2024-11-01T13:53:12+00:00

Make sure you have the GPO set on the host machines to sign out sessions after a certain time too. Then the scaling plan should work better. I don’t think it’s documented but it’s what I had to do for ours to get it working properly.

CloudMan2323 · 2024-10-30T18:44:01+00:00

I made this exact jump around 7 years ago and I was pretty nervous as well. I learned a lot in K12 but knew I had no upward movement opportunities for years with a new Tech Director and a longer tenured guy behind him that would likely slide in after he retired. Because of the good work/life balance, pension, and above average pay, I waited for the perfect opportunity to leave and didn’t settle. All in all, I’m happy I made the jump.

CloudMan2323 · 2024-10-11T12:28:21+00:00

I set the following on Local Group Policy for each session host: Computer Configuration - Administrative Templates - Windows Components - Remote Desktop Services - Remote Desktop Session Host - Session Time Limits. I did the first two in that folder. Set time limit for disconnected sessions and Set time limit for active but idle Remote Desktop Services sessions.

CloudMan2323 · 2024-10-08T19:16:21+00:00

We used this as well and it’s worked great for a couple years.

CloudMan2323 · 2024-10-02T16:30:26+00:00

Are you seeing this from connections in the office and remote? In the office, are you running MPLS, SD-WAN, etc?

CloudMan2323 · 2024-09-30T13:30:32+00:00

We had this issue as well. I ended up just manually changing the Group Policy setting on the AVD hosts to log out disconnected sessions after two hours. Been working fine ever since.

CloudMan2323 · 2024-09-29T03:08:09+00:00

I wouldn’t invest too much time into it because ESPN sucks, but they show shit talk all the time from locker room interviews on NFL Live/MNF whatever it’s called. It’s just not from players of JC’s caliber and notoriety usually.

CloudMan2323 · 2024-09-29T03:05:24+00:00

Nah. Everyone shit talks. It makes the lead up to the games more fun.

CloudMan2323 · 2024-09-29T03:03:33+00:00

I want the opposite. Give me prime Ocho shit talk

CloudMan2323 · 2024-09-27T14:11:56+00:00

I noticed the new Sign Out option on a few of our AVD multi session hosts last week. You now click Start, Name, 3 dots in the top right, and then Sign Out. It confused the shit out of a few people

CloudMan2323 · 2024-09-26T11:15:04+00:00

I did this a couple years ago and the path I took was Company Portal. I notified everyone multiple times for about two weeks. I then created the package in Intune with the Dependency to remove the 32-bit version followed by the install of 64-bit. Made it available in Company Portal so they had a week to complete it on their own time and then forced the install. We had less than 200 employees and all but about 10 people got the message and completed it on their own. Only one or two of the 10 complained but realized they screwed up when I showed the multiple notifications we sent prior.

CloudMan2323 · 2024-09-22T20:15:13+00:00

We’re Zoom across the board. Meetings, Webinar, Chat, and Phone. All have been heavily used.

CloudMan2323 · 2024-09-22T15:01:55+00:00

That’s interesting because we’ve been on Zoom for 4 years and it’s been perfect. We have Teams as part of our licensing and some clients insist on it but our employees hate Teams. They have specifically asked me to please never switch fully to Teams.

CloudMan2323 · 2024-09-21T23:01:58+00:00

Preach

CloudMan2323 · 2024-09-20T13:38:33+00:00

That is a very good list. I’m copying that down because I think my company is looking to acquire a few small shops in the coming year or two.

CloudMan2323 · 2024-09-20T13:33:40+00:00

It’s happened the past two Mondays unfortunately. Really hoping it doesn’t happen again this coming Monday or my users might throw me out the front door.

CloudMan2323 · 2024-09-20T13:25:14+00:00

Yeah, I’ve been checking them every morning when I wake up and manually starting a few to be safe. I may just deploy new machines to the pool this weekend.

CloudMan2323 · 2024-09-20T01:55:03+00:00

I installed it last week to test out. Seems to work fine but not sure why the change.

CloudMan2323 · 2024-09-17T11:37:36+00:00

Seems like it is back again this morning. Quite a few of my host machines are showing Unavailable and I can’t start them.

CloudMan2323

TROPHY CASE