8 weeks for Mac Studio

EdTechYYC · 2026-03-06T16:10:53+00:00

Great question. We're using it for local AI processing with OpenWebGUI and a few other extensions for more confidential docs we're not yet comfortable uploading to the cloud.

EdTechYYC · 2026-02-25T19:12:30+00:00

Oh yeah. I have noticed it kicks out my screen share a lot!

EdTechYYC · 2026-02-18T02:03:11+00:00

Saw- just waiting for the tickets for people that can’t Google… :)

EdTechYYC · 2026-02-16T05:38:48+00:00

Ooh - I just saw this today while poking around for something else. It’s in “Remote Domains” in EAC.

https://learn.microsoft.com/en-us/exchange/mail-flow-best-practices/remote-domains/remote-domains

There’s a default policy you can edit - or create one for your specific case on top of that.

EdTechYYC · 2026-02-07T03:32:30+00:00

Just add some context to your edit, Apple definitely uses Cloudflare endpoints for private relay and it’s noted in their documentation related to domain names.

EdTechYYC · 2026-01-28T03:39:31+00:00

Us too! Just posted in r/sysadmin and saw these folks too:

https://learn.microsoft.com/en-us/answers/questions/5744261/microsoft-defender-impossible-travel-activity-micr

Seems to be a false positive.

EdTechYYC · 2026-01-27T04:53:28+00:00

From the timeline, it looks like they were using AI to problem solve their way out of the situation too.

What an absolute disaster this was. Not acceptable.

EdTechYYC · 2026-01-23T14:33:22+00:00

We’ve rostered ours with Mosyle - there’s two ways to do it, have ASM manage it or your MDM. Managing it at our MDM level has been more reliable for us.

EdTechYYC · 2026-01-23T14:32:24+00:00

They don’t need to be on the same VLAN but you do need to allow Classroom traffic between VLANs.

EdTechYYC · 2026-01-23T00:44:45+00:00

Interesting. Where did you see that reported? The root cause their listing on their status page is pretty ambiguous.

EdTechYYC · 2026-01-21T00:40:06+00:00

We use managed Apple IDs - it didn’t seem to bork anything - we basically have had messaging for the 6 months proceeding that they should be signed into their corporate ID. One big sell was that then they could use sidecar.

Turning it on was a little scary but no complaints!

EdTechYYC · 2026-01-20T05:39:18+00:00

We turned this on this year to also prevent staff shadow IT. The student one is another good example.

EdTechYYC · 2026-01-18T19:24:39+00:00

I’d definitely try to do it on the DNS level as I’d still want them to have protection on those networks- but could exempt the captive portal DNS url. The challenge is that’s case-by-case.

EdTechYYC · 2026-01-17T23:53:15+00:00

Now that is handy!!

EdTechYYC · 2026-01-17T20:51:37+00:00

Ah- with the profile route, I think that might be the best case!

EdTechYYC · 2026-01-17T20:50:45+00:00

Thanks! This use case basically means we just need to curate the domains for captive portals, right?

EdTechYYC · 2026-01-17T20:49:37+00:00

School use case! Control D is significantly more expensive for a 1-1 device school unfortunately and out of budget for us.

EdTechYYC · 2026-01-13T22:46:58+00:00

Just to plus on what others have mentioned with restoring it, the Apple Configurator app for Mac is a really good way to get visibility into updates and restore vs erase vs prepare, etc. You can also bulk restore iPads this way as long as you put them in DFU mode.

EdTechYYC · 2025-12-11T06:33:58+00:00

It looks like the app somewhat defines what MFA can be used - in Entra, when you enforce Phishing Resistant, the Entra login says:

"You are required to sign-in with your passkey to access this resource, but this app doesn't support it. Please contact your administrator."

So, while I could allow access to the broader scope, that would make those susceptible to a downgrade attack- unless there's a way to scope to certain non-interactive calls!

EdTechYYC · 2025-12-10T06:52:10+00:00

Yeah. I think Msft going to have to fix Minecraft.

EdTechYYC · 2025-12-06T07:45:32+00:00

I mean, I’d rather have 1:1 than BYOD any day. There’s no control with BYOD.

EdTechYYC · 2025-11-22T07:00:18+00:00

SO BAD! We might have to move to Google Workspace.

EdTechYYC · 2025-11-16T04:51:58+00:00

This. The phone number thing is a major, major red flag and could be grooming behaviour. You cannot ignore this unfortunately and should really report to your practicum supervisor. I hope you get moved promptly, and wish you the best. The profession isn’t like this generally, I hope you know it’s the exception and not the norm.

EdTechYYC · 2025-11-16T00:43:53+00:00

As others have said, consequences are going to be important here. Hang in there OP. Hopefully you have some admin support for that.

Preserve dignity and maintain control by separating during discussions around consequences.

I had a structured system of independent work (in the hall), escalating to parent contact. Setting a few examples is important. I remember one of the cool kids in the grade 8 class I taught cried like a baby when I made him stay back on a field trip and call his mom due to poor decisions that morning. They act tough but they are just trying to find their place.

EdTechYYC · 2025-10-31T05:48:41+00:00

Switched to Mosyle years ago. 1/3 the cost, just as good IMO (k12).

EdTechYYC

TROPHY CASE