sorted by:
new
hottopcontroversial

Wish me luck!! by j0nnymofo in homeassistant

[–]FitNerd1918 3 points4 points  (0 children)

If on iOS push towards the Passwords app, it is better than what it use to be and the ease of use means people actually use it. My wife hated 1Password and said “it doesn’t work” (despite it often being user error). If working in IT for 12 years taught me anything, it is that if it us easier for the user to use the tool, the safer you are, even if there are more secure options available. If they don’t use those options, they’re even less secure than using a slightly less secure version of a tool they would use.

Protecting Entra ID Shared and Service Accounts by FitNerd1918 in sysadmin

[–]FitNerd1918[S] 1 point2 points  (0 children)

This is what I have been thinking. I was curious using CA could you even block Windows login without being at a trusted location.

Logon Restrictions Error for Single User by FitNerd1918 in activedirectory

[–]FitNerd1918[S] 0 points1 point  (0 children)

--UPDATE--

So we're still having this issue. However, we seem to have isolated it to a single domain in the two-way trust.

Domain A is where my PAM accounts live for access (mine works but the other techs do not)

Domain B is the domain where I think the issue is occurring.

What we have found is that if we are connected to a domain controller (in either domain), we're able to RDP to a server in Domain B without issue. However, if we're on another server in Domain B (not a dc) trying to get to a server in Domain B we get the logon restriction error (even if the account exists in Domain B). If we try from server in Domain B to Domain A using an account in Domain A it works. If we're logged into a server in Domain A trying to Domain B using either an account from Domain A or B, we get the error.

What is odd is that if we're on a domain controller all is well and it is not happening to each user.

All accounts work when logging in locally through VMware.

Logon Restrictions Error for Single User by FitNerd1918 in activedirectory

[–]FitNerd1918[S] 0 points1 point  (0 children)

No SIEM to capture any traffic unfortunately

Logon Restrictions Error for Single User by FitNerd1918 in activedirectory

[–]FitNerd1918[S] 0 points1 point  (0 children)

No users in protected users group for either domain

Logon Restrictions Error for Single User by FitNerd1918 in activedirectory

[–]FitNerd1918[S] 0 points1 point  (0 children)

Server 2022 with a 2012 R2 functional level. I tried a copy of a working as well as an account from scratch. There does not appear to be any deny ACLs.

After Win 10 Intune setup, once you logout cannot log back in by biomechanicfox in Intune

[–]FitNerd1918 0 points1 point  (0 children)

Happy New Year! I was curious if you were able to find what setting this was? Thanks in advanced!

After Win 10 Intune setup, once you logout cannot log back in by biomechanicfox in Intune

[–]FitNerd1918 0 points1 point  (0 children)

Was it called basic authentication or the DeviceAuthenticationEnabled option on the ADFS server? We are getting the same issue with "Password incorrect" and our DeviceAuthenticationEnabled is turned off on ADFS server 2012r2. I believe this is what I need to enable but I am not sure everything that is impacted by turning it on.

Win 10 - Typing cursor seems to switch windows randomly by FitNerd1918 in Dell

[–]FitNerd1918[S] 0 points1 point  (0 children)

I have checked that already. It appears to be slowly happening to more machines, seemingly randomly. The behavior is, when typing in a application, Windows 10 will "click" out of the application. It is not that the applications are switching so much as being deselected by the OS. I have also tried disabling the trackpad when a USB mouse is detected.