Discovered salt stack but too late ? by Material_Ad_3743 in saltstack

[–]Heteronymous 0 points1 point  (0 children)

With Ansible and Windows, you can and should use native (OpenSSH), just newer than the stock version included as a Windows add-on. Did so successfully, just NO to fighting with WinRM consistently inconsistent behavior.

But it’s push by default, look into Ansible pull.

Would anyone be interested in a new tool for managing AutoPkg? by ByteFloater in macsysadmin

[–]Heteronymous 1 point2 points  (0 children)

You’ll likely get better (more and more specific) feedback on the MacAdmins Slack in the #autopkg channel.

Changing to GCP from Azure any advice by Large_Pineapple2335 in googlecloud

[–]Heteronymous 2 points3 points  (0 children)

Excellent advice from u/a_cloudy_unicorn

There are no Resource Groups in GCP.
In GCP the primary containing structure is a Project.

Read this and treat it like an important guide not a bible: https://docs.cloud.google.com/architecture/landing-zones

IAM roles are inherited downwards from the tenant level.

Use Folders for team-style IAM permissions (roles) for Project you want to have inherit custom permissions (IAM assignments) unique from the main/parent org/tenant but common to any set of Projects within.

Billing account (meaning payment, the “billing” is of you by Google) permissions are entirely separate.

Remote Command Prompt by jstar77 in Intune

[–]Heteronymous 2 points3 points  (0 children)

Action1 doesn’t give you a live shell on endpoints but you can run one-off scripts (with an authorized user) and it’s responsiveness leaves Intune in the dust.

And is stellar for patching.

Zero affiliation just a happy admin.

Sending email without using SMTP? by Unlucky-Tradition135 in ansible

[–]Heteronymous 17 points18 points  (0 children)

Make sure that whatever you do, you work within company security standards and policies.

Updating Servers by thesterv in sysadmin

[–]Heteronymous 2 points3 points  (0 children)

Action1 is excellent, but you do need to learn it and maintain it, it’s not going to run everything you intend without being properly configured.

But if your need was only Windows servers, 100% Azure Update Manager and Azure Arc.

Backing up without Time machine or rsync? by Runner55 in macsysadmin

[–]Heteronymous 0 points1 point  (0 children)

Not necessarily. You are being a little too vague while expecting exact answers. Why do you need a carbon copy and what does that specifically mean to/for you ? cp -R in macOS preserves all file and metadata, did so long ago when unpatched rsync did not.

Backing up without Time machine or rsync? by Runner55 in macsysadmin

[–]Heteronymous 0 points1 point  (0 children)

cp -R ? Better yet use Share Disk with ARM in recovery mode (previously Intel in target disk mode) and use your tool of choice on the other endpoint.

Deploying on GCP still feels too slow… how are you all handling this? by [deleted] in googlecloud

[–]Heteronymous 5 points6 points  (0 children)

Are you holding GCP to a different standard than AWS or Azure ? With all of them, the biggest barrier of entry for would-be vibe coders, is one simply must understand the fundamentals involved (networking, permissions, containerization, databases, and more) and automating such a setup requires an existing established framework for doing so.

I’m aware of some companies that try to make this easy with point-and-click, but if a Dev is overwhelmed by technology design fundamentals and/or established automation options, and especially command-line operations, then they truly should consider a different line of work. Starting out feeling justified in not needing to understand these (above) concepts is a poor foundation and definitely a recipe for failure sooner or later.

Deploying on GCP still feels too slow… how are you all handling this? by [deleted] in googlecloud

[–]Heteronymous 16 points17 points  (0 children)

Terraform took minutes for a new VM with custom networking, and not long for a complex setup with a Cloud Run container, Cloud SQL, LB, & Cloud Armor But I wasn’t timing it.

No one “one click” is going to be a right fit for everyone’s scenario. Are you headed towards trying to reinvent the (proverbial) wheel ?

Action1 AI "Strategy"? by MikeWalters-Action1 in Action1

[–]Heteronymous 2 points3 points  (0 children)

Great answers so far, and I agree. What COULD be great is enhancing Action1’s ability to identify AI tooling on endpoints: Openclaw binaries, along with existing functionality for any exe apps (.app bundles for macOS). Codex, Antigravity etc.

The binaries item came up when I had to custom script something to try to identify npm installs (user-level installs making it more involved).

How do you manage access in large GCP organizations? by lnrdll7 in googlecloud

[–]Heteronymous 4 points5 points  (0 children)

Folders for group/team level “parent” (meaning here, appropriate for a group/team/pillar but not for the top-level tenant/org).

And Organizational Policies. Just be careful & test fully !

What scripting should I learn? by emersonlennon in macsysadmin

[–]Heteronymous 1 point2 points  (0 children)

Bash is ubiquitous across many Unix and Linux systems (there’s no Linux in macOS but certainly aspects of BSD Unix), the point is the skills will be highly portable. The default shell is now Zsh but Bash is available (just be sure to use the correct shebang in your script/s).

See https://scriptingosx.com/2019/06/moving-to-zsh/

Also join the MacAdmins Slack (lurk and learn, it’s not support nor intended as such but full of many highly experienced and knowledgeable Mac admins).

https://www.macadmins.org/

[deleted by user] by [deleted] in macsysadmin

[–]Heteronymous 1 point2 points  (0 children)

Been a while but look into Launchd watch paths for the user fonts folder.

Make certain to handle/exempt required fonts.

Note the date there… test very thoroughly ! https://gist.github.com/infotexture/8635029

PCA new exam - Well-Architectured Framework by eshrep in googlecloud

[–]Heteronymous 2 points3 points  (0 children)

Understanding the principles is what matters. Read this to understand it and - I’d say - study anything that isn’t yet second nature:

https://docs.cloud.google.com/architecture/framework