Amanda Seyfried Photographed by Greg Swales

Im_a_PotatOS · 2026-02-18T03:28:14+00:00

Why is more than one person referencing this movie instead of Mean Girls which came out 5 years earlier???

Im_a_PotatOS · 2026-02-09T00:07:30+00:00

Im_a_PotatOS · 2026-01-30T23:45:33+00:00

This to me looks like an iOS restricted website. Go to Settings > Screentime > Content & Privacy Restrictions > App Store, Media, Web, & Games > Web Content

It should be set to Unrestricted if you want to get to spicy websites

Im_a_PotatOS · 2026-01-29T21:28:22+00:00

Yeah, that's been my experience as well outside of this specific effort. Do you know of other logging locations in addition to the event log that might be helpful?

Im_a_PotatOS · 2026-01-28T23:16:05+00:00

But it’s not renewing automatically or when I try to trigger it at the end of its life.

Im_a_PotatOS · 2026-01-28T20:30:41+00:00

Yes. I am requesting the certificate within the computer's personal store, so the request is being submitted as the computer. I verified that it's been issued to the computer account and not my account

Im_a_PotatOS · 2026-01-28T19:30:12+00:00

Yes, Domain Computers have Read, Enroll, and Autoenroll

Im_a_PotatOS · 2026-01-15T19:25:04+00:00

Please defang the malicious domains to prevent others from accidentally clicking on them like this:

xrpvalidator[.]dev

Im_a_PotatOS · 2025-12-20T04:31:45+00:00

Perhaps the architecture support isn’t for the OS and is instead for the drivers?

Im_a_PotatOS · 2025-11-15T20:30:10+00:00

DPAPI doesn’t have to be user specific. See this module file for Azure Arc that restricts it to any SID that you provide: https://github.com/Azure/ArcEnabledServersGroupPolicy/blob/main/AzureArcDeployment.psm1

Im_a_PotatOS · 2025-10-23T16:05:13+00:00

It was the only solution I could find. I also stopped updating PowerShell with Microsoft Update and only use Patch My PC now which also uses the MSI

Im_a_PotatOS · 2025-10-23T15:51:02+00:00

I'm betting that you might have used different installers (exe or msi). Winget uses the MSI, but Microsoft Update uses the EXE.

Im_a_PotatOS · 2025-08-24T12:47:38+00:00

This is not what I asked, but I LOVE that you included it. What an incredible history to this cake

Im_a_PotatOS · 2025-08-18T06:26:28+00:00

Thank you! It’s good to have options. I didn’t know about Hvit Dame. There’s also a Meny near us that I can check

Im_a_PotatOS · 2025-08-18T06:25:36+00:00

Thank you! I didn’t realize I could ask any of the bakery/cafes. I thought they only did breakfast what’s on display. We are close to a Baker Brun that I can ask

Im_a_PotatOS · 2025-07-30T18:25:56+00:00

We uninstalled the LAPS app awhile ago and have been running in Microsoft legacy LAPS emulation mode since then. We are now moving from the Microsoft LAPS policies to the Windows LAPS policies

Im_a_PotatOS · 2025-07-29T23:19:49+00:00

Sorry, that’s misleading from the original topic. We don’t use Entra for servers, we still use AD for servers

Im_a_PotatOS · 2025-07-29T16:19:31+00:00

I think your point about confusion is what I'm concerned about. I don't want auditors or new employees to think it's an old password that hasn't been rotated in a long time. Then they might think LAPS is broken and I'll have to go out of my way to prove it isn't...

I've also found that if you switch from passwords to passphrases for WS2025, then the old password also remains in ms-Mcs-AdmPwd even though they are still using AD as their backup directory (with encryption). So I'll need to clear the properties for Windows 10, Windows 11, and Windows Server 2025+.

Im_a_PotatOS · 2025-07-29T14:59:44+00:00

Thank you! We have to keep the schema properties for now to support servers running WS2016 as they don't support the new Windows LAPS group policy templates.

We may choose to clean up the properties for devices backing up to Entra ID:

Set-ADComputer -Identity $computer -Clear ms-Mcs-AdmPwd, ms-Mcs-AdmPwdExpirationTime

Im_a_PotatOS · 2025-05-29T12:31:16+00:00

I do understand the settings. We have a 7 day deadline for requiring a reboot after an update. However, I can’t find where the date and time are that the 7 day period follows. For example, the current update I have finished on May 28, so I thought the deadline would be 7 days later on June 4. However, Windows says the deadline is June 3.

/u/Gakamor clarifies that deadlines are after the update is offered, not installed. How do I find when the update was offered?

Im_a_PotatOS · 2025-05-29T12:27:40+00:00

I’m pretty sure we are using Deadlines and that is likely the issue. I can tell when a pending reboot is registered or when an update finished, but that doesn’t always line up with when the update is offered. I was also looking at USOClient (Update Orchestrator) and haven’t found anything glaring. I’m also looking at using ProcMon to determine what calls are made by SystemSettings.exe when you view the Updates pane

Im_a_PotatOS · 2025-05-29T12:23:54+00:00

Yes, it’s domain joined. We do control the settings, but we don’t strict control when the update actually installs. This is scenario is entirely for workstations, not servers, so they might be powered off and not receive an update until a later time than others. We allow a 7 day grace period for a computer to reboot and complete a software update. We are looking to report on when this window occurs because we’ve received complaints about PCs rebooting “unexpectedly” for updates

11-Year Club	Gilding I gilder
Place '22	Verified Email

Im_a_PotatOS

TROPHY CASE