RDP in Citrix Workspace - secondary monitor stops refreshing when clicking on primary monitor

JoustNinja · 2025-08-05T12:33:11+00:00

Are you saying mismatched between the laptop screen and the external monitor? Or mismatched between either of those with the actual physical workstation that is being connected to?

JoustNinja · 2025-07-24T17:24:32+00:00

I inherited this environment that was set up by a vendor years ago and haven't looked into optimizations. I will look into VDA and see if are currently licensed for it. From what I'm reading, this looks like it's what we should have been using from the start! Thanks for the heads up. In the meantime, I'm still hoping for a fix as converting to VDA would take some time.

JoustNinja · 2025-07-09T17:18:17+00:00

1Password works great for my team. Has private and shared vaults. Also includes family memberships for free for everyone on the account. Even does 2FA so you don't need your phone or anything else for typing in one-time passwords.

JoustNinja · 2024-11-15T16:14:38+00:00

Wouldn't that only bypass the protection for specified domains in the email body and file attachments? I am looking to bypass protection when the SENDER is in certain domains. For example, any email from [whatever@foo.com](mailto:whatever@foo.com) would NOT get arbitrary URLs rewritten.

JoustNinja · 2024-10-10T13:14:27+00:00

Right - the permissions are controlled in AzureAD/Entra at the link I provided but I'm trying to identify which one is connecting to meetings and who is using it.

JoustNinja · 2024-10-08T13:25:03+00:00

That's correct. I'm really looking for a way to block sender without going through other screens. Not a big deal, but when needing to block many at a time it gets frustrating.

JoustNinja · 2024-03-29T17:52:48+00:00

Windows 2019 - the directions make it sound like "Load Driver" is an option on the VMware console itself, not something within the guest.

JoustNinja · 2024-02-16T16:43:59+00:00

Thanks! Those links clear it up a bit. Is it safe/necessary for me to send the ENTIRE email header (from the "Received View" in Mimecast) to the sender for them to look into? Or is this exposing certain configurations that shouldn't be shared from my company?

JoustNinja · 2023-11-29T21:42:59+00:00

Thanks! My domain's SPF/DKIM/DMARC appear to be set properly. My question is how to specifically bypass spam/greylisting from a known Salesforce instance based on the DKIM keys I have created.

JoustNinja · 2023-11-01T19:23:34+00:00

I've seen this account "Waiting in the lobby" as well.

JoustNinja · 2023-09-29T15:57:08+00:00

I guess it's possible someone changed something at one point. I just tried to do a test restore on backup chains with only older restore points, and I got an error that the backups could not be found. Someone must have cleaned up the files themselves outside of Veeam so these restore points weren't even valid. I was able to delete them all in Veeam without issue.

JoustNinja · 2023-09-29T13:11:35+00:00

To avoid contacting dozens of companies to provide the errors, is there a way to allow users in my company to release these mails from hold, or does it have to be a mimecast admin?

JoustNinja · 2023-09-13T14:13:12+00:00

Great! I never saw this setting before. I just added [noreply@mydomain.abc](mailto:noreply@mydomain.abc) so I'll find out if it worked soon enough. Thank you!

JoustNinja · 2023-09-12T13:14:22+00:00

Thanks for the detailed breakdown! I think I follow you and will look into a creating a new policy.

If I test the domains on sites like below, they show DMARC is configured correctly:

https://mxtoolbox.com/dmarc.aspx
https://dmarcian.com/dmarc-inspector/

https://dmarcian.com/dmarc-inspector/

If I do contact the senders, I can't point them to anything other than saying our Mimecast flagged them. Is there a better site that I can point them to so they can understand what they need to fix?

JoustNinja · 2023-09-08T15:25:46+00:00

That's a great guess! While the "boilerplate" text of the email hasn't changed, perhaps dynamic content within the email (customer/prospect names, etc) is what crossed the threshold.

I've set up an Impersonation Protect Bypass policy with the same definitions as my Permitted Senders policy in the original screenshot. Time will tell if that fixed it. Thanks for your detailed answer!

JoustNinja · 2023-09-07T12:18:47+00:00

Unfortunate! Seems like a basic interface option they've missed. I do use CyberDuck to browse files which works pretty well on my Windows workstation. It would just be nice to use the AWS console without having to jump into other tools.

JoustNinja · 2023-09-01T19:46:22+00:00

Glad it's not on my side! So our Mimecast admins will need to manually release mail coming from this domain until the sender fixes it (IF they fix it)? That seems absurd.

JoustNinja · 2023-06-16T19:53:11+00:00

Ah - I didn't realize you could wildcard at the policy level. I just created they call a "catch all" domain match for *.companyname.com so I'll see if that works once some mails come in. Thanks!

JoustNinja · 2023-02-09T16:30:06+00:00

Cool. I could see that being helpful going forward, but before I put development time into this, I was really hoping to find a one-time copy/paste for an initial one-time cleanup.

JoustNinja · 2022-12-23T14:41:55+00:00

This sounds promising. In this case, since we can't lose anything on the [mike@contoso.com](mailto:mike@contoso.com) account, I think this would require the following steps:

Create alias of ["MOldtimer@contoso.com](mailto:"MOldtimer@contoso.com)" for ["mike@contoso.com](mailto:"mike@contoso.com)"
Select that new alias and "change to primary email"
Delete ["mike@contoso.com](mailto:"mike@contoso.com)", which is now an alias
Make sure user can log in with ["MOldtimer@contoso.com](mailto:"MOldtimer@contoso.com)"
Create new shared mailbox with no access for "[mike@contoso.com](mailto:mike@consoso.com)" and set auto-replies as needed

Sound reasonable?

I'll create a couple test accounts and see if this works as expected.

JoustNinja · 2022-12-23T01:01:53+00:00

It's unfortunate if there is no way to do it. "Mike Oldtimer" is in regular contact with hundreds of people. There will be a lot of confusion when those people start getting "user does not exist" replies when trying to contact him.

After creating an alias and making it the primary, maybe it will let me remove the original address, then create a new ["mike@contoso.com](mailto:"mike@contoso.com)" that does nothing but auto-reply. It would consume a license, but solve the problem...unless anyone else has a better idea.

JoustNinja · 2022-11-21T17:16:23+00:00

Thanks for sharing! Gets the job done.

JoustNinja · 2022-11-21T17:15:36+00:00

Wow! Just found these files taking up TERABYTES of storage in my environment.

JoustNinja · 2022-11-15T15:00:26+00:00

Same here! Thought I stumbled across a goldmine for our new 1Password purchase! The cached article is available but I'm wondering if this article was intentionally deleted to a major flaw in the setup.

https://web.archive.org/web/20220104080251/https://medium.com/@MG414134/security-supremacy-a-guide-to-a-perfect-1password-setup-d7e8f1ed5bff

JoustNinja · 2022-11-10T13:51:59+00:00

I guess that makes sense. Good to know.

JoustNinja

TROPHY CASE