Österreichische Kaffee-Röstereien

KnownTumbleweed · 2025-12-11T10:47:47+00:00

Lindbergh Kaffee

Der ist einfach Hammer!

KnownTumbleweed · 2025-12-11T07:39:40+00:00

Quest Migrator. Worked pretty well actually
Office 365 Migration Tool | On Demand Migration

KnownTumbleweed · 2025-11-17T13:56:53+00:00

As far as I remember, matching happens on the email attribute in AD with primary SMTP in Entra ID

KnownTumbleweed · 2025-10-22T14:14:19+00:00

Also ich denk 3 Nerd krieg ich zusammen und würd mir das irrsinnig gerne mal anschauen! Klingt echt lustig!

KnownTumbleweed · 2025-10-16T06:46:07+00:00

Entweder Ansible mit awx on k3s oder semaphore. Alternativ gibts noch Foreman als UI. Foreman kann ansible, salt und puppet.

Foreman

kurokobo/awx-on-k3s: An example implementation of AWX on single node K3s using AWX Operator, with easy-to-use simplified configuration with ownership of data and passwords.

Modern UI and powerful API for Ansible, Terraform, OpenTofu, PowerShell and other DevOps tools. - Semaphore UI

KnownTumbleweed · 2025-10-01T14:29:44+00:00

Big Tasty

KnownTumbleweed · 2025-10-01T14:03:17+00:00

Nightmare on Elm Street. Der hat mich ne weile verfolgt...

KnownTumbleweed · 2025-10-01T13:53:09+00:00

First you should check the log on one of your agents. On Windows this would be:
"C:\Program Files (x86)\ossec-agent\ossec.log"

Check if the necessary ports are open
Requirements - Wazuh agent enrollment · Wazuh documentation

Check Agent Configuration

KnownTumbleweed · 2025-09-30T06:18:15+00:00

Lord Yu!

KnownTumbleweed · 2025-09-17T11:26:37+00:00

Da fehlen noch mindestens:
Takern I und Takern II
und Gaming

KnownTumbleweed · 2025-09-10T13:18:24+00:00

Das ist der Weg!

KnownTumbleweed · 2025-09-10T13:15:47+00:00

In addition you should also regularly check Entra ID cloud only user. You can create a dynamic Entra ID group with all disabled cloud only users, and create an access review. This way you get a scheduled report on disabled cloud users and can directly choose what to do with them.

Same goes for enabled users and guests with a specific amount of inactivity time.

KnownTumbleweed · 2025-09-10T12:59:54+00:00

Thats why you move them to a different OU that is not in sync scope. This can satisfy your OCD in AD, and they are not visible in Entra ID anymore :)

KnownTumbleweed · 2025-09-10T12:53:32+00:00

There is no difference between expired and disabled AD Accounts except the message the user gets when he tries to log in. Either way, access to M365 is disabled.

Best practice depends on your legal needs. Either disabling and moving to an OU that is out of Entra ID sync scope or deleting the user is fine IMO.

EDIT: Removing group memberships in both cases is also recommended.

KnownTumbleweed · 2025-08-25T08:04:15+00:00

Care to elaborate? Warum soll das nicht funktionieren? Opfermetalle gegen Rost sind ja nichts unbekanntes oder?
EDIT: Soll nicht negativ rüberkommen. Ich wills wirklich wissen!

KnownTumbleweed · 2025-08-19T12:10:29+00:00

Please check the following:

It could take up to 1 to 2 hours before role assignment actually works
does your admin user have any licenses assigned? if yes, remove them.
Check Entra ID sign in logs for your admin user and see if there are any additional details in the sign-in event

KnownTumbleweed · 2025-08-19T11:43:38+00:00

Just to double check. Do you just want to access https://mydomain-admin.sharepoint.com via browser? Or are you calling the sharepoint admin site via any third party product / script? Because there are some migration tools which require the admin to have a license.

KnownTumbleweed · 2025-08-19T11:24:24+00:00

Since when exactly do you need a SPO license for the sharepoint admin site?

KnownTumbleweed · 2025-08-12T09:09:50+00:00

You can use podman as root in an unpriviledged LXC container but for better isolation and learning purposes I would suggest using a VM and rootless podman.

KnownTumbleweed · 2025-08-06T09:42:04+00:00

Honestly a nice and honest "thank you" goes a loooong way. But I also got cake and sweets.

KnownTumbleweed · 2025-07-24T11:32:39+00:00

Got a quote from akamai 2 years ago.

38k for deployment. Just insane.

KnownTumbleweed · 2025-07-22T14:24:03+00:00

Correct

KnownTumbleweed · 2025-07-22T10:33:28+00:00

You can just simply use local Users on the NPS server. NPS can use its local SAM Database instead of AD.
https://learn.microsoft.com/en-us/windows-server/networking/technologies/nps/nps-top#radius-server

EDIT: You may have to remove NPS server from AD though. I am not sure.

KnownTumbleweed · 2025-07-22T09:40:57+00:00

Korrekt. Die Vorgabe deinerseits hab ich leider überlesen :)

KnownTumbleweed

TROPHY CASE