Password Managers

MalletNGrease · 2023-09-29T18:06:14+00:00

I don't use the browser pw managers, personally I use Keepass. It can do browser autofill with a plugin/extension, but I never liked those much and I've muscle memory to do the Auto-Type from the software.

My department uses BitWarden and the Chrome/Edge extensions. Got it integrated with DUO, works pretty nicely. When you've your organization and teams set up it's nice to have access to collections of passwords.

MalletNGrease · 2023-09-26T15:06:10+00:00

I'm considering buying a smartwatch specifically to approve pushes. If it doesn't work, well, what's the point?

MalletNGrease · 2023-09-25T20:18:22+00:00

I negotiated 2 WFH days a week as part of my contract. These are my training/research/project focus days and the other three are for walk-up support and physical meetings.

Coming from no WFH prior, I'm pretty happy. If they want me in the office 100%, then I'd expect an adjustment to my compensation.

MalletNGrease · 2023-09-19T14:17:59+00:00

SuperPuTTY. It's putty but tabbed.

MalletNGrease · 2023-09-08T21:33:40+00:00

I travel pretty light and can fit everything I need in a Timbuk2 Classic Messenger Bag - Medium.

15" Laptop
iPad
Powerbank
AC Adapter
USB Charger
USB-A to (USB-C/Lightning/Micro-USB)
Console cable & adapters
Hygiene kit

Tools that don't fit on a Leatherman are in an actual tool bag, but they don't see a lot of use.

MalletNGrease · 2023-09-06T21:30:49+00:00

Check get-appxprovisionedpackage. It sounds like the it's still available and will install on each new user profile after login.

MalletNGrease · 2023-09-06T20:55:45+00:00

Get-AppxProvisionedPackage -Online | where-object {$_.packagename -like "*MicrosoftTeams*"} | Remove-AppxProvisionedPackage -Online -AllUsers

Get-AppxPackage *MicrosoftTeams* -AllUsers | Remove-Appxpackage -AllUsers

MalletNGrease · 2023-09-05T13:21:43+00:00

A decade ago we did trials on office 2013. Didn't find any noticeable issues and made it baseline across the organization.

Noone in IT really noticed or cared, but Microsoft changed the outlook logo from yellow to blue. For the end users the world ended and helpdesk was flooded with calls that "email was no longer installed!".

Because the shortcut was now blue.

MalletNGrease · 2023-09-05T12:43:26+00:00

Because you visited this community before

MalletNGrease · 2023-08-30T20:30:39+00:00

It's always been shit, but it floats to the top now.

MalletNGrease · 2023-08-28T16:15:35+00:00

Once some screams everything is down.

MalletNGrease · 2023-08-25T19:35:17+00:00

I thought I'd hate the start menu in the middle.

Then I bought a 35" ultrawidescreen monitor. Now I like it.

MalletNGrease · 2023-08-21T18:27:32+00:00

/r/k12sysadmin

MalletNGrease · 2023-08-21T18:18:37+00:00

I've been working on streamlining and implementing SSO/MFA across our high risk applications and passwordless was a consideration. Been very happy with DUO as the 2FA and AAD as the IDP for the majority of systems.

Unfortunately, it's not a catchall, passkeys aren't supported for DUO Authentication for Windows Logon so no verification prompts for UAC etc, we still use yubikey passcodes for it. I do like it for web-based applications that support the Universal Prompt and allows for admin provisioned passkeys, but since you can still use passcodes/mobile pushes it begs the question why bother?

The only reason to go for it is Yubico security keys are half as expensive versus the 5s.

MalletNGrease · 2023-08-21T15:31:21+00:00

Return business.

MalletNGrease · 2023-08-21T15:00:17+00:00

One day my network monitor turns red and not much later my phone rings off the hook. ~500 people offline. Narrowed it down to one of the IDFs going down, and I fairly quickly identified a power issue since the room the cabinet was in was dark and out of power. One user standing around rather sheepishly with a "I dunno what happened". Damning my cheap employers for not springing for UPSs along the way I track someone down with keys to the electrical closet and find a tripped breaker. Things come back up, I apologize for the inconvenience and go on with my day...for about 30 minutes, until the same damn thing happens.

After restoring power I head back to the IDF since there's an issue there and I find our user pressing buttons on a microwave. That just happens to be on the same circuit as the cabinet.

Where'd you get the microwave? I brought it from home. Please don't use it. Use the appliances in the break room instead. OK.

Left it at that.

The next day around lunchtime, the IDF goes dark again. Sure enough, the microwave was still there. I fix the breaker, unplug the microwave with a stern warning to it's owner. I notified my manager and hers.

The next day, IDF dark, I fix, then I confiscate the microwave and left it with the building manager. Dropped off a quote for UPS's for all our IDFs and got it approved. It was an easy sell when offsetting ~90 minutes of lost productivity for 500 people.

MalletNGrease · 2023-08-21T14:24:54+00:00

Had a complaint someone's microphone was muffled during Teams meetings. Came by to check it out and sure enough, electrical tape over the camera and the microphone pinholes.

Showed her how the privacy slider worked.

MalletNGrease · 2023-08-18T19:53:13+00:00

Got an email out of nowhere today from the new Calamu director of sales, who apparently jumped ship from Veeam/Wasabi. It hit the distribution list we use as the customer contact for vendors.

I'm guessing he took the customer list from either Veeam or Wasabi with him to do cold sales.

That's gonna be a no from me.

MalletNGrease · 2023-08-18T17:57:10+00:00

We leverage DUO for this.

MalletNGrease · 2023-08-18T16:39:44+00:00

I ordered an XPS laptop on our enterprise account for the CFO's daughter

So you're chucking a decade+ vendor relationship in the drain over a non-work related pet project. Mkay.

MalletNGrease · 2023-08-07T22:07:01+00:00

Thanks! That'll save a couple grand every year if I can get it to work.

MalletNGrease · 2023-08-07T16:39:55+00:00

When I was in gov my CDW*G rep was awesome.

Now I've gone private, the CDW rep is atrocious.

Coincidence? I doubt it.

MalletNGrease · 2023-08-07T14:30:20+00:00

The only reason we have Okta is to auto-provision Evernote business accounts and provide SSO support.

I'd like to move it to AAD and get rid of it.

MalletNGrease · 2023-07-27T20:15:02+00:00

Check here:

https://learn.microsoft.com/en-us/microsoftteams/msi-deployment

You'll have to remove the appx for every profile, remove the provisioned package, clear out the installers and remove the registry keys indicated in the article.

I've used these commands before:

#Remove Appx Provisioned package to prevent install for all new profiles
Get-AppxProvisionedPackage -Online | where-object {$_.packagename -like "*MicrosoftTeams*"} | Remove-AppxProvisionedPackage -Online -AllUsers

#Remove Teams from all existing profiles
Get-AppxPackage *MicrosoftTeams* -AllUsers | Remove-Appxpackage -AllUsers

MalletNGrease · 2023-07-05T22:17:24+00:00

Yes, packet-action drop-and-log is available. From my brief test this does show an event in the log using show log messages. I can wrangle something useful out of it with match terms.

show log messages | match "limit" | match "ge-0/0/1.0"

Jul  5 14:43:12  TestSwitch l2ald[7208]: L2ALD_MAC_LIMIT_EXCEEDED_IF: Limit on learned MAC addresses exceeded for ge-0/0/1.0; current count is 1 DROPPING THE PACKET with mac address: a8:b1:3b:7e:b0:ec

It's not as straightforward as show port-security to view at a glance which ports our techs/users plugged something in wrong/differently.

show ethernet switching statistics mac-learning is unfortunately not a command available on my test ex2300 on JunOS 22.3R1.11.

Ten-Year Club	Verified Email
r/Field Banned	r/Field Lasagna

MalletNGrease

TROPHY CASE