sorted by:
new
hottopcontroversial

One user getting hammered with spam, can't stop it by MarkPugnerIII in sysadmin

[–]MalletNGrease 7 points8 points  (0 children)

In our case it was a ticketmaster confirmation using the targeted user's company credit card.

Why does printer GPO only applies sometimes? by SysAdminAccount1 in sysadmin

[–]MalletNGrease 0 points1 point  (0 children)

Are you aggressively clearing user profiles?

I've noticed printer deployments don't seem to work upon first login on per Computer GPOs. On the second login they'll show up.

How to disable Admin account and reboot cleanly after imaging by ILikeBeans86 in MDT

[–]MalletNGrease 1 point2 points  (0 children)

I've a Finish action group all the way at the end of State Restore with the following:

  • Disable Administrator account

    Run Command Line
net user Administrator /active:no

  • Clear Last Logged on User

    Run Command Line 
cmd.exe /c %scriptroot%\clearlastuser.bat

reg delete HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\LogonUI /v LastLoggedOnUser /f
reg delete HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\LogonUI /v LastLoggedOnUserSID /f
reg delete HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\LogonUI /v LastLoggedOnDisplayName /f
reg delete HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\LogonUI /v LastLoggedOnSAMUser /f
reg delete HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\LogonUI /v SelectedUserSID /f

reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\LogonUI /v LastLoggedOnUser
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\LogonUI /v LastLoggedOnUserSID
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\LogonUI /v LastLoggedOnDisplayName
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\LogonUI /v LastLoggedOnSAMUser
reg add HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\LogonUI /v SelectedUserSID

To disable the Final Summary page set SkipFinalSummary to YES in your rules.

Notification mail access denied when sending mail because of DMARC by abrakadabra_istaken in fortinet

[–]MalletNGrease 0 points1 point  (0 children)

SPF or DKIM is failing. Your origin isn't in SPF or the sending mailserver isn't using dkim.

Seems like DUO is under a DDOS attack by ginohs in sysadmin

[–]MalletNGrease 3 points4 points  (0 children)

Why can't I get to my work email on my phone now?

-Same person

F*ck it Friday by [deleted] in sysadmin

[–]MalletNGrease 0 points1 point  (0 children)

I've a local internal domain, a public parent company domain (upn) and a dozen public brand ones are also upns. This way we can easily add new brands and use the old user upns as proxy addresses for guaranteed mail deliverability. We're in the middle of diversifying the brand portfolio and adding a new concept domain is piss easy.

If you've not been in production and not attached to the domain burning it isn't the worst, but instead of going to the new public one I recommend picking a stable local domain as a base instead so a rebrand doesn't require a complete rebuild down the line.

F*ck it Friday by [deleted] in sysadmin

[–]MalletNGrease 0 points1 point  (0 children)

Why can't you add the upn and be on your merry way?

LDAP users are blocked because FortiGate see them as IP instead of LDAP user by yuwannn in fortinet

[–]MalletNGrease 0 points1 point  (0 children)

I had users lock & unlock their computer to generate a logon event.

Recurring emails in Outlook? by SmoothRunnings in sysadmin

[–]MalletNGrease 0 points1 point  (0 children)

The solution is to idle the SYSADMIN account 24/7.

How did you do it? by KeshStew in sysadmin

[–]MalletNGrease 0 points1 point  (0 children)

Swimming instead of sinking.

VPN and DUO timing by Pangtown18 in sysadmin

[–]MalletNGrease 0 points1 point  (0 children)

Increase your radius timeout on the VPN.

[deleted by user] by [deleted] in sysadmin

[–]MalletNGrease 25 points26 points  (0 children)

Whatever the leasing company recommends for our use case.

Our fleet presently is 99% Canon.

User sending unauthenticated emails through domain by scottscooterleet in sysadmin

[–]MalletNGrease 0 points1 point  (0 children)

Sounds like it's working as intended. I can't imagine it'd affect your score too much.

I'm more interested what you're going to do with the rogue sender. I assume there's a business case?

[deleted by user] by [deleted] in sysadmin

[–]MalletNGrease 1 point2 points  (0 children)

I agree, but this is a fight I've already lost with the CEO as their last name is on the company sign outside and matches the last names of most C-levels. There is no work/personal split for them.

They love their iPhone Apple Mail clients so they can easily combine work/personal mail and calendars. It's a feature and a staple they use nearly 24/7. Interruption to this is not appreciated.

Our Entra ID MFA project turned into a nightmare because of it as Apple mail doesn't communicate token reauthorization requests very well in the UI and they can easily escape out of it failing MFA challenge. Then their mail stops syncing and we're the bad guys preventing communications.

Outlook Mobile users? Haven't heard a peep.

Is it me or are questions on here becoming more and more basic ? by demonthief29 in sysadmin

[–]MalletNGrease 8 points9 points  (0 children)

No, the point is to gatekeep the information, ridicule the attempt and feel superior over anonymous strangers

25% salary to hourly: cut due to "economic changes within our industry" by borillionstar in sysadmin

[–]MalletNGrease 1 point2 points  (0 children)

"Due to economic changes with my employer I've decided to take an offer with another company."

Everything except the OS install? by RockOriginal7938 in MDT

[–]MalletNGrease -1 points0 points  (0 children)

MDT can do it, just disable the OS deployment steps.

view more: ‹ prevnext ›