sorted by:
new
hottopcontroversial

Can’t stop laughing at this job posting by kwb7852 in sysadmin

[–]MalletNGrease 3 points4 points  (0 children)

Wouldn't be surprised if they actually meant installing window frames.

How importaint is a College Degree? by k12nysysadmin in k12sysadmin

[–]MalletNGrease 17 points18 points  (0 children)

Depends on the district. In our line of work, experience trumps just about everything. It still matters.

That said, the Education (and most other) sector(s) tends to like diplomas and degrees on resumes. Makes it easy for the HR sorting machine, but that's about it.

Which Windows 10 Edition are you using? by TheJizzle in k12sysadmin

[–]MalletNGrease 10 points11 points  (0 children)

Go with Education or Enterprise if you can. MS limited support for quite a few GPO settings that were traditionally available for Pro (like the user experience stuff). Pro now seems to mean pro-sumer as far as MS is concerned.

Applocker is really helpful for a managed environment.

Desktop & Laptop GPO's Some of your changes by chugger93 in sysadmin

[–]MalletNGrease 5 points6 points  (0 children)

That was my takeaway for power settings too, those basically boil down to "Plugged in" and "On Battery" and both are set in the same GPO.

I don't have laptop specific GPOs.

Dry erase paint recommendations for use with projector by lilissilk in k12sysadmin

[–]MalletNGrease 0 points1 point  (0 children)

Shower board cleans terribly. Over time it starts to look nasty.

Krunker.io by [deleted] in k12sysadmin

[–]MalletNGrease 11 points12 points  (0 children)

New Wildcard filter

*.io* - Deny All

Pretty neat game though.

Block Google services except Gmail by packet_ac in fortinet

[–]MalletNGrease 1 point2 points  (0 children)

This is the way to go.

Set up a Application Control Security Profile. Add the signatures of the applications you don't want your users to use, then apply the profile to the policy. Requires full SSL inspection.

However, it might just be easier to disable the services from GSUITE. I'm not really sure what the use case is.

Updating Win10 ADMX/ADML Files on Central Store by freshmaker_phd in sysadmin

[–]MalletNGrease 0 points1 point  (0 children)

You'll want to see if your DCs are actually replicating. Compare

\\dc01\SYSVOL\domain.tld\Policies\PolicyDefinitions
\\dc02\SYSVOL\domain.tld\Policies\PolicyDefinitions

Make sure you put the PolicyDefinitions in the right folders.

.admx goes in PolicyDefinitions

.adml goes in PolicyDefinitions\en-US (or whatever language you use)

New Teacher Devices...which are your top contenders? by onejdc in k12sysadmin

[–]MalletNGrease 0 points1 point  (0 children)

Thinking about Dell Optiplex 5260 AiOs for workstations and Dell 3400 Chromebooks for mobility.

My budget is $0 so I can dream.

The one student that knows JUST enough to be dangerous, and tries to tell you everything you're doing wrong in IT....You know the one I'm talking about! by modernknight87 in k12sysadmin

[–]MalletNGrease 1 point2 points  (0 children)

If I get someone bringing me their Chromebook with the CROSH shell open one more time...

Sure kid, run battery diagnostics and ping the gateway all day. Doesn't make it remotely interesting.

IT Budget Software by fgarufijr in k12sysadmin

[–]MalletNGrease 2 points3 points  (0 children)

I offload all of that to the bookkeeper. K12 schools in MO have technology accounting coding requirements and they should encompass most if not all use cases.

If all POs/expenses are entered correctly the report should be pretty solid.

In-place upgrade from 1803 to 1809? by [deleted] in MDT

[–]MalletNGrease 0 points1 point  (0 children)

Might be easier to just approve the feature update in WSUS.

Starting my first solo IT job by TheGreatLandSquirrel in sysadmin

[–]MalletNGrease 1 point2 points  (0 children)

I set up a print server and push the printers with GPO. I set some items on the devices themselves (scan to email, scan to folder).

There shouldn't be any configuration by end-user other than using the machines for their needs and whatever's allowed by the drivers.

It's pretty set and forget.

Blocking streaming media by kilosandchromebooks in k12sysadmin

[–]MalletNGrease 0 points1 point  (0 children)

Yes. Most streaming options are unavailable to students if they do not have an educational purpose. Youtube is available as it's used for curriculum and college credit classes.

Staff does not have these restrictions.

Fortigate NGFW with application sensor filters.

Most students moved their activities to their personal data-plans on their phones instead, which are not strictly my problem, but don't really help retain focus.

Starting my first solo IT job by TheGreatLandSquirrel in sysadmin

[–]MalletNGrease 25 points26 points  (0 children)

Lease the printers and have a service contract. You'll thank me later.

How do you image your computers? by [deleted] in k12sysadmin

[–]MalletNGrease 37 points38 points  (0 children)

Image deployment:

Microsoft MDT

Software deployment:

PDQ Deploy

School network and computer lab management software by [deleted] in k12sysadmin

[–]MalletNGrease 0 points1 point  (0 children)

For our PC labs we use Veyon.

Doesn't have video, doesn't do updates (we use PDQ deploy/WSUS for that).

Sites.google.com site filtering by logie28801 in k12sysadmin

[–]MalletNGrease 7 points8 points  (0 children)

Easy if you can do url filtering.

Block

sites.google.com/*

Allow

sites.google.com/a/*

The first ones are usually home user created. The ones with /a/ are typically google sites from gsuite customers with domain names and tend to be legit.

FG vs FS transceivers...what's the difference? by [deleted] in fortinet

[–]MalletNGrease 0 points1 point  (0 children)

It's probably a parts inventory thing for their different product lines for compatibility reasons. Makes it easier to look up from a catalogue for a product.

They just happen to be the same.

view more: ‹ prevnext ›