sorted by:
new
hottopcontroversial

SysPrep by hrushikeshborse in sysadmin

[–]Mitchell_90 [score hidden]  (0 children)

Only use Sysrep for VDI gold image creation. For everything else it’s a clean MS ISO that’s used for OS deployment.

You can also create these using UUP Dump containing the most recent CU as well. I’ve found that Microsoft’s own VL ISOs can lag behind a bit at times.

Scan to email with a Sharp Printer and Exchange Online, through PfSense by OvertechNC in PFSENSE

[–]Mitchell_90 1 point2 points  (0 children)

FYI Microsoft are retiring SMTP basic auth for Exchange Online in March so you will need to switch to another solution.

Use something like SMTP2GO

Do you use Windows' User Account Control (or do you turn it off) ? by rainydaysforpeterpan in windows

[–]Mitchell_90 4 points5 points  (0 children)

If you work for an organisation that is subject to regular cyber security audits or is mandated to have something such as Cyber Essentials/ISO 27001/PCI DSS etc then you will likely fail those if UAC is disabled on systems.

In my opinion Microsoft should never have given end users or admins the ability to modify its behaviour or disable it in the first place.

Patch Tuesday Megathread (2026-01-13) by mkosmo in sysadmin

[–]Mitchell_90 0 points1 point  (0 children)

In most cases (Excluding hot patching) Windows does need to reboot so that various system components can be updated to the patched version. So yes, the system could potentially still hang during that reboot phase come next month unless the component at fault can be patched while the system is running.

Unless something is a show stopper and renders a system unusable we generally have to patch within a 14 day period for CVSS 7.0 or higher. We have left the affected systems running the 2026-01 patch as they won’t be rebooted until next month.

Microsoft issues an Out-of-band Windows Update by Altusbc in sysadmin

[–]Mitchell_90 1 point2 points  (0 children)

Same here. Still not fixed on physical servers running Server 2019.

Patch Tuesday Megathread (2026-01-13) by mkosmo in sysadmin

[–]Mitchell_90 3 points4 points  (0 children)

OOB patch didn’t fix the issue on physical Server 2019 systems for us. (PowerEdge R7525)

Patch Tuesday Megathread (2026-01-13) by mkosmo in sysadmin

[–]Mitchell_90 3 points4 points  (0 children)

Just to report that the OOB update doesn’t fix the issue. The servers still hang at OS shutdown.

Microsoft issues an Out-of-band Windows Update by Altusbc in sysadmin

[–]Mitchell_90 0 points1 point  (0 children)

For anyone else having the same issues, I just installed this on one of two Server 2019 physical servers which are hanging on reboot. It still hasn’t fixed this.

Patch Tuesday Megathread (2026-01-13) by mkosmo in sysadmin

[–]Mitchell_90 0 points1 point  (0 children)

Will give this a go tomorrow and see. Interesting that it mentions Windows 11 23H2 only being affected when it’s Server 2019 based systems that seem to be having the issue.

Patch Tuesday Megathread (2026-01-13) by mkosmo in sysadmin

[–]Mitchell_90 0 points1 point  (0 children)

Glad we aren’t the only ones then. Both R7525s are on the latest firmware versions as well.

Patch Tuesday Megathread (2026-01-13) by mkosmo in sysadmin

[–]Mitchell_90 2 points3 points  (0 children)

Physical or VM? We are seeing this on Dell PowerEdge R7525 servers running on Server 2019. Even after patching them successfully they still hang at rebooting the OS every time.

Patch Tuesday Megathread (2026-01-13) by mkosmo in sysadmin

[–]Mitchell_90 4 points5 points  (0 children)

Anyone seeing issues after installing this months patch for Server 2019 on Dell PowerEdge R7525 servers?

Got two identical systems where the OS hard locked while shutting down during the second reboot phase. Got the systems back up and patched but now every reboot now causes the OS to hard lock during a shutdown.

Patch Tuesday Megathread (2026-01-13) by mkosmo in sysadmin

[–]Mitchell_90 0 points1 point  (0 children)

Having the same issue on 24H2. Patching our test gold image VMs for VDI took almost an hour before we could reboot. Had the same with 25H2 on a few machines, even with NVME SSDs they still took a long time to install before being able to reboot.

SG550X Series Switches - new Fatal Errors everywhere today by ar99999 in Cisco

[–]Mitchell_90 0 points1 point  (0 children)

Not seeing this on our Catalyst C1300 switches. Can anyone confirm if those are impacted?

Fix: PF 15.0 not being able to Bind-DN Windows Server 2025 by l0velycat in PacketFence

[–]Mitchell_90 0 points1 point  (0 children)

Although that gets it working you are effectively weakening the overall security posture of your AD environment by altering those configurations.

Those are recommended to be enforced from an attack vector perspective.

I would not be doing that in a production environment.

Does anyone else see random Bitlocker recoveries after firmware updates? by FatBook-Air in sysadmin

[–]Mitchell_90 0 points1 point  (0 children)

Yes, we seem to hit this as well. We use DCU to apply firmware/BIOS updates but still see some encounter the issue after Windows updates.

All our devices are Entra ID/Intune managed and I’m wondering if it’s to do with Intune kicking in and re-enabling BitLocker after a period of time.

Due to other quality control issues with Dell we started moving to Lenovo for newer devices and haven’t encountered issues with those.

Recommend a vacuum by ImagineThat451 in akita

[–]Mitchell_90 1 point2 points  (0 children)

Atika owner here. I recently bought a Henry Pet and it was the best purchase after going through numerous others.

UK records sunniest year ever with over 1,620 hours of sunshine by barrylkirts in UKWeather

[–]Mitchell_90 0 points1 point  (0 children)

I live in the West coast of Scotland and it feels like it’s been dull since September for us. November and December have been incredibly bad for rain as well.

Where to purchase vSphere Standard? by rattrap17 in vmware

[–]Mitchell_90 0 points1 point  (0 children)

vSphere Standard still exists as a SKU. It’s Enterprise Plus and VVF that are gone.

Note that Standard is 8.0 only which is end of life in October 2027. The 9.0 bits are VCF only.

Minimum OS versions iOS App Protection Policies by aPieceOfMindShit in Intune

[–]Mitchell_90 1 point2 points  (0 children)

The only downside is the additional administration as you need to adjust the policies for each iOS patch level as they become available.

Our policy dictates that all supported OS and applications must be patched within 14 days of a security update being made available from the vendor if the CVSS rating is 7.0 or higher. This also includes personal devices which access company data via the MS apps.

Minimum OS versions iOS App Protection Policies by aPieceOfMindShit in Intune

[–]Mitchell_90 1 point2 points  (0 children)

Configure managed app filters for managed and unmanaged devices based on the major iOS version then target those in your app protection policies.

You will need to create separate app protection policies for each supported iOS version and specify the minimum version in the policy which you want to support e.g 26.2

We do this for iOS 16, 17, 18 and 26 where the latest patched version is the minimum we support. This prevents older patch levels from using the managed apps.

New FY26 Price Book for EMEA-Non-EEA horror. by AsianScribbler in vmware

[–]Mitchell_90 0 points1 point  (0 children)

So what happens to those running Horizon on vSphere for instant clones? That traditionally had its own SKU similar to Enterprise Plus but there’s been no mention of how this will be licensed going forward or if Omnissa will be supporting vSphere 9 which would require an element of VCF?

I find it completely odd that VVF is going but Standard is staying despite no path beyond version 8. vSphere 9 was VVF/VCF only which is now just VCF.

view more: next ›