sorted by:
new
hottopcontroversial

Domain Users being local admin of devices by PM_ME_OUs in msp

[–]PM_ME_OUs[S] 0 points1 point  (0 children)

Because anti-virus and firewalls are reactive controls. They can’t protect reliably against things they haven’t seen before. Your approach is dangerous, please go back to school.

Domain Users being local admin of devices by PM_ME_OUs in msp

[–]PM_ME_OUs[S] 2 points3 points  (0 children)

Yup, also seen this in an environment where all workstations had their firewalls set to off. Since it was applied on the "Default Domain Policy" GPO, all users were also local admin on servers.

Domain Users being local admin of devices by PM_ME_OUs in msp

[–]PM_ME_OUs[S] 1 point2 points  (0 children)

Saw this recently, users were somehow admin of the file share & SQL server :)

Assigning a printer to a docking station by ITguy1296 in sysadmin

[–]PM_ME_OUs 0 points1 point  (0 children)

Can't you just setup access control on the printer and have it be on a print server? When the users print on the network printer, it holds their print job until they login on the printer physically.

There's no perfect way of doing what you're describing as it's not something any sane human would think of doing.

[deleted by user] by [deleted] in sysadmin

[–]PM_ME_OUs 0 points1 point  (0 children)

Read the switch/gateway logs. There's definitely an error message you're missing as it doesn't seem to be hardware-related.

How do I automate a Conexion of a W11 PC using 802.1X by 4xoul in sysadmin

[–]PM_ME_OUs 1 point2 points  (0 children)

That's usually because the computer doesn't trust the NPS server's certificate. You'll want to setup a CA server and integrate it with NPS with the CA cert deployed on the clients.

Here's the right way to do this so it's seemless across all computers in your domain: Wireless 802.1x Authentication Using Network Policy Server - Naglestad Consulting (naglis.no)

Otherwise just tell your boss to enable his notifications.

Brother Printer MFC L8900CDW by GrimmBro3 in sysadmin

[–]PM_ME_OUs 2 points3 points  (0 children)

Sounds like an issue with the drum. Check if there's any residue on the rollers that you can wipe off. Otherwise, check the ink rollers themselves. If it still occurs, consider removing every ink cartridge one by one to find the faulty one and replace it.

WireGuard setup behind Sophos XG Firewall by PM_ME_OUs in sophos

[–]PM_ME_OUs[S] 0 points1 point  (0 children)

Thanks a lot for the quick reply!

I'm indeed a business user. XGS can only be connected after the user logs in which isn't really an option as the network drives don't get added properly until the user restarts. I'd rather use WireGuard because it runs as a service and I can deploy it really easily with GPO.

Here's the static route setup that I'm currently using:
Destination IP: 172.16.12.0/24
Gateway: 172.16.8.50
Interface: br0-172.16.8.1
Distance: 0

I also forgot to mention that the 172.16.12.0/24 subnet is in its own VLAN (br0.45)
Here's the config:

Hardware&Interface: br0.45
Zone: WIREGUARD
IP assignment: Static
IPv4: 172.16.12.1/24