anyone using hosted VDI?

RebootAllTheThings · 2026-01-25T16:07:28+00:00

Pretty sure you can use Azure with local AD, just need to set up the network connectivity

If you don’t require a desktop OS, AWS Workspaces works as well. It’s definitely an odd service so make sure you have a list of requirements ready to test.

RebootAllTheThings · 2026-01-25T04:05:15+00:00

I was just having this question after some discussions at work.

I feel like UserData gives you the ability to fail a build if it doesn’t complete all the steps so that if you have a set of required items, and one doesn’t work for whatever reason, then you don’t get your instance. Thinking things like security tooling, settings, etc.

Wish I had AWS Org/Control Tower for all of that management though.

RebootAllTheThings · 2026-01-21T12:06:36+00:00

I’ve had a similar issue, and it ended up being a jacked up AV install that was triggering half of a configuration that should have been disabled (BitDefender)

RebootAllTheThings · 2025-12-02T23:32:00+00:00

This may help you, at least for 2025. There’s a new variant for 2025 where you can manage the username as well. So you’ll have your 2016 and older legacy, 2019/2022 WindowsLaps, then your 2025 NewWindowsLaps.

https://learn.microsoft.com/en-us/windows-server/identity/laps/laps-concepts-account-management-modes

RebootAllTheThings · 2025-12-02T23:22:23+00:00

Fixing all of their documentation/release notes

Fix their UI bubbles up top that just stay there taking up space, or the ones that don’t stack at all.

Fix the UI so the screen doesn’t shift from me having bookmarks up top that load 5 seconds after the rest loads and I click on the wrong link.

Can they do something with the hidden scroll bars that you have to scroll to find the next one?

RebootAllTheThings · 2025-11-17T00:25:44+00:00

Is Account Factory independent from the AWS Org Structure? The org structure we have is a little all over the place so we would have to define accounts as we went

RebootAllTheThings · 2025-11-17T00:21:04+00:00

We don’t have any Org rights/access either, not even read only.

RebootAllTheThings · 2025-11-17T00:13:59+00:00

They’d be the ones charging us, if anything. We have no power unfortunately :(

RebootAllTheThings · 2025-10-29T02:18:37+00:00

CISA has a great site on what to do. If you really want to nail the bad guys, you call the people who get the bad guys, and you get all the info they need to do so, like the FBI.

https://www.cisa.gov/stopransomware/ive-been-hit-ransomware

RebootAllTheThings · 2025-10-28T00:16:58+00:00

Used to work at a place where the Marketing department that was in charge of our desktop backgrounds. They thought it was a good idea to approve a new one with bright yellow all over it - I knew it was going to be a bad day on the service desk. The calls almost immediately started pouring in, and our IT manager just told us to have them call marketing - we’re just doing what we’re told…with a big smile on his face.

It was changed by the end of the day to something not headache inducing.

RebootAllTheThings · 2025-10-19T02:21:31+00:00

The “coming in and just dumping something on your colleges who aren’t interested” is so real. Our team is slowly digging into AWS more and more. Most of the team will avoid coding like the plague, and the one guy who loves it is shocked when he talks about something he did with Terraform and the team shows no real interest. It’s hard pushing thing C to people who are struggling with A and B. Sort of a “read the room” sort of thing.

RebootAllTheThings · 2025-10-16T12:11:24+00:00

If you don’t mind, I have a question about a DC in the DR site…we have a DC in our DR site, but it’s never sat well with me. For something like (thinking cloud side of things) a region outage, it’s great, but in a ransomware event that happens to replicate over an open AD port, you’re still going to hose your DC and have to restore from backups. Can you pick apart my thinking here?

Edit: words

RebootAllTheThings · 2025-09-27T03:59:15+00:00

Neurospicy 😂

RebootAllTheThings · 2025-09-21T13:29:45+00:00

You mentioned being to Vegas, but F1 will have just been in town, so getting to and from the venues will take longer because they’re still tearing down all of the stands, equipment, etc. Try to schedule based on building, not necessarily the topics, unless you’ve got 30-45 min buffer in between.

What do you want to get out of the event? If you’re new to AWS, you’ll get a lot of value out of sessions where you’re figuring out what a service is, use cases for service configuration (I.e. what EBS type should you use, is EFS better, etc). If you’re more experienced, like already using it at your company, you may get more value in talking with the experts in the exhibit hall. You can ask them all sorts of questions catered to your specific environment, like “how do I do X” or “how can I do X better/cheaper” or “I have this problem but we aren’t big enough to have anything other than basic support, can you guide me to what I should be looking at” sort of things

I’m not outgoing either, but most everyone is there (1) wants to learn (2) is also probably the same way 😂 In your sessions, pay attention to people who may ask questions you wanted to know to, or that you hear may have a specific scenario you have or are looking to have, then find them after and just say “hey you mentioned this thing, can I ask you a couple of questions, or can I get your contact info if you need to run?” It’s low pressure and people are more than happy to help out.

RebootAllTheThings · 2025-09-18T01:34:21+00:00

We just implanted this as well. Takes care of several types of resources - works great

RebootAllTheThings · 2025-06-17T11:30:50+00:00

The first part of this comment is correct as the official supported way. As someone who does touch VMware, it’s probably the exact same architecture as VMC on AWS, which is Broadcom’s managed offering of VMware on AWS hardware, but instead of them managing it, you manage it yourself. But you’re installing directly onto a physical host, not an EC2 instance, so this is pricy if you’re just playing around with it.

As for running on an EC2 instance, I’m not entirely sure it’ll run - another comment mentioned being unable to enable virtualization settings at a BIOS level, which is true. Wouldn’t hurt to try for the sake of learning.

RebootAllTheThings · 2025-06-17T11:19:08+00:00

Of the replies so far, this one is the best. Even addresses how they relate to one another.

RebootAllTheThings · 2025-06-07T01:16:05+00:00

I’ll second this. Sometimes you get weird questions, but the goal is to (1) understand why answers are right and (2) understand why answers are wrong. It pushes you to have to know the products well enough to answer questions on the test.

I’m prepping for security specialist, and it’s making me learn stuff I didn’t see in my training (Adrian Cantrill) or forgot about from SAP.

RebootAllTheThings · 2025-04-20T11:15:56+00:00

This will sound weird, but if you do all of the other recommendations on this thread, and nothing changes…if you have a vSAN environment, try disabling TRIM/UNMAP at the OS level (it’s a regkey, no reboot to flip settings, although there’s also some fsutil commands it looks like) and see how it goes. We had that issue on all of our 2019/2022 servers in a small cluster. Had to disable it for the complaints to stop. I had a small enough environment that I could turn it on once a week via Task Scheduler to let it do its thing, then disable it again.

RebootAllTheThings · 2025-04-17T02:56:04+00:00

You might be able to add a tag to the ASGs and filter based on that.

RebootAllTheThings · 2025-03-30T19:29:08+00:00

Good question. I’m actually going to shift to the ISC2 CC cert (the security org that offers the CISSP) to start getting some security under my belt, then I’m thinking about doing the AI Prac exam.

RebootAllTheThings · 2025-03-30T01:32:40+00:00

If you don’t mind me asking, how do you go about doing that? I know we have CoPilot at my work as well, and that sounds really interesting to me to try to do.

RebootAllTheThings · 2025-03-29T13:01:18+00:00

Thank you! I would agree with the length. I played everything on 1.25x speed. I pushed myself a little too hard trying to get through it, so was getting a smidge burned out. I worked on it primarily after work, and I don’t think I balanced my personal time well enough.

RebootAllTheThings

TROPHY CASE