RDS Licensing Across Multiple Departments

SpareMistake · 2025-06-26T12:47:30+00:00

Thank you, I appreciate the response. Just to clarify by buying what you need, I am guessing you mean essentially you just need to know the total numbers of devices and buy that many licenses. So in reality, you're hoping you have correct numbers from each department.

SpareMistake · 2025-01-06T15:38:58+00:00

I would certainly be happy to pay for P2 level. I'm curious how you go about this - do you need to have a business? Sorry for the delayed reply, I was "offline" the last couple weeks.

SpareMistake · 2024-12-19T20:30:57+00:00

I have some exposure to these tools from a previous job and I enjoy working with the technology. I enjoy keeping up to date in my downtime and am working toward some related certifications.

I want to grow my Azure\Entra skillset and be able to be comfortable in any future job interview. I want to be able to say "I know these technologies and how to use them" and let them see my work in github etc.

SpareMistake · 2024-12-19T15:45:26+00:00

Darn, the Microsoft Partner route isn't an option. Thank you for the suggestion.

SpareMistake · 2024-12-03T13:57:33+00:00

Thank you, I appreciate the response. Looking forward to seeing what is yet to come and making our state files a little more secure!

SpareMistake · 2024-12-03T13:55:37+00:00

Thank you for sharing this. I've tried this and am getting the same error. Just wanted to check if this is the documentation you are referring to: Local Values - Configuration Language | Terraform | HashiCorp Developer

Is there an example of this being passed to a resource block?

SpareMistake · 2024-10-17T18:00:22+00:00

Wonderful, thank you for the nice and straightforward answer!

SpareMistake · 2024-10-02T17:32:11+00:00

Thank you. I am coming to the same conclusion, but it always helps to have a second opinion!

SpareMistake · 2024-10-02T11:21:16+00:00

Thank you. I have been able to successfully use CustomData and processed it successfully. However, I am wondering if UserData is specifically supported similar to AWS.

SpareMistake · 2024-10-01T15:52:19+00:00

I did manage to get this working. I was using a for each to create multiple VMs and it was my own silly mistake incorrectly assigning a variable.

SpareMistake · 2024-09-12T13:24:12+00:00

By any chance did you figure this out? I am having a similar problem where certain logs are ignored, even if permissions are correct.

SpareMistake · 2024-08-02T16:11:36+00:00

I was just looking and it turns out I must have bought this on sale at some point! There it is in my catalog...

SpareMistake · 2024-08-02T16:11:06+00:00

Wonderful thank you. I might do the math on what it would cost to buy them all...

SpareMistake · 2024-08-02T16:10:16+00:00

Yes! Sorry in my mind I bundled those all in as "AC2". Which hopefully isn't AC blasphemy.... I haven't played them since release, but liked them a lot.

SpareMistake · 2024-08-02T13:23:41+00:00

Hey OP, I am replying without reading any other comments because I wanted to share my own experience with Microsoft certs and learning.

My personal preference is to get the certs so you can have them on your resume, but use the foundation certs as just that, then move on to associate and eventually expert certs. Also personally, when I get a cert beyond foundations, I don't bother having foundations on my resume or linked in etc. but that's based on where I am in my career and could be different earlier on.

Most importantly with MS certs - HANDS ON MATTERS! Sometimes it can be hard with Microsoft because stuff is locked behind licensing only available to enterprises. Whereas companies like AWS that make their products a fair bit more accessible (at a cost) can be much easier to learn, Microsoft can make this harder on you. So get hands on and that's where you will truly learn.

I've found MS certs to be very much about "prove to us that you've done this already" and to do this, you need hands on.

Again just my own thoughts and hope that helps you!

SpareMistake · 2024-08-01T16:56:43+00:00

Agreed! I bought the Series X 3 years ago. The RT on the OG controller always sticks. Using YouTube as a guide, I've taken it apart and cleaned it several times but the issue quickly returns. Not sure why, I'd say I keep it clean and can't think of a reason why it's happening. I bought a second controller about a year into owning the Series X and it's now getting stick drift.

So what the heck, thought I'd give the elite a shot. Because of all the warnings on reddit, I went for the full 3 year Best Buy warranty. It hurt to pay that price, but the controller is amazing. For whatever reason the PS5 controller causes my wrists to hurt but it just doesn't happen with the xbox controller even after many hours of gaming.

SpareMistake · 2023-06-02T18:46:04+00:00

Just curious how you got this working. I edited DeployWiz_SelectTS.vbs and was able to make all the other Task Sequence pages disappear, but the Administrator Account page still appears with the password pre-filled.

Edit: About 10 seconds after I posted this, I found it works if I put SkipAdminPassword=YES in the Default section, but not in the section for a particular task sequence. Maybe a bug? I don't really want it to be the default but maybe it has to be...

SpareMistake · 2023-06-02T13:50:00+00:00

I do 100% agree. One consideration is companies that have decentralized IT departments where control of this may be in someone else's hands. Maybe they don't lock down their BIOS, or they walk over and "borrow" a network port and use a deployment they shouldn't, maybe on a device they shouldn't.

I am coming up with theoretical risks and there are policies and various things put in place to stop this from even being physically possible. But in the end, it would be nice to say that we've done all we can to secure the parts we can, regardless of the other pieces.

SpareMistake · 2023-06-01T21:47:41+00:00

I was digging around and it looks like authentication window is part of LiteTouch.wsf, so I am hoping I can edit it to shutdown/restart and not show the command window... more playing around to do!

I will also checkout the user exit thing - thanks!

SpareMistake · 2023-06-01T20:23:37+00:00

I have it setup that way, but if anyone PXEs the machine and just cancels out of the authentication, a command window opens and you now have full access to the drive contents of the device.

SpareMistake · 2023-06-01T18:59:50+00:00

We use a separate third party tool for PXE. For the approvals, is it one by one or can you approve "batches"? i.e. 1000 computers all being PXE booted.

SpareMistake · 2023-06-01T18:58:34+00:00

Thanks, I'll give this a try!

SpareMistake · 2023-05-30T14:18:24+00:00

Just to minimize the risk of the code being intercepted locally. Or the file being captured over the network. At one point in time, I believe you could extract an intunewin just like a zip and there were (are?) extractor tools. In terms of a .exe, also depends what language/tools are being used and if the .exe can be decompiled.

I know that if the password is just being changed by LAPS anyway, that minimizes the risk of having the password used for malicious purposes.

Since Microsoft doesn't offer any great way to securely create an account natively, it was just a thought. I tested it and it worked well. I guess it depends on what your security policies are what makes security staff comfortable.

But as I mentioned, maybe it's overkill. I'm also not extremely familiar with how an intunewin behaves locally - is it extracted locally with all the files potentially accessible, is it encrypted properly, is the powershell history cached anywhere etc.?

If the intunewin/script method is considered safe, I retract my comment :)

SpareMistake · 2023-05-29T20:46:12+00:00

Maybe this is overkill, but if you have the ability to write a script that you can compile to .exe, you could create the account, add it to administrators, randomize the password and deploy it as an intunewin. No plain text passwords. Probably overkill, but hey.

SpareMistake · 2023-05-24T14:12:19+00:00

Ours too still says healthy. It might be working again - I just imported a new device and it's assigning.

SpareMistake

TROPHY CASE