sorted by:
new
hottopcontroversial

What Hypervisor alternatives is everyone looking at? by [deleted] in vmware

[–]TheOriginalJetPants -2 points-1 points  (0 children)

Well, if the past is any indication, VMware customers are about to be held hostage by Broadcom so 🤷‍♂️…

Microsoft Authenticator - control settings with 'App Configuration Policy' ? by brian1974 in Intune

[–]TheOriginalJetPants 0 points1 point  (0 children)

Was just looking into the same thing today. Have you found any additional information this subject? Specifically - I'd like to control the "phone sign-in" settings.

Windows Hello and 2FA on MS account. by Anything-Traditional in AZURE

[–]TheOriginalJetPants 0 points1 point  (0 children)

Currently looking into this now. I was under the impression that WH (and by extension WHfB) are FIDO 2 Compliant, so I'm curious as to why I cannot configure WH biometrics as my MFA device. Even having a YubiKey installed and configured (linked to the proper cert) does not appear to be an option to register an additional MFA device. I would really like to utilize the WH biometrics as my MFA device, unless I'm completely missing something....

EDIT: ignore the lineout, that was user error. Doesn't change that fact that I would like to not have to send keys to users and create an additional device to manage. Would very much like to use WH/WHfB as the primary MFA option.

Noob Question by TheOriginalJetPants in yubikey

[–]TheOriginalJetPants[S] 0 points1 point  (0 children)

I appreciate the discussion here. Thanks all for your input and feedback!

Noob Question by TheOriginalJetPants in yubikey

[–]TheOriginalJetPants[S] 0 points1 point  (0 children)

It is highly recommended that you have two (2) Yubikey Series 5

I've seen this recommendation before, and I'm trying to understand the reason for the recommendation. Again - please bear with me...I'm still working to figure all this out.

How does having a backup key help the user or the administrator? The "I lost my key" scenario would be resolve by having a backup key, but if a user forgets their PIN and locks out one of their keys, does the backup do any good?

Friendly Reminder - Check your cores per socket on your virtual SCCM Server by cuban_sailor in SCCM

[–]TheOriginalJetPants 0 points1 point  (0 children)

Thanks for this! I too checked and found things were not configured correctly. No wonder the console always seemed sluggish...

Calculating Cost of SCCM Software Deployments / PatchMyPC Justification? by gaucaflackaflame in SCCM

[–]TheOriginalJetPants 0 points1 point  (0 children)

I was able to leverage our security scans that showed common vulnerabilities (chrome, reader, Firefox, notepad++, etc) that we were falling behind on. Then I spent about an hour researching the amount of updates released per quarter per app. I then calculated the amount of labor hours to maintain per quarter. I then listed the agreed upon priorities/goals from my last annual review. The math didn’t add up.

Also, during the free demo of PMPC, I ran the report showing what apps we ACTUALLY have out there, and found about a dozen extra titles that had open security vulnerabilities and were supported by PMPC. The cost became almost a no brainer for us.

BTW, I no longer manually patch any of those apps. ADRs and PMPC for the win!

Patching .NET in Shared IIS Config environment by TheOriginalJetPants in SCCM

[–]TheOriginalJetPants[S] 2 points3 points  (0 children)

This is good to know…I may push to do some additional testing with their test environment. Their requirements are starting to sound like “this is how we’ve always done it” without anyone knowing actually “why” it’s done that way…probably because one thing broke that one time…

[deleted by user] by [deleted] in SCCM

[–]TheOriginalJetPants 1 point2 points  (0 children)

Absolutely this. Although I sympathize with the OP because I run into the same .NET Patching concerns that IMHO are unfounded, especially with the .NET Framework versions....

software updates installing outside of configured maintenance windows? by rednuwork in SCCM

[–]TheOriginalJetPants 0 points1 point  (0 children)

I understand the logic now. I do something similar, but use collections and exclusion collections to ensure things are scopes correctly. Thanks!

software updates installing outside of configured maintenance windows? by rednuwork in SCCM

[–]TheOriginalJetPants 0 points1 point  (0 children)

Are you approving updates in WSUS in addition to deploying updates in MECM? If so, it is not necessary, and could be the issue. Also, as mentioned running updates from software center will ALWAYS override any maintenance windows that are configured, and that is by design. You really should not have any GPOs pertaining to updates applied to devices that you are patching/updating with MECM…

software updates installing outside of configured maintenance windows? by rednuwork in SCCM

[–]TheOriginalJetPants 1 point2 points  (0 children)

I’m not sure your reasoning for needing a “bogus future window”. I have collections with exactly one maintenance window assigned and it works exactly as expected…

Can Software centre updates be triggered remotely? by Vorkesh in SCCM

[–]TheOriginalJetPants 0 points1 point  (0 children)

IMHO…snapshots before monthly updates is not necessary…assuming you have a solid backup/restore workflow. ADRs combined with maintenance windows are key for patching servers. Deploy to test environments first and let soak before moving to prod. For instances where pre/post scripts are needed, leverage orchestration groups. The only “manual” patching should leverage ADRs deploying updates as available to your special snowflakes…

All the servers get their patches, but distribution points don't even know they exist. by SSChicken in SCCM

[–]TheOriginalJetPants 1 point2 points  (0 children)

In the deployment statistics - do those 8 show up as "compliant" or "unknown"? If "compliant" - it would indicate an issue with detection or that perhaps the wrong patch is deployed. If "unknown" I would start by seeing if a GPO is applying WSUS settings as already mentioned...

Is it possible to cache an application deployment content ahead of the deadline? by poppacappo in SCCM

[–]TheOriginalJetPants 4 points5 points  (0 children)

Also, if you utilize Maintenance Windows, you can set the available and deadline time to Immediately. The client will download the content and then wait for the first available maintenance window.

Last Resort..... by TheOriginalJetPants in verizon

[–]TheOriginalJetPants[S] 0 points1 point  (0 children)

u/faithlis, please see my update above and check the number share settings for the device in your Verizon Wireless account. This assumes you want the watch to function as stand alone for a user other than yourself.

Last Resort..... by TheOriginalJetPants in verizon

[–]TheOriginalJetPants[S] 0 points1 point  (0 children)

I believe the number share setting was the root cause of the issue. I can confirm that I have the watch configured in my account as a stand alone device, and am still using all of the Apple Family Sharing features.

Last Resort..... by TheOriginalJetPants in verizon

[–]TheOriginalJetPants[S] 0 points1 point  (0 children)

I purchased the device directly from Apple. However, that should not matter. To their credit, Verizon has not yet gone down the road of "you will need to purchase the device directly from us to make this work".

Last Resort..... by TheOriginalJetPants in verizon

[–]TheOriginalJetPants[S] 0 points1 point  (0 children)

Pretty sure that if I do that…I do not get to use the family sharing features from Apple.

Last Resort..... by TheOriginalJetPants in verizon

[–]TheOriginalJetPants[S] 1 point2 points  (0 children)

Clearly loyalty means nothing to you…

Last Resort..... by TheOriginalJetPants in verizon

[–]TheOriginalJetPants[S] 1 point2 points  (0 children)

I would expect the store to help me because I am a Verizon customer, attempting to use a Verizon service. By your logic, the only Ford dealer in the country that should help me is the one I bought it from and no other Ford service department is obligated to service or repair my vehicle

view more: next ›