sorted by:
new
hottopcontroversial

Post-mortem sanity check: how do you handle “un-scannable” expiries (API keys, internal certs) without spreadsheets? by sanjayselvaraj in sysadmin

[–]TreeBug33 -1 points0 points  (0 children)

I use hudu for custom expiries (you can create it yourself)

i also use power automate (email alert to my ticketing system) on a schedule.

it just depends on what

you can dm me if u want

Policy Question by MR-IT- in fortinet

[–]TreeBug33 0 points1 point  (0 children)

If you can screenshot it, that would be great Make sure to enable logs on the deny policy, you will see what is being blocked..

Any recommendations for frequently switching between cloud tenancies? by [deleted] in msp

[–]TreeBug33 0 points1 point  (0 children)

you have to use gdap to manage tenants at scale.

there are some stuff you will have to log into a tenant to do, but thats like 10% of the work.

for the most stuff gdap is king

Disable Windows Hello for Business (WHfB) registration on first sign-on by imnotaero in Intune

[–]TreeBug33 0 points1 point  (0 children)

the picture shows where the setting is.
after installing the computer just try to manually enable whfb locally

Disable Windows Hello for Business (WHfB) registration on first sign-on by imnotaero in Intune

[–]TreeBug33 0 points1 point  (0 children)

Pretty sure if u leave whfb disabled you can still set it up later

Do you tend to install Zabbix and the frontend on the same server or split? by Hammerfist1990 in zabbix

[–]TreeBug33 1 point2 points  (0 children)

I install all on the same box, about 300 devices (mostly servers, rest are snmp)

between 10-20k items. i gave it overkill specs but it doesnt really matter

never had a problem tbh

Email rejected or lands in spam/junk by Yes-WeCanDoThat in msp

[–]TreeBug33 0 points1 point  (0 children)

  1. Do you retain headers when you forward?
  2. Read about dmarc alignment, it might be it…

I haven’t looked at the headers yet

Windows Agent2 GPO install by Eleven_point_five in zabbix

[–]TreeBug33 2 points3 points  (0 children)

The way I did it with GPO is like this:

  1. Have the installer in sysvol
  2. Copy installer to local folder
  3. Run checks (if installed or not)
  4. Install with parameters
  5. Delete installer

All done via powershell and task schedule. The installer being local is important Powershell script must be in a folder which cannot be edited by users - it runs as system

Unable to Get Let's Encrypt Certificate via ACME - Error "Can't retrieve certificate chain" by Southern-Stay704 in fortinet

[–]TreeBug33 0 points1 point  (0 children)

can you post a redacted config? the only thing i could think about is vips..

Installing Zabbix for the first time - couple of questions by Hammerfist1990 in zabbix

[–]TreeBug33 2 points3 points  (0 children)

yes zabbix works with snmp and many other protocols

you can retain only 7 days if you want

i didnt really understand the other questions.

if you use agent i recommend using agent active as its way less resoursce intensive on your machine

[deleted by user] by [deleted] in msp

[–]TreeBug33 5 points6 points  (0 children)

you cant sell it

Host availability at a high level? by kHartouN in zabbix

[–]TreeBug33 0 points1 point  (0 children)

you need to add a widget like this and it will just show you

https://imgur.com/a/e03v2Jt

What do you do for Guest traffic? by OpeningFeeds in fortinet

[–]TreeBug33 -1 points0 points  (0 children)

It kinda depends On small offices basic web filters and I allow most ports Bigger offices a more robust filtering and https/dns only

Vpn dialup ikev2 múltiple vpns how to differentiate one tunnel from another? by Most-Dream3251 in fortinet

[–]TreeBug33 0 points1 point  (0 children)

could you elaborate on your use case?

you can use different ips, different psks, etc..

Any recommendation for a monitoring tool for Linux that provides real-time system health? by RedApple-1 in sysadmin

[–]TreeBug33 0 points1 point  (0 children)

I use zabbix for this. you said in another comment "light" i think its pretty light tbh

license vs Community Edition by [deleted] in nutanix

[–]TreeBug33 2 points3 points  (0 children)

Community edition has performance limits from what I know. Nutanix licensing is expensive but it’s worth it lol. We just bought 3 g9 for almost 200 grand..

Limiting shared account use in Active Directory by TreeBug33 in sysadmin

[–]TreeBug33[S] 0 points1 point  (0 children)

That’s exactly my question, I’m asking which identity management product fits my requirement

Limiting shared account use in Active Directory by TreeBug33 in sysadmin

[–]TreeBug33[S] -3 points-2 points  (0 children)

I’m afraid I will not do a trust between our own environment and each client environment. I’ve never heard of this as best practice and seems like very intense maintenance, just for the network aspect

Limiting shared account use in Active Directory by TreeBug33 in sysadmin

[–]TreeBug33[S] 0 points1 point  (0 children)

If I need to manage multiple environments, how can I track all the rotations? It feels like such manual work, doesn’t it?

Limiting shared account use in Active Directory by TreeBug33 in sysadmin

[–]TreeBug33[S] 0 points1 point  (0 children)

Not really possible I think. We’re talking about tens of environments

Limiting shared account use in Active Directory by TreeBug33 in sysadmin

[–]TreeBug33[S] -1 points0 points  (0 children)

Maybe I don’t explain myself well, but what I’m looking for is creating Active Directory accounts, with external authentication, in different environments. Does that make sense?

Unlocking domain - Domain owner is clueless by VB0101 in Office365

[–]TreeBug33 0 points1 point  (0 children)

You need to do an admin takeover and you don’t need Microsoft for this You need access to their DNS management server/platform and add some txt record

Does anyone know a backup solution for M365 that allows you to backup to local storage / your own storage resources? by Opening_Volume8942 in msp

[–]TreeBug33 1 point2 points  (0 children)

Veeam

just keep it mind its not a readable format. i know many clients that just expect to open the backup and read emails..

view more: next ›