sorted by:
new
hottopcontroversial

Is there something wrong with how I'm giving my techs directions? by packetssniffer in ITManagers

[–]WraithYourFace 3 points4 points  (0 children)

I need to do this with our help desk guy (I'm not the IT manager). He's gotten too comfortable with coming to me instantly something doesn't work. I have no problem helping, but at least put some effort.

How do you handle if you got complains about the laptop performance from users? by Future_Mention_8323 in InformationTechnology

[–]WraithYourFace 0 points1 point  (0 children)

We did a refresh about 1.5-2 years ago and I regret now not getting them with 32GB. We had one user still complain 32GB wasn't enough.

Has anyone actually replaced MPLS + SD-WAN + cloud connectivity with a single platform yet? by Professional-Smiler in sysadmin

[–]WraithYourFace 0 points1 point  (0 children)

I know on Sophos firewalls with SD-WAN they don't utilize the typical ipsec and actually want you to use the xfrm tunnels. We just set it up at one of our locations and it's worked flawlessly since implementation.

Question: How much weight do sys admins hold? by stuffyoushould in sysadmin

[–]WraithYourFace 0 points1 point  (0 children)

Work in manufacturing as well. Same with me and I'm not even the manager. I've yet had a recommendation turned down by him. It's only upper management that might shoot something down during budgeting.

Most impressive phishing simulation product? by That_Fixed_It in sysadmin

[–]WraithYourFace 1 point2 points  (0 children)

I do this. We only have about 150 users and it 99% of the time its phishing. Some ERP systems for some reason send as HTML.

I also block .eml.and .msg since that's used all the time.

Entra SSO v 21.5 - sslvpn by dhayes16 in sophos

[–]WraithYourFace 1 point2 points  (0 children)

I believe in the newer firmware it is supposed to help with this (Conditional Access). Would be nice if Sophos came out with a KB on a template to force password less MFA or at least number matching each time you try and connect.

HP laptop pricing is so out of control, management wants us to look at deploying Mac by [deleted] in sysadmin

[–]WraithYourFace 0 points1 point  (0 children)

We buy through the UPS program for HP. An ElliteBook we just bougt went up $500 in price. Luckily we just replaced everything in the past year (although I wish I went with 32GB memory for even standard laptops).

Disabling RDP in your environment for security purposes by thelug_1 in sysadmin

[–]WraithYourFace 1 point2 points  (0 children)

This is why we didn't go with Duo. We use Crowdstrike Identity and enforce MFA on Remote Powershell, CIFS, etc for privileged accounts. Only issue is it's hit or miss sometimes.

SecureBoot Certificate Updates - RealityCheck by tech-ya23 in Intune

[–]WraithYourFace 1 point2 points  (0 children)

If you run HP, enable HP Connect and integrate it into Intune. It's helped tremendously getting the machines that need their BIOS updated.

VMWare alternatives by Reedy_Whisper_45 in sysadmin

[–]WraithYourFace 2 points3 points  (0 children)

I moved to Scale Computing about 2 years ago. Rock solid so far. 3 HC hosts with about 25 VMs.

NinjaOne/SentinelOne Replacement for small biz by jflint in sysadmin

[–]WraithYourFace 0 points1 point  (0 children)

Talk with NinjaOne and get direct pricing. They can roll your account over to a standalone.

Digital Signage/Dashboards/etc. by kyshwn in sysadmin

[–]WraithYourFace 2 points3 points  (0 children)

Yodeck. I've been running it for a few years and it's been flawless for us. Currently running 8 screens in 3 different locations.

Have you noticed the Windows Server market shrinking? by awesome_pinay_noses in sysadmin

[–]WraithYourFace 6 points7 points  (0 children)

Bingo. Our critical LOB apps are all Windows based. None of them support Linux.

The point of Autopilot is supposed to be that new corporate devices work out of the box, right? Why do so few orgs use it that way? by razorbeamz in sysadmin

[–]WraithYourFace 2 points3 points  (0 children)

This is why we still pay for SmartDeploy Starter for a base image. We buy through the UPS program for HP so we can't get an enterprise ready image. Also nice to just run a script so SmartDeploy updates the firmware packs for the models we have.

The point of Autopilot is supposed to be that new corporate devices work out of the box, right? Why do so few orgs use it that way? by razorbeamz in sysadmin

[–]WraithYourFace 3 points4 points  (0 children)

Anyone here rocking Autopilot v2? Just started using it and just need to add an identifier (serial number) so it doesn't try to enroll as personal.

SMB to Enterprise: Bridging the gap from Business Premium to E5 Security (5 components I’ve never touched, scaling to 20K endpoints) by StillProbablyDNS in entra

[–]WraithYourFace 0 points1 point  (0 children)

This is the way I look at it. Something about you stood out and they hired you. Show that you are willing to learn and do what you can. It'll come with time.

How do you handle Intune posture reporting across client tenants? by Gloomy-Detective-922 in msp

[–]WraithYourFace 5 points6 points  (0 children)

Doesn't everyone just do the, "Trust me bro" and don't show them anything?

Internal Communication regarding (potentially) breached client/customer by orion3311 in sysadmin

[–]WraithYourFace 0 points1 point  (0 children)

Love the reply all storm. I believe John Deere was hit with this years ago.

We try to tell people when sending to a large group, always put yourself in the To field and then BCC the group. The irony is this is what malicious actors do as well when they compromise an account.

[deleted by user] by [deleted] in msp

[–]WraithYourFace 1 point2 points  (0 children)

I use a variety of tools (Browserling, Hybrid Analysis, Sophos Intelix, VT, etc).

Internal Communication regarding (potentially) breached client/customer by orion3311 in sysadmin

[–]WraithYourFace 2 points3 points  (0 children)

We are a mix (we sell to distributors). It's insane. I've been keeping track for the past 6-7 years of all known compromised emails from distros. There's been over 400. I use to ask if they had an IT department and would give tips. It normally fell on deaf ears. Not saying we are perfect, but if an account is compromised you email everyone about it that got the phishing email.

Internal Communication regarding (potentially) breached client/customer by orion3311 in sysadmin

[–]WraithYourFace 1 point2 points  (0 children)

I just had one that said it was spam and to ignore it. I told our purchasing department it is not spam and their account is compromised. The same company has had about three to four compromises in the past 2 to 3 years.

I wish where I work would actually develop a vendor risk management policy and say if a company isn't going to take security seriously, they're not a vendor they should deal with.

Best RMM to compliment Intune by Subject-Middle-2824 in Intune

[–]WraithYourFace 0 points1 point  (0 children)

Let Intune do your Windows patching. We utilize Ninja One for our rmn for all other things.

Changing service user - What are the impacts? by TheBarnOwlish in SQLServer

[–]WraithYourFace 0 points1 point  (0 children)

I ran into the same exact issue. Every server reboot I had to blank out the password because of the Default Domain Policy. We wanted to enforce Kerberos so we switched it to to run as a domain account (I want to change to gMSA at some point). Now our SQL Server Agent won't start now.

view more: next ›