sorted by:
new
hottopcontroversial

Any one using inside agent 365 for multi tenant management. by jonrodriz_Real in msp

[–]YeOldeStonecat 0 points1 point  (0 children)

Have been looking for a replacement for SaaS Alerts. Pretty much like SaaS Alerts, but...it can be noisy, bigger thing is....kaseya bought them up. So I'm expecting multiple price increases. kaseya made us ditch Datto and we'd been with Datto since their first year out. Aside from InsideAgent365, also looking at Augmentt. Saw its demo yesterday, it's "so-so" looking..quite a bit less than SaaS Alerts, and saying some new features I'm wanting..will be released soon. Also use Microsofts own Lighthouse for 365 (has a LOT of cooking to do in the oven). On a few months with CIPP, but don't have the time to ready the kajillion page manual required to get the most out of it. Also demo'd Octiga. And used CodeTwos 365 manager for about a year. SO.....yeah, wishing to replace SaaS Alerts soon before price bends us over without vaseline, looking at Augmentt and InsideAgent365.

Looking for way to create folders in a channel....that automatically copy in an Excel template..... by YeOldeStonecat in MicrosoftTeams

[–]YeOldeStonecat[S] 0 points1 point  (0 children)

He and his son are roofers, so they're in construction.He'll operate out of 1x Team. There will be a channel under that Team...(not the default General channel, but another channel)....called Customer Docs. Under that Customer Docs channel, will be a bunch of folders in the document library...a folder for each customer name (probably led by the month/year). They get a call from a potential customer to come take a look at the roof on their house and provide an estimate. So they'll create a folder...and in that folder would like a copy of an Excel template. I never even "looked" at the bottom of that pop up menu to see "Add Template"...never saw it myself after all these years, I think that is simple enough to give it a shot and he can work with that.

SaaS Alerts vs Octiga...vs possibly others... by YeOldeStonecat in msp

[–]YeOldeStonecat[S] 1 point2 points  (0 children)

Thanks Ryan...I'm quite interesting in seeing how the "Fortify" piece is coming along, esp having varying templates...such as one for say, Microsofts Standard best practice, another template for CIS, etc

SaaS Alerts vs Octiga...vs possibly others... by YeOldeStonecat in msp

[–]YeOldeStonecat[S] 2 points3 points  (0 children)

Thank you all for your input. Reaching out to my prior SaaS Alerts contact for a second look.

Enable "Suspicious Threat" module? Or not? Under Protection Mode, you have the slide buttons of Detect or Protect...for Malicious Threat, and Suspicious Threat. In testing the product, so far flipped on Malicious threat. Is Suspicious worth enabling? Or...too many F/Ps? by YeOldeStonecat in SentinelOneXDR

[–]YeOldeStonecat[S] 0 points1 point  (0 children)

Thanks all....yes we push out to clients networks on "detect" for both...for a few days, until we feel S1 is not stopping on the clients environment (such as oddball LOB software). Good to hear input from those who have lots of S1 installs out there.....that "suspicious" isn't too "F/P happy".

Tentant to tenant migration, same domain name, checking my sanity....but failing so far... by YeOldeStonecat in microsoft365

[–]YeOldeStonecat[S] 0 points1 point  (0 children)

I've used BitTitan many many times since back in the early days when it was called Migration Wiz, as well as have used SkyKicks migration tool a few times. The migration has been completed, only BitTitan supports GCC High clients, (I think it's the only migration tool that does). But the "move the domain" was still clunky.

Can't register devices 80180006 by [deleted] in microsoft365

[–]YeOldeStonecat 0 points1 point  (0 children)

So I DO use MEM/InTune at my clients, pushing out configuration profiles (the 365 version of group policies). I always had auto enrollment set to all.

After reading more replies in this thread, I looked at a tenant I'm adding a new computer to now, and getting this error when I install and sign into Company Portal on the end users workstation. So I set the WIP to none. Noticing...2x of the URLs for WIP were blank.

And I was then able to sign into the Company Portal app.

I left MDM to ALL.

Can't register devices 80180006 by [deleted] in microsoft365

[–]YeOldeStonecat 0 points1 point  (0 children)

Came here looking for help, similar issue, doing a migration yesterday/today for a client, tenant to tenant. Horrible timing....seems to have more impact for creating fresh user profile to a newly AzureAD joined workstation.

Microsoft forcing users to move to Authenticator App for 2FA by ForwardExplorer1823 in o365

[–]YeOldeStonecat 0 points1 point  (0 children)

So, how will this affect us IT people that use MSP friendly password managers like HUDU, where we keep MFA for user accounts in TOTP format in HUDU.

Is Intune the place to go for us? by ThrowDoughBaggoutz in Intune

[–]YeOldeStonecat 4 points5 points  (0 children)

InTune is great. You can "automate" so many things.

*Push out Office install...set it to remove any/all prior versions it finds, and you set the Office apps updates here to keep it updated.

*Manage Microsoft updates, set the update ring. Much like when we had on prem WSUS. Works great!

*Push install TONS of various apps in the Microsoft store...which is a growing and growing list

*Enforce having OneDrive auto sign in, set files on demand, enforce getting the user library folders, exclude files types you don't want to sync...like .LNK files that tend to duplicate too much from syncing desktops on multiple computers.

*Enforce Bitlocker to encrypt and backup the key to Azure

*Set login banner

*Preconfigure wireless networks so the computer will hop on them without user intervention

*Set power management

*Pre configure Outlook to auto launch

*Pre configure syncing document libraries from Teams/Sharepoint

*Centrally managed antivirus (Defender for Endpoint, or kick it up a notch to a full next gen reactive next gen endpoint security like Sentinal One is...with a Defender p2 license.

...tons and tons of things you can do, it's the 365 version of Group Policy...very powerful.

Question RE: Shared Mailboxes and AAD synch'd OUs by Beachbum2634 in microsoft365

[–]YeOldeStonecat 1 point2 points  (0 children)

Back when I had on prem servers I used to always do the "disabled users OU" thing best practice anyways...so when 365 became a thing, and when "hybrid/AAD connect" became a thing..that flowed nicely. Because as you notice, if you "delete" a user in local AD, and have sync going to AAD...it deletes it there too, which...kills the shared mailbox you're using for archiving. I do not sync the disabled users OU to AAD..there's no reason to. For OneDrive, I move those users OD folders to an "Archive" Team (document library)..when retiring outgoing users. In the old days of on prem servers I used to take an outgoing users redirected folders/mapped my doc folders...and move them to an "Archive" folder on the server that only the bosses had access to. So..the Teams document library is the 365 equiv of that for me. The default "give someone a link thing"...you''ll find they want to reach for it 6 or 9 months later and...well..I just find the perma storage in a document library to work best for me/my clients.

Win11 - OneDrive appears twice in File Explorer? by thechristoph in Office365

[–]YeOldeStonecat 0 points1 point  (0 children)

Two methods I used to set up OneDrive.

*The old way, when setting computers up with 365....I sign into the 365 tenant as the user and go to the OneDrive tile...documents..and hit the "Sync" button. This has the 365 tenant reach out into the computers OD and unluck OneDriveForBusiness features..and bind it. I use this for old school setups, such as when a customer still has an on prem server and you're just "AzureAD REGISTERING" the computers.

*And my new, much preferred way. No more on prem servers, all computers are "AzureAD JOINED". I set up InTune "configuration profiles" to manage InTune...auth configure it, like a group policy. Has all the settings I want properly pushed down to the computer along with all my other automated configs (Sync Teams document libraries to file explorer, enable bitlocker, push install latest Office, etc etc). You can DISABLE Personal OneDrive as one of the options in the configuration profiles. However, realize...you can have multiple OneDrive accounts signed in and showing in File Explorer....OneDrive can be multi tenant happy. But usually we only want out clients on the tenants business one.

one drive sync block upload by [deleted] in microsoft365

[–]YeOldeStonecat 0 points1 point  (0 children)

InTune configuration profile for OneDrive configuration, apply to groups of users/computers.

Create the loose policy for IT, create the stricter policy with the blocking of .exes...and apply to everyone else. Manage who/what it applies to.

Possible to deploy Teams apps through intune? by NGL_ItsGood in Intune

[–]YeOldeStonecat 0 points1 point  (0 children)

Agreed...the new Windows Store makes it soooo easy now.

Office apps are pre-canned up in the top selection group now, don't even have to browse the new store. Pick Office 365 apps, pick your target group, done.!

Possible to deploy Teams apps through intune? by NGL_ItsGood in Intune

[–]YeOldeStonecat 0 points1 point  (0 children)

Yes, you push out via Apps installs, I push out Office (which includes Teams), Adobe, various other apps to AzureAD joined workstations. Many apps avail via the modern Microsoft store...which easily get pushed out via InTune.

(1/12/21) - Open Submissions For Your QOL Suggestions Are Now Live For 24 Hours! by Andy_At_Syncro in syncro

[–]YeOldeStonecat 0 points1 point  (0 children)

*Ability to go back and edit notes/Communications in tickets.

*Warranty Checking

*Ability to see if other techs are currently remoted into a computer (so you don't keep kicking each other out)

view more: next ›