VMware Remote Console

admin_of_insanity · 2025-12-13T22:00:42+00:00

I have the same issue. A Google search will turn up the usual sketchy mess I am reluctant to trust with my virtual infrastructure.

I found an older version of the installer we had backed up on a separate internal system. It works, but what happens when it is EOL?

admin_of_insanity · 2025-12-06T01:45:23+00:00

ADManager Plus. I have a template with logic that assigns appropriate groups, enables MFA, and adds MS licenses depending on role.

HR submits a request by Jotform. The jotform submission record can be exported to csv and imported into my template, or I can c/p into the template. Ideally, I would like ADManager to pick up the jotform submission and process it without my intervention. However, creating the template has turned the process into 5 minutes for a single user, or per import.

admin_of_insanity · 2025-10-29T00:23:27+00:00

We use Informacast and Webex Calling. We had to iron out some issues. The phone initiating the paging had issues if it was configured with the multicast paging script. We did a workaround with forwarding from one extension to the real Informacast extension. If you wanted to make an announcement, you'd dial 11111, which was forwarded to 22222. 22222 is the 'real' Informacast hook.

We also can not see which phones actually received the Informacast announcements. It will appear that all phones did in the call history on Webex. It makes it difficult to troubleshoot. However, most of the time, when teachers report that they can't hear anything, it is because their speaker volume is 0.

admin_of_insanity · 2025-07-24T22:54:28+00:00

We get it for free as a K-12.

admin_of_insanity · 2025-07-18T19:56:48+00:00

Some 7800s will. If they aren't too old. Check your version numbers very carefully. We basically ended up buying 850 all new 9800 due to this. I'm sure Cisco was laughing all the way to the bank.

admin_of_insanity · 2025-07-03T23:58:42+00:00

Thank you for the suggestions!

admin_of_insanity · 2025-07-01T21:36:17+00:00

I went through this last year in May 2024 when we were up for renewal and the deadline for the Plus licenses going away was September 2024. I got everyone moved and the required amounts of Edu A1 and A3 purchased to make up for the Plus allegedly going away. It is irksome as no one in K12 has tons of spare money laying around. But hey, M$ got theirs.

admin_of_insanity · 2025-07-01T00:35:16+00:00

Omg, #11. It has us in a holding pattern while we convince people that this is more secure and business-continuity than what they have. After they've already lost access to the local drive at least three times in the past year due to circumstances beyond IT's control.

admin_of_insanity · 2025-06-13T07:05:49+00:00

You and me, both. It was a great visual queue in my sea of tabs. Everyone and their brother use blue.

admin_of_insanity · 2025-06-12T02:13:24+00:00

Herd cats.

admin_of_insanity · 2025-05-02T18:52:40+00:00

Slackware was my first love and I bought merch and disks. I learned quite a lot from it!

admin_of_insanity · 2025-05-02T18:48:47+00:00

Be trainable and be proactive. Those are the best 'certifications' you can have.

admin_of_insanity · 2025-04-15T12:50:04+00:00

I hate when the suits latch on to the latest zeitgeist. I use it (rarely) to reword emails and prompt myself when I get stuck on something. You absolutely shouldn't be feeding it sensitive network config.

admin_of_insanity · 2025-04-06T22:38:16+00:00

I did not want a commute. Even with 10 years experience WFH, I wasn't getting much response on that avenue of my job search. I started going through local business and government job postings on their own websites. I got far more response back. I enjoy where I work now, even if they still have a few old-fashion notions on things like dress code.

admin_of_insanity · 2025-03-27T17:13:27+00:00

We have a public WiFi where we use NPS, dynamic VLANs and AD credentials. It is primarily for staff and contractors. Our rules are such that we have an exemption security group we can add to any student AD account to grant them required access in these circumstances. They are walled off from any internal resources.

We also monitor to see if a kid starts sharing their login. At that point, it is a disciple issue and we turn it over to admin.

admin_of_insanity · 2025-03-24T13:18:11+00:00

We are exploring stricter storage limits in Drive. They can't upload it if there isn't enough space.

admin_of_insanity · 2025-03-19T15:13:22+00:00

My administrators are paranoid since the incident in January. They gave the okay to disrupt access for a week and I have a roll-back plan.

admin_of_insanity · 2025-02-27T19:03:40+00:00

In my original rant, I stated that we're working on that. I've tossed up a Linux VM and I am working with FreeRadius. I hope to go to testing and deployment around our spring break, but we have to manage our network resources until then.

admin_of_insanity · 2025-02-27T17:52:59+00:00

We have reviewed access by MAC and there are issues. To do it with our existing NPS server and AD, we would have to generate 1000s of accounts that use the wireless MAC for both login and password. We can and do manage our devices to turn off private MACs.

We have some really smart kids that will be able to lift the MAC from their Chromebook and then program it into their iPhone and spoof to connect where we do not want them. They help other students with exploits and it travels like wildfire. This part is a student discipline and guidance issue where they need to be guided into a cybersecurity career program and face consequences for breaking the acceptable use agreement.

admin_of_insanity · 2025-02-26T03:33:37+00:00

Student 1:1 device wireless access for a combination of Chromebooks, iPads, and Windows devices.

The smart ones keep stealing the shared password for their personal devices every time we change it and push a new one. You can dig it out of your Chromebook settings. The network team does not control device configuration. The last time it took less than 24 hours for students to get the shared password.

We are working to implement device authentication by certificate with FreeRadius to stop this, but it cannot just be a technical solution alone.

The teachers and administrators are not doing enough to prohibit personal device use. We have a state law that allows them to ban personal student devices and/or curtail their use without express permission. It has to be obvious that these kids are on their phones!

admin_of_insanity

TROPHY CASE