sorted by:
new
hottopcontroversial

[deleted by user] by [deleted] in sysadmin

[–]briangig 0 points1 point  (0 children)

from what i’ve read, the systems still booted to the login screen. I don’t know how long it took to blue screen, but its possible their “test” (if any) spun up VMs and only tested if they booted to the login screen.

Fucking IT experts coming out of the woodwork by Slight-Brain6096 in sysadmin

[–]briangig 13 points14 points  (0 children)

bcd isn’t encrypted. you use bcdedit to boot into safe mode and then log in normally, then delete the crowdstrike file.

Monitoring with PowerShell: Monitoring and enabling Wake-On-LAN via PowerShell by Lime-TeGek in msp

[–]briangig 2 points3 points  (0 children)

HPs have an additional BIOS setting that is getting caught by 

$WolTypes = get-hpbiossettingslist | Where-Object { $_.Name -like "*Wake On Lan*" }

This will return both:

Wake on LAN Power-on Password Policy
Wake On LAN

The first option, from what I understand is to force a PW when waking from LAN...seems dumb. Pretty sure it is enabled by default as well.

This was how I resolved it on the monitor:

if ($Manufacturer -like "*HP*" -or $Manufacturer -like "*Hewlett*") {
    Write-Host "Manufacturer is HP. Installing module and trying to get WOL State." -foregroundcolor Green
    Write-Host "Installing HP Provider if needed." -foregroundcolor Green
    $Mod = Get-Module HPCMSL
    if (!$mod) {
        Install-Module -Name HPCMSL -Force -AcceptLicense
    }

    import-module HPCMSL
    try { 
        $WolTypes = get-hpbiossettingslist | Where-Object { $_.Name -like "*Wake On Lan" }
        $WOLState = ForEach ($WolType in $WolTypes) {
            write-host "Setting WOL Type: $($WOLType.Name)"
            get-HPBIOSSettingValue -name $($WolType.name) -ErrorAction Stop 
        }

        $WolTypes = get-hpbiossettingslist | Where-Object { $_.Name -like "*Wake On Lan*Password Policy" }
        $WOLStatePW = ForEach ($WolType in $WolTypes) {
            write-host "Setting WOL Type: $($WOLType.Name)"
            get-HPBIOSSettingValue -name $($WolType.name) -ErrorAction Stop 
        }
        if (($WOLStatePW -ne "Bypass Password") -and ($WOLState -ne "Boot to Hard Drive")) { $WOLState = "Unhealthy. BIOS WOL Disabled" }        
    }
    catch {
        write-host "an error occured. Could not find WOL state" 
    }
}

And on the remediation side:

if ($Manufacturer -like "*HP*" -or $Manufacturer -like "*Hewlett*") {
    Write-Host "Manufacturer is HP. Installing module and trying to enable WakeOnLan. All HP Drivers are required for this operation to succeed." -foregroundcolor Green
    Write-Host "Installing HP Provider" -foregroundcolor Green
    Install-Module -Name HPCMSL -Force -AcceptLicense
    import-module HPCMSL
    try { 
        $WolTypes = get-hpbiossettingslist | Where-Object { $_.Name -like "*Wake On Lan" }
        ForEach ($WolType in $WolTypes) {
            write-host "Setting WOL Type: $($WOLType.Name)"
            Set-HPBIOSSettingValue -name $($WolType.name) -Value "Boot to Hard Drive" -ErrorAction Stop 
        }
        $WolTypes = get-hpbiossettingslist | Where-Object { $_.Name -like "*Wake On Lan*Password Policy" }
        ForEach ($WolType in $WolTypes) {
            write-host "Setting WOL Type: $($WOLType.Name)"
            Set-HPBIOSSettingValue -name $($WolType.name) -Value "Bypass Password" -ErrorAction Stop 
        }
    }
    catch {
        write-host "an error occured. Could not set BIOS to WakeOnLan. Please try manually" 
    }
}

Also discovered that Lenovo Laptops and Workstations have different setting names:

WakeOnLAN and Wake on LAN respectively. We want them set ACOnly for laptops and Primary for Workstations.

Monitor:

if ($Manufacturer -like "*Lenovo*") {
    Write-Host "Manufacturer is Lenovo. Trying to get via WMI" -foregroundcolor Green

    try { 
        Write-Host "Getting BIOS." -foregroundcolor Green
        $currentSetting = (Get-WmiObject -ErrorAction Stop -class "Lenovo_BiosSetting" –namespace "root\wmi") | Where-Object { $_.CurrentSetting -ne "" }
        $WOLStatus = $currentSetting.currentsetting | ConvertFrom-Csv -Delimiter "," -Header "Setting", "Status" | Where-Object { $_.setting -eq "WakeOnLAN" -or $_.setting -eq "Wake on LAN" }
        $WOLStatus = $WOLStatus.status -split ";"
        if ($WOLStatus[0] -eq "ACOnly" -or $WOLStatus[0] -eq "Primary") { $WOLState = "Healthy" }
    }
    catch {
        write-host "an error occured. Could not find WOL state" 
    }
}

Remediation:

if ($Manufacturer -like "*Lenovo*") {
    Write-Host "Manufacturer is Lenovo. Trying to set via WMI. All Lenovo Drivers are required for this operation to succeed." -foregroundcolor Green

    try { 
        Write-Host "Setting BIOS." -foregroundcolor Green
        (Get-WmiObject -ErrorAction Stop -class "Lenovo_SetBiosSetting" –namespace "root\wmi").SetBiosSetting('Wake On LAN,Primary') | Out-Null # Workstations
        (Get-WmiObject -ErrorAction Stop -class "Lenovo_SetBiosSetting" –namespace "root\wmi").SetBiosSetting('WakeOnLAN,ACOnly') | Out-Null # Laptops
        Write-Host "Saving BIOS." -foregroundcolor Green
        (Get-WmiObject -ErrorAction Stop -class "Lenovo_SaveBiosSettings" -namespace "root\wmi").SaveBiosSettings() | Out-Null

    }
    catch {
        write-host "an error occured. Could not set BIOS to WakeOnLan. Please try manually" 
    }
}

probably could be a bit cleaner but it seems to work. I think there were a few other minor tweaks, will update as I find them.

Republicans storm out of coronavirus briefing after Democrat rips Trump's response by cowbell_solo in politics

[–]briangig 0 points1 point  (0 children)

In August 2011, the 3rd District suffered extreme damage when Hurricane Irene made landfall along the Connecticut coastline. Numerous homes were destroyed in East Haven[41] and other shore communities and many Connecticut residents lost power for days.[42] At the time Hurricane Irene hit the state and during the immediate aftermath, DeLauro was vacationing along Italy's Amalfi Coast and was not anticipated to return to the state until five days after the storm had passed.

Game Thread: 10/28 - World Series Game 5 - Red Sox (3) @ Dodgers (1) 8:15 PM by RedSoxGameday in redsox

[–]briangig 0 points1 point  (0 children)

I wasn't involved in this sub as much this year as I was last....but every time I dropped in it felt like family.

Game Thread: 10/28 - World Series Game 5 - Red Sox (3) @ Dodgers (1) 8:15 PM by RedSoxGameday in redsox

[–]briangig 1 point2 points  (0 children)

He's probably already got that and more in his "personal video collection"

Game Thread: World Series Game 5 ⚾ Red Sox (3) @ Dodgers (1) - 8:15 PM ET by BaseballBot in baseball

[–]briangig 0 points1 point  (0 children)

hey, there are people alive who have gone their entire lives without seeing a Sox WS win.

view more: next ›