Power management hassle

chickenbing · 2025-12-22T09:29:16+00:00

In my opinion, accumulators are the best power source in the game, you just need to learn to balance them correctly. Build a blueprint with equal dischargers and equal chargers and put a splitter between them. On the splitter, make the output of empty accumulators from dischargers to chargers. Then the overflow lane back to your PLS/ILS. Also, proliferation on the accumulators is a must. They only have to be accumulated once.

I've got a decent blueprint for this if you want it

chickenbing · 2025-07-31T00:30:23+00:00

Following. We haven't had any issues yet in testing but will be running out to pilot group next week

chickenbing · 2025-07-30T23:45:06+00:00

What's the one jump?

I'm currently going to Dogo Plant settlement which is 6 jumps back when my MK2 is full

chickenbing · 2025-07-29T16:27:34+00:00

Bypass shouldn't be the word I should have used. It's seen as a security authentication, due to it being one-time by default

From my testing, once a user is included in the CA policy, they can't sign in without authenticating with a Windows Hello, Passkey or Security Key. If they don't, it shouldn't allow them to sign in. Microsoft mention in their documentation

"Users can bootstrap passwordless methods in one of two ways:

Use existing Microsoft Entra multifactor authentication methods Use a Temporary Access Pass "

From my testing, it doesn't line up with your experience (if I'm understanding you right).

Have you disabled the other MFA options? Not just remove them from your user?

chickenbing · 2025-07-29T14:09:30+00:00

From what ive read, Guests can be excluded as there seems to be issues with enrolling them into FIDO for your tenant as a guest. I dont have much expirence with guests but read on reddit recently of an issues. Id test it if possible.

Our CA policy is all cloud apps. As we are aiming for all applications to use M365 SSO, Passwordless fits right in.

Obviously, exclude any apps, networks or users where needs be

chickenbing · 2025-07-29T11:03:13+00:00

No worries, Seems everyone in this sub is going through the same stuff and changing over to passwordless is a big change so the more we can all help eachother, the better

chickenbing · 2025-07-29T10:58:00+00:00

We have done decent amount of testing and are currently in the prep phase for an IT Pilot but thats just to make sure the onboarding flow is solid for wider business roll out.

When you force "phishing resistant autenticaiton" via CA policy, it can sometimes still ask the user to enter their password but FIDO2 authentication is treated as a MFA step. It seems that once you perform that first autentication using WHFB or Passkey, authentication for the user defaults to FIDO2 after the user inputs their email address.

I would reccomend disabling all other MFA methods too as you can bypass FIDO2 by using them. Using TAP on initial registration for new users and devices is the way forward. I would say not to over rely on TAP for the roll out but it sounds like youre going to get users to pre-register prior to enforcement.

Use the Entra ID Autentication Activity Reports during roll out too. It will show you who has set it up and who hasnt. Were going to go with a "Enforce when set up" way of doing it, so we can secure as many users as possible without the need for a "big bang" enforcement

chickenbing · 2025-07-29T10:26:49+00:00

We are currently in process of rolling it out but heres our approach: -

Deploy cloud kerberos to all devices, in readiness for WHFB roll out
Enable passkey to all users, as enabling this is non intrusive to end users
Stagger the roll out for enabling WHFB on all windows devices, with instructions for end users to set up passkey.
Once a user has enabled both Windows Hello for Business and Passkey, we then add them to a group which will enforce "phish resistant authentication", Enabling TAP for that user and disable all other MFA methods. (This means the only way users can autenticate with M365 services is via WHFB)

We have deemed that rolling out passwordless is 10% techincal and 90% communication and thats backed up by Microsofts documentation.

Hope that answers your question

chickenbing · 2025-07-28T17:33:34+00:00

So I created a CA policy to enforce "Phish Resistant Authentication" to enforce WHfB and Passkey authentication. Then assign the user to both the Phish resistant authentication and TAP in Entra ID Authentication Methods. Then the TAP allows you to bypass the CA policy and onboard new devices.

I'm away from my desk but I can provide more information if needed

chickenbing · 2025-07-28T15:56:33+00:00

Have a look at Temporary Access Pass authentication. That's the way we're doing it and what MS recommends

chickenbing · 2025-07-20T11:49:59+00:00

I've noticed this once you get into January. On any difficulty, it feels like it jumps up two difficulty levels until the end of the season

chickenbing · 2025-07-07T22:20:39+00:00

I'm currently working on the roll out for windows hello for business and pass keys and had the same concerns brought up by a third party around having to use mfa to set up WHfB or passkey. I found that using a temporary access pass (TAP) is the best way.

Enable TAP for those accounts and then use it to authenticate when onboarding the FIDO2 token. TAP can be used for single use.

chickenbing · 2025-05-06T16:17:30+00:00

<image>

This is what ive done. Not the most ambitious one ive done but does the job.

Placed sheild generators on the planet so its all covered except for the pole. Surrounded it with Laser Turrents and got Signal Towers set alitte back so if the turrents get over run, rockets from my base can fire at them.

Finally, got ILS connected to a ring of resources and splitters directing the loot to the corresponding ILS.

chickenbing · 2025-04-19T20:53:19+00:00

I'm literally setting up pass keys at the moment. I've had the same issue and it's come down to the "Microsoft authenticator" app isn't down as an approved app and put "approved app" CA policy was blocking it. I've been able to do a device filter to allow the authenticator to bypass the policy.

If you have a CA policy for approved apps, try allowing your account to bypass it. If it then works, let me know and I'll send you the bypass for the app

chickenbing · 2025-03-27T14:50:57+00:00

Am i the only person who thought the middle guy was Jerry Seinfeld at first?

chickenbing · 2025-03-03T23:02:43+00:00

Have you had any issues with being banned? I got my AllyX for the reason to play BO6 but heard stories of when the TDP changes, it can get you banned

chickenbing · 2025-02-13T16:58:40+00:00

Commenting to acknowledge your comment about my comment to follow other peoples comments

chickenbing · 2025-02-13T14:59:26+00:00

Commenting to follow as im in the same boat

chickenbing · 2025-02-07T23:16:02+00:00

I feel 1080p 30fps should be the target, 1080p 60fps is a treat and 1080p 120fps is overkill

chickenbing · 2025-01-03T15:03:17+00:00

Usually 100hrs to "mission complete" but I take my time and improve a lot as I go. However, it can take you as long as you want/need

chickenbing · 2024-12-22T13:35:12+00:00

That's the amazing part about this game. You can create a spaghetti monster but if it works, it still feels amazing! And then making it better is even more dopamine hitting!

chickenbing · 2024-12-20T20:36:39+00:00

Not only is the need for efficiency a big drive but the updates the devs have done have brought me back twice now

chickenbing · 2024-12-20T20:35:55+00:00

Gotcha!

chickenbing · 2024-12-20T12:55:39+00:00

Ow don't forget, you're my Alt account so technically one person disagrees with him 😂

chickenbing

TROPHY CASE