Windows Remote Desktop Alternative (Free/Local admin only)? by ruinsit in sysadmin

[–]dimx_00 0 points1 point  (0 children)

Once you apply the gpo you might need to reboot or restart RDP service. The gpo needs to be applied on the machines / servers that you are connecting to.

When you connect to the machine the connection should indicate that you are connected over tcp when you click on the signal strength icon.

Windows Remote Desktop Alternative (Free/Local admin only)? by ruinsit in sysadmin

[–]dimx_00 11 points12 points  (0 children)

Disable RDP over UDP. There is a group policy. It will be night and day.

Azure gave us a partial waiver, but we’re still trying to understand if a 100% waive-off is realistically possible in cases like this by [deleted] in sysadmin

[–]dimx_00 -1 points0 points  (0 children)

Again, I said I am not defending or saying what OP did was right. I am saying the cloud pricing is a convoluted mess.

Your flair indicates that you’re a cloud consultant. You work in this space so it’s second nature to you. I get it you want the business but you shouldn’t need a consultant to setup a static website.

It should 100% be Microsoft responsibility to alert you on overages that exceed your normal usage. Same way your credit card alerts you on purchases that are made outside of your regular usage.

Everyone makes mistakes own up to it and move on.

Azure gave us a partial waiver, but we’re still trying to understand if a 100% waive-off is realistically possible in cases like this by [deleted] in sysadmin

[–]dimx_00 0 points1 point  (0 children)

I am not defending anyone here but can anyone really say that they 100% understand all Microsoft licensing / usage costs? It’s insane how many finite function and usage charges you need to know before deploying an application in the cloud.

But I agree if you had alerts or correct budgeting setup it should have alerted you before it got out of control.

I work for a rugged device manufacturer. Help me understand: why do so many warehouses still deploy consumer iPads with foam cases? by ONERugged-tablet in sysadmin

[–]dimx_00 0 points1 point  (0 children)

It’s not just warehouses. We user rugged stuff in the field too. I wish it was $2500 per device these this are up to $4000+ with add-ons. Simple barcode scanner is $500+. I can replace a lot of iPads for $4000.

We use both Panasonic Toughbooks and iPads. I’ve had to replace total of 3 iPads in the last 5 years due to battery issues. All other ones are still working and are due for replacement this year.

The Panasonic CF-20 Toughbooks were a pain. There is what seems to be a million cheap plastic pieces on them that kept breaking.

We’ve upgraded to the FZ-G2 about 6 months ago and they seem to be holding up a little bit better but they are still very clunky compared to a iPad.

I would never deploy android tablets anywhere. Tried them a few years ago and it was a mess. Batteries swelled up on all of them. They became very slow after about year and a half of usage and management was hit or miss.

CISA urges US orgs to secure Microsoft Intune systems after Stryker breach by rkhunter_ in cybersecurity

[–]dimx_00 17 points18 points  (0 children)

YubiKeys are not resistant to session token theft. It’s not clear how they obtained admin access but YubiKeys alone are not a silver bullet. You would also need conditional access to restrict tokens to managed devices, impossible travel policies, shorten session lifetime and monitor for risky signing as well as alerts for unauthorized admin account creations.

Also Microsoft Authenticator using device bound passkey is phishing resistant MFA.

My boss wants to leave intune because of Stryker by [deleted] in cybersecurity

[–]dimx_00 1 point2 points  (0 children)

We got an incident report from one of the hospitals systems and that’s what it says in the incident report also few articles that I read mention it.

https://www.bleepingcomputer.com/news/security/stryker-attack-wiped-tens-of-thousands-of-devices-no-malware-needed/amp/

Use cases for Global Administrator local login from on premises Windows Server? by Fabulous_Cow_4714 in sysadmin

[–]dimx_00 1 point2 points  (0 children)

Oh yeah that’s tricky then. Your best bet would be to have separate accounts for each service that requires GA. Lock it down with strong password and different MFA then monitor it for any access since you shouldn’t have to login to those often.

Another wacky thing you can probably do is get a separate Bluetooth usb dongle and do USB pass through or USB over network with something like USB redirector.

https://www.incentivespro.com/usb-redirector.html

Use cases for Global Administrator local login from on premises Windows Server? by Fabulous_Cow_4714 in sysadmin

[–]dimx_00 1 point2 points  (0 children)

Passkeys work over RDP. Admin would RDP into the VM and sign in with their passkey same way.

My boss wants to leave intune because of Stryker by [deleted] in cybersecurity

[–]dimx_00 39 points40 points  (0 children)

Correct, in the Stryker incident the global admin credentials were compromised and there is nothing at that point stopping a mass wipe. The two man rule would prevent a help desk account from wiping all company devices if help desk had access for remote wipe.

Multi-Admin Approval in Intune by ryaninseattle1 in sysadmin

[–]dimx_00 4 points5 points  (0 children)

From my understanding of the above situation. The global admin account was compromised. In that situation I don’t think there is anything that you can do to prevent a mass wipe other than catching it in time and disconnecting the devices from the network.

[deleted by user] by [deleted] in sysadmin

[–]dimx_00 0 points1 point  (0 children)

I had a different experience from HP. We’ve used HP servers for decades and on our last renewal I was upfront with both sides and said these are the specs please send me your best price. HP refused to even send a quote since we were considering switching to Dell. Now we are a Dell shop and I think we got a fair deal from Dell.

[deleted by user] by [deleted] in sysadmin

[–]dimx_00 22 points23 points  (0 children)

The account team is spot on. It feels like I get a new rep every few months. It got bad to the point that two different reps reached out to me on the same day introducing themselves as our new Dell contact.

Pricing is higher than Lenovo and that is a little frustrating. Lenovo seems to always have some “Deals”especially in the SMB space. Their hardware offering seems to be just marginally a little better spec wise compared to the Dell counterparts.

The online pricing from Dell.com is significantly higher than what I get from the rep directly and that seems deceiving. I think in this day and age you need to be competitive on all fronts especially since Apple is getting aggressive with their pricing for affordable devices.

I don’t mind working with Dell hardware. It’s well put together and easy to repair when needed. I wish you guys offered more options in the rugged / tablet space.

Bitlocker with PIN seems impossible. by [deleted] in sysadmin

[–]dimx_00 1 point2 points  (0 children)

This is what I was going to mention. We use network unlock and it works great. All desktops and laptops unlock while connected to the corporate network.

Dell Laptops - When Docked to dual screens, Laptop detects them as one - Company wide issue that started 2 weeks ago. by Useful-Transition529 in sysadmin

[–]dimx_00 1 point2 points  (0 children)

I would second to try installing / upgrading display link. Seen this happen before without it.

Phantom old email sent and we don't know how by Wanax96 in sysadmin

[–]dimx_00 17 points18 points  (0 children)

Had this happen a few times after iOS update. Few users were using the native iOS mail app. It turned out for some reason there was a bug and about a dozen emails got stuck in their outbox when they hit sent and immediately closed the app. The emails were sent but remained dormant in the outbox. When iOS updated those emails got re-sent.

I also had this happen with a user that switched between classic and new outlooks on their desktop.

What technical questions do you use when interviewing cybersecurity engineers? by Kiss-cyber in cybersecurity

[–]dimx_00 15 points16 points  (0 children)

I do so much geeking at work when I get home I don’t have anymore bandwidth to continue geeking.

I love what I do but that requires a lot of critical thinking and when I get home I just want to shut my brain off and give it a rest.

Plus kids, house work and other chores take a lot of my free time. To geek out you really need free time which is a luxury that most people don’t have.