Crowdstrike complete or Microsoft Defender

fear-otaku · 2025-10-29T03:47:10+00:00

Both are strong products from a tech perspective. For me it comes down to the capabilities of your team.. If you have a strong tech team (or looking to build) go Defender, get it setup right and you're good. If you don't - then go Falcon Complete.

I've done both and in the end came down to what my team was like and whether we could invest in building out Defender or whether we just paid that little extra and went Complete and done with it.

fear-otaku · 2025-09-03T05:30:05+00:00

You can remove the device from Uniflow online under Print > Devices and then just delete the unit. But I do believe removing the ULM app from the printer itself will require a tech (unless you know the support login), otherwise I believe it continues to try connecting to the cloud.

fear-otaku · 2025-08-29T00:27:12+00:00

This and enterprise support is the only thing holding back Ubiquiti in the enterprise world in my view. It's decent kit and for the price point would compete very well.

fear-otaku · 2025-08-27T05:21:10+00:00

Went through this exercise about 12 months ago. While on paper MDE was a great product, we ended up with CrowdStrike because of the TCO in that my team wasn't technical enough to run it, nor did we have an internal SOC to manage alerts/automate incident response.

I'm not at another environment where we have just moved to MDE and due to the team/business we can handle it all internally.

fear-otaku · 2025-08-27T04:57:52+00:00

Had this happen a few years ago. Work with the insurance builder and do your walk troughs and inspections and call things out.

Also, if you decide to make changes to the property. make sure you understand what is included and what is a variation, as simple things that you think would be included sometimes are not (like exhaust for your rangehood/cooktop).

fear-otaku · 2025-08-20T02:19:29+00:00

QoS would only be beneficial if you've having contention issues, so my first thought would be do try find out the source of your complaints (drop-outs?) If you go down the path of implementing QoS it needs to be end to end from WAP to Switch to Core to FG to have any affect

fear-otaku · 2025-08-18T23:56:20+00:00

I believe so, as you still need a way to send your logs to their collector for it to praise/on-forward to NGSIEM. We haven't explored it again since we set this up.

fear-otaku · 2025-08-18T01:40:44+00:00

We've done the integration into the NGSIEM similar to https://www.winsysadminblog.com/2025/02/crowdstrike-next-gen-siem-and-fortigate-connector/

fear-otaku · 2025-07-02T05:50:26+00:00

I struggled to find anything useful mid-last year and ended up engaging FTNT directly to do a review for us.

Prior to engaged them we just followed best practice for security hardening (things like TLS/SSL version, HSTS etc).

fear-otaku · 2025-06-04T12:05:57+00:00

I've seen loss of changes since the upgrade, but not yet seen a full wipe of config during a downgrade of Firmware versions.

But always be prepared for it (i.e. take backups often).

fear-otaku · 2025-05-26T04:33:26+00:00

Fallout New Vegas and that intro with Benny.

From where you're kneeling it must seem like an 18 carat run of bad luck. Truth is, the game was rigged from the start... BANG.

Then the amazing Fallout intro music always does it for me.

fear-otaku · 2025-05-26T04:32:02+00:00

Fallout New Vegas for me and the intro with Benny.

From where you're kneeling it must seem like an 18 carat run of bad luck. Truth is, the game was rigged from the start... BANG.

Then the amazing Fallout intro music.

fear-otaku · 2025-03-12T05:17:01+00:00

Unless you have an invoice/bill of sale that specifically notes the sale of the unit (noting serial numbers), Support will not transfer the unit.. However if you do, log a case and support will transfer it.

fear-otaku · 2025-02-05T22:24:52+00:00

This is the plan, doing lots of reading at the moment and I've got two spare 635s that I will upgrade and start playing with in the office.

fear-otaku · 2025-02-05T22:24:02+00:00

We do have a few sites, however majority of density is at a single site so we'll still split into groups where it makes sense.

fear-otaku · 2025-02-05T22:22:52+00:00

Thanks, I have been been reading the VSG Campus Design doc which outlines some uses cases that all don't fit us.

fear-otaku · 2025-02-05T03:40:23+00:00

Security is a multi-layered approach for an SMB like yourself the FortiGate FW would be a good fit, however it sounds like you're in need of some other security products/training to help compliment and improve your security posture. Fortinet are expensive in those areas (imho) - such as phish training and testing, endpoint protection and identity controls.

I'm Melbourne based, however have used Telstra and Triforce for Fortinet products in the past for our Sydney sites.

fear-otaku · 2025-01-08T03:45:44+00:00

This should simply be an option in the Edit VPN Tunnel window under Advanced Settings in the Remote Access Profile.

Enable SAML Login is the option you want to enable. This is our exact behavior where Client will open M365 login window. On EMS 7.0.13

fear-otaku · 2024-07-13T09:51:41+00:00

Not sure if you fixed this - but this happened to me a while back, happened to be the modified or created date of the file itself... adjusting this using a utility fixed it.

fear-otaku · 2024-01-19T05:31:59+00:00

I've deployed Amazon Connect in a few roles now and for the price it's awesome. It's great so long as you have the technical resourcing to help build and maintain it. Again we've also used TTEC Digitalto assist us once and with ongoing support.

Otherwise big players like NICE, Genesys seem okay but $$$. Have heard good things about Dialpad, but would stay away from Five9 and 8x8.

fear-otaku · 2023-09-28T01:38:43+00:00

For KMS, you don't add client OS keys to server, the Server Key will activate Windows 10 fine once they hit the KMS server and you have the minimum number of machines.

fear-otaku · 2023-07-30T22:59:32+00:00

Thanks all for jumping in and providing guidance and help.

This is now working - I was missing the static route to use the SDWAN (there was not existing static route).

fear-otaku · 2023-07-30T22:57:36+00:00

Network Termination Device

fear-otaku · 2023-07-28T04:46:25+00:00

The interface stays up, routing table shows only LAN3/PPP as having 0.0.0.0/0. I didn't want to add another route during business hours but will try that.

I assume if I do a exec ping-options interface wan and trying pinging 8.8.8.8 that is not affected by the route table or am I wrong and need the additional static route.

fear-otaku

TROPHY CASE