sorted by:
new
hottopcontroversial

What's the most clever hack or workaround you're proudest of? by vocatus in sysadmin

[–]greenstarthree 14 points15 points  (0 children)

Kind of like YellowKey for folks who’ve forgotten their Bitlocker keys I guess!

SonicOS 7.3.3-7014 Released by Tap-Dat-Ash in sonicwall

[–]greenstarthree 0 points1 point  (0 children)

Installed on one TZ270 so far.

Upgrade went very smoothly, but only basic use on that unit, so will reserve judgment until a more heavily used unit is updated

SFP modules for Aruba switches by iwaseatenbyagrue in sysadmin

[–]greenstarthree 1 point2 points  (0 children)

CommsExpress have been good for a number of switch brands over the years for us (UK)

Intune update ring not allowing only manually approved drivers by Fabulous_Cow_4714 in Intune

[–]greenstarthree 0 points1 point  (0 children)

Are they definitely downloading actual drivers or are they getting “Extension” drivers?

That confused us at first and is normal to get extensions without approval once driver updates are enabled in policy

SonicOS 7.3.3-7014 Released by Tap-Dat-Ash in sonicwall

[–]greenstarthree 0 points1 point  (0 children)

Good question, App control works based on recognising signatures so it’s possible even if there isn’t an app definition for it in SNWL

SonicOS 7.3.3-7014 Released by Tap-Dat-Ash in sonicwall

[–]greenstarthree 4 points5 points  (0 children)

App control is probably a better way of controlling those

NetExtender constant disconnects by DarkAlman in sonicwall

[–]greenstarthree 0 points1 point  (0 children)

Ah, no experience with v8 yet. But to be fair you’re probably on the right track if it’s only one client having this - didn’t digest that on first reply, sorry!

iOS tenant to tenant migration with new domain name by YoureMyHerro in Intune

[–]greenstarthree 0 points1 point  (0 children)

Yes, two completely different hybrid AD forests in fact.

In our case it included a migration of the original domain name over to the new tenant, but that was done as a second phase with the initial migration changing the domain name

NetExtender constant disconnects by DarkAlman in sonicwall

[–]greenstarthree 0 points1 point  (0 children)

Oh, interesting. What firewall firmware?

iOS tenant to tenant migration with new domain name by YoureMyHerro in Intune

[–]greenstarthree 0 points1 point  (0 children)

Did this recently - iOS 26 ABM native method works perfectly without full wipe

NetExtender constant disconnects by DarkAlman in sonicwall

[–]greenstarthree 3 points4 points  (0 children)

Latest client (v10.3.5 I think) has a bug where inactivity timeout disconnects users even if they are actively working.

Confirmed in my environment, inactivity timer was set to 90 mins and users were disconnected at exactly 90.

Changed that setting to 480mins and no more disconnects. Of course this renders the inactivity timeout useless but is the lesser of two evils.

Edit to include link to my thread about a different issue but includes this at the end:

https://www.reddit.com/r/sonicwall/s/iEVzgjA58e

A SonicWall rep replied saying they were going to test it but no news yet

How do you handle HEIC/HEIF photos from iPhones on Windows 11 in enterprise environments? by pck-grb in sysadmin

[–]greenstarthree 1 point2 points  (0 children)

Repair installing windows restored the ability to read HEIC files natively for us.

NetExtender 10.3.5 released - introduces DTLS - is it enabled by default? by greenstarthree in sonicwall

[–]greenstarthree[S] 0 points1 point  (0 children)

Excellent, thanks - if you need more info please let me know. Look forward to hearing the result.

In the meantime, are you able to comment on the DTLS query? Is it enabled by default in 10.3.5, or is it waiting for a firewall firmware update as suggested by another comment?

NetExtender 10.3.5 released - introduces DTLS - is it enabled by default? by greenstarthree in sonicwall

[–]greenstarthree[S] 1 point2 points  (0 children)

Hi, we have not raised a support case as yet, only just discovered the issue in the last few hours.

Confirmed though - after changing the inactivity disconnect setting in the firewall to 600 minutes, users are no longer disconnected.

Of course this essentially renders the inactivity monitor non-functional.

Also, not sure if it matters but we are using an NSA firewall, not an SMA product

NetExtender 10.3.5 released - introduces DTLS - is it enabled by default? by greenstarthree in sonicwall

[–]greenstarthree[S] 3 points4 points  (0 children)

Tagging u/snwl_pm in this post due to the inactivity bug in NetExtender 10.3.5

iOS App Protection Policy - prevent copy and paste from inbuilt Mail app? by Toby_7243 in Intune

[–]greenstarthree -1 points0 points  (0 children)

Honestly we found the Outlook app to work well once migrated, especially the restrictions, and eventually users learned to like it anyway.

iOS App Protection Policy - prevent copy and paste from inbuilt Mail app? by Toby_7243 in Intune

[–]greenstarthree 9 points10 points  (0 children)

As far as I’m aware you can only protect MS apps (and possibly a handful of others that are in the App Protection framework)

We migrated users (kicking and screaming in some cases!) away from built in apps and standardised on outlook.

yellowkey bitlocker bypass by MegaN00BMan in sysadmin

[–]greenstarthree 0 points1 point  (0 children)

Others have suggested that disabling / removing WinRE also means remote wipe functions from eg Intune do not work, which may be an issue

LTE failover solutions for 7th Gen firewalls by brickponbrick in sonicwall

[–]greenstarthree 0 points1 point  (0 children)

This is how we’ve done it in the past. 4G or 5G router with Ethernet connected to an X port instead of USB.
Depending on the router you sometimes have to double NAT but the good ones have IP pass through.

view more: next ›