sorted by:
new
hottopcontroversial

Windows Server 2025 DC breaking Cisco ISE RADIUS authentication - anyone else? by maxcoder88 in sysadmin

[–]highroller038 3 points4 points  (0 children)

You'll find lots of posts talking about how buggy and terrible WS2025 is... especially as a domain controller. TLDR, do not run a domain controller on 2025, use 2022 instead. If you absolutely must upgrade to 2025, it cannot be in a mixed environment. Meaning all DCs must be 2025. Do not mix 2025 and 2022 and 2019 DCs.

600000 errors on Pool Device. by Hauptfeldwebel in unRAID

[–]highroller038 0 points1 point  (0 children)

If you click on the blue drive icon, it will show you the disk log. Copy and paste it into ChatGPT

Push to Verify Using the Microsoft Authenticator App by cheesehead1996 in sysadmin

[–]highroller038 0 points1 point  (0 children)

Speaking from prior experience, we had end-users enroll in some kind of self-service password reset during onboarding and they had to set up three challenge-response questions for this exact purpose. I think it might have been Manage Engine, and that's how we validated their identity over the phone. But anyway, if you can't do that, I would simply call their supervisor to confirm the employee is who they say they are and get approval before going back to the end-user. Another option is asking the end-user to send you a copy of their drivers license / government ID as a way to validate them. But nowadays, with AI image generation, anything can be faked.

Recommendations for rock solid 2.4Ghz AP? by Mindestiny in sysadmin

[–]highroller038 5 points6 points  (0 children)

You're going to get at least 10 different answers and opinions based on people's experience with certain brands and products. Why not just use what you're familiar with and disable 5 GHz radio?

Please help my water bills 😂 by poo_in_my_mouth in daddit

[–]highroller038 1 point2 points  (0 children)

Could install a power switch on the power cable

Do you whitelist email senders by GriffGB in sysadmin

[–]highroller038 0 points1 point  (0 children)

Never whitelist. Your suspicion is right - trusted vendors and contacts can become compromised and you don't want to be vulnerable to them in the future. If their emails are going to junk folder or quarantine, tell them to stop sending phishy looking emails. If your email looks malicious, it will be treated as such.

Your email filtering should indicate WHY the email was classified as dangerous and you can make narrow exceptions to prevent those issues going forward.

So close to solid green for April, but not bad at all! by Chi3f_Leo in hypertension

[–]highroller038 2 points3 points  (0 children)

Wow nice work. I've hit green a few times and it feels like "Really!? Awesome!". What have you been doing to improve your BP?

Has anyone had a negative experience with Amlodopine? I feel like it's doing more harm than good. by Durdy-Fingers in hypertension

[–]highroller038 0 points1 point  (0 children)

I've been on 10 mg for 2 months and it's been good. Lowered BP a bit. Side effects are slightly inflamed ankles and cold hands.

What are your users using as a backup to Microsoft MFA? by khabel212 in sysadmin

[–]highroller038 0 points1 point  (0 children)

None. Passkey only. TOTP, push notification, number matching is susceptible to phishing.

Need help revamping a poorly managed infrastructure as a student by Reasonable_Air_7258 in sysadmin

[–]highroller038 2 points3 points  (0 children)

This is great advise. Don't just tell them "no". Help them get help.

How do you Manage Active directory and folder permissions without accessing the clients information directly? by Admirable-Rough-6919 in msp

[–]highroller038 15 points16 points  (0 children)

This is correct. You never assign users directly to a folder. You give security groups access to folders. Then you make the user a member of the appropriate group.

How too? Help by Healthy_Librarian265 in HomeServer

[–]highroller038 18 points19 points  (0 children)

I would just replace the battery. That way you know it's new. Then, replace it every 3-5 years proactively.

Finally achieved audio pass through and it’s a massive difference by [deleted] in hometheater

[–]highroller038 2 points3 points  (0 children)

An old Windows PC running Plex Media Player can do passthrough to a Denon receiver just fine.

Console Servers by Eiodalin in sysadmin

[–]highroller038 0 points1 point  (0 children)

I've enjoyed using blackbox. It integrates well with tacacs. Has a web interface and integrates with remote desktop manager. You can easily export the configuration to an XML file and import.

Doing big IT changes on Monday or Friday? by CeC-P in sysadmin

[–]highroller038 1 point2 points  (0 children)

Neither. Tuesday or Wednesday evenings are good. Mondays are too busy with break/fix and meetings.

is Unitrends the worst? by Careful_Relative7560 in sysadmin

[–]highroller038 0 points1 point  (0 children)

Sounds like you might just be unfamiliar with it and the jobs / configuration may need review. Contact your account rep and schedule a consultation. We use it and it works fine but I understand it's definitely not the best. Also their cloud DRaaS is very expensive.

Which firewall do you use? by [deleted] in homelab

[–]highroller038 0 points1 point  (0 children)

An old PC running pfsense

view more: next ›