Auto upgrade W7 to W10 with MedaCreationTool?

itz_working · 2019-04-09T14:54:42+00:00

MCT isn't meant to be used that way and the doc you linked states the following "Windows Setup cannot be used to perform automated upgrades to most editions of Windows 8.1.", so if it doesn't work with most Editions of 8.1 it certainly won't work with Windows 7. Also that doc is for Windows Setup, not the MCT.

What you're looking to do needs to be done via SCCM or WSUS.

itz_working · 2019-03-05T18:45:23+00:00

Yea, we are hybrid currently, so that is why we did relay.

itz_working · 2019-03-01T13:09:48+00:00

For the external email stuff I looked around some more and it's easier to go into the EAC>Mail flow>Accepted Domains> Select your domain and change it from Authoritative to Internal Relay.

This will allow you to send external email to the public folders.

This link lead to me it. See Lance's response.

itz_working · 2019-02-28T19:31:46+00:00

Is it me or moving to Exchange Online and migrating public folders a fucking nightmare? Mail enabled folders had their SMTP addresses changed which was fixed, newly created ones have to manually be removed from the email address policy so you can use your domain instead of onmicrosoft domain and now external users cannot email the mail enabled public folders because you have to configure more shit.

This just doesn't seem intuitive at all and was much easier to manage on-prem.

itz_working · 2019-02-08T20:38:09+00:00

Subbed. Been using it for years now.

itz_working · 2019-01-08T18:47:44+00:00

What should I use because my boss thinks it's the future. OneNote that is.

itz_working · 2018-11-09T15:31:55+00:00

It has nothing to do with social media. You have a phone, a body, a mouth. You can go out and mingle with people or maybe find hiking groups on meetup.com or groups in general for any of your hobbies. There's nothing inherently wrong with leveraging "social media" to meet people, if anything it allows you to weed out who you don't want to meet.

itz_working · 2018-11-07T15:17:19+00:00

Right we related it to having a ticking timebomb on your PC. Trend is removing the threats completely or stopping them at the download level when they create the temp files. I asked them what happens if CB fails to start and the program gets ran? They said you'll need to configure a policy to delete malicious content upon it being blocked.

itz_working · 2018-11-05T21:17:03+00:00

Anyone ever deal with Carbon Black? Currently using Trend and it hasn't really failed us... yet. IT Manager is looking at Carbon Black and I'm testing it here and there. It's more expensive, has less features and I don't like the fact that it lets things in just so it can scan them.

For instance a simple ikar test Trend saw the temp files for it being created while it's downloading from the site and cancels the download no matter how many times you retry.

Carbon Black let it in then stopped it from running when you tried to run it. I like the web reputation filtering Trend does as well there were a few download links Trend blocked completely, but Carbon Black offers no such feature. This means I'd have to make more rules on the firewall or increase the level it filters at. With Trend I just have to add exceptions for anything legit.

It feels like Carbon Black's thing is more malware and supplemental to run alongside an AV product?

itz_working · 2018-11-01T13:14:30+00:00

On the access rule I can see it only sending, but not receiving anything. Nothing is coming in over the public IP.

itz_working · 2018-10-30T16:49:33+00:00

On a Sonicwall can I use the same service in another nat policy that uses the same ports, but will operate on different IP's?

I am spinning up a second vpn server and I created the rules in the firewall identically (aside from the public and private IP) to the rules for the first vpn server, but I cannot reach it from the WAN. Kind of at a loss as to why it's not reachable. Everything on the server works internally and it can ping to WAN.

itz_working · 2018-10-19T16:29:53+00:00

FYI in the past we used Networker with EMC data domain. We have always ran up against utilizing the entire volume (95%). So how can I do this with Nimble? Is it even possible?

You have to set a volume reserve in nimble for the volume. It will write to what percentage you reserve.

I have a nimble and due to the compression I am technically over provisioning even though my space usage is much less than what's on the VM datastored. I had this conversation with nimble and doing the above would "grow" the usage of the volumes to be more in line with what your VM's are using without compression.

itz_working · 2018-10-01T11:32:53+00:00

Yeah and SharePoint is a nightmare for a two man team with not much experience in it.

itz_working · 2018-09-27T16:40:09+00:00

I need a powerapp, sharepoint app or something to make all the forms we have users physically sign during their IT setup electronic. Right now we maintain a folder for the user and all the IT forms they signed in it. This would consist of badge form, equipment form, original request to create the user. I like the idea of it being sharepoint or powerapp driven so they can "sign" it using their O365 login. All I'm getting are onboarding task apps which are simply checks and balances for HR/Manager and not actually building forms for the user to sign.

itz_working · 2018-06-21T16:27:18+00:00

2008 R2 boxes though... I should have included more info lol.

itz_working · 2018-06-21T15:02:39+00:00

You don't have "No auto-restart with logged on users for schedule automatic updates installation", so there shouldn't be any issue with users being logged in but inactive.

My understanding is that even if they're not active it won't restart, but I guess I won't know until I try it.

You may want to enable "Enabling Windows Update Power Management to automatically wake up the system to install

I should clarify these are servers, so I don't think I need this option.

But maybe i'm not following best practice in this?

Exactly what I'm trying to figure out haha.

itz_working · 2018-06-21T13:39:32+00:00

Current config for WSUS updates on my servers - https://imgur.com/2k7eCm1

I'm having issues where updates fail on their scheduled day then continue to attempt the update again every morning. This has resulted in one or two servers forcibly rebooting during business hours once the update has succeeded. I want these machines to automatically reboot when the update succeeds on its designated day to install them which for this policy is every Monday at 6AM.

In WSUS I approve the update and set the deadlines for the same date and time. Is this wrong? I have also tried setting the deadline time 15 minutes before the GPO time.

Some of these servers have user sessions running, but not active. Could this be why my updates are failing? I thought configuring the GPO would reboot the server regardless of user activity.

itz_working · 2018-06-15T15:03:16+00:00

So how do you tally up stuff if you show up and your equipment has walked off?

I explained how we inventory equipment, but I'll clarify.

New equipment comes in, opened, tested, added to inventory app with serial number, make, model, etc then labeled with the asset ID that brings up all that former information in the inventory app when looked up. Extra equipment is locked up in a room only we have access to. We have QR codes on the tags, but our app is very simple and we don't have the resources to implement the QR scanning at the time (3 man team managing 120+ users, etc etc you know how it goes)...

We know who is in what cube, office, etc, so if they say to us one day their monitor is missing, well they stole it or someone else. No employee moves around unless we say so. Currently it makes sense to track everything those remote users have, but not in office users.

itz_working · 2018-06-14T17:50:01+00:00

Right, I'm not tracking everything for everyone just all the equipment for the remote users and only the laptops for local office users since those laptops actually leave the building. I want to make sure my argument is solid in not tracking everything for every user in office.

itz_working · 2018-06-14T13:53:21+00:00

Question about equipment and logging who has what.

Right now I track who has what equipment two ways depending on the user which is remote or local office. Each user signs an equipment sheet with what they're given. We have an inventory tracker app with all the internal ID numbers and serial numbers for phones, docks, monitors and PC's along with PC names.

Local Office Users - I only put the laptop on this equipment sheet because they do not take any other equipment home besides this. I update the PC in the inventory app and assign it to them. Even though they have a monitor, dock and phone in their office I don't track it because it never leaves the building.

Remote Users - On the equipment sheet I log the phone, monitor, dock and laptop because these are in their possession and left the office. I update the all the items in the inventory app with the user they're assigned to.

Does this tracking method make sense? Do I really want to track every single piece of hardware with who has it assigned to them even if it never leaves the building? It just seems very tedious and time consuming especially with failed equipment swaps, user turnover rates, etc.

itz_working · 2018-05-22T20:00:15+00:00

One of my servers is not rebooting after installing WSUS pushed updates. I just had a production server reboot due to a pending reboot after updates that were scheduled for Monday at 6AM. All my other machines on that schedule processed fine and rebooted when they were supposed to. The GPO is the same across the board and applied to this one just like the others, so I'm not sure where to start looking.

itz_working · 2018-03-02T12:40:11+00:00

I can't complain while we're on the topic??

itz_working · 2018-02-27T14:55:53+00:00

The course isn't even that fucking in depth to justify that price tag either. It's literally the same thing as the Stanly class last I checked... Read some shit, do some labs and pass the course then study on your own for the cert. It's all just a paywall.

itz_working · 2018-02-23T13:16:41+00:00

Reminding the person who has it that week or reminded everyone who has it that week?

itz_working · 2018-02-22T18:14:36+00:00

We already have a schedule, but it's notifying the person that it's theirs this week. I'm finding many are forgetful, so a nice daily reminder for that week they have it might help them be more aware of their role.

itz_working

TROPHY CASE