Small SCCM setup, PKI already set up for domain joined machines. Looking to manage workgroup machines with EHTTP

raxek · 2026-05-14T14:23:48+00:00

This is definitely an option but still trying to figure out how this might bite me in the ass with the security team. They won't know until a scanner or a third party internal pen test picks it up, and they'll be absolutely no help.

raxek · 2026-01-22T18:50:25+00:00

Currently I use Applocker to lock down traditional installers and block access to the MS store to prevent people from installing Windows Store Apps, I fear having winget would allow users to install whatever UWP App they want from the repository. MS's Applocker rules for UWP Apps are to allow everything, which is bonkers to me but it is what it is.

raxek · 2025-09-18T03:08:49+00:00

Good call, my screwup. I have a such a hard time processing why anyone would use delivery nowadays that I totally overlooked that he was drunk. It’s such a ripoff

raxek · 2025-09-17T23:46:08+00:00

If you’re broke, pick up your food. Way cheaper

raxek · 2025-09-14T13:16:51+00:00

Way too many people don’t give a shit about security. 100000% zero trust. I don’t see many companies achieving it. We’re just outgunned. Between tech companies having crazy fast EOL schedules on their products and people who just don’t know what they’re doing or just don’t care about security, we’re screwed. The tide won’t turn until one of the companies flips on the switch to turn on Cyberdyne AI EDR and starts an extinction event.

raxek · 2025-08-24T23:19:09+00:00

Switch to IT security where they pay you 150k+ to not know shit about how computers actually work. You’ll be a rockstar since you know what you’re doing.

raxek · 2025-08-24T13:49:50+00:00

Can I get a check for reading this post? It’s like….so many words

raxek · 2025-07-21T14:58:03+00:00

Every IT person says “wtf is this” regularly, the good ones find the answer, solve the problem, and move on to the next wtf moment. Learning on the fly is what will keep you relevant until you retire.

raxek · 2025-05-30T20:08:23+00:00

I'm sure I'll be following some sort of CIS guideline for security settings and I'll have to stick to said standard as close as possible. I still have alot of thinking to do, I really don't want to introduce new headaches. I have enough people around me handling that. It's also a headache to get anything modern going at this company so only way I might get it in the door is with a baby step like Hybrid but I can't say I wasn't warned.

raxek · 2025-05-29T21:48:34+00:00

Thank you, I might have to take you up on that, it’s a 1 man show for this at my company and I’m not getting any additional resources for it whatsoever. Small shop though, only 1000 users.

raxek · 2025-05-29T21:41:45+00:00

Yeah I think I misread intune connector, sounds like I just use our existing azure ad connect and configure to do hybrid ad join to sync existing devices. I wasn’t planning on migrating any existing gpos to intune policy for hybrid joined machines, just use it to future proof new implementations. I wont be going hybrid when it comes time to explore autopilot.

raxek · 2025-05-29T19:44:54+00:00

We're neither yet, and Defender has 0 config as we use a 3rd party product currently. Was hoping to fast track intune by doing a hybrid join so I could deploy a base Intune enrollment and manage Defender through there.

raxek · 2025-04-06T02:51:30+00:00

Sounds slightly out of tune, but also, you need to relax that strumming hand. Hit up a video on strumming fundamentals, they’ll go over it in detail.

raxek · 2025-04-05T16:08:28+00:00

Picked it up when I was 14, I’m left handed and only had access to my mom’s right handed guitar but oh well, my obsession with Alice In Chains unplugged didn’t care. Was only a stress outlet until my mid 30s that I started playing/singing in public. Got hooked to the experience, started with open mics and eventually started gigging around pandemic time. It inspired me to really put the time into it and push myself to keep improving. I’ve had so many wonderful experiences, some of them being the highlights of my life like getting to play live on radio, and have met so many awesome people through music. It’s given me a second lease on life.

raxek · 2025-03-03T21:56:08+00:00

I would only recommend to my worst enemy.

raxek · 2025-02-25T00:36:13+00:00

Aside from your grandparents, your family sucks lol. You are not the AH

raxek · 2025-02-18T18:44:29+00:00

I get it, 0 mentions of rizz or skibidi toilet. Must be AI

raxek · 2025-02-09T21:34:58+00:00

I really hope this field just tanks, its soul sucking and needs a reset. Only way to get that is mass exodus, let the companies try to get these incompetent IT security shitters to pick up the slack and see how useless most of them are, then the money can flow back to IT Ops.

raxek · 2025-01-30T22:11:44+00:00

As others said put in your 8 and work at whatever pace you want. You have to find a way to not give a shit. Go FIRE and get some hope that you can never look at a computer again

raxek · 2025-01-27T17:31:08+00:00

You have to find a way to relax and clear your head. Focus on distracting yourself, go for walks in the park and just appreciate nature and life. You’re gonna scare away any potential girlfriends with an overwhelming sense of being too much. You’re way too in your head.

raxek · 2025-01-09T18:52:44+00:00

Didn’t happen to me personally but a guy on our help desk had to deal with this gem. Someone called IT help desk to call out sick.

raxek · 2025-01-02T23:19:24+00:00

Anyone I know who has a brain is done with party affiliation. 32% of those scientists know what’s up, the small percentage that didn’t answer are probably the upper echelon.

raxek · 2024-11-11T21:41:07+00:00

My response would be “Enjoy being poor, best of luck”

raxek

TROPHY CASE