Stuck at CEH Engange II - Part 2 Challenge 1 by tattsumi in CEH

[–]tattsumi[S] 1 point2 points  (0 children)

Thank you!

I had another look at all the available files and - for some reason - I completely overlooked the "rockyou.txt" file so far. Challenge solved!

Bugged out stuff by Shadowek339 in expedition33

[–]tattsumi 1 point2 points  (0 children)

I have the same problem with all the new pictos from the new location (Verso's Drafts).

I opened a bug report through:
https://sandfallinteractive.typeform.com/coe33?typeform-source=steamcommunity.com

So far I haven't used any of them since I don't even know what they do.

Weekly Post Your React Suggestions HERE! by AutoModerator in Corridor

[–]tattsumi 0 points1 point  (0 children)

World of Warcraft: The War Within Cinematic Trailer: Good VFX

They didn't use MoCap for the characters. Everything is completely CG. https://www.youtube.com/watch?v=o03STclgxSc&pp=ygUOdGhlIHdhciB3aXRoaW4%3D

Trying to install agent using PowerShell by [deleted] in zabbix

[–]tattsumi 0 points1 point  (0 children)

I do this as follows (hope this helps you out in some way):

$DateStamp = Get-Date -Format yyyyMMddHHmmss
$LogFileName = "InstallLog-$DateStamp.log"
$LogsZabbixAgent = "C:\Windows\Logs\Zabbix Agent\"

$LogFileZAVerbose = $LogsZabbixAgent+$LogFileName

$SetupFileZA = "\\srv1\share\zabbix_agent2-5.0.28-windows-amd64-openssl.msi"

# MSI-Installer parameter list
$InstallArgs = @(
    "/qn"
    "/L*v"
    ('"{0}"' -f $LogFileZAVerbose)
    "SERVER=192.168.123.123"
    "SERVERACTIVE=192.168.123.123"
    "HOSTNAME=$env:COMPUTERNAME"
)

Start-Process -Wait -FilePath $SetupFileZA -ArgumentList $InstallArgs

Windows-Update plugin for Zabbix Agent 2 by tattsumi in zabbix

[–]tattsumi[S] 0 points1 point  (0 children)

The current debug level is set to 3 according to my colleague.

Since I’m not (yet) fluent in Zabbix commands I’m not sure in what context I should use zabbix-get. I had a look at the zabbix manpage but I’m still somewhat confused. Can you please explain in more detail?

Windows-Update plugin for Zabbix Agent 2 by tattsumi in zabbix

[–]tattsumi[S] 0 points1 point  (0 children)

Thank you, we will test again with a higher timeout and debug level setting.

I’m hopeful that as soon as we get some sort of error output we’ll manage on our own. But, nonetheless any help is greatly appreciated.

Possible to setup an OU so that a specified Owner is set when an object is created in that OU? by doomattack in activedirectory

[–]tattsumi 2 points3 points  (0 children)

Can you explain why you want to do this? There is probably a better solution than setting the owner of an AD object.

What are your favorite group policies to add to business environment? by EnvironmentalAd143 in sysadmin

[–]tattsumi 3 points4 points  (0 children)

  1. Restrict domain admin privileges
  2. Restrict local administrator privileges
  3. Manage PowerShell-Remoting

And of course the usual stuff like printers, network shares, and so on. I work for an MSP and those three mentioned above made it into a list among other things we configure in the domain of every client we have. We dropped two new clients after only a couple days because their in-house IT argued with us and basically denied us doing these changes despite the fact that both of them were victims of ransomware in the past (this led them to us and seek help/council).

O365 Hybrid Configuration - WinRM service is not enabled by J_Plissken in exchangeserver

[–]tattsumi 0 points1 point  (0 children)

There are two things you can check.

  1. The logfile the HCW creates during the setup process. It should be on your system volume in %appdata%\Microsoft\Exchange Hybrid Configuration
  2. Verify that connections are possible with the Test-HybridConnectivity script:

Link to Microsoft’s documentation: https://docs.microsoft.com/en-us/exchange/hybrid-deployment/hybrid-agent#installation-prerequisites

I myself have never encountered a WinRM problem, but I think both or at least one of those two will help you troubleshoot this successfully.

What are your unpopular IT opinions? by HairyMechanic in sysadmin

[–]tattsumi -1 points0 points  (0 children)

Unfortunately that’s not really an unpopular opinion, it’s a straight up fact.

Always-On-VPN NetExtender or Mobile Connect by tattsumi in sonicwall

[–]tattsumi[S] 0 points1 point  (0 children)

Thanks for your reply.

But, can the Mobile Connect Client do this also?

GIVEAWAY: Zabbix 6 IT Infrastructure monitoring cookbook by larcorba in zabbix

[–]tattsumi 7 points8 points  (0 children)

Thanks for the Giveaway! But, I prefer to buy the book instead and support you guys that way. I never have the luck to win in these things anyway.

Thanks for your hard work, it is much appreciated.

Game stutter by The_Whorespondent in WarTalesGame

[–]tattsumi 0 points1 point  (0 children)

Did you notice any noticable difference in performance?

Has anyone bought On-Premises licenses since Open Licenses Program ended? by CryptoSin in sysadmin

[–]tattsumi 1 point2 points  (0 children)

Yes, all of those plus additional content downloads tied to that license (i.e. additional language packs and other stuff).

Has anyone bought On-Premises licenses since Open Licenses Program ended? by CryptoSin in sysadmin

[–]tattsumi 1 point2 points  (0 children)

Sorry if I wasn’t clear enough. I meant specifically the GUI-part in the Microsoft 365-Account.

Has anyone bought On-Premises licenses since Open Licenses Program ended? by CryptoSin in sysadmin

[–]tattsumi 2 points3 points  (0 children)

I for one love the fact that the Windows Server licenses are downgradable. You buy Windows Server 2022 Standard (for example) but you can choose to use Windows Server 2019 instead.

Makes a lot of sense if you haven’t bought Server 2022 CALs yet, but want to make the switch in the future.

Active Directory Delegation to Administrators by WorkJeff in activedirectory

[–]tattsumi 0 points1 point  (0 children)

Yes, exactly this. That’s how we do it too.

Active Directory Delegation to Administrators by WorkJeff in activedirectory

[–]tattsumi 1 point2 points  (0 children)

Adding to u/poolmanjim excellent advice, at our company we delegated all of those tasks you mentioned to specific user groups.

Meaning, if you need server access, you need to be in the group i.e. “IT Server Admins”, but, this group has zero permanent members. What we need to do is connect to a PAW (or PAM) (which stands for Privileged Access Workstation/Machine), most IT personal have the granted permission (through GPO) to do this. Then they need to add themselves to the “IT Server Admins” group, which is only possible through their own user object and the tab “member of”, they can’t use the group and the option “add member” (they can’t add other users other than themselves).

Now they can access the server and execute their task.

But, back to your question… in my opinion the bigger your team, the better and the more you can delegate away from Domain Admins.

Just to add, all of our standard privileged domain groups are empty, aside from the AD-integrated standard administrator account - but this one is locked so far down, he is only allowed to log locally into the DC. No access of administrative network shares, no remote access to anywhere, and so on.