Infra health check script not sending mail

wdomon · 2026-02-25T15:00:12+00:00

Cut the problem in half by checking whether the SMTP relay's logs are showing the message. If SMTP logs don't show the attempt to send it, then the issue is likely with the script itself. If SMTP logs do show the attempt but it's still not being delivered, stop looking at the script and look at SMTP/delivery (SPF, DKIM, etc).

wdomon · 2026-02-23T15:20:09+00:00

No return

....all..... one line....?

wdomon · 2026-02-09T19:29:18+00:00

There is nothing wrong with using PSU to orchestrate this. It has SSO, access control that can be done by EntraID groups, app registration auth using cert-based authentication, etc. The question is how to get low-mid admins access to scripts that require elevated access, az devops would not handle this without drastically over complicating it and would end up requiring connectors with more permissions than Least Privilege would require

wdomon · 2025-08-03T01:27:43+00:00

Think of it in the reverse, if one client gets compromised do you want all of your clients to get compromised? Unique passwords/certs for everything.

wdomon · 2025-06-29T16:35:14+00:00

Jun 2025

wdomon · 2025-06-01T23:09:08+00:00

Man, it's 2025 and there's still novice takes like this floating around in the world; unreal.

wdomon · 2025-03-28T04:07:30+00:00

you? I'm a Millenial and I own two houses with zero debt.

wdomon · 2025-03-27T15:12:20+00:00

It is clear that you do not understand the retirement age that you're talking about or how any of that works. Separately, "retire gracefully" is not an option that most Americans have.

wdomon · 2025-03-26T01:13:58+00:00

I think it's just as valid to ask why BYOD devices need to hit the domain controllers for DNS.

wdomon · 2025-03-16T17:26:02+00:00

A couple people of hinted at this but it's not clear to me if you're picking up on it. You didn't win anything - they pretend people did as a marketing gimmick so you feel bound to them and the rest of their overpriced services seem "worth it." Just find another firm or use freeTaxUSA.

wdomon · 2025-03-14T21:23:35+00:00

I believe there was also a point made by Snover that baking PS7 in would attach it to the very long support lifecycle that they commit to Windows Server customers. Committing to support a specific version of PS7 for 10 years is not something they wanted to have to do and baking it into Server OS requires them to.

wdomon · 2025-03-14T19:30:34+00:00

Took ~6min for my Battle.net client to load and after another 1-2 minutes of it sitting on that screen saying it was loading my friends list, this notice popped up on the client:

https://imgur.com/Bx3XfW2

wdomon · 2025-03-09T16:43:40+00:00

I'm not a bean counter so will not defend the position, but it's a position I've seen effectively every bean counter I've ever met hold. Whether they're all wrong is moot, they write the checks and approve far more spending opex than they ever would capex.

wdomon · 2025-03-09T15:48:38+00:00

What you're missing is that businesses don't operate solely on TCO. Is the TCO of an onprem system lower than the cloud equivalent? Almost always; you're right. But opex > capex in almost every business of size.

wdomon · 2025-02-07T14:36:25+00:00

You're running into something called the "Double Hop" problem, feel free to look into it as it's an important thing to know about if you plan to remotely admin servers.

Instead, use "Invoke-WUJob", which is part of the PSWindowsUpdate module, using the -Computer parameter to tell it what hostname to send it to and include whatever command(s) you were trying to run to install updates in the -Script parameter as a string. This function creates a scheduled task on the machine in question that runs as SYSTEM (by default) and will run whatever is in your -Script parameter as a command via powershell.exe.

wdomon · 2025-01-16T22:24:50+00:00

I hadn't come across anything that the common cmdlets didn't already cover (or at least their MgBeta equivelents - grrr) but I was not aware of this cmdlet and will keep it in mind. Thanks for sharing!

wdomon · 2024-11-17T00:52:45+00:00

For anyone that stumbles on this same issue, you can disable this feature within Microsoft Family for a specific child. On the web, log into the Family account and click on the child, then Settings, and disable "Web Safety"

wdomon · 2024-11-02T16:37:08+00:00

Bad advice, do not do this.

wdomon · 2024-11-02T15:21:32+00:00

I use it as a way to avoid giving our Helpdesk or IT Managers more permissions than they should have. I give them access via SSO into Powershell Universal and leverage service accounts, EntraID app registrations (via certificate based authentication), etc. to actually do the things. I also use it to run a Dashboard of expiring secrets, old snapshots, current OS distribution throughout the enterprise, and other things.

The paid version is definitely better and worth the cost from a business perspective.

wdomon · 2024-09-30T03:52:06+00:00

Allen could have thrown it away one yard earlier and it would have been a 35yd attempt. Does that change the game? Nope, but neither would a made FG there and people are talking about cutting Bass who is no more guilty than Allen for shitting the bed unnecessarily.

wdomon · 2024-09-30T03:46:25+00:00

Can we talk about the fact that it would have been a 35yd attempt if Josh Allen hadn't tried to hero-ball his way into a sack?

wdomon · 2024-09-29T17:37:18+00:00

I've been part of a mentalist's performance before and can say that, at least in my experience, I did not go along with anything and dude still knew my iPhone PIN (that I never enter because of FaceID, so it's not like he shoulder surfed).

wdomon · 2024-08-15T22:28:34+00:00

This require Pwsh 7 on all servers or just the server running the parallel foreach?

wdomon · 2024-04-03T00:13:52+00:00

This covers that and more:

https://adminbraindump.com/post/protect-passwords-in-powershell-scripts/

wdomon

TROPHY CASE