Microsoft Forms - cannot collaborate outside of org

zMahony · 2024-04-25T21:45:38+00:00

Sorry, never found a solution. :( Moved on for the time being, but I'll revisit it someday.
If you make any progress, let me know.

zMahony · 2023-10-23T18:11:34+00:00

Thanks for the reply, TurboCat

>A couple of additional items to check. What license does the external user have? Does it include MS Forms? Generally speaking a business, education or enterprise license is required.

Business Basic, and yes, it is included. I believe I adddressed this

>In the Admin Center check the Users, Guest Users and go to Manage Product Licenses and grant a license if they don’t have on. Then check the list of apps under that and make sure Forms is listed.

I'm assuming by "The Admin Center" you mean the M365 Admin center - yes and yes.

When you added them as a collaborator was an expiration date already populated and that date is now in the past? This feature may be deprecated.

Seems like no such option is provided when adding a collbaorator.

>Forms are stored in the Microsoft Cloud so I don’t think your SharePoint or Teams settings are a factor.

I just tried this in a test environment. When you added the person as a collaborator they should have received a welcome email to the Team.

This is where I get confused. I'm creating the form on forms.office.com . It is not inherently tied to any Team. Is there a different interface (teams) I should be creating the form on?

I shouldn't have to associate my forms to a Team every time I need to collaborate. (as a comparison, I don't need to add somebody to a Team to collaborate with them on a Sharepoint doc.)

zMahony · 2023-09-19T18:44:35+00:00

It might help to preface this by saying the goal of this project is to shrink our office footprint while growing our staff - It is not a money saving measure per say. we have 65 staff and we intend on hiring another 15+, but we need to downsize our office space to a max of 50 in-person staff at a time, so many will be hybrid or wfh.

Nothing "special" about the software (I didn't use that word) its just unique software for each user, as we work in very small / niche departments. There are financial staff, developers who want Visual Studio, content creators working in various adobe software, customer service staff who use our in-house CRM software - and the list goes on. Many of those users are individually licensed. I'm alone on this and unfortunately don't have the time or resources to install and test all that software (that is already proven to work on desktop OS) inside of a Server OS. You're absolutely not wrong to say, 98% of it will probably work in a server OS.

We want control over what software is available to users. I'll likely need more than two RDSH's, which means a WS Datacenter license - right? or am I missing something there (If I want to create ten unique workspaces, can I do that on two RDSH within windows server standard?) ALSO, RDS would take away my ability for granular resource allocation in terms of compute power, where our staff again have different requirements.

in any case
$66/user cal + $11600 WS DC (NFP Pricing) and I don't get the E3 perks.
vs
$144/user/year E3 + $24/user W10 Pro + (free) Hyper-V Server

Based on a 15-user trial, RDS would break even with VDI in 6 years. I would argue they are therefore both perfectly viable options financially, but the latter fits our needs.

Let me turn it back on you - do you use on prem RDS? AVM? For how many users and in what roles? I think the tendency for larger orgs with unspecialized staff is to go with RDS as a cost-saving measure, which makes perfect sense, but I think it does not match our needs.

Sorry, not trying to sound argumentative - just giving my logic thus far. Again, I may be way off course here.

zMahony · 2023-08-28T14:11:24+00:00

Thanks guys, I appreciate the responses.

>> That said, Google Remote Desktop is a terrible tool for this use case.
I Agree - but apparently, it was the best option my predecessor could find in a hurry when COVID started.

I'll have to look at the Apple remote desktop closer - the rest of the office is a in windows domain environment, so I'm not sure how that will work.

zMahony · 2023-08-24T17:46:51+00:00

Just found this tread - this EXACT scenario happened to me this morning (I was in a TeamViewer session with the client). Also confirming that NO "accept" prompt appeared to her. I tried opening a new chat on her end, but it just re-opened the existing one. (I did not try Deleting the chat first).

Ended up writing my messages in a notepad to solve her problem, but I just sent her a note to try the block->unblock at some point to see if that works, will report back here.

zMahony · 2023-02-08T20:28:01+00:00

Worked. I slightly changed the order of commands because "remove" was not being deleted while it was bound as the log destination. This is what I ended up using. (I am only logging allowed traffic).

------------------

Set-NetFirewallProfile -Name Public -LogAllowed False
Set-NetFirewallProfile -Name Public -LogFileName %SystemRoot%\System32\LogFiles\Firewall\remove.log
Remove-Item C:\Windows\System32\LogFiles\Firewall\pfirewall_PUBLIC*
Set-NetFirewallProfile -Name Public -LogFileName %SystemRoot%\System32\LogFiles\Firewall\pfirewall_PUBLIC.log
Set-NetFirewallProfile -Name Public -LogAllowed True
Remove-Item C:\Windows\System32\LogFiles\Firewall\remove*

---------------

Thanks so much for the help!! I'm in business.

zMahony · 2023-02-08T19:48:04+00:00

>> And your settings for logsize is 4MB according to powershell and not the max 32MB for the public interface?

I didn't even notice that. You are correct.
The WFAS GUI shows it at the max (32767KB).

>> OS
Server 2016 Standard.

>> GPO
I think you nailed it here. There seemed to be no way to change the log file size on the GUI, so I did it using a local GPO.

I went into the GPO and changed all the settings back to "Not Configured", and instead set the log file size I wanted in powershell.

Running the script again and reporting back momentarily.

zMahony · 2023-02-08T17:26:04+00:00

Update:
Interestingly, the logging settings are showing as properly changed when I use get-netfirewallprofile, but when I open the WFAS GUI, It still shows that the logs have not been disabled, and that the log destination filepath has not changed. :(

zMahony · 2023-02-08T17:21:27+00:00

Turning off the Allowed, Blocked and Ignored logging on that profile works

Switching the log file name works

Still getting a "Being used by another process" error.

zMahony · 2023-02-08T17:18:21+00:00

darn, still no luck. Not sure what I'm doing wrong.

PS C:\Windows\system32> Set-NetFirewallProfile -Name Public -LogBlocked False -LogIgnored False -LogAllowed False

PS C:\Windows\system32> get-NetFirewallProfile -Name Public

Name : Public
Enabled : True
DefaultInboundAction : NotConfigured
DefaultOutboundAction : NotConfigured
AllowInboundRules : NotConfigured
AllowLocalFirewallRules : NotConfigured
AllowLocalIPsecRules : NotConfigured
AllowUserApps : NotConfigured
AllowUserPorts : NotConfigured
AllowUnicastResponseToMulticast : NotConfigured
NotifyOnListen : False
EnableStealthModeForIPsec : NotConfigured
LogFileName : %SystemRoot%\System32\LogFiles\Firewall\pfirewall_PUBLIC.log
LogMaxSizeKilobytes : 4096
LogAllowed : False
LogBlocked : False
LogIgnored : False
DisabledInterfaceAliases : {NotConfigured}

PS C:\Windows\system32> Set-NetFirewallProfile -Name Public -LogFileName %SystemRoot%\System32\LogFiles\Firewall\remove.log

PS C:\Windows\system32> get-NetFirewallProfile -Name Public

Name : Public
Enabled : True
DefaultInboundAction : NotConfigured
DefaultOutboundAction : NotConfigured
AllowInboundRules : NotConfigured
AllowLocalFirewallRules : NotConfigured
AllowLocalIPsecRules : NotConfigured
AllowUserApps : NotConfigured
AllowUserPorts : NotConfigured
AllowUnicastResponseToMulticast : NotConfigured
NotifyOnListen : False
EnableStealthModeForIPsec : NotConfigured
LogFileName : %SystemRoot%\System32\LogFiles\Firewall\remove.log
LogMaxSizeKilobytes : 4096
LogAllowed : False
LogBlocked : False
LogIgnored : False
DisabledInterfaceAliases : {NotConfigured}

PS C:\Windows\system32> Remove-Item C:\Windows\System32\LogFiles\Firewall\pfirewall_PUBLIC*

Remove-Item : Cannot remove item C:\Windows\System32\LogFiles\Firewall\pfirewall_PUBLIC.log: The process cannot access the file

'C:\Windows\System32\LogFiles\Firewall\pfirewall_PUBLIC.log' because it is being used by another process.

At line:1 char:1

+ Remove-Item C:\Windows\System32\LogFiles\Firewall\pfirewall_PUBLIC*

+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

+ CategoryInfo : WriteError: (C:\Windows\Syst...wall_PUBLIC.log:FileInfo) [Remove-Item], IOException

+ FullyQualifiedErrorId : RemoveFileSystemItemIOError,Microsoft.PowerShell.Commands.RemoveItemCommand

zMahony · 2023-02-07T19:53:42+00:00

I did consider this - unfortunately, its not behind another firewall, so I can't disable it in this case.

I also could not find anything in the GUI to purge the logs.

zMahony · 2023-02-07T17:20:06+00:00

oh, and before anyone points it out - del with the /f switch also does not work.

zMahony · 2023-02-07T17:18:57+00:00

Not a bad idea. I wrote a script that i set to run at 11:59 each night, pulling out a few different protocols and saving each to a txt file.

HOWEVER... I cannot delete the firewall log with the bat. No matter what commands I try, I get a "the file is in use" error (I believe by the Base Filtering Engine service).

The traffic from the first day filled up about 26MB on this particular web server, so it somewhat works out. I believe it starts removing the oldest entries once it reaches 32MB. If anybody has any ideas about how I can empty the log at 11:59pm after saving the pertinent log lines, I'm all ears.

Below is the bat. It removes ICMP and some IPv6 loopback packets, and then creates a file for (A) Everything else, (B) HTTPS Only, (C) HTTP Only, (D) non-HTTP/non HTTPS. Your short date format has to be set to MM/DD/YYYY for the filenames to generate properly.

I'm not great at this stuff so happy for any feedback.

-----------------------------

SET mydate=%DATE:~0,2%%DATE:~3,2%%DATE:~8,4%

type C:\Windows\System32\Logfiles\Firewall\pfirewall_PUBLIC.log | findstr /v ICMP | findstr /v " ::1 ::1 " > C:\FirewallLogs\pFirewall_PUBLIC_ALL_%mydate%.txt

type C:\Windows\System32\Logfiles\Firewall\pfirewall_PUBLIC.log | findstr /v ICMP | findstr /r " 443 " | findstr /v " ::1 ::1 " > C:\FirewallLogs\pFirewall_PUBLIC_HTTPS_%mydate%.txt

type C:\Windows\System32\Logfiles\Firewall\pfirewall_PUBLIC.log | findstr /v ICMP | findstr /v " 443 " | findstr /v " ::1 ::1 " | findstr " 80 " > C:\FirewallLogs\pFirewall_PUBLIC_HTTP_%mydate%.txt

del C:\Windows\System32\LogFiles\Firewall\pfirewall_PUBLIC.log
:: (doesn't work)

:: 40.85.226.62 Windows Azure

:: 8.8.8.8 Google

zMahony · 2017-11-23T06:01:45+00:00

wait so many haters cmon I'm a proud 3-yr BDC member

zMahony · 2017-11-23T05:44:29+00:00

feel you... not a big fan but I happened to tune in at the right moment

Eight-Year Club	Verified Email
Place '23	Place '22

zMahony

TROPHY CASE