|
ihafarm posted:This sounds like AADBroker BS to me. What does dsregcmd report? What happens if you attempt ‘dsregcmd /forcerecovery’? These accounts never showed in dsregcmd /listaccounts either
|
#
?
May 23, 2024 17:01
|
|
|
|
| # ? Apr 22, 2025 20:16 |
|
|
tehinternet posted:My first thoughts are a field in the form is set jankily. Are attachments mandatory on the form *or on any branch of the form*? I checked this, because I did have some required fields, but only in the first section before any branching. I took it out as a test and I get the same result.
|
|
#
?
May 24, 2024 14:54
|
|
|
This is such a low priority question but it came up at work and I don’t have a good answer. We have a pretty high turnover rate for entry level staff at our remote sites we manage. Our normal policy is to do a wipe on the machine, and have the manager on site just make sure the laptop is powered on connected to the Internet to receive the command. Then when the replacement starts, OOBE installs their apps. It’s not a big deal, but it does require some time pestering staff and checking to make sure it went through. However, the person replacing them will be the same position with the same apps required. It’s also not a very file heavy job and the previous employee’ space usage would be like 2 gigs on a 120gig SSD. Is there a reason why we can’t just update the primary user in intune to the new employee and be done with it? I know there’s a limit to the number Microsoft Hello pins you can store (10), but that’s all I got.
|
|
#
?
May 24, 2024 23:43
|
|
|
Do they have to be a laptop user or would Windows 365 Boot on a managed desktop be an option? I would try and avoid account reuse just from an audit point of view, and if the previous user dumped something dodgy in their OneDrive or pinned browser tabs you don’t need the liability.
|
|
#
?
May 25, 2024 00:10
|
|
|
I'm not reading that as account reuse, but just not nuking & paving between distinct users. And it really depends on how often a departing employee leaves the machine in a lovely state (software wise). Personally I'd rather have a firm policy of "device always gets wiped and rebuilt when reassigned", because without it you're leaving it open to judgment calls and guesswork. But surviving the day is always the highest priority. If cutting out some annoying work is what it takes, then either the bosses can cut other work, or hire more people.
|
|
#
?
May 25, 2024 00:16
|
|
|
An autopilot reset should be a lot quicker than a full wipe and OOBE if the apps that were getting removed and reinstalled are deployed from Intune
|
|
#
?
May 25, 2024 00:52
|
|
|
guppy posted:I checked this, because I did have some required fields, but only in the first section before any branching. I took it out as a test and I get the same result. At that point, if the form isn’t too large, I’d make a copy of the form and remove and rerun field by field until I found what was breaking it. PA errors can be real dumb and bury the lede all the time too.
|
|
#
?
May 26, 2024 02:55
|
|
|
Thanks Ants posted:An autopilot reset should be a lot quicker than a full wipe and OOBE if the apps that were getting removed and reinstalled are deployed from Intune Good thing you asked question to a well timed update. Autopilot is getting rejiggered to be faster.
|
|
#
?
May 26, 2024 18:44
|
|
|
tehinternet posted:At that point, if the form isn’t too large, I’d make a copy of the form and remove and rerun field by field until I found what was breaking it. PA errors can be real dumb and bury the lede all the time too. That's a great idea, thanks. I will give that a shot.
|
|
#
?
May 27, 2024 01:30
|
|
|
Wizard of the Deep posted:I'm not reading that as account reuse, but just not nuking & paving between distinct users. The way I handle that is tiered, and yes, does leave itself open to some judgement call issues, but we're small enough it doesn't matter. Software issues aren't much because I don't allow them to install anything without a business use case. - The lowest level, generally field techs, just have the new person sign in as their own (new) user account and move on - People with access to sensitive information, so generally project managers and similar, wipe the machine - People with access to really sensitive stuff (finance and HR) I wipe and reissue to people in the same department with the same clearances - C levels and people with access to scary sensitive information I replace the hard drive and archive/destroy the old one. This doesn't come up often
|
|
#
?
May 28, 2024 04:00
|
|
|
We always wipe, lay a new os, and autopilot again. Kind of have to anyway unless someone else knows how to reassign the enrollment user (not primary user).
|
|
#
?
May 28, 2024 04:13
|
|
|
What's the right way to do meetings on a shared mailbox calendar with Teams? We're currently having people create a meeting on their own calendar and copy/paste the link into the meeting on the shared mailbox's calendar, since a shared mailbox can't create its own Teams meetings. When the original creator leaves the firm, all those meetings become dead links. This all seems so terrible that I imagine there has to be a better way. Our user mailboxes are mostly in EXO, and the shared mailboxes are still on prem. I think maybe we're supposed to use groups, but we're not rolling that out for a while yet. It also seems like SharePoint calendars used to be able to do something like this but now can't do recurring meetings? Sorry if this is a dumb question.
|
|
#
?
Jun 5, 2024 22:39
|
|
|
Set the calendar as a resource and invite it to meetings
|
|
#
?
Jun 5, 2024 22:41
|
|
|
I thought about that, but the mailbox is the organizer. Multiple people need to be able to manage the meetings, reschedule, etc, so it can't live on any one person's calendar. In the case of the recruiting teams, for example, this could be dozens of recurring meetings a month with varying internal and external parties.
|
|
#
?
Jun 5, 2024 22:54
|
|
|
Pulling this from the Windows 11 thread. (For context, I work at a non-profit org with basically no IT support where I need to set up a bunch of laptops for use by students; right now we just install everything manually, which takes hours. I am absolutely willing to learn some stuff to make this easier, but documentation on some things for Azure/Entra/AD/whatever admin seems kind of thin.).death cob for cutie posted:Would this be the appropriate thread to ask about enterprise-level stuff, specifically Windows Configuration Designer? Some updates on this: it looks like the bulk Entra key option works for me, but the entire provisioning process is hanging on installing some of the software I've included in the package. I assume it's waiting for user input that's not showing up because I didn't pass a -silent flag or something, but I don't think those are universal for all the various Windows installers I'm using and some googling on some of the installers I'm trying to run didn't always come up with an appropriate command line option for "just install this system-wide with whatever defaults, quietly". Have come up with the idea of doing a custom Windows ISO with the software we need built-in, but there's a potential wrinkle there I forsee - can I do a repair/restore with that ISO and still get whatever custom setup I made going? The only way for me to get the license keys for these laptops' Win11 installs, as far as I'm aware, is to actually get into them and copy the license key. If I have to wipe the drive before doing anything, well, that makes it trickier. Alternatively, death cob for cutie posted:Is there another way I can get my desired outcome - maybe making an image with the software I want installed, then doing some kind of hack to remove any local user accounts and put it back into OOBE? This sounds like it might be the best way - just slamming in a local admin account, installing software, and then purging that account to get back to the OOBE setup process. Is this an option?
|
|
#
?
Jun 6, 2024 17:16
|
|
|
Probably off topic for this thread but I figured I’d post here to maybe get some help… Do any of you work in the nonprofit space and have contact with the Microsoft sales team? I am looking to get hired by Microsoft on the nonprofit sales team but I’m having a heck of a time making contacts and finding folks on that team to network with. So if you know someone who works at MS on the NP team, I would be forever grateful for an introduction. Thanks! dexter6 fucked around with this message at 20:00 on Jun 6, 2024 |
|
#
?
Jun 6, 2024 19:25
|
|
|
Have you tried getting your nonprofit licenses through techsoup?
|
|
#
?
Jun 6, 2024 19:52
|
|
|
klosterdev posted:Have you tried getting your nonprofit licenses through techsoup?
|
|
#
?
Jun 6, 2024 20:00
|
|
|
death cob for cutie posted:Pulling this from the Windows 11 thread. (For context, I work at a non-profit org with basically no IT support where I need to set up a bunch of laptops for use by students; right now we just install everything manually, which takes hours. I am absolutely willing to learn some stuff to make this easier, but documentation on some things for Azure/Entra/AD/whatever admin seems kind of thin.). Maybe I'm missing something but is there a reason that you can't use either MDT or Autopilot to accomplish this? If you've already ruled both of those out, what was the reasoning?
|
|
#
?
Jun 8, 2024 04:35
|
|
|
Probably just wasn't encountered yet. MDT is a proven classic and should work well for them if they have the time and expertise to create packages and put it all together. I assume they don't have Intune licenses for Autopilot.
|
|
#
?
Jun 8, 2024 04:56
|
|
|
If they have entitlements to A3 licensing then they get intune for education. Setting up intune w/ autopilot, apps from the microsoft store & winget is a gamechanger for onboarding. Hope deathcob has it.
|
|
#
?
Jun 9, 2024 00:09
|
|
|
Hate to double post but microsoft finally did a good thing. Microsoft Entra PowerShell:quote:Backward compatibility with AzureAD module: Microsoft Entra PowerShell accelerates migration from the recently announced AzureAD module deprecation. Compatible with both PS 5.1 & 7.
|
|
#
?
Jun 28, 2024 01:04
|
|
|
incoherent posted:Hate to double post but microsoft finally did a good thing. Microsoft Entra PowerShell: it's really nice, jump in (not that anyone has a choice in the matter eventually)
|
|
#
?
Jun 28, 2024 01:18
|
|
|
Thank christ, they were pitching the Graph API as the replacement for a while but it wasn't really. Now they just need to fix the SharePoint module so it works in PowerShell and not only Windows PowerShell, and then make go and punch teams repeatedly in the face that create M365 PowerShell modules that can't be used with delegated permissions.
|
|
#
?
Jun 28, 2024 01:39
|
|
|
frankly would have been fine with the graph API itself at my org, we already have to use it for so many goshdarned edge cases that never should have been edge cases ms listened to feedback on this one
|
|
#
?
Jun 28, 2024 01:42
|
|
|
Ever since I learned the existence of Microsoft365DSC I started not caring about PowerShell but finally.
|
|
#
?
Jun 28, 2024 02:25
|
|
|
Potato Salad posted:frankly would have been fine with the graph API itself at my org, we already have to use it for so many goshdarned edge cases that never should have been edge cases What kind of gaps have you ran into?
|
|
#
?
Jun 28, 2024 02:25
|
|
|
I dig Graph API to manage SharePoint but there are some frustrating limitations for things like the term store (not seeing what is a child of another term, needing the id to find the term you need the… id for). It’s so close to great if they could just iron out that kind of crap.
|
|
#
?
Jun 29, 2024 19:10
|
|
|
Has anyone done a cross-tenant 365 mail migration? We've got a divestment coming up. I've used Migrationwiz before but as both sides will be on 365 I'm having a look at this method. Two questions for anyone who's done it Is it a huge ballache compared with third party solutions? How does licencing work? It's about £150/year and the user licences are "per migration". What does that mean, that each user in the tenant can be migrated once, not necessarily on the same migration job? That any migration costs the same fixed fee regardless of user quantity?
|
|
#
?
Jul 18, 2024 17:04
|
|
|
First figure out what needs to be migrated out. Email is the easiest part. It's all the other data that becomes the new hell for you to figure out. You're going to have to figure out the cases where both companies need access to the same data/files. Who owns it and where should it be stored (which company). Good luck - this kind of thing is really shows how good the company is in its internal processes - and since they will be changing, everyone is going to blame IT because files aren't in the same place any more. Make sure you stay away from being involved in those process changes if you like your sanity.
|
|
#
?
Jul 19, 2024 03:19
|
|
|
unknown posted:First figure out what needs to be migrated out. Email is the easiest part. It's all the other data that becomes the new hell for you to figure out. This is the drat truth right here. Email migrations were easy, Active day 1 and full migration done no later than day 14. 2 years later we would still be migrating servers, data, sharepoint sites, etc.
|
|
#
?
Jul 19, 2024 22:51
|
|
|
So who else had fun with Bitlocker keys and LAPS today?
|
|
#
?
Jul 20, 2024 01:11
|
|
|
So glad I dialed in my LAPS almost one month to the day. I was easy telling people where the bitlocker key was in their MS portal, but the LAPS is more of a pita to Enter.
|
|
#
?
Jul 20, 2024 01:55
|
|
|
guppy posted:I checked this, because I did have some required fields, but only in the first section before any branching. I took it out as a test and I get the same result. Is there an option to have the form just dump responses into an O365 spreadsheet? I use Google Forms that way a lot and it's quite nice.
|
|
#
?
Jul 20, 2024 02:53
|
|
|
mllaneza posted:Is there an option to have the form just dump responses into an O365 spreadsheet? I use Google Forms that way a lot and it's quite nice. Yeah, but you have to use Power Automate and Microsoft Forms or whatever that poo poo is called now. You can set a trigger in PA to populate a SharePoint list or Excel sheet. There’s a little manual work in matching poo poo up but it’s pretty straightforward. There’s probably a prebuilt template for it in Power Automate.
|
|
#
?
Jul 20, 2024 15:12
|
|
|
I thought the default data storage for form results was a spreadsheet
|
|
#
?
Jul 20, 2024 20:56
|
|
|
Is anyone knee deep in Microsoft Sentinel and/or Microsoft Defender XDR? If so, how do you like the work and what are your thoughts on future career prospects in that stack? There have been whispers of my work steering towards Defender in the future. I'd like to tackle some homelab projects to practice on but not quite sure where to start. 
|
|
#
?
Jul 28, 2024 19:55
|
|
|
Is there really no way to  easily dump out all of the Entra ID PIM Roles that are active and eligible? All I want to know is what are these users roles, pim roles, active or eligible and if it's a group assignment the name of the group. It looks like the earlier ADMS cmdlets worked but there's no 1:1 Powershell Graph SDK replacement.I suppose I'll eventually figure it out if I keep hacking away at the MS Graph API but goddamn stuff like this should not be this hard.
|
|
#
?
Jul 30, 2024 07:39
|
|
|
Hughmoris posted:Is anyone knee deep in Microsoft Sentinel and/or Microsoft Defender XDR? If so, how do you like the work and what are your thoughts on future career prospects in that stack? I have been absolutely loving it in my my GCC High subscription. It's a perfectly competent EDR product. it's a bit cumbersome to get events out of it for the purpose of analysis elsewhere, but honestly, if you are using the supremo Defender products, you should really just consider adapting your workflow to just sit in the first party tools. Edit: I don't know how affordably you can get the analysis and retention bits in particular On a shoestring homelab budget. It's fairly common for businesses to have a test tenant and a production tenant. It's also fairly common for a business to procure that test tenant as part of the initial assessment process. Any chance you could just ask your organization for a small budget to get a test tenant? Or, if they already have one, to just let you in? Potato Salad fucked around with this message at 19:13 on Jul 30, 2024 |
|
#
?
Jul 30, 2024 19:11
|
|
|
|
| # ? Apr 22, 2025 20:16 |
|
|
Gucci Loafers posted:Is there really no way to I tried for a bit a while back and couldn’t figure it out quickly. If you succeed, I’d love to know how.
|
|
#
?
Aug 4, 2024 19:53
|
|