|
That's what we do. We got rid of all our 2000 and 2003 servers this week because  AUDIT
|
#
¿
Apr 18, 2014 16:35
|
|
|
|
| # ¿ Apr 28, 2024 08:42 |
|
|
You can put the disk in maintenance mode and run chkdsk.
|
|
#
¿
May 1, 2014 11:11
|
|
|
We just forced a reboot within 1 hour of installation.
|
|
#
¿
May 2, 2014 19:20
|
|
|
We used to have Lenovo laptops but didn't like the amount of customization. So we're back to being almost 100% HP (servers, SAN, laptops, desktops) again. We throw lots of money at them and they support us pretty well. And sometimes the engineers bring pastries and cake 
|
|
#
¿
May 22, 2014 12:42
|
|
|
I guess you could do some failover stuff in Orchestrator. But why would you want to do that when Exchange or SCVMM are perfectly capable of handling that?
|
|
#
¿
May 23, 2014 10:31
|
|
|
Most of my runbooks feature a heavy amount of PowerShell anyway.
|
|
#
¿
May 25, 2014 20:29
|
|
|
TWBalls posted:Ok, so while the forums were down I had asked this on the goon Linked-in group page. I figured I'd ask here now that the forums are back up as I'm hoping to get more suggestions. We used PsPassword when it turned out someone had all the local admin passwords in a .txt file on our management server. It worked pretty well. And now you have a good excuse to sort out your OUs
|
|
#
¿
Jun 28, 2014 11:41
|
|
|
Straight outta SAP for us for promotions, office changes, stuff like that. New hires are still just automated e-mails, but that should be hooked into FIM soon enough.
|
|
#
¿
Jul 10, 2014 17:40
|
|
|
Gyshall posted:Can I ask how you guys sync SAP with Active Directory? Arcane loving wizardry, as far as I know. I know we just pull certain data out of SAP into a MSSQL database every night, and we use that as a cache for AD and the other applications. But not sure on the specifics.
|
|
#
¿
Jul 10, 2014 18:42
|
|
|
skipdogg posted:Feeling your pain.. I'm the main AD guy where I work and I get asked once or twice a month to do bulk updates to folks user accounts or group membership.. Ok, here's what you're gonna say next time: "Sure, no problem, send me the data in this format." GreenNight posted:I was asked to add everyones pictures to AD so it gets used in Outlook and Lync. They gave me 400+ pictures and each one a huge fuckoff 40 meg tif on a terabyte drive. IrfanView takes care of this nicely, usually.
|
|
#
¿
Jul 12, 2014 18:10
|
|
|
What kind of authentication are you using? NTLM or Kerberos?
|
|
#
¿
Jul 19, 2014 00:22
|
|
|
hihifellow posted:We have users who "float" between departments or need access to more than one so we share out the root as a DFS share then use ABE and NTFS to control which subfolders the users see and have access to. That's pretty much what we do, too.
|
|
#
¿
Jul 28, 2014 06:27
|
|
|
If you have a GPO that overrides the local users / groups, then you're also going to lose them.
|
|
#
¿
Jul 28, 2014 22:40
|
|
|
Yaos posted:You mean with restricted groups or something else? Yes
|
|
#
¿
Jul 28, 2014 22:58
|
|
|
AlternateAccount posted:Anyone know of a way to trigger a powershell script to run against a user account when they are added to a specific OU? I'd like to streamline our deprovisioning process by running a script that does a few tasks whenever users are moved to a terminated group. You could use a Scheduled Task to run the Powershell script every x minutes, and compare the list of current objects in that OU to the list of objects in the OU in the last run.
|
|
#
¿
Sep 17, 2014 17:09
|
|
|
Uh, just remove 'List folder contents' permission? You can still Read files.
|
|
#
¿
Sep 18, 2014 22:38
|
|
|
You're adding two single points of failure to your network.
|
|
#
¿
Sep 23, 2014 20:09
|
|
|
We're using RemoteDesktopManager, which is pretty decent, and the server edition ties in nicely with AD.
|
|
#
¿
Nov 19, 2014 22:06
|
|
|
orange sky posted:Do not forget to use bdehdcfg.exe to prepare the disk during the deployment process. Did you just smash your fist on the keyboard and add .exe?
|
|
#
¿
Nov 20, 2014 16:57
|
|
|
Swink posted:How can I work ABE into my org when I want to hide folders that are not relevant to the user, but still give them the option to acess them if necessary? If they need access to a folder, you add them to the security group that has access to the folder.
|
|
#
¿
Jan 28, 2015 04:25
|
|
|
http://arstechnica.com/security/2015/02/15-year-old-bug-allows-malicious-code-execution-in-all-versions-of-windows/ Time to patch your poo poo.
|
|
#
¿
Feb 11, 2015 18:33
|
|
|
Zero VGS posted:Is there a way to just dump the employee ID badge photos into Office 365 so they show up in Lync and Outlook? I must be bad at Google today. Yeah, import them into AD. This is what we use: http://www.dovestones.com/active-directory-photo-import/
|
|
#
¿
Feb 18, 2015 20:46
|
|
|
You have a people problem, not a technical problem. I guess you could write a script to create a new computer account and have that check whether the object already exists, and tell people to use that (hell, configure a service account for creating computer accounts then revoke access from others).
|
|
#
¿
Feb 23, 2015 21:31
|
|
|
We're currently running Symantec Endpoint Protection and as this thread knows, Symantec is the great Satan and I'd like to get rid of them by the end of the contract this year. I've had good experiences with Forefront at a previous employer, the problem is that we don't have any System Center licenses at work right now. Can we just get FEP client licenses (saving SCCM client licenses for next year)? Ugh I never had to worry about licensing before 
|
|
#
¿
Apr 14, 2015 21:57
|
|
|
Nebulis01 posted:It's been non-recommended practice since at least 2008. It has a lot to do with publicly available servers and certificate services. As of last year you can't get a certificate with a non publicly reachable FQDN in the CN or SAN Can't wait to register the .local TLD!
|
|
#
¿
Apr 15, 2015 06:40
|
|
|
skipdogg posted:Our users love it, the emojis are animated You can also create a guy fisting a goat now with the emojis. 10/10, at least they don't suck up CPU usage anymore! And yeah, just about halfway through development did they bother actually renaming it to Skype for Business instead of Lync (we beta-tested (TAP) it).
|
|
#
¿
Apr 15, 2015 20:04
|
|
|
Tab8715 posted:It still irks me you can't copy/paste a picture into Lync. Uh, yes you can? Depending on the settings (set centrally) you can just copy-paste a picture or copy-paste it and it'll send it as a file.
|
|
#
¿
Apr 16, 2015 07:07
|
|
|
Tab8715 posted:OneDrive or was it SkyDrive? And MySites are the goddamn dumbest things in the world. No idea, I don't use it anymore (new employer). Maybe they removed the functionality in one of the versions which would suck.
|
|
#
¿
Apr 17, 2015 08:16
|
|
|
What are the requirements? Just Server 2012 + Win 8 Enterprise right?
|
|
#
¿
Apr 30, 2015 18:00
|
|
|
Nano Server is really exciting. About time, too.
|
|
#
¿
May 4, 2015 22:26
|
|
|
ZetsurinPower posted:One of our engineers isn't doing his loving job, so I need to take things into my own hands and get something done but I'm not sure the best way to do it. Create a group for that model and deploy a script with SCCM that does that?
|
|
#
¿
May 15, 2015 15:34
|
|
|
KS posted:We give firstname.lastname@domain as an email address and first initial + last name for an AD username. I think that's silly and leads to user confusion. The only reason I can think of is the sAMAccountName character limit (20 characters).
|
|
#
¿
May 26, 2015 22:16
|
|
|
We just use flastname where f is the first letter in their first name. If someone else already has it, just keep adding letters (and eventually digits at the end)
|
|
#
¿
May 27, 2015 07:13
|
|
|
KennyG posted:Passwords! Passwords loving suck. I know there are products out there that can manage service accounts and password rotation for me but I can't find anything but manage engine and I have never had good luck with their stuff. KeePass? It's alright.
|
|
#
¿
Jul 3, 2015 07:09
|
|
|
Erwin posted:Is he explicitly denied on all those folders, or just doesn't have rights? If the latter, can't you just give him modify on the file itself, and put a shortcut to it on his desktop? If he's explicitly denied, then yeah, you'd have to break inheritance. Explicit Allow overrides inherited Deny, fyi
|
|
#
¿
Jul 8, 2015 15:19
|
|
|
https://www.microsoft.com/en-us/download/details.aspx?id=46899 There's a tool for that.
|
|
#
¿
Jul 10, 2015 15:08
|
|
|
we're upgrading to windows 2003 in a month! i'm so excited.
|
|
#
¿
Jul 15, 2015 14:36
|
|
|
Swink posted:Can anyone run me through baby's first Server documentation and change-request process? I have a small shop but I want to go through the motions so I know how to handle a big shop. Whatever you changed from the default configuration. Whenever you change the configuration.
|
|
#
¿
Dec 15, 2015 10:07
|
|
|
Zero VGS posted:As of today Microsoft finally has a new sync app to replace their broken as gently caress OneDrive for Business client: https://support.office.com/en-us/ar...&rs=en-US&ad=US Not for 8.1 but available for 8? That's loving bullshit. But definitely gonna test this for 10.
|
|
#
¿
Dec 16, 2015 23:20
|
|
|
|
| # ¿ Apr 28, 2024 08:42 |
|
|
Zero VGS posted:I guess my mistake was probably not removing the key before making the image so it wouldn't show up on the new PCs before I put in their BIOS keys. Yep. So create a proper image and go at it again. Ideally you'd re-image the laptops with the bad image as well at some point. Or just stick all your keys in KMS, which'll save you more headaches in the future. And yeah the 840 is a really solid device. We had some issues with the 4G modules not performing well (cause the fuckers didn't actually put them in properly) but otherwise, really solid.
|
|
#
¿
Jan 14, 2016 18:04
|
|