Register a SA Forums Account here!
JOINING THE SA FORUMS WILL REMOVE THIS BIG AD, THE ANNOYING UNDERLINED ADS, AND STUPID INTERSTITIAL ADS!!!

You can: log in, read the tech support FAQ, or request your lost password. This dumb message (and those ads) will appear on every screen until you register! Get rid of this crap by registering your own SA Forums Account and joining roughly 150,000 Goons, for the one-time price of $9.95! We charge money because it costs us $3,400 per month for bandwidth bills alone, and since we don't believe in shoving popup ads to our registered users, we try to make the money back through forum registrations.
«53 »
  • Post
  • Reply
sneakyfrog
Mar 16, 2011




Fan of Britches

have more cals than people

dont virtualize more than license allowance

have backup copies of everything, and receipts help

-guy who gets audited by MS almost like clockwork every two years

Adbot
ADBOT LOVES YOU

Thanatosian
Apr 16, 2013

Angrier, Bitterer Man


Grimey Drawer

Internet Explorer posted:

Network+ is a good start. If you feel you are interested in more after that work on your CCNA.
Echoing this.

The A+/Network+ get poo poo on a lot, but as someone whose educational background is in Political Science, studying for them filled in a lot of holes in my knowledge.

Internet Explorer
Jun 1, 2005



Oven Wrangler

sneakyfrog posted:

have more cals than people

dont virtualize more than license allowance

have backup copies of everything, and receipts help

-guy who gets audited by MS almost like clockwork every two years

Microsoft started a new program a few years ago, specifically targeted at SMBs where they do "soft audits." Some random contractor from Microsoft will reach out every year or so to have you do a self-audit so they can sell you things.

GreenNight
Feb 19, 2006
Turning the light on the darkest places, you and I know we got to face this now. We got to face this now.

We got those people calling for audits and we get all licensing from Softchoice. So we tell the auditors to call them and our sales rep tells em to gently caress off. Works well.

Moey
Oct 22, 2010

I LIKE TO MOVE IT


sneakyfrog posted:

-guy who gets audited by MS almost like clockwork every two years

I don't know how I have never had to deal with an audit.

I'm sure I have one coming now.

Beefstorm
Jul 20, 2010

"It's not the size of the tower. It's the motion of the airwaves."


Lipstick Apathy

Internet Explorer posted:

Microsoft started a new program a few years ago, specifically targeted at SMBs where they do "soft audits." Some random contractor from Microsoft will reach out every year or so to have you do a self-audit so they can sell you things.

That must be the type of audit I have dealt with in the past. It was a third party in Australia, auditing a company on the east coast in the US. What?

pixaal
Jan 8, 2004

All ice cream is now for all beings, no matter how many legs.

I had a phone message where I couldn't understand the person at all for the name code or anything. I called support and they told me to just wait for them to call again, I left a year later and never called back while I was there. Basically they could only verify that someone had the company on an audit list, but they wouldn't give me their contract info without a case number (which was unintelligible).

Not like it would have been a problem, all our licences were in the Microsoft portal and to the correct count. The only thing that fucks most people up is CALs, grab user CALs and have 1 for every user account that isn't a service account. You can setup up checks fairly easily, especially if you have service accounts in their own OU. run a PS command to get all active accounts in your user OU and make sure you have at least that many CALs. Everything else will yell at you and not let you use more than you are licenced for. Bonus points if you keep the script updated with your CAL count so you can set it up to email you if you go over and have it run weekly.

I'd really like a "user" CAL that wouldn't let you make new users in AD without a CAL unless you check "service account" which removes the ability to log into the GUI. It'd make it drat near impossible to gently caress up. Keep the regular CAL stuff in play for people who want to deal with that, but it's 2018 and this should be automated.

Thanks Ants
May 21, 2004

Bless You Ants, Blants



Fun Shoe

There's no justification for CALs when the server license is priced at what it is

pixaal
Jan 8, 2004

All ice cream is now for all beings, no matter how many legs.

Thanks Ants posted:

There's no justification for CALs when the server license is priced at what it is

I assume the original fear behind why CALs exist is if technology keeps progressing people will only need one server for tens of thousands of people. You would need to buy desktop licenses for all of them, but let's step back and say a new rival desktop OS comes out that replaces windows desktop, but doesn't replace windows server.

You now get paid for each of the people using Linux or whatever else too. With per-core licensing this is no longer an issue and I'm not sure I'd opt to run Windows Servers in a shop that used a different Desktop OS. It's still around because of inertia at this point, at least they are cheap. They could also just make it each Windows Client counts as a device CAL, hell that might help push Windows phones into business since you'd need a CAL for an iPhone.

FISHMANPET
Mar 3, 2007

Sweet 'N Sour
Can't
Melt
Steel Beams


Microsoft 365 basically rolls all your CALs into a single subscription, if I recall correctly. So that's the "easy" licensing path forward, just pay X dollars per month per head and be done with it.

CampingCarl
Apr 28, 2008



On this topic I have been asked to P to V some old server 2k3 era stuff and this may make windows prompt for activation again. Is all I need to do is extract the key from the current machine and enter it again or am I going to have to go through a whole bunch of hoops?


I also need to find a tape drive and backup software as we have some VMs that are not allowed to back up to the cloud. Maybe I am missing something but it seems harder than it should be to get quotes on this stuff.

Spring Heeled Jack
Feb 25, 2007


CampingCarl posted:

On this topic I have been asked to P to V some old server 2k3 era stuff and this may make windows prompt for activation again. Is all I need to do is extract the key from the current machine and enter it again or am I going to have to go through a whole bunch of hoops?


I also need to find a tape drive and backup software as we have some VMs that are not allowed to back up to the cloud. Maybe I am missing something but it seems harder than it should be to get quotes on this stuff.

Iíve had to do this exactly one time, but I remember having to run a repair install to get the Windows OS version from OEM to VL or whatever before I could reactivate. It was a pain in the rear end but we have datacenter licensing for all of our hosts so I could give less of a poo poo what key a server has so long as itís activated and functioning.

Happiness Commando
Feb 1, 2002
$$ joy at gunpoint $$



CampingCarl posted:

I also need to find a tape drive and backup software as we have some VMs that are not allowed to back up to the cloud. Maybe I am missing something but it seems harder than it should be to get quotes on this stuff.

I vaguely recall the AWS storage gateway lets you set a local backup target (or maybe it was just giving it a large amount of local cache?) and presents itself to the OS as a virtual iSCSI tape drive that works with Veeam. It's been a while since I played with it, though. Look into it if you haven't.

Edit: actually just get a local storage target and point Veeam at it, no need to use the storage gateway.

Thanks Ants
May 21, 2004

Bless You Ants, Blants



Fun Shoe

Point Veeam at a Synology NAS or similar, have one SMB share for things that can go to the cloud and one share for things that can't.

Digital_Jesus
Feb 10, 2011



Veeam + *insert remote storage option here* is always the answer.

pixaal
Jan 8, 2004

All ice cream is now for all beings, no matter how many legs.

Thanks Ants posted:

Point Veeam at a Synology NAS or similar, have one SMB share for things that can go to the cloud and one share for things that can't.

You can even thin provision with a Synology so you don't have to declare 20% of it is for non cloud and 80% of it is for cloud. Each partition will just keep growing until the entire array is out of space (you still want to keep an eye on it, but both Synology and Veeam should yell at you if you setup email notifications when you start running low).

Potato Salad
Oct 23, 2014




Tortured By Flan

Just check that full recovery of your environment by Veeam Data Mover Agent would run in an acceptable amount of time, as you won't benefit from storage appliance integration features like instant rollback on prod tier snapshots

Agrikk
Oct 17, 2003

Do not ingest.

The Fool posted:

Split tunnel VPN doesn't solve the DNS issue.

One solution is to have a local device do DNS and DHCP.

I like having an AD server at the remote site doing the DNS and DHCP. But for a site that small, the licensing will cost more than the hardware and it may be a hard sell.

e: You could also have your remote site edge device serve DHCP and set the primary DNS to HQ and secondary DNS to your ISP/Google

This is the solution.

Set up split tunnel on your VPN links and set up dhcp to use the following order:

1. home office DNS server
2. Local satellite dns server [if exists]
3. ISP / Google DNS

Youíll have DNS forwarding set up on your dns servers to forward non-local requests out to your isp, and the local DNS is purely in case the link goes down.

And a small Atom-based mini desktop plus a license will run you less than a thousand dollars and might be a good sell, though it does increase management time. YMMV.

Albinator
Mar 31, 2010



Had a nice moment last night as we migrated some machines from an on-premises VMWare setup to Azure. As we completed a file server move (that happened to also be a domain controller, because it was set up by idiots), vcenter suddenly completely poo poo the bed. Sure enough, resolv.conf turned out to have a single line entry for the file server we'd just moved. Proving once again that it's loving morons all the way down.

Adbot
ADBOT LOVES YOU

incoherent
Apr 24, 2004

01010100011010000111001
00110100101101100011011
000110010101110010


Happiness Commando posted:

I vaguely recall the AWS storage gateway lets you set a local backup target (or maybe it was just giving it a large amount of local cache?) and presents itself to the OS as a virtual iSCSI tape drive that works with Veeam. It's been a while since I played with it, though. Look into it if you haven't.

Edit: actually just get a local storage target and point Veeam at it, no need to use the storage gateway.

I opted for copy-jobs of backups to storage gateway iscsi target, and daily snapshotting those. There is nobody here who would get recovering from VTL so its best to present them the easiest methods to restore.

  • 1
  • 2
  • 3
  • 4
  • 5
  • Post
  • Reply
«53 »