This is an automated archive.

The original was posted on /r/sysadmin by /u/flyguybravo on 2024-01-19 13:07:11+00:00.

---

Short and sweet. We have one problem employee that creates 60%+ of the work for our team out of a company of around 150.

Not two months ago, this individual kept calling for "problem" after "problem" with their machine before we finally issued them a brand new one. Last Saturday, we get this email:

Hello Team,

I have been off work a couple of days. Decided to work today but when I closed my laptop shut didn't realize I had left a pen in it. I heard something so opened it. Attempted to turn it back on but the screen isn't working.

I think I broke it :(

Fast forward a couple of days to when their laptop comes in for us to check out, and this is what we receive:

Before I raise yet another issue about this particular employee, I'm trying to take a step back and consider whether this really is just accidental. I have zero idea what they'd be hoping to achieve by intentionally doing this -- but the damage to the machine looks more substantial than a simple, "I left my pen on my laptop when I closed the lid." It looks more like they slammed it closed to me.

Am I wrong?

This is an automated archive.

The original was posted on /r/sysadmin by /u/Disastrous-Title-911 on 2024-01-19 12:53:43+00:00.

---

So im doing some decom at my new workplace snd there is this "avaya server" that is running on w10 with apache, the server should stay in the office as a kiosk of sort unplugged from the network in case we need to retrieve call recordings

Im trying to connect to localhost ( in multiple ways. https://server ip/sysadmin , https://server ip/sysadmin/login , https://server ip/sysadmin/servlet , https://server ip/awfos , the loopback address , among others )but when i put in the ip i get a error message that says "we are sorry. Something went wrong!!!"

• Ive checked that apache is running
• ive checked the httpd-ssl.conf file and it has listen *:443 and virtualhost default:443
• ive checked the httpd-vhosts.conf file and it has listen *:80 and virtualhost default:80
• i tried using the loopback address and it gives the same error
• i installed IIS but i dont think this is required
• at the moment im trying to install the windows process activation service as when i tried to "start" the website in IIS i got a "service WAS was not found on the computer" error
• the /inetpub/wwwroot/ folder is empthy, i believe there should be html files here no?

I have very little documentation and the supplier wont help because my company basicallh burned that bridge with gasoline

Ive never worked with avaya so im pulling my hair atm please help :(

This is an automated archive.

The original was posted on /r/sysadmin by /u/Tom12089886 on 2024-01-19 12:18:38+00:00.

---

Hi,

Wondering if someone can help, we have one phone in our office that allows you to pick up incoming calls by lifting the handset. Whereas the other phones you need to push the line and then pick up the phones.

Does anyone know how to programme the other phones to allow pick up calls on lifting the headset?

Any help is much appreciated

This is an automated archive.

The original was posted on /r/sysadmin by /u/ExecuteArgument on 2024-01-19 12:04:01+00:00.

---

Hi all, would anyone be able to recommend what should be done in this scenario.

We have a hybrid on-prem AD synced to the cloud (Azure/365/whatever) environment, users are created on-prem and then synced to the cloud, their mailboxes are created in Exchange Online. We do a similar thing for Shared Mailboxes and Room Mailboxes/Calendars (create user on-prem, sync it, license it, a mailbox is generated, change the mailbox type to SharedMailbox, then remove the license and keep the on-prem account disabled).

I've noticed that some mailboxes have been created in the cloud first, likely by someone who didn't know what they were doing or wasn't trained properly, and I'd like to try and convert those cloud 'native' objects to on-prem ones, so they then sync back to the cloud. I could simply delete the cloud object, wait a bit, and then re-create it on-prem and wait for it to sync. However my concern is that any emails, calendar appointments, etc in that mailbox could be lost by doing so.

Has anyone else had to do this and how did you rectify it? TIA

This is an automated archive.

The original was posted on /r/sysadmin by /u/Divochironpur on 2024-01-19 11:33:36+00:00.

---

Hey All,

Hope your Friday is going great.

Firstly, I just want to say thanks to all for my last post on this sub. Corp under new management who decided to move to MSP, which actually violated their compliance agreement, so I’m still around.

Funnily enough, they emailed me on my blocked work email to tell me my role is still active. 😵‍💫 The new management also awarded themselves a 7 figure bonus for their efficiency, and are about to be replaced themselves, but I digress.

Anyway, just wanted to post this resource that tracks tech layoffs. I know many are updating their resumes, studying for certs etc so good luck.

Finally, just a reminder that tech is a cycle. Non tech execs make decisions based on a spreadsheet number, get their bonuses and leave, new execs come in and then undo their decisions. We’re in the layoff cycle now so keep your hats on your head. If you’re wary about out sourcing, I suggest moving to defence and govt sectors.

Use your free time to learn but don’t forget all the other things like your health, family and hobbies. I found skiing is a fantastic way to turn my mind off.

Thanks again and have a good year!

This is an automated archive.

The original was posted on /r/sysadmin by /u/Capable_Working_2054 on 2024-01-19 11:24:00+00:00.

---

I have this week started to purchase and deploy Copilot licenses to business premium users.

I have followed everything MS says to the T, all users Office and Windows are bang up to date.

Yet none of the users have managed to get it yet.

Has anyone managed to deploy it yet.

I have noticed on the Reports > Usage > Copilot screen that the last update was 3 days ago and the licensed users do not appear on there yet

This is an automated archive.

The original was posted on /r/sysadmin by /u/AdmiralPain on 2024-01-19 11:20:06+00:00.

---

Hi all, trying to understand the nuances of Task Scheduler conditions - specifically 'Start only if the following network connection is available'

Workflow:

1. Device first connects to SSID (let's call it SSID_Temp) which has no internal network connectivity - just internet connectivity
2. User logs in to device
3. User connects to VPN to connect to internal network
4. GPO kicks in which generates and pulls down a machine cert from internal CA, allowing connectivity to corporate wifi (SSID_Corp) (we use machine cert wifi authentication)
5. Task Scheduler kicks in to delete SSID_Temp wifi profile
6. Device automatically switches over to SSID_Corp as it now has the necessary cert & wifi profile

I'm struggling with step 5 - currently the scheduled task is configured to delete SSID_Temp 1 hour after the user logs in. This, in theory, should buy the machine enough time to grab the cert from the CA however in testing, this is not always the case.

In the Scheduled Task, if I tick 'Start only if the following network connection is available' and select SSID_Corp, does this mean the task will only start if the device CAN connect to SSID_Corp (i.e. if the machine cert is downloaded from the CA) or if SSID_Corp is simply broadcasting and the machine can see it? Is the task clever enough to understand that whilst SSID_Corp is available, it can't actually connect to it until it gets a cert from the CA?

I understand moving machine cert deployment to the cloud would solve all our issues but that's sadly not currently possible. Or if anyone has a smarter way we can approach this then let me know!

TIA

This is an automated archive.

The original was posted on /r/sysadmin by /u/AutoModerator on 2024-01-19 10:00:55+00:00.

---

There is a great deal of user-generated content out there, from scripts and software to tutorials and videos, but we've generally tried to keep that off of the front page due to the volume and as a result of community feedback. There's also a great deal of content out there that violates our advertising/promotion rule, from scripts and software to tutorials and videos.

We have received a number of requests for exemptions to the rule, and rather than allowing the front page to get consumed, we thought we'd try a weekly thread that allows for that kind of content. We don't have a catchy name for it yet, so please let us know if you have any ideas!

In this thread, feel free to show us your pet project, YouTube videos, blog posts, or whatever else you may have and share it with the community. Commercial advertisements, affiliate links, or links that appear to be monetization-grabs will still be removed.

This is an automated archive.

The original was posted on /r/sysadmin by /u/wubarrt on 2024-01-18 22:02:58+00:00.

---

My tenant has a group naming policy which uses an attribute which contains a space in the value. Recently users with the New Teams client became unable to create new Team spaces. They receive a "team prefix or suffix is incorrect..." message. Of course everything works well with the classic Teams client. I reported it as an issue, but it was just dismissed as not being found.

Is anyone else experiencing this issue?

This is an automated archive.

The original was posted on /r/sysadmin by /u/_17chan on 2024-01-18 22:02:35+00:00.

---

So, I've learned the hard way that a free ticketing system is either not *actually* free OR it's unusable for what I'm looking to do, so I'm going to try and simplify this the best way possible:

I just started working for a small business that currently does NOT use a ticketing system. I've mentioned the benefits, but due to cost cutting measures, it's out of the question. I know, I know, but in my current position, I don't have much pull here.

So, what I'm looking for is either: A good recommendation that would work for only 1-2 people to use (we'd be entering the tickets ourselves instead of having the users do it) OR some kind of software that's like a decent ticket / task tracker for one person so at least *I* can keep track of the tasks I'm working on. I've been trying the old school pen and paper route (the way my wife keeps track of everything) but for a number of reasons, going digital is just way easier for me.

So, anything along the lines of what I mentioned above would help. Thanks so much in advance! :)

This is an automated archive.

The original was posted on /r/sysadmin by /u/OtiseMaleModel on 2024-01-18 21:42:41+00:00.

---

Looking for help here.

My first sys admin role and working out what these ad groups do and are used for is an upcoming task and I'd just like to know how a veteran would approach the situation.

K12 environment If that makes a difference

This is an automated archive.

The original was posted on /r/sysadmin by /u/wintory on 2024-01-18 18:06:37+00:00.

---

I'm new so bear with me. I'm considering deploying two windows file servers and using Storage Replica to continuously replicate data from server #1 to server #2. What would happen if server #1 gets attacked by ransomeware? Would the encrypted data replicate and overwrite the healthy data on server #2? If so, can this be prevented?

This is an automated archive.

The original was posted on /r/sysadmin by /u/sowen911 on 2024-01-19 09:16:09+00:00.

---

Good morning everyone,

TGIF

I am reviewing a backup solution for Dropbox in the interim while we work on migrating the data over to O365.

I was curious if anyone has any first hand experience with CloudAlly backup solutions for work environments at a scale of small to medium businesses.

Primarily we are using Dropbox at the moment but will be working on moving to an integrated MS product

This is an automated archive.

The original was posted on /r/sysadmin by /u/yejisooyah on 2024-01-19 09:06:57+00:00.

---

It’s able to send to everything but hotmail.

Device: Canon image runner advance

Things I’ve checked:

1. Setup gmail as smtp by enabling 2FA and using app password.
2. Job log says it sent but hotmail acc not receiving it.
3. Used ISP smtp and domain email & password(still not working)
4. Made sure network settings on mfp are correct (ip, subnet, gateway, and dns)
5. Tried different ports: 25, 587, 465

This customer refuses to use gmail or any other email as an alternative. Refuses to use scan to folder.

This asshole told me if i can’t get hotmail to work he’ll change to a different company to scare me. I’m at a lost here. I could use some help if any. Thanks in advance.

This is an automated archive.

The original was posted on /r/sysadmin by /u/vishnu_47 on 2024-01-19 06:52:47+00:00.

---

Is there a powershell script to get details of a linux server like os details from a windows server. (Both servers are in different subnet)

This is an automated archive.

The original was posted on /r/sysadmin by /u/andrewchan0130 on 2024-01-19 06:36:23+00:00.

---

I have a PowerShell script that compare the folders/files between a DFS folders and a local folder and do robocopy mirror when there are discrepancies.

The dfs path is \domain\global\foldername

However, when I test run the powershell script. It gives error at the step get-childitem with an error "cannot find path "dfspath" because it does not exist"

I then copy the path and paste in the file explorer in the same computer, although took a few seconds, the folder can be accessed displaying all contents.

What weird is, after I manually access the DFS folder, I immediately go back and execute the script, now it runs without any problems.

After a while, the error appens again, and I can use the same manually step to work around that.

Any idea?

This is an automated archive.

The original was posted on /r/sysadmin by /u/Available_Pressure_9 on 2024-01-19 05:34:56+00:00.

---

I just bought a used Intel server from an e-recycle shop. I brought it home, loaded W10 on it to test it and to update it. Found out with the intel servers, you boot in efi off a usb stick with the firmware/efi files to update the system.

From that point, it will randomly restart, even during POST. 90% of the time, both power supplies will stay in Cold Redundancy mode. (Slow flashing green light on PS)

They will power up, spin their fans to 1%, then back off. The odd time, it will get to 75% fan speed, want to boot the system, then off again…

When it wants to play nice, It will boot and sometimes I can get into the system setup. It might stay running, reboot, or start its not wanting to run stuff…

Sometimes, putting it in a time out can get it to start… other times not.

I pulled out an SSD from the back drives bays and it booted. It booted up a Debian Live image. I rebooted and it worked… I went into the system setup to change a setting, then I went to save and exit, it restarted… then nothing.

I have replaced the CMOS battery with a better one… nothing

I have logged into the ipmi/BMC from the lan and set the cold redundancy to 0/disabled (from the intel support site’s instructions) This did not change anything.

Running on only 1 PS, slot 1 or slot 2, or both slots. No difference.

Both PS, no difference.

Unplugged the power cables from the front and back plane, removed the riser cards… no difference

Any ideas? Should I be looking at getting another power supply? Is there a way to update the PS firmware again from the BMC?

System Specs

Intel R2224WTTYSR

Intel® Server Board S2600WTTR

2x Intel G84027-007 1100w Power Supply

2x Intel Xeon E5-2640 V3

This is an automated archive.

The original was posted on /r/sysadmin by /u/Housing-Disastrous on 2024-01-19 04:38:31+00:00.

---

So I am a network technician that is borderline Systems admin as I work with everything IT touches and have keys to the castle. Now I’m now tasked with creating policies such as password policies and security policies the department and staff must adhere to in the case of. The two policies I need to create are for a security breach of our systems and the protocols we must follow in the case of and malware detection/infection of our systems. I Can create a password policy as that’s pretty cut and dry but security portion I’m kind of at a loss. What policies or protocols would be ideal to implement for a security breach and malware infection? I know the obvious steps such and cutting off the infected site systems and place them in quarantine, but that’s about it. Any ideas or general information is appreciated.

This is an automated archive.

The original was posted on /r/sysadmin by /u/Brief-Nectarine-2271 on 2024-01-19 04:27:41+00:00.

---

Hello, Guys

I am trying to install a new sonic wall firewall at my house. I configured my arris modem through bridge mode . I started to configure my firewall but I am not what's the best way to configure the unifi aps. I have a few questions in regards to the configuration.

Since I configured my modem through bridge mode. I connected X1 WAN port firewall to the modem.

I also connected the 3 unifi APs to individual interfaces on the firewall X2 to X4. But I am not sure how to configure the interfaces . I want the firewall to act as DHCP server for the Unifi APs.

What's the best to accomplish this? I have a lil of experience on sonicwall firewall nsa s. Thank you so much for the help.

This is an automated archive.

The original was posted on /r/sysadmin by /u/TrippleTiii on 2024-01-19 03:28:17+00:00.

---

I had a drive lost communication, lucky it is hardware glitch which after reseating the drive it OK and the storage repaired, rebalanced.

Now when run command "Get-PhysicalDisk" the status of that drive is "Removing From Pool, OK", CanPool status is False. It is not "Retire". I tried to Add-PhysicalDisk to add it back to the pool but fail "One or more physical disks are not supported by this operation", maybe because it is still part of the pool.

How to un-remove it, tried to Remove-PhysicalDisk but it say "Not enough available capacity".

This is an automated archive.

The original was posted on /r/sysadmin by /u/EyeCodeAtNight on 2024-01-19 02:46:41+00:00.

---

Hi Everyone,

I have been working on a personal project to manage EDLs. I would appreciate any feedback of issue and features you would like to see. Demo info is in Readme.

The application is built with API first using Django Rest Framework.

If you encounter any bugs or would like to see any feature implemented. Please create an issue or send me a message

This is an automated archive.

The original was posted on /r/sysadmin by /u/Sufficient-West-5456 on 2024-01-19 02:43:29+00:00.

---

ERROR:

PS C:\Users\*user**\Projects and Scripts\PowerShellTest\Scripts\AZbkupScripts> . 'C:\Users\*user**Projects and Scripts\PowerShellTest\Scripts\AZbkupScripts\bkupsqltoaz_local2.ps1'

Invoke-Sqlcmd : A network-related or instance-specific error occurred while establishing a connection to SQL Server. The server was not found or was not accessible. Verify that the instance name is

correct and that SQL Server is configured to allow remote connections. (provider: Named Pipes Provider, error: 40 - Could not open a connection to SQL Server)

At C:\Users\**user**\Projects and Scripts\PowerShellTest\Scripts\AZbkupScripts\bkupsqltoaz_local2.ps1:21 char:1

• Invoke-Sqlcmd -ServerInstance $sqlServer -Database "master" -Query $b ...

• CategoryInfo : InvalidOperation: (:) [Invoke-Sqlcmd], SqlException

• FullyQualifiedErrorId : SqlExectionError,Microsoft.SqlServer.Management.PowerShell.GetScriptCommand

Invoke-Sqlcmd :

At C:\Users\***hidiingit**\Projects and Scripts\PowerShellTest\Scripts\AZbkupScripts\bkupsqltoaz_local2.ps1:21 char:1

• Invoke-Sqlcmd -ServerInstance $sqlServer -Database "master" -Query $b ...

• CategoryInfo : ParserError: (:) [Invoke-Sqlcmd], ParserException

• FullyQualifiedErrorId : ExecutionFailureException,Microsoft.SqlServer.Management.PowerShell.GetScriptCommand

Error: unknown command "/Source:C:\Backup" for "azcopy"

Run 'azcopy --help' for usage.

unknown command "/Source:C:\Backup" for "azcopy"

i ENSURED instance name iisue was corected.

i ensured sas token and azure url is correct because when i run from ssms as a task- tsql, backup is copied correctly to blob.

i ensured to install azcopy 64 and 32 (we are x64 so i downloded az64 first but did nothing to solve error). i ensure to set environment path for az-copy seperately as well via single ps1 command.

main script which generated above error is here:

param (

[string]$sqlServer = "YourSqlServerInstance",

[string]$sqlDatabase = "master",

[string]$sqlUsername = "Backupadmin",

[string]$sqlPassword = "test123",

[string]$azCopyPath = "C:\Program Files (x86)\Microsoft SDKs\Azure\AzCopy\azcopy_windows_386_10.22.2",

[string]$backupPath = "C:\Backup",

[string]$containerName = "YourStorageContainerName",

[string]$destStorageAccountName = "YourDestinationStorageAccountName",

[string]$destContainerName = "YourDestinationContainerName",

[string]$sasToken = "YourSasToken" # Add this parameter for SAS token

)

SQL Server connection string

$connectionString = "Server=$sqlServer;Database=$sqlDatabase;User Id=$sqlUsername;Password=$sqlPassword;"

SQL query to execute

$backupQuery = "BACKUP DATABASE $sqlDatabase TO DISK='$backupPath\TutorialDB-$(Get-Date -Format 'yyyyMMddHHmmss').bak'"

Invoke SQL command with username and password

Invoke-Sqlcmd -ServerInstance $sqlServer -Database "master" -Query $backupQuery -Username $sqlUsername -Password $sqlPassword

AzCopy command to copy the backup to Azure Storage

$backupFileName = Get-ChildItem -Path $backupPath | Where-Object { $_.Extension -eq ".bak" } | Select-Object -ExpandProperty Name

$destinationBlobUrl = "https://$destStorageAccountName.blob.core.windows.net/$destContainerName/$backupFileName?$sasToken"

& "$azCopyPath\azcopy" /Source:$backupPath /Dest:$destinationBlobUrl /Y

Verify that the backup file exists before attempting to remove it

$backupFilePath = Join-Path -Path $backupPath -ChildPath $backupFileName

if (Test-Path -Path $backupFilePath) {

Remove-Item -Path $backupFilePath

}

tldr: anyhelp is appriciated. still new

This is an automated archive.

The original was posted on /r/sysadmin by /u/DifferenceJolly5911 on 2024-01-19 02:37:09+00:00.

---

So I have a dc2 and at a dcdiag command i noticed that the last replication from dc1 is from a month ago. So I checked the ports and noticed that some ports are closed from server dc2 to dc1I opened, thinking would solve the issue. It did not. There are objects on dc1 which do not replicates on dc2. If I sync the replication being logged on dc2 to dc1 , i get no errors. What should I do?

This is an automated archive.

The original was posted on /r/sysadmin by /u/JiggityJoe1 on 2024-01-19 02:18:29+00:00.

---

We have had a rough day in Azure today..... this morning had server with connection issues opened ticket with Microsoft and redeployed VM as they had a host failure. Day goes on and we had a SQL server randomly reboot and stuck on HyperV screen in boot diags. Redeployed it and everything seemed OK. Over the course of 4 hours we have had 8 servers just randomly reboot. Hopefully they get it figured out soon.

This is an automated archive.

The original was posted on /r/sysadmin by /u/InstructionBorn6605 on 2024-01-19 03:00:36+00:00.

---

We supply staff with corporate owned devices that they use for calling, texting, and emailing. Our records management team (i work in local government) recently has been raising that we are correctly meeting our obligations to keep mobile calls and texts as records. Truth be told i don't really know how we accomplished that. so am curious how other people handle the automatic backup and storage of staffs SMS' and phone calls.

At the moment, we have minimal BYOD, but this may change in the future so if you have recommendation on how to accomplish it in that scenario too it would be appreciated.