Sysadmin

This is an automated archive.

The original was posted on /r/sysadmin by /u/Aryts on 2024-01-23 01:07:10+00:00.

Hello,

Just looking for some insight on how I can best handle the situation I'm in. I work as a HelpDesk/Level2 tech for a healthcare facility. Been here since May, and it’s my first IT job. Title is HelpDesk technician, but I do much more than that. Pretty big campus, 1800+ users and 350+ endpoints, complex environment that does not need to be complex, due to 20+ years of negligence by leadership. We have an MSP, and the probably do a lot that I don't see, but mostly are hands off unless we request help.

I have a decent amount of exp, 21rys old, got my A+ at 16, worked at a phone repair store for 2 years, got my AAS degree in IT and diploma in systems administration. Close to my CCNA, should be able to get it by late March/early April, once I get the motivation to finish it.

My manager thinks I can take on most of his duties, but I tend to think otherwise. Not because I think I lack the skill, but because I think it will be way too stressful. This company needs us, but has pushed him over the edge and burned him too many times to stay here. We have 1 other employee in the IT department, but he does more support for the retail/accounting side, not your classic IT stuff. If they lost all 3 of us they would for sure fall under within a couple of weeks

I do enjoy the job, has decent benefits, and I love my coworkers, but I'm not sure that it's worth to stay, but I also can not find a job in my area. Applied to everything near me, get interviews, interview well, but still havent heard anything back recently.

Should I stay and tough it out, or find some retail job just to pay the bills in the meantime and get my certifications under wrap? I'm not on a big time crunch, but want to have something by June/July, for personal reasons.

TLDR; Manager quitting, manager thinks I can do it but I'm not confident in my skills but not stress management, can't find a different job in IT.

Thanks for any input, and feel free to ask any questions I'll try to answer best I can.

Cross posting to a few different subs, sorry if this isn't allowed

This is an automated archive.

The original was posted on /r/sysadmin by /u/jwckauman on 2024-01-23 00:12:47+00:00.

This is a very specific question, but is anyone using Quest Enterprise Reporter (formerly Dell Enterprise Reporter)? I am using it to discover computers and have noticed the computer discoveries are taking longer and longer, and many computers are timing out during the discovery. The errors I get include:

• Error retrieving computer information
• Task cancelled.
• The handle is invalid.
• The network path was not found.
• The operation has timed out.
• The RPC server is unavailable.
• Thread was being aborted.

These happen mid-stream so not sure what could be causing them. Anyone have any experience with Enterprise Reporter, or a similar product and have some experiences or tips they could share on how to troubleshoot or resolve? I think these are mostly WMI-based queries that run against these machines in parallel and import the results into a local SQL Server Database.

This is an automated archive.

The original was posted on /r/sysadmin by /u/Bowlen000 on 2024-01-23 00:04:31+00:00.

So I've noticed recently that the Exclaimer add-in in Outlook isn't auto-applying the signatures. I have to open Exclaimer add-in, then click on the signature I'm after. Within Exclaimer portal, it's set to auto-apply the sigs locally based on whether the email is new or a reply/forward. Doesn't seem to be working however.

Has anyone noticed this recently. Not sure whether it's the new Outlook, or whether it's the add-in itself that's the issue.

Note: manually applying works fine. Applying in-transit via M365 transport rules works fine too.

This is an automated archive.

The original was posted on /r/sysadmin by /u/us408 on 2024-01-22 23:26:51+00:00.

Hey y'all,

I'm currently in college taking a Server Admin class. We have to make a presentation on small time and big time companies that have made the switch to windows servers.

Long story short, nobody in my class can find SHIT. Does anyone have any links that could help?

Thanks in advance!

This is an automated archive.

The original was posted on /r/sysadmin by /u/bravid98 on 2024-01-22 22:54:28+00:00.

We have shifted our file shares to Azure Files and we're using Entra DS for permissions. We moved files with the Mover and it brought over all our permissions from on prem which have been synced into DS. This work great, no issues.

However, the vast majority of groups are from AD sync and our next step is to shut down our onprem DCs where these are coming from.

I would like to find or write a script that reads all permissions and matches the old group to a new group so we can cleanly cut over. We've got hundreds of groups and inherited and uninherited permissions all over the place, so it's not a simple matter of just changing root folders.

Has anyone tackled this before? Are we going about this the right way?

This is an automated archive.

The original was posted on /r/sysadmin by /u/root_15 on 2024-01-22 22:31:03+00:00.

What are you currently using for Task / Project Management?

This is an automated archive.

The original was posted on /r/sysadmin by /u/thebuff1234 on 2024-01-22 22:30:44+00:00.

After some recommendations for a PXE boot capable deployment tool to use on our clients, we have a large range of clients using multiple different setups (Domain joined AD / Azure / Local workgroups) all using windows 10/11 and just simple software installs. Happy for it to be a paid service or free.

Ideally id like something similar to SCCM where we can build task sequences and individualize steps of the deployment, but open to really any solutions.

I have played with FOG a bit, but im unsure of any other solutions

This is an automated archive.

The original was posted on /r/sysadmin by /u/revoman on 2024-01-22 21:55:48+00:00.

Everything is working correctly except that when I click an app on the webpage, it downloads an RDP shortcut to the app. That shortcut runs the app just fine, but I want to know how to just have the app run when clicked.

This is an automated archive.

The original was posted on /r/sysadmin by /u/210Matt on 2024-01-22 21:52:31+00:00.

We are looking (like everyone) in migrating from VMWare. The 2 top recommendations are Nutanix Azure Stack HCI. They both seam pretty capable, but we are very iSCSI SAN heavy for our data. As management does not want to ditch the new SANs they just bought a year ago, is anyone using their SANs in Nutanix or Azure Stack HCI. I know we could go Proxmox or Hyper-V. MS looks like they are moving away from traditional Hyper-V and Proxmox is lacking a couple features.

This is an automated archive.

The original was posted on /r/sysadmin by /u/cyr0nk0r on 2024-01-22 21:50:18+00:00.

I'm out of the loop on the current best way to handle this. Back in the day, I'd boot from a USB disk, boot into Ghost, select my USB disk as the destination location, and take a whole disk image of the drive.

I'm looking for something similar, but a little easier to use. I don't want to use PXE since we already have PXE being used for imaging. I'm imagining the following process, and tell me what tool or combination of tools I might need to accomplish.

Step 1) Boot from USB stick. (This is the preferred method for various internal reasons)

Step 2) Select drive that contains the operating system for the computer.

Step 3) Point the destination location to a network share, ideally supporting SMB/CIFS.

To restore, I just flip flop Step 3 and Step 2.

Our goal is to have disk images of industrial control machines in the event of drive failure or any other issues. The images would be stored on a network share. These machines are highly specialized with very specific software that we don't always have the installers to. Restoring via reinstall of OS is not an option in most cases.

I'm fine with something open source as long as it's not super complicated to get going. I'm also fine if the process is through CLI since we won't be taking or restoring images but maybe once per year.

This is an automated archive.

The original was posted on /r/sysadmin by /u/JerradH on 2024-01-22 21:44:48+00:00.

Is there a way to have it so specified apps will always appear in the top right of an email in the OWA/365 portal?

Reason being, I'd like to have it so our phishing/spam button app is always there. If it's hidden underneath the "app waffle", users are likely to miss it.

This is an automated archive.

The original was posted on /r/sysadmin by /u/ArtificialDuo on 2024-01-23 00:21:08+00:00.

The environment I started working at has two root CA servers in the domain serving the same purpose from what I can tell. CA server "A" is a very old windows server and CA server "B" is slightly newer.

My theory is that a previous SysAdmin was meant to be moving the CA services to CA "B" but didn't complete the task or left before completion without leaving any notes.

Problem is that the environments servers, workstation, user accounts seem to be authenticating to either CA server randomly. I've exported issued certificate lists from both servers and compared them - it does look like the admin got halfway through swapping CA servers then stopped for whatever reason.

What I want to is just Power off the old CA server "A" and see what breaks overtime and reissue any problems to CA server "B" but my worry is all the servers and workstation that are currently authenticated to CA server "A".

Has anyone dealt with a similar situation?

This is an automated archive.

The original was posted on /r/sysadmin by /u/ringminusthree on 2024-01-23 00:20:14+00:00.

working through my operating system management and deployment over bare metal machines in my datacenter. using iPXE running on the NIC to bootstrap new machines.

(everything deployed inside a unified kernel image).

writing a custom init program i'll package in a primary initramfs that when loaded/executed partitions, creates, mounts, installs (by aid of a package manager) the operating system and its rootfs onto the machine's persistent media.

this primary initramfs carries inside of it a secondary UKI that will be installed into the boot partition.

curious is this is common practice? are other people out there doing this?

This is an automated archive.

The original was posted on /r/sysadmin by /u/Snorlax_420 on 2024-01-23 00:18:11+00:00.

So I have our two vCenters in LANsweeper but they are both showing "RPC Unavailable" errors. I read through the knowledge base and it mentions that a few ports need to be closed on the vCenter in order for LANsweeper to scan it properly. I used the connectivity test and it shows port 135 open.

My question might sound stupid but what's the best way to close this port? From what I know, it can't be done on the vCenter appliance itself. So would I just create an ACL on the switch the esxi hosts are plugged into and block access to that port between the VM running LANsweeper and the VCSA? Or is there a better way?

We are running LANsweeper 10.0.2.0 (I know we need to update it) and vCenter 7.0 update 3o

This is an automated archive.

The original was posted on /r/sysadmin by /u/jwckauman on 2024-01-22 23:49:29+00:00.

For those that use APC Back-UPS and/or Smart-UPS, do those devices power themselves back on after a power outage occurs and the batteries completely drain? we have had mixed results with these devices, with some restoring power immediately and others waiting for us to press the power button on the UPS before power would be restored to a user's dekstop.

This is an automated archive.

The original was posted on /r/sysadmin by /u/HJForsythe on 2024-01-22 23:49:24+00:00.

We recently noticed that server pricing for servers with AMD Epyc 4 CPUs are completely detached from the price of the actual hardware and reality.

For example a server with a pretty basic spec with two 9174F CPUs is about $9600. The server with the exact same specs but two 9124 CPUs is about $8000.

The confusion comes from the fact that the 9174F is a $3850 part and the 9124 is an $1100 part.

We also noticed that Epyc 3 servers with essentially the same specs as the Epyc 4 servers but two 7313 CPUs are about $5200. However the EPYC 4 server with two 9124 is about $8000. That is an unheard of generation over generation increase.

It seems like the large server vendors all got in a room together and decided on a minimum sale price. Single CPU seems to be impossible to buy for less than $3700. Dual CPU seems to be impossible to buy for less than $8000. Even at quantities in the 1000s.

Does anyone know what is going on?

This is an automated archive.

The original was posted on /r/sysadmin by /u/-TheDoctor on 2024-01-22 21:01:59+00:00.

Hey all,

I just installed a TrueNAS X20 in our datacenter. We are setting it up to be iSCSI storage for a new HyperV cluster (two servers running WS2022 Datacenter).

I have created an iSCSI share on the TrueNAS and connected it to both servers through the M$ iSCSI Initiator. While the storage space seems connected, if I look in Event Viewer, under the system logs, I am seeing event ID 20, followed by event ID 34, over and over and over again literally every second and multiple times per second. This is happening on both servers.

I've been researching, and tried all the low hanging fruit fixes I can find on Google (changing the iSCSI timeout, verify the network interfaces configuration, jumbo frames, etc.) but the issue persists.

Here are some screenshots of what I'm seeing.

Have any of you run into this before? Can you guys help me out here?

I should also say I'm really not super familiar with Hyper-V. I'm a VMWare/ESXi guy.

This is an automated archive.

The original was posted on /r/sysadmin by /u/ChickenPicture on 2024-01-22 20:47:49+00:00.

Got a weird problem that I have seen pop up in multiple environments across the years on occasion. The gist is this:

1. User on corp network sends a regular old email.
2. For various reasons, Outlook farts and says "durr I ain't got not connection to da mail server lol" and sticks the message in the outbox.
3. The user says WTF, closes Outlook and/or reboots.
4. User re-opens Outlook, message is gone from outbox and never hit the Exchange server, all attempts to trace end with nothing to show.

This recently happened to someone higher up in my company with their notes for a meeting the next morning, which obviously did not go over super well, and at the very least I need to come up with a procedure for the helpdesk to assist recovering the message when this happens, but I'd really like to know what is going on when this happens.

It can't be as simple as Outlook firing a message off into nothing, can it? Why would it do that?

So far my procedure is, don't close outlook, don't reboot, copy the message out of the outbox, but I need something a bit more robust that ideally could recover these phantom emails after Outlook was restarted.

Any assistance or input is appreciated!

This is an automated archive.

The original was posted on /r/sysadmin by /u/BlackSquirrel05 on 2024-01-22 19:45:43+00:00.

I'm just wondering...

Boss for some reason all of a sudden wants to be ISO 27001 compliant... Thinks a place with no existing compliance dept, and just a handful of admins and engineers (One sec guy. Ahem) Can just be ISO compliant by... August for a medium size business... that's global. (Never mind a few other major projects that take months to work out during this time.)

I don't see the real benefit, and already if I point out how plenty of things are not ISO compliant (Cough Cough now wanting to just spin up some random shit in the cloud because... because... With no planning is for sure no ISO compliant with "just make local admins".)

So who here's business/gov't refuses to also do business with non-ISO compliant places?

Because well seems like a lot of man hours and money for what's looking to be just a dog and pony show... To say were doing it, but in reality just really gonna lie about it once we get into the nitty gritty.

Which then just makes me think... How many places are in fact just lying their asses off on said audits?

/quesrant

This is an automated archive.

The original was posted on /r/sysadmin by /u/TheWolfOfWalmart on 2024-01-22 18:56:46+00:00.

What the actual fuck. This can't be real. I wanted to spin up a VM for this on my home lab. I have an old Dell R610 running ESXi with dual X5670 Xeons and 72 GB of TOTAL memory!

Surely for a single mailbox Exchange install, I don't actually need 128 GB, right? I was planning to set up a Server 2022 VM with maybe 16 GB of RAM and then I saw these requirements.

This is an automated archive.

The original was posted on /r/sysadmin by /u/itryanditryanditry on 2024-01-22 18:18:55+00:00.

I'm a 44 yo sysadmin and have been doing IT for 20+ years but do not have a degree. I have holes in my knowledge I would like to fill and have been thinking about getting a degree in hopes to find better employment opportunities.

Has anyone gone though one of the IT programs at WGU? How was the experience? What is the curriculum like?

This is an automated archive.

The original was posted on /r/sysadmin by /u/SYS-GURU on 2024-01-22 20:30:59+00:00.

We're a Microsoft 365 shop using strict conditional access polices. I have a client has several consultants that travel to various countries and need access to 365 apps. We ask them to get a VPN service and connect to our geographical location. In some cases, I create a temporary policy when they depart and return.

I was thinking about creating an on-prem WireGuard or OpenVPN server on our firewall for them to use when they need access to 365 resources. I'm wondering if there are other considerations I should keep in mind and If 365 conditional access uses laptop/phone GPS to determine if the conditions are met or not.

This is an automated archive.

The original was posted on /r/sysadmin by /u/jwckauman on 2024-01-22 20:06:26+00:00.

Access Runtime hangs sometimes and not others (IIS, app pools, ASP.NET, Excel ODBC driver). Anyone have any experience using Access Database Engine in web apps hosted by IIS? My web app worked fine with Access Database Engine 2016 but works inconsistently when I upgrade to Access Runtime 2019 or Aceess Runtime 365. Sometimes the app works fine but other times it hangs without any explanation as to why. When it hangs, I can see the app pool and the w3wp process using a lot of resources. I also see a lot of wait states for that process. All the app does is open an Excel file provided by the user, read the names on the tabs of each sheet, and then displays the sheet names in a drop down list. The user can select a sheet name which the app will then read and display that sheets data on the page. It's just a simple Excel ODBC driver that is used (provided by the Access Runtime). Why would the app hang sometimes and not others? How can I troubleshoot?

This is an automated archive.

The original was posted on /r/sysadmin by /u/GoodPreference5578 on 2024-01-22 20:00:35+00:00.

I'm trying to add a new connection broker to my RDS farm. My nodes has dns round robin configured, static IP, SQL native client installed and windows firewall is off for all three profiles.

Even before entering database connection string, I'm getting warning ensure that policy and firewall settings are properly configured to allow connection from connect broker to SQL server. This may require to enable out and UDP traffic to Port 1434 on the connection broker.

Has anyone experienced similar thing and has solution.

This is an automated archive.

The original was posted on /r/sysadmin by /u/dadnonm-it on 2024-01-22 19:55:55+00:00.

We recently switched out logon methods to having an AD account and an Admin account. With the AD account tied to a majority of our SAML services.

I notice my AD account has been locking every hour, using Lockout Status tool I see where the lockout was coming from. Tried NetLogOn Debugging and couldn't see anything triggering it. There are no scripted jobs using my AD account on the server (before cutting over to only admin accounts having access to domain controllers). My AD account isn't even an active session on the dc. With that being said, I powered down the dc over the weekend and using the Lockout Status tool to monitor the lock out times. It didn't lock out, the moment I powered back on the dc, within the hour the lockouts occurred again.

Kind of puzzled. Restarting the domain controller should have killed any active sessions. There are no scheduled task using my AD creds. Nothing on the Event Log that are tied to lock out events. Curious if others have seen this or any other troubleshooting ideas.