Sysadmin

This is an automated archive.

The original was posted on /r/sysadmin by /u/RevolutionaryBad4441 on 2024-01-22 19:52:09+00:00.

I've confirmed the same functionality constraints on a few drives I have laying around as well. We have bitlocker enforced on external drives org-wide. Encrypting a drive and initial write access works until the drive is removed and plugged back in - at that point it generates the error "The disk is write-protected. Remove the write-protection or use another disk".

Checking the usb in DISKPART states that it's not read-only. Modification of the drive in any way is unavailable (write/deletion/etc). Following this: superuser allows modification again, but referencing the documentation on this states that these group policies should only be in effect for drives not under the protection of bitlocker/encryption. Has anyone run into this before? Would greatly appreciate any insights. Cheers.

This is an automated archive.

The original was posted on /r/sysadmin by /u/Due_Scholar_2834 on 2024-01-22 19:08:39+00:00.

So this should get alot of laughs. I have a camera that went offline and it is in the back of the room it is mounted in. You see an employee walk up reach up and it goes dark. He was the only one in the room

He is swearing he didnt do and will not change his story lol

This is an automated archive.

The original was posted on /r/sysadmin by /u/itryanditryanditry on 2024-01-22 18:18:55+00:00.

I'm a 44 yo sysadmin and have been doing IT for 20+ years but do not have a degree. I have holes in my knowledge I would like to fill and have been thinking about getting a degree in hopes to find better employment opportunities.

Has anyone gone though one of the IT programs at WGU? How was the experience? What is the curriculum like?

This is an automated archive.

The original was posted on /r/sysadmin by /u/Desert_Dog_Tech on 2024-01-22 18:18:29+00:00.

Hello All,

I'm trying to convince our director to allow "frequency of password changes" from 3 months to 6 or 6+ months as long as we meet the complexity requirements. We also use DUO. I've read several articles stating that changes once a year are acceptable. I've looked at several docs/pdfs/pages on NIST but I can't seem to find anything that talks about the frequency of changes. Does anyone know where this is posted on the NIST website?

Thanks.

This is an automated archive.

The original was posted on /r/sysadmin by /u/Repulsive-Version588 on 2024-01-22 18:11:34+00:00.

I'm new to APIs but I'm hoping to be able to set up an integration between ADP's API and a third-party software. I contacted ADP about this and they stated that it would be $2/employer/month which is waaaay too rich for my company's blood.

Does anyone know of a (legal) way around this or an alternative?

One of the reasons we'd like to set this up (among others) is to automate pulling employee ID pictures into Azure AD.

Or, alternatively, anyone who has paid the price and is currently using ADP API Central (for WFN), would you say it was worth the cost? I am wondering if this has made your lives easier vs the FTP method.

This is an automated archive.

The original was posted on /r/sysadmin by /u/lighthills on 2024-01-22 17:45:06+00:00.

We can't fully move to the new LAPS since we still have Server 2016 devices as LAPS clients and we don't want to deal with different management methods depending on OS. So, we use legacy LAPS for everything.

When the last of the 2016 devices are gone and we only have Server 2019/2022 and Windows 10/11, we won't have any technical block preventing use of the New LAPS. We plan to migrate to the new LAPS at that time.

Is New LAPS going to have a GUI client? It would be a learning curve to start requiring help desk staff to use PowerShell commands for managing LAPS passwords for end user support instead of the FAT GUI client.

This is an automated archive.

The original was posted on /r/sysadmin by /u/Extreme-Tree3649 on 2024-01-22 17:42:43+00:00.

Hey there!

I just started as an IT-Admin for a company with 300 people working there. Its my first ever Admin job....got 3 years as an IT-Supporter.

Anyway, The company have been useing IBM Notes since the early days and they want to migrate to M365 and be able to use Outlook, soon as possible. A lot of Admin before me have never mananged to do the job...and i wonder why....How hard can it be ?

One thing is the Mail and calender system.....but what is the best way to save/reuse our "backend" database in the "program" procedure thing....Is there some way we can get it all converted to outlook or can we save the databases somehow and open it later.....

Best regards.

This is an automated archive.

The original was posted on /r/sysadmin by /u/NOLAblonde on 2024-01-22 16:59:39+00:00.

I am wanting to setup a desktop specifically for data erasing. Can I use an adapter to plug in a SAS disk into a SATA port and have GParted read it and erase the data?

This is an automated archive.

The original was posted on /r/sysadmin by /u/spermcell on 2024-01-22 16:42:46+00:00.

I’m working in a startup and I’ve noticed a pattern where recently management made a bunch of decisions to stop providing people with personal accounts and start creating shared accounts with SAAS software we use like postman SF and the list goes on..

Obviously as a sysadmin I’m against it but we all know that management don’t always listen to IT people when they can save a few bucks..

I wanted to ask if you have also experienced similar things in your career… also is that a sign that the company is going under or something? Also , do you guys have any advice for how to manage shared accounts used for SAAs ? Looks like we’re currently using Google groups for the emails to create them .. Can the SAAS companies do anything if they find out ?

This is an automated archive.

The original was posted on /r/sysadmin by /u/bigTractor on 2024-01-22 15:59:16+00:00.

I purchased a few Samsung PM983 M.2 NVMe SSDs from Ebay. Once I received them, I ran the Samsung DC Toolkit against them and received the following output.

sudo ./samsung_dc_tool2.1 --disk 2:c -NG --lifetime

================================================================================================

Samsung DC Toolkit Version 2.1.L.Q.0

Copyright (C) 2017 SAMSUNG Electronics Co. Ltd. All rights reserved.

================================================================================================

Estimated Life Time: 1 %

------------------------------------------------------------------------------------------------

[Success] Get Log Page Feature completed successfully

sudo ./samsung_dc_tool2.1 --disk 3:c -NG --lifetime

================================================================================================

Samsung DC Toolkit Version 2.1.L.Q.0

Copyright (C) 2017 SAMSUNG Electronics Co. Ltd. All rights reserved.

================================================================================================

Estimated Life Time: 1 %

------------------------------------------------------------------------------------------------

[Success] Get Log Page Feature completed successfully

sudo ./samsung_dc_tool2.1 --disk 4:c -NG --lifetime

================================================================================================

Samsung DC Toolkit Version 2.1.L.Q.0

Copyright (C) 2017 SAMSUNG Electronics Co. Ltd. All rights reserved.

================================================================================================

Estimated Life Time: 1 %

------------------------------------------------------------------------------------------------

[Success] Get Log Page Feature completed successfully

udo ./samsung_dc_tool2.1 --disk 5:c -NG --lifetime

================================================================================================

Samsung DC Toolkit Version 2.1.L.Q.0

Copyright (C) 2017 SAMSUNG Electronics Co. Ltd. All rights reserved.

================================================================================================

Estimated Life Time: 1 %

------------------------------------------------------------------------------------------------

[Success] Get Log Page Feature completed successfully

Are these drives 1% used? Or have 1% remaining?

I am leaning towards 1% remaining based the word usage of "Estimated Life Time:" and the example picture from the DCToolkit manual (page 45, Manual Link) show a screenshot that says 99%... Which I am not sure how to interpret, but I would assume that they would show the output from a nearly new SSD and not a nearly dead SSD...

Any reason to keep these and use them vs contacting the seller and attempting to get my money back?

-BT

This is an automated archive.

The original was posted on /r/sysadmin by /u/lighthills on 2024-01-22 15:36:18+00:00.

For years, NIST has recommended against requiring password changes on an arbitrary schedule. However, there are caveats requiring controls on the quality of the passwords (beyond just upper/lower/special character etc.) and you are required to have methods in places to detect compromised passwords so you will immediately know when the password needs to be changed due to a breach. If you don't have that in place, you still need to rotate the passwords regularly when following NIST.

I heard that PCI no longer requires maximum password age limits. What's still left?

This is an automated archive.

The original was posted on /r/sysadmin by /u/shtbrcks on 2024-01-22 15:30:36+00:00.

[End user support question + rant ahead]

So we are using a certain web-based tool/service and this tool unfortunately has wild issues. So of course my users complain, call and submit tickets that [tool] doesn't work, and rightfully so.

The problem is that this is just a website and an app that we access. I as admin have the exact same sync issues, things not saving, sporadically no notifications etc. I am literally in the same boat as my users.

On top of that, the web UI is utter trash; there are like three buttons in the admin dashboard, I can invite new users, I can check our subscription and bills, I can see stats. That's it. There is no actual backend and I have zero control over all the countless features that don't work, there simply are no settings panels to influence these things.

Now obviously I reached out to the business customer support of this tool, I have opened several requests and it takes them 4-10 business days (!) to reply, with generic questions back like "have you tried logging out and back in again" which is of course silly in the grand scheme of the entire application not working right. Using different browsers and deleting chache/cookies is among the first things I do, long before even arriving at the conclusion that it really is their web service not working as it should and that I need to contact them. I even sent them a 3 minute screen recording of these problems, including what we already tried, and I'm sure nobody in their customer support watched it.

This tool has many reviews in the respective app stores, with people from all over the world experiencing the same issues. It is very discouraging to read that someone in India has the exact same problem since last August. To me, this pretty much means that that's just how it is.

Wtf do I do in such a situation? I keep getting tickets and calls about [tool], 50 something year old users chewing my ear off about how x and y doesn't work. They aren't wrong, but I can't do anything with this. Not even the actual vendor of [tool] offers phone support for it and even they don't seem to solve tickets about it in any realistic time.

How do you explain these things to people? I can't just say stuff like "I'm sorry, we just chose a bad product"???

EDIT: spelling

This is an automated archive.

The original was posted on /r/sysadmin by /u/dieselfluxcapacitor on 2024-01-22 14:55:54+00:00.

How are others creating/updating disaster recovery/business continuity plans? What are things that are included in your plans (other than just server configurations)?

Looking to learn how others in the industry are creating their DR runbooks and what I can take away as wisdom of the crowd.

In addition (bonus points), does anyone know of software (OSS or paid) that can be used to aid in the creation/update of such plans? I'm thinking of something where I can feed it data (manually or, preferably, automated) and it can spit out a PDF report. Thanks!

This is an automated archive.

The original was posted on /r/sysadmin by /u/One_Leadership_3700 on 2024-01-22 14:29:23+00:00.

With the acquisition of Vmware through broadcom and the big impact for not-so large enterprise setups, there will be a need for other Type-1 Hypervisor setups. Most likely Hyper-V, but also Proxmox might geht a lot of boost (I hope for it. I am from austria and rooting for it, since Proxmox is in Vienna (: )

the downside is not just the migration, but also the ecosystem and a very important part will be the backup solution. What vmware is for the virtualization, Veeam tends to be for backup.

The ladder now seems to strive to support Proxmox. Go for it! :)

https://www.theregister.com/2024/01/22/veeam\_proxmox\_oracle\_support/

This is an automated archive.

The original was posted on /r/sysadmin by /u/Haulinbass_2001 on 2024-01-22 15:42:00+00:00.

Corporate reached out about a local user of mine's account locking just about every hour. They are using "pop a lock" script to unlock it automatically. They supposedly did some troubleshooting and passed it to me. I checked her cached creds, etc. I turned off her PC and logged her out of a shared PC, that was all I could find with the tools I have. Still the account locks. I suggested the mobile phone, the guy in Corp. said they don't authenticate against the domain, huh? I know they can lock out accounts. The screen shot they sent has EventSource which is blank, IP and Origin IP are both IPs for the DCs. Any ideas on narrowing this down?

This is an automated archive.

The original was posted on /r/sysadmin by /u/zer0_snot on 2024-01-22 15:37:14+00:00.

If you use windows 10, you might run into lots of printer problems like these:

• why is my printer showing offline even though it's on
• Why did my printing suddenly pause?
• Why didn't my printing start? (Delayed start, like 20 mins)
• Every time I cancel a job I need to do the restart printer, restart windows services $#!T!
• Why did the printer print in the wrong order

After a lot of trial and error I finally figured how to fix Canon printer issues on windows 10! This is what I did:

1. Disable windows spooler

   1. Go to Printers
   2. Click on your printer > Manage
   3. Click Printer properties
   4. The printer preferences dialog will open (general, sharing etc - the place where you choose color / greyscale etc)
   5. Click Ports Tab
   6. At the bottom, uncheck "Enable Printer Spooling"
   7. And make sure "Enable bidirectional support" is turned on
   8. Here's a screenshot:

2. Disable the Firewall:

   1. Ideally, we need to figure out what ports are wrongly getting blocked by the AV (I was using Kaspersky Plus Internet Security) but I've seen problems with other AVs as well.

At this point my printing setup works like a charm.

• Prints instantly
• Cancels instantly
• Printer never incorrectly shows offline
• The page orders don't get messed up

Hope this helps someone out there because I've gone through loads of posts on reddit while looking for a solution for myself.

This is an automated archive.

The original was posted on /r/sysadmin by /u/Comfortable_Store_67 on 2024-01-22 14:55:45+00:00.

Backup software vendor Veeam is doing early research on VMware alternative Proxmox, potentially with a view to creating a product to protect data created using the tool.

"We're researching and doing some prototyping around Proxmox to see what's possible there as far as backup goes," Anton Gostev, Veeam's senior veep for product management posted on January 11.

Another Veeam product manager, Fabian Kessler, last week confirmed that effort, writing "Proxmox is something we are doing some early research on."

www.theregister.com/2024/01/22/veeam_proxmox_oracle_support/

At least they are looking at Proxmox support.

Could be promising... But who knows how long it will be before any progress will be made

This is an automated archive.

The original was posted on /r/sysadmin by /u/B-HDR on 2024-01-22 14:32:35+00:00.

"We're researching and doing some prototyping around Proxmox to see what's possible there as far as backup goes," Anton Gostev, Veeam's senior.

Source: TheRegister.com

This is an automated archive.

The original was posted on /r/sysadmin by /u/Jumpy_Potential1872 on 2024-01-22 13:40:55+00:00.

Outside of items with a known CVE associated with them, do you keep device firmware and drivers up to date across your fleet of installed hardware? Or, do you let it sit with "tried and true" until there is a problem.

I'm running into the issue with some devices showing buggy behavior that is resolved with the latest and greatest driver and or firmware. BUT, in the past we've been bitten by doing a driver upgrade that throws in other previously unseen issues in our environment.

If you do manage all driver revisions, how do you inventory all of that and keep it up to date? We see probably 100 different models of computers, printers, scanners, etc... and each one has multiple subcomponents that might need to be patched.

This is an automated archive.

The original was posted on /r/sysadmin by /u/DryOrganization1301 on 2024-01-22 09:54:38+00:00.

Background: I'm a relatively new jr sysadmin, but was desktop support for 5 years prior. Current org is smallish (<200 users) and local government.

At my current role, there are some IT practices that I can't help but think make our org vulnerable to attack.

This includes:

1. Unencrypted hard drives (we have bitlocker available to us already)
2. Everyone's an admin on their own computers
3. No MDM for our mobile devices

I've brought these up to my IT director (small org, so I report straight to him) and I've pretty much been brushed to the side for all of them.

A lot of his reasoning is along the lines of "we've been fine so far" and that it's more convenient. He seems content on keeping things as they are for the most part. He's the old stubborn sort

In the back of my mind, all of this is a ticking time bomb for a major security incident.

Am I crazy?

Edit 1: advice is also appreciated

This is an automated archive.

The original was posted on /r/sysadmin by /u/sun_nony on 2024-01-22 13:09:31+00:00.

Hey guys!

I need to create access review documentation, a kind of step-by-step guide and considerations that must be taken to release/remove/review user access. However, I can't find an example online to put together and I don't even know where to start. Could anyone provide an example of IT access review documentation? Thanks!

This is an automated archive.

The original was posted on /r/sysadmin by /u/ikrbb on 2024-01-22 13:04:51+00:00.

I have a old server IBM 3690 x5 where I have 2 Raid 1 arrays. Is there option to create a dedicated hotspare for one array only?

This is an automated archive.

The original was posted on /r/sysadmin by /u/DeifniteProfessional on 2024-01-22 13:04:34+00:00.

I've run into this once before, and I've seen a couple of questions with the same issue on MS Forums (naturally with moronic and useless answers).

So basically it boils down to Edge has this, presumably hidden, feature where it automatically signs you in to Office apps. If you sign out of office.com, and then click back on the sign in link, and this auto sign in is enabled, you don't have to type in a password or anything, you're straight in.

Possibly useful for some people, but it's absolutely fucked my user's Edge installation. They have two Work email addresses (as they do work for two sister companies). The second work account, they can't access office or SharePoint because the main profile signs them in automatically to their fist work account

So I think, no problem, will create a second profile. However, despite that second profile being signed in to the second work account, Edge is still signing in to office and SharePoint using the first account automatically

Has anyone run into this, and possibly even has a solution?

This is an automated archive.

The original was posted on /r/sysadmin by /u/FusionX-Steven on 2024-01-22 12:58:37+00:00.

Morning! We have 3 identical hosts in a Server 2019 Cluster. Same hardware, same network configuration. Absolutely losing my mind chasing this for over a week. One of our nodes is reporting "Cluster network name resource 'Cluster Name' failed registration of one or more associated DNS name(s). The error code was '-1'. Ensure that the network adapters associated with dependent IP address resources are configured with access to at least one DNS server." I triple checked everything in regards to DNS and can't shake this error.

Only one node has this error under the Cluster Events. Research suggested deleting / recreating an A record. This hasn't helped. Unfortunately I do not have enough resources to do a full migration out at the moment, evict the node, and try to join it again. Does anyone have any suggestions? All the VMs are running fine, it's just a single host node that is complaining.

When running nslookup DNS commands on the affected node, DNS resolution doesn't seem to be an issue, so I am really stumped. Thank you for your time.

This is an automated archive.

The original was posted on /r/sysadmin by /u/ITStril on 2024-01-22 12:57:03+00:00.

Hi!

I need to install a high performance server for an OLTP-database and need to minimize storage latency.

--> NVMe, EPYC 9174F

Now, the big question: How would you install them redundant, today?

• Hardware-RAID-controller - e.g. Megaraid 9600

--> I did only test the predecessor and it did slow down the NVMs A LOT!

• StorageSpaces (no direct)

• Software-Raid

• GRAID (GPU-card)

A Raid 1 with very fast NVMe should be sufficient.

What would you choose?

Thank you for your thoughts

ITStril