I'm also impressed you were able to convince them to change the account names.
the last 3 places I've worked have all had firstinitial.lastname and no amount of begging could get anyone to change it, including my current employer which is still small enough to do it without so much pain before we get big enough where it does become a pain in the ass.
I'm also impressed you were able to convince them to change the account names.
the last 3 places I've worked have all had firstinitial.lastname and no amount of begging could get anyone to change it, including my current employer which is still small enough to do it without so much pain before we get big enough where it does become a pain in the ass.
I just ran into a user who's been using a local account on their Mac this whole time, so now I get to learn how to convert that into a.... mobile?... account? I believe that is the term? And get them authenticating to AD.
I feel like a broken record asking why everything in Mac world is so hard.
Fun fact: Our fax server is running on CentOS 8, which will no longer be getting updates at the end of the year and when I went to upper management and said hey I gotta replace the OS before the end of the year they were like, "But what if you didn't and we just turned it off at the end of the year instead because fuck faxing?"
Look I don't like to swoon about management very often but they have their moments.
yessssssssssssssssss
Feral on
every person who doesn't like an acquired taste always seems to think everyone who likes it is faking it. it should be an official fallacy.
I fuckin' hate me some faxing, and deal with hospitals, pharmacies and doctors all of whom thing fax is just the most secure thing ever, because like, we put the fax behind a counter!
We posted for some jobs. So far I have applicants from Tehran, Ghana, someplace in S. America, etc. Thaaaaaaanks indeed and linkedin, you pieces of shit.
I fuckin' hate me some faxing, and deal with hospitals, pharmacies and doctors all of whom thing fax is just the most secure thing ever, because like, we put the fax behind a counter!
We posted for some jobs. So far I have applicants from Tehran, Ghana, someplace in S. America, etc. Thaaaaaaanks indeed and linkedin, you pieces of shit.
I've been at this new job for a month now even after shutting off my "looking for a job" options on those sites I'm getting job offers from Tehran, Ghana, and S. America.
I fuckin' hate me some faxing, and deal with hospitals, pharmacies and doctors all of whom thing fax is just the most secure thing ever, because like, we put the fax behind a counter!
We posted for some jobs. So far I have applicants from Tehran, Ghana, someplace in S. America, etc. Thaaaaaaanks indeed and linkedin, you pieces of shit.
Lawyers and Doctors still operate under the assumption they're POTS copper lines that need a warrant to wire tap instead of being fed off a fiber backbone that they have been for the past like decade at this point. I don't think you can get POTS without paying like $200 a month now.
not a doctor, not a lawyer, examples I use may not be fully researched so don't take out of context plz, don't @ me
What have you guys been using for spam filters in tandem with Office 365?
We were using ZeroSpam which worked and was straight forward to set up. Now they have merged with a service called Hornet Security and it is turning out to be a nightmare.
- email accounts have to be listed in the system, otherwise they are rejected by the spam filter (this works the same as Message Labs or whatever it is called now)
- each address requires a licensing fee, just perfect when it comes to shared mailboxes and distribution groups /s
- they don't have a simple way to integrate with O365, their only method is using LDAPS through Azure AD - an extra $8/month per user
- they have an import option using CSV, but of course that is a whole load of manual data entry for the clients on the service
- the new servers are also hosted in Europe instead of Canada which is fantastic for data governance.
Luckily I only have a half dozen clients using the service at this time, unluckily, they combine for almost 250+ addresses that will have to be manually reviewed, added to a CSV, then imported into the system.
Because if you're going to attempt to squeeze that big black monster into your slot you will need to be able to take at least 12 inches or else you're going to have a bad time...
The first of the ~250 Macbook transfers started today and it became abundantly clear that we don't have time to both transfer all their shit and rename their accounts when we're hoping to maintain a pace of ~30 devices per day. Looks like renaming accounts will get put off for winter break.
I've had good luck with Barracuda's cloud spam filter in the past. Their on-prem appliances were on cheap unreliable hardware but the software was A+.
Mimecast is good, too.
We had pretty good luck with the Barracuda on prem hardware but they’re pretty much all virtual now.
With that being said, we got a FireEye EX a couple years ago as a second layer of protection and that thing is basically magic how it does detonation. (It’s quite expensive though!)
I fucking hate fumbling my way through SSL certificate/CA shit. Why does this never make sense to me?
My experience is that you’ll only kinda half understand it after you accidentally set up a CA for your entire domain because you needed a trusted CA for your dumb WiFi, and then five years later you’ll realize that you already have a CA set up for the entire domain, and then get disgusted with yourself and spend a month doing it right, and then another year decommissioning the old one.
And there will be a random service that is mission critical that you didn't know about that used the original CA that breaks horribly when you decom the old one. You spend hours figuring out what the thing that broke actually even is and when you finally update the cert it is using it doesn't work because the original cert is still cached somewhere.
Avoid MessageLabs. The service works great but their human tech support is slow and bad.
MessageLabs was really good way back in the day and then, IIRC, Symantec bought them out, and they became complete shit overnight. (This is from like 10 years ago)
My favourite CA bit is from technet (copied and pasted it back when I replaced the CAs at a customer):
During the migration procedure, you are asked to turn off your existing CA (either the computer or at least the CA service). You are asked to name the destination CA with the same name that you used for the original CA. The computer name, (hostname or NetBIOS name), does not have to match that of the original CA. However, the destination CA name must match that of the source CA. Further, the destination CA name must not be identical to the destination computer name.
This is completely correct. It's also written to be nearly incomprehensible if you don't know what they mean.
My favourite CA bit is from technet (copied and pasted it back when I replaced the CAs at a customer):
During the migration procedure, you are asked to turn off your existing CA (either the computer or at least the CA service). You are asked to name the destination CA with the same name that you used for the original CA. The computer name, (hostname or NetBIOS name), does not have to match that of the original CA. However, the destination CA name must match that of the source CA. Further, the destination CA name must not be identical to the destination computer name.
This is completely correct. It's also written to be nearly incomprehensible if you don't know what they mean.
Avoid MessageLabs. The service works great but their human tech support is slow and bad.
MessageLabs was really good way back in the day and then, IIRC, Symantec bought them out, and they became complete shit overnight. (This is from like 10 years ago)
Broadcom owns them now. They still suck.
every person who doesn't like an acquired taste always seems to think everyone who likes it is faking it. it should be an official fallacy.
My favourite CA bit is from technet (copied and pasted it back when I replaced the CAs at a customer):
During the migration procedure, you are asked to turn off your existing CA (either the computer or at least the CA service). You are asked to name the destination CA with the same name that you used for the original CA. The computer name, (hostname or NetBIOS name), does not have to match that of the original CA. However, the destination CA name must match that of the source CA. Further, the destination CA name must not be identical to the destination computer name.
This is completely correct. It's also written to be nearly incomprehensible if you don't know what they mean.
Certified insane.
Honestly, I'm ok with AD, Exchange and Certificate Authorities. SCCM/MEMCM is the bane of my existence.
I’ve explained certificates quite a few times. PKI doesn’t need to be complicated. It helps if you make the private key exportable so you can migrate off that 32-bit 2008 server.
SCCM needs a lot of attention… We don’t have to time to take care of it as well as it deserves, but it works alright. That said, it did break spectacularly while initially being built and was scrapped and rebuilt. I think it was a certificate problem…
SCCM is a great idea and I don't hate what it does but I hate that Microsoft basically invests the bare minimum in it because you're captive anyway. The market of tools that are like SCCM but better is proof it w should get more love from MS.
SCCM is a great idea and I don't hate what it does but I hate that Microsoft basically invests the bare minimum in it because you're captive anyway. The market of tools that are like SCCM but better is proof it w should get more love from MS.
MS's direction seems to focusing on doing all that stuff via cloud with O365/Azure/Endpoint Manager/Autopilot etc. It wouldn't be the first thing they've let languish without development but refuse to officially kill due to enterprise use inertia.
Just remember that half the people you meet are below average intelligence.
SCCM is a great idea and I don't hate what it does but I hate that Microsoft basically invests the bare minimum in it because you're captive anyway. The market of tools that are like SCCM but better is proof it w should get more love from MS.
MS's direction seems to focusing on doing all that stuff via cloud with O365/Azure/Endpoint Manager/Autopilot etc. It wouldn't be the first thing they've let languish without development but refuse to officially kill due to enterprise use inertia.
They never invested in it though. Like everything, they do the bare minimum if you're stuck in their ecosystem.
Posts
But still, changing a name shouldn't be so god damned hard.
the last 3 places I've worked have all had firstinitial.lastname and no amount of begging could get anyone to change it, including my current employer which is still small enough to do it without so much pain before we get big enough where it does become a pain in the ass.
The secret is to tell and not ask.
I feel like a broken record asking why everything in Mac world is so hard.
I'm game for this plan.
the "no true scotch man" fallacy.
yessssssssssssssssss
the "no true scotch man" fallacy.
We posted for some jobs. So far I have applicants from Tehran, Ghana, someplace in S. America, etc. Thaaaaaaanks indeed and linkedin, you pieces of shit.
I've been at this new job for a month now even after shutting off my "looking for a job" options on those sites I'm getting job offers from Tehran, Ghana, and S. America.
Lawyers and Doctors still operate under the assumption they're POTS copper lines that need a warrant to wire tap instead of being fed off a fiber backbone that they have been for the past like decade at this point. I don't think you can get POTS without paying like $200 a month now.
*cocks handgun*
It always was.
the "no true scotch man" fallacy.
We were using ZeroSpam which worked and was straight forward to set up. Now they have merged with a service called Hornet Security and it is turning out to be a nightmare.
- email accounts have to be listed in the system, otherwise they are rejected by the spam filter (this works the same as Message Labs or whatever it is called now)
- each address requires a licensing fee, just perfect when it comes to shared mailboxes and distribution groups /s
- they don't have a simple way to integrate with O365, their only method is using LDAPS through Azure AD - an extra $8/month per user
- they have an import option using CSV, but of course that is a whole load of manual data entry for the clients on the service
- the new servers are also hosted in Europe instead of Canada which is fantastic for data governance.
Luckily I only have a half dozen clients using the service at this time, unluckily, they combine for almost 250+ addresses that will have to be manually reviewed, added to a CSV, then imported into the system.
It's alright, works pretty well. I think licensing is per mailbox so a group wouldn't count but a Shared mailbox probably does.
Mimecast is good, too.
the "no true scotch man" fallacy.
the "no true scotch man" fallacy.
With that being said, we got a FireEye EX a couple years ago as a second layer of protection and that thing is basically magic how it does detonation. (It’s quite expensive though!)
This is a clickable link to my Steam Profile.
This is a clickable link to my Steam Profile.
MessageLabs was really good way back in the day and then, IIRC, Symantec bought them out, and they became complete shit overnight. (This is from like 10 years ago)
This is completely correct. It's also written to be nearly incomprehensible if you don't know what they mean.
Certified insane.
A reboot, sometimes two, will fix it.
It would be really rad if Microsoft would fix that.
If you never reboot your servers, you'll never encounter that!
Broadcom owns them now. They still suck.
the "no true scotch man" fallacy.
Honestly, I'm ok with AD, Exchange and Certificate Authorities. SCCM/MEMCM is the bane of my existence.
consider yourself fought.
SCCM needs a lot of attention… We don’t have to time to take care of it as well as it deserves, but it works alright. That said, it did break spectacularly while initially being built and was scrapped and rebuilt. I think it was a certificate problem…
MS's direction seems to focusing on doing all that stuff via cloud with O365/Azure/Endpoint Manager/Autopilot etc. It wouldn't be the first thing they've let languish without development but refuse to officially kill due to enterprise use inertia.
They never invested in it though. Like everything, they do the bare minimum if you're stuck in their ecosystem.
I turning this thread around and we are going home right now.
XBL:Phenyhelm - 3DS:Phenyhelm