Re: SIEM solutions

[Andrew S. Baker]

I've played with Nitro a little bit, and I'm familiar with LogRythm,
although I've never deployed it.

Also consider TriGeo, Splunk Enterprise, and
http://alienvault.com/products/unified-siem/siem

This is not a cheap category of product...

* *

*ASB* *http://XeeMe.com/AndrewBaker* *Harnessing the Advantages of
Technology for the SMB market…

*



On Wed, Nov 9, 2011 at 1:34 PM, David Lum  wrote:

> We are looking at some SIEM (Security Information and Event Management)
> solutions and are looking at products from the following vendors – does
> anyone here have a SIEM solution or experience and have anything to say
> about any of these?
>
> ArcSight
> RSA
> LogRhythm
>
> NitroSecurity
>
> netForensics
>
> elQnetworks
>
> Prism Microsystems
>
> Virtela
>
> ** **
>
> *David Lum*
> Systems Engineer // NWEATM
> Office 503.548.5229 //* *Cell (voice/text) 503.267.9764
>
>
> **
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: SIEM solutions

[Ken Schaefer]

How big is the environment? What is the scope of devices?

SEIMs are designed to take logs from multiple sources, do log 
collection/analysis, event correlation/alerting. Something like SCOM isn't 
designed for that, and ACS does Windows only (AFAIK). How about your firewalls, 
AV, HIPS/NIPS, proxies servers etc. Unless they are all Microsoft, I don't see 
how ACS can help OP. I wasn't aware that Quest had a product in this market.

Arcsight (now part of HP) is the #1 vendor that I'm aware of. Symantec also has 
a product (SSIM), but I'm not sure I recommend it due to previous experience

Cheers
Ken

From: James Rankin [mailto:kz2...@googlemail.com]
Sent: Thursday, 10 November 2011 3:07 AM
To: NT System Admin Issues
Subject: Re: SIEM solutions

System Center Operations Manager with Audit Collection Services can do all this 
and more, if I am getting the gist of your requirements correctly
On 9 November 2011 18:54, David Lum 
mailto:david@nwea.org>> wrote:
For me, it's simply log aggregation and alerting. The bigger goal is a stuff 
way out of my scope as it's being driven from our product side (I am 
employee-facing, not product facing). I've been included on this project just 
for my technical input and am much more a passenger than a driver on this 
project.

The vendor list I sent out was narrowed down from a bigger selection. I was 
simply looking for anyone who has deployed or evaluated SIEM products from the 
listed vendors is all.

Dave

From: Michael B. Smith 
[mailto:mich...@smithcons.com]
Sent: Wednesday, November 09, 2011 10:44 AM

To: NT System Admin Issues
Subject: RE: SIEM solutions

What is the goal?

On the low end, you are leaving out NetWrix, in the middle you are leaving out 
ConfigMgr, and on the upper end you are leaving out various Quest solutions.

But it all depends on what you are trying to do.

Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com

From: David Lum [mailto:david@nwea.org]
Sent: Wednesday, November 09, 2011 1:35 PM
To: NT System Admin Issues
Subject: SIEM solutions

We are looking at some SIEM (Security Information and Event Management) 
solutions and are looking at products from the following vendors - does anyone 
here have a SIEM solution or experience and have anything to say about any of 
these?

ArcSight
RSA
LogRhythm
NitroSecurity
netForensics
elQnetworks
Prism Microsystems
Virtela

David Lum
Systems Engineer // NWEATM
Office 503.548.5229 // Cell (voice/text) 
503.267.9764




~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: ShoreTel

[Ben Scott]

On Wed, Nov 9, 2011 at 4:56 PM, James Kerr  wrote:
> ... when I run a new extension I don't have to have someone
> come out and cross connect it, I just punch it to a different
> panel and patch cable it. No more 66 blocks at that facility.

  I have seen that before, but you can get a decent punch down tool
for like $50 these days.  Even hardware stores sell them.  I would
never call our phone or wiring contractors just to do a move/add.  :)

  On one hand, patch panels are easier and quicker than punch-down
blocks.  On the other hand, they cost more and take up more room.  On
the gripping hand, with VoIP replacing traditional phones, the
decision is becoming somewhat historical.  :)

  In our oldest building we do have a bunch of phones in locations not
reached by data wiring, though.  So I'll need my phone tools for a
while longer still.  We Ride Black and Yellow Vans!

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: OT - Phone System In A Virtual Machine

[Bill Humphries]

Yeah, if your existing wiring is in disarray it completely makes sense 
and is probably necessary for any sort of VOIP to work well.  And the 
way you did it sounds right.


I was just pointing out to the OP that they could consider saving money 
and not rewiring with some solutions.


I'm a consultant in the SMB, rather than enterprise arena (which this 
list skews toward).  Sometimes, it is a totally different world view. 

If I can walk into a business with 50 users and tell the owner that I 
can update their ancient phonesystem with a new VOIP based on asterisk 
that will only cost them $6k for the server, $100 bucks a handset, and 
provide them all kinds of bells and whistles like personal conference 
room numbers for every employee, voicemail to email attachments, 
forwarding to cell phones, all kinds of IVR customizations, etc, etc 
with no licensing fees and utilize their existing wiring...then I might 
save that client a ton of money compared to what the telco company guys 
are trying to sell him.  And I'll probably have that client for a long time.


Bill


Jon Harris wrote:
Last $dayjob$ we needed to rebuild the entire infrastructure for 
networking.  At the time we had cat 3, cat4, cat5, and coax (thicknet) 
in the walls.  Some of the cat3 was shorted most of the cat4 was 
causing issues as well but functioned to some degree and the cat5 was 
laid accross lighting so that the best speed was in places 10 half.  
When we did the rebuild we opted to install 3 cat6 runs per drop with 
most offices getting at least 2 different drops and some 3.  A lot of 
wire to be installed but it paid for itself when we replaced the phone 
system about a month later.  Having multiple drops in the office 
allowed staff to reconfigure their office space and I only had to 
change a jumper cable in the rack and everything went live again.  The 
biggest hassle was getting people to give the installers the time to 
tear up the ceiling in their office to get the drops in.  Phones ran 
on dedicated wire but shared switches.  If needed we could plug 
machines into phones to get another staffer temporary access in an 
office.  Since about half the staff were on laptops and about half of 
them sometimes working in 2 or 3 member teams in the same office we 
rarely ran into network issues after the upgrade.  We had more 
problems with staffers insisting on bridging our public and private 
networks.  Public was wireless, private was wired.
 
Jon
 


-Original Message-
From: Bill Humphries [mailto:nt...@hedgedigger.com 
]


Sent: Wednesday, November 09, 2011 10:11 AM
To: NT System Admin Issues
Subject: Re: OT - Phone System In A Virtual Machine

We manage to run switch to phone to desktop without any problems
at all of our clients.  We've never run cable just for phones.
YMMV, but we never have problems.  Of course that assumes you are
using a well optimized codec for voice.

Bill


James Kerr wrote:
> Yeah, if we go VOIP we will be running a new CAT6 infrastructure
just
> for the phones and perform lots of testing before we cut over.
>
> On Tue, Nov 8, 2011 at 6:45 PM, Jonathan Bible
mailto:jtbi...@gmail.com>
> >> wrote:
>
> I am surprised no one has mentioned ShoreTel. It is supported on
> VMware 4.0. Just remember when you add VOIP to your network it
> will expose your latency and misconfigurations because missing 3
> seconds of voice is critical and an email will go unnoticed.
VOIP
> is like the canary in the mine. It dies first and gets all the
> blame.  ShoreTel is designed from the IT prospective and is easy
> to manage.
>
>
> On Tue, Nov 8, 2011 at 4:48 PM, James Kerr
mailto:cluster...@gmail.com>
> >>
wrote:
>
> I've thought about hosted solutions also but we are
currently
> locked into contracts for our PRI's. This will be an
> interesting venture that's for sure.
>
> James
>
>
> On Tue, Nov 8, 2011 at 2:36 PM, Stu Sjouwerman
> mailto:s...@sunbelt-software.com>
>>
> wrote:
>
> James,
>
>
>
> I went through that whole exercise a year ago, and
decided
> for VOIP, but running it
>
> In the Cloud as opposed to in-house.  RingCentral gives
> you an enormous amount of
>
> features for about 20 bucks per person per month,
> unlimited phone minutes.  If you
>
> absolutely want to run it in-house, a dedicated server
> with Asterisk would be a good
>
> idea.  VO

RE: OT - Phone System In A Virtual Machine

[Benjamin Zachary]

My experience is , if possible keep the networks separated to the firewall
at minimum. We did some decent networks (800 users, multi-office with 1gig
wireless connections and fiber uplinks) we did vlans for printers, ip
phones, and management networks. It was great until something went down
somewhere made it take along time to track down .. across 25 HP switches,
even with the Procurve Mgmt server .

 

 

From: James Kerr [mailto:cluster...@gmail.com] 
Sent: Wednesday, November 09, 2011 9:37 AM
To: NT System Admin Issues
Subject: Re: OT - Phone System In A Virtual Machine

 

Yeah, if we go VOIP we will be running a new CAT6 infrastructure just for
the phones and perform lots of testing before we cut over.

On Tue, Nov 8, 2011 at 6:45 PM, Jonathan Bible  wrote:

I am surprised no one has mentioned ShoreTel. It is supported on VMware 4.0.
Just remember when you add VOIP to your network it will expose your latency
and misconfigurations because missing 3 seconds of voice is critical and an
email will go unnoticed. VOIP is like the canary in the mine. It dies first
and gets all the blame.  ShoreTel is designed from the IT prospective and is
easy to manage.

 

On Tue, Nov 8, 2011 at 4:48 PM, James Kerr  wrote:

I've thought about hosted solutions also but we are currently locked into
contracts for our PRI's. This will be an interesting venture that's for
sure.

James 

 

On Tue, Nov 8, 2011 at 2:36 PM, Stu Sjouwerman 
wrote:

James,

 

I went through that whole exercise a year ago, and decided for VOIP, but
running it

In the Cloud as opposed to in-house.  RingCentral gives you an enormous
amount of

features for about 20 bucks per person per month, unlimited phone minutes.
If you

absolutely want to run it in-house, a dedicated server with Asterisk would
be a good

idea.  VOIP is sensitive to a bunch of things, you need to spec out the
hardware

correctly.


Warm regards,

 

Stu 

 

From: James Kerr [mailto:cluster...@gmail.com] 

Sent: Tuesday, November 08, 2011 8:57 AM

To: NT System Admin Issues

Subject: OT - Phone System In A Virtual Machine

 

We are looking at replacing our phone system. This has got me thinking about
VIOP systems and being a sys admin who maintains our current phone system
(for the most part) has got me thinking about phone system redundancy. I
have a desire to run a voice-mail and PBX on virtual machines, if possible.
I just don't know if such things exist and was wondering if any of you guys
had any info about such systems. We have about 150 phones in two locations
two PBXs and one central voice-mail/auto attendant. Venders I've spoke with
so far just want to offer newer versions of what we already have. I want
something more redundant and easier to bring up again in case of disaster.
Thanks for any replies.

James

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin





-- 
Thanks,
Jonathan Bible D.C.C.

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Random logon failures over WAN , due to a net use command, resulting in account lockout

[Dean Cunningham]

Thanks Carl , there is a password in the actual script :)
I am just starting to try an emulate the problem, the remote site is a
clients site so hard to test there

Just though soemoen might say "yep its this!"

It is probably a firewall issue, if not a rule issue , then a RPC inspect
issue on the firewall




On Thu, Nov 10, 2011 at 11:54 AM, Carl Houseman wrote:

>  The net use command you exemplified below has no password on the command
> line – you do have a password included in the actual script, do you not?**
> **
>
> ** **
>
> Do you get the same logon failures if you run the same logon script from a
> non-domain-joined machine on the same LAN as the target server?
>
> ** **
>
> Carl
>
> ** **
>
> *From:* Dean Cunningham [mailto:dean.cunning...@gmail.com]
> *Sent:* Wednesday, November 09, 2011 5:33 PM
> *To:* NT System Admin Issues
> *Subject:* Re: Random logon failures over WAN , due to a net use command,
> resulting in account lockout
>
> ** **
>
> Make that a CISCO firewall
>
> On Thu, Nov 10, 2011 at 10:08 AM, Dean Cunningham <
> dean.cunning...@gmail.com> wrote:
>
> Any straws greatfully accepted 
>
>  
>
>  
>
> Overview
>
> A group of 20 users in a separate domain connect to file resources in
> another domain via a 1MB WAN link. The file server (Wk8) is in its own DMZ,
> with the domain controllers (Wk3) in separate DMZs. The FMSO role is on a
> DC (FMSODC )in one DMZ and there are 2 DCs(DC01,DC02) in another DMZ. The
> remote domain are behind a NAT pool so the usual SMB NAT translation
> problems are eliminated
>
> The file server generally connects to DC02
>
> There is a logon script for the clients that runs a net use* x*:
> \\domain\share / u:\\DOMAIN\Username
>
> ALL users map the drive as that \\DOMAIN\username. The users have a
> combination of XP and Windows 7 clients, joined to their own NT Domain (yes
> NT SP4)
>
> The problem is that the net use command  can create sporadic logon
> failures before finally logging in success fully (over the space of  5 – 15
> sec). If multiple users are running the logon script over the same period
> (5 – 15 sec) then multiple logon failures will occur, resulting in the
> common user account being locked out
>
> The logon failures are shown in the security log on the file server as an
> *Audit Failure Event ID 4625*
>
> The account lockout is shown in the security log of a domain controller as
> a *Success Audit Event ID 644*
>
> The firewall between  the DCs and the file server (CISCO) allows for
> dynamic ports for RPC etc so no static ports setup
>
> Anyone seen this before?
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin<>

Re: ShoreTel

[Harry Singh]

Our IT shop handles (read: manage) ALL telecom from pots lines, cell phones
and all telephony. We're moving towards hosted VoIP with Thinking Phone
Networks for all of our branches.



On Wednesday, November 9, 2011, Kurt Buff  wrote:
> We put in Procurve 2510s. They work, and match the rest of our switches.
>
> Kurt
>
> On Wed, Nov 9, 2011 at 15:24, Jon Harris  wrote:
>> Shortels do work on other switches at least $dayjob$ they are using Cisco
>> exclusively.  Like Matt I am not the phone guy but I sit across from two
of
>> them.  The only complaint I hear them make is during upgrades of older
phone
>> systems.  They have to go out and manually "fix" things in the remote
>> offices.  That said I know they like the ability to put new staff and
>> offices into the central phone server and preprogram the new systems and
>> then go out and drop them in.  I don't know where it went but whey were
>> looking at setting up internal conferencing thru the system for a while.
>>
>> Jon
>>
>> On Wed, Nov 9, 2011 at 1:54 PM, Matthew W. Ross 
>> wrote:
>>>
>>> > I would be interested in hearing of any licensing gotchas or things to
>>> > be
>>> > aware of.
>>>
>>> One license "gotcha" we just recently experienced: We have a user who
uses
>>> their "Personal" license. This gives the users an extension, mailbox,
etc...
>>> But this user wanted a feature which was only available to the
"Workgroup
>>> Agent" license. (What the user wanted to do was to sign in/out of the
>>> workgroup remotely, which apparently a "personal" license can't do.)
What we
>>> found out is that we can't upgrade the license, nor can we get a
refund. If
>>> we choose to do this, we just have to purchase the additional license
(at
>>> over $200).
>>>
>>> > Which vendors switches are you using?
>>>
>>> Shoretel makes you choose and stick to a vendor. I am unable to purchase
>>> additional licenses/phones/switches from a different vendor without
>>> completely transferring my vendor. We are using NCA (
http://www.ncanet.com/)
>>> and we have had "good to excellent" support from them for over 10
years. We
>>> briefly looked into other vendors in our area.
>>>
>>> If your question is more of a "which hardware switches do you use": A
mix
>>> of the Shoretel 120s (IP phone capable or 24 analog lines) and the
Shoretel
>>> 24As (Cheaper, 24 analog extension only switch). Oh, and a Shoretel T1
for
>>> our PRI.
>>>
>>> > I'm not as involved in the financial side of this, I'm coming at this
>>> > more
>>> > from the technical side (I currently have zero knowledge of phone
>>> > systems
>>> > but obvious once you move from a monolithic analogue system to an IP
>>> > system
>>> > it starts to merge with network/server stuff).
>>>
>>> I'm not really a phone guy. My predecessor was a phone guy. He is the
one
>>> who got the school to move to Shoretel, and I thank him for it every
time I
>>> use it. While now there are good, useable alternatives, it's worth
looking
>>> into other solutions. But I have been extremely happy with this product.
>>>
>>>
>>> --Matt Ross
>>> Ephrata School District
>>>
>>>
>>> - Original Message -
>>> From: Paul Hutchings
>>> [mailto:paul.hutchi...@mira.co.uk]
>>> To: NT System Admin Issues
>>> [mailto:ntsysadmin@lyris.sunbelt-software.com]
>>> Sent: Wed, 09 Nov 2011
>>> 09:51:16 -0800
>>> Subject: RE: ShoreTel
>>>
>>>
>>> > Thanks Matt that helps and awful lot as it's the nitty gritty that
tends
>>> > to
>>> > get overlooked.
>>> >
>>> > I would be interested in hearing of any licensing gotchas or things to
>>> > be
>>> > aware of.
>>> >
>>> > Which vendors switches are you using?
>>> >
>>> > I'm not as involved in the financial side of this, I'm coming at this
>>> > more
>>> > from the technical side (I currently have zero knowledge of phone
>>> > systems
>>> > but obvious once you move from a monolithic analogue system to an IP
>>> > system
>>> > it starts to merge with network/server stuff).
>>> >
>>> > Thanks again,
>>> > Paul
>>> > 
>>> > From: Matthew W. Ross [mr...@ephrataschools.org]
>>> > Sent: 09 November 2011 4:48 PM
>>> > To: NT System Admin Issues
>>> > Subject: Re: ShoreTel
>>> >
>>> > Shoretel is the the phone system we're using.
>>> >
>>> > Pros:
>>> >
>>> >  * Very easy to use.
>>> >  * Works great for windows environments.
>>> >  * Has good support for mass deployment of analog phones (which some
do
>>> > not,
>>> > and we use a lot of).
>>> >  * Can be used as your intercom (Using IP phones).
>>> >  * Support has been good for us.
>>> >  * Outlook integration (We don't use this, but it's there.)
>>> >
>>> > Cons:
>>> >
>>> >  * Windows Centric (There is now a web based client which is a big
>>> > improvement in this front).
>>> >  * Serious product lock-in:
>>> >** Their switches will only work with Shoretel.
>>> >** Their IP phones will only work with Shoretel.
>>> >** They license you per extension, and those licenses cannot be
>>> > refunded/transferred.
>>

Re: ShoreTel

[Kurt Buff]

We put in Procurve 2510s. They work, and match the rest of our switches.

Kurt

On Wed, Nov 9, 2011 at 15:24, Jon Harris  wrote:
> Shortels do work on other switches at least $dayjob$ they are using Cisco
> exclusively.  Like Matt I am not the phone guy but I sit across from two of
> them.  The only complaint I hear them make is during upgrades of older phone
> systems.  They have to go out and manually "fix" things in the remote
> offices.  That said I know they like the ability to put new staff and
> offices into the central phone server and preprogram the new systems and
> then go out and drop them in.  I don't know where it went but whey were
> looking at setting up internal conferencing thru the system for a while.
>
> Jon
>
> On Wed, Nov 9, 2011 at 1:54 PM, Matthew W. Ross 
> wrote:
>>
>> > I would be interested in hearing of any licensing gotchas or things to
>> > be
>> > aware of.
>>
>> One license "gotcha" we just recently experienced: We have a user who uses
>> their "Personal" license. This gives the users an extension, mailbox, etc...
>> But this user wanted a feature which was only available to the "Workgroup
>> Agent" license. (What the user wanted to do was to sign in/out of the
>> workgroup remotely, which apparently a "personal" license can't do.) What we
>> found out is that we can't upgrade the license, nor can we get a refund. If
>> we choose to do this, we just have to purchase the additional license (at
>> over $200).
>>
>> > Which vendors switches are you using?
>>
>> Shoretel makes you choose and stick to a vendor. I am unable to purchase
>> additional licenses/phones/switches from a different vendor without
>> completely transferring my vendor. We are using NCA (http://www.ncanet.com/)
>> and we have had "good to excellent" support from them for over 10 years. We
>> briefly looked into other vendors in our area.
>>
>> If your question is more of a "which hardware switches do you use": A mix
>> of the Shoretel 120s (IP phone capable or 24 analog lines) and the Shoretel
>> 24As (Cheaper, 24 analog extension only switch). Oh, and a Shoretel T1 for
>> our PRI.
>>
>> > I'm not as involved in the financial side of this, I'm coming at this
>> > more
>> > from the technical side (I currently have zero knowledge of phone
>> > systems
>> > but obvious once you move from a monolithic analogue system to an IP
>> > system
>> > it starts to merge with network/server stuff).
>>
>> I'm not really a phone guy. My predecessor was a phone guy. He is the one
>> who got the school to move to Shoretel, and I thank him for it every time I
>> use it. While now there are good, useable alternatives, it's worth looking
>> into other solutions. But I have been extremely happy with this product.
>>
>>
>> --Matt Ross
>> Ephrata School District
>>
>>
>> - Original Message -
>> From: Paul Hutchings
>> [mailto:paul.hutchi...@mira.co.uk]
>> To: NT System Admin Issues
>> [mailto:ntsysadmin@lyris.sunbelt-software.com]
>> Sent: Wed, 09 Nov 2011
>> 09:51:16 -0800
>> Subject: RE: ShoreTel
>>
>>
>> > Thanks Matt that helps and awful lot as it's the nitty gritty that tends
>> > to
>> > get overlooked.
>> >
>> > I would be interested in hearing of any licensing gotchas or things to
>> > be
>> > aware of.
>> >
>> > Which vendors switches are you using?
>> >
>> > I'm not as involved in the financial side of this, I'm coming at this
>> > more
>> > from the technical side (I currently have zero knowledge of phone
>> > systems
>> > but obvious once you move from a monolithic analogue system to an IP
>> > system
>> > it starts to merge with network/server stuff).
>> >
>> > Thanks again,
>> > Paul
>> > 
>> > From: Matthew W. Ross [mr...@ephrataschools.org]
>> > Sent: 09 November 2011 4:48 PM
>> > To: NT System Admin Issues
>> > Subject: Re: ShoreTel
>> >
>> > Shoretel is the the phone system we're using.
>> >
>> > Pros:
>> >
>> >  * Very easy to use.
>> >  * Works great for windows environments.
>> >  * Has good support for mass deployment of analog phones (which some do
>> > not,
>> > and we use a lot of).
>> >  * Can be used as your intercom (Using IP phones).
>> >  * Support has been good for us.
>> >  * Outlook integration (We don't use this, but it's there.)
>> >
>> > Cons:
>> >
>> >  * Windows Centric (There is now a web based client which is a big
>> > improvement in this front).
>> >  * Serious product lock-in:
>> >    ** Their switches will only work with Shoretel.
>> >    ** Their IP phones will only work with Shoretel.
>> >    ** They license you per extension, and those licenses cannot be
>> > refunded/transferred.
>> >    ** SIP phones do work, for an additional fee.
>> >  * "Optional" support is not so optional. It is also primarily through
>> > your
>> > vendor, not Shoretel.
>> >  * Not cheap.
>> >
>> > I hope this helps.
>> >
>> >
>> > --Matt Ross
>> > Ephrata School District
>> >
>> >
>> > - Original Message -
>> > From: Paul Hutchings
>> > [mailto:paul.hut

Re: ShoreTel

[Kurt Buff]

Nobody yet...

On Wed, Nov 9, 2011 at 13:28, Richard Stovall  wrote:
> Who died?
>
>
> On Wed, Nov 9, 2011 at 4:14 PM, Kurt Buff  wrote:
>>
>> So it goes...
>>
>> Kurt
>>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: ShoreTel

[Crawford, Scott]

We're in this boat.  Got any links to what a midsize (2000 seat) Lync 
deployment looks like?

From: Brian Desmond [mailto:br...@briandesmond.com]
Sent: Wednesday, November 09, 2011 11:20 AM
To: NT System Admin Issues
Subject: RE: ShoreTel

I've seen them at quite a few customers and ranked well in telephony 
assessments.

If you're replacing your PBX and you're a Windows shop, I'd strongly suggest 
looking at Lync.

Thanks,
Brian Desmond
br...@briandesmond.com

w - 312.625.1438 | c   - 312.731.3132

From: Paul Hutchings 
[mailto:paul.hutchi...@mira.co.uk]
Sent: Wednesday, November 09, 2011 9:14 AM
To: NT System Admin Issues
Subject: ShoreTel

Anyone here using Shoretel for their phone system?

>From what we've seen so far we're confident they're a good fit both in terms 
>of features and architecture, and (most importantly IMO) the client software 
>appears to be pretty good to use.

Any tales (on or off list) of how they have performed would be appreciated.

Thanks,
Paul

MIRA Ltd

Watling Street, Nuneaton, Warwickshire, CV10 0TU, England
Registered in England and Wales No. 402570
VAT Registration  GB 100 1464 84

The contents of this e-mail are confidential and are solely for the use of the 
intended recipient.  If you receive this e-mail in error, please delete it and 
notify us either by e-mail, telephone or fax.  You should not copy, forward or 
otherwise disclose the content of the e-mail as this is prohibited.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: ShoreTel

[Jon Harris]

I did the same thing at my last job.  Had all the POTS lines terminated
into a patch panel and I jumpered them to the switch.  Made it SO much
easier to tell when a line was down.  During power outages we kept a single
line home phone in the room with the demarc just for emergencies.  It did
get used when the hurricanes made a cross over the office and we were down
for 3 days with either no power or a tree across the entry road.  I used it
occasionally post install of the system to make sure we had the phone
numbers correct.  Funny thing was we found out during the cut over that we
had either 17 or 18 lines live but the phone company only knew of 16.  Took
us a year to track down how those other lines got into our block.  They
were put in during construction and forgotten about.

Jon

On Wed, Nov 9, 2011 at 4:56 PM, James Kerr  wrote:

> I envision that IT will be in charge of phones systems in the future. I
> admin our intertel systems for the last 7 years and unless it involves
> trunks or doing cross connects on the 66 blocks I do it all. When we moved
> one of our offices I had the guy punch all the ports in the phone system
> into a patch panel so when I run a new extension I don't have to have
> someone come out and cross connect it, I just punch it to a different panel
> and patch cable it. No more 66 blocks at that facility. I don't know if
> anyone else does it that way but I came up with the idea myself. ;-) I'm
> sure there must be others that do the same thing because it makes sense.
>
> James
>
> On Wed, Nov 9, 2011 at 12:51 PM, Paul Hutchings  > wrote:
>
>> Thanks Matt that helps and awful lot as it's the nitty gritty that tends
>> to get overlooked.
>>
>> I would be interested in hearing of any licensing gotchas or things to be
>> aware of.
>>
>> Which vendors switches are you using?
>>
>> I'm not as involved in the financial side of this, I'm coming at this
>> more from the technical side (I currently have zero knowledge of phone
>> systems but obvious once you move from a monolithic analogue system to an
>> IP system it starts to merge with network/server stuff).
>>
>> Thanks again,
>> Paul
>> 
>> From: Matthew W. Ross [mr...@ephrataschools.org]
>> Sent: 09 November 2011 4:48 PM
>> To: NT System Admin Issues
>> Subject: Re: ShoreTel
>>
>> Shoretel is the the phone system we're using.
>>
>> Pros:
>>
>>  * Very easy to use.
>>  * Works great for windows environments.
>>  * Has good support for mass deployment of analog phones (which some do
>> not, and we use a lot of).
>>  * Can be used as your intercom (Using IP phones).
>>  * Support has been good for us.
>>  * Outlook integration (We don't use this, but it's there.)
>>
>> Cons:
>>
>>  * Windows Centric (There is now a web based client which is a big
>> improvement in this front).
>>  * Serious product lock-in:
>>   ** Their switches will only work with Shoretel.
>>   ** Their IP phones will only work with Shoretel.
>>   ** They license you per extension, and those licenses cannot be
>> refunded/transferred.
>>   ** SIP phones do work, for an additional fee.
>>  * "Optional" support is not so optional. It is also primarily through
>> your vendor, not Shoretel.
>>  * Not cheap.
>>
>> I hope this helps.
>>
>>
>> --Matt Ross
>> Ephrata School District
>>
>>
>> - Original Message -
>> From: Paul Hutchings
>> [mailto:paul.hutchi...@mira.co.uk]
>> To: NT System Admin Issues
>> [mailto:ntsysadmin@lyris.sunbelt-software.com]
>> Sent: Wed, 09 Nov 2011
>> 07:14:01 -0800
>> Subject: ShoreTel
>>
>>
>> > Anyone here using Shoretel for their phone system?
>> >
>> > From what we've seen so far we're confident they're a good fit both in
>> terms
>> > of features and architecture, and (most importantly IMO) the client
>> software
>> > appears to be pretty good to use.
>> >
>> > Any tales (on or off list) of how they have performed would be
>> appreciated.
>> >
>> > Thanks,
>> > Paul
>> >
>> > --
>> > MIRA Ltd
>> >
>> > Watling Street, Nuneaton, Warwickshire, CV10 0TU, England
>> > Registered in England and Wales No. 402570
>> > VAT Registration  GB 100 1464 84
>> >
>> > The contents of this e-mail are confidential and are solely for the use
>> of
>> > the intended recipient.  If you receive this e-mail in error, please
>> delete
>> > it and notify us either by e-mail, telephone or fax.  You should not
>> copy,
>> > forward or otherwise disclose the content of the e-mail as this is
>> > prohibited.
>> >
>> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> > ~   ~
>> >
>> > ---
>> > To manage subscriptions click here:
>> > http://lyris.sunbelt-software.com/read/my_forums/
>> > or send an email to listmana...@lyris.sunbeltsoftware.com
>> > with the body: unsubscribe ntsysadmin
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~   ~
>>
>> ---
>> To 

Re: ShoreTel

[Jon Harris]

Shortels do work on other switches at least $dayjob$ they are using Cisco
exclusively.  Like Matt I am not the phone guy but I sit across from two of
them.  The only complaint I hear them make is during upgrades of older
phone systems.  They have to go out and manually "fix" things in the remote
offices.  That said I know they like the ability to put new staff and
offices into the central phone server and preprogram the new systems and
then go out and drop them in.  I don't know where it went but whey were
looking at setting up internal conferencing thru the system for a while.

Jon

On Wed, Nov 9, 2011 at 1:54 PM, Matthew W. Ross wrote:

> > I would be interested in hearing of any licensing gotchas or things to be
> > aware of.
>
> One license "gotcha" we just recently experienced: We have a user who uses
> their "Personal" license. This gives the users an extension, mailbox,
> etc... But this user wanted a feature which was only available to the
> "Workgroup Agent" license. (What the user wanted to do was to sign in/out
> of the workgroup remotely, which apparently a "personal" license can't do.)
> What we found out is that we can't upgrade the license, nor can we get a
> refund. If we choose to do this, we just have to purchase the additional
> license (at over $200).
>
> > Which vendors switches are you using?
>
> Shoretel makes you choose and stick to a vendor. I am unable to purchase
> additional licenses/phones/switches from a different vendor without
> completely transferring my vendor. We are using NCA (
> http://www.ncanet.com/) and we have had "good to excellent" support from
> them for over 10 years. We briefly looked into other vendors in our area.
>
> If your question is more of a "which hardware switches do you use": A mix
> of the Shoretel 120s (IP phone capable or 24 analog lines) and the Shoretel
> 24As (Cheaper, 24 analog extension only switch). Oh, and a Shoretel T1 for
> our PRI.
>
> > I'm not as involved in the financial side of this, I'm coming at this
> more
> > from the technical side (I currently have zero knowledge of phone systems
> > but obvious once you move from a monolithic analogue system to an IP
> system
> > it starts to merge with network/server stuff).
>
> I'm not really a phone guy. My predecessor was a phone guy. He is the one
> who got the school to move to Shoretel, and I thank him for it every time I
> use it. While now there are good, useable alternatives, it's worth looking
> into other solutions. But I have been extremely happy with this product.
>
>
> --Matt Ross
> Ephrata School District
>
>
> - Original Message -
> From: Paul Hutchings
> [mailto:paul.hutchi...@mira.co.uk]
> To: NT System Admin Issues
> [mailto:ntsysadmin@lyris.sunbelt-software.com]
> Sent: Wed, 09 Nov 2011
> 09:51:16 -0800
> Subject: RE: ShoreTel
>
>
> > Thanks Matt that helps and awful lot as it's the nitty gritty that tends
> to
> > get overlooked.
> >
> > I would be interested in hearing of any licensing gotchas or things to be
> > aware of.
> >
> > Which vendors switches are you using?
> >
> > I'm not as involved in the financial side of this, I'm coming at this
> more
> > from the technical side (I currently have zero knowledge of phone systems
> > but obvious once you move from a monolithic analogue system to an IP
> system
> > it starts to merge with network/server stuff).
> >
> > Thanks again,
> > Paul
> > 
> > From: Matthew W. Ross [mr...@ephrataschools.org]
> > Sent: 09 November 2011 4:48 PM
> > To: NT System Admin Issues
> > Subject: Re: ShoreTel
> >
> > Shoretel is the the phone system we're using.
> >
> > Pros:
> >
> >  * Very easy to use.
> >  * Works great for windows environments.
> >  * Has good support for mass deployment of analog phones (which some do
> not,
> > and we use a lot of).
> >  * Can be used as your intercom (Using IP phones).
> >  * Support has been good for us.
> >  * Outlook integration (We don't use this, but it's there.)
> >
> > Cons:
> >
> >  * Windows Centric (There is now a web based client which is a big
> > improvement in this front).
> >  * Serious product lock-in:
> >** Their switches will only work with Shoretel.
> >** Their IP phones will only work with Shoretel.
> >** They license you per extension, and those licenses cannot be
> > refunded/transferred.
> >** SIP phones do work, for an additional fee.
> >  * "Optional" support is not so optional. It is also primarily through
> your
> > vendor, not Shoretel.
> >  * Not cheap.
> >
> > I hope this helps.
> >
> >
> > --Matt Ross
> > Ephrata School District
> >
> >
> > - Original Message -
> > From: Paul Hutchings
> > [mailto:paul.hutchi...@mira.co.uk]
> > To: NT System Admin Issues
> > [mailto:ntsysadmin@lyris.sunbelt-software.com]
> > Sent: Wed, 09 Nov 2011
> > 07:14:01 -0800
> > Subject: ShoreTel
> >
> >
> > > Anyone here using Shoretel for their phone system?
> > >
> > > From what we've seen so far we're confident they're a goo

Re: OT - Phone System In A Virtual Machine

[Jon Harris]

Last $dayjob$ we needed to rebuild the entire infrastructure for
networking.  At the time we had cat 3, cat4, cat5, and coax (thicknet) in
the walls.  Some of the cat3 was shorted most of the cat4 was causing
issues as well but functioned to some degree and the cat5 was laid accross
lighting so that the best speed was in places 10 half.  When we did the
rebuild we opted to install 3 cat6 runs per drop with most offices getting
at least 2 different drops and some 3.  A lot of wire to be installed but
it paid for itself when we replaced the phone system about a month later.
Having multiple drops in the office allowed staff to reconfigure their
office space and I only had to change a jumper cable in the rack and
everything went live again.  The biggest hassle was getting people to give
the installers the time to tear up the ceiling in their office to get the
drops in.  Phones ran on dedicated wire but shared switches.  If needed we
could plug machines into phones to get another staffer temporary access in
an office.  Since about half the staff were on laptops and about half of
them sometimes working in 2 or 3 member teams in the same office we rarely
ran into network issues after the upgrade.  We had more problems with
staffers insisting on bridging our public and private networks.  Public was
wireless, private was wired.

Jon


-Original Message-
From: Bill Humphries [mailto:nt...@hedgedigger.com]

> Sent: Wednesday, November 09, 2011 10:11 AM
> To: NT System Admin Issues
> Subject: Re: OT - Phone System In A Virtual Machine
>
> We manage to run switch to phone to desktop without any problems at all of
> our clients.  We've never run cable just for phones. YMMV, but we never
> have problems.  Of course that assumes you are using a well optimized codec
> for voice.
>
> Bill
>
>
> James Kerr wrote:
> > Yeah, if we go VOIP we will be running a new CAT6 infrastructure just
> > for the phones and perform lots of testing before we cut over.
> >
> > On Tue, Nov 8, 2011 at 6:45 PM, Jonathan Bible  > > wrote:
> >
> > I am surprised no one has mentioned ShoreTel. It is supported on
> > VMware 4.0. Just remember when you add VOIP to your network it
> > will expose your latency and misconfigurations because missing 3
> > seconds of voice is critical and an email will go unnoticed. VOIP
> > is like the canary in the mine. It dies first and gets all the
> > blame.  ShoreTel is designed from the IT prospective and is easy
> > to manage.
> >
> >
> > On Tue, Nov 8, 2011 at 4:48 PM, James Kerr  > > wrote:
> >
> > I've thought about hosted solutions also but we are currently
> > locked into contracts for our PRI's. This will be an
> > interesting venture that's for sure.
> >
> > James
> >
> >
> > On Tue, Nov 8, 2011 at 2:36 PM, Stu Sjouwerman
> > mailto:s...@sunbelt-software.com>>
> > wrote:
> >
> > James,
> >
> >
> >
> > I went through that whole exercise a year ago, and decided
> > for VOIP, but running it
> >
> > In the Cloud as opposed to in-house.  RingCentral gives
> > you an enormous amount of
> >
> > features for about 20 bucks per person per month,
> > unlimited phone minutes.  If you
> >
> > absolutely want to run it in-house, a dedicated server
> > with Asterisk would be a good
> >
> > idea.  VOIP is sensitive to a bunch of things, you need to
> > spec out the hardware
> >
> > correctly.
> >
> >
> > Warm regards,
> >
> >
> >
> > Stu
> >
> >
> >
> > *From:* James Kerr [mailto:cluster...@gmail.com
> > ]
> >
> > *Sent:* Tuesday, November 08, 2011 8:57 AM
> > *To:* NT System Admin Issues
> > *Subject:* OT - Phone System In A Virtual Machine
> >
> >
> >
> > We are looking at replacing our phone system. This has got
> > me thinking about VIOP systems and being a sys admin who
> > maintains our current phone system (for the most part) has
> > got me thinking about phone system redundancy. I have a
> > desire to run a voice-mail and PBX on virtual machines, if
> > possible. I just don't know if such things exist and was
> > wondering if any of you guys had any info about such
> > systems. We have about 150 phones in two locations two
> > PBXs and one central voice-mail/auto attendant. Venders
> > I've spoke with so far just want to offer newer versions
> > of what we already have. I want something more redundant
> > and easier to bring up again in case of disaster. Thanks
> > for any replies.
> >
> > James
> >
> > ~ Finally, powerful endpoint 

RE: Random logon failures over WAN , due to a net use command, resulting in account lockout

[Carl Houseman]

The net use command you exemplified below has no password on the command
line - you do have a password included in the actual script, do you not?

 

Do you get the same logon failures if you run the same logon script from a
non-domain-joined machine on the same LAN as the target server?

 

Carl

 

From: Dean Cunningham [mailto:dean.cunning...@gmail.com] 
Sent: Wednesday, November 09, 2011 5:33 PM
To: NT System Admin Issues
Subject: Re: Random logon failures over WAN , due to a net use command,
resulting in account lockout

 

Make that a CISCO firewall

On Thu, Nov 10, 2011 at 10:08 AM, Dean Cunningham
 wrote:

Any straws greatfully accepted 

 

 

Overview

A group of 20 users in a separate domain connect to file resources in
another domain via a 1MB WAN link. The file server (Wk8) is in its own DMZ,
with the domain controllers (Wk3) in separate DMZs. The FMSO role is on a DC
(FMSODC )in one DMZ and there are 2 DCs(DC01,DC02) in another DMZ. The
remote domain are behind a NAT pool so the usual SMB NAT translation
problems are eliminated

The file server generally connects to DC02

There is a logon script for the clients that runs a net use x:
\\domain\share   / u:\\DOMAIN\Username

ALL users map the drive as that \\DOMAIN\username
 . The users have a combination of XP and Windows
7 clients, joined to their own NT Domain (yes NT SP4)

The problem is that the net use command  can create sporadic logon failures
before finally logging in success fully (over the space of  5 - 15 sec). If
multiple users are running the logon script over the same period (5 - 15
sec) then multiple logon failures will occur, resulting in the common user
account being locked out

The logon failures are shown in the security log on the file server as an
Audit Failure Event ID 4625

The account lockout is shown in the security log of a domain controller as a
Success Audit Event ID 644

The firewall between  the DCs and the file server (CISCO) allows for dynamic
ports for RPC etc so no static ports setup

Anyone seen this before?


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin<>

Re: ShoreTel

[Andrew S. Baker]

No, it's been a few years since I've seen any but the largest enterprises
with "telecom" guys.  What I tend to see today is that telecom is just a
service managed by the networking team, or the generic IT team that covers
all things technical.

In the SMB space, I don't know of any telecom guys anymore, or people that
hire out for phone contractors (assuming that they aren't using hosted
voice solution in the first place)

* *

*ASB* *http://XeeMe.com/AndrewBaker* *Harnessing the Advantages of
Technology for the SMB market…

*



On Wed, Nov 9, 2011 at 5:35 PM, James Kerr  wrote:

> Well, what I meant is that IT people will handle all of it. There won't be
> a "phone guy" in the traditional sense anymore. Well maybe there will but
> he'll be an IT guy. I imagine a lot of IT depts handle telecom but when
> they need work done they hire a phone contractor. I have never worked in an
> large enterprise setting so I don't really know what goes on there, the IT
> dept probably has traditional phone guys on staff.
>
>
> On Wed, Nov 9, 2011 at 5:00 PM, Andrew S. Baker  wrote:
>
>> In most places that I know of today, telecom is handled by IT or merged
>> into the IT department.
>>
>> Unless you meant something else entirely...
>>
>> * *
>>
>> *ASB* *http://XeeMe.com/AndrewBaker* *Harnessing the Advantages of
>> Technology for the SMB market…
>>
>> *
>>
>>
>>
>> On Wed, Nov 9, 2011 at 4:56 PM, James Kerr  wrote:
>>
>>> I envision that IT will be in charge of phones systems in the future. I
>>> admin our intertel systems for the last 7 years and unless it involves
>>> trunks or doing cross connects on the 66 blocks I do it all. When we moved
>>> one of our offices I had the guy punch all the ports in the phone system
>>> into a patch panel so when I run a new extension I don't have to have
>>> someone come out and cross connect it, I just punch it to a different panel
>>> and patch cable it. No more 66 blocks at that facility. I don't know if
>>> anyone else does it that way but I came up with the idea myself. ;-) I'm
>>> sure there must be others that do the same thing because it makes sense.
>>>
>>> James
>>>
>>> On Wed, Nov 9, 2011 at 12:51 PM, Paul Hutchings <
>>> paul.hutchi...@mira.co.uk> wrote:
>>>
 Thanks Matt that helps and awful lot as it's the nitty gritty that
 tends to get overlooked.

 I would be interested in hearing of any licensing gotchas or things to
 be aware of.

 Which vendors switches are you using?

 I'm not as involved in the financial side of this, I'm coming at this
 more from the technical side (I currently have zero knowledge of phone
 systems but obvious once you move from a monolithic analogue system to an
 IP system it starts to merge with network/server stuff).

 Thanks again,
 Paul
 
 From: Matthew W. Ross [mr...@ephrataschools.org]
 Sent: 09 November 2011 4:48 PM
 To: NT System Admin Issues
 Subject: Re: ShoreTel

 Shoretel is the the phone system we're using.

 Pros:

  * Very easy to use.
  * Works great for windows environments.
  * Has good support for mass deployment of analog phones (which some do
 not, and we use a lot of).
  * Can be used as your intercom (Using IP phones).
  * Support has been good for us.
  * Outlook integration (We don't use this, but it's there.)

 Cons:

  * Windows Centric (There is now a web based client which is a big
 improvement in this front).
  * Serious product lock-in:
   ** Their switches will only work with Shoretel.
   ** Their IP phones will only work with Shoretel.
   ** They license you per extension, and those licenses cannot be
 refunded/transferred.
   ** SIP phones do work, for an additional fee.
  * "Optional" support is not so optional. It is also primarily through
 your vendor, not Shoretel.
  * Not cheap.

 I hope this helps.


 --Matt Ross
 Ephrata School District


 - Original Message -
 From: Paul Hutchings
 [mailto:paul.hutchi...@mira.co.uk]
 To: NT System Admin Issues
 [mailto:ntsysadmin@lyris.sunbelt-software.com]
 Sent: Wed, 09 Nov 2011
 07:14:01 -0800
 Subject: ShoreTel


 > Anyone here using Shoretel for their phone system?
 >
 > From what we've seen so far we're confident they're a good fit both
 in terms
 > of features and architecture, and (most importantly IMO) the client
 software
 > appears to be pretty good to use.
 >
 > Any tales (on or off list) of how they have performed would be
 appreciated.
 >
 > Thanks,
 > Paul

>>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or

Re: ShoreTel

[James Kerr]

Well, what I meant is that IT people will handle all of it. There won't be
a "phone guy" in the traditional sense anymore. Well maybe there will but
he'll be an IT guy. I imagine a lot of IT depts handle telecom but when
they need work done they hire a phone contractor. I have never worked in an
large enterprise setting so I don't really know what goes on there, the IT
dept probably has traditional phone guys on staff.

On Wed, Nov 9, 2011 at 5:00 PM, Andrew S. Baker  wrote:

> In most places that I know of today, telecom is handled by IT or merged
> into the IT department.
>
> Unless you meant something else entirely...
>
> * *
>
> *ASB* *http://XeeMe.com/AndrewBaker* *Harnessing the Advantages of
> Technology for the SMB market…
>
> *
>
>
>
> On Wed, Nov 9, 2011 at 4:56 PM, James Kerr  wrote:
>
>> I envision that IT will be in charge of phones systems in the future. I
>> admin our intertel systems for the last 7 years and unless it involves
>> trunks or doing cross connects on the 66 blocks I do it all. When we moved
>> one of our offices I had the guy punch all the ports in the phone system
>> into a patch panel so when I run a new extension I don't have to have
>> someone come out and cross connect it, I just punch it to a different panel
>> and patch cable it. No more 66 blocks at that facility. I don't know if
>> anyone else does it that way but I came up with the idea myself. ;-) I'm
>> sure there must be others that do the same thing because it makes sense.
>>
>> James
>>
>> On Wed, Nov 9, 2011 at 12:51 PM, Paul Hutchings <
>> paul.hutchi...@mira.co.uk> wrote:
>>
>>> Thanks Matt that helps and awful lot as it's the nitty gritty that tends
>>> to get overlooked.
>>>
>>> I would be interested in hearing of any licensing gotchas or things to
>>> be aware of.
>>>
>>> Which vendors switches are you using?
>>>
>>> I'm not as involved in the financial side of this, I'm coming at this
>>> more from the technical side (I currently have zero knowledge of phone
>>> systems but obvious once you move from a monolithic analogue system to an
>>> IP system it starts to merge with network/server stuff).
>>>
>>> Thanks again,
>>> Paul
>>> 
>>> From: Matthew W. Ross [mr...@ephrataschools.org]
>>> Sent: 09 November 2011 4:48 PM
>>> To: NT System Admin Issues
>>> Subject: Re: ShoreTel
>>>
>>> Shoretel is the the phone system we're using.
>>>
>>> Pros:
>>>
>>>  * Very easy to use.
>>>  * Works great for windows environments.
>>>  * Has good support for mass deployment of analog phones (which some do
>>> not, and we use a lot of).
>>>  * Can be used as your intercom (Using IP phones).
>>>  * Support has been good for us.
>>>  * Outlook integration (We don't use this, but it's there.)
>>>
>>> Cons:
>>>
>>>  * Windows Centric (There is now a web based client which is a big
>>> improvement in this front).
>>>  * Serious product lock-in:
>>>   ** Their switches will only work with Shoretel.
>>>   ** Their IP phones will only work with Shoretel.
>>>   ** They license you per extension, and those licenses cannot be
>>> refunded/transferred.
>>>   ** SIP phones do work, for an additional fee.
>>>  * "Optional" support is not so optional. It is also primarily through
>>> your vendor, not Shoretel.
>>>  * Not cheap.
>>>
>>> I hope this helps.
>>>
>>>
>>> --Matt Ross
>>> Ephrata School District
>>>
>>>
>>> - Original Message -
>>> From: Paul Hutchings
>>> [mailto:paul.hutchi...@mira.co.uk]
>>> To: NT System Admin Issues
>>> [mailto:ntsysadmin@lyris.sunbelt-software.com]
>>> Sent: Wed, 09 Nov 2011
>>> 07:14:01 -0800
>>> Subject: ShoreTel
>>>
>>>
>>> > Anyone here using Shoretel for their phone system?
>>> >
>>> > From what we've seen so far we're confident they're a good fit both in
>>> terms
>>> > of features and architecture, and (most importantly IMO) the client
>>> software
>>> > appears to be pretty good to use.
>>> >
>>> > Any tales (on or off list) of how they have performed would be
>>> appreciated.
>>> >
>>> > Thanks,
>>> > Paul
>>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: web filtering

[Dean Cunningham]

clearswift
http://www.clearswift.com/
Used their products for 15 years, would use them again at a drop of a hat



On Wed, Nov 9, 2011 at 5:39 AM,  wrote:

>  I've finally gotten a budget to put in place a web filtering platform.
> I've looked at three so far: Websense, iPrism and Barracuda.  Of those, I
> like Websense but it was too costly and no one liked Barracuda.  iPrism is
> looking good so far but I'd like to demo a few more.
> I'm not opposed to a cloud-based service either.
> If you are using a web-filtering product, can you tell me what it is and
> whether you feel it is worth the price you pay?
> I've been reading some reviews on different products, but a review is
> secondary to what actual users experience.
> Thanks!
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Random logon failures over WAN , due to a net use command, resulting in account lockout

[Dean Cunningham]

Make that a CISCO firewall

On Thu, Nov 10, 2011 at 10:08 AM, Dean Cunningham  wrote:

> Any straws greatfully accepted [?]
>
>
> Overview
>
> A group of 20 users in a separate domain connect to file resources in
> another domain via a 1MB WAN link. The file server (Wk8) is in its own DMZ,
> with the domain controllers (Wk3) in separate DMZs. The FMSO role is on a
> DC (FMSODC )in one DMZ and there are 2 DCs(DC01,DC02) in another DMZ. The
> remote domain are behind a NAT pool so the usual SMB NAT translation
> problems are eliminated
>
> The file server generally connects to DC02
>
> There is a logon script for the clients that runs a net use* x*:  
> \\domain\share
> / u:\\DOMAIN\Username
>
> ALL users map the drive as that \\DOMAIN\username. The users have a
> combination of XP and Windows 7 clients, joined to their own NT Domain (yes
> NT SP4)
>
> The problem is that the net use command  can create sporadic logon
> failures before finally logging in success fully (over the space of  5 –
> 15 sec). If multiple users are running the logon script over the same
> period (5 – 15 sec) then multiple logon failures will occur, resulting in
> the common user account being locked out
>
> The logon failures are shown in the security log on the file server as an
> *Audit Failure Event ID 4625*
>
> The account lockout is shown in the security log of a domain controller as
> a *Success Audit Event ID 644*
>
> The firewall between  the DCs and the file server (CISCO) allows for
> dynamic ports for RPC etc so no static ports setup
>
> Anyone seen this before?
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin<<330.gif>>

Re: "Authenticated Users" List

[Andrew S. Baker]

IOW, there is not point-in-time group or listing which would show you *
All-of-the-user-accounts-that-are-authenticated-this-very-second*.

What is the real objective you are trying to reach, Mark? (Or, for what
broader purpose are you trying to reach this specific objective?)


* *

*ASB* *http://XeeMe.com/AndrewBaker* *Harnessing the Advantages of
Technology for the SMB market…

*



On Wed, Nov 9, 2011 at 4:38 PM, Michael B. Smith wrote:

>  Like I said, every user that can authenticate CAN BE an Authenticated
> User. But it’s a dynamic token not a static token.
>
> ** **
>
> So, if they are logged on, the answer is yes, they are an Authenticated
> User.
>
> ** **
>
> If you want a list of everyone who could potentially be an Authenticated
> User, something like this is the filter you would want to search on:
>
> ** **
>
> $ldapFilter =   "(&"  +***
> *
>
>
> "(objectCategory=Person)" +
>
>
> "(userAccountControl:1.2.840.113556.1.4.803:=512)"+
>
>
> "(!userAccountControl:1.2.840.113556.1.4.803:=2)" +
>
>
> "(!userAccountControl:1.2.840.113556.1.4.803:=65536)" +
>
>
> "(!userAccountControl:1.2.840.113556.1.4.803:=32)"+
>
> ")"
>
> ** **
>
> Regards,
>
> ** **
>
> Michael B. Smith
>
> Consultant and Exchange MVP
>
> http://TheEssentialExchange.com
>
> ** **
>
> *From:* Mark Boeck [mailto:netadmin...@gmail.com]
> *Sent:* Wednesday, November 09, 2011 4:29 PM
>
> *To:* NT System Admin Issues
> *Subject:* Re: "Authenticated Users" List
>
> ** **
>
> I want to know if a certain logged-on user is seen by AD as an
> AUTHENTICATED USER. 
>
>  
>
> I simply want a list of AUTHENTICATED USERS in my domain.
>
>  
>
>
>
>  
>
> On Wed, Nov 9, 2011 at 3:20 PM, Michael B. Smith 
> wrote:
>
> Every user that can authenticate CAN BE an Authenticated User. But it’s a
> dynamic token not a static token.
>
>  
>
> What are you actually trying to accomplish?
>
>  
>
> Regards,
>
>  
>
> Michael B. Smith
>
> Consultant and Exchange MVP
>
> http://TheEssentialExchange.com
>
>  
>
> *From:* Mark Boeck [mailto:netadmin...@gmail.com]
> *Sent:* Wednesday, November 09, 2011 4:11 PM
> *To:* NT System Admin Issues
> *Subject:* "Authenticated Users" List
>
>  
>
> Greets.
>
>  
>
> Other than using WHOAMI or GPRESULT against each user 1 at a time, how can
> I get a list of who is currently an "AUTHENTICATED USER" on my domain(s)?*
> ***
>
>  
>
> TIA!
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: ShoreTel

[Andrew S. Baker]

In most places that I know of today, telecom is handled by IT or merged
into the IT department.

Unless you meant something else entirely...

* *

*ASB* *http://XeeMe.com/AndrewBaker* *Harnessing the Advantages of
Technology for the SMB market…

*



On Wed, Nov 9, 2011 at 4:56 PM, James Kerr  wrote:

> I envision that IT will be in charge of phones systems in the future. I
> admin our intertel systems for the last 7 years and unless it involves
> trunks or doing cross connects on the 66 blocks I do it all. When we moved
> one of our offices I had the guy punch all the ports in the phone system
> into a patch panel so when I run a new extension I don't have to have
> someone come out and cross connect it, I just punch it to a different panel
> and patch cable it. No more 66 blocks at that facility. I don't know if
> anyone else does it that way but I came up with the idea myself. ;-) I'm
> sure there must be others that do the same thing because it makes sense.
>
> James
>
> On Wed, Nov 9, 2011 at 12:51 PM, Paul Hutchings  > wrote:
>
>> Thanks Matt that helps and awful lot as it's the nitty gritty that tends
>> to get overlooked.
>>
>> I would be interested in hearing of any licensing gotchas or things to be
>> aware of.
>>
>> Which vendors switches are you using?
>>
>> I'm not as involved in the financial side of this, I'm coming at this
>> more from the technical side (I currently have zero knowledge of phone
>> systems but obvious once you move from a monolithic analogue system to an
>> IP system it starts to merge with network/server stuff).
>>
>> Thanks again,
>> Paul
>> 
>> From: Matthew W. Ross [mr...@ephrataschools.org]
>> Sent: 09 November 2011 4:48 PM
>> To: NT System Admin Issues
>> Subject: Re: ShoreTel
>>
>> Shoretel is the the phone system we're using.
>>
>> Pros:
>>
>>  * Very easy to use.
>>  * Works great for windows environments.
>>  * Has good support for mass deployment of analog phones (which some do
>> not, and we use a lot of).
>>  * Can be used as your intercom (Using IP phones).
>>  * Support has been good for us.
>>  * Outlook integration (We don't use this, but it's there.)
>>
>> Cons:
>>
>>  * Windows Centric (There is now a web based client which is a big
>> improvement in this front).
>>  * Serious product lock-in:
>>   ** Their switches will only work with Shoretel.
>>   ** Their IP phones will only work with Shoretel.
>>   ** They license you per extension, and those licenses cannot be
>> refunded/transferred.
>>   ** SIP phones do work, for an additional fee.
>>  * "Optional" support is not so optional. It is also primarily through
>> your vendor, not Shoretel.
>>  * Not cheap.
>>
>> I hope this helps.
>>
>>
>> --Matt Ross
>> Ephrata School District
>>
>>
>> - Original Message -
>> From: Paul Hutchings
>> [mailto:paul.hutchi...@mira.co.uk]
>> To: NT System Admin Issues
>> [mailto:ntsysadmin@lyris.sunbelt-software.com]
>> Sent: Wed, 09 Nov 2011
>> 07:14:01 -0800
>> Subject: ShoreTel
>>
>>
>> > Anyone here using Shoretel for their phone system?
>> >
>> > From what we've seen so far we're confident they're a good fit both in
>> terms
>> > of features and architecture, and (most importantly IMO) the client
>> software
>> > appears to be pretty good to use.
>> >
>> > Any tales (on or off list) of how they have performed would be
>> appreciated.
>> >
>> > Thanks,
>> > Paul
>>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: ShoreTel

[James Kerr]

I envision that IT will be in charge of phones systems in the future. I
admin our intertel systems for the last 7 years and unless it involves
trunks or doing cross connects on the 66 blocks I do it all. When we moved
one of our offices I had the guy punch all the ports in the phone system
into a patch panel so when I run a new extension I don't have to have
someone come out and cross connect it, I just punch it to a different panel
and patch cable it. No more 66 blocks at that facility. I don't know if
anyone else does it that way but I came up with the idea myself. ;-) I'm
sure there must be others that do the same thing because it makes sense.

James

On Wed, Nov 9, 2011 at 12:51 PM, Paul Hutchings
wrote:

> Thanks Matt that helps and awful lot as it's the nitty gritty that tends
> to get overlooked.
>
> I would be interested in hearing of any licensing gotchas or things to be
> aware of.
>
> Which vendors switches are you using?
>
> I'm not as involved in the financial side of this, I'm coming at this more
> from the technical side (I currently have zero knowledge of phone systems
> but obvious once you move from a monolithic analogue system to an IP system
> it starts to merge with network/server stuff).
>
> Thanks again,
> Paul
> 
> From: Matthew W. Ross [mr...@ephrataschools.org]
> Sent: 09 November 2011 4:48 PM
> To: NT System Admin Issues
> Subject: Re: ShoreTel
>
> Shoretel is the the phone system we're using.
>
> Pros:
>
>  * Very easy to use.
>  * Works great for windows environments.
>  * Has good support for mass deployment of analog phones (which some do
> not, and we use a lot of).
>  * Can be used as your intercom (Using IP phones).
>  * Support has been good for us.
>  * Outlook integration (We don't use this, but it's there.)
>
> Cons:
>
>  * Windows Centric (There is now a web based client which is a big
> improvement in this front).
>  * Serious product lock-in:
>   ** Their switches will only work with Shoretel.
>   ** Their IP phones will only work with Shoretel.
>   ** They license you per extension, and those licenses cannot be
> refunded/transferred.
>   ** SIP phones do work, for an additional fee.
>  * "Optional" support is not so optional. It is also primarily through
> your vendor, not Shoretel.
>  * Not cheap.
>
> I hope this helps.
>
>
> --Matt Ross
> Ephrata School District
>
>
> - Original Message -
> From: Paul Hutchings
> [mailto:paul.hutchi...@mira.co.uk]
> To: NT System Admin Issues
> [mailto:ntsysadmin@lyris.sunbelt-software.com]
> Sent: Wed, 09 Nov 2011
> 07:14:01 -0800
> Subject: ShoreTel
>
>
> > Anyone here using Shoretel for their phone system?
> >
> > From what we've seen so far we're confident they're a good fit both in
> terms
> > of features and architecture, and (most importantly IMO) the client
> software
> > appears to be pretty good to use.
> >
> > Any tales (on or off list) of how they have performed would be
> appreciated.
> >
> > Thanks,
> > Paul
> >
> > --
> > MIRA Ltd
> >
> > Watling Street, Nuneaton, Warwickshire, CV10 0TU, England
> > Registered in England and Wales No. 402570
> > VAT Registration  GB 100 1464 84
> >
> > The contents of this e-mail are confidential and are solely for the use
> of
> > the intended recipient.  If you receive this e-mail in error, please
> delete
> > it and notify us either by e-mail, telephone or fax.  You should not
> copy,
> > forward or otherwise disclose the content of the e-mail as this is
> > prohibited.
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > ~   ~
> >
> > ---
> > To manage subscriptions click here:
> > http://lyris.sunbelt-software.com/read/my_forums/
> > or send an email to listmana...@lyris.sunbeltsoftware.com
> > with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: web filtering

[Zvonimir Bilic]

Using secure LDAP to integrate with AD. It synchs automatically once a day by 
using user and group search filter. You can also manually synch.

 

From: Harry Singh [mailto:hbo...@gmail.com] 
Sent: Tuesday, November 08, 2011 4:56 PM
To: NT System Admin Issues
Subject: Re: web filtering

 

For those using Zscaler, are you guys integrating into your AD? If yes, what is 
Zscaler using to pull user/group info and how responsive is it to changes/adds?

 

 

 

On Tue, Nov 8, 2011 at 4:35 PM, David Mazzaccaro 
 wrote:

“we have a training room set up where people can go and do personal stuff like 
FB or ebay.  So, being able to set a policy so training room pc's can get to 
those sites but block MI or MM pc's is also a requirement.”

This is exactly what we do w/ iPrism.  

 

 

From: pdw1...@hotmail.com [mailto:pdw1...@hotmail.com] 
Sent: Tuesday, November 08, 2011 3:53 PM
To: NT System Admin Issues
Subject: RE: web filtering

 

Around 200 users as not everyone is allowed access to the internet.  Our 
firewall doesn't do any kind of web filtering.
Good reporting must be an essential part of the product.  I just got a request 
from a supervisor asking for a web usage report on all the people in Admitting 
and MI.  Trying to glean that info from syslogs would be a nightmare.  I've 
tried it before on a smaller scale and it was quite time consuming.
The ability to customize for either user or machine, too.  For example,  we 
have a training room set up where people can go and do personal stuff like FB 
or ebay.  So, being able to set a policy so training room pc's can get to those 
sites but block MI or MM pc's is also a requirement.



From: paul.hutchi...@mira.co.uk
To: ntsysadmin@lyris.sunbelt-software.com
Subject: RE: web filtering
Date: Tue, 8 Nov 2011 17:48:53 +

Our firewall has URL filtering which is provided by Brightcloud.  Seems pretty 
effective.

 

You’ve not mentioned user count or what your current firewall is, or what 
you’re really trying to do (do you want lot of nice reports on normal activity 
or do you just want to block “bad stuff”?).

 

FWIW you could use a DNS  service like DYN and you’d get Barracuda’s web 
filtering, so you have a ton of options from cheap to very expensive.

 

Paul

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: "Authenticated Users" List

[Michael B. Smith]

Like I said, every user that can authenticate CAN BE an Authenticated User. But 
it's a dynamic token not a static token.

So, if they are logged on, the answer is yes, they are an Authenticated User.

If you want a list of everyone who could potentially be an Authenticated User, 
something like this is the filter you would want to search on:

$ldapFilter =   "(&"  +
"(objectCategory=Person)"   
  +

"(userAccountControl:1.2.840.113556.1.4.803:=512)"+

"(!userAccountControl:1.2.840.113556.1.4.803:=2)" +

"(!userAccountControl:1.2.840.113556.1.4.803:=65536)" +

"(!userAccountControl:1.2.840.113556.1.4.803:=32)"+
")"

Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com

From: Mark Boeck [mailto:netadmin...@gmail.com]
Sent: Wednesday, November 09, 2011 4:29 PM
To: NT System Admin Issues
Subject: Re: "Authenticated Users" List

I want to know if a certain logged-on user is seen by AD as an AUTHENTICATED 
USER.

I simply want a list of AUTHENTICATED USERS in my domain.




On Wed, Nov 9, 2011 at 3:20 PM, Michael B. Smith 
mailto:mich...@smithcons.com>> wrote:
Every user that can authenticate CAN BE an Authenticated User. But it's a 
dynamic token not a static token.

What are you actually trying to accomplish?

Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com

From: Mark Boeck [mailto:netadmin...@gmail.com]
Sent: Wednesday, November 09, 2011 4:11 PM
To: NT System Admin Issues
Subject: "Authenticated Users" List

Greets.

Other than using WHOAMI or GPRESULT against each user 1 at a time, how can I 
get a list of who is currently an "AUTHENTICATED USER" on my domain(s)?

TIA!

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: OT: Any Recomnds on Dell or any boardroom projectors

[Ben Scott]

On Wed, Nov 9, 2011 at 4:12 PM, justino garcia  wrote:
> I looking to replace optium projectors, with maybe a dell, since we have a
> sales contract with dell.
> Any idea what I should look for?

  Specifications on your requirements.

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: "Authenticated Users" List

[Mark Boeck]

I want to know if a certain logged-on user is seen by AD as an
AUTHENTICATED USER.

I simply want a list of AUTHENTICATED USERS in my domain.




On Wed, Nov 9, 2011 at 3:20 PM, Michael B. Smith wrote:

>  Every user that can authenticate CAN BE an Authenticated User. But it’s
> a dynamic token not a static token.
>
> ** **
>
> What are you actually trying to accomplish?
>
> ** **
>
> Regards,
>
> ** **
>
> Michael B. Smith
>
> Consultant and Exchange MVP
>
> http://TheEssentialExchange.com
>
> ** **
>
> *From:* Mark Boeck [mailto:netadmin...@gmail.com]
> *Sent:* Wednesday, November 09, 2011 4:11 PM
> *To:* NT System Admin Issues
> *Subject:* "Authenticated Users" List
>
> ** **
>
> Greets.
>
>  
>
> Other than using WHOAMI or GPRESULT against each user 1 at a time, how can
> I get a list of who is currently an "AUTHENTICATED USER" on my domain(s)?*
> ***
>
>  
>
> TIA!
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: ShoreTel

[Richard Stovall]

Who died?


On Wed, Nov 9, 2011 at 4:14 PM, Kurt Buff  wrote:

> So it goes...
>
> Kurt
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: web filtering

[Mark Boeck]

*Palo Alto Networks* - per-user filtering, application filtering, web
categroy filtering etc., rules, AD integration, VPN, multiple networks,
$1500 (?) year...

On Tue, Nov 8, 2011 at 10:39 AM,  wrote:

>  I've finally gotten a budget to put in place a web filtering platform.
> I've looked at three so far: Websense, iPrism and Barracuda.  Of those, I
> like Websense but it was too costly and no one liked Barracuda.  iPrism is
> looking good so far but I'd like to demo a few more.
> I'm not opposed to a cloud-based service either.
> If you are using a web-filtering product, can you tell me what it is and
> whether you feel it is worth the price you pay?
> I've been reading some reviews on different products, but a review is
> secondary to what actual users experience.
> Thanks!
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: "Authenticated Users" List

[Michael B. Smith]

Every user that can authenticate CAN BE an Authenticated User. But it's a 
dynamic token not a static token.

What are you actually trying to accomplish?

Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com

From: Mark Boeck [mailto:netadmin...@gmail.com]
Sent: Wednesday, November 09, 2011 4:11 PM
To: NT System Admin Issues
Subject: "Authenticated Users" List

Greets.

Other than using WHOAMI or GPRESULT against each user 1 at a time, how can I 
get a list of who is currently an "AUTHENTICATED USER" on my domain(s)?

TIA!

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: ShoreTel

[Kurt Buff]

+ a bunch on all points.

Our Shoretel system was initially purchased from CDW about 3 years
ago. CDW had to call someone in from out of State to run the install,
which went well enough, but in the aftermath we wanted some support
and at the time CDW didn't have anyone local, and we were not very
pleased. I suspect that has changed, but can't say because we switched
vendors.

Switching vendors was a *MAJOR* pain - I was not involved in the
negotiations, and I'm glad. Initial purchase was by the second IT
manager of my tenure here. Switch to new vendor was by third IT
manager in my tenure here.  Now fourth IT manager is threatening to
move us back to CDW.

So, who did we switch to from CDW? NCA, who have been just fine in
their support.

However, current/fourth IT manager is a CDW bigot. I don't care too
much, except that I'd like to be sure that CDW actually has staff on
the ground here, rather than needing to fly someone in if we need
on-site support (not likely to need it, as the Shoretel kit has been
very good, but it's what I'd like.)

Sigh. So it goes...

Kurt

On Wed, Nov 9, 2011 at 10:54, Matthew W. Ross  wrote:
>> I would be interested in hearing of any licensing gotchas or things to be
>> aware of.
>
> One license "gotcha" we just recently experienced: We have a user who uses 
> their "Personal" license. This gives the users an extension, mailbox, etc... 
> But this user wanted a feature which was only available to the "Workgroup 
> Agent" license. (What the user wanted to do was to sign in/out of the 
> workgroup remotely, which apparently a "personal" license can't do.) What we 
> found out is that we can't upgrade the license, nor can we get a refund. If 
> we choose to do this, we just have to purchase the additional license (at 
> over $200).
>
>> Which vendors switches are you using?
>
> Shoretel makes you choose and stick to a vendor. I am unable to purchase 
> additional licenses/phones/switches from a different vendor without 
> completely transferring my vendor. We are using NCA (http://www.ncanet.com/) 
> and we have had "good to excellent" support from them for over 10 years. We 
> briefly looked into other vendors in our area.
>
> If your question is more of a "which hardware switches do you use": A mix of 
> the Shoretel 120s (IP phone capable or 24 analog lines) and the Shoretel 24As 
> (Cheaper, 24 analog extension only switch). Oh, and a Shoretel T1 for our PRI.
>
>> I'm not as involved in the financial side of this, I'm coming at this more
>> from the technical side (I currently have zero knowledge of phone systems
>> but obvious once you move from a monolithic analogue system to an IP system
>> it starts to merge with network/server stuff).
>
> I'm not really a phone guy. My predecessor was a phone guy. He is the one who 
> got the school to move to Shoretel, and I thank him for it every time I use 
> it. While now there are good, useable alternatives, it's worth looking into 
> other solutions. But I have been extremely happy with this product.
>
>
> --Matt Ross
> Ephrata School District
>
>
> - Original Message -
> From: Paul Hutchings
> [mailto:paul.hutchi...@mira.co.uk]
> To: NT System Admin Issues
> [mailto:ntsysadmin@lyris.sunbelt-software.com]
> Sent: Wed, 09 Nov 2011
> 09:51:16 -0800
> Subject: RE: ShoreTel
>
>
>> Thanks Matt that helps and awful lot as it's the nitty gritty that tends to
>> get overlooked.
>>
>> I would be interested in hearing of any licensing gotchas or things to be
>> aware of.
>>
>> Which vendors switches are you using?
>>
>> I'm not as involved in the financial side of this, I'm coming at this more
>> from the technical side (I currently have zero knowledge of phone systems
>> but obvious once you move from a monolithic analogue system to an IP system
>> it starts to merge with network/server stuff).
>>
>> Thanks again,
>> Paul
>> 
>> From: Matthew W. Ross [mr...@ephrataschools.org]
>> Sent: 09 November 2011 4:48 PM
>> To: NT System Admin Issues
>> Subject: Re: ShoreTel
>>
>> Shoretel is the the phone system we're using.
>>
>> Pros:
>>
>>  * Very easy to use.
>>  * Works great for windows environments.
>>  * Has good support for mass deployment of analog phones (which some do not,
>> and we use a lot of).
>>  * Can be used as your intercom (Using IP phones).
>>  * Support has been good for us.
>>  * Outlook integration (We don't use this, but it's there.)
>>
>> Cons:
>>
>>  * Windows Centric (There is now a web based client which is a big
>> improvement in this front).
>>  * Serious product lock-in:
>>    ** Their switches will only work with Shoretel.
>>    ** Their IP phones will only work with Shoretel.
>>    ** They license you per extension, and those licenses cannot be
>> refunded/transferred.
>>    ** SIP phones do work, for an additional fee.
>>  * "Optional" support is not so optional. It is also primarily through your
>> vendor, not Shoretel.
>>  * Not cheap.
>>
>> I hope this helps.
>>
>>
>

OT: Any Recomnds on Dell or any boardroom projectors

[justino garcia]

I looking to replace optium projectors, with maybe a dell, since we have a
sales contract with dell.

Any idea what I should look for?
It will be set on table, for boardroom.

-- 
Justin
IT-TECH

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: VM spontaneously shuts down to "saved" state under Hyper-V R2

[Carl Houseman]

I plan to have more than two VM's soon.

 

And here's the weird . there were no VSS errors in the guest DC for last
evening's backup, nor did the guest go into saved state.

 

The backup ran 25 minutes after installing yesterday's security patches
(guests and host) and rebooting everything.  But long-time-without-reboot
does not explain the problem either, as there are many cases where the VSS
errors appeared previously less than 24H after a reboot.

 

Carl

 

From: Andrew S. Baker [mailto:asbz...@gmail.com] 
Sent: Wednesday, November 09, 2011 6:16 AM
To: NT System Admin Issues
Subject: Re: VM spontaneously shuts down to "saved" state under Hyper-V R2

 

BTW, although I have recently manually migrated VMs around my two Hyper-V
host servers without any issue, I'm not using WBADMIN for backups.

 

You could try the following, and see if it works for you:
http://www.altaro.com/

The backup is free for two VMs


ASB


  http://XeeMe.com/AndrewBaker


Harnessing the Advantages of Technology for the SMB market.





On Wed, Nov 9, 2011 at 6:13 AM, Andrew S. Baker  wrote:

I've changed the volume ID on a drive before without issue.   I would think
you'd only have to change one, but there should be no drawback to changing
both.


 


ASB


http://XeeMe.com/AndrewBaker


Harnessing the Advantages of Technology for the SMB market.





On Tue, Nov 8, 2011 at 7:28 PM, Carl Houseman  wrote:

The guest VM does show VSS errors, but those have been happening all along,
ever since I started using Windows backup on the H-V host.  Event 12293 from
source VSS:

 

"Volume Shadow Copy Service error: Error calling a routine on the Shadow
Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine details
IVssSnapshotProvider::QueryVolumesSupportedForSnapshots(ProviderId,8388617,.
..) [hr = 0x8000]."

 

There's a total of 7 of these, all identical when the backup begins, and a
single one when the backup completes.

 

Eventid.net led me to this article
  that
suggests that the volume ID should be changed.  Any harm in just trying
that?   And the question that goes along with that, if we're talking about
volumes (separate partitions) within the VM's .VHD, there are two, so do I
need to change the volume ID of both?

 

I haven't waited to see if the backup would complete or checked whether the
backup is even continuing while the VM in saved state.   Maybe I'll get
another chance to observe this evening...

 

Carl

 

From: Andrew S. Baker [mailto:asbz...@gmail.com] 
Sent: Tuesday, November 08, 2011 4:24 PM


To: NT System Admin Issues

Subject: Re: VM spontaneously shuts down to "saved" state under Hyper-V R2

 

Does the backup complete if you don't restart the VM?

 

I'm assuming you saw nothing of interest in the logs of the VM, either.



ASB


http://XeeMe.com/AndrewBaker


Harnessing the Advantages of Technology for the SMB market.

 

On Tue, Nov 8, 2011 at 3:32 PM, Carl Houseman  wrote:

I've got Hyper-V 2008 R2 fully security-patched running at home.  I've done
few if any non-security patches on this server, certainly none recently.

It's running two VMs, both Windows 2003, a DC and an Exchange (2003) server.
Every day @ 11 pm the Hyper-V server kicks off a Windows backup (wbadmin) of
the system state, system partition, and partition with the VHDs.   This
happens while the VMs are running of course.   The backup destination is an
external USB drive that's generally spun down when idle.  These backups have
been working fine for about a year.  The Hyper-V hardware itself was
replaced about a month ago, the VHD's copied over to the new instance and
new VM's created using them, and the backups have been working fine for a
couple weeks, until this past week.

 

So, on two occasions (not every occasion) in the past week, about the time
the backup starts, the VM for the DC simply stops, and shows the state as
"saved".   I can start it up again and everything continues like nothing
happened - the backup completes successfully.   Looking through the Hyper-V
server's event logs shows no errors, nor any other events different from a
backup where the VM doesn't stop.

 

Now that I think about it, about a week or so ago, I installed the latest
version of the integration services into both VMs, and one of those enabled
services is volume shadow backups.

 

So it appears I have two choices of 'things to try'.   Either attempt to
revert to an older version of integration services, or apply all of the
non-security updates I've been avoiding.

 

What would you do?

 

thanks,

Carl

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint 

Re: TS 2008 question

[Dean Cunningham]

Yep, buy the book, it has nearly all you need to know but were afraid to
ask :)
Other way would be via a vmware HA option (or similar)

On Thu, Nov 10, 2011 at 3:07 AM, James Rankin  wrote:

> Just for posterity, it looks like the only MS-recommended way of providing
> resiliency in the session broker role is by using failover clustering.
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: ShoreTel

[Paul Hutchings]

Thanks Matthew, sounds like we need to be mindful of anything we may want to do 
in the future on the licensing side.

When I asked about switches, we may be at cross-purposes, I meant ethernet 
switches as that's one area where we're looking to bring a vendor in - 
obviously anyone decent should work just fine with Shoretel but again, any 
first-hand experiences are useful to know about.

From: Matthew W. Ross [mr...@ephrataschools.org]
Sent: 09 November 2011 6:54 PM
To: NT System Admin Issues
Subject: RE: ShoreTel

> I would be interested in hearing of any licensing gotchas or things to be
> aware of.

One license "gotcha" we just recently experienced: We have a user who uses 
their "Personal" license. This gives the users an extension, mailbox, etc... 
But this user wanted a feature which was only available to the "Workgroup 
Agent" license. (What the user wanted to do was to sign in/out of the workgroup 
remotely, which apparently a "personal" license can't do.) What we found out is 
that we can't upgrade the license, nor can we get a refund. If we choose to do 
this, we just have to purchase the additional license (at over $200).

> Which vendors switches are you using?

Shoretel makes you choose and stick to a vendor. I am unable to purchase 
additional licenses/phones/switches from a different vendor without completely 
transferring my vendor. We are using NCA (http://www.ncanet.com/) and we have 
had "good to excellent" support from them for over 10 years. We briefly looked 
into other vendors in our area.

If your question is more of a "which hardware switches do you use": A mix of 
the Shoretel 120s (IP phone capable or 24 analog lines) and the Shoretel 24As 
(Cheaper, 24 analog extension only switch). Oh, and a Shoretel T1 for our PRI.

> I'm not as involved in the financial side of this, I'm coming at this more
> from the technical side (I currently have zero knowledge of phone systems
> but obvious once you move from a monolithic analogue system to an IP system
> it starts to merge with network/server stuff).

I'm not really a phone guy. My predecessor was a phone guy. He is the one who 
got the school to move to Shoretel, and I thank him for it every time I use it. 
While now there are good, useable alternatives, it's worth looking into other 
solutions. But I have been extremely happy with this product.


--Matt Ross
Ephrata School District


- Original Message -
From: Paul Hutchings
[mailto:paul.hutchi...@mira.co.uk]
To: NT System Admin Issues
[mailto:ntsysadmin@lyris.sunbelt-software.com]
Sent: Wed, 09 Nov 2011
09:51:16 -0800
Subject: RE: ShoreTel


> Thanks Matt that helps and awful lot as it's the nitty gritty that tends to
> get overlooked.
>
> I would be interested in hearing of any licensing gotchas or things to be
> aware of.
>
> Which vendors switches are you using?
>
> I'm not as involved in the financial side of this, I'm coming at this more
> from the technical side (I currently have zero knowledge of phone systems
> but obvious once you move from a monolithic analogue system to an IP system
> it starts to merge with network/server stuff).
>
> Thanks again,
> Paul
> 
> From: Matthew W. Ross [mr...@ephrataschools.org]
> Sent: 09 November 2011 4:48 PM
> To: NT System Admin Issues
> Subject: Re: ShoreTel
>
> Shoretel is the the phone system we're using.
>
> Pros:
>
>  * Very easy to use.
>  * Works great for windows environments.
>  * Has good support for mass deployment of analog phones (which some do not,
> and we use a lot of).
>  * Can be used as your intercom (Using IP phones).
>  * Support has been good for us.
>  * Outlook integration (We don't use this, but it's there.)
>
> Cons:
>
>  * Windows Centric (There is now a web based client which is a big
> improvement in this front).
>  * Serious product lock-in:
>** Their switches will only work with Shoretel.
>** Their IP phones will only work with Shoretel.
>** They license you per extension, and those licenses cannot be
> refunded/transferred.
>** SIP phones do work, for an additional fee.
>  * "Optional" support is not so optional. It is also primarily through your
> vendor, not Shoretel.
>  * Not cheap.
>
> I hope this helps.
>
>
> --Matt Ross
> Ephrata School District
>
>
> - Original Message -
> From: Paul Hutchings
> [mailto:paul.hutchi...@mira.co.uk]
> To: NT System Admin Issues
> [mailto:ntsysadmin@lyris.sunbelt-software.com]
> Sent: Wed, 09 Nov 2011
> 07:14:01 -0800
> Subject: ShoreTel
>
>
> > Anyone here using Shoretel for their phone system?
> >
> > From what we've seen so far we're confident they're a good fit both in
> terms
> > of features and architecture, and (most importantly IMO) the client
> software
> > appears to be pretty good to use.
> >
> > Any tales (on or off list) of how they have performed would be
> appreciated.
> >
> > Thanks,
> > Paul
> >
> > --
> > MIRA Ltd
> >
> > Watling Street, Nune

Re: Quick query on alerting on ESXi

[Jeff Bunting]

You can configure email alerts under the alarms tab in virtual center too.

Jeff

On Wed, Nov 9, 2011 at 10:52 AM, Rankin, James R wrote:

> Excellent, cheers!
>
> Sent from my SR-71 Blackbird
> --
> *From: * Kim Longenbaugh 
> *Date: *Wed, 9 Nov 2011 15:11:03 +
> *To: *NT System Admin Issues
> *ReplyTo: * "NT System Admin Issues" <
> ntsysadmin@lyris.sunbelt-software.com>
> *Subject: *RE: Quick query on alerting on ESXi
>
>  ESXi acts the same as ESX, and the same alerts show up in the Virtual
> Center client.
>
> ** **
>
> *From:* James Rankin [mailto:kz2...@googlemail.com]
> *Sent:* Wednesday, November 09, 2011 8:12 AM
> *To:* NT System Admin Issues
> *Subject:* Quick query on alerting on ESXi
>
> ** **
>
> Never done a lot of work with ESXi - so can anyone tell me whether it
> behaves in the same way as full-fat ESX, as in when a CPU or memory usage
> goes over threshold, does the host/guest get a little yellow or red alert
> on it in the VMWare client that indicates there's an issue? I have a client
> without any form of monitoring solution so I am trying to find some way for
> them to have a proactive view of their server performance, and this would
> hopefully be one of the ways they can achieve that without having to shell
> out any cash (because they have no intention of doing so!)
>
> TIA,
>
>
>
> JRR
>
> --
> "On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into
> the machine wrong figures, will the right answers come out?' I am not able
> rightly to apprehend the kind of confusion of ideas that could provoke such
> a question."
>
> ** IMPORTANT INFORMATION/DISCLAIMER *
>
> This document should be read only by those persons to whom it is
> addressed. If you have received this message it was obviously addressed to
> you and therefore you can read it, even it we didn't mean to send it to
> you. However, if the contents of this email make no sense whatsoever then
> you probably were not the intended recipient, or, alternatively, you are a
> mindless cretin; either way, you should immediately kill yourself and
> destroy your computer (not necessarily in that order). Once you have taken
> this action, please contact us.. no, sorry, you can't use your computer,
> because you just destroyed it, and possibly also committed suicide
> afterwards, but I am starting to digress.. *
>
> *The originator of this email is not liable for the transmission of the
> information contained in this communication. Or are they? Either way it's a
> pretty dull legal query and frankly one I'm not going to dwell on. But
> should you have nothing better to do, please feel free to ruminate on it,
> and please pass on any concrete conclusions should you find them. However,
> if you pass them on via email, be sure to include a disclaimer regarding
> liability for transmission.*
>
> *In the event that the originator did not send this email to you, then
> please return it to us and attach a scanned-in picture of your mother's
> brother's wife wearing nothing but a kangaroo suit, and we will immediately
> refund you exactly half of what you paid for the can of Whiskas you bought
> when you went to Pets At Home yesterday. *
>
> *We take no responsibility for non-receipt of this email because we are
> running Exchange 5.5 and everyone knows how glitchy that can be. In the
> event that you do get this message then please note that we take no
> responsibility for that either. Nor will we accept any liability, tacit or
> implied, for any damage you may or may not incur as a result of receiving,
> or not, as the case may be, from time to time, notwithstanding all
> liabilities implied or otherwise, ummm, hell, where was I...umm, no matter
> what happens, it is NOT, and NEVER WILL BE, OUR FAULT! *
>
> *The comments and opinions expressed herein are my own and NOT those of
> my employer, who, if he knew I was sending emails and surfing the seamier
> side of the Internet, would cut off my manhood and feed it to me for
> afternoon tea. *
>
> ** **
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or sen

RE: SIEM solutions

[Michael B. Smith]

Aye aye. I misunderstood



Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com

From: David Lum [mailto:david@nwea.org]
Sent: Wednesday, November 09, 2011 1:55 PM
To: NT System Admin Issues
Subject: RE: SIEM solutions

For me, it's simply log aggregation and alerting. The bigger goal is a stuff 
way out of my scope as it's being driven from our product side (I am 
employee-facing, not product facing). I've been included on this project just 
for my technical input and am much more a passenger than a driver on this 
project.

The vendor list I sent out was narrowed down from a bigger selection. I was 
simply looking for anyone who has deployed or evaluated SIEM products from the 
listed vendors is all.

Dave

From: Michael B. Smith 
[mailto:mich...@smithcons.com]
Sent: Wednesday, November 09, 2011 10:44 AM
To: NT System Admin Issues
Subject: RE: SIEM solutions

What is the goal?

On the low end, you are leaving out NetWrix, in the middle you are leaving out 
ConfigMgr, and on the upper end you are leaving out various Quest solutions.

But it all depends on what you are trying to do.

Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com

From: David Lum [mailto:david@nwea.org]
Sent: Wednesday, November 09, 2011 1:35 PM
To: NT System Admin Issues
Subject: SIEM solutions

We are looking at some SIEM (Security Information and Event Management) 
solutions and are looking at products from the following vendors - does anyone 
here have a SIEM solution or experience and have anything to say about any of 
these?

ArcSight
RSA
LogRhythm
NitroSecurity
netForensics
elQnetworks
Prism Microsystems
Virtela

David Lum
Systems Engineer // NWEATM
Office 503.548.5229 // Cell (voice/text) 503.267.9764


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: SIEM solutions

[James Rankin]

System Center Operations Manager with Audit Collection Services can do all
this and more, if I am getting the gist of your requirements correctly

On 9 November 2011 18:54, David Lum  wrote:

> For me, it’s simply log aggregation and alerting. The bigger goal is a
> stuff way out of my scope as it’s being driven from our product side (I am
> employee-facing, not product facing). I’ve been included on this project
> just for my technical input and am much more a passenger than a driver on
> this project.
>
> ** **
>
> The vendor list I sent out was narrowed down from a bigger selection. I
> was simply looking for anyone who has deployed or evaluated SIEM products
> from the listed vendors is all.
>
> ** **
>
> Dave
>
> ** **
>
> *From:* Michael B. Smith [mailto:mich...@smithcons.com]
> *Sent:* Wednesday, November 09, 2011 10:44 AM
>
> *To:* NT System Admin Issues
> *Subject:* RE: SIEM solutions
>
> ** **
>
> What is the goal?
>
> ** **
>
> On the low end, you are leaving out NetWrix, in the middle you are leaving
> out ConfigMgr, and on the upper end you are leaving out various Quest
> solutions. 
>
> ** **
>
> But it all depends on what you are trying to do.
>
> ** **
>
> Regards,
>
> ** **
>
> Michael B. Smith
>
> Consultant and Exchange MVP
>
> http://TheEssentialExchange.com
>
> ** **
>
> *From:* David Lum [mailto:david@nwea.org]
> *Sent:* Wednesday, November 09, 2011 1:35 PM
> *To:* NT System Admin Issues
> *Subject:* SIEM solutions
>
> ** **
>
> We are looking at some SIEM (Security Information and Event Management)
> solutions and are looking at products from the following vendors – does
> anyone here have a SIEM solution or experience and have anything to say
> about any of these?
>
> ArcSight
> RSA
> LogRhythm
>
> NitroSecurity
>
> netForensics
>
> elQnetworks
>
> Prism Microsystems
>
> Virtela
>
> ** **
>
> *David Lum*
> Systems Engineer // NWEATM
> Office 503.548.5229 //* *Cell (voice/text) 503.267.9764
>
> ** **
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>



-- 
"On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into
the machine wrong figures, will the right answers come out?' I am not able
rightly to apprehend the kind of confusion of ideas that could provoke such
a question."

** IMPORTANT INFORMATION/DISCLAIMER *

This document should be read only by those persons to whom it is addressed.
If you have received this message it was obviously addressed to you and
therefore you can read it, even it we didn't mean to send it to you.
However, if the contents of this email make no sense whatsoever then you
probably were not the intended recipient, or, alternatively, you are a
mindless cretin; either way, you should immediately kill yourself and
destroy your computer (not necessarily in that order). Once you have taken
this action, please contact us.. no, sorry, you can't use your computer,
because you just destroyed it, and possibly also committed suicide
afterwards, but I am starting to digress.. *

* The originator of this email is not liable for the transmission of the
information contained in this communication. Or are they? Either way it's a
pretty dull legal query and frankly one I'm not going to dwell on. But
should you have nothing better to do, please feel free to ruminate on it,
and please pass on any concrete conclusions should you find them. However,
if you pass them on via email, be sure to include a disclaimer regarding
liability for transmission.
*

* In the event that the originator did not send this email to you, then
please return it to us and attach a scanned-in picture of your mother's
brother's wife wearing nothing but a kangaroo suit, and we will immediately
refund you exactly half of what you paid for the can of Whiskas you bought
when you went to Pets** ** At Home yesterday. *

* We take no responsibility for non-receipt of this email because we are
running Exchange 5.5 and everyone knows how glitchy that can be. 

RE: SIEM solutions

[David Lum]

For me, it's simply log aggregation and alerting. The bigger goal is a stuff 
way out of my scope as it's being driven from our product side (I am 
employee-facing, not product facing). I've been included on this project just 
for my technical input and am much more a passenger than a driver on this 
project.

The vendor list I sent out was narrowed down from a bigger selection. I was 
simply looking for anyone who has deployed or evaluated SIEM products from the 
listed vendors is all.

Dave

From: Michael B. Smith [mailto:mich...@smithcons.com]
Sent: Wednesday, November 09, 2011 10:44 AM
To: NT System Admin Issues
Subject: RE: SIEM solutions

What is the goal?

On the low end, you are leaving out NetWrix, in the middle you are leaving out 
ConfigMgr, and on the upper end you are leaving out various Quest solutions.

But it all depends on what you are trying to do.

Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com

From: David Lum [mailto:david@nwea.org]
Sent: Wednesday, November 09, 2011 1:35 PM
To: NT System Admin Issues
Subject: SIEM solutions

We are looking at some SIEM (Security Information and Event Management) 
solutions and are looking at products from the following vendors - does anyone 
here have a SIEM solution or experience and have anything to say about any of 
these?

ArcSight
RSA
LogRhythm
NitroSecurity
netForensics
elQnetworks
Prism Microsystems
Virtela

David Lum
Systems Engineer // NWEATM
Office 503.548.5229 // Cell (voice/text) 503.267.9764


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: ShoreTel

[Matthew W. Ross]

> I would be interested in hearing of any licensing gotchas or things to be
> aware of.

One license "gotcha" we just recently experienced: We have a user who uses 
their "Personal" license. This gives the users an extension, mailbox, etc... 
But this user wanted a feature which was only available to the "Workgroup 
Agent" license. (What the user wanted to do was to sign in/out of the workgroup 
remotely, which apparently a "personal" license can't do.) What we found out is 
that we can't upgrade the license, nor can we get a refund. If we choose to do 
this, we just have to purchase the additional license (at over $200).

> Which vendors switches are you using?

Shoretel makes you choose and stick to a vendor. I am unable to purchase 
additional licenses/phones/switches from a different vendor without completely 
transferring my vendor. We are using NCA (http://www.ncanet.com/) and we have 
had "good to excellent" support from them for over 10 years. We briefly looked 
into other vendors in our area.

If your question is more of a "which hardware switches do you use": A mix of 
the Shoretel 120s (IP phone capable or 24 analog lines) and the Shoretel 24As 
(Cheaper, 24 analog extension only switch). Oh, and a Shoretel T1 for our PRI.

> I'm not as involved in the financial side of this, I'm coming at this more
> from the technical side (I currently have zero knowledge of phone systems
> but obvious once you move from a monolithic analogue system to an IP system
> it starts to merge with network/server stuff).

I'm not really a phone guy. My predecessor was a phone guy. He is the one who 
got the school to move to Shoretel, and I thank him for it every time I use it. 
While now there are good, useable alternatives, it's worth looking into other 
solutions. But I have been extremely happy with this product.


--Matt Ross
Ephrata School District


- Original Message -
From: Paul Hutchings
[mailto:paul.hutchi...@mira.co.uk]
To: NT System Admin Issues
[mailto:ntsysadmin@lyris.sunbelt-software.com]
Sent: Wed, 09 Nov 2011
09:51:16 -0800
Subject: RE: ShoreTel


> Thanks Matt that helps and awful lot as it's the nitty gritty that tends to
> get overlooked.
> 
> I would be interested in hearing of any licensing gotchas or things to be
> aware of.
> 
> Which vendors switches are you using?
> 
> I'm not as involved in the financial side of this, I'm coming at this more
> from the technical side (I currently have zero knowledge of phone systems
> but obvious once you move from a monolithic analogue system to an IP system
> it starts to merge with network/server stuff).
> 
> Thanks again,
> Paul
> 
> From: Matthew W. Ross [mr...@ephrataschools.org]
> Sent: 09 November 2011 4:48 PM
> To: NT System Admin Issues
> Subject: Re: ShoreTel
> 
> Shoretel is the the phone system we're using.
> 
> Pros:
> 
>  * Very easy to use.
>  * Works great for windows environments.
>  * Has good support for mass deployment of analog phones (which some do not,
> and we use a lot of).
>  * Can be used as your intercom (Using IP phones).
>  * Support has been good for us.
>  * Outlook integration (We don't use this, but it's there.)
> 
> Cons:
> 
>  * Windows Centric (There is now a web based client which is a big
> improvement in this front).
>  * Serious product lock-in:
>** Their switches will only work with Shoretel.
>** Their IP phones will only work with Shoretel.
>** They license you per extension, and those licenses cannot be
> refunded/transferred.
>** SIP phones do work, for an additional fee.
>  * "Optional" support is not so optional. It is also primarily through your
> vendor, not Shoretel.
>  * Not cheap.
> 
> I hope this helps.
> 
> 
> --Matt Ross
> Ephrata School District
> 
> 
> - Original Message -
> From: Paul Hutchings
> [mailto:paul.hutchi...@mira.co.uk]
> To: NT System Admin Issues
> [mailto:ntsysadmin@lyris.sunbelt-software.com]
> Sent: Wed, 09 Nov 2011
> 07:14:01 -0800
> Subject: ShoreTel
> 
> 
> > Anyone here using Shoretel for their phone system?
> >
> > From what we've seen so far we're confident they're a good fit both in
> terms
> > of features and architecture, and (most importantly IMO) the client
> software
> > appears to be pretty good to use.
> >
> > Any tales (on or off list) of how they have performed would be
> appreciated.
> >
> > Thanks,
> > Paul
> >
> > --
> > MIRA Ltd
> >
> > Watling Street, Nuneaton, Warwickshire, CV10 0TU, England
> > Registered in England and Wales No. 402570
> > VAT Registration  GB 100 1464 84
> >
> > The contents of this e-mail are confidential and are solely for the use of
> > the intended recipient.  If you receive this e-mail in error, please
> delete
> > it and notify us either by e-mail, telephone or fax.  You should not copy,
> > forward or otherwise disclose the content of the e-mail as this is
> > prohibited.
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > ~ 

RE: SIEM solutions

[Michael B. Smith]

What is the goal?

On the low end, you are leaving out NetWrix, in the middle you are leaving out 
ConfigMgr, and on the upper end you are leaving out various Quest solutions.

But it all depends on what you are trying to do.

Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com

From: David Lum [mailto:david@nwea.org]
Sent: Wednesday, November 09, 2011 1:35 PM
To: NT System Admin Issues
Subject: SIEM solutions

We are looking at some SIEM (Security Information and Event Management) 
solutions and are looking at products from the following vendors - does anyone 
here have a SIEM solution or experience and have anything to say about any of 
these?

ArcSight
RSA
LogRhythm
NitroSecurity
netForensics
elQnetworks
Prism Microsystems
Virtela

David Lum
Systems Engineer // NWEATM
Office 503.548.5229 // Cell (voice/text) 503.267.9764


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: SIEM solutions

[Kurt Buff]

RSA? Given their recent history, I'd be asking them some very tough
questions, like 'Was your own product protecting you when you were
hacked?' and 'If not, why not, and if it was, well, WTF, over?'

On Wed, Nov 9, 2011 at 10:34, David Lum  wrote:
> We are looking at some SIEM (Security Information and Event Management)
> solutions and are looking at products from the following vendors – does
> anyone here have a SIEM solution or experience and have anything to say
> about any of these?
>
> ArcSight
> RSA
> LogRhythm
>
> NitroSecurity
>
> netForensics
>
> elQnetworks
>
> Prism Microsystems
>
> Virtela
>
>
>
> David Lum
> Systems Engineer // NWEATM
> Office 503.548.5229 // Cell (voice/text) 503.267.9764
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: iPhone user can still send emails after being disabled in AD

[Steven Peck]

That might cause the guy with a wiped iPhone to rant on the interwebs :)

On Wed, Nov 9, 2011 at 8:40 AM, S Powell  wrote:

> check EMC, you may not manage it, however you should still see it in
> there; and be able to disable its connection, or even send a remote wipe to
> the device.
>
>
> -
> Oh, by the way, which one's Pink?
>
>
> On Wed, Nov 9, 2011 at 08:34, Ben N  wrote:
>
>> we don't do device management (yet). OWA/EAS is enabled on all accounts
>> by default. If they have an account, they can configure EAS on their phone.
>> :)
>>
>> -BenN
>>
>>
>> On Wed, Nov 9, 2011 at 8:06 AM, S Powell  wrote:
>>
>>> did you remove the device from their profile?
>>>
>>> manage mobile device in EMC?
>>>
>>>
>>> -
>>> Oh, by the way, which one's Pink?
>>>
>>>
>>> On Wed, Nov 9, 2011 at 05:27, Kennedy, Jim >> > wrote:
>>>
 Reset your IIS services. I have no idea why it is not honoring the 15
 cache setting but it seems like it doesn’t and based upon how often I seem
 to see this from different folks it doesn’t honor it for most people.**
 **

 ** **

 *From:* Ben N [mailto:bennordlan...@gmail.com]
 *Sent:* Tuesday, November 08, 2011 6:33 PM

 *To:* NT System Admin Issues
 *Subject:* iPhone user can still send emails after being disabled in AD
 

 ** **

 You guys have this issue ever come up? I think this user was disabled
 in AD at about 4pm, and the last email we got from the user's phone was
 around 8am the next morning. iPhone setup with EAS and we have Exchange
 2007.

 ** **

 Could it be due to user token caching like from this forum post?


 http://social.technet.microsoft.com/Forums/en-US/exchangesvrclients/thread/3da53460-ef76-4f01-94c9-f7b96fdaf99d
 

 ** **

 -BenN

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~   ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~   ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

>>>
>>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>>> ~   ~
>>>
>>> ---
>>> To manage subscriptions click here:
>>> http://lyris.sunbelt-software.com/read/my_forums/
>>> or send an email to listmana...@lyris.sunbeltsoftware.com
>>> with the body: unsubscribe ntsysadmin
>>>
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: ShoreTel

[Michael B. Smith]

Compared to the number of 32-bit Outlook add-ins available, the number of 
64-bit Outlook add-ins is prolly in the 5% range.

32-bit add-ins are not compatible with 64-bit add-ins. A very low-level 
Applications Programming Interface is different, necessitating that 64-bit 
add-ins be specially generated and tested. Lots of software producers haven't 
yet deemed that effort worthwhile.

Since 32-bit compatibility is going to be around for awhile (Win8 will have at 
least two 32-bit versions - x86 and ARM), that number prolly won't jump quickly.

Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com


-Original Message-
From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk] 
Sent: Wednesday, November 09, 2011 12:53 PM
To: NT System Admin Issues
Subject: RE: ShoreTel

Thanks Kurt, appreciate that.  Tbh I don't even know why I have 64bit Office 
installed, I think it falls into the "seemed a good idea at the time" category 
so I'm not going to stress too much about that.

I would be interested to know if ShoreTel know of the issue and acknowledge it 
as that's obviously a pretty good real-world example of a bug/compatibility 
issue.

Thanks,
Paul

From: Kurt Buff [kurt.b...@gmail.com]
Sent: 09 November 2011 5:29 PM
To: NT System Admin Issues
Subject: Re: ShoreTel

We're deploying Win7 x64, with no issues. However, using Office 64bit
(which requires Win7 x64) with the Shoretel Outlook integration turned
on screws Outlook badly. Switching to Office 32bit on Win7 x64 solved
the problems.

>From what we can tell, the 64bit version of Office doesn't buy us
enough to worry about - nobody around here works on spreadsheets,
etc., that are larger than 2gb, so the 32bit version of Office is not
a problem.

I expect that when Shoretel releases their 64bit client that this
issue will be resolved, but we'll want to test it before we roll it
out.

Kurt

On Wed, Nov 9, 2011 at 07:38, Paul Hutchings  wrote:
> Can I get a bit more info on that please Kurt?
>
> We do have many 64bit machines, but afaik only 1 64bit Office 2010 install - 
> which is mine.
>
> Paul
>
> -Original Message-
> From: Kurt Buff [mailto:kurt.b...@gmail.com]
> Sent: 09 November 2011 15:33
> To: NT System Admin Issues
> Subject: Re: ShoreTel
>
> Works well for us - we have about 230 staff in HQ where it's installed. The 
> client is OK, but you need to be aware of a toxic interaction with 64-bit MS 
> Office, until they release their 64-bit client. We've reverted to 32-bit 
> Office because of that.
>
> On Wed, Nov 9, 2011 at 07:14, Paul Hutchings  
> wrote:
>> Anyone here using Shoretel for their phone system?
>>
>>
>>
>> From what we've seen so far we're confident they're a good fit both in
>> terms of features and architecture, and (most importantly IMO) the
>> client software appears to be pretty good to use.
>>
>>
>>
>> Any tales (on or off list) of how they have performed would be appreciated.
>>
>>
>>
>> Thanks,
>>
>> Paul
>>
>> 
>> MIRA Ltd
>> Watling Street, Nuneaton, Warwickshire, CV10 0TU, England Registered
>> in England and Wales No. 402570 VAT Registration  GB 100 1464 84 The
>> contents of this e-mail are confidential and are solely for the use of
>> the intended recipient.  If you receive this e-mail in error, please
>> delete it and notify us either by e-mail, telephone or fax.  You
>> should not copy, forward or otherwise disclose the content of the
>> e-mail as this is prohibited.
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>>   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
>   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ 

RE: ShoreTel

[Paul Hutchings]

Thanks Kurt, appreciate that.  Tbh I don't even know why I have 64bit Office 
installed, I think it falls into the "seemed a good idea at the time" category 
so I'm not going to stress too much about that.

I would be interested to know if ShoreTel know of the issue and acknowledge it 
as that's obviously a pretty good real-world example of a bug/compatibility 
issue.

Thanks,
Paul

From: Kurt Buff [kurt.b...@gmail.com]
Sent: 09 November 2011 5:29 PM
To: NT System Admin Issues
Subject: Re: ShoreTel

We're deploying Win7 x64, with no issues. However, using Office 64bit
(which requires Win7 x64) with the Shoretel Outlook integration turned
on screws Outlook badly. Switching to Office 32bit on Win7 x64 solved
the problems.

>From what we can tell, the 64bit version of Office doesn't buy us
enough to worry about - nobody around here works on spreadsheets,
etc., that are larger than 2gb, so the 32bit version of Office is not
a problem.

I expect that when Shoretel releases their 64bit client that this
issue will be resolved, but we'll want to test it before we roll it
out.

Kurt

On Wed, Nov 9, 2011 at 07:38, Paul Hutchings  wrote:
> Can I get a bit more info on that please Kurt?
>
> We do have many 64bit machines, but afaik only 1 64bit Office 2010 install - 
> which is mine.
>
> Paul
>
> -Original Message-
> From: Kurt Buff [mailto:kurt.b...@gmail.com]
> Sent: 09 November 2011 15:33
> To: NT System Admin Issues
> Subject: Re: ShoreTel
>
> Works well for us - we have about 230 staff in HQ where it's installed. The 
> client is OK, but you need to be aware of a toxic interaction with 64-bit MS 
> Office, until they release their 64-bit client. We've reverted to 32-bit 
> Office because of that.
>
> On Wed, Nov 9, 2011 at 07:14, Paul Hutchings  
> wrote:
>> Anyone here using Shoretel for their phone system?
>>
>>
>>
>> From what we’ve seen so far we’re confident they’re a good fit both in
>> terms of features and architecture, and (most importantly IMO) the
>> client software appears to be pretty good to use.
>>
>>
>>
>> Any tales (on or off list) of how they have performed would be appreciated.
>>
>>
>>
>> Thanks,
>>
>> Paul
>>
>> 
>> MIRA Ltd
>> Watling Street, Nuneaton, Warwickshire, CV10 0TU, England Registered
>> in England and Wales No. 402570 VAT Registration  GB 100 1464 84 The
>> contents of this e-mail are confidential and are solely for the use of
>> the intended recipient.  If you receive this e-mail in error, please
>> delete it and notify us either by e-mail, telephone or fax.  You
>> should not copy, forward or otherwise disclose the content of the
>> e-mail as this is prohibited.
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>>   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
>   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: ShoreTel

[Paul Hutchings]

Thanks Matt that helps and awful lot as it's the nitty gritty that tends to get 
overlooked.

I would be interested in hearing of any licensing gotchas or things to be aware 
of.

Which vendors switches are you using?

I'm not as involved in the financial side of this, I'm coming at this more from 
the technical side (I currently have zero knowledge of phone systems but 
obvious once you move from a monolithic analogue system to an IP system it 
starts to merge with network/server stuff).

Thanks again,
Paul

From: Matthew W. Ross [mr...@ephrataschools.org]
Sent: 09 November 2011 4:48 PM
To: NT System Admin Issues
Subject: Re: ShoreTel

Shoretel is the the phone system we're using.

Pros:

 * Very easy to use.
 * Works great for windows environments.
 * Has good support for mass deployment of analog phones (which some do not, 
and we use a lot of).
 * Can be used as your intercom (Using IP phones).
 * Support has been good for us.
 * Outlook integration (We don't use this, but it's there.)

Cons:

 * Windows Centric (There is now a web based client which is a big improvement 
in this front).
 * Serious product lock-in:
   ** Their switches will only work with Shoretel.
   ** Their IP phones will only work with Shoretel.
   ** They license you per extension, and those licenses cannot be 
refunded/transferred.
   ** SIP phones do work, for an additional fee.
 * "Optional" support is not so optional. It is also primarily through your 
vendor, not Shoretel.
 * Not cheap.

I hope this helps.


--Matt Ross
Ephrata School District


- Original Message -
From: Paul Hutchings
[mailto:paul.hutchi...@mira.co.uk]
To: NT System Admin Issues
[mailto:ntsysadmin@lyris.sunbelt-software.com]
Sent: Wed, 09 Nov 2011
07:14:01 -0800
Subject: ShoreTel


> Anyone here using Shoretel for their phone system?
>
> From what we've seen so far we're confident they're a good fit both in terms
> of features and architecture, and (most importantly IMO) the client software
> appears to be pretty good to use.
>
> Any tales (on or off list) of how they have performed would be appreciated.
>
> Thanks,
> Paul
>
> --
> MIRA Ltd
>
> Watling Street, Nuneaton, Warwickshire, CV10 0TU, England
> Registered in England and Wales No. 402570
> VAT Registration  GB 100 1464 84
>
> The contents of this e-mail are confidential and are solely for the use of
> the intended recipient.  If you receive this e-mail in error, please delete
> it and notify us either by e-mail, telephone or fax.  You should not copy,
> forward or otherwise disclose the content of the e-mail as this is
> prohibited.
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: ShoreTel

[Kurt Buff]

We're deploying Win7 x64, with no issues. However, using Office 64bit
(which requires Win7 x64) with the Shoretel Outlook integration turned
on screws Outlook badly. Switching to Office 32bit on Win7 x64 solved
the problems.

>From what we can tell, the 64bit version of Office doesn't buy us
enough to worry about - nobody around here works on spreadsheets,
etc., that are larger than 2gb, so the 32bit version of Office is not
a problem.

I expect that when Shoretel releases their 64bit client that this
issue will be resolved, but we'll want to test it before we roll it
out.

Kurt

On Wed, Nov 9, 2011 at 07:38, Paul Hutchings  wrote:
> Can I get a bit more info on that please Kurt?
>
> We do have many 64bit machines, but afaik only 1 64bit Office 2010 install - 
> which is mine.
>
> Paul
>
> -Original Message-
> From: Kurt Buff [mailto:kurt.b...@gmail.com]
> Sent: 09 November 2011 15:33
> To: NT System Admin Issues
> Subject: Re: ShoreTel
>
> Works well for us - we have about 230 staff in HQ where it's installed. The 
> client is OK, but you need to be aware of a toxic interaction with 64-bit MS 
> Office, until they release their 64-bit client. We've reverted to 32-bit 
> Office because of that.
>
> On Wed, Nov 9, 2011 at 07:14, Paul Hutchings  
> wrote:
>> Anyone here using Shoretel for their phone system?
>>
>>
>>
>> From what we’ve seen so far we’re confident they’re a good fit both in
>> terms of features and architecture, and (most importantly IMO) the
>> client software appears to be pretty good to use.
>>
>>
>>
>> Any tales (on or off list) of how they have performed would be appreciated.
>>
>>
>>
>> Thanks,
>>
>> Paul
>>
>> 
>> MIRA Ltd
>> Watling Street, Nuneaton, Warwickshire, CV10 0TU, England Registered
>> in England and Wales No. 402570 VAT Registration  GB 100 1464 84 The
>> contents of this e-mail are confidential and are solely for the use of
>> the intended recipient.  If you receive this e-mail in error, please
>> delete it and notify us either by e-mail, telephone or fax.  You
>> should not copy, forward or otherwise disclose the content of the
>> e-mail as this is prohibited.
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>>   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
>   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: ShoreTel

[Brian Desmond]

I've seen them at quite a few customers and ranked well in telephony 
assessments.

If you're replacing your PBX and you're a Windows shop, I'd strongly suggest 
looking at Lync.

Thanks,
Brian Desmond
br...@briandesmond.com

w - 312.625.1438 | c   - 312.731.3132

From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk]
Sent: Wednesday, November 09, 2011 9:14 AM
To: NT System Admin Issues
Subject: ShoreTel

Anyone here using Shoretel for their phone system?

>From what we've seen so far we're confident they're a good fit both in terms 
>of features and architecture, and (most importantly IMO) the client software 
>appears to be pretty good to use.

Any tales (on or off list) of how they have performed would be appreciated.

Thanks,
Paul

MIRA Ltd

Watling Street, Nuneaton, Warwickshire, CV10 0TU, England
Registered in England and Wales No. 402570
VAT Registration  GB 100 1464 84

The contents of this e-mail are confidential and are solely for the use of the 
intended recipient.  If you receive this e-mail in error, please delete it and 
notify us either by e-mail, telephone or fax.  You should not copy, forward or 
otherwise disclose the content of the e-mail as this is prohibited.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: ShoreTel

[Matthew W. Ross]

Shoretel is the the phone system we're using.

Pros:

 * Very easy to use.
 * Works great for windows environments.
 * Has good support for mass deployment of analog phones (which some do not, 
and we use a lot of).
 * Can be used as your intercom (Using IP phones).
 * Support has been good for us.
 * Outlook integration (We don't use this, but it's there.)

Cons:

 * Windows Centric (There is now a web based client which is a big improvement 
in this front).
 * Serious product lock-in:
   ** Their switches will only work with Shoretel.
   ** Their IP phones will only work with Shoretel.
   ** They license you per extension, and those licenses cannot be 
refunded/transferred.
   ** SIP phones do work, for an additional fee.
 * "Optional" support is not so optional. It is also primarily through your 
vendor, not Shoretel.
 * Not cheap.

I hope this helps.


--Matt Ross
Ephrata School District


- Original Message -
From: Paul Hutchings
[mailto:paul.hutchi...@mira.co.uk]
To: NT System Admin Issues
[mailto:ntsysadmin@lyris.sunbelt-software.com]
Sent: Wed, 09 Nov 2011
07:14:01 -0800
Subject: ShoreTel


> Anyone here using Shoretel for their phone system?
> 
> From what we've seen so far we're confident they're a good fit both in terms
> of features and architecture, and (most importantly IMO) the client software
> appears to be pretty good to use.
> 
> Any tales (on or off list) of how they have performed would be appreciated.
> 
> Thanks,
> Paul
> 
> --
> MIRA Ltd
> 
> Watling Street, Nuneaton, Warwickshire, CV10 0TU, England
> Registered in England and Wales No. 402570
> VAT Registration  GB 100 1464 84
> 
> The contents of this e-mail are confidential and are solely for the use of
> the intended recipient.  If you receive this e-mail in error, please delete
> it and notify us either by e-mail, telephone or fax.  You should not copy,
> forward or otherwise disclose the content of the e-mail as this is
> prohibited.
> 
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
> 
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: iPhone user can still send emails after being disabled in AD

[S Powell]

check EMC, you may not manage it, however you should still see it in there;
and be able to disable its connection, or even send a remote wipe to the
device.


-
Oh, by the way, which one's Pink?


On Wed, Nov 9, 2011 at 08:34, Ben N  wrote:

> we don't do device management (yet). OWA/EAS is enabled on all accounts by
> default. If they have an account, they can configure EAS on their phone. :)
>
> -BenN
>
>
> On Wed, Nov 9, 2011 at 8:06 AM, S Powell  wrote:
>
>> did you remove the device from their profile?
>>
>> manage mobile device in EMC?
>>
>>
>> -
>> Oh, by the way, which one's Pink?
>>
>>
>> On Wed, Nov 9, 2011 at 05:27, Kennedy, Jim 
>> wrote:
>>
>>> Reset your IIS services. I have no idea why it is not honoring the 15
>>> cache setting but it seems like it doesn’t and based upon how often I seem
>>> to see this from different folks it doesn’t honor it for most people.***
>>> *
>>>
>>> ** **
>>>
>>> *From:* Ben N [mailto:bennordlan...@gmail.com]
>>> *Sent:* Tuesday, November 08, 2011 6:33 PM
>>>
>>> *To:* NT System Admin Issues
>>> *Subject:* iPhone user can still send emails after being disabled in AD*
>>> ***
>>>
>>> ** **
>>>
>>> You guys have this issue ever come up? I think this user was disabled in
>>> AD at about 4pm, and the last email we got from the user's phone was around
>>> 8am the next morning. iPhone setup with EAS and we have Exchange 2007.**
>>> **
>>>
>>> ** **
>>>
>>> Could it be due to user token caching like from this forum post?
>>>
>>>
>>> http://social.technet.microsoft.com/Forums/en-US/exchangesvrclients/thread/3da53460-ef76-4f01-94c9-f7b96fdaf99d
>>> 
>>>
>>> ** **
>>>
>>> -BenN
>>>
>>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>>> ~   ~
>>>
>>> ---
>>> To manage subscriptions click here:
>>> http://lyris.sunbelt-software.com/read/my_forums/
>>> or send an email to listmana...@lyris.sunbeltsoftware.com
>>> with the body: unsubscribe ntsysadmin
>>>
>>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>>> ~   ~
>>>
>>> ---
>>> To manage subscriptions click here:
>>> http://lyris.sunbelt-software.com/read/my_forums/
>>> or send an email to listmana...@lyris.sunbeltsoftware.com
>>> with the body: unsubscribe ntsysadmin
>>>
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: iPhone user can still send emails after being disabled in AD

[Ben N]

we don't do device management (yet). OWA/EAS is enabled on all accounts by
default. If they have an account, they can configure EAS on their phone. :)

-BenN

On Wed, Nov 9, 2011 at 8:06 AM, S Powell  wrote:

> did you remove the device from their profile?
>
> manage mobile device in EMC?
>
>
> -
> Oh, by the way, which one's Pink?
>
>
> On Wed, Nov 9, 2011 at 05:27, Kennedy, Jim 
> wrote:
>
>> Reset your IIS services. I have no idea why it is not honoring the 15
>> cache setting but it seems like it doesn’t and based upon how often I seem
>> to see this from different folks it doesn’t honor it for most people.
>>
>> ** **
>>
>> *From:* Ben N [mailto:bennordlan...@gmail.com]
>> *Sent:* Tuesday, November 08, 2011 6:33 PM
>>
>> *To:* NT System Admin Issues
>> *Subject:* iPhone user can still send emails after being disabled in AD**
>> **
>>
>> ** **
>>
>> You guys have this issue ever come up? I think this user was disabled in
>> AD at about 4pm, and the last email we got from the user's phone was around
>> 8am the next morning. iPhone setup with EAS and we have Exchange 2007.***
>> *
>>
>> ** **
>>
>> Could it be due to user token caching like from this forum post?
>>
>>
>> http://social.technet.microsoft.com/Forums/en-US/exchangesvrclients/thread/3da53460-ef76-4f01-94c9-f7b96fdaf99d
>> 
>>
>> ** **
>>
>> -BenN
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: ShoreTel

[Michael White]

Works much better for us since they added the ability to add pauses
when dialing.

On Wed, Nov 9, 2011 at 7:14 AM, Paul Hutchings
 wrote:
> Anyone here using Shoretel for their phone system?
>
>
>
> From what we’ve seen so far we’re confident they’re a good fit both in terms
> of features and architecture, and (most importantly IMO) the client software
> appears to be pretty good to use.
>
>
>
> Any tales (on or off list) of how they have performed would be appreciated.
>
>
>
> Thanks,
>
> Paul
>
> 
> MIRA Ltd
> Watling Street, Nuneaton, Warwickshire, CV10 0TU, England
> Registered in England and Wales No. 402570
> VAT Registration  GB 100 1464 84
> The contents of this e-mail are confidential and are solely for the use of
> the intended recipient.  If you receive this e-mail in error, please delete
> it and notify us either by e-mail, telephone or fax.  You should not copy,
> forward or otherwise disclose the content of the e-mail as this is
> prohibited.
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin



-- 
--
Michael S. White
mswhite...@gmail.com

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: iPhone user can still send emails after being disabled in AD

[S Powell]

did you remove the device from their profile?

manage mobile device in EMC?


-
Oh, by the way, which one's Pink?


On Wed, Nov 9, 2011 at 05:27, Kennedy, Jim wrote:

> Reset your IIS services. I have no idea why it is not honoring the 15
> cache setting but it seems like it doesn’t and based upon how often I seem
> to see this from different folks it doesn’t honor it for most people.
>
> ** **
>
> *From:* Ben N [mailto:bennordlan...@gmail.com]
> *Sent:* Tuesday, November 08, 2011 6:33 PM
> *To:* NT System Admin Issues
> *Subject:* iPhone user can still send emails after being disabled in AD***
> *
>
> ** **
>
> You guys have this issue ever come up? I think this user was disabled in
> AD at about 4pm, and the last email we got from the user's phone was around
> 8am the next morning. iPhone setup with EAS and we have Exchange 2007.
>
> ** **
>
> Could it be due to user token caching like from this forum post?
>
>
> http://social.technet.microsoft.com/Forums/en-US/exchangesvrclients/thread/3da53460-ef76-4f01-94c9-f7b96fdaf99d
> 
>
> ** **
>
> -BenN
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: iPhone user can still send emails after being disabled in AD

[Kurt Buff]

When we terminate an employee, we archive their mailbox with ExMerge,
remove the mailbox from the account and assign their SMTP address to
their direct manager/supervisor, in addition to disabling their
account.

I'll bet that would eliminate this problem.

Kurt

On Tue, Nov 8, 2011 at 21:52, Ben N  wrote:
> AD replication is set for 30 minutes since the DC we would have disabled the
> account is at a different site than the DC local to exchange. We've ruled
> out people enabling her account that had access. We checked msg trackign log
> and it shows delivery right at the time it was in her sent items.
> it just boggles the mind, wish we had our DCs logging archived and set more
> granular to see if that gives any clues, but they already overlapped.
> -BenN
>
> On Tue, Nov 8, 2011 at 7:40 PM, Michael B. Smith 
> wrote:
>>
>> Yeah, it appears to be a web.config file change now (2008 / 2008 R2); but
>> as far as I can see – it should still default to 15 minutes. Dunno why they
>> would see 8+ hours.
>>
>>
>>
>> Regards,
>>
>>
>>
>> Michael B. Smith
>>
>> Consultant and Exchange MVP
>>
>> http://TheEssentialExchange.com
>>
>>
>>
>> From: Brian Desmond [mailto:br...@briandesmond.com]
>> Sent: Tuesday, November 08, 2011 9:40 PM
>>
>> To: NT System Admin Issues
>> Subject: RE: iPhone user can still send emails after being disabled in AD
>>
>>
>>
>> There used to be a reg hack to control this too on the IIS side.
>>
>>
>>
>> Thanks,
>>
>> Brian Desmond
>>
>> br...@briandesmond.com
>>
>>
>>
>> w – 312.625.1438 | c   – 312.731.3132
>>
>>
>>
>> From: Michael B. Smith [mailto:mich...@smithcons.com]
>> Sent: Tuesday, November 08, 2011 6:02 PM
>> To: NT System Admin Issues
>> Subject: RE: iPhone user can still send emails after being disabled in AD
>>
>>
>>
>> Tst it.
>>
>>
>>
>> Then learn to recycle the appPool.
>>
>>
>>
>> Regards,
>>
>>
>>
>> Michael B. Smith
>>
>> Consultant and Exchange MVP
>>
>> http://TheEssentialExchange.com
>>
>>
>>
>> From: Ben N [mailto:bennordlan...@gmail.com]
>> Sent: Tuesday, November 08, 2011 6:55 PM
>> To: NT System Admin Issues
>> Subject: Re: iPhone user can still send emails after being disabled in AD
>>
>>
>>
>> We are just stumped.. and we have our security people freak'n out on us
>> about it...  even with user token caching.. it sounds like it is only for 15
>> minutes? i don't get how they could send an email 16 hours later (the last
>> email we saw).
>>
>>
>>
>> -BenN
>>
>> On Tue, Nov 8, 2011 at 3:35 PM, Brian Desmond 
>> wrote:
>>
>> That’s most likely exactly it.
>>
>>
>>
>> Thanks,
>>
>> Brian Desmond
>>
>> br...@briandesmond.com
>>
>>
>>
>> w – 312.625.1438 | c   – 312.731.3132
>>
>>
>>
>> From: Ben N [mailto:bennordlan...@gmail.com]
>> Sent: Tuesday, November 08, 2011 5:33 PM
>> To: NT System Admin Issues
>> Subject: iPhone user can still send emails after being disabled in AD
>>
>>
>>
>> You guys have this issue ever come up? I think this user was disabled in
>> AD at about 4pm, and the last email we got from the user's phone was around
>> 8am the next morning. iPhone setup with EAS and we have Exchange 2007.
>>
>>
>>
>> Could it be due to user token caching like from this forum post?
>>
>>
>> http://social.technet.microsoft.com/Forums/en-US/exchangesvrclients/thread/3da53460-ef76-4f01-94c9-f7b96fdaf99d
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>>
>> ~   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Quick query on alerting on ESXi

[Rankin, James R]

Excellent, cheers!

Sent from my SR-71 Blackbird

-Original Message-
From: Kim Longenbaugh 
Date: Wed, 9 Nov 2011 15:11:03 
To: NT System Admin Issues
Reply-To: "NT System Admin Issues" 
Subject: RE: Quick query on alerting on 
ESXi

ESXi acts the same as ESX, and the same alerts show up in the Virtual Center 
client.

From: James Rankin [mailto:kz2...@googlemail.com]
Sent: Wednesday, November 09, 2011 8:12 AM
To: NT System Admin Issues
Subject: Quick query on alerting on ESXi

Never done a lot of work with ESXi - so can anyone tell me whether it behaves 
in the same way as full-fat ESX, as in when a CPU or memory usage goes over 
threshold, does the host/guest get a little yellow or red alert on it in the 
VMWare client that indicates there's an issue? I have a client without any form 
of monitoring solution so I am trying to find some way for them to have a 
proactive view of their server performance, and this would hopefully be one of 
the ways they can achieve that without having to shell out any cash (because 
they have no intention of doing so!)

TIA,



JRR

--
"On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into the 
machine wrong figures, will the right answers come out?' I am not able rightly 
to apprehend the kind of confusion of ideas that could provoke such a question."

* IMPORTANT INFORMATION/DISCLAIMER *

This document should be read only by those persons to whom it is addressed. If 
you have received this message it was obviously addressed to you and therefore 
you can read it, even it we didn't mean to send it to you. However, if the 
contents of this email make no sense whatsoever then you probably were not the 
intended recipient, or, alternatively, you are a mindless cretin; either way, 
you should immediately kill yourself and destroy your computer (not necessarily 
in that order). Once you have taken this action, please contact us.. no, sorry, 
you can't use your computer, because you just destroyed it, and possibly also 
committed suicide afterwards, but I am starting to digress..

The originator of this email is not liable for the transmission of the 
information contained in this communication. Or are they? Either way it's a 
pretty dull legal query and frankly one I'm not going to dwell on. But should 
you have nothing better to do, please feel free to ruminate on it, and please 
pass on any concrete conclusions should you find them. However, if you pass 
them on via email, be sure to include a disclaimer regarding liability for 
transmission.

In the event that the originator did not send this email to you, then please 
return it to us and attach a scanned-in picture of your mother's brother's wife 
wearing nothing but a kangaroo suit, and we will immediately refund you exactly 
half of what you paid for the can of Whiskas you bought when you went to Pets 
At Home yesterday.

We take no responsibility for non-receipt of this email because we are running 
Exchange 5.5 and everyone knows how glitchy that can be. In the event that you 
do get this message then please note that we take no responsibility for that 
either. Nor will we accept any liability, tacit or implied, for any damage you 
may or may not incur as a result of receiving, or not, as the case may be, from 
time to time, notwithstanding all liabilities implied or otherwise, ummm, hell, 
where was I...umm, no matter what happens, it is NOT, and NEVER WILL BE, OUR 
FAULT!

The comments and opinions expressed herein are my own and NOT those of my 
employer, who, if he knew I was sending emails and surfing the seamier side of 
the Internet, would cut off my manhood and feed it to me for afternoon tea.


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: OT - Phone System In A Virtual Machine

[Glen Johnson]

+1 and most of the community colleges in VA are doing the same, so +22

-Original Message-
From: Bill Humphries [mailto:nt...@hedgedigger.com] 
Sent: Wednesday, November 09, 2011 10:11 AM
To: NT System Admin Issues
Subject: Re: OT - Phone System In A Virtual Machine

We manage to run switch to phone to desktop without any problems at all of our 
clients.  We've never run cable just for phones. YMMV, but we never have 
problems.  Of course that assumes you are using a well optimized codec for 
voice.

Bill


James Kerr wrote:
> Yeah, if we go VOIP we will be running a new CAT6 infrastructure just 
> for the phones and perform lots of testing before we cut over.
>
> On Tue, Nov 8, 2011 at 6:45 PM, Jonathan Bible  > wrote:
>
> I am surprised no one has mentioned ShoreTel. It is supported on
> VMware 4.0. Just remember when you add VOIP to your network it
> will expose your latency and misconfigurations because missing 3
> seconds of voice is critical and an email will go unnoticed. VOIP
> is like the canary in the mine. It dies first and gets all the
> blame.  ShoreTel is designed from the IT prospective and is easy
> to manage.
>
>
> On Tue, Nov 8, 2011 at 4:48 PM, James Kerr  > wrote:
>
> I've thought about hosted solutions also but we are currently
> locked into contracts for our PRI's. This will be an
> interesting venture that's for sure.
>
> James
>
>
> On Tue, Nov 8, 2011 at 2:36 PM, Stu Sjouwerman
> mailto:s...@sunbelt-software.com>>
> wrote:
>
> James,
>
>  
>
> I went through that whole exercise a year ago, and decided
> for VOIP, but running it
>
> In the Cloud as opposed to in-house.  RingCentral gives
> you an enormous amount of
>
> features for about 20 bucks per person per month,
> unlimited phone minutes.  If you
>
> absolutely want to run it in-house, a dedicated server
> with Asterisk would be a good
>
> idea.  VOIP is sensitive to a bunch of things, you need to
> spec out the hardware
>
> correctly.
>
>
> Warm regards,
>
>  
>
> Stu
>
>  
>
> *From:* James Kerr [mailto:cluster...@gmail.com
> ]
>
> *Sent:* Tuesday, November 08, 2011 8:57 AM
> *To:* NT System Admin Issues
> *Subject:* OT - Phone System In A Virtual Machine
>
>  
>
> We are looking at replacing our phone system. This has got
> me thinking about VIOP systems and being a sys admin who
> maintains our current phone system (for the most part) has
> got me thinking about phone system redundancy. I have a
> desire to run a voice-mail and PBX on virtual machines, if
> possible. I just don't know if such things exist and was
> wondering if any of you guys had any info about such
> systems. We have about 150 phones in two locations two
> PBXs and one central voice-mail/auto attendant. Venders
> I've spoke with so far just want to offer newer versions
> of what we already have. I want something more redundant
> and easier to bring up again in case of disaster. Thanks
> for any replies.
>
> James
>
> ~ Finally, powerful endpoint security that ISN'T a
> resource hog! ~
> ~
> 
>   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> 
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a
> resource hog! ~
> ~
> 
>   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> 
> with the body: unsubscribe ntsysadmin
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   
> ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> 
> with the body

RE: ShoreTel

[Paul Hutchings]

Can I get a bit more info on that please Kurt?

We do have many 64bit machines, but afaik only 1 64bit Office 2010 install - 
which is mine.

Paul

-Original Message-
From: Kurt Buff [mailto:kurt.b...@gmail.com] 
Sent: 09 November 2011 15:33
To: NT System Admin Issues
Subject: Re: ShoreTel

Works well for us - we have about 230 staff in HQ where it's installed. The 
client is OK, but you need to be aware of a toxic interaction with 64-bit MS 
Office, until they release their 64-bit client. We've reverted to 32-bit Office 
because of that.

On Wed, Nov 9, 2011 at 07:14, Paul Hutchings  wrote:
> Anyone here using Shoretel for their phone system?
>
>
>
> From what we’ve seen so far we’re confident they’re a good fit both in 
> terms of features and architecture, and (most importantly IMO) the 
> client software appears to be pretty good to use.
>
>
>
> Any tales (on or off list) of how they have performed would be appreciated.
>
>
>
> Thanks,
>
> Paul
>
> 
> MIRA Ltd
> Watling Street, Nuneaton, Warwickshire, CV10 0TU, England Registered 
> in England and Wales No. 402570 VAT Registration  GB 100 1464 84 The 
> contents of this e-mail are confidential and are solely for the use of 
> the intended recipient.  If you receive this e-mail in error, please 
> delete it and notify us either by e-mail, telephone or fax.  You 
> should not copy, forward or otherwise disclose the content of the 
> e-mail as this is prohibited.
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
>   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: ShoreTel

[Kurt Buff]

Works well for us - we have about 230 staff in HQ where it's
installed. The client is OK, but you need to be aware of a toxic
interaction with 64-bit MS Office, until they release their 64-bit
client. We've reverted to 32-bit Office because of that.

On Wed, Nov 9, 2011 at 07:14, Paul Hutchings  wrote:
> Anyone here using Shoretel for their phone system?
>
>
>
> From what we’ve seen so far we’re confident they’re a good fit both in terms
> of features and architecture, and (most importantly IMO) the client software
> appears to be pretty good to use.
>
>
>
> Any tales (on or off list) of how they have performed would be appreciated.
>
>
>
> Thanks,
>
> Paul
>
> 
> MIRA Ltd
> Watling Street, Nuneaton, Warwickshire, CV10 0TU, England
> Registered in England and Wales No. 402570
> VAT Registration  GB 100 1464 84
> The contents of this e-mail are confidential and are solely for the use of
> the intended recipient.  If you receive this e-mail in error, please delete
> it and notify us either by e-mail, telephone or fax.  You should not copy,
> forward or otherwise disclose the content of the e-mail as this is
> prohibited.
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: OT - Phone System In A Virtual Machine

[James Kerr]

Good to hear but we like cutting up walls and slinging cable in our filthy
ceiling plenums. ;-)

On Wed, Nov 9, 2011 at 10:11 AM, Bill Humphries wrote:

> We manage to run switch to phone to desktop without any problems at all of
> our clients.  We've never run cable just for phones. YMMV, but we never
> have problems.  Of course that assumes you are using a well optimized codec
> for voice.
>
> Bill
>
>
> James Kerr wrote:
>
>> Yeah, if we go VOIP we will be running a new CAT6 infrastructure just for
>> the phones and perform lots of testing before we cut over.
>>
>> On Tue, Nov 8, 2011 at 6:45 PM, Jonathan Bible > jtbi...@gmail.com>> wrote:
>>
>>I am surprised no one has mentioned ShoreTel. It is supported on
>>VMware 4.0. Just remember when you add VOIP to your network it
>>will expose your latency and misconfigurations because missing 3
>>seconds of voice is critical and an email will go unnoticed. VOIP
>>is like the canary in the mine. It dies first and gets all the
>>blame.  ShoreTel is designed from the IT prospective and is easy
>>to manage.
>>
>>
>>On Tue, Nov 8, 2011 at 4:48 PM, James Kerr >> wrote:
>>
>>I've thought about hosted solutions also but we are currently
>>locked into contracts for our PRI's. This will be an
>>interesting venture that's for sure.
>>
>>James
>>
>>
>>On Tue, Nov 8, 2011 at 2:36 PM, Stu Sjouwerman
>>> > >>
>>
>>wrote:
>>
>>James,
>>
>>
>>I went through that whole exercise a year ago, and decided
>>for VOIP, but running it
>>
>>In the Cloud as opposed to in-house.  RingCentral gives
>>you an enormous amount of
>>
>>features for about 20 bucks per person per month,
>>unlimited phone minutes.  If you
>>
>>absolutely want to run it in-house, a dedicated server
>>with Asterisk would be a good
>>
>>idea.  VOIP is sensitive to a bunch of things, you need to
>>spec out the hardware
>>
>>correctly.
>>
>>
>>Warm regards,
>>
>>
>>Stu
>>
>>
>>*From:* James Kerr [mailto:cluster...@gmail.com
>>]
>>
>>*Sent:* Tuesday, November 08, 2011 8:57 AM
>>*To:* NT System Admin Issues
>>*Subject:* OT - Phone System In A Virtual Machine
>>
>>
>>
>>We are looking at replacing our phone system. This has got
>>me thinking about VIOP systems and being a sys admin who
>>maintains our current phone system (for the most part) has
>>got me thinking about phone system redundancy. I have a
>>desire to run a voice-mail and PBX on virtual machines, if
>>possible. I just don't know if such things exist and was
>>wondering if any of you guys had any info about such
>>systems. We have about 150 phones in two locations two
>>PBXs and one central voice-mail/auto attendant. Venders
>>I've spoke with so far just want to offer newer versions
>>of what we already have. I want something more redundant
>>and easier to bring up again in case of disaster. Thanks
>>for any replies.
>>
>>James
>>
>>~ Finally, powerful endpoint security that ISN'T a
>>resource hog! ~
>>~
>>
>> 
>> **>  ~
>>
>>---
>>To manage subscriptions click here:
>>
>> http://lyris.sunbelt-software.**com/read/my_forums/
>>or send an email to 
>> listmanager@lyris.**sunbeltsoftware.com
>>
>> > >
>>
>>with the body: unsubscribe ntsysadmin
>>
>>~ Finally, powerful endpoint security that ISN'T a
>>resource hog! ~
>>~
>>
>> 
>> **>  ~
>>
>>---
>>To manage subscriptions click here:
>>
>> http://lyris.sunbelt-software.**com/read/my_forums/
>>or send an email to 
>> listmanager@lyris.**sunbeltsoftware.com
>>
>> > >
>>
>>with the body: unsubscribe ntsysadmin
>>
>>
>>~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>>~ 
>> 
>> **>  ~
>>
>>---
>>To manage subscrip

ShoreTel

[Paul Hutchings]

Anyone here using Shoretel for their phone system?

>From what we've seen so far we're confident they're a good fit both in terms 
>of features and architecture, and (most importantly IMO) the client software 
>appears to be pretty good to use.

Any tales (on or off list) of how they have performed would be appreciated.

Thanks,
Paul

--
MIRA Ltd

Watling Street, Nuneaton, Warwickshire, CV10 0TU, England
Registered in England and Wales No. 402570
VAT Registration  GB 100 1464 84

The contents of this e-mail are confidential and are solely for the use of the 
intended recipient.  If you receive this e-mail in error, please delete it and 
notify us either by e-mail, telephone or fax.  You should not copy, forward or 
otherwise disclose the content of the e-mail as this is prohibited.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: OT - Phone System In A Virtual Machine

[Bill Humphries]

We manage to run switch to phone to desktop without any problems at all 
of our clients.  We've never run cable just for phones. YMMV, but we 
never have problems.  Of course that assumes you are using a well 
optimized codec for voice.


Bill


James Kerr wrote:
Yeah, if we go VOIP we will be running a new CAT6 infrastructure just 
for the phones and perform lots of testing before we cut over.


On Tue, Nov 8, 2011 at 6:45 PM, Jonathan Bible > wrote:


I am surprised no one has mentioned ShoreTel. It is supported on
VMware 4.0. Just remember when you add VOIP to your network it
will expose your latency and misconfigurations because missing 3
seconds of voice is critical and an email will go unnoticed. VOIP
is like the canary in the mine. It dies first and gets all the
blame.  ShoreTel is designed from the IT prospective and is easy
to manage.


On Tue, Nov 8, 2011 at 4:48 PM, James Kerr mailto:cluster...@gmail.com>> wrote:

I've thought about hosted solutions also but we are currently
locked into contracts for our PRI's. This will be an
interesting venture that's for sure.

James


On Tue, Nov 8, 2011 at 2:36 PM, Stu Sjouwerman
mailto:s...@sunbelt-software.com>>
wrote:

James,

 


I went through that whole exercise a year ago, and decided
for VOIP, but running it

In the Cloud as opposed to in-house.  RingCentral gives
you an enormous amount of

features for about 20 bucks per person per month,
unlimited phone minutes.  If you

absolutely want to run it in-house, a dedicated server
with Asterisk would be a good

idea.  VOIP is sensitive to a bunch of things, you need to
spec out the hardware

correctly.


Warm regards,

 


Stu

 


*From:* James Kerr [mailto:cluster...@gmail.com
]

*Sent:* Tuesday, November 08, 2011 8:57 AM
*To:* NT System Admin Issues
*Subject:* OT - Phone System In A Virtual Machine

 


We are looking at replacing our phone system. This has got
me thinking about VIOP systems and being a sys admin who
maintains our current phone system (for the most part) has
got me thinking about phone system redundancy. I have a
desire to run a voice-mail and PBX on virtual machines, if
possible. I just don't know if such things exist and was
wondering if any of you guys had any info about such
systems. We have about 150 phones in two locations two
PBXs and one central voice-mail/auto attendant. Venders
I've spoke with so far just want to offer newer versions
of what we already have. I want something more redundant
and easier to bring up again in case of disaster. Thanks
for any replies.

James

~ Finally, powerful endpoint security that ISN'T a
resource hog! ~
~
  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com

with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a
resource hog! ~
~
  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com

with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com

with the body: unsubscribe ntsysadmin




-- 
Thanks,

Jonathan Bible D.C.C.


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com

with the body: unsubscribe ntsysadmin


~ Fina

RE: Quick query on alerting on ESXi

[Kim Longenbaugh]

ESXi acts the same as ESX, and the same alerts show up in the Virtual Center 
client.

From: James Rankin [mailto:kz2...@googlemail.com]
Sent: Wednesday, November 09, 2011 8:12 AM
To: NT System Admin Issues
Subject: Quick query on alerting on ESXi

Never done a lot of work with ESXi - so can anyone tell me whether it behaves 
in the same way as full-fat ESX, as in when a CPU or memory usage goes over 
threshold, does the host/guest get a little yellow or red alert on it in the 
VMWare client that indicates there's an issue? I have a client without any form 
of monitoring solution so I am trying to find some way for them to have a 
proactive view of their server performance, and this would hopefully be one of 
the ways they can achieve that without having to shell out any cash (because 
they have no intention of doing so!)

TIA,



JRR

--
"On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into the 
machine wrong figures, will the right answers come out?' I am not able rightly 
to apprehend the kind of confusion of ideas that could provoke such a question."

* IMPORTANT INFORMATION/DISCLAIMER *

This document should be read only by those persons to whom it is addressed. If 
you have received this message it was obviously addressed to you and therefore 
you can read it, even it we didn't mean to send it to you. However, if the 
contents of this email make no sense whatsoever then you probably were not the 
intended recipient, or, alternatively, you are a mindless cretin; either way, 
you should immediately kill yourself and destroy your computer (not necessarily 
in that order). Once you have taken this action, please contact us.. no, sorry, 
you can't use your computer, because you just destroyed it, and possibly also 
committed suicide afterwards, but I am starting to digress..

The originator of this email is not liable for the transmission of the 
information contained in this communication. Or are they? Either way it's a 
pretty dull legal query and frankly one I'm not going to dwell on. But should 
you have nothing better to do, please feel free to ruminate on it, and please 
pass on any concrete conclusions should you find them. However, if you pass 
them on via email, be sure to include a disclaimer regarding liability for 
transmission.

In the event that the originator did not send this email to you, then please 
return it to us and attach a scanned-in picture of your mother's brother's wife 
wearing nothing but a kangaroo suit, and we will immediately refund you exactly 
half of what you paid for the can of Whiskas you bought when you went to Pets 
At Home yesterday.

We take no responsibility for non-receipt of this email because we are running 
Exchange 5.5 and everyone knows how glitchy that can be. In the event that you 
do get this message then please note that we take no responsibility for that 
either. Nor will we accept any liability, tacit or implied, for any damage you 
may or may not incur as a result of receiving, or not, as the case may be, from 
time to time, notwithstanding all liabilities implied or otherwise, ummm, hell, 
where was I...umm, no matter what happens, it is NOT, and NEVER WILL BE, OUR 
FAULT!

The comments and opinions expressed herein are my own and NOT those of my 
employer, who, if he knew I was sending emails and surfing the seamier side of 
the Internet, would cut off my manhood and feed it to me for afternoon tea.


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: OT - Phone System In A Virtual Machine

[Dennis Hoefer]

We moved to Shoretel about 5 years ago as we were planning a new
corporate headquarters building and now have it deployed in 15
locations.  The thing that most impressed me at the time with Shoretel
was that they were the only vendor we talked to that insisted on running
performance tests on our extended network (rural area with extensive
reliance on p-t-p microwave for data) before getting too deep into the
sales process.  Told me that they fully understood Jonathan's "canary in
the mine" point, and its importance to their reputation.  Has been rock
solid for us, still on dedicated server hardware so can't speak to their
VMware support but historically, they don't release much that isn't
ready for prime time.  

 

Dennis 

 

From: Jonathan Bible [mailto:jtbi...@gmail.com] 
Sent: Tuesday, November 08, 2011 5:45 PM
To: NT System Admin Issues
Subject: Re: OT - Phone System In A Virtual Machine

 

I am surprised no one has mentioned ShoreTel. It is supported on VMware
4.0. Just remember when you add VOIP to your network it will expose your
latency and misconfigurations because missing 3 seconds of voice is
critical and an email will go unnoticed. VOIP is like the canary in the
mine. It dies first and gets all the blame.  ShoreTel is designed from
the IT prospective and is easy to manage.

 

On Tue, Nov 8, 2011 at 4:48 PM, James Kerr  wrote:

I've thought about hosted solutions also but we are currently locked
into contracts for our PRI's. This will be an interesting venture that's
for sure.

James 

 

On Tue, Nov 8, 2011 at 2:36 PM, Stu Sjouwerman
 wrote:

James,

 

I went through that whole exercise a year ago, and decided for VOIP, but
running it

In the Cloud as opposed to in-house.  RingCentral gives you an enormous
amount of

features for about 20 bucks per person per month, unlimited phone
minutes.  If you

absolutely want to run it in-house, a dedicated server with Asterisk
would be a good

idea.  VOIP is sensitive to a bunch of things, you need to spec out the
hardware

correctly.


Warm regards,

 

Stu 

 

From: James Kerr [mailto:cluster...@gmail.com] 

Sent: Tuesday, November 08, 2011 8:57 AM

To: NT System Admin Issues

Subject: OT - Phone System In A Virtual Machine

 

We are looking at replacing our phone system. This has got me thinking
about VIOP systems and being a sys admin who maintains our current phone
system (for the most part) has got me thinking about phone system
redundancy. I have a desire to run a voice-mail and PBX on virtual
machines, if possible. I just don't know if such things exist and was
wondering if any of you guys had any info about such systems. We have
about 150 phones in two locations two PBXs and one central
voice-mail/auto attendant. Venders I've spoke with so far just want to
offer newer versions of what we already have. I want something more
redundant and easier to bring up again in case of disaster. Thanks for
any replies.

James

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin




-- 
Thanks,
Jonathan Bible D.C.C.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Quick query on alerting on ESXi

[Rankin, James R]

Just need something quick and dirty they already have for now. I recommended 
nagios and SCE for perusal going forward
Sent from my SR-71 Blackbird

-Original Message-
From: Cameron 
Date: Wed, 9 Nov 2011 09:28:26 
To: NT System Admin Issues
Reply-To: "NT System Admin Issues" 
Subject: Re: Quick query on alerting on 
ESXi

Why not use Nagios to do the monitoring? It's free and will monitor for
just about anything and fire off emails when that threshold has been
exceeded over a period of time.

On Wed, Nov 9, 2011 at 9:12 AM, James Rankin  wrote:

> Never done a lot of work with ESXi - so can anyone tell me whether it
> behaves in the same way as full-fat ESX, as in when a CPU or memory usage
> goes over threshold, does the host/guest get a little yellow or red alert
> on it in the VMWare client that indicates there's an issue? I have a client
> without any form of monitoring solution so I am trying to find some way for
> them to have a proactive view of their server performance, and this would
> hopefully be one of the ways they can achieve that without having to shell
> out any cash (because they have no intention of doing so!)
>
> TIA,
>
>
>
> JRR
>
> --
> "On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into
> the machine wrong figures, will the right answers come out?' I am not able
> rightly to apprehend the kind of confusion of ideas that could provoke such
> a question."
>
> ** IMPORTANT INFORMATION/DISCLAIMER *
>
> This document should be read only by those persons to whom it is
> addressed. If you have received this message it was obviously addressed to
> you and therefore you can read it, even it we didn't mean to send it to
> you. However, if the contents of this email make no sense whatsoever then
> you probably were not the intended recipient, or, alternatively, you are a
> mindless cretin; either way, you should immediately kill yourself and
> destroy your computer (not necessarily in that order). Once you have taken
> this action, please contact us.. no, sorry, you can't use your computer,
> because you just destroyed it, and possibly also committed suicide
> afterwards, but I am starting to digress.. *
>
> *The originator of this email is not liable for the transmission of the
> information contained in this communication. Or are they? Either way it's a
> pretty dull legal query and frankly one I'm not going to dwell on. But
> should you have nothing better to do, please feel free to ruminate on it,
> and please pass on any concrete conclusions should you find them. However,
> if you pass them on via email, be sure to include a disclaimer regarding
> liability for transmission.
> *
>
> *In the event that the originator did not send this email to you, then
> please return it to us and attach a scanned-in picture of your mother's
> brother's wife wearing nothing but a kangaroo suit, and we will immediately
> refund you exactly half of what you paid for the can of Whiskas you bought
> when you went to Pets** **At Home yesterday. *
>
> *We take no responsibility for non-receipt of this email because we are
> running Exchange 5.5 and everyone knows how glitchy that can be. In the
> event that you do get this message then please note that we take no
> responsibility for that either. Nor will we accept any liability, tacit or
> implied, for any damage you may or may not incur as a result of receiving,
> or not, as the case may be, from time to time, notwithstanding all
> liabilities implied or otherwise, ummm, hell, where was I...umm, no matter
> what happens, it is NOT, and NEVER WILL BE, OUR FAULT! *
>
> *The comments and opinions expressed herein are my own and NOT those of
> my employer, who, if he knew I was sending emails and surfing the seamier
> side of the Internet, would cut off my manhood and feed it to me for
> afternoon tea. *
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: TS 2008 question

[James Rankin]

Just for posterity, it looks like the only MS-recommended way of providing
resiliency in the session broker role is by using failover clustering.

On 8 November 2011 14:34, Michael B. Smith  wrote:

>  Now you are over my head. J
>
> ** **
>
> Regards,
>
> ** **
>
> Michael B. Smith
>
> Consultant and Exchange MVP
>
> http://TheEssentialExchange.com
>
> ** **
>
> *From:* James Rankin [mailto:kz2...@googlemail.com]
> *Sent:* Tuesday, November 08, 2011 9:20 AM
>
> *To:* NT System Admin Issues
> *Subject:* Re: TS 2008 question
>
> ** **
>
> Thanks guys
>
> I was actually looking at providing some redundancy for the Session Broker
> role itself (i.e. if the Session Broker server explodes, I'd want some
> resilience available). Maybe I didn't phrase that well :-)
>
> On 8 November 2011 14:11, Michael B. Smith  wrote:*
> ***
>
> Windows Server 2008 Terminal Services Resource Kit (free) and
>
> Understanding Microsoft Virtualization Solutions, Second Edition (also
> free)
>
>  
>
> …are your best resources for these types of questions (IMO).
>
>  
>
> You can install all RDP role services on a single server.
>
>  
>
> Terminal Server Session Broker provides redundancy and load balancing as
> well.
>
>  
>
> Regards,
>
>  
>
> Michael B. Smith
>
> Consultant and Exchange MVP
>
> http://TheEssentialExchange.com
>
>  
>
> *From:* James Rankin [mailto:kz2...@googlemail.com]
> *Sent:* Tuesday, November 08, 2011 8:58 AM
> *To:* NT System Admin Issues
> *Subject:* TS 2008 question
>
>  
>
> Got stuck on a consultancy yesterday that was allegedly Citrix-based, yet
> when I arrived on site it turned out it was a pure 2008 TS deployment, and
> I had to start blagging very quickly :-)
>
> Quick question (as I write my report). Can you install the TS Session
> Broker and TS Web Access roles on the same server? I can't seem to find any
> definitive answer to this (although I am assuming in the absence of any
> hard evidence the answer will be yes). Also are there any preferred ways to
> provided redundancy for these roles besides a failover cluster (are there
> any others documented by MS anywhere, the failover cluster seems to be all
> I can find)?
>
> TIA,
>
>
>
> JRR
>
> --
> "On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into
> the machine wrong figures, will the right answers come out?' I am not able
> rightly to apprehend the kind of confusion of ideas that could provoke such
> a question."
>
> ** IMPORTANT INFORMATION/DISCLAIMER *
>
> This document should be read only by those persons to whom it is
> addressed. If you have received this message it was obviously addressed to
> you and therefore you can read it, even it we didn't mean to send it to
> you. However, if the contents of this email make no sense whatsoever then
> you probably were not the intended recipient, or, alternatively, you are a
> mindless cretin; either way, you should immediately kill yourself and
> destroy your computer (not necessarily in that order). Once you have taken
> this action, please contact us.. no, sorry, you can't use your computer,
> because you just destroyed it, and possibly also committed suicide
> afterwards, but I am starting to digress.. *
>
> *The originator of this email is not liable for the transmission of the
> information contained in this communication. Or are they? Either way it's a
> pretty dull legal query and frankly one I'm not going to dwell on. But
> should you have nothing better to do, please feel free to ruminate on it,
> and please pass on any concrete conclusions should you find them. However,
> if you pass them on via email, be sure to include a disclaimer regarding
> liability for transmission.*
>
> *In the event that the originator did not send this email to you, then
> please return it to us and attach a scanned-in picture of your mother's
> brother's wife wearing nothing but a kangaroo suit, and we will immediately
> refund you exactly half of what you paid for the can of Whiskas you bought
> when you went to Pets At Home yesterday. *
>
> *We take no responsibility for non-receipt of this email because we are
> running Exchange 5.5 and everyone knows how glitchy that can be. In the
> event that you do get this message then please note that we take no
> responsibility for that either. Nor will we accept any liability, tacit or
> implied, for any damage you may or may not incur as a result of receiving,
> or not, as the case may be, from time to time, notwithstanding all
> liabilities implied or otherwise, ummm, hell, where was I...umm, no matter
> what happens, it is NOT, and NEVER WILL BE, OUR FAULT! *
>
> *The comments and opinions expressed herein are my own and NOT those of
> my employer, who, if he knew I was sending emails and surfing the seamier
> side of the Internet, would cut off my manhood and feed it to me for
> afternoon tea. *
>
>  
>
> ~ Fi

Re: OT - Phone System In A Virtual Machine

[James Kerr]

Yeah, if we go VOIP we will be running a new CAT6 infrastructure just for
the phones and perform lots of testing before we cut over.

On Tue, Nov 8, 2011 at 6:45 PM, Jonathan Bible  wrote:

> I am surprised no one has mentioned ShoreTel. It is supported on VMware
> 4.0. Just remember when you add VOIP to your network it will expose your
> latency and misconfigurations because missing 3 seconds of voice is
> critical and an email will go unnoticed. VOIP is like the canary in the
> mine. It dies first and gets all the blame.  ShoreTel is designed from
> the IT prospective and is easy to manage.
>
> On Tue, Nov 8, 2011 at 4:48 PM, James Kerr  wrote:
>
>> I've thought about hosted solutions also but we are currently locked into
>> contracts for our PRI's. This will be an interesting venture that's for
>> sure.
>>
>> James
>>
>>
>> On Tue, Nov 8, 2011 at 2:36 PM, Stu Sjouwerman > > wrote:
>>
>>>  James,
>>>
>>> ** **
>>>
>>> I went through that whole exercise a year ago, and decided for VOIP, but
>>> running it
>>>
>>> In the Cloud as opposed to in-house.  RingCentral gives you an enormous
>>> amount of
>>>
>>> features for about 20 bucks per person per month, unlimited phone
>>> minutes.  If you
>>>
>>> absolutely want to run it in-house, a dedicated server with Asterisk
>>> would be a good
>>>
>>> idea.  VOIP is sensitive to a bunch of things, you need to spec out the
>>> hardware
>>>
>>> correctly.
>>>
>>>
>>> Warm regards,
>>>
>>> ** **
>>>
>>> Stu 
>>>
>>> ** **
>>>
>>> *From:* James Kerr [mailto:cluster...@gmail.com]
>>> *Sent:* Tuesday, November 08, 2011 8:57 AM
>>> *To:* NT System Admin Issues
>>> *Subject:* OT - Phone System In A Virtual Machine
>>>
>>>  ** **
>>>
>>> We are looking at replacing our phone system. This has got me thinking
>>> about VIOP systems and being a sys admin who maintains our current phone
>>> system (for the most part) has got me thinking about phone system
>>> redundancy. I have a desire to run a voice-mail and PBX on virtual
>>> machines, if possible. I just don't know if such things exist and was
>>> wondering if any of you guys had any info about such systems. We have about
>>> 150 phones in two locations two PBXs and one central voice-mail/auto
>>> attendant. Venders I've spoke with so far just want to offer newer versions
>>> of what we already have. I want something more redundant and easier to
>>> bring up again in case of disaster. Thanks for any replies.
>>>
>>> James
>>>
>>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>>> ~   ~
>>>
>>> ---
>>> To manage subscriptions click here:
>>> http://lyris.sunbelt-software.com/read/my_forums/
>>> or send an email to listmana...@lyris.sunbeltsoftware.com
>>> with the body: unsubscribe ntsysadmin
>>>
>>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>>> ~   ~
>>>
>>> ---
>>> To manage subscriptions click here:
>>> http://lyris.sunbelt-software.com/read/my_forums/
>>> or send an email to listmana...@lyris.sunbeltsoftware.com
>>> with the body: unsubscribe ntsysadmin
>>>
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>>
>
>
>
> --
> Thanks,
> Jonathan Bible D.C.C.
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Quick query on alerting on ESXi

[Cameron]

Why not use Nagios to do the monitoring? It's free and will monitor for
just about anything and fire off emails when that threshold has been
exceeded over a period of time.

On Wed, Nov 9, 2011 at 9:12 AM, James Rankin  wrote:

> Never done a lot of work with ESXi - so can anyone tell me whether it
> behaves in the same way as full-fat ESX, as in when a CPU or memory usage
> goes over threshold, does the host/guest get a little yellow or red alert
> on it in the VMWare client that indicates there's an issue? I have a client
> without any form of monitoring solution so I am trying to find some way for
> them to have a proactive view of their server performance, and this would
> hopefully be one of the ways they can achieve that without having to shell
> out any cash (because they have no intention of doing so!)
>
> TIA,
>
>
>
> JRR
>
> --
> "On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into
> the machine wrong figures, will the right answers come out?' I am not able
> rightly to apprehend the kind of confusion of ideas that could provoke such
> a question."
>
> ** IMPORTANT INFORMATION/DISCLAIMER *
>
> This document should be read only by those persons to whom it is
> addressed. If you have received this message it was obviously addressed to
> you and therefore you can read it, even it we didn't mean to send it to
> you. However, if the contents of this email make no sense whatsoever then
> you probably were not the intended recipient, or, alternatively, you are a
> mindless cretin; either way, you should immediately kill yourself and
> destroy your computer (not necessarily in that order). Once you have taken
> this action, please contact us.. no, sorry, you can't use your computer,
> because you just destroyed it, and possibly also committed suicide
> afterwards, but I am starting to digress.. *
>
> *The originator of this email is not liable for the transmission of the
> information contained in this communication. Or are they? Either way it's a
> pretty dull legal query and frankly one I'm not going to dwell on. But
> should you have nothing better to do, please feel free to ruminate on it,
> and please pass on any concrete conclusions should you find them. However,
> if you pass them on via email, be sure to include a disclaimer regarding
> liability for transmission.
> *
>
> *In the event that the originator did not send this email to you, then
> please return it to us and attach a scanned-in picture of your mother's
> brother's wife wearing nothing but a kangaroo suit, and we will immediately
> refund you exactly half of what you paid for the can of Whiskas you bought
> when you went to Pets** **At Home yesterday. *
>
> *We take no responsibility for non-receipt of this email because we are
> running Exchange 5.5 and everyone knows how glitchy that can be. In the
> event that you do get this message then please note that we take no
> responsibility for that either. Nor will we accept any liability, tacit or
> implied, for any damage you may or may not incur as a result of receiving,
> or not, as the case may be, from time to time, notwithstanding all
> liabilities implied or otherwise, ummm, hell, where was I...umm, no matter
> what happens, it is NOT, and NEVER WILL BE, OUR FAULT! *
>
> *The comments and opinions expressed herein are my own and NOT those of
> my employer, who, if he knew I was sending emails and surfing the seamier
> side of the Internet, would cut off my manhood and feed it to me for
> afternoon tea. *
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Quick query on alerting on ESXi

[James Rankin]

Never done a lot of work with ESXi - so can anyone tell me whether it
behaves in the same way as full-fat ESX, as in when a CPU or memory usage
goes over threshold, does the host/guest get a little yellow or red alert
on it in the VMWare client that indicates there's an issue? I have a client
without any form of monitoring solution so I am trying to find some way for
them to have a proactive view of their server performance, and this would
hopefully be one of the ways they can achieve that without having to shell
out any cash (because they have no intention of doing so!)

TIA,



JRR

-- 
"On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into
the machine wrong figures, will the right answers come out?' I am not able
rightly to apprehend the kind of confusion of ideas that could provoke such
a question."

** IMPORTANT INFORMATION/DISCLAIMER *

This document should be read only by those persons to whom it is addressed.
If you have received this message it was obviously addressed to you and
therefore you can read it, even it we didn't mean to send it to you.
However, if the contents of this email make no sense whatsoever then you
probably were not the intended recipient, or, alternatively, you are a
mindless cretin; either way, you should immediately kill yourself and
destroy your computer (not necessarily in that order). Once you have taken
this action, please contact us.. no, sorry, you can't use your computer,
because you just destroyed it, and possibly also committed suicide
afterwards, but I am starting to digress.. *

* The originator of this email is not liable for the transmission of the
information contained in this communication. Or are they? Either way it's a
pretty dull legal query and frankly one I'm not going to dwell on. But
should you have nothing better to do, please feel free to ruminate on it,
and please pass on any concrete conclusions should you find them. However,
if you pass them on via email, be sure to include a disclaimer regarding
liability for transmission.
*

* In the event that the originator did not send this email to you, then
please return it to us and attach a scanned-in picture of your mother's
brother's wife wearing nothing but a kangaroo suit, and we will immediately
refund you exactly half of what you paid for the can of Whiskas you bought
when you went to Pets** ** At Home yesterday. *

* We take no responsibility for non-receipt of this email because we are
running Exchange 5.5 and everyone knows how glitchy that can be. In the
event that you do get this message then please note that we take no
responsibility for that either. Nor will we accept any liability, tacit or
implied, for any damage you may or may not incur as a result of receiving,
or not, as the case may be, from time to time, notwithstanding all
liabilities implied or otherwise, ummm, hell, where was I...umm, no matter
what happens, it is NOT, and NEVER WILL BE, OUR FAULT! *

* The comments and opinions expressed herein are my own and NOT those of my
employer, who, if he knew I was sending emails and surfing the seamier side
of the Internet, would cut off my manhood and feed it to me for afternoon
tea. *

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: iPhone user can still send emails after being disabled in AD

[Kennedy, Jim]

Reset your IIS services. I have no idea why it is not honoring the 15 cache 
setting but it seems like it doesn't and based upon how often I seem to see 
this from different folks it doesn't honor it for most people.

From: Ben N [mailto:bennordlan...@gmail.com]
Sent: Tuesday, November 08, 2011 6:33 PM
To: NT System Admin Issues
Subject: iPhone user can still send emails after being disabled in AD

You guys have this issue ever come up? I think this user was disabled in AD at 
about 4pm, and the last email we got from the user's phone was around 8am the 
next morning. iPhone setup with EAS and we have Exchange 2007.

Could it be due to user token caching like from this forum post?
http://social.technet.microsoft.com/Forums/en-US/exchangesvrclients/thread/3da53460-ef76-4f01-94c9-f7b96fdaf99d

-BenN

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin