Re: POSH PtH - this is...

[Kurt Buff]

If I had one, I would.

We're a small org, and a smartcard setup isn't gonna fly.

Kurt

On Mon, Apr 8, 2013 at 8:34 PM, Ken Schaefer  wrote:
> Why don't you use smart card login instead?
>
> Security is about managing risk, and not about avoiding every possible risk. 
> Work in a big enough org, and the risks are so numerous there's simply no way 
> to avoid them all - some of them just have to be accepted as is.
>
> Cheers
> Ken
>
> -Original Message-
> From: Kurt Buff [mailto:kurt.b...@gmail.com]
> Sent: Tuesday, 9 April 2013 1:29 PM
> To: NT System Admin Issues
> Subject: Re: POSH PtH - this is...
>
> On Mon, Apr 8, 2013 at 8:04 PM, Ben Scott  wrote:
>> On Mon, Apr 8, 2013 at 8:01 PM, Kurt Buff  wrote:
>>> Agree with MBS that other tools could stand in for PowerShell, but
>>> WCE was actually new to me.
>>
>>   Well, then, you didn't say that, you seemed focused on PoSh.
>>
>>   WCE in particular is new to me, too, but I've certainly read of
>> attacks on the running system to recover credentials before.  That's
>> why trusting the computer you're logging into is really important.  :)
>>
>>   It's good to know there's an easy-to-use tool available, though.  :)
>
> Didn't make it clear, true - wrong subject line, I suppose.
>
> Trusting computers is not something that comes easily to me, any more, unless 
> I'm the only one who has touched it. Too many folks don't understand the 
> implications of their actions.
>
> Kurt
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: POSH PtH - this is...

[Ken Schaefer]

Why don't you use smart card login instead?

Security is about managing risk, and not about avoiding every possible risk. 
Work in a big enough org, and the risks are so numerous there's simply no way 
to avoid them all - some of them just have to be accepted as is.

Cheers
Ken

-Original Message-
From: Kurt Buff [mailto:kurt.b...@gmail.com] 
Sent: Tuesday, 9 April 2013 1:29 PM
To: NT System Admin Issues
Subject: Re: POSH PtH - this is...

On Mon, Apr 8, 2013 at 8:04 PM, Ben Scott  wrote:
> On Mon, Apr 8, 2013 at 8:01 PM, Kurt Buff  wrote:
>> Agree with MBS that other tools could stand in for PowerShell, but 
>> WCE was actually new to me.
>
>   Well, then, you didn't say that, you seemed focused on PoSh.
>
>   WCE in particular is new to me, too, but I've certainly read of 
> attacks on the running system to recover credentials before.  That's 
> why trusting the computer you're logging into is really important.  :)
>
>   It's good to know there's an easy-to-use tool available, though.  :)

Didn't make it clear, true - wrong subject line, I suppose.

Trusting computers is not something that comes easily to me, any more, unless 
I'm the only one who has touched it. Too many folks don't understand the 
implications of their actions.

Kurt


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: POSH PtH - this is...

[Kurt Buff]

On Mon, Apr 8, 2013 at 8:04 PM, Ben Scott  wrote:
> On Mon, Apr 8, 2013 at 8:01 PM, Kurt Buff  wrote:
>> Agree with MBS that other tools could stand in for PowerShell, but WCE
>> was actually new to me.
>
>   Well, then, you didn't say that, you seemed focused on PoSh.
>
>   WCE in particular is new to me, too, but I've certainly read of
> attacks on the running system to recover credentials before.  That's
> why trusting the computer you're logging into is really important.  :)
>
>   It's good to know there's an easy-to-use tool available, though.  :)

Didn't make it clear, true - wrong subject line, I suppose.

Trusting computers is not something that comes easily to me, any more,
unless I'm the only one who has touched it. Too many folks don't
understand the implications of their actions.

Kurt

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: POSH PtH - this is...

[Ben Scott]

On Mon, Apr 8, 2013 at 8:01 PM, Kurt Buff  wrote:
> Agree with MBS that other tools could stand in for PowerShell, but WCE
> was actually new to me.

  Well, then, you didn't say that, you seemed focused on PoSh.

  WCE in particular is new to me, too, but I've certainly read of
attacks on the running system to recover credentials before.  That's
why trusting the computer you're logging into is really important.  :)

  It's good to know there's an easy-to-use tool available, though.  :)

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: RESOLVED: Excel 2010 problem - can't quite figure it out

[Kurt Buff]

It would not surprise me if it were true.

I'm studying for the CISSP exam.

I figure that will give me a better chance of finding a job  - one
that pays well, anyway.

Kurt

On Mon, Apr 8, 2013 at 7:40 PM, Jon Harris  wrote:
> It was on LinkedIn Today not something that Andrew post.
>
> Jon
> 
> From: jk.har...@live.com
> To: ntsysadmin@lyris.sunbelt-software.com
> Subject: RE: RESOLVED: Excel 2010 problem - can't quite figure it out
> Date: Mon, 8 Apr 2013 22:38:56 -0400
>
>
> Your manager maybe aware of your intention thus restricting your input into
> hiring or he/she may just have an ego that is too large to fit in a
> multistory warehouse.  Either way good luck getting out.  A recent article I
> saw (I think it was Andrew that posted it) on LinkedIn seems to indicate the
> job market may not be expanding much and may be getting tighter again
> despite what the numbers the government is spouting.
>
> Jon
>
>> Date: Mon, 8 Apr 2013 19:30:54 -0700
>> Subject: Re: RESOLVED: Excel 2010 problem - can't quite figure it out
>> From: kurt.b...@gmail.com
>> To: ntsysadmin@lyris.sunbelt-software.com
>>
>> I was told to interview him only for cultural/team fit, in a separate
>> and shorter interview, and I had to push to get that.
>>
>> Manager wanted to be the one who interviewed for technical ability - all
>> alone.
>>
>> New guy interviewed very well, and I liked him a lot.
>>
>> Just one more reason why I'm not happy with my manager, and will be
>> leaving as soon as I find the right job...
>>
>> Kurt
>>
>> On Mon, Apr 8, 2013 at 7:17 PM, Jon Harris  wrote:
>> > If you had anything to do with the hiring of the young pup then take
>> > partial
>> > credit for being smart enough to know talent when you see it. If not
>> > then
>> > watch your back he may be really good.
>> >
>> > Jon
>> >> Date: Mon, 8 Apr 2013 18:57:39 -0700
>> >> Subject: Re: RESOLVED: Excel 2010 problem - can't quite figure it out
>> >> From: kurt.b...@gmail.com
>> >> To: ntsysadmin@lyris.sunbelt-software.com
>> >
>> >>
>> >> Absolutely - but I had to very unseriously threaten to kick his butt
>> >> for showing me up in front of customers. :-o
>> >>
>> >> Kurt
>> >>
>> >> On Mon, Apr 8, 2013 at 6:32 PM, Robert Cato 
>> >> wrote:
>> >> >
>> >> > That was a good hire and a big win for him on the first day.
>> >> >
>> >> >
>> >> > On Mon, Apr 8, 2013 at 8:06 PM, Kurt Buff 
>> >> > wrote:
>> >> >>
>> >> >> The young pup whose first day was today opened it in compatibility
>> >> >> mode, did a Save As and it worked, then closed Excel and tried it in
>> >> >> native mode, and it worked again.
>> >> >>
>> >> >> Gotta love having a new set of eyes on a problem.
>> >> >>
>> >> >> Don't know what root cause was, but it's a win, and I'll take it.
>> >> >>
>> >> >> Kurt
>> >> >>
>> >> >> On Mon, Apr 8, 2013 at 6:14 AM, Miller Bonnie L.
>> >> >>  wrote:
>> >> >> > Have you tried starting Excel with no add-ins as well (safemode)?
>> >> >> > Should be a /s on the command line.
>> >> >> >
>> >> >> >
>> >> >> >
>> >> >> >
>> >> >> > http://office.microsoft.com/en-us/excel-help/command-line-switches-for-excel-HA010158030.aspx
>> >> >> >
>> >> >> > -Original Message-
>> >> >> > From: Kurt Buff [mailto:kurt.b...@gmail.com]
>> >> >> > Sent: Saturday, April 06, 2013 4:28 PM
>> >> >> > To: NT System Admin Issues
>> >> >> > Subject: Re: Excel 2010 problem - can't quite figure it out
>> >> >> >
>> >> >> > I will try that, and let you know on Monday.
>> >> >> >
>> >> >> > Kurt
>> >> >> >
>> >> >> > On Sat, Apr 6, 2013 at 1:56 PM, Orland, Kathleen
>> >> >> > 
>> >> >> > wrote:
>> >> >> >> Book.xltx is the name of the template. The location should be in
>> >> >> >> the
>> >> >> >> XLSTART folder in Office. If not, then try this in VBE
>> >> >> >> :
>> >> >> >>
>> >> >> >> Press [Alt]+[F11] to launch the VBE.
>> >> >> >> If the Immediate window isn’t visible, press [Ctrl]+g.
>> >> >> >> In the Immediate window, type ? application.StartupPath and press
>> >> >> >> Enter. VBA will display the path to XLStart.
>> >> >> >>
>> >> >> >> -Original Message-
>> >> >> >> From: Terry Dickson [mailto:te...@treasurer.state.ks.us]
>> >> >> >> Sent: Saturday, April 06, 2013 2:07 PM
>> >> >> >> To: NT System Admin Issues
>> >> >> >> Subject: Re: Excel 2010 problem - can't quite figure it out
>> >> >> >>
>> >> >> >> I forget what it is called in 2010 but if you delete the default
>> >> >> >> Excel
>> >> >> >> Template and let Excel create a new one next time the user opens
>> >> >> >> it.
>> >> >> >> We
>> >> >> >> have not had this problem since 2007 but in 2003 it was common.
>> >> >> >> We
>> >> >> >> would
>> >> >> >> just delete the default and it would create a new one and the
>> >> >> >> problem went
>> >> >> >> away.
>> >> >> >> ~ Finally, powerful endpoint security that ISN'T a resource hog!
>> >> >> >> ~ ~
>> >> >> >>  ~
>> >> >> >>
>> >> >> >> ---
>> >> >> >> To manage 

RE: RESOLVED: Excel 2010 problem - can't quite figure it out

[Jon Harris]

It was on LinkedIn Today not something that Andrew post. Jon From: 
jk.har...@live.com
To: ntsysadmin@lyris.sunbelt-software.com
Subject: RE: RESOLVED: Excel 2010 problem - can't quite figure it out
Date: Mon, 8 Apr 2013 22:38:56 -0400




Your manager maybe aware of your intention thus restricting your input into 
hiring or he/she may just have an ego that is too large to fit in a multistory 
warehouse.  Either way good luck getting out.  A recent article I saw (I think 
it was Andrew that posted it) on LinkedIn seems to indicate the job market may 
not be expanding much and may be getting tighter again despite what the numbers 
the government is spouting.
 
Jon
 
> Date: Mon, 8 Apr 2013 19:30:54 -0700
> Subject: Re: RESOLVED: Excel 2010 problem - can't quite figure it out
> From: kurt.b...@gmail.com
> To: ntsysadmin@lyris.sunbelt-software.com
> 
> I was told to interview him only for cultural/team fit, in a separate
> and shorter interview, and I had to push to get that.
> 
> Manager wanted to be the one who interviewed for technical ability - all 
> alone.
> 
> New guy interviewed very well, and I liked him a lot.
> 
> Just one more reason why I'm not happy with my manager, and will be
> leaving as soon as I find the right job...
> 
> Kurt
> 
> On Mon, Apr 8, 2013 at 7:17 PM, Jon Harris  wrote:
> > If you had anything to do with the hiring of the young pup then take partial
> > credit for being smart enough to know talent when you see it.  If not then
> > watch your back he may be really good.
> >
> > Jon
> >> Date: Mon, 8 Apr 2013 18:57:39 -0700
> >> Subject: Re: RESOLVED: Excel 2010 problem - can't quite figure it out
> >> From: kurt.b...@gmail.com
> >> To: ntsysadmin@lyris.sunbelt-software.com
> >
> >>
> >> Absolutely - but I had to very unseriously threaten to kick his butt
> >> for showing me up in front of customers. :-o
> >>
> >> Kurt
> >>
> >> On Mon, Apr 8, 2013 at 6:32 PM, Robert Cato  wrote:
> >> >
> >> > That was a good hire and a big win for him on the first day.
> >> >
> >> >
> >> > On Mon, Apr 8, 2013 at 8:06 PM, Kurt Buff  wrote:
> >> >>
> >> >> The young pup whose first day was today opened it in compatibility
> >> >> mode, did a Save As and it worked, then closed Excel and tried it in
> >> >> native mode, and it worked again.
> >> >>
> >> >> Gotta love having a new set of eyes on a problem.
> >> >>
> >> >> Don't know what root cause was, but it's a win, and I'll take it.
> >> >>
> >> >> Kurt
> >> >>
> >> >> On Mon, Apr 8, 2013 at 6:14 AM, Miller Bonnie L.
> >> >>  wrote:
> >> >> > Have you tried starting Excel with no add-ins as well (safemode)?
> >> >> > Should be a /s on the command line.
> >> >> >
> >> >> >
> >> >> >
> >> >> > http://office.microsoft.com/en-us/excel-help/command-line-switches-for-excel-HA010158030.aspx
> >> >> >
> >> >> > -Original Message-
> >> >> > From: Kurt Buff [mailto:kurt.b...@gmail.com]
> >> >> > Sent: Saturday, April 06, 2013 4:28 PM
> >> >> > To: NT System Admin Issues
> >> >> > Subject: Re: Excel 2010 problem - can't quite figure it out
> >> >> >
> >> >> > I will try that, and let you know on Monday.
> >> >> >
> >> >> > Kurt
> >> >> >
> >> >> > On Sat, Apr 6, 2013 at 1:56 PM, Orland, Kathleen 
> >> >> > wrote:
> >> >> >> Book.xltx is the name of the template. The location should be in the
> >> >> >> XLSTART folder in Office. If not, then try this in VBE
> >> >> >> :
> >> >> >>
> >> >> >> Press [Alt]+[F11] to launch the VBE.
> >> >> >> If the Immediate window isn’t visible, press [Ctrl]+g.
> >> >> >> In the Immediate window, type ? application.StartupPath and press
> >> >> >> Enter. VBA will display the path to XLStart.
> >> >> >>
> >> >> >> -Original Message-
> >> >> >> From: Terry Dickson [mailto:te...@treasurer.state.ks.us]
> >> >> >> Sent: Saturday, April 06, 2013 2:07 PM
> >> >> >> To: NT System Admin Issues
> >> >> >> Subject: Re: Excel 2010 problem - can't quite figure it out
> >> >> >>
> >> >> >> I forget what it is called in 2010 but if you delete the default
> >> >> >> Excel
> >> >> >> Template and let Excel create a new one next time the user opens it.
> >> >> >> We
> >> >> >> have not had this problem since 2007 but in 2003 it was common. We
> >> >> >> would
> >> >> >> just delete the default and it would create a new one and the
> >> >> >> problem went
> >> >> >> away.
> >> >> >> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
> >> >> >>  ~
> >> >> >>
> >> >> >> ---
> >> >> >> To manage subscriptions click here:
> >> >> >> http://lyris.sunbelt-software.com/read/my_forums/
> >> >> >> or send an email to listmana...@lyris.sunbeltsoftware.com
> >> >> >> with the body: unsubscribe ntsysadmin
> >> >> >>
> >> >> >>
> >> >> >> -
> >> >> >> No virus found in this message.
> >> >> >> Checked by AVG - www.avg.com
> >> >> >> Version: 2013.0.3272 / Virus Database: 3162/6228 - Release Date:
> >> >> >> 04/06/13
> >> >> >>
> >> >> >>
> >> >> >> ~ Finally, powe

RE: RESOLVED: Excel 2010 problem - can't quite figure it out

[Jon Harris]

Your manager maybe aware of your intention thus restricting your input into 
hiring or he/she may just have an ego that is too large to fit in a multistory 
warehouse.  Either way good luck getting out.  A recent article I saw (I think 
it was Andrew that posted it) on LinkedIn seems to indicate the job market may 
not be expanding much and may be getting tighter again despite what the numbers 
the government is spouting. Jon
 > Date: Mon, 8 Apr 2013 19:30:54 -0700
> Subject: Re: RESOLVED: Excel 2010 problem - can't quite figure it out
> From: kurt.b...@gmail.com
> To: ntsysadmin@lyris.sunbelt-software.com
> 
> I was told to interview him only for cultural/team fit, in a separate
> and shorter interview, and I had to push to get that.
> 
> Manager wanted to be the one who interviewed for technical ability - all 
> alone.
> 
> New guy interviewed very well, and I liked him a lot.
> 
> Just one more reason why I'm not happy with my manager, and will be
> leaving as soon as I find the right job...
> 
> Kurt
> 
> On Mon, Apr 8, 2013 at 7:17 PM, Jon Harris  wrote:
> > If you had anything to do with the hiring of the young pup then take partial
> > credit for being smart enough to know talent when you see it.  If not then
> > watch your back he may be really good.
> >
> > Jon
> >> Date: Mon, 8 Apr 2013 18:57:39 -0700
> >> Subject: Re: RESOLVED: Excel 2010 problem - can't quite figure it out
> >> From: kurt.b...@gmail.com
> >> To: ntsysadmin@lyris.sunbelt-software.com
> >
> >>
> >> Absolutely - but I had to very unseriously threaten to kick his butt
> >> for showing me up in front of customers. :-o
> >>
> >> Kurt
> >>
> >> On Mon, Apr 8, 2013 at 6:32 PM, Robert Cato  wrote:
> >> >
> >> > That was a good hire and a big win for him on the first day.
> >> >
> >> >
> >> > On Mon, Apr 8, 2013 at 8:06 PM, Kurt Buff  wrote:
> >> >>
> >> >> The young pup whose first day was today opened it in compatibility
> >> >> mode, did a Save As and it worked, then closed Excel and tried it in
> >> >> native mode, and it worked again.
> >> >>
> >> >> Gotta love having a new set of eyes on a problem.
> >> >>
> >> >> Don't know what root cause was, but it's a win, and I'll take it.
> >> >>
> >> >> Kurt
> >> >>
> >> >> On Mon, Apr 8, 2013 at 6:14 AM, Miller Bonnie L.
> >> >>  wrote:
> >> >> > Have you tried starting Excel with no add-ins as well (safemode)?
> >> >> > Should be a /s on the command line.
> >> >> >
> >> >> >
> >> >> >
> >> >> > http://office.microsoft.com/en-us/excel-help/command-line-switches-for-excel-HA010158030.aspx
> >> >> >
> >> >> > -Original Message-
> >> >> > From: Kurt Buff [mailto:kurt.b...@gmail.com]
> >> >> > Sent: Saturday, April 06, 2013 4:28 PM
> >> >> > To: NT System Admin Issues
> >> >> > Subject: Re: Excel 2010 problem - can't quite figure it out
> >> >> >
> >> >> > I will try that, and let you know on Monday.
> >> >> >
> >> >> > Kurt
> >> >> >
> >> >> > On Sat, Apr 6, 2013 at 1:56 PM, Orland, Kathleen 
> >> >> > wrote:
> >> >> >> Book.xltx is the name of the template. The location should be in the
> >> >> >> XLSTART folder in Office. If not, then try this in VBE
> >> >> >> :
> >> >> >>
> >> >> >> Press [Alt]+[F11] to launch the VBE.
> >> >> >> If the Immediate window isn’t visible, press [Ctrl]+g.
> >> >> >> In the Immediate window, type ? application.StartupPath and press
> >> >> >> Enter. VBA will display the path to XLStart.
> >> >> >>
> >> >> >> -Original Message-
> >> >> >> From: Terry Dickson [mailto:te...@treasurer.state.ks.us]
> >> >> >> Sent: Saturday, April 06, 2013 2:07 PM
> >> >> >> To: NT System Admin Issues
> >> >> >> Subject: Re: Excel 2010 problem - can't quite figure it out
> >> >> >>
> >> >> >> I forget what it is called in 2010 but if you delete the default
> >> >> >> Excel
> >> >> >> Template and let Excel create a new one next time the user opens it.
> >> >> >> We
> >> >> >> have not had this problem since 2007 but in 2003 it was common. We
> >> >> >> would
> >> >> >> just delete the default and it would create a new one and the
> >> >> >> problem went
> >> >> >> away.
> >> >> >> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
> >> >> >>  ~
> >> >> >>
> >> >> >> ---
> >> >> >> To manage subscriptions click here:
> >> >> >> http://lyris.sunbelt-software.com/read/my_forums/
> >> >> >> or send an email to listmana...@lyris.sunbeltsoftware.com
> >> >> >> with the body: unsubscribe ntsysadmin
> >> >> >>
> >> >> >>
> >> >> >> -
> >> >> >> No virus found in this message.
> >> >> >> Checked by AVG - www.avg.com
> >> >> >> Version: 2013.0.3272 / Virus Database: 3162/6228 - Release Date:
> >> >> >> 04/06/13
> >> >> >>
> >> >> >>
> >> >> >> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
> >> >> >>  ~
> >> >> >>
> >> >> >> ---
> >> >> >> To manage subscriptions click here:
> >> >> >> http://lyris.sunbelt-software.co

Re: RESOLVED: Excel 2010 problem - can't quite figure it out

[Kurt Buff]

I was told to interview him only for cultural/team fit, in a separate
and shorter interview, and I had to push to get that.

Manager wanted to be the one who interviewed for technical ability - all alone.

New guy interviewed very well, and I liked him a lot.

Just one more reason why I'm not happy with my manager, and will be
leaving as soon as I find the right job...

Kurt

On Mon, Apr 8, 2013 at 7:17 PM, Jon Harris  wrote:
> If you had anything to do with the hiring of the young pup then take partial
> credit for being smart enough to know talent when you see it.  If not then
> watch your back he may be really good.
>
> Jon
>> Date: Mon, 8 Apr 2013 18:57:39 -0700
>> Subject: Re: RESOLVED: Excel 2010 problem - can't quite figure it out
>> From: kurt.b...@gmail.com
>> To: ntsysadmin@lyris.sunbelt-software.com
>
>>
>> Absolutely - but I had to very unseriously threaten to kick his butt
>> for showing me up in front of customers. :-o
>>
>> Kurt
>>
>> On Mon, Apr 8, 2013 at 6:32 PM, Robert Cato  wrote:
>> >
>> > That was a good hire and a big win for him on the first day.
>> >
>> >
>> > On Mon, Apr 8, 2013 at 8:06 PM, Kurt Buff  wrote:
>> >>
>> >> The young pup whose first day was today opened it in compatibility
>> >> mode, did a Save As and it worked, then closed Excel and tried it in
>> >> native mode, and it worked again.
>> >>
>> >> Gotta love having a new set of eyes on a problem.
>> >>
>> >> Don't know what root cause was, but it's a win, and I'll take it.
>> >>
>> >> Kurt
>> >>
>> >> On Mon, Apr 8, 2013 at 6:14 AM, Miller Bonnie L.
>> >>  wrote:
>> >> > Have you tried starting Excel with no add-ins as well (safemode)?
>> >> > Should be a /s on the command line.
>> >> >
>> >> >
>> >> >
>> >> > http://office.microsoft.com/en-us/excel-help/command-line-switches-for-excel-HA010158030.aspx
>> >> >
>> >> > -Original Message-
>> >> > From: Kurt Buff [mailto:kurt.b...@gmail.com]
>> >> > Sent: Saturday, April 06, 2013 4:28 PM
>> >> > To: NT System Admin Issues
>> >> > Subject: Re: Excel 2010 problem - can't quite figure it out
>> >> >
>> >> > I will try that, and let you know on Monday.
>> >> >
>> >> > Kurt
>> >> >
>> >> > On Sat, Apr 6, 2013 at 1:56 PM, Orland, Kathleen 
>> >> > wrote:
>> >> >> Book.xltx is the name of the template. The location should be in the
>> >> >> XLSTART folder in Office. If not, then try this in VBE
>> >> >> :
>> >> >>
>> >> >> Press [Alt]+[F11] to launch the VBE.
>> >> >> If the Immediate window isn’t visible, press [Ctrl]+g.
>> >> >> In the Immediate window, type ? application.StartupPath and press
>> >> >> Enter. VBA will display the path to XLStart.
>> >> >>
>> >> >> -Original Message-
>> >> >> From: Terry Dickson [mailto:te...@treasurer.state.ks.us]
>> >> >> Sent: Saturday, April 06, 2013 2:07 PM
>> >> >> To: NT System Admin Issues
>> >> >> Subject: Re: Excel 2010 problem - can't quite figure it out
>> >> >>
>> >> >> I forget what it is called in 2010 but if you delete the default
>> >> >> Excel
>> >> >> Template and let Excel create a new one next time the user opens it.
>> >> >> We
>> >> >> have not had this problem since 2007 but in 2003 it was common. We
>> >> >> would
>> >> >> just delete the default and it would create a new one and the
>> >> >> problem went
>> >> >> away.
>> >> >> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>> >> >>  ~
>> >> >>
>> >> >> ---
>> >> >> To manage subscriptions click here:
>> >> >> http://lyris.sunbelt-software.com/read/my_forums/
>> >> >> or send an email to listmana...@lyris.sunbeltsoftware.com
>> >> >> with the body: unsubscribe ntsysadmin
>> >> >>
>> >> >>
>> >> >> -
>> >> >> No virus found in this message.
>> >> >> Checked by AVG - www.avg.com
>> >> >> Version: 2013.0.3272 / Virus Database: 3162/6228 - Release Date:
>> >> >> 04/06/13
>> >> >>
>> >> >>
>> >> >> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>> >> >>  ~
>> >> >>
>> >> >> ---
>> >> >> To manage subscriptions click here:
>> >> >> http://lyris.sunbelt-software.com/read/my_forums/
>> >> >> or send an email to listmana...@lyris.sunbeltsoftware.com
>> >> >> with the body: unsubscribe ntsysadmin
>> >> >>
>> >> >
>> >> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>> >> >  ~
>> >> >
>> >> > ---
>> >> > To manage subscriptions click here:
>> >> > http://lyris.sunbelt-software.com/read/my_forums/
>> >> > or send an email to listmana...@lyris.sunbeltsoftware.com
>> >> > with the body: unsubscribe ntsysadmin
>> >> >
>> >> >
>> >> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> >> > ~  ~
>> >> >
>> >> > ---
>> >> > To manage subscriptions click here:
>> >> > http://lyris.sunbelt-software.com/read/my_forums/
>> >> > or send an email to listm

Re: POSH PtH - this is...

[Kurt Buff]

Yes, and even if not a local admin you can run a physical keylogger on
a workstation and try to entice someone with more privileges than your
account has to log in an capture their credentials.

That's not exactly the point of my post.

The point is, as pointed out in another part of the thread, the
article a new (to me, at least) vector for getting credentials - WCE -
in a much different way than a whole other set of well-known tools for
getting credentials.

It another good example to bolster the case for mandating that people
who do privileged tasks do so with appropriate accounts, care and
attitude.

For instance, at my place of work the supposedly security-aware IT
manager has no problem logging into workstations and servers with his
DA account. This, in spite of the fact that I have several times
explained to him why I have 4 different accounts for my tasks, each
with different levels of access. (personal, workstation admin, server
admin and DA - I haven't yet set up an Exchange admin account, but
will when we migrate to Exchange 2010.)

I forwarded the article to him in hopes of awakening him a bit to the threat.

Above and beyond all of that - if it hasn't been done already, I would
bet that it won't be long before someone weaponizes WCE...

Kurt

On Mon, Apr 8, 2013 at 6:46 PM, Ken Schaefer  wrote:
> If you're admin on the machine, can't you just run a keylogger? Then you've 
> got the DA's credentials in the clear (assuming they use a password)
>
> Cheers
> Ken
>
> -Original Message-
> From: Kurt Buff [mailto:kurt.b...@gmail.com]
> Sent: Tuesday, 9 April 2013 10:01 AM
> To: NT System Admin Issues
> Subject: Re: POSH PtH - this is...
>
> On Mon, Apr 8, 2013 at 4:17 PM, Ben Scott  wrote:
>> On Mon, Apr 8, 2013 at 7:06 PM, Kurt Buff  wrote:
>>> Amusing? Alarming? Both?
>>> http://labofapenetrationtester.blogspot.in/2013/04/poshing-the-hashes.html
>>
>>   Neither?
>>
>>   It seem to boil down to, if you steal credentials, you gain access
>> to what those credentials protect.  This should not be a surprise.
>> :-)
>
> Not exactly neither - the use of WCE is the key, methinks.
>
> WCE allows theft of credentials from others accounts that are stored
> in RAM, with the possible upgrade of credentials that this would
> imply, if higher-security accounts such as DAs
>
> Agree with MBS that other tools could stand in for PowerShell, but WCE
> was actually new to me.
>
> Granted, you must be local admin to use WCE, but if you're local admin
> on a server or workstation, and a DA account logs in and leaves
> credentials in memory, well, your task is accomplished.
>
> Kurt
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: RESOLVED: Excel 2010 problem - can't quite figure it out

[Jon Harris]

If you had anything to do with the hiring of the young pup then take partial 
credit for being smart enough to know talent when you see it.  If not then 
watch your back he may be really good. Jon > Date: Mon, 8 Apr 2013 18:57:39 
-0700
> Subject: Re: RESOLVED: Excel 2010 problem - can't quite figure it out
> From: kurt.b...@gmail.com
> To: ntsysadmin@lyris.sunbelt-software.com
> 
> Absolutely - but I had to very unseriously threaten to kick his butt
> for showing me up in front of customers. :-o
> 
> Kurt
> 
> On Mon, Apr 8, 2013 at 6:32 PM, Robert Cato  wrote:
> >
> > That was a good hire and a big win for him on the first day.
> >
> >
> > On Mon, Apr 8, 2013 at 8:06 PM, Kurt Buff  wrote:
> >>
> >> The young pup whose first day was today opened it in compatibility
> >> mode, did a Save As and it worked, then closed Excel and tried it in
> >> native mode, and it worked again.
> >>
> >> Gotta love having a new set of eyes on a problem.
> >>
> >> Don't know what root cause was, but it's a win, and I'll take it.
> >>
> >> Kurt
> >>
> >> On Mon, Apr 8, 2013 at 6:14 AM, Miller Bonnie L.
> >>  wrote:
> >> > Have you tried starting Excel with no add-ins as well (safemode)?
> >> > Should be a /s on the command line.
> >> >
> >> >
> >> > http://office.microsoft.com/en-us/excel-help/command-line-switches-for-excel-HA010158030.aspx
> >> >
> >> > -Original Message-
> >> > From: Kurt Buff [mailto:kurt.b...@gmail.com]
> >> > Sent: Saturday, April 06, 2013 4:28 PM
> >> > To: NT System Admin Issues
> >> > Subject: Re: Excel 2010 problem - can't quite figure it out
> >> >
> >> > I will try that, and let you know on Monday.
> >> >
> >> > Kurt
> >> >
> >> > On Sat, Apr 6, 2013 at 1:56 PM, Orland, Kathleen 
> >> > wrote:
> >> >> Book.xltx is the name of the template. The location should be in the
> >> >> XLSTART folder in Office. If not, then try this in VBE
> >> >> :
> >> >>
> >> >> Press [Alt]+[F11] to launch the VBE.
> >> >> If the Immediate window isn’t visible, press [Ctrl]+g.
> >> >> In the Immediate window, type ? application.StartupPath and press
> >> >> Enter. VBA will display the path to XLStart.
> >> >>
> >> >> -Original Message-
> >> >> From: Terry Dickson [mailto:te...@treasurer.state.ks.us]
> >> >> Sent: Saturday, April 06, 2013 2:07 PM
> >> >> To: NT System Admin Issues
> >> >> Subject: Re: Excel 2010 problem - can't quite figure it out
> >> >>
> >> >> I forget what it is called in 2010 but if you delete the default Excel
> >> >> Template and let Excel create a new one next time the user opens it.  We
> >> >> have not had this problem since 2007 but in 2003 it was common.  We 
> >> >> would
> >> >> just delete the default and it would create a new one and the problem 
> >> >> went
> >> >> away.
> >> >> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
> >> >>   ~
> >> >>
> >> >> ---
> >> >> To manage subscriptions click here:
> >> >> http://lyris.sunbelt-software.com/read/my_forums/
> >> >> or send an email to listmana...@lyris.sunbeltsoftware.com
> >> >> with the body: unsubscribe ntsysadmin
> >> >>
> >> >>
> >> >> -
> >> >> No virus found in this message.
> >> >> Checked by AVG - www.avg.com
> >> >> Version: 2013.0.3272 / Virus Database: 3162/6228 - Release Date:
> >> >> 04/06/13
> >> >>
> >> >>
> >> >> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
> >> >>   ~
> >> >>
> >> >> ---
> >> >> To manage subscriptions click here:
> >> >> http://lyris.sunbelt-software.com/read/my_forums/
> >> >> or send an email to listmana...@lyris.sunbeltsoftware.com
> >> >> with the body: unsubscribe ntsysadmin
> >> >>
> >> >
> >> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
> >> >   ~
> >> >
> >> > ---
> >> > To manage subscriptions click here:
> >> > http://lyris.sunbelt-software.com/read/my_forums/
> >> > or send an email to listmana...@lyris.sunbeltsoftware.com
> >> > with the body: unsubscribe ntsysadmin
> >> >
> >> >
> >> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> >> > ~   ~
> >> >
> >> > ---
> >> > To manage subscriptions click here:
> >> > http://lyris.sunbelt-software.com/read/my_forums/
> >> > or send an email to listmana...@lyris.sunbeltsoftware.com
> >> > with the body: unsubscribe ntsysadmin
> >>
> >> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> >> ~   ~
> >>
> >> ---
> >> To manage subscriptions click here:
> >> http://lyris.sunbelt-software.com/read/my_forums/
> >> or send an email to listmana...@lyris.sunbeltsoftware.com
> >> with the body: unsubscribe ntsysadmin
> >>
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > ~ 

Re: RESOLVED: Excel 2010 problem - can't quite figure it out

[Kurt Buff]

Absolutely - but I had to very unseriously threaten to kick his butt
for showing me up in front of customers. :-o

Kurt

On Mon, Apr 8, 2013 at 6:32 PM, Robert Cato  wrote:
>
> That was a good hire and a big win for him on the first day.
>
>
> On Mon, Apr 8, 2013 at 8:06 PM, Kurt Buff  wrote:
>>
>> The young pup whose first day was today opened it in compatibility
>> mode, did a Save As and it worked, then closed Excel and tried it in
>> native mode, and it worked again.
>>
>> Gotta love having a new set of eyes on a problem.
>>
>> Don't know what root cause was, but it's a win, and I'll take it.
>>
>> Kurt
>>
>> On Mon, Apr 8, 2013 at 6:14 AM, Miller Bonnie L.
>>  wrote:
>> > Have you tried starting Excel with no add-ins as well (safemode)?
>> > Should be a /s on the command line.
>> >
>> >
>> > http://office.microsoft.com/en-us/excel-help/command-line-switches-for-excel-HA010158030.aspx
>> >
>> > -Original Message-
>> > From: Kurt Buff [mailto:kurt.b...@gmail.com]
>> > Sent: Saturday, April 06, 2013 4:28 PM
>> > To: NT System Admin Issues
>> > Subject: Re: Excel 2010 problem - can't quite figure it out
>> >
>> > I will try that, and let you know on Monday.
>> >
>> > Kurt
>> >
>> > On Sat, Apr 6, 2013 at 1:56 PM, Orland, Kathleen 
>> > wrote:
>> >> Book.xltx is the name of the template. The location should be in the
>> >> XLSTART folder in Office. If not, then try this in VBE
>> >> :
>> >>
>> >> Press [Alt]+[F11] to launch the VBE.
>> >> If the Immediate window isn’t visible, press [Ctrl]+g.
>> >> In the Immediate window, type ? application.StartupPath and press
>> >> Enter. VBA will display the path to XLStart.
>> >>
>> >> -Original Message-
>> >> From: Terry Dickson [mailto:te...@treasurer.state.ks.us]
>> >> Sent: Saturday, April 06, 2013 2:07 PM
>> >> To: NT System Admin Issues
>> >> Subject: Re: Excel 2010 problem - can't quite figure it out
>> >>
>> >> I forget what it is called in 2010 but if you delete the default Excel
>> >> Template and let Excel create a new one next time the user opens it.  We
>> >> have not had this problem since 2007 but in 2003 it was common.  We would
>> >> just delete the default and it would create a new one and the problem went
>> >> away.
>> >> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>> >>   ~
>> >>
>> >> ---
>> >> To manage subscriptions click here:
>> >> http://lyris.sunbelt-software.com/read/my_forums/
>> >> or send an email to listmana...@lyris.sunbeltsoftware.com
>> >> with the body: unsubscribe ntsysadmin
>> >>
>> >>
>> >> -
>> >> No virus found in this message.
>> >> Checked by AVG - www.avg.com
>> >> Version: 2013.0.3272 / Virus Database: 3162/6228 - Release Date:
>> >> 04/06/13
>> >>
>> >>
>> >> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>> >>   ~
>> >>
>> >> ---
>> >> To manage subscriptions click here:
>> >> http://lyris.sunbelt-software.com/read/my_forums/
>> >> or send an email to listmana...@lyris.sunbeltsoftware.com
>> >> with the body: unsubscribe ntsysadmin
>> >>
>> >
>> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>> >   ~
>> >
>> > ---
>> > To manage subscriptions click here:
>> > http://lyris.sunbelt-software.com/read/my_forums/
>> > or send an email to listmana...@lyris.sunbeltsoftware.com
>> > with the body: unsubscribe ntsysadmin
>> >
>> >
>> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> > ~   ~
>> >
>> > ---
>> > To manage subscriptions click here:
>> > http://lyris.sunbelt-software.com/read/my_forums/
>> > or send an email to listmana...@lyris.sunbeltsoftware.com
>> > with the body: unsubscribe ntsysadmin
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: POSH PtH - this is...

[Ken Schaefer]

If you're admin on the machine, can't you just run a keylogger? Then you've got 
the DA's credentials in the clear (assuming they use a password)

Cheers
Ken

-Original Message-
From: Kurt Buff [mailto:kurt.b...@gmail.com] 
Sent: Tuesday, 9 April 2013 10:01 AM
To: NT System Admin Issues
Subject: Re: POSH PtH - this is...

On Mon, Apr 8, 2013 at 4:17 PM, Ben Scott  wrote:
> On Mon, Apr 8, 2013 at 7:06 PM, Kurt Buff  wrote:
>> Amusing? Alarming? Both?
>> http://labofapenetrationtester.blogspot.in/2013/04/poshing-the-hashes.html
>
>   Neither?
>
>   It seem to boil down to, if you steal credentials, you gain access
> to what those credentials protect.  This should not be a surprise.
> :-)

Not exactly neither - the use of WCE is the key, methinks.

WCE allows theft of credentials from others accounts that are stored
in RAM, with the possible upgrade of credentials that this would
imply, if higher-security accounts such as DAs

Agree with MBS that other tools could stand in for PowerShell, but WCE
was actually new to me.

Granted, you must be local admin to use WCE, but if you're local admin
on a server or workstation, and a DA account logs in and leaves
credentials in memory, well, your task is accomplished.

Kurt


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: RESOLVED: Excel 2010 problem - can't quite figure it out

[Robert Cato]

That was a good hire and a big win for him on the first day.


On Mon, Apr 8, 2013 at 8:06 PM, Kurt Buff  wrote:

> The young pup whose first day was today opened it in compatibility
> mode, did a Save As and it worked, then closed Excel and tried it in
> native mode, and it worked again.
>
> Gotta love having a new set of eyes on a problem.
>
> Don't know what root cause was, but it's a win, and I'll take it.
>
> Kurt
>
> On Mon, Apr 8, 2013 at 6:14 AM, Miller Bonnie L.
>  wrote:
> > Have you tried starting Excel with no add-ins as well (safemode)?
>  Should be a /s on the command line.
> >
> >
> http://office.microsoft.com/en-us/excel-help/command-line-switches-for-excel-HA010158030.aspx
> >
> > -Original Message-
> > From: Kurt Buff [mailto:kurt.b...@gmail.com]
> > Sent: Saturday, April 06, 2013 4:28 PM
> > To: NT System Admin Issues
> > Subject: Re: Excel 2010 problem - can't quite figure it out
> >
> > I will try that, and let you know on Monday.
> >
> > Kurt
> >
> > On Sat, Apr 6, 2013 at 1:56 PM, Orland, Kathleen 
> wrote:
> >> Book.xltx is the name of the template. The location should be in the
> >> XLSTART folder in Office. If not, then try this in VBE
> >> :
> >>
> >> Press [Alt]+[F11] to launch the VBE.
> >> If the Immediate window isn’t visible, press [Ctrl]+g.
> >> In the Immediate window, type ? application.StartupPath and press
> Enter. VBA will display the path to XLStart.
> >>
> >> -Original Message-
> >> From: Terry Dickson [mailto:te...@treasurer.state.ks.us]
> >> Sent: Saturday, April 06, 2013 2:07 PM
> >> To: NT System Admin Issues
> >> Subject: Re: Excel 2010 problem - can't quite figure it out
> >>
> >> I forget what it is called in 2010 but if you delete the default Excel
> Template and let Excel create a new one next time the user opens it.  We
> have not had this problem since 2007 but in 2003 it was common.  We would
> just delete the default and it would create a new one and the problem went
> away.
> >> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
> >>   ~
> >>
> >> ---
> >> To manage subscriptions click here:
> >> http://lyris.sunbelt-software.com/read/my_forums/
> >> or send an email to listmana...@lyris.sunbeltsoftware.com
> >> with the body: unsubscribe ntsysadmin
> >>
> >>
> >> -
> >> No virus found in this message.
> >> Checked by AVG - www.avg.com
> >> Version: 2013.0.3272 / Virus Database: 3162/6228 - Release Date:
> >> 04/06/13
> >>
> >>
> >> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
> >>   ~
> >>
> >> ---
> >> To manage subscriptions click here:
> >> http://lyris.sunbelt-software.com/read/my_forums/
> >> or send an email to listmana...@lyris.sunbeltsoftware.com
> >> with the body: unsubscribe ntsysadmin
> >>
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <
> http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
> >
> > ---
> > To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> > or send an email to listmana...@lyris.sunbeltsoftware.com
> > with the body: unsubscribe ntsysadmin
> >
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > ~   ~
> >
> > ---
> > To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> > or send an email to listmana...@lyris.sunbeltsoftware.com
> > with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: UPS vs Switch Sanity Check

[Jon Harris]

I don't know about their claims but I would think that a switch with 
programming time would cost the company a lot more than UPS batteries.  It 
sounds to me as if the UPS staff are just being lazy. Jon From: 
bill.m...@pittcountync.gov
To: ntsysadmin@lyris.sunbelt-software.com
Subject: RE: UPS vs Switch Sanity Check
Date: Mon, 8 Apr 2013 20:41:24 +









Thanks all for the input.  The outage in question was during the weekend and 
one of the buildings in question has 24 hour staff.  I think the big thing is 
that
 they didn’t want to come in on Saturday twice to power the UPS down and back 
up.  I am not terribly familiar with the UPS’s, so I wasn’t sure what could be 
set there.  I sometimes get accused of being difficult, so I was trying to make 
sure I wasn’t being
 so without good reason.
 
Bill Mayo

 




From: sstri...@lrlaw.com

To: ntsysadmin@lyris.sunbelt-software.com

Subject: RE: UPS vs Switch Sanity Check

Date: Mon, 8 Apr 2013 18:27:31 +
Have them set the UPS units to turn themselves off when the battery level gets 
below a specified threshold. They should have
 complete control over this.  
 
Also, are you not creating a chance for the switches to be damaged by the 
various power surges. Sometimes the power company will
 have a on/off/on/off/on cycle in power.  Thus doing the same thing to your 
switches. This is not good for them. But, you can set the UPS units to be at a 
certain battery level before they will turn back on.  Thus, you can protect 
your switches, and the UPS
 units.
 
This is what they are there for - use them.
 
 



From: Mayo, Bill [mailto:bill.m...@pittcountync.gov]


Sent: Monday, April 08, 2013 8:53 AM

To: NT System Admin Issues

Subject: UPS vs Switch Sanity Check

I am in the midst of a debate with the folks who support our UPS’s, and would 
appreciate some input. The situation was thus: We were notified of an extended 
power outage (6 hours) by our
 utility provider at a couple of our locations.  At these locations we have 
wiring closets with switches (up to 3, in this case) that are plugged into an 
APC UPS.  The “UPS people” wanted to go and turn off the UPS’s and move the 
power of the switches over
 to a regular old surge suppressor.  Their reason for this was because they 
contend that allowing the batteries to completely drain will damage them.  They 
also contended that the off the shelf surge suppressor was sufficient to 
protect the switches from power
 spikes.  My contention is that the switches are more valuable than the UPS’s 
and need the protection that a real UPS affords, especially at a time where we 
know the power may fluctuate (spike, brownout) or blink repeatedly.
 
I tried to do some research on whether there was any veracity to the claim 
about damage to drained batteries and have turned up some conflicting 
information.  FA157446 at APC’s site seems
 the most authoritative and says they will be OK as long as recharged within 72 
hours, but I have read other comments that suggest that a total discharge will 
damage a UPS-type battery.
 
What I really want is a sanity check.  Is there really something to the UPS 
battery thing and I am being overly dramatic about the surge suppressor, or 
would you agree that you’d rather risk
 damaging the UPS (if that is even realistic) than the equipment behind it?
 
Bill Mayo

~ Finally, powerful endpoint security that ISN'T a resource hog! ~

~   ~



---

To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/

or send an email to listmana...@lyris.sunbeltsoftware.com

with the body: unsubscribe ntsysadmin
 



For more information about
Lewis and Roca LLP, please go to
www.lewisandroca.com.




Phoenix (602)262-5311





Reno (775)823-2900




Tucson (520)622-2090





Albuquerque (505)764-5400




Las Vegas (702)949-8200





Silicon Valley (650)391-1380




 
  This message is intended only for the use of the individual or entity to 
which it is addressed. If the reader of this message is not the intended 
recipient, or the employee
 or agent responsible for delivering the message to the intended recipient, you 
are hereby notified that any dissemination, distribution or copying of this 
message is strictly prohibited. If you have received this communication in 
error, please notify us immediately
 by replying to the sender of this E-Mail by return E-Mail or by telephone. 

  In accordance with Internal Revenue Service Circular 230, we advise you that 
if this email contains any tax advice, such tax advice was not intended or 
written to be used,
 and it cannot be used, by any taxpayer for the purpose of avoiding penalties 
that may be imposed on the taxpayer.


















~ Finally, powerful endpoint security that ISN'T a resource hog! ~

~   ~



---

To manage subscriptions click here: 
http://lyris.sunbelt-software.com/r

Re: POSH PtH - this is...

[Kurt Buff]

On Mon, Apr 8, 2013 at 5:01 PM, Kurt Buff  wrote:
> On Mon, Apr 8, 2013 at 4:17 PM, Ben Scott  wrote:
>> On Mon, Apr 8, 2013 at 7:06 PM, Kurt Buff  wrote:
>>> Amusing? Alarming? Both?
>>> http://labofapenetrationtester.blogspot.in/2013/04/poshing-the-hashes.html
>>
>>   Neither?
>>
>>   It seem to boil down to, if you steal credentials, you gain access
>> to what those credentials protect.  This should not be a surprise.
>> :-)
>
> Not exactly neither - the use of WCE is the key, methinks.
>
> WCE allows theft of credentials from others accounts that are stored
> in RAM, with the possible upgrade of credentials that this would
> imply, if higher-security accounts such as DAs
>
> Agree with MBS that other tools could stand in for PowerShell, but WCE
> was actually new to me.
>
> Granted, you must be local admin to use WCE, but if you're local admin
> on a server or workstation, and a DA account logs in and leaves
> credentials in memory, well, your task is accomplished.
>
>
>
> Kurt

That should read ", if higher-security accounts such as DAs log in
where they shouldn't."

Don't know how that disappeared...

Kurt

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RESOLVED: Excel 2010 problem - can't quite figure it out

[Kurt Buff]

The young pup whose first day was today opened it in compatibility
mode, did a Save As and it worked, then closed Excel and tried it in
native mode, and it worked again.

Gotta love having a new set of eyes on a problem.

Don't know what root cause was, but it's a win, and I'll take it.

Kurt

On Mon, Apr 8, 2013 at 6:14 AM, Miller Bonnie L.
 wrote:
> Have you tried starting Excel with no add-ins as well (safemode)?  Should be 
> a /s on the command line.
>
> http://office.microsoft.com/en-us/excel-help/command-line-switches-for-excel-HA010158030.aspx
>
> -Original Message-
> From: Kurt Buff [mailto:kurt.b...@gmail.com]
> Sent: Saturday, April 06, 2013 4:28 PM
> To: NT System Admin Issues
> Subject: Re: Excel 2010 problem - can't quite figure it out
>
> I will try that, and let you know on Monday.
>
> Kurt
>
> On Sat, Apr 6, 2013 at 1:56 PM, Orland, Kathleen  wrote:
>> Book.xltx is the name of the template. The location should be in the
>> XLSTART folder in Office. If not, then try this in VBE
>> :
>>
>> Press [Alt]+[F11] to launch the VBE.
>> If the Immediate window isn’t visible, press [Ctrl]+g.
>> In the Immediate window, type ? application.StartupPath and press Enter. 
>> VBA will display the path to XLStart.
>>
>> -Original Message-
>> From: Terry Dickson [mailto:te...@treasurer.state.ks.us]
>> Sent: Saturday, April 06, 2013 2:07 PM
>> To: NT System Admin Issues
>> Subject: Re: Excel 2010 problem - can't quite figure it out
>>
>> I forget what it is called in 2010 but if you delete the default Excel 
>> Template and let Excel create a new one next time the user opens it.  We 
>> have not had this problem since 2007 but in 2003 it was common.  We would 
>> just delete the default and it would create a new one and the problem went 
>> away.
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>>   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>>
>>
>> -
>> No virus found in this message.
>> Checked by AVG - www.avg.com
>> Version: 2013.0.3272 / Virus Database: 3162/6228 - Release Date:
>> 04/06/13
>>
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>>   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
>   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: POSH PtH - this is...

[Kurt Buff]

On Mon, Apr 8, 2013 at 4:17 PM, Ben Scott  wrote:
> On Mon, Apr 8, 2013 at 7:06 PM, Kurt Buff  wrote:
>> Amusing? Alarming? Both?
>> http://labofapenetrationtester.blogspot.in/2013/04/poshing-the-hashes.html
>
>   Neither?
>
>   It seem to boil down to, if you steal credentials, you gain access
> to what those credentials protect.  This should not be a surprise.
> :-)

Not exactly neither - the use of WCE is the key, methinks.

WCE allows theft of credentials from others accounts that are stored
in RAM, with the possible upgrade of credentials that this would
imply, if higher-security accounts such as DAs

Agree with MBS that other tools could stand in for PowerShell, but WCE
was actually new to me.

Granted, you must be local admin to use WCE, but if you're local admin
on a server or workstation, and a DA account logs in and leaves
credentials in memory, well, your task is accomplished.



Kurt

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Excel 2010 problem - can't quite figure it out

[Kurt Buff]

Tried that today.

Not successful - I've looked at the addins, too, and all that are
there are from MSFT - nothing strange or out of the ordinary.

Kurt

On Mon, Apr 8, 2013 at 6:14 AM, Miller Bonnie L.
 wrote:
> Have you tried starting Excel with no add-ins as well (safemode)?  Should be 
> a /s on the command line.
>
> http://office.microsoft.com/en-us/excel-help/command-line-switches-for-excel-HA010158030.aspx
>
> -Original Message-
> From: Kurt Buff [mailto:kurt.b...@gmail.com]
> Sent: Saturday, April 06, 2013 4:28 PM
> To: NT System Admin Issues
> Subject: Re: Excel 2010 problem - can't quite figure it out
>
> I will try that, and let you know on Monday.
>
> Kurt
>
> On Sat, Apr 6, 2013 at 1:56 PM, Orland, Kathleen  wrote:
>> Book.xltx is the name of the template. The location should be in the
>> XLSTART folder in Office. If not, then try this in VBE
>> :
>>
>> Press [Alt]+[F11] to launch the VBE.
>> If the Immediate window isn’t visible, press [Ctrl]+g.
>> In the Immediate window, type ? application.StartupPath and press Enter. 
>> VBA will display the path to XLStart.
>>
>> -Original Message-
>> From: Terry Dickson [mailto:te...@treasurer.state.ks.us]
>> Sent: Saturday, April 06, 2013 2:07 PM
>> To: NT System Admin Issues
>> Subject: Re: Excel 2010 problem - can't quite figure it out
>>
>> I forget what it is called in 2010 but if you delete the default Excel 
>> Template and let Excel create a new one next time the user opens it.  We 
>> have not had this problem since 2007 but in 2003 it was common.  We would 
>> just delete the default and it would create a new one and the problem went 
>> away.
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>>   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>>
>>
>> -
>> No virus found in this message.
>> Checked by AVG - www.avg.com
>> Version: 2013.0.3272 / Virus Database: 3162/6228 - Release Date:
>> 04/06/13
>>
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>>   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
>   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Excel 2010 problem - can't quite figure it out

[Kurt Buff]

Did VBE thing. Nice - I like that, have never played with it.

c:\users\%username%\AppData\Roaming\Microsoft\Excel\XLSTART

It's empty, and I can't find a book.xltx on the system.

Kurt

On Sat, Apr 6, 2013 at 1:56 PM, Orland, Kathleen  wrote:
> Book.xltx is the name of the template. The location should be in the XLSTART 
> folder in Office. If not, then try this in VBE
> :
>
> Press [Alt]+[F11] to launch the VBE.
> If the Immediate window isn’t visible, press [Ctrl]+g.
> In the Immediate window, type ? application.StartupPath and press Enter. 
> VBA will display the path to XLStart.
>
> -Original Message-
> From: Terry Dickson [mailto:te...@treasurer.state.ks.us]
> Sent: Saturday, April 06, 2013 2:07 PM
> To: NT System Admin Issues
> Subject: Re: Excel 2010 problem - can't quite figure it out
>
> I forget what it is called in 2010 but if you delete the default Excel 
> Template and let Excel create a new one next time the user opens it.  We have 
> not had this problem since 2007 but in 2003 it was common.  We would just 
> delete the default and it would create a new one and the problem went away.
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
>   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
> -
> No virus found in this message.
> Checked by AVG - www.avg.com
> Version: 2013.0.3272 / Virus Database: 3162/6228 - Release Date: 04/06/13
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: POSH PtH - this is...

[Michael B. Smith]

+1

PowerShell really didn't add anything here. In every case, psexec or winrm 
could be used instead.

-Original Message-
From: Ben Scott [mailto:mailvor...@gmail.com] 
Sent: Monday, April 8, 2013 7:17 PM
To: NT System Admin Issues
Subject: Re: POSH PtH - this is...

On Mon, Apr 8, 2013 at 7:06 PM, Kurt Buff  wrote:
> Amusing? Alarming? Both?
> http://labofapenetrationtester.blogspot.in/2013/04/poshing-the-hashes.
> html

  Neither?

  It seem to boil down to, if you steal credentials, you gain access to what 
those credentials protect.  This should not be a surprise.
:-)

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: AD Simple LDAP authentication question

[Ben Scott]

On Mon, Apr 8, 2013 at 4:03 PM, Christopher Bodnar
 wrote:
> I know that AD supports both Simple and SASL methods for LDAP binds:
>
> http://msdn.microsoft.com/en-us/library/cc223499.aspx
>
> What I was surprised is that there doesn't seem to be a way to disable the
> Simple method. It supports SSL/TLS but does not require it. Is that correct?

  I don't really know, but I do know that our Windows 2008 R2 domain
controllers log the event below once a day.  I know what's causing it
and haven't cared enough to do something about it.  The link takes you
to a KB article which tells you how to require *signing*.  It talks a
lot about simple binds but doesn't explicitly say that requiring
signing also causes it to reject simple binds, but seems to imply it
pretty strongly.

Source: ActiveDirectory_DomainService
Event ID: 2886
-
The security of this directory server can be significantly enhanced by
configuring the server to reject SASL (Negotiate,  Kerberos, NTLM, or
Digest) LDAP binds that do not request signing (integrity
verification) and LDAP simple binds that  are performed on a cleartext
(non-SSL/TLS-encrypted) connection.  Even if no clients are using such
binds, configuring the server to reject them will improve the security
of this server.

Some clients may currently be relying on unsigned SASL binds or LDAP
simple binds over a non-SSL/TLS connection, and will stop working if
this configuration change is made.  To assist in identifying these
clients, if such binds occur this  directory server will log a summary
event once every 24 hours indicating how many such binds  occurred.
You are encouraged to configure those clients to not use such binds.
Once no such events are observed  for an extended period, it is
recommended that you configure the server to reject such binds.

For more details and information on how to make this configuration
change to the server, please see
http://go.microsoft.com/fwlink/?LinkID=87923.

You can enable additional logging to log an event each time a client
makes such a bind, including information on which client made the
bind.  To do so, please raise the setting for the "LDAP Interface
Events" event logging category to level 2 or higher.
--

  FWIW, YMMV, HTH, HAND, AT&T.

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: UPS vs Switch Sanity Check

[James Hill]

Maybe being difficult simply means you stop and think before you leap.

 

Being difficult can be a good thing.

 

James.

 

From: Mayo, Bill [mailto:bill.m...@pittcountync.gov] 
Sent: Tuesday, 9 April 2013 6:41 AM
To: NT System Admin Issues
Subject: RE: UPS vs Switch Sanity Check

 

Thanks all for the input.  The outage in question was during the weekend and
one of the buildings in question has 24 hour staff.  I think the big thing
is that they didn't want to come in on Saturday twice to power the UPS down
and back up.  I am not terribly familiar with the UPS's, so I wasn't sure
what could be set there.  I sometimes get accused of being difficult, so I
was trying to make sure I wasn't being so without good reason.

 

Bill Mayo

 

  _  

From: sstri...@lrlaw.com  
To: ntsysadmin@lyris.sunbelt-software.com
 
Subject: RE: UPS vs Switch Sanity Check
Date: Mon, 8 Apr 2013 18:27:31 +

Have them set the UPS units to turn themselves off when the battery level
gets below a specified threshold. They should have complete control over
this.  

 

Also, are you not creating a chance for the switches to be damaged by the
various power surges. Sometimes the power company will have a
on/off/on/off/on cycle in power.  Thus doing the same thing to your
switches. This is not good for them. But, you can set the UPS units to be at
a certain battery level before they will turn back on.  Thus, you can
protect your switches, and the UPS units.

 

This is what they are there for - use them.

 

 

  _  

From: Mayo, Bill [mailto:bill.m...@pittcountync.gov] 
Sent: Monday, April 08, 2013 8:53 AM
To: NT System Admin Issues
Subject: UPS vs Switch Sanity Check

I am in the midst of a debate with the folks who support our UPS's, and
would appreciate some input. The situation was thus: We were notified of an
extended power outage (6 hours) by our utility provider at a couple of our
locations.  At these locations we have wiring closets with switches (up to
3, in this case) that are plugged into an APC UPS.  The "UPS people" wanted
to go and turn off the UPS's and move the power of the switches over to a
regular old surge suppressor.  Their reason for this was because they
contend that allowing the batteries to completely drain will damage them.
They also contended that the off the shelf surge suppressor was sufficient
to protect the switches from power spikes.  My contention is that the
switches are more valuable than the UPS's and need the protection that a
real UPS affords, especially at a time where we know the power may fluctuate
(spike, brownout) or blink repeatedly.

 

I tried to do some research on whether there was any veracity to the claim
about damage to drained batteries and have turned up some conflicting
information.  FA157446 at APC's site seems the most authoritative and says
they will be OK as long as recharged within 72 hours, but I have read other
comments that suggest that a total discharge will damage a UPS-type battery.

 

What I really want is a sanity check.  Is there really something to the UPS
battery thing and I am being overly dramatic about the surge suppressor, or
would you agree that you'd rather risk damaging the UPS (if that is even
realistic) than the equipment behind it?

 

Bill Mayo

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
 
with the body: unsubscribe ntsysadmin

 

  _  

For more information about Lewis and Roca LLP, please go to
 www.lewisandroca.com.


Phoenix (602)262-5311



Reno (775)823-2900


Tucson (520)622-2090



Albuquerque (505)764-5400


Las Vegas (702)949-8200



Silicon Valley (650)391-1380

 

  This message is intended only for the use of the individual or entity to
which it is addressed. If the reader of this message is not the intended
recipient, or the employee or agent responsible for delivering the message
to the intended recipient, you are hereby notified that any dissemination,
distribution or copying of this message is strictly prohibited. If you have
received this communication in error, please notify us immediately by
replying to the sender of this E-Mail by return E-Mail or by telephone. 

  In accordance with Internal Revenue Service Circular 230, we advise you
that if this email contains any tax advice, such tax advice was not intended
or written to be used, and it cannot be used, by any taxpayer for the
purpose of avoiding penalties that may be imposed on the taxpayer.










~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
htt

RE: Fortigate as a WIFI Controller

[James Hill]

Thanks for the feedback Matt.  I actually want the wireless to be on a 
different subnet so I’m ok with that.

The Fortigate's support http://en.wikipedia.org/wiki/Capwap

Although of the existing AP's this customer has there is only one that I wanted 
to support Capwap and it doesn't so I'll be looking at new AP's anyway.  I'm 
stuck with FortiOS 4 at this site due to the removed features in 5.

As the customer already has a Fortigate it would save some dollars to use it as 
a central wifi controller if it is up to the task.

James.

-Original Message-
From: Matthew W. Ross [mailto:mr...@ephrataschools.org] 
Sent: Tuesday, 9 April 2013 2:22 AM
To: NT System Admin Issues
Subject: Re: Fortigate as a WIFI Controller

> Has anyone used a Fortigate to manage WAP's?

We received a free FAP-221A with our Fortigate 300C. It was part of their 
promotion, trying to sell us their APs.

Using the FortiOS 4.x software, the APs were forced to be on a different subnet 
than our normal networks, and this was not what we wanted to do with our 
wireless network. Thus, we did not get much use out of our free AP. Also, our 
existing Ruckus wireless network was working very well, so we didn't need the 
additional coverage.

I understand that the 5.x version of FortiOS will allow the APs to work on the 
same network as the rest of your LAN. I have not played with this.

> 
> I'm interested to hear how well they perform.  Particularly when not 
> using Fortinet Access Points.

I didn't know the Fortigate could manage 3rd party APs. Where are you getting 
such information?


--Matt Ross
Ephrata School District


- Original Message -
From: James Hill
[mailto:falc...@gmail.com]
To: NT System Admin Issues
[mailto:ntsysadmin@lyris.sunbelt-software.com]
Sent: Sun, 07 Apr 2013
16:08:55 -0800
Subject: Fortigate as a WIFI Controller


> Has anyone used a Fortigate to manage WAP's?
> 
>  
> 
> I'm interested to hear how well they perform.  Particularly when not 
> using Fortinet Access Points.
> 
>  
> 
> James.
> 
> 
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
>   ~
> 
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: UPS vs Switch Sanity Check

[David Lum]

LOL yeah, and simpler/faster to replace :-P.

Unless a long steep downhill is in play here...

From: Steven Peck [mailto:sep...@live.com]
Sent: Monday, April 08, 2013 1:31 PM
To: NT System Admin Issues
Subject: RE: UPS vs Switch Sanity Check

Do they also say to use the clutch to slow the car down when going downhill 
because they want to save the brakes?  I mean brakes are more expensive then 
clutch replacements right?

Steven Peck
http://www.blkmtn.org


From: sstri...@lrlaw.com
To: 
ntsysadmin@lyris.sunbelt-software.com
Subject: RE: UPS vs Switch Sanity Check
Date: Mon, 8 Apr 2013 18:27:31 +
Have them set the UPS units to turn themselves off when the battery level gets 
below a specified threshold. They should have complete control over this.

Also, are you not creating a chance for the switches to be damaged by the 
various power surges. Sometimes the power company will have a on/off/on/off/on 
cycle in power.  Thus doing the same thing to your switches. This is not good 
for them. But, you can set the UPS units to be at a certain battery level 
before they will turn back on.  Thus, you can protect your switches, and the 
UPS units.

This is what they are there for - use them.



From: Mayo, Bill [mailto:bill.m...@pittcountync.gov]
Sent: Monday, April 08, 2013 8:53 AM
To: NT System Admin Issues
Subject: UPS vs Switch Sanity Check
I am in the midst of a debate with the folks who support our UPS's, and would 
appreciate some input. The situation was thus: We were notified of an extended 
power outage (6 hours) by our utility provider at a couple of our locations.  
At these locations we have wiring closets with switches (up to 3, in this case) 
that are plugged into an APC UPS.  The "UPS people" wanted to go and turn off 
the UPS's and move the power of the switches over to a regular old surge 
suppressor.  Their reason for this was because they contend that allowing the 
batteries to completely drain will damage them.  They also contended that the 
off the shelf surge suppressor was sufficient to protect the switches from 
power spikes.  My contention is that the switches are more valuable than the 
UPS's and need the protection that a real UPS affords, especially at a time 
where we know the power may fluctuate (spike, brownout) or blink repeatedly.

I tried to do some research on whether there was any veracity to the claim 
about damage to drained batteries and have turned up some conflicting 
information.  FA157446 at APC's site seems the most authoritative and says they 
will be OK as long as recharged within 72 hours, but I have read other comments 
that suggest that a total discharge will damage a UPS-type battery.

What I really want is a sanity check.  Is there really something to the UPS 
battery thing and I am being overly dramatic about the surge suppressor, or 
would you agree that you'd rather risk damaging the UPS (if that is even 
realistic) than the equipment behind it?

Bill Mayo
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


For more information about Lewis and Roca LLP, please go to 
www.lewisandroca.com.
Phoenix (602)262-5311



Reno (775)823-2900

Tucson (520)622-2090



Albuquerque (505)764-5400

Las Vegas (702)949-8200



Silicon Valley (650)391-1380


  This message is intended only for the use of the individual or entity to 
which it is addressed. If the reader of this message is not the intended 
recipient, or the employee or agent responsible for delivering the message to 
the intended recipient, you are hereby notified that any dissemination, 
distribution or copying of this message is strictly prohibited. If you have 
received this communication in error, please notify us immediately by replying 
to the sender of this E-Mail by return E-Mail or by telephone.
  In accordance with Internal Revenue Service Circular 230, we advise you that 
if this email contains any tax advice, such tax advice was not intended or 
written to be used, and it cannot be used, by any taxpayer for the purpose of 
avoiding penalties that may be imposed on the taxpayer.









~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin
~ Finally, powerful endpoint security that ISN'

RE: AD Simple LDAP authentication question

[Christopher Bodnar]

>From a security perspective. It's allowing the username and password to be 
sent over the wire in clear text. 

You could say the same thing about NTLM, not that it's going over the wire 
in clear text.  But you have the ability to not allow NTLM or LANMan 
authentication, why not also limit the Simple Authentication method. 


Christopher Bodnar 
Enterprise Architect I, Corporate Office of Technology:Enterprise 
Architecture and Engineering Services 
Tel 610-807-6459 
3900 Burgess Place, Bethlehem, PA 18017 
christopher_bod...@glic.com 




The Guardian Life Insurance Company of America

www.guardianlife.com 







From:   "Michael B. Smith" 
To: "NT System Admin Issues" 
Date:   04/08/2013 04:29 PM
Subject:RE: AD Simple LDAP authentication question



What benefit do you think there would be to disable it?
 
From: Christopher Bodnar [mailto:christopher_bod...@glic.com] 
Sent: Monday, April 8, 2013 4:03 PM
To: NT System Admin Issues
Subject: AD Simple LDAP authentication question
 
I know that AD supports both Simple and SASL methods for LDAP binds: 

http://msdn.microsoft.com/en-us/library/cc223499.aspx 

What I was surprised is that there doesn't seem to be a way to disable the 
Simple method. It supports SSL/TLS but does not require it. Is that 
correct? 


Christopher Bodnar 
Enterprise Architect I, Corporate Office of Technology:Enterprise 
Architecture and Engineering Services 
Tel 610-807-6459 
3900 Burgess Place, Bethlehem, PA 18017 
christopher_bod...@glic.com 


The Guardian Life Insurance Company of America

www.guardianlife.com 


- This message, and any 
attachments to it, may contain information that is privileged, 
confidential, and exempt from disclosure under applicable law. If the 
reader of this message is not the intended recipient, you are notified 
that any use, dissemination, distribution, copying, or communication of 
this message is strictly prohibited. If you have received this message in 
error, please notify the sender immediately by return e-mail and delete 
the message and any attachments. Thank you. 
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin<><>

RE: UPS vs Switch Sanity Check

[Mayo, Bill]

Thanks all for the input.  The outage in question was during the weekend and 
one of the buildings in question has 24 hour staff.  I think the big thing is 
that they didn't want to come in on Saturday twice to power the UPS down and 
back up.  I am not terribly familiar with the UPS's, so I wasn't sure what 
could be set there.  I sometimes get accused of being difficult, so I was 
trying to make sure I wasn't being so without good reason.

Bill Mayo


From: sstri...@lrlaw.com
To: ntsysadmin@lyris.sunbelt-software.com
Subject: RE: UPS vs Switch Sanity Check
Date: Mon, 8 Apr 2013 18:27:31 +
Have them set the UPS units to turn themselves off when the battery level gets 
below a specified threshold. They should have complete control over this.

Also, are you not creating a chance for the switches to be damaged by the 
various power surges. Sometimes the power company will have a on/off/on/off/on 
cycle in power.  Thus doing the same thing to your switches. This is not good 
for them. But, you can set the UPS units to be at a certain battery level 
before they will turn back on.  Thus, you can protect your switches, and the 
UPS units.

This is what they are there for - use them.



From: Mayo, Bill [mailto:bill.m...@pittcountync.gov]
Sent: Monday, April 08, 2013 8:53 AM
To: NT System Admin Issues
Subject: UPS vs Switch Sanity Check
I am in the midst of a debate with the folks who support our UPS's, and would 
appreciate some input. The situation was thus: We were notified of an extended 
power outage (6 hours) by our utility provider at a couple of our locations.  
At these locations we have wiring closets with switches (up to 3, in this case) 
that are plugged into an APC UPS.  The "UPS people" wanted to go and turn off 
the UPS's and move the power of the switches over to a regular old surge 
suppressor.  Their reason for this was because they contend that allowing the 
batteries to completely drain will damage them.  They also contended that the 
off the shelf surge suppressor was sufficient to protect the switches from 
power spikes.  My contention is that the switches are more valuable than the 
UPS's and need the protection that a real UPS affords, especially at a time 
where we know the power may fluctuate (spike, brownout) or blink repeatedly.

I tried to do some research on whether there was any veracity to the claim 
about damage to drained batteries and have turned up some conflicting 
information.  FA157446 at APC's site seems the most authoritative and says they 
will be OK as long as recharged within 72 hours, but I have read other comments 
that suggest that a total discharge will damage a UPS-type battery.

What I really want is a sanity check.  Is there really something to the UPS 
battery thing and I am being overly dramatic about the surge suppressor, or 
would you agree that you'd rather risk damaging the UPS (if that is even 
realistic) than the equipment behind it?

Bill Mayo
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


For more information about Lewis and Roca LLP, please go to 
www.lewisandroca.com.
Phoenix (602)262-5311



Reno (775)823-2900

Tucson (520)622-2090



Albuquerque (505)764-5400

Las Vegas (702)949-8200



Silicon Valley (650)391-1380


  This message is intended only for the use of the individual or entity to 
which it is addressed. If the reader of this message is not the intended 
recipient, or the employee or agent responsible for delivering the message to 
the intended recipient, you are hereby notified that any dissemination, 
distribution or copying of this message is strictly prohibited. If you have 
received this communication in error, please notify us immediately by replying 
to the sender of this E-Mail by return E-Mail or by telephone.
  In accordance with Internal Revenue Service Circular 230, we advise you that 
if this email contains any tax advice, such tax advice was not intended or 
written to be used, and it cannot be used, by any taxpayer for the purpose of 
avoiding penalties that may be imposed on the taxpayer.









~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ 

RE: UPS vs Switch Sanity Check

[Steven Peck]

Do they also say to use the clutch to slow the car down when going downhill 
because they want to save the brakes?  I mean brakes are more expensive then 
clutch replacements right?
 Steven Peckhttp://www.blkmtn.org From: sstri...@lrlaw.com
To: ntsysadmin@lyris.sunbelt-software.com
Subject: RE: UPS vs Switch Sanity Check
Date: Mon, 8 Apr 2013 18:27:31 +












Have them set the UPS units to turn themselves off when the battery level gets 
below a specified threshold. They should have complete control over this. 

 
Also, are you not creating a chance for the switches to be damaged by the 
various power surges. Sometimes the power company will have a on/off/on/off/on
 cycle in power.  Thus doing the same thing to your switches. This is not good 
for them. But, you can set the UPS units to be at a certain battery level 
before they will turn back on.  Thus, you can protect your switches, and the 
UPS units.
 
This is what they are there for - use them.
 




From: Mayo, Bill [mailto:bill.m...@pittcountync.gov]


Sent: Monday, April 08, 2013 8:53 AM

To: NT System Admin Issues

Subject: UPS vs Switch Sanity Check






I am in the midst of a debate with the folks who support our UPS’s, and would 
appreciate some input. The situation was thus: We were notified of an extended 
power outage (6 hours) by our utility provider at a couple of our locations.  At
 these locations we have wiring closets with switches (up to 3, in this case) 
that are plugged into an APC UPS.  The “UPS people” wanted to go and turn off 
the UPS’s and move the power of the switches over to a regular old surge 
suppressor.  Their reason for
 this was because they contend that allowing the batteries to completely drain 
will damage them.  They also contended that the off the shelf surge suppressor 
was sufficient to protect the switches from power spikes.  My contention is 
that the switches are more
 valuable than the UPS’s and need the protection that a real UPS affords, 
especially at a time where we know the power may fluctuate (spike, brownout) or 
blink repeatedly.
 
I tried to do some research on whether there was any veracity to the claim 
about damage to drained batteries and have turned up some conflicting 
information.  FA157446 at APC’s site seems the most authoritative and says they 
will be OK
 as long as recharged within 72 hours, but I have read other comments that 
suggest that a total discharge will damage a UPS-type battery.
 
What I really want is a sanity check.  Is there really something to the UPS 
battery thing and I am being overly dramatic about the surge suppressor, or 
would you agree that you’d rather risk damaging the UPS (if that is even 
realistic)
 than the equipment behind it?
 
Bill Mayo

~ Finally, powerful endpoint security that ISN'T a resource hog! ~

~   ~



---

To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/

or send an email to listmana...@lyris.sunbeltsoftware.com

with the body: unsubscribe ntsysadmin

 


For more information about
Lewis and Roca LLP, please go to www.lewisandroca.com.




Phoenix (602)262-5311

Reno (775)823-2900


Tucson (520)622-2090

Albuquerque (505)764-5400


Las Vegas (702)949-8200

Silicon Valley (650)391-1380




  This message is intended only for the use of the individual or entity to 
which it is addressed. If the reader of this message is not the intended 
recipient, or the employee or agent responsible
 for delivering the message to the intended recipient, you are hereby notified 
that any dissemination, distribution or copying of this message is strictly 
prohibited. If you have received this communication in error, please notify us 
immediately by replying
 to the sender of this E-Mail by return E-Mail or by telephone. 
  In accordance with Internal Revenue Service Circular 230, we advise you that 
if this email contains any tax advice, such tax advice was not intended or 
written to be used, and it cannot be used,
 by any taxpayer for the purpose of avoiding penalties that may be imposed on 
the taxpayer.










~ Finally, powerful endpoint security that ISN'T a resource hog! ~

~   ~



---

To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/

or send an email to listmana...@lyris.sunbeltsoftware.com

with the body: unsubscribe ntsysadmin   
  
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: AD Simple LDAP authentication question

[Michael B. Smith]

What benefit do you think there would be to disable it?

From: Christopher Bodnar [mailto:christopher_bod...@glic.com]
Sent: Monday, April 8, 2013 4:03 PM
To: NT System Admin Issues
Subject: AD Simple LDAP authentication question

I know that AD supports both Simple and SASL methods for LDAP binds:

http://msdn.microsoft.com/en-us/library/cc223499.aspx

What I was surprised is that there doesn't seem to be a way to disable the 
Simple method. It supports SSL/TLS but does not require it. Is that correct?

Christopher Bodnar
Enterprise Architect I, Corporate Office of Technology:Enterprise Architecture 
and Engineering Services

Tel 610-807-6459
3900 Burgess Place, Bethlehem, PA 18017
christopher_bod...@glic.com

[cid:image001.jpg@01CE3476.28873D20]

The Guardian Life Insurance Company of America

www.guardianlife.com



- This message, and any attachments to 
it, may contain information that is privileged, confidential, and exempt from 
disclosure under applicable law. If the reader of this message is not the 
intended recipient, you are notified that any use, dissemination, distribution, 
copying, or communication of this message is strictly prohibited. If you have 
received this message in error, please notify the sender immediately by return 
e-mail and delete the message and any attachments. Thank you.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin<>

AD Simple LDAP authentication question

[Christopher Bodnar]

I know that AD supports both Simple and SASL methods for LDAP binds:

http://msdn.microsoft.com/en-us/library/cc223499.aspx

What I was surprised is that there doesn't seem to be a way to disable the 
Simple method. It supports SSL/TLS but does not require it. Is that 
correct? 



Christopher Bodnar 
Enterprise Architect I, Corporate Office of Technology:Enterprise 
Architecture and Engineering Services 
Tel 610-807-6459 
3900 Burgess Place, Bethlehem, PA 18017 
christopher_bod...@glic.com 




The Guardian Life Insurance Company of America

www.guardianlife.com 





-
This message, and any attachments to it, may contain information
that is privileged, confidential, and exempt from disclosure under
applicable law.  If the reader of this message is not the intended
recipient, you are notified that any use, dissemination,
distribution, copying, or communication of this message is strictly
prohibited.  If you have received this message in error, please
notify the sender immediately by return e-mail and delete the
message and any attachments.  Thank you.
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin<>

RE: UPS vs Switch Sanity Check

[Stringham, Steven]

Have them set the UPS units to turn themselves off when the battery level gets 
below a specified threshold. They should have complete control over this.

Also, are you not creating a chance for the switches to be damaged by the 
various power surges. Sometimes the power company will have a on/off/on/off/on 
cycle in power.  Thus doing the same thing to your switches. This is not good 
for them. But, you can set the UPS units to be at a certain battery level 
before they will turn back on.  Thus, you can protect your switches, and the 
UPS units.

This is what they are there for - use them.



From: Mayo, Bill [mailto:bill.m...@pittcountync.gov]
Sent: Monday, April 08, 2013 8:53 AM
To: NT System Admin Issues
Subject: UPS vs Switch Sanity Check

I am in the midst of a debate with the folks who support our UPS’s, and would 
appreciate some input. The situation was thus: We were notified of an extended 
power outage (6 hours) by our utility provider at a couple of our locations.  
At these locations we have wiring closets with switches (up to 3, in this case) 
that are plugged into an APC UPS.  The “UPS people” wanted to go and turn off 
the UPS’s and move the power of the switches over to a regular old surge 
suppressor.  Their reason for this was because they contend that allowing the 
batteries to completely drain will damage them.  They also contended that the 
off the shelf surge suppressor was sufficient to protect the switches from 
power spikes.  My contention is that the switches are more valuable than the 
UPS’s and need the protection that a real UPS affords, especially at a time 
where we know the power may fluctuate (spike, brownout) or blink repeatedly.

I tried to do some research on whether there was any veracity to the claim 
about damage to drained batteries and have turned up some conflicting 
information.  FA157446 at APC’s site seems the most authoritative and says they 
will be OK as long as recharged within 72 hours, but I have read other comments 
that suggest that a total discharge will damage a UPS-type battery.

What I really want is a sanity check.  Is there really something to the UPS 
battery thing and I am being overly dramatic about the surge suppressor, or 
would you agree that you’d rather risk damaging the UPS (if that is even 
realistic) than the equipment behind it?

Bill Mayo

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin





For more information about Lewis and Roca LLP, please go to 
www.lewisandroca.com.

Phoenix (602)262-5311   Reno (775)823-2900
Tucson (520)622-2090Albuquerque (505)764-5400
Las Vegas (702)949-8200 Silicon Valley (650)391-1380

  This message is intended only for the use of the individual or entity to 
which it is addressed. If the reader of this message is not the intended 
recipient, or the employee or agent responsible for delivering the message to 
the intended recipient, you are hereby notified that any dissemination, 
distribution or copying of this message is strictly prohibited. If you have 
received this communication in error, please notify us immediately by replying 
to the sender of this E-Mail by return E-Mail or by telephone.

  In accordance with Internal Revenue Service Circular 230, we advise you that 
if this email contains any tax advice, such tax advice was not intended or 
written to be used, and it cannot be used, by any taxpayer for the purpose of 
avoiding penalties that may be imposed on the taxpayer.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Script to Enable Bitlocker

[Haritwal, Dhiraj]

Hi,

Sorry, resending  it.

Any suggestion?


From: Haritwal, Dhiraj [mailto:dhiraj.harit...@ap.sony.com]
Sent: 05 April 2013 21:49
To: NT System Admin Issues
Subject: Script to Enable Bitlocker

Hi,

I am trying to create a Powershell script to enable bitlocker on windows 7 like 
below but don't know how to club them in a single script. Tried with 
EnableBitLocker.vbs but don't know how to set a generic PIN with this vbs.

Enable bitlocker on C Drive with recovery key & PIN
set generic PIN
Enable bitlocker on D Drive with autounlock

manage-bde -on C: -rp
manage-bde -changepin C:
manage-bde -autounlock -enable D:
manage-bde -on D: -rp

Got below code from Felipe Binotto's Blog 
(http://fbinotto.blogspot.in/#!/2012/06/powershell-set-bitlocker-pin-only-if.html)
 to set generic PIN. Kindly help me to club all parts in 1 code.
$bit = Get-WmiObject -Namespace root\cimv2\security\microsoftvolumeencryption 
-class win32_encryptablevolume
$bit.ProtectKeyWithTPMAndPin("","","123456")

Need expert's help to resolve it.

Regards,

Dhiraj



This email is confidential and intended only for the use of the individual or 
entity named above and may contain information that is privileged. If you are 
not the intended recipient, you are notified that any dissemination, 
distribution or copying of this email is strictly prohibited. If you have 
received this email in error, please notify us immediately by return email or 
telephone and destroy the original message. - This mail is sent via Sony Asia 
Pacific Mail Gateway..

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin



This email is confidential and intended only for the use of the individual or 
entity named above and may contain information that is privileged. If you are 
not the intended recipient, you are notified that any dissemination, 
distribution or copying of this email is strictly prohibited. If you have 
received this email in error, please notify us immediately by return email or 
telephone and destroy the original message. - This mail is sent via Sony Asia 
Pacific Mail Gateway..

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Office 365 Email Migration steps - is there a better way?

[Don Kuhlman]

Since we've been on the subject of Office 365, I was wondering if anyone has a 
high level set of steps they use for migrating user email from on premise to 
Office 365 - on premise outllook client is XP or up. On Premise Exchange server 
is 2008 SBS.

I've done a few and have some steps that require manual changes to the user's 
outlook profile on their in house computers.

Basically - 
1) Verify the on-premise AD account is synced and enabled through the portal
2) Connect to user's system and login to office 365 portal to verify their 
local software is good
3) Setup the migration script
4) Run the migration/verify all good
5) Go back to user's system and create a new Outlook profile (in case of 
problems) that points to Office 365
6) Login using new Outlook profile and verify mail is working
7) Delete old Profile
8) Advise user how to login to portal, help them setup their mobile phone, etc 
for Outlook

Is there an easier/better way ?


Don K

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Windows DNS scavenging..

[Brian Desmond]

It should be turned on. I generally enable it on a couple of DCs. Remember, you 
have to enable it on the zone and then the DNS Server(s) that will perform the 
scavenging.

First time you do this you might find some record gets cleaned up that was 
dynamically registered but the registrar is long gone yet something is 
depending on it. Take an ldifde dump of your DNS storage in AD in case you need 
to bring back any records.

Thanks,
Brian Desmond
br...@briandesmond.com

w - 312.625.1438 | c - 312.731.3132

From: David Lum [mailto:david@nwea.org]
Sent: Monday, April 8, 2013 9:33 AM
To: NT System Admin Issues
Subject: Windows DNS scavenging..

Do you guys have it turned on? Have you seen any issues from it, any caveats?
David Lum
Sr. Systems Engineer // NWEATM
Office 503.548.5229 // Cell (voice/text) 503.267.9764


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Fortigate as a WIFI Controller

[Matthew W. Ross]

> Has anyone used a Fortigate to manage WAP's?

We received a free FAP-221A with our Fortigate 300C. It was part of their 
promotion, trying to sell us their APs.

Using the FortiOS 4.x software, the APs were forced to be on a different subnet 
than our normal networks, and this was not what we wanted to do with our 
wireless network. Thus, we did not get much use out of our free AP. Also, our 
existing Ruckus wireless network was working very well, so we didn't need the 
additional coverage.

I understand that the 5.x version of FortiOS will allow the APs to work on the 
same network as the rest of your LAN. I have not played with this.

> 
> I'm interested to hear how well they perform.  Particularly when not using
> Fortinet Access Points.

I didn't know the Fortigate could manage 3rd party APs. Where are you getting 
such information?


--Matt Ross
Ephrata School District


- Original Message -
From: James Hill
[mailto:falc...@gmail.com]
To: NT System Admin Issues
[mailto:ntsysadmin@lyris.sunbelt-software.com]
Sent: Sun, 07 Apr 2013
16:08:55 -0800
Subject: Fortigate as a WIFI Controller


> Has anyone used a Fortigate to manage WAP's?
> 
>  
> 
> I'm interested to hear how well they perform.  Particularly when not using
> Fortinet Access Points.
> 
>  
> 
> James.
> 
> 
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
> 
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Windows DNS scavenging..

[Ziots, Edward]

We have it turned on, and to clean up issues with stale entries and some DDNS 
issues with our DHCP appliance.

Z

Edward E. Ziots, CISSP, CISA, Security +, Network +
Security Engineer
Lifespan Organization
ezi...@lifespan.org
Work:401-444-9081


This electronic message and any attachments may be privileged and confidential 
and protected from disclosure. If you are reading this message, but are not the 
intended recipient, nor an employee or agent responsible for delivering this 
message to the intended recipient, you are hereby notified that you are 
strictly prohibited from copying, printing, forwarding or otherwise 
disseminating this communication. If you have received this communication in 
error, please immediately notify the sender by replying to the message. Then, 
delete the message from your computer. Thank you.
[Description: Description: Lifespan]


From: David Lum [mailto:david@nwea.org]
Sent: Monday, April 08, 2013 10:33 AM
To: NT System Admin Issues
Subject: Windows DNS scavenging..

Do you guys have it turned on? Have you seen any issues from it, any caveats?
David Lum
Sr. Systems Engineer // NWEATM
Office 503.548.5229 // Cell (voice/text) 503.267.9764


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin<>

Re: Windows DNS scavenging..

[kz20fl]

Hopefully should definitely be there, if I ever get through this legal battle I 
am having over an agency that owe me a load of money.

Sent from my Blackberry, which may be an antique but delivers email RELIABLY

-Original Message-
From: Webster 
Date: Mon, 8 Apr 2013 14:57:31 
To: NT System Admin Issues
Reply-To: "NT System Admin Issues" 
Subject: RE: Windows DNS scavenging..

LOL, that is one of my three topics for my conference presentations this year.  
There are a lot of TechNet and MVP articles on the topics of DNS A&S, DHCP and 
what to do, how it works, scripts, etc.  I am trying to figure out how to cover 
this topic and multiple site, multiple domain configurations and GPO & Loopback 
processing into a 75 minute presentation.  I could easily spend 75 minutes on 
each.  Plus I am also doing a PoSH session on my Citrix documentation scripts 
at each conference.  Hope to meet James Rankin finally in London.

Carl Webster
Consultant and Citrix Technology Professional
http://www.CarlWebster.com


From: David Lum [mailto:david@nwea.org]
Sent: Monday, April 08, 2013 10:33 AM
To: NT System Admin Issues
Subject: Windows DNS scavenging..

Do you guys have it turned on? Have you seen any issues from it, any caveats?
David Lum
Sr. Systems Engineer // NWEATM
Office 503.548.5229 // Cell (voice/text) 503.267.9764


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Windows DNS scavenging..

[Webster]

LOL, that is one of my three topics for my conference presentations this year.  
There are a lot of TechNet and MVP articles on the topics of DNS A&S, DHCP and 
what to do, how it works, scripts, etc.  I am trying to figure out how to cover 
this topic and multiple site, multiple domain configurations and GPO & Loopback 
processing into a 75 minute presentation.  I could easily spend 75 minutes on 
each.  Plus I am also doing a PoSH session on my Citrix documentation scripts 
at each conference.  Hope to meet James Rankin finally in London.

Carl Webster
Consultant and Citrix Technology Professional
http://www.CarlWebster.com


From: David Lum [mailto:david@nwea.org]
Sent: Monday, April 08, 2013 10:33 AM
To: NT System Admin Issues
Subject: Windows DNS scavenging..

Do you guys have it turned on? Have you seen any issues from it, any caveats?
David Lum
Sr. Systems Engineer // NWEATM
Office 503.548.5229 // Cell (voice/text) 503.267.9764


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Excel 2010 problem - can't quite figure it out

[Miller Bonnie L .]

Have you tried starting Excel with no add-ins as well (safemode)?  Should be a 
/s on the command line.

http://office.microsoft.com/en-us/excel-help/command-line-switches-for-excel-HA010158030.aspx

-Original Message-
From: Kurt Buff [mailto:kurt.b...@gmail.com] 
Sent: Saturday, April 06, 2013 4:28 PM
To: NT System Admin Issues
Subject: Re: Excel 2010 problem - can't quite figure it out

I will try that, and let you know on Monday.

Kurt

On Sat, Apr 6, 2013 at 1:56 PM, Orland, Kathleen  wrote:
> Book.xltx is the name of the template. The location should be in the 
> XLSTART folder in Office. If not, then try this in VBE
> :
>
> Press [Alt]+[F11] to launch the VBE.
> If the Immediate window isn’t visible, press [Ctrl]+g.
> In the Immediate window, type ? application.StartupPath and press Enter. 
> VBA will display the path to XLStart.
>
> -Original Message-
> From: Terry Dickson [mailto:te...@treasurer.state.ks.us]
> Sent: Saturday, April 06, 2013 2:07 PM
> To: NT System Admin Issues
> Subject: Re: Excel 2010 problem - can't quite figure it out
>
> I forget what it is called in 2010 but if you delete the default Excel 
> Template and let Excel create a new one next time the user opens it.  We have 
> not had this problem since 2007 but in 2003 it was common.  We would just 
> delete the default and it would create a new one and the problem went away.
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
>   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
> -
> No virus found in this message.
> Checked by AVG - www.avg.com
> Version: 2013.0.3272 / Virus Database: 3162/6228 - Release Date: 
> 04/06/13
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
>   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Analysing process dumps

[Sobey, Richard A]

Thanks Ken.

I've got the dumps ok, but the resulting analysis isn't proving anything 
useful. Whilst I am willing to post the results on the IIS forums, I've opened 
a PSS case as I was under some pressure to get this resolved.

Of course, it's not happening at the moment and probably never will whilst MS 
are on the phone, but I've got the dumps from when it was happening so 
hopefully they will accept those.

Richard

From: bounce-9597632-8267...@lyris.sunbelt-software.com 
[mailto:bounce-9597632-8267...@lyris.sunbelt-software.com] On Behalf Of 
Crawford, Scott
Sent: 06 April 2013 14:40
To: NT System Admin Issues
Subject: RE: Analysing process dumps

Nice post.

Sent from my Windows Phone

From: Ken Schaefer
Sent: 4/6/2013 3:11 AM
To: NT System Admin Issues
Subject: RE: Analysing process dumps
If you want to use WinDBG, this is probably a good start:
http://www.adopenstatic.com/cs/blogs/ken/archive/2009/06/30/24910.aspx

Dump a list of threads and see which are the longest running
Then dump the managed and unmanaged stacks for those threads.

The problem then is that you need to know what you're looking at. You can post 
some here if you want or at forums.iis.net

Cheers
Ken

From: Sobey, Richard A [mailto:r.so...@imperial.ac.uk]
Sent: Friday, 5 April 2013 9:37 PM
To: NT System Admin Issues
Subject: RE: Analysing process dumps

Oh, wonderful, thanks.

I tried windbg, but yes, the output is a bit mystifying and I'm not sure what 
I'm looking for.

Thanks Ken

Richard

From: 
bounce-9597307-8267...@lyris.sunbelt-software.com
 [mailto:bounce-9597307-8267...@lyris.sunbelt-software.com] On Behalf Of Ken 
Schaefer
Sent: 05 April 2013 11:19
To: NT System Admin Issues
Subject: RE: Analysing process dumps

IIS Debug Diagnostics tool does a bunch of things for you automagically, and is 
geared towards w3wp.exe issues.

Otherwise you can simply download the Windows Debugging Toolkit (the main tool 
you want is WinDBG), or use any user mode debugger (even Visual Studio.Net) if 
you want to try to root cause yourself

However actually understanding what you are looking at requires some knowledge 
(plus some knowledge of how the tool works)

Personally, I would use IISDebugDiag, and post the output to forums.iis.net - a 
bunch of MS PSS folk and MVPs hang out there, and if they can't help you within 
bounds of reason, they will direct you to PSS support if required.

Cheers
Ken

From: Sobey, Richard A [mailto:r.so...@imperial.ac.uk]
Sent: Friday, 5 April 2013 7:19 PM
To: NT System Admin Issues
Subject: Analysing process dumps

Hi all

I'm troubleshooting a runaway process on one of my Exchange 2010 CAS boxes, the 
CPU is getting hammered and the w3wp.exe process is the culprit. I'm creating 
process dumps, as I saw suggested on a forum, but is there any tool that can 
usefully analyse the output without me opening a case with Microsoft PSS?

Many thanks

Richard



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin