Re: Friday (kinda) Funny

On 8 Jun 2012 at 15:19, Andrew S. Baker wrote: > I still have a few APCs around here, but I'm mostly using CyberPower UPSes... > I can get 40+ minutes (I have 4 UPSes) I quit using APCs a while back, I don't like their $28 proprietary USB cables. -- Angus Scott-Fleming GeoApps, Tucson, Arizon

RE: Schema upgrade/rollback

I'm not worried in the least, my fellow non-AD educated folks have paranoia about what happens if something breaks so I have to give them an answer. I told them simply a forest restore. From: Brian Desmond [mailto:br...@briandesmond.com] Sent: Friday, June 08, 2012 2:56 PM To: NT System Admin Is

RE: Dynamic ScriptBlock creation

The problem stemmed from the fact that I have several modes or operations that a script may run against several servers. Almost all of the different operations required some base set of config to be derived by executing various queries on the remote servers locally. All of these jobs required a

RE: Dynamic ScriptBlock creation

There are likely 2 or 3 ways to address this (using single quotes or decorated variables), but I'd really like to see an real-world example, 'cuz it's not clear to me what you are trying to accomplish. And, by the way, scriptblocks are always serialized as strings - so you may not actually be h

Re: Schema upgrade/rollback

Agreed ---Blackberried -Original Message- From: "Crawford, Scott" Date: Fri, 8 Jun 2012 21:05:03 To: NT System Admin Issues Reply-To: "NT System Admin Issues" Subject: RE: Schema upgrade/rollback the difference is he'd only have one dc online until he was sure which schema version he

Dynamic ScriptBlock creation

To overcome some difficulties in passing args and combining script blocks to be sent to multiple hosts, I am using [ScriptBlock]::Create() on a few existing ScriptBlocks and one text here string to populate variables in the ScriptBlock instead of passing args. My issue is expanding certain vari

RE: Schema upgrade/rollback

What is it that you fear will happen that this proposed process will protect you from? Thanks, Brian Desmond br...@briandesmond.com w - 312.625.1438 | c - 312.731.3132 From: David Lum [mailto:david@nwea.org] Sent: Friday, June 08, 2012 2:32 PM To: NT System Admin Issues Subject: Schema up

RE: To notify, or not notify (LinkedIn)

I got your newsletter about the same time I asked the list what they thought :-) -Original Message- From: Stu Sjouwerman [mailto:s...@sunbelt-software.com] Sent: Friday, June 08, 2012 2:31 PM To: NT System Admin Issues Subject: RE: To notify, or not notify (LinkedIn) I use LastPass all t

RE: To notify, or not notify (LinkedIn)

I use LastPass all the time, have more than 1oo sites I log into regularly. And yes of course you should warn your users. We sent a Cyberheist News Flash to all our readers. PS, do you guys get my Weekly Tuesday newsletter? Recommended - no spam. http://www.knowbe4.com/cyberheist-news/ Warm rega

Re: Friday (kinda) Funny

On Fri, Jun 8, 2012 at 3:52 PM, William Robbins wrote: > A ceiling fan tripped your main?  Wow.  I could see it breaking the circuit > it was on, but the 200A (guessing) Main?  That's a tad dangerous...even for > TN wiring.  ;) A lot of residences only have 100A service. Older places might eve

RE: Schema upgrade/rollback

the difference is he'd only have one dc online until he was sure which schema version he was using. Sent from my Windows Phone From: Rankin, James R Sent: 6/8/2012 3:17 PM To: NT System Admin Issues Subject: Re: Schema upgrade/rollback Reverting to snapshot norma

RE: Schema upgrade/rollback

To cut to the chase- bottom line- schema rollback = forest recovery. --Additional detail All due respect to Carl's link and it's author, that is not the party line from MSIT any longer, they do not recommend taking the SM offline and as noted in the blog comments, some updates fail unless there

Re: Friday (kinda) Funny

Now that's funny. Op 8 jun. 2012 21:20 schreef "Rankin, James R" het volgende: > In England, with a setup like that, the cops would bust your door off > thinking it was a cannabis farm (based on thermal images from their > helicopter). Happened to a guy I know who worked for Microsoft. > ---Black

Re: To notify, or not notify (LinkedIn)

On Fri, Jun 8, 2012 at 10:30 AM, Ben Scott wrote: > On Fri, Jun 8, 2012 at 1:07 PM, Kurt Buff wrote: >> Nice - and I think I got very lucky, as my old password was said to >> have not been on the cracked list. > >  As LastPast points out, there's no guarantee the attackers released > *all* the pa

Re: Friday (kinda) Funny

You need to start watching Holmes on Homes :) On Fri, Jun 8, 2012 at 12:36 PM, Webster wrote: > We are. This house is 8 years old and the fan had a plastic mounting > bracket that had become brittle and disintegrated. Neighbor is going to > come back tomorrow and do that for us. I have

RE: Reality check

You can delegate off the GPO stuff as well. -Original Message- From: David Lum [mailto:david@nwea.org] Sent: Friday, June 8, 2012 1:03 PM To: NT System Admin Issues Subject: RE: Reality check Already did exactly this for the Service Desk a couple years ago, the only different for th

RE: Problems with our website outside North America

LOL… I like Whataburger when I’m in the mood for fast food, but not that much. Where are you located these days? Daniel Chenault dchena...@lgnetworksinc.com [Description: Description: cid:image001.jpg@01CCF24C.F9B05160] From: Daniel Rodriguez [mailto:drod...@gmail.com] Sent: Friday, June 08, 201

Re: Schema upgrade/rollback

Reverting to snapshot tends to nuke the time stamps. Nuking timestamps tosses you into host isolation mode. Host isolation mode is bad, time consuming and painful. We have a full lab (with a restored AD environment) where we do testing and once it's in production, we open a ticket with MS is som

Re: Schema upgrade/rollback

Wouldn't it be wise to power down all of the members computer in the domain, too? Kurt On Fri, Jun 8, 2012 at 12:32 PM, David Lum wrote: > In this day and age of VM’s, what would be the simplest way to test and > possibly roll back a schema extension? Would this work? > > > > 1.   Power down

Re: Reality check

So, what's your weekend looking like? :) On Fri, Jun 8, 2012 at 12:02 PM, David Lum wrote: > Already did exactly this for the Service Desk a couple years ago, the only > different for the SE's would be allowing it to OU's the SD guys can't get to. > I'd bet it'd take a while before they noticed

Re: Friday (kinda) Funny

Smart man!  I gotta go over to a rental we're rehabbing after work today - to finish up some drywall, flooring, and electrical work so we can get it ready to go  - since I don't have the billable hours gig (yet) :) From: Webster To: NT System Admin Issues Se

Re: Problems with our website outside North America

Works fine in our AU office, which is always our most problematic one. Kurt On Fri, Jun 8, 2012 at 11:20 AM, Stefan Jafs wrote: > Actually, this is the one that I seem to get the most complaints about, > would you mind downloading it and see if it opens properly: > http://www.amico.com/files/pro

Re: Schema upgrade/rollback

http://blogs.technet.com/b/janelewis/archive/2009/05/12/schema-what-is-the-best-practise-for-updating.aspx Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.com From: David Lum mailto:david@nwea.org>> Reply-To: NT Issues mailto

Re: Schema upgrade/rollback

Reverting to snapshot normally bad with DCs due to USN rollback. I've seen it done, but I wouldn't want to try my luck. A sandboxed test environment is the way to go. ---Blackberried -Original Message- From: David Lum Date: Fri, 8 Jun 2012 19:32:14 To: NT System Admin Issues Reply-To:

Re: Friday (kinda) Funny

A ceiling fan tripped your main? Wow. I could see it breaking the circuit it was on, but the 200A (guessing) Main? That's a tad dangerous...even for TN wiring. ;) - Will On Fri, Jun 8, 2012 at 1:55 PM, Webster wrote: > Sitting in my home office working on XenApp servers on remote data >

Re: Friday (kinda) Funny

You'd have gotten a noise abatement order over here then, as well as the broken door :-) ---Blackberried -Original Message- From: Webster Date: Fri, 8 Jun 2012 19:24:33 To: NT System Admin Issues Reply-To: "NT System Admin Issues" Subject: Re: Friday (kinda) Funny Because all 7 UPSes

Re: Friday (kinda) Funny

We are. This house is 8 years old and the fan had a plastic mounting bracket that had become brittle and disintegrated. Neighbor is going to come back tomorrow and do that for us. I have been awake for 36 hours doing work for a global customer with XenApp servers in 4 data centers. I will gl

Re: Problems with our website outside North America

I miss Dallas. If I paid you for the freezing and shipping, could you get a Whataburger with cheese? Daniel On Fri, Jun 8, 2012 at 3:05 PM, Daniel Chenault wrote: > Opened just fine for me. I’m in Dallas, TX. > > ** ** > > Daniel Chenault > > dchena...@lgnetworksinc.com > > [image

Re: Friday (kinda) Funny

Because all 7 UPSes are the same brand and model and power died to all of them at the same time, they all beeped in unison ever 30 seconds. Couldn't have timed the beeps better if I had been conducting from a score. Carl Webster Consultant and Citrix Technology Professional http://www.CarlW

Re: Problems with our website outside North America

Worked fine from XenApp servers in Hong Kong and England. Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.com From: Stefan Jafs mailto:stefan.j...@gmail.com>> Reply-To: NT Issues mailto:ntsysadmin@lyris.sunbelt-software.com>> Dat

Re: Friday (kinda) Funny

Sounds like Nasa had a power glitch there Carl ;) I'd be kind of worried about the fan falling out of the ceiling though - maybe should check the others too just to make sure they're secure... Don K From: Webster To: NT System Admin Issues Sent: Friday, Ju

Re: Problems with our website outside North America

Thanks for checking but where are you checking from? I know North America is good. Stefan On Fri, Jun 8, 2012 at 2:45 PM, Steve Ens wrote: > Yep, works. > > > On Fri, Jun 8, 2012 at 1:20 PM, Stefan Jafs wrote: > >> Actually, this is the one that I seem to get the most complaints about, >> woul

Re: Friday (kinda) Funny

In England, with a setup like that, the cops would bust your door off thinking it was a cannabis farm (based on thermal images from their helicopter). Happened to a guy I know who worked for Microsoft. ---Blackberried -Original Message- From: Webster Date: Fri, 8 Jun 2012 18:55:45 To:

RE: Problems with our website outside North America

Opened just fine for me. I'm in Dallas, TX. Daniel Chenault dchena...@lgnetworksinc.com [Description: Description: cid:image001.jpg@01CCF24C.F9B05160] From: Stefan Jafs [mailto:stefan.j...@gmail.com] Sent: Friday, June 08, 2012 1:20 PM To: NT System Admin Issues Subject: Re: Problems with our web

RE: Reality check

Already did exactly this for the Service Desk a couple years ago, the only different for the SE's would be allowing it to OU's the SD guys can't get to. I'd bet it'd take a while before they noticed...like the next time they went to mess with a GPO (which is rare, but it happens). Dave -Or

Re: Problems with our website outside North America

Was able to download to my tablet via Wi-Fi and through Tmobile wireless. No issues. On Jun 8, 2012 2:40 PM, "Stefan Jafs" wrote: > Actually, this is the one that I seem to get the most complaints about, > would you mind downloading it and see if it opens properly: > http://www.amico.com/files/p

Friday (kinda) Funny

Sitting in my home office working on XenApp servers on remote data centers and all of the sudden I lost all power to the house. Our local utility is implementing smart meters in our area so I thought maybe something went wrong and the neighborhood lost power. Nope, just us. Our next door neig

Re: Reality check

If that's all they need, then delegation is your friend. It's pretty dang easy to set up, too. Create accounts, put them in the new groups, use the delegation wizard to add the new groups to the relevant OUs, and you're good to go. Kurt On Fri, Jun 8, 2012 at 10:40 AM, David Lum wrote: > > That

Re: Problems with our website outside North America

Yep, works. On Fri, Jun 8, 2012 at 1:20 PM, Stefan Jafs wrote: > Actually, this is the one that I seem to get the most complaints about, > would you mind downloading it and see if it opens properly: > http://www.amico.com/files/product/files/ape_br_lr_0.pdf > > Stefan > > On Fri, Jun 8, 2012 at

Re: Problems with our website outside North America

Actually, this is the one that I seem to get the most complaints about, would you mind downloading it and see if it opens properly: http://www.amico.com/files/product/files/ape_br_lr_0.pdf Stefan On Fri, Jun 8, 2012 at 1:38 PM, Kurt Buff wrote: > Just checked from our UK and AU offices - no pro

RE: Reality check

Yeah after seeing other responses I did exactly that. Better than a "per server" account. -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Friday, June 08, 2012 10:00 AM To: NT System Admin Issues Subject: Re: Reality check On Fri, Jun 8, 2012 at 6:11 AM, David Lum

Re: To notify, or not notify (LinkedIn)

Quite. Another reason I continue to respect and support LastPass. - Will On Fri, Jun 8, 2012 at 11:18 AM, Andrew S. Baker wrote: > That's very cool indeed... > > * * > > *ASB* *http://XeeMe.com/AndrewBaker* *Harnessing the Advantages of > Technology for the SMB market… > > * > > > > On Fri,

RE: Reality check

That’s funny, I *JUST* had this discussion with someone else here. If they could create accounts, join machines, and install software on some systems they’d likely not know the difference.. From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Friday, June 08, 2012 10:23 AM To: NT System Admin Issu

Re: Problems with our website outside North America

Just checked from our UK and AU offices - no problems. If you've got IP addresses for the places that are having problems, and can log into your web server, I'd check reverse connectivity, and see what shows. Kurt On Fri, Jun 8, 2012 at 10:18 AM, Stefan Jafs wrote: > We currently are having a d

Re: To notify, or not notify (LinkedIn)

On Fri, Jun 8, 2012 at 1:07 PM, Kurt Buff wrote: > Nice - and I think I got very lucky, as my old password was said to > have not been on the cracked list. As LastPast points out, there's no guarantee the attackers released *all* the passwords they stole. -- Ben ~ Finally, powerful endpoint s

RE: The trust relationship between this workstation and the primary domain failed. Finally answered as only joe could

Of course 'abracadabra' was as well. -sc > -Original Message- > From: Free, Bob [mailto:r...@pge.com] > Sent: Friday, June 8, 2012 12:52 PM > To: NT System Admin Issues > Subject: The trust relationship between this workstation and the primary > domain failed. Finally answered as only joe

Re: Reality check

In your shoes I might be tempted to present them with a fait accompli - over the weekend strip their user accounts of DA privileges and create new accounts for them that allows them to do what they need to do. Of course, you'd want to show the manager of the department references on why you're doi

Re: To notify, or not notify (LinkedIn)

Nice - and I think I got very lucky, as my old password was said to have not been on the cracked list. Kurt On Fri, Jun 8, 2012 at 8:23 AM, Free, Bob wrote: > > Maybe I missed this during this discussion because I’ve been Deaning harshly > due to vacation return but I thought this was a very co

Re: To notify, or not notify (LinkedIn)

Probably only because the system wouldn't allow it in the first place, not because some luser didn't try. Oh wait, I forgot what system we were talking about momentarily. disregard :-) lol -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Friday, June 08, 2012

Re: Reality check

On Fri, Jun 8, 2012 at 6:11 AM, David Lum wrote: > A fellow team member (not an SE, but more of an application owner type of > tech person) needs Local Admin access to a server to install and configure a > new application on it. I understand the need and agree with it. > > Instead of just throwing

RE: Reality check

Hope you keep your resume up to date. That is a recipe for disaster. I sure wouldn’t want to work in an environment where 1st tier support had power like that and there weren’t even rudimentary policies in place. From: David Lum [mailto:david@nwea.org] Sent: Friday, June 08, 2012 9:29 AM To:

Re: To notify, or not notify (LinkedIn)

That's very cool - woohoo was, but WooHoo wasn't ;) From: Ben Scott To: NT System Admin Issues Sent: Friday, June 8, 2012 11:35 AM Subject: Re: To notify, or not notify (LinkedIn) On Fri, Jun 8, 2012 at 11:23 AM, Free, Bob wrote: > https://lastpass.com/lin

Re: Reality check

Users as local admins can be gotten around with enough resources and/or management backing. No-one should have to bear that cross. ---Blackberried -Original Message- From: David Lum Date: Fri, 8 Jun 2012 16:29:00 To: NT System Admin Issues Reply-To: "NT System Admin Issues" Subject: R

Re: To notify, or not notify (LinkedIn)

On Fri, Jun 8, 2012 at 11:23 AM, Free, Bob wrote: > https://lastpass.com/linkedin/ "password" and "linkedin" both come up as in the list. But "12345" does not. Interesting. "peekaboo" was also in there. I guess someone would have guessed it, after all. -- Ben ~ Finally, powerful endpoin

RE: To notify, or not notify (LinkedIn)

I really like LastPass. Been using them for a while now. Joe Heaton ITB - Windows Server Support From: Andrew S. Baker [mailto:asbz...@gmail.com] Sent: Friday, June 08, 2012 9:18 AM To: Heaton, Joseph@DFG; NT System Admin Issues Subject: Re: To notify, or not notify (LinkedIn) That's very cool

RE: Reality check

“separation of privileges or separation of duties which should be firmly entrenched in most workplaces” HAHAHAHAHHAHAHHAHAHAA! Oh wait, you said “should” Dude, our users are still local admins and I’m the only one who seems to care, not one of the 5 Service Desk guys are inclined to move us in t

Re: To notify, or not notify (LinkedIn)

That's very cool indeed... * * *ASB* *http://XeeMe.com/AndrewBaker* *Harnessing the Advantages of Technology for the SMB market… * On Fri, Jun 8, 2012 at 11:23 AM, Free, Bob wrote: > Maybe I missed this during this discussion because I’ve been Deaning > harshly due to vacation return but I

RE: PowerShell 2 on W2K12

This has been bugged already. Dunno if it'll make the bar for RTM. From: Christopher Bodnar [mailto:christopher_bod...@glic.com] Sent: Friday, June 08, 2012 11:39 AM To: NT System Admin Issues Subject: PowerShell 2 on W2K12 Thought I would pass this along: On my plain vanilla install of W2K12 (n

PowerShell 2 on W2K12

Thought I would pass this along: On my plain vanilla install of W2K12 (no additional roles or features installed yet) tried switching PS to version 2 and got this message: Version v2.0.50727 of the .NET Framework is not installed and it is required to run version 2.0 of Windows PowerShell. Too

Re: Reality check

No, he created LA_ account, for example, mine would be LA_jonathan.link. On Fri, Jun 8, 2012 at 10:23 AM, Ken Schaefer wrote: > You created a general account? Rather than a specific account for the > user? > > ** ** > > In general though, in a small environment I would create a Domain grou

RE: Reality check

You created a general account? Rather than a specific account for the user? In general though, in a small environment I would create a Domain group of some kind (e.g. Universal or Global). The Domain group would be based on a business need/business unit/etc. Add that group to the Local Administr

RE: Reality check

Seems strange that business users would have admin access to a server, which wouldn’t obey separation of privileges or separation of duties which should be firmly entrenched in most workplaces ( again YMMV as stated before). Z Edward Ziots CISSP, Security +, Network + Security Engineer

Re: Reality check

I don't think so. In the last three organizations I've been at, all have a similar process and setup.  Different naming standard, but same purpose and results.  However, we didn't use GPO to setup the group on the server.  That sounds pretty neat and automated. Now back to my hub transport outa

Re: Reality check

It depends on your environment. That's almost identical to the procedure we have here. When provisioning a new server here, part of the process is to create a new AD group with this naming convention: ACME_ADMINS_SERVERNAME This group is then placed in the local administrators group of the serv

Re: Reality check

It depends... :-) On Fri, Jun 8, 2012 at 9:11 AM, David Lum wrote: > A fellow team member (not an SE, but more of an application owner type of > tech person) needs Local Admin access to a server to install and configure > a new application on it. I understand the need and agree with it. > >

Re: Server 2012 RC available

No it wont work http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=2006859 On Sat, Jun 2, 2012 at 4:44 AM, Christopher Bodnar < christopher_bod...@glic.com> wrote: > Can anyone confirm that this won't work on ESX 4.1? I'm running into the > HAL_INITIAL

RE: ADP spam

Thanks kurt, adding those in on my filtering and blackholing them now. Z Edward Ziots CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.org -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Thursday, June 07, 2012 3:23 PM To: NT S

RE: ADP spam

Do you have the site in brazil that you can share either on-line or off? Z Edward Ziots CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.org From: Maglinger, Paul [mailto:pmaglin...@scvl.com] Sent: Thursday, June 07, 2012 3:51 PM To: NT System Ad