Forgive me if this is not the correct place to post, but I have seen a lot of helpful google results from this sub. I am migrating our office server from 2012R2 Essentials to a new one on Server 2022 Standard. Everything has gone well except I don't quite understand how to go about setting up RDP on 2022 Standard.

We had a functioning environment using anywhere access until the failure to renew the security certificate in January, which I gather has gone down and not supported by Microsoft any longer. All set up was done through the wizard and it worked great for years. Server was originally purchased through Dell and the wizard gave us a website "companyname".remotewebaccess.com with a Dell branded website where users could log into using their workstation logins and download the RDP file to machines users had access to.

Now that anywhere access is gone and not available in 2022 Standard, I was following a guide https://server-essentials.com/support/setup-rds-gateway-as-a-replacement-for-access-anywhere-from-the-essentials-experience-role to set up the access we need, but am not sure how to proceed with getting the certificate in step 4 of the guide. The guide says it's out of the scope. We do have a domain for our email that I have control of, no website is attached to it, just a couple of entries for email security.

If I type remote."companyname"com into a web browser, it takes me to a generic "under construction" page in the name of our company at our domain provider. Am I able to get a SSL certificate issued by our provider and set up some sort of redirect within the account to get me pointed toward the RDP server without creating a website like anywhere access? I also see there is an option to self issue a certificate, but not sure if that would be acceptable. (Guessing it would be a IP address+ port or a redirect with a DDNS provider?)

I have done quite a bit of searching, but can't find enough information to confidently get me where I need to go. Is there a guide someone can link me to or a few pointers to get me going in the right direction?

I cant decide between Dell 1u and 2unit servers more likely R670 and R770 servers. Can be 660 or 770.
Hows the heat and noice? I understand there will be less PCIe or Storages

Is there any big down sides or upsides?

The way I've planned to set it up is any PRIVILEGED role (e.g. Global Admin, Compliance Admin, etc.) can only be activated via PIM and only senior admins are eligible, and then helpdesk staff can request activation via PIM for certain UN-PRIVILEGED roles. But there are a number of roles that helpdesk use constantly daily - roles like Helpdesk Admin, Teams Admin, SharePoint Admin, etc.

So a couple of questions:

1. If a senior admin is eligible for Global Admin, do they still need to be eligible to PIM into other roles (e.g. Teams Admin, Compliance Admin, User Admin) if Global Admin potentially covers these permissions? Also, how is it possible to see what roles Global Admin covers? I know that there are a number of roles, such as Billing Administrator, that have permissions that Global Admin doesn't have.
2. What baseline role should Helpdesk have? As they're constantly doing administrative tasks for Teams, SharePoint, Exchange, etc. could these roles be permanently assigned? Or should absolutely no roles EVER being permanently assigned, meaning helpdesk would need to activate roles every day/multiple times a day? This feels like it'd slow things down quite a bit and I can see helpdesk getting frustrated with this.

So I bought this laptop off marketplace for $100. The laptop has an error that says “enter admin password or power on password”. The laptop doesn’t go past that screen, so that’s why the dude was selling it

The laptop is a HP 15-fc00093dx (8F1A6UA)

So I connected my ch341a programmer to the bios chip and deleted the current bios from the chip (I backed it up so I can always reflash it). I downloaded the newest bios from HP site and tried dumping it but the exe file is obviously too large. Needs to be .bin (under 8mb).

How can I obtain a .bin version of my BIOS update that I need?

Idk if this is the correct sub Reddit so I’ll be posting across multiple.

More details: Before trying to dump the chip I tried flashing the BIOS with a different usb stick, the bios did reflash but i still got the error.

Bought a new battery from Amazon and replaced the laptop battery, didn’t work.

Tried replacing the storage, didn’t work.

So my only thought is that the power on password is stored in the BIOS chip, and reflashing the chip should fix the error

Also I’m not a programmer or an IT professional, just a hobbyist so I may be outside of my range here! But I don’t mind learning! I want to learn how to diagnose and fix circuit boards and electronics so that’s why I bought the laptop

Remote 'relay' monitoring of Cisco switches on RFC1918

Hello, I have a bunch of windows servers on the WAN network. They all have a second NIC on a private isolated RFC 1918 switch in a 192.168.1.X and they all have dozens of devices on the pro switch. Is there anyway that I can remote monitor those Cisco switches, especially from a central point? Was considering grafana we're trying to figure out more options. Thanks very much in advance for any input or advice or help on this. I appreciate it.

Just read this article in Wired:
https://www.wired.com/story/elon-musk-government-young-engineers/

And i was wondering, what does r/sysadmin think of all this, as system administrators?

We are completely BYOD if you have an iPhone, and deploy 15’s if you don’t.

It is no suprise that with the Broadcom changes many companies including ours are weighing up the options for bailing from Vmware as our Hypervisor solution. Where have you moved to or where are you planning on moving to?

Hyper-V is likely our largest contender to move to.

Greetings all. I wanted to get a feel from the community how you manage media files more specifically meeting recordings in your environment.

I just finished a data migration of user and department files over to a new file server and I noticed quite a few users have zoom recordings in their folder. Gigs of recordings.In some cases user had recording 3 years old. I'm sure by now the minutes for those recordings would have been created.

Do you have a data retention policy in place that instructs users to purge old recordings or stipulation that certain media files older than x will be purge by IT processes?

How important is updating to SNMPv3? It's mentioned in gvt best practice, and cyber courses, but is it really an actively exploited concern

I have been in IT for nearly 20 years. I have handed my share of sensitive government data, as well as HIPAA/patient data. But I don't have any official cyber security training/experience. For those that work in this arena on daily, what is your day-to-day like? I am in the higher-ed sector.

Just got ripped up and down because this person has over taxed their machine as well as excel itself , running like 97 percent memory and performance shows most of it going to excel and every extra bit used up by a huge amount of stuffed on to the task bar and she said well I am on VPN so that should not be an issue …. Never mind that’s not how any of this works .But you would blow a gasket in a car and be like it should not matter what I was doing because I was on the highway. What in this world does not have a point it reaches its maximum ability to do something ?

I have a Z9100-ON with 8 x Mellanox-4 cards which I picked up on eBay cheap, to learn how to configure, I managed to load v9.14 OS and get the management interface working I assigned an IP address to the management interface and can ping it. But I cant get the web interface to work is there a trick to this ?

NatMappingManager is a PowerShell-based GUI tool for managing NAT (Network Address Translation) static mappings. The tool provides a user-friendly interface to view, add, edit, and delete NAT mappings on Windows systems

https://github.com/2KU77B0N3S/NatMappingManager

Just need some advice to see if I am doing the right thing as I been looking at this sub for a bit. As this will be long, harshness is welcomed as I am the only one family and friend was in this field so I have no one to talk to about this.

I "Recently" have become an Jr System admin which is something I wanted to do when I entered the field of tech.

I will add some back ground information: I'm introvert like most these days, but when spoken to I speak (as I was raised to do), at my job when they hand me tasks I have no issues doing that as I like working on new things and getting taught new things especially if you can fix them mutiple ways or even upgrade them. Since I am the only person at this location technically wise I mange 60+ users on a day to day basis 200 other users in another country as in the other countrie has now only one senior admin.

(They out the blue fired the other senior for his demeanor as they told me but I think he was losing trust with them I am not sure since they keep tellimg me they will not go into too much details about it.)

We also recently got an properly IT manager as well. Which he is okay but he keeps telling me I still don't have the skills needed but I agree with him as the job promised to tech me more as I was onboarded (when I was onboarded I was only "Trained for a week" from one of the seniors then left own own for a week and I mean it was just me managing 260+ and making sure nothing goes down which of course it did but I was okay with it since I learn not to panic when something breaks over the years, even at the company even someone was like it feel like you been here for years as it didn't feel like no tech just left me to go on vacation) but also I taken whatever tasks they asked of me even before he came so I am a bit confused about the skill level if they never allow me to take projects or keep saying they will let me on some I even offerd to get on meeting in the AM hours for me amd them the PM hours. I would even ask myself how everything going?

I've did the integration on my own like JamF (some parts even figuring out issues and informed seniors), Clari (Redid it for the senior admin when it went down) other SSO etc. Oraginzed and made dynamic groups. I also had gotten in trouble for automating license when the senior admin (one that got fired) ask me to reassign all of them, then my manager told me he was upset as I messaged him wanting to know what was wrong also apologized but he ignored me just to end up using my method like 2 weeks later and automated all of them anyways?... (this was before the proper IT manager who wants to automate it all which is good).

I also would write documentation, implement cell phones, build network cabinets, install AV for meeting rooms, moved access points etc. I'm one of those people if you show like 2 times I can remember how to do it unless of course it's not frequently used. I know I am doing is probably the bare minimum and I do want to learn more but self studying is not my strong suit, I have to be taught by someone or in a class room setting where I can ask the teacher things.

They admitted to not training me also not giving me projects, they give me stuff they don't want to do which is fine or all the tickets, I don't mind.

Here's is the issue, every week it seem like my one on ones with my manger get more and more I expressed that I would love more project etc to the new manger (always have). New manger goes in with yeah we need to develop some skills (apparently he thinks I am missing basic skills? I will go more into this) I agreed with him yeah we can always work on it, it's a job that what you're there for right. But then the social aspects comes up he try insert that he is also a introvert which is fine but then he suggested to be more social? ( I always go to users I support talk to them, also when they ask me things I'm happy to answer whenever, sometimes I even do it on my off time if it's an emergency, but also if they asked me about my weekend or is they want to vent). Never had this issue with my old just was escalations level helpdesk (calls non stop ringing) would always get good comments from people and seniors.

When we had our big company party and meeting for the week he got to see I was social in person to our users and some of them was even trying to just conversate with me but he was the one that was more introvert than me. I would ask him if he wanted to do anything he would say he was okay because I know that weird feeling of no one wanting to talk to you especially when you're new. I asked him to clarify what he mentioned by social and I got these out of him.

Now when I first came to work here at this job it's 3 other women I have met, on is a VP stake holder, one does office manager work and another is the vp's secretary. Since I came here I have gotten the vibe they didn't really like me for some odd reason. The VP she would ask me or try to force me to do things that's in protocol I would have to ask my manager to do, which I inform them politely she doesn't like that.

It was an incident she thought was my doing the senior admin that got fired change our location wifi password as one of their lawyers that was visiting informed them that password was posted in the office which it was but it was already posted before I even started working there for a year because of the office manager posting them. (I wasn't informed at all about it, office manger said she had the okay from them to do it (it was even posted when the senior that trained me came down). I was upset as well but she tried to blame me for it (Luckliy I was in office that day to quickly fix the situation, was like a 10 min fix and handing out the password as well). But with these 3 ladies they have been demonizing me, talking about me and doesn't like me (I would even do office manager work when she wasn't there when she would ask me even though the hr is supposed to help her or people for some odd reasons would come to me).

But since these 3 women are well feared or liked people assume they should hate me as well (Went I onboard people like the information and help they get but afterwards it a different story when working under the VP), luckily I have a small group of people that think I am a genuine person and kind (my new manger said the same so I am confused). He was shocked when I asked if it was these 3 people that were dissatisfied with me and he was like yeah and I told him the long history of things and that I tried getting on their good side asked if he ever had an conversation with this vp he admitted that he never has.

I told my pervious manger as well what is going on but as time goes on nothing is done except telling me I am bad at my job and to do better. I would always ask if I go with their plan what happens if these 3 are still are unhappy? Never get an sure answer as he suggested I go into the office 3 times a week and stay until 5pm (I leave at 3:30pm since the office is pretty much empty and everyone issues is solved, and my contract is just 2 days a week but again I like helping people so I didn't mind. I also will come in on my non office days if someone computer is dead need replacement etc). Still nothing got better with them.

These are just some examples. My new manger implementing an "development plan" for me to the vp saying by the end of the year I will be a "mid senior engineer" but telling me it's is not up to him to make me one and it's not promised I will be made into one after this. I said okay sure but if this doesn't satisfy her and you see I am doing whatever everyone and is asking in this plan correctly who will be defending me? Still no real answer as he believes it will work.

Another side note is now they're trying to higher a senior engineer to tech me things also have a person to work with which I liked the idea but also feared that what if they don't like me or don't tech me anything? But also they had me meet and talk to 3 candidates I personally like all of them and had no issue but the vp she did (she's the final boss type of situation as she claims they all have an complex and demor the other 2 agree with her well because she is their boss). My two mangers found it super strange because they interviewed all of them first but again just brushed it off as well lets have her interview them first to see if they make it through her? As they called it and "Cultural fit" test.

For context if it does or doesn't matter I'm a semi young black female, while these 3 are a mix of 2 older white woman and 1 younger white woman. My company is not diverse I'm only 1 out of 2 black people that works in office at our location. I point out that out during a team building meeting and activities weirdly I was praised by my former manger bring it up and was "brave" to bring up hard topics that no one want to really get in deep with.

Sorry for this being long but I am trying to fit some examples of what is happening right now.

Am I not working hard enough? Should I stay here? Is this normal and I am just burned out and upset over nothing?

Should I find a new place of work? I'm not getting paid a lot as normal Jr admin. But I was hoping for skill development. I was never an tech that claimed to know it all but I always told people I will figure out for you an if I don't know I will ask not empty handed as I was taught from a great manager my pervious job "never come empty handed, did you look on your own really hard if so show me what you found first then I will see if I have the answer or are we stumped together". I also ask questions and do this method but my new manger expects me to never ask for help or questions but then tells me to do so? I don't do it all the time but its usually with complexity of the ticket or it's something I am blocked on that I need to ask for as it was a couple points of time they wouldn't give me admin to a lot of systems as he was also stocked ( it was the senior who was fired and I would have to keep asking to have access to things).

I guess I am just burnt out and depressed. I used to love helping people but now... idk

I am planning to go back to school for electrical engineering.

Thank for the advice of anyone will to read and give any as this is my first system admin job. P.s sorry for errors.

At 23 years old, I am an infrastructure engineer at my current company. I've been with them for about 2 years now and have had various internships. I applied to a pretty big and growing startup due to my contributions with architecting our Hybrid AD, O365, MECM & Intune environment.

I got a call around Friday afternoon from their HR recruiter saying they were impressed with my resume and are looking to interview me tomorrow... The thing is, they are looking for someone with 6-10 years of experience... I feel like they are going to feel like I'm wasting their time because I'm 1 year out of college.

I have never done a Staff Engineer Interview before, and all the advice out there is really for Software Engineers. Also they are emphasizing with someone with advanced skill with VDI. I have experience with VCenter and ESXi and whatnot, but not Citrix and Horizon. I only have tinkered around with VDI with my homelab.

Any advice or tips?

Any public sector-public safety IT administrators here? What’re you doing for computer logon 2FA to satisfy the CJIS requirement? We currently have a few users in testing the waters with Duo Desktop 2FA. Currently it’s working great. Wondering what others are doing to satisfy this requirement.. also, if you utilize Duo, are you utilizing Duo essentials for commercial or federal?

Thanks in advance!

I was looking to update my USB tools and someone recommended Medicat... I downloaded using their torrent option, but Windows Defender flagged it as a the trojan "Bingoml!mclg". I'm used to things like this getting flagged as hacker tools and such, but the trojan flag caught me off guard. Is Medicat even reputable or is the torrent just compromised?

Hey there, I am 21 years old and I am about to finish my apprenticeship as an Software Engineer.

During my apprenticeship I had the possibility to work in other departments within my company. Now, after 3 years of working as a Software Engineer, I came to the conclusion that the job just isn't what I want to work as for the rest of my life, so I spoke to my chef and he offered me a job as an IBM-I administrator.

All good and dandy. There is one big downside tho. The IBM-I, within my company, will get shut down within the next 5 years. We are currently working on a new system, which will replace the IBM-I.
I know that within the next 5 years, I will most likely have changed companies anyways, but looking into the future, i don't know if being specialized in the field of IBM-I, is such a good idea.
I can't tell how high the demand for IBM-specialist really is.

My question now is, do you guys think that I should take the job?

I’ve been looking into more sys admin pay for when I get out of the military. What would yall say the pay would be for a mid to senior level would be?(im in the military and don’t know the civilian market that much for my job)

BSPS runs the OPM network. What are you guys doing? Is port security not turned on? How is a random server getting plugged in and not flagged? Why is no one just yanking the cord and kicking Elon in the balls?

Small shop IT covering a large company, so many of our jobs cover things that I assume other companies have dedicated people for. This might not be the best place to ask, but ill try anyway.

We have 4 physical oracle servers, with current plan to migrate to cloud but it might be a few years. In the interim I need a solution to be able to provide bare metal recovery if any of the physical servers take a shit. I know nothing about oracle, I know that the person who manages it does RMAN backups, but I assume its just for the database. But, I need a way to restore the OS to its current config on potentially different hardware, for him to then be able to restore the database.

We were using a solution from cristie software called abmr, that worked directly with our old backup solution Dell's IDPA. Essentially how this worked was you installed software inside of the oracle servers that during a backup it captured OS information as well as drives sizes and everything. If you needed to do a BMR, you would boot a new server into a recovery environment via a flash drive and then point to the backup location and it did the rest. I did get it to work a few times, but the recovery process was very hit and miss.

We switched backup solutions and cristie's product that works on Dell's PPDM (Power Protect Data Manager) requires setting up a dedicated backup and recovery platform inside our vcenter. PPDM does offer data backup / recovery for oracle linux but not bare metal recovery. I am not a huge fan of this so I was wondering if anyone else has any suggestions or experience in using another third party software like cristie software?

Solutions from places like Veeam, Veritas, and Rubrik would not be an option since I assume it is built into having their full backup solution. I would need a third party software that integrates with PPDM, or something I can use in conjunction with.

Thanks for any feedback / responses!

I bought replacement batteries from BatteriesPlus for an SMT1500 16 months ago. It was $150, and the warranty was only a years, so it was essentially money flushed. APC charges $200 for their RBC7, and it has a two year warranty. If I had bought from them, I would have got a free replacement. Or more than likely, the battery wouldn't have died already. So feeling pretty dumb about that right now.

What are everyone else's thoughts on aftermarket batteries for UPS systems? I know I could have gone even cheaper than BatteriesPlus, but was afraid it would be difficult to clam a warranty on something from Amazon or other online seller. Ironic, I suppose. Oh well.

So, I've inherited a Ubuntu terminal server which runs on a VMware virtual machine - it only runs locally in the network.

It's working fine on one PC, however on my laptop it's not being seen on the network even though it's configured the same... Any ideas?

I'm organizing a local group of sysadmins for socializing and networking. We usually just meet at a restaurant to chat about work and other topics.

Recently, though, we've had the opportunity to use a venue for talks or workshops, so I'm looking for ideas for a workshop that would be interesting and valuable for junior to mid-level sysadmins.

Any suggestions would be greatly appreciated!

Thanks for your time.

I've followed the docs here and I'm able to instantly log in to the device using a PIN after creating it.

I'm running hybrid join devices and everything else seems to be working fine, but RDP with PIN gives me an error of "The specified user name does not exist. Verify the user name and try logging in again". RDP with user/pass works as expected to the same host.

Not sure if I did something wrong or this is expected, so before I start diving in deeper can anyone confirm you've been able to connect to rdp using only cloud trust and windows hello?

Hey guys, I want to learn how to write automated scripts in Bash properly. What video/document/course (paid/free/etc.) do you recommend?

This is for a kiosk machine. Windows. Yeah, I know r/techsupport, but someone here will know what I'm asking.

Kiosk machine but it still allows ctrl alt del to function.

I did find you can prevent specific users from using the task manager, and that's more what I was thinking. However, ctrl alt delete still brings up an options menu (where the task manager is now disabled). I want nothing to happen with ctrl alt delete, but from what I found it's a very low level function, and it's just built in, so there's no way to delete it.

I don't mean the security policy interactive users disable ctrl alt delete for log in. This is nothing with log in. It's just to try to get rid of ctrl alt delete from doing anything. Is that possible, or is the best situation having ctrl alt del bring up the menus list and having the task manager disabled?

Again, nothing with the secpol.msc interctive login. This is just to have ctrl alt del do nothing at all.

We have a few scheduled tasks that run some Powershell scripts as a gMSA, but noticed after the server was upgraded from 2019 to 2022 the tasks are now giving a 0x1 error. If i update the task to run as my admin account everything works like before, but as soon as i go back to the gMSA i get the error. I checked the event viewer and all i can see are successful audit logon's at the time the task runs.

Has anyone experienced this before?

I am an IT support technician looking for a highly compatible m.2 ssd external enclosure that will support as many m.2 hard drive types as possible.

Specs it needs to have:

1. Tool less or tool free
2. Supports NVMe PCIe and SATA interface types
3. Works with B Key, M Key, and B+M Key connectors
4. Supports 2230, 2242, 2260, 2280, and 22110 sizes

Essentially looking for an m.2 ssd external enclosure that will work with the most amount of M.2 type hard drives!

Anyone got any recommendations for this?