Hi All,

Not too knowledgeable in the PGP key process so hoping you guys can help out.

Currently PGP key setup for a different vendor and already installed on the SFTP server.

There is a request from another vendor for PGP key as well. The key would be installed on same SFTP server as above.

My question is, can I have multiple PGP keys installed on SFTP server? Also, from a best practice approach should I have a different PGP key for each vendor or is it ok to have just one key used by multiple different vendors.

Thanks in advance for tips/suggestions!

Our Xerox printer leases are up soon and we are considering changing manufacturers. The HP leases are cheaper but the quality doesn’t seem to be on par with Xerox (also ppm is less unless you purchase a fast print lease - wtf). Anyone have feedback/experience with HP and/or Canon printers?

Current printers:

Xerox C70

HP comparison:

HP Color LaserJet Managed Flow MFP E87760z

Google Drive*

I started my first week as the "IT director" at a small public charter school. The IT documentation is a bit old and all on one google doc. I am in the works of creating one for Networking info, Security info, Contact list, New school year prep, Phone/PA systems... etc.

Mainly helping myself by creating a Knowledge base that makes more sense to me. And also adding in notes and creating new documention. For instance, there is no guidance on termination and its obviouse that the school didnt think about, since past employees still have access to things they should not...

I know I can give access to a folder to only myself and maybe one other person. Becuase there will be passwords and network info in this.

I am used to having a KB in a ticketing system like Salesforce, but I only have access to google application and drive seems like the best option. I also want to be sure to have good documentation for the next guy,

I am the only IT here.

I find the documentation weak and want to create a knowledge base for myself. Good drive would work right?

I'm the office 365 admin in our small office. I have one user who is having issues with her emails being bounced back. Talking with the companies IT department that it's bouncing back from their saying it flagged in their system as the email originating from Hong kong. How is this so when all her emails are sent from US East Coast. Also they said not everyone of her emails are doing this. Some are coming in as originating from US and go through without a problem but some show from Hong Kong with no rhyme or reason and no VPN is in use.

Any help fixing please because google searches are getting me nowhere.

Hi folks,

I post this just in case someone else has the same problem as me. It took me 3 days to solve this issue.

I sysprep my image for customizations and with 24H2 it broke my Windows Setup.

Long story short:

1. Windows creates an folder on %SYSTEMDRIVE% named 'Windows.old'

This folder has to be deleted in audit mode or afterwards in the captured install.wim or need to be excluded at DISM /Capture-Image Windows-Setup fails with the error:

Error: SetupDiag reports abrupt down-level failure.

Last Operation: Relocate OS from C:\$WINDOWS.~BT\NewOS to C:\

Error: 0x800700B7 - 0x50016

LogEntry: 2024-10-04 09:29:34, Error SP Operation failed: Relocate OS from C:\$WINDOWS.~BT\NewOS to C:\. Error: 0x800700B7

Refer to "https://docs.microsoft.com/en-us/windows/desktop/Debug/system-error-codes" for error information.

SetupDiag found 1 matching issue.

The 'Windows.old' folder is the only remaining folder in 'C:\$WINDOWS.~BT\NewOS' and causes the error

2. If you enter audit mode via autoattend.xml like me then you need to delete 'unattend.xml' and 'unattend-original.xml' from '%SYSTEMROOT%\Panther' (or you exclude/delete the Panther folder afterwards) else Windows-Setup fails with this error:

Error: SetupDiag reports abrupt down-level failure.

Last Operation: Add unattend file C:\$WINDOWS.~BT\Sources\Payload\Unattend\autounattend.xml

Error: 0x80070050 - 0x50015

LogEntry: 2024-10-04 09:19:46, Error SP CAddUnattend::DoExecute: Failed to save copy of answer file to C:\$WINDOWS.~BT\NewOS\WINDOWS\Panther\unattend-original.xml (0x80070050)[gle=0x00000050]

Refer to "https://docs.microsoft.com/en-us/windows/desktop/Debug/system-error-codes" for error information.

Greetings from Germany

Where else it can be done other than azure and still supported? As i tried on azure it's saying platform no longer supported.

So, you all know how email is a quite complex system to bring to life. Especially securing your mail server properly and complying with all the different rules to be trusted worldwide. Now, most of them have been put in place to prevent spam mails.

On the other hand, you have Gmail that allows you to have infinite mail addresses in the form of username+randomTopic@gmail.com.

Now going with the same idea, what do you think of using username:topicSpecificToken@mail.example ? If we add a topic token to mail addresses, that acts kinda as an API token would, everyone would just be able to generate domain-specific mail addresses (that even comply with standard URL schemes) and thus prevent receiving any mail that was not authorized by them. And the mail server could even sort those mails into different categories/folders automatically.

Additionally, this would be fully backwards compatible: when leaving out the password, this catch-all address can still receive unauthorized mails (eg when you want to bootstrap communication with someone you have no token for). But eventually, the catch-all address would be deprecated and routed to spam altogether, because nothing stops you from providing a „me:info-ABC@example.com“ link on your homepage. And if you see spam on that address, just rotate it to „me:info-XYZ@example.com“.

And all this logic can be implemented on the mail server itself. No need to adjust any transport protocols (because for them, the token would just be part of the username part of the address).

I am aware that this is additional burden most casual users would want to avoid, but wouldn’t that be a nice addition to the mail system for advanced users?

"Your price is going up, here's a generic FAQ to work it out"

What company operates in this way? You know the old price, you know the new price, just tell me the damn price instead of getting me to work it out - this thing was here long before I was and we don't even use it that often, I don't want to spend all day working out what you already know. I thought this was the advantage of cloud?

Edit: I also chewed out a company that have emailed me 4 times over the last week asking about cleaning our "office", if I don't reply to your first email get the damn hint. I sent them a rather salty email saying we're remote - who the hell even thinks an infosec email is the correct place to send this shit?

The post title says it all, for the first time in years since Flyve was flushed down the EOL toilet, there’s an open source MDM that manages all major platforms.

Has anybody notable experience with it on premise?

Hi, I've been in IT for 8 years but been out of the main firing line for a few years as now do AV for a sub department so I assume things have changed.

When a user used to have problem unless it was obvious setting change the go to was to add another profile and login and set as default, just in case the issue persisted I could always go back... as you never know if that user had some setting changes... usually this worked.

however know the original profile is connected to the work or school for office 365 so if you add another profile is failed to authenticate as its already connected, so you know have to delete the profile, remove work or school then you can add again.

is this just how it is now? always worried when its normally working fine but a small issue that if I delete the profile and it doesn';t work I've now made it worse and will take user few days to get IT to sort it (profile removal likely which I don't have access to do)

I'm facing a recurring issue on two of our company's PCs. The high contrast setting is automatically enabling itself, even after I manually disable it. This issue persists after restarting the machines.

i made a new windows to the first one and problem solved buy i want to know where is the problem and solve it without building a new windows.

I've already run sfc /scannow to check for system file corruption, but it didn't find any problems.

Has anyone else encountered this issue or have any suggestions on how to resolve it?

So I logged in to one of our file servers today (2019 standard) to do some maintenance and noticed I can't see any files or folders on the volume that contains all of the company data. For purposes of this post, let's call it the E: drive.

The account I used is the same one I typically use - which has full control share permissions, and full control NTFS permissions on the E: volume. So I logged out, logged in with my account that's in the local administrators group on the server (which is also the Owner of the E: volume), same thing. Hmmm... Okay, so I tried my domain admin account. Same thing. Double Hmmm..

What's interesting is that if I open E: in file explorer, nothing. But if I type the name of a folder I know is on the E: drive, it opens up with no problem. It's like the folders are hidden?! I also tried opening the administrative share (\server\E$) and get the same result as I did opening E: in file explorer - nothing.

When viewing effective access for my local admin account AND my domain admin account on the E: volume, I see green check marks on Read; List Folder/read data; Traverse folder...etc. Not that any of that should matter, because there's also a green check mark next to Full Control.

Am I missing something here?

Hey all,

I am new to being an IT tech and was looking for some advice on a laptop upgrade for work. I currently use a gaming laptop I brought with me but the battery life is atrocious. Sometimes I am onsite for a few hours or have onsite snack to back and I get around an hour of battery life. I just end up being stuck by an outlet to charge my laptop.

I am debating between getting a MacBook or a Lenovo Thinkpad. I’m looking for advice on the pros and cons on the software end as well as the hardware end of things.

Seeing that there are a lot of season vets on here I came to ask here. Just looking for a daily driver that will get good battery life while still being able to do my job without it becoming a headache.

Any and all advice is appreciated.

Edit: I’m a sysadmin

Anyone work at a place that accepts credit card payments? If so, is IT responsible for the terminals (troubleshooting, replacing, etc.) at your organization?

You have basically a year to completely eradicate your environment of windows 10 as it will be EOL in a year.

Yet people can't seem to get that through their heads and are desperately clinging to Windows 10 as though it'll be around forever.

Why create technical debt now? You should not* be deploying Windows 10.

Nevermind your opinions or feelings about Windows 11. Windows 10 is done, like it or not.

I made this up the other day trying to explain IT Wizardry. Here's what I've got so far:

Greybeard - you've been doing this a long time and have a ton of experience. You're not extraordinary, but you know how to fix weird problems that would take hours of googling and trial and error in just a few minutes.

Wizard - you're an engineer and can build out systems and networks from scratch. Think CCNP level, Senior systems engineer, with the old school Microsoft engineer exam level knowledge. You could become an architect if you had the time and mental space to devote a year or two of intense studying for CCIE.

Guru - you're the guy who goes around to corporations and teaches the senior admins how to actually do their job efficiently. They come in thinking they know what they're doing, you show up and 6 hours later they feel like they're a junior their first day again in comparison. You could be an architect if you wanted to, just for fun.

Sorcerer - you're an architect or more. You can run a data center by yourself. You got your CCIE 5 years into your career. You know how to fix problems that would take 5 sydadmins 3 days together in under 4 hours with what is akin to actual black magic. You could probably build assembly if you wanted to.

Archmage - you're akin to lowercase g god level. You're the geniuses who invent the systems we use. You invent UNIX, Linux, programming languages like C, rust, go, ruby, cobol, etc. You were one of the 10 on the original team making Excel or powershell. You're the Woz, Torvalds, etc. of the world. You show up somewhere and every IT pro on any side of the coin gasps, bows down to you like you're a religious prophet.

Thoughts? This make sense? Any merit IRL? I need a new DnD playgroup. Good night.

We have an internal Sharepoint 2013 site as our internal homepage. Before you tell me how bad it is, yes SharePoint 2013 is bad and needs to be replace. we're looking to replace it but its been around a long time, before my time even and with the amount of information on it that needs to be accessed regularly it's not a simple task to replace, we have a lot of "file browsers? with folder contacting files" on each page for each office etc. Each page is set up with groups for each office so you can only see the webparts that have the version of the content that pertains to your office.

Luckly, We are not using it as a Document Management System, we were suing OpenText for that and now Netdocuments.

We have SharePoint in our office 265 tenant but it's not easy to use WISIWIG editor seems to be very basic and very limited and I can't seem to make anything that looks even remotely close to what our current SharePoint looks like, Very basic editor.

I want to have a menu on the top or side with individual pages for the different functions, admin, hr, it and others and O365 SharePoint seems like its able to do what I want just much more complicated than it needs to be to get there with the content that need to be on each page.

Any thoughts on how I can better use 0365 SharePoint or are there better or good alternatives?

Hi there,

To keep this one short - are there any go-to resources to get a deeper understanding of Microsoft Two-Tier PKI? After working a certificate/PKI issue the last few days, I want to dedicate some brain power towards making sure I fully understand what I'm looking at next time so I can build some documentation. After losing some staff, we definitely have some gaping holes in some internal documentation... I can't imagine a ton has changed over the years as far as the concept of having an offline root CA, but I've mostly lived in the telecommunications and network world and really haven't had to do anything more than uploading an IIS cert and changing a binding.

I have no issue spending some money on a book/eBook, etc if it will help me communicate intelligently and feel confident with regards to our setup.

Thanks in advance, have a great weekend!

Anyone had any experience in Aria Automation with the newer Cloud Template outputs section?

Playing around with it and trying to wrap my head around the __deploymentOverview and the Handlebars expressions

Trying to loop on a resource with multi instances of it to display the resource name. Cant figure out the syntax.

Recently hired a VMware guy, former Dell employee from/who is Russian

4:40pm, One of our admins was cleaning up the datastore in our vSAN and by accident deleted several vmdk, causing production to hault. Talking DBs, web and file servers dating back to the companies origin.

Ok, let's just restore from Veeam. We have midnights copies, we will lose today's data and restore will probably last 24 hours, so ya. 2 or more days of business lost.

This guy, this guy we hired from Russia. Goes in, takes a look and with his thick euro accent goes, pokes around at the datastore gui a bit, "this this this, oh, no problem, I fix this in 4 hours."

What?

Enables ssh, asks for the root, consoles in, starts to what looks like piecing files together, I'm not sure, and Black Magic, the VDMKs are rebuilt, VMs are running as nothing happened. He goes, "I stich VMs like humpy dumpy, make VMs whole again"

Right.. black magic man.

I made a gpo to enable BL on all machines in the domain. Keys are set to save to AD.

Our environment is a server 2022 bare metal, running hyper-V (non domain joined) hosting 2 additional server 2022 instances (DC and a file/app server).

Should the DC not be encrypted?

Having to do this to comply with "encrypted at rest" BS.

Would've posted this in r/shittysysadmin as it more aptly fits my skill set, but figured I wouldn't get serious answers.

Hi,

I have a server running 2016 on version 14393.3750.

https://i.imgur.com/d0uyNzf.jpeg

Google says this version is equivalent with patches from June 2020. I'm trying to get it updated to current.

I ran Windows Update with both our internal WSUS server and by clicking "Check online for updates". Both options say they don't find any updates available. I then went to the update catalog and tried the updates from September 2024 as well as July 2020. I tried both the cumulative update and the SSU. Everything I run says This update is not applicable to your computer.

I ran sfc /scannow and it said it found some problems it couldn't repair. The CBS.log has a ton of lines like:

2024-10-04 17:23:11, Info CSI 00002c8b@2024/10/4:22:23:11.243 Primitive installers committed for repair

and a bunch of others similar to:

2024-10-04 17:23:34, Info CSI 0000312e [DIRSD OWNER WARNING] Directory [l:58 ml:59]'\??\C:\Windows\System32\Tasks\Microsoft\Windows\PLA\System' is not owned but specifies SDDL in component Microsoft-Windows-PerformanceCounterInfrastructureConsumer, arch amd64, nonSxS, pkt {l:8 b:31bf3856ad364e35}

I tried dism with restorehealth and got:

Error: 0x800f081f
The source files could not be found.

I'm at a loss as to what else I can do to get this server working. I was also thinking about upgrading it to 2019 or 2022 but didn't know if that woudl work either if the installed OS is somewhat broken.

Thanks.

Hello all, i seem to be having an issue with getting NVMe-over RDMA working after a fresh install of Debian on my 3 nodes.

I have had it working from before without any issues, but after a fresh install it seems that it doesnt work right. I have been using the built-in mlx4 and mlx5 drivers the whole time and so i never installed Mellanox-OFED (because its such a problem to get working).

My setup is like this.....

My main gigabyte server has 18 Micron 7300 MAX U.2 drives.. It also has a connectx 6 dx nic which uses mlx5 driver and that has been used for nvme-over rdma from before. I use the script below to setup the drives in rdma sharing...

modprobe nvmet
modprobe nvmet-rdma
# Base directory for namespaces
BASE_DIR="/sys/kernel/config/nvmet/subsystems"
# Loop from 1 to 18
for i in $(seq 1 18); do
  # Construct the directory name
  DIR_NAME="$BASE_DIR/nvme$i"

  # Create the directory if it doesn't exist
  if [ ! -d "$DIR_NAME" ]; then
    mkdir -p "$DIR_NAME"
    echo "Created directory: $DIR_NAME"
  else
    echo "Directory already exists: $DIR_NAME"
  fi

  if [ -d "$DIR_NAME" ]; then
    echo 1 >  $DIR_NAME/attr_allow_any_host
    mkdir -p $DIR_NAME/namespaces/1
    echo "/dev/nvme$i"n1 > $DIR_NAME/namespaces/1/device_path
    echo 1 > $DIR_NAME/namespaces/1/enable
    mkdir -p /sys/kernel/config/nvmet/ports/$i
    echo 10.20.10.2 > /sys/kernel/config/nvmet/ports/$i/addr_traddr
    echo rdma > /sys/kernel/config/nvmet/ports/$i/addr_trtype
    echo 442$i > /sys/kernel/config/nvmet/ports/$i/addr_trsvcid
    echo ipv4 > /sys/kernel/config/nvmet/ports/$i/addr_adrfam
    ln -s /sys/kernel/config/nvmet/subsystems/nvme$i /sys/kernel/config/nvmet/ports/$i/subsystems/nvme$i
  fi
done

I have setup the rdma share with my loading nvmet and nvmet-rdma and then changing the neccessary values using the script above. I also have NVMe native multipath enabled.

I also have 2 other servers that use mlx4 drivers with connectx 3 pro nics. I would connect to my gigabyte server by using nvme connect commands ( the script i use is below).

modprobe nvme-rdma

for i in $(seq 1 19); do

    nvme discover -t rdma -a 10.20.10.2 -s 442$i
    nvme connect -t rdma -n nvme$i -a 10.20.10.2  -s 442$i
done

now when i try and connect my 2 client nodes to the gigabyte server with the NVMe drives i started getting a new message stating that it cant write to the nvme-fabric on the client nodes.

So i take a look at the dmesg from my target (gigabyte server with nvme drives and connectx 6 dx card with mlx5 driver) and i see the following....

[ 1566.733901] nvmet: ctrl 9 keep-alive timer (5 seconds) expired!
[ 1566.734404] nvmet: ctrl 9 fatal error occurred!
[ 1638.414608] nvmet: ctrl 8 keep-alive timer (5 seconds) expired!
[ 1638.414997] nvmet: ctrl 8 fatal error occurred!
[ 1718.031468] nvmet: ctrl 7 keep-alive timer (5 seconds) expired!
[ 1718.031858] nvmet: ctrl 7 fatal error occurred!
[ 1789.712365] nvmet: ctrl 6 keep-alive timer (5 seconds) expired!
[ 1789.712754] nvmet: ctrl 6 fatal error occurred!
[ 1861.393329] nvmet: ctrl 5 keep-alive timer (5 seconds) expired!
[ 1861.393716] nvmet: ctrl 5 fatal error occurred!
[ 1933.074339] nvmet: ctrl 4 keep-alive timer (5 seconds) expired!
[ 1933.074728] nvmet: ctrl 4 fatal error occurred!
[ 2005.267395] nvmet: ctrl 3 keep-alive timer (5 seconds) expired!
[ 2005.267784] nvmet: ctrl 3 fatal error occurred!

I also took a look at my client servers that are trying to connect to the gigabyte server dmesg and i see the following.....

[ 1184.314957] nvme nvme15: new ctrl: NQN "nqn.2014-08.org.nvmexpress.discovery", addr 10.20.10.2:44215
[ 1184.315649] nvme nvme15: Removing ctrl: NQN "nqn.2014-08.org.nvmexpress.discovery"
[ 1184.445307] nvme nvme15: creating 80 I/O queues.
[ 1185.477395] mlx4_core 0000:af:00.0: VF 1 port 0 res RES_MTT: quota exceeded, count 512 alloc 74565338 quota 74565368
[ 1185.477404] mlx4_core 0000:af:00.0: vhcr command:0xf00 slave:1 failed with error:0, status -122
[ 1185.520849] nvme nvme15: failed to initialize MR pool sized 128 for QID 11
[ 1185.521688] nvme nvme15: rdma connection establishment failed (-12)
[ 1186.240045] nvme nvme15: new ctrl: NQN "nqn.2014-08.org.nvmexpress.discovery", addr 10.20.10.2:44216
[ 1186.240687] nvme nvme15: Removing ctrl: NQN "nqn.2014-08.org.nvmexpress.discovery"
[ 1186.374014] nvme nvme15: creating 80 I/O queues.
[ 1187.397451] mlx4_core 0000:af:00.0: VF 1 port 0 res RES_MTT: quota exceeded, count 512 alloc 74565338 quota 74565368
[ 1187.397458] mlx4_core 0000:af:00.0: vhcr command:0xf00 slave:1 failed with error:0, status -122
[ 1187.440677] nvme nvme15: failed to initialize MR pool sized 128 for QID 11
[ 1187.441431] nvme nvme15: rdma connection establishment failed (-12)
[ 1188.345810] nvme nvme15: new ctrl: NQN "nqn.2014-08.org.nvmexpress.discovery", addr 10.20.10.2:44217
[ 1188.346483] nvme nvme15: Removing ctrl: NQN "nqn.2014-08.org.nvmexpress.discovery"
[ 1188.484096] nvme nvme15: creating 80 I/O queues.
[ 1189.508482] mlx4_core 0000:af:00.0: VF 1 port 0 res RES_MTT: quota exceeded, count 512 alloc 74565338 quota 74565368
[ 1189.508492] mlx4_core 0000:af:00.0: vhcr command:0xf00 slave:1 failed with error:0, status -122
[ 1189.544265] nvme nvme15: failed to initialize MR pool sized 128 for QID 11
[ 1189.545072] nvme nvme15: rdma connection establishment failed (-12)
[ 1190.144631] nvme nvme15: new ctrl: NQN "nqn.2014-08.org.nvmexpress.discovery", addr 10.20.10.2:44218
[ 1190.145268] nvme nvme15: Removing ctrl: NQN "nqn.2014-08.org.nvmexpress.discovery"
[ 1190.417856] nvme nvme15: creating 80 I/O queues.
[ 1191.435445] mlx4_core 0000:af:00.0: VF 1 port 0 res RES_MTT: quota exceeded, count 512 alloc 74565338 quota 74565368
[ 1191.435454] mlx4_core 0000:af:00.0: vhcr command:0xf00 slave:1 failed with error:0, status -122
[ 1191.468094] nvme nvme15: failed to initialize MR pool sized 128 for QID 11
[ 1191.468884] nvme nvme15: rdma connection establishment failed (-12)
[ 1192.028187] nvme nvme15: Connect rejected: status 8 (invalid service ID).
[ 1192.028237] nvme nvme15: rdma connection establishment failed (-104)
[ 1192.174130] nvme nvme15: Connect rejected: status 8 (invalid service ID).
[ 1192.174159] nvme nvme15: rdma connection establishment failed (-104)

I guess the 2 messages that seem to confuse me the most are these two..

[ 1191.435445] mlx4_core 0000:af:00.0: VF 1 port 0 res RES_MTT: quota exceeded, count 512 alloc 74565338 quota 74565368
[ 1191.435454] mlx4_core 0000:af:00.0: vhcr command:0xf00 slave:1 failed with error:0, status -122

So im not sure what to do at this point and im confused as to how to further try and fix this problem.. Can anyone help me ?

It seems that not all the nvme drives have an issue connecting , but after the 13th NVMe connects it starts to have trouble with the remaining ones.

What should i do ?

Hey pals. Our company recently bought a pitney bowes sendpro mailstation. I tired to setup with network but did not have any luck.

• Tried to setup with LAN. Same error pops up and say "cannot connect to the network"
• Tried Wi-Fi and same error.
• In one Reddit post, I saw that VLAN IP must be different than 192.168.10.0 . So created a new VLAN with differnet address. Still does not connect.
• We use Meraki. Infrastucture is native cloud. There is no Firewall rules that is blocking the device. Still whitelisted. no luck.
• Tried to connect with Phone's hotspot. Same error pops up.
• Device even does not show Mac address in the system.

Please advise.

Thank you!

I'd like to know if any of you have this situation. I'm not really able to explain it too well. Basically, I had a student come (probably middle school-aged) who said their teacher sent them something via Adobe Express. I don't understand it at all, mainly because I'd never used it, but the student was not able to retrieve their document using our public machines.

Does anyone have any experience with this, and how can I ensure my public machines work ok with this Google module?

I work in a school and part of the curriculum is formatting an sd card for them to store their project on. All are users are standard users with no elevated rights. Short of using a PAM solution like AutoElevate is there a way non admins can format their sd cards? Without requiring elevation?

I don’t know if this is the right place to post this but the company is work for currently does not have an EOL procedure. I want to come up with one to present to the CTO when it comes to laptops and desktops. But I’ve never done anything like that before and don’t really know where to start.. does anyone have tips?

For possibly half of our 4000 computers the virus definitions are not updating.
Stuck on a version before the current 1.419.351.0

tried mpcmdrun.exe -signatureupdate shows "no updates needed"
Have rebooted, and are otherwise up to date and working.

Audit Failure time Microsoft-Windows-Security-Auditing 5152 Filtering Platform Packet Drop "The Windows Filtering Platform has blocked a packet. During definition checks, but otherwise im not sure if its even related.

downloaded the mpam-fe.exe and it appears to be updated afterward.

A potential upcoming interview said one of the stages is to write a powershell script during the interview. Idk exactly what that will entail. Doing everything off the cuff makese kind of nervous.