Hobbit_Hardcase

Intune is not fit for purpose.

Posted by Hobbit_Hardcase@reddit | sysadmin | View on Reddit | 386 comments

Intune is not fit for purpose.

Posted by Hobbit_Hardcase@reddit | sysadmin | View on Reddit | 386 comments

Hobbit_Hardcase@reddit (OP)

Don't! My boss wants me to do AZ104 and MD102 as a part of my Professional Development. I've put it off for 18 months so far, but he's starting to get sarcastic. I think he's getting heat because I have an "unbalanced" skillset because of my Jamf400.

Intune is not fit for purpose.

Posted by Hobbit_Hardcase@reddit | sysadmin | View on Reddit | 386 comments

Intune is not fit for purpose.

Posted by Hobbit_Hardcase@reddit | sysadmin | View on Reddit | 386 comments

Hobbit_Hardcase@reddit (OP)

Any Write\_Output lines in the script should be posted to `C:\WINDOWS\IMECache\HealthScripts\God-Awful-ID-Code\ZZZZZ_RemediationScript.output` But for some reason, mine aren't. You can look in the IME log for `agentexecutor.exe -remediationScript` to see what the specific path is.

Intune is not fit for purpose.

Posted by Hobbit_Hardcase@reddit | sysadmin | View on Reddit | 386 comments

Hobbit_Hardcase@reddit (OP)

Very odd, because I do get real-time policy application and device status with Jamf, for 10K endpoints. I can push a fix with Jamf and 90% of the estate has it by lunchtime.

Intune is not fit for purpose.

Posted by Hobbit_Hardcase@reddit | sysadmin | View on Reddit | 386 comments

Intune is not fit for purpose.

Posted by Hobbit_Hardcase@reddit | sysadmin | View on Reddit | 386 comments

Intune is not fit for purpose.

Posted by Hobbit_Hardcase@reddit | sysadmin | View on Reddit | 386 comments

Intune is not fit for purpose.

Posted by Hobbit_Hardcase@reddit | sysadmin | View on Reddit | 386 comments

Intune is not fit for purpose.

Posted by Hobbit_Hardcase@reddit | sysadmin | View on Reddit | 386 comments

Hobbit_Hardcase@reddit (OP)

1. This is why I specifically created a new item. 26 hours ago, that still hasn't run. 2. Scripts were set to run in 64bit. 3. This is where I was looking. There should have been PreDetectScript.output and RemediationScript.output logs referenced in that log, but they were never created. This is why I changed the Transcript location to \\tmp.

Intune is not fit for purpose.

Posted by Hobbit_Hardcase@reddit | sysadmin | View on Reddit | 386 comments

How long have you been at your current company?

Posted by fwambo42@reddit | sysadmin | View on Reddit | 329 comments

Hobbit_Hardcase@reddit

11.5 yrs * The pay is reasonable. * The office is nice, for the 2 days a week I'm there. * The commute isn't horrible. * Most of my team are nice. * I have a good boss. The last point is the real clincher. I know I could move elsewhere and get more money, but having a team I don't despise and a boss I actually get along with makes the effort of find somewhere new something I can't be doing with.

For a small and simple IT fleet like I run, is the secure boot certificate expiry even a problem?

Posted by DeifniteProfessional@reddit | sysadmin | View on Reddit | 23 comments

Hobbit_Hardcase@reddit

It's a certificate that's embedded in the BIOS. Use the Intune config to turn on the Reg keys that allow the update, then make sure the BIOS is up to date, with whatever method works for you.

Windows Server Secure Boot for certificates expiring in 2026

Posted by Rascalvin@reddit | sysadmin | View on Reddit | 23 comments

For the fourth time, no, we dont work on personal devices.

Posted by AnDanDan@reddit | talesfromtechsupport | View on Reddit | 55 comments

Asset tracking stickers

Posted by bobdobalina@reddit | sysadmin | View on Reddit | 63 comments

Is the word "fanny" a slur?

Posted by reuben_ggmu@reddit | AskABrit | View on Reddit | 472 comments

Hobbit_Hardcase@reddit

I have recently purchased the Folio Society prints for my little girl and the names are Jo, Bessie and Fanny. Dame Washalot is still there. Dame Slap runs the school, from the title headings. We haven't got very far into the story yet.

What do you British people think of the French?

Posted by CocoTyg@reddit | AskABrit | View on Reddit | 1965 comments

Is the word "fanny" a slur?

Posted by reuben_ggmu@reddit | AskABrit | View on Reddit | 472 comments

Hobbit_Hardcase@reddit

Many, *many* years ago, I was at a student Improv Comedy night where the prompt was "Arse Bandit". Without a pause, one of the guys scampered up to one of his colleagues, grabbed his buttocks and scampered away again, chortling "He-he, I've stolen your arse!" in an egregious Mexican accent. Funniest skit of the whole night, and it still makes me smile.

A man called our helpdesk because his computer was being sarcastic and I had to take him completely seriously for an hour

Posted by TraditionalTailor452@reddit | talesfromtechsupport | View on Reddit | 159 comments

A man called our helpdesk because his computer was being sarcastic and I had to take him completely seriously for an hour

Posted by TraditionalTailor452@reddit | talesfromtechsupport | View on Reddit | 159 comments

Windows Hello for Business is great… until users forget their actual password

Posted by heartgoldt20@reddit | sysadmin | View on Reddit | 106 comments

Hobbit_Hardcase@reddit

This. We use MS Authenticator with the Passwordless option. I haven't manually typed my password since I did the annual reset. Combine that with a Self Service reset portal and nobody needs to actually know it.

Anyone still using golden images?

Posted by imSeanGG@reddit | sysadmin | View on Reddit | 120 comments

The bullshit world of IT - What it's become and where its going (Rant)

Posted by livevicarious@reddit | sysadmin | View on Reddit | 515 comments

Password managers or in head?

Posted by MegaSuplexMaster@reddit | sysadmin | View on Reddit | 72 comments

Hobbit_Hardcase@reddit

Definitely use a Manager. I recommend BitWarden. I like that it's cross-platform and the free tier is fine for most people. Use Passkeys where possible and MFA everywhere else. If you are using Entra & MS Authenticator, turn on the passwordless option.

MacOS Logs Frustration

Posted by ironcode28@reddit | sysadmin | View on Reddit | 6 comments

Do you enable auto-update on software?

Posted by nodiaque@reddit | sysadmin | View on Reddit | 50 comments

Do you enable auto-update on software?

Posted by nodiaque@reddit | sysadmin | View on Reddit | 50 comments

Hobbit_Hardcase@reddit

We use Patch My PC for Windows and Jamf for macOS. Both services will validate updates before they get pushed, so we lessen the chance of a bad patch. And it's less work keeping all the packages up to date.

I installed Malware on user's Workstation

Posted by Imaginary_Lead_3333@reddit | sysadmin | View on Reddit | 506 comments

Making sure SME owner & main office manager have Tenant admin access

Posted by Odd_System_9063@reddit | sysadmin | View on Reddit | 12 comments

Another first.

Posted by ol-gormsby@reddit | talesfromtechsupport | View on Reddit | 142 comments

Why Are People Like This?

Posted by GhostInThePudding@reddit | sysadmin | View on Reddit | 333 comments

If you use AI to break down scripts or code for you regularly, I really encourage you to read this LLM study

Posted by segagamer@reddit | sysadmin | View on Reddit | 276 comments

Hobbit_Hardcase@reddit

Last week, I needed to write some simple zsh to replace some files, using a command buried in the app bundle. I opened VSCode and started writing, commenting the purpose of the script at the top, just like I always do. I got as far as `#!/bin/zsh` `# Script to update Extensis Connect plugins` `# Designed to run from MDM in a root context with no user interaction after Self Service initiation` `echo "=== Starting Extensis Connect Plugins Update ==="` `if [[ ! -e /App` before Copilot spat out *the entire rest of the script*. It wasn't perfect and I had to go back and make some adjustments to arguments, but it really made me stop and think. OK, it might have taken 30 minutes to write the whole thing, but AI cut that to less than 5 mins. Writing code is no longer a USP skill, people.

I spent 3 hours debugging why my site wouldn't update. Turns out I didn't understand DNS.

Posted by Ok-Childhood-5005@reddit | sysadmin | View on Reddit | 38 comments

How do you keep ticket ownership clear when requests come from everywhere?

Posted by Sorry_Search_8991@reddit | sysadmin | View on Reddit | 36 comments

Hobbit_Hardcase@reddit

Automated ticket creation should be able to assign it to the sender. It can take some time getting workflows right, but it's worth doing. For manual creation, you need to get the Helldesk to fill out the information properly. Which ticket system are you using?

What was the last genuinely funny film you saw?

Posted by Jesisawesome@reddit | AskUK | View on Reddit | 547 comments

You have to be joking Microsoft

Posted by Holiday_Disastrous@reddit | sysadmin | View on Reddit | 763 comments

Hobbit_Hardcase@reddit

On the flip side of this, some of our Regions have been having issues with enrolment of hybrid devices for over a month. One of the IT bigwigs opined that it's because there's a low priority on fixing it, as MS doesn't care so much about hybrid. https://preview.redd.it/sgb16f7hp2fg1.png?width=866&format=png&auto=webp&s=6721d3182f2460b569b01256da6db9b57d363b90

When Is it acceptable to murder helpdesk?

Posted by Ok-Concern-178@reddit | sysadmin | View on Reddit | 27 comments

Hobbit_Hardcase@reddit

Except the most persistent ones will eventually bully their way into an escalation. They I have to tell them "No" to whatever godawful, stupid, thoughtless request it is.

Working alone in IT dept

Posted by CurveKey7852@reddit | sysadmin | View on Reddit | 183 comments

Hobbit_Hardcase@reddit

A lot of it is going to depend on how much support (and budget!) you get from management. Supporting that many users as a OMB is possible, but it's a lot of work when you are trying to do the Infra as well. If you have a good relationship with your management that can mean that you don't get as much bullshit from users because they see that you get taken seriously. Ticket everything, document everything. Agree SLAs and make sure that there is some kind of cover for when you aren't there. Don't let them turn you into 24/7/365 support unless they are paying you for that.

Who's still working from home in 2026?

Posted by idrinkpastawater@reddit | sysadmin | View on Reddit | 1179 comments

Hobbit_Hardcase@reddit

Corporate team. We have a *big* office near Kings Cross. Helldesk are back in 4 or 5 days a week, depending on seniority. Infra choose, but generally we are in 2 days so that there's always someone here.

How much does your company charge for coffee from the machine?

Posted by Equivalent-Rich8018@reddit | AskUK | View on Reddit | 589 comments

What are some easy to get licenses in the UK?

Posted by anonymous1675@reddit | AskUK | View on Reddit | 383 comments

What are some easy to get licenses in the UK?

Posted by anonymous1675@reddit | AskUK | View on Reddit | 383 comments

What was the first OS that you have ever used?

Posted by 2point1betatest@reddit | sysadmin | View on Reddit | 260 comments

Cloudflare down again?

Posted by ardaingeal@reddit | sysadmin | View on Reddit | 25 comments

Cloudflare outage now in status page

Posted by GoodCrossing@reddit | sysadmin | View on Reddit | 10 comments

Cloudflare down again?

Posted by ardaingeal@reddit | sysadmin | View on Reddit | 25 comments

It's great when HR has IT's back

Posted by speddie23@reddit | talesfromtechsupport | View on Reddit | 331 comments

Anyone want to drink in misery with a fellow sysadmin?

Posted by BigFrog104@reddit | sysadmin | View on Reddit | 127 comments

Spare a thought for these IT admins

Posted by Traditional-Tech23@reddit | sysadmin | View on Reddit | 174 comments