modder9@reddit
Completely forgot about this… I deal with several locations that keep letting support hardware lapse. This might make me change my stance from “Dell preferred” to “Dell required”.
modder9
Server prices Dell vs HPE vs....
Posted by pirx_is_not_my_name@reddit | sysadmin | View on Reddit | 80 comments
Server prices Dell vs HPE vs....
Posted by pirx_is_not_my_name@reddit | sysadmin | View on Reddit | 80 comments
modder9@reddit
Meanwhile - Dell OpenManage Enterprise is free (uses the existing iDrac Enterprise licenses)
Lansweeper
Posted by slocs1@reddit | sysadmin | View on Reddit | 20 comments
modder9@reddit
LSAgent with cloud relay works perfectly fine.
Myself and one other person are supporting 350 end users right now. HR told us to expect approximately 100 more employees by the end of the year. My manager told me that we don't need to hire another person in our department. Is it just me or is that completely unreasonable?
Posted by NeezDuts900@reddit | sysadmin | View on Reddit | 191 comments
modder9@reddit
1:100 works best. Every VIP further lowers that ratio.
“Technical” Middle Management
Posted by El_Chupra_Nibre@reddit | sysadmin | View on Reddit | 19 comments
modder9@reddit
My boss is a (washed) technical guy and he’s useful. Lets me keep working in the weeds while he handles all the boring reporting and executive talk I CBA to deal with.
Cable Management Questions/Discussion
Posted by bgatesIT@reddit | sysadmin | View on Reddit | 21 comments
modder9@reddit
Zip ties aren’t all that bad if used correctly. Power cords and the back sides of your patch panels are perfectly good uses.
Buy a good pair of flush cutters.
Cable Management Questions/Discussion
Posted by bgatesIT@reddit | sysadmin | View on Reddit | 21 comments
modder9@reddit
Panduit(and many others) have training for exactly this if you want to do it nicely yourself. Haven’t personally done it, but I’ve heard it’s useful.
We implemented JIT access for our privileged accounts. Auditor asked what the engineers actually did during those sessions. We had no answer.
Posted by TurnoverEmergency352@reddit | sysadmin | View on Reddit | 29 comments
modder9@reddit
You used to be able to just look at a private Reddit profile and hit the search button to reveal all their posts/comments. It was like that for about a year before they fixed it. Reddit is so incompetent.
April 2026 OOB updates (KB5091572/73/75/KB5091157) — DC-only or apply to all Windows Servers?
Posted by maxcoder88@reddit | sysadmin | View on Reddit | 8 comments
modder9@reddit
They were 2025. Same boot loop as described.
We implemented JIT access for our privileged accounts. Auditor asked what the engineers actually did during those sessions. We had no answer.
Posted by TurnoverEmergency352@reddit | sysadmin | View on Reddit | 29 comments
modder9@reddit
Sounds like you’re doing a great job already. Could you use defender timeline as evidence?
Beyond trust PRA for contractors, but who cares if they have friction using it, they aren’t people.
Built a faster tool… nobody uses it 💀
Posted by performanceexperts@reddit | sysadmin | View on Reddit | 10 comments
modder9@reddit
You spent hours learning that just because you’re right, doesn’t mean you can convince people to change their workflow/learn something new.
AD Sites and Services / DC FSMO Roles
Posted by arbiterrecon@reddit | sysadmin | View on Reddit | 15 comments
modder9@reddit
Can’t say I’ve personally renamed a site, but it’s probably fine. Should be easy to find an answer if that’s safe. You should define subnets on the sites that are missing them tho.
AD Sites and Services / DC FSMO Roles
Posted by arbiterrecon@reddit | sysadmin | View on Reddit | 15 comments
modder9@reddit
If you don’t accurately match sites and subnets to the associated DC pairs, you will have a very funky time with resolving your domain to random DCs that are many states away.
I.e. try pinging yourdomain.local from those 10.5.10.0/24 servers. Depending on the time of day/position of Mercury/moon phase you get a response from Texas or from Cali.
If you accurately define your subnets, things in Texas trying to resolve domain.local will get responses from your DCs in Texas.
April 2026 OOB updates (KB5091572/73/75/KB5091157) — DC-only or apply to all Windows Servers?
Posted by maxcoder88@reddit | sysadmin | View on Reddit | 8 comments
modder9@reddit
I don’t have PAM and all DCs are GC, still broke 20+ DCs
Our cybersec team are getting onto us about all our servers having web browsers installed.
Posted by stone500@reddit | sysadmin | View on Reddit | 594 comments
modder9@reddit
They are stupid.
Being told to remove Edge is silly. You should make sure it is auto updating tho (and not requiring a launch to initiate the update).
Chrome on servers? Yea, remove it because everything after 2022 has Edge.
Deciding whether to renew Arctic Wolf or cut losses and move to another MDR
Posted by Signal-Hotel5845@reddit | sysadmin | View on Reddit | 51 comments
modder9@reddit
It’s literally what I said from the start. You assumed otherwise.
Deciding whether to renew Arctic Wolf or cut losses and move to another MDR
Posted by Signal-Hotel5845@reddit | sysadmin | View on Reddit | 51 comments
modder9@reddit
Exactly. A single internal guy to dial in your internal monitoring/playbooks and to steer AW (or whatever external SOC you choose).
The worst outcome is getting dog walked by a bottom of the barrel offshore service telling you to do random remediations with no thought to their actual risk or impact.
Deciding whether to renew Arctic Wolf or cut losses and move to another MDR
Posted by Signal-Hotel5845@reddit | sysadmin | View on Reddit | 51 comments
modder9@reddit
You guys misunderstand. OP said he was disappointed in their additional offerings beyond having a pulse and being in a chair.
The correct path is to have an outside SOC to meet any insurance requirements, but to have internal driving your security posture forward.
Deciding whether to renew Arctic Wolf or cut losses and move to another MDR
Posted by Signal-Hotel5845@reddit | sysadmin | View on Reddit | 51 comments
modder9@reddit
Where did I say to staff a 24x7 team?
Deciding whether to renew Arctic Wolf or cut losses and move to another MDR
Posted by Signal-Hotel5845@reddit | sysadmin | View on Reddit | 51 comments
modder9@reddit
They are there to check a box for cyber insurance. Hire internal if you want real proactive support.
Anyone moved off Freshservice recently?
Posted by itsme_raf@reddit | sysadmin | View on Reddit | 45 comments
modder9@reddit
You made them private their post/comment history to hide the obvious shilling.
Software/application center to use for endpoints?
Posted by jari065@reddit | sysadmin | View on Reddit | 20 comments
modder9@reddit
PMPC for workstations. I have a Java script to update Java on servers that it won’t break whatever runs.
What more do you need patched for 3rd party apps that is common enough to be supported?
Software/application center to use for endpoints?
Posted by jari065@reddit | sysadmin | View on Reddit | 20 comments
modder9@reddit
Agent performance is eating about 20% of your cpu/memory resources.
Price.
General usability.
Replaced it with PMPC which runs Intune native and uses delivery optimization.
Servers use azure arc with delivery optimization.
Server Patching no longer overruns maint windows. Remote site bandwidth is no longer hosed.
The above combo is probably 1/20th of what you pay for Tanium. No module bullshit. It just works and is easy.
Taniums package library was limited/slow to update. PMPC runs circles around them.
I could go all day. The day the idiot that shilled for Tanium got fired was one of the best days in my working life.
VMs slow on dell server
Posted by ntuner@reddit | sysadmin | View on Reddit | 42 comments
modder9@reddit
I was just remediating these low/medium tenable alerts yesterday. It’s about 12+ vulns going back to 2017. The latest are spectre/meltdown, but they are solved by exactly what you described. At WORST case with very specific workloads it can have a 30% CPU performance impact.
Actually, I have this in my recent notes still:
Recommended Settings 3: -
SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management\ FeatureSettingsOverrideMask: 0x00000003 (3)
SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management\ FeatureSettingsOverride: 0x00800048 (8388680)
CVEs Covered: CVE-2017-5715, CVE-2017-5753, CVE-2017-5754, CVE-2018-3615, CVE-2018-3620, CVE-2018-3639, CVE-2018-3646, CVE-2018-11091, CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11135, CVE-2022-0001 Note: Hyper-Threading enabled. Note: Most protections enabled by default on clients. Required combined mitigation for CVE-2022-0001.
Software/application center to use for endpoints?
Posted by jari065@reddit | sysadmin | View on Reddit | 20 comments
modder9@reddit
Tanium and ManageEngine gotta be the worst 2 choices imaginable. Used them both for years and ripped them out at the first opportunity.
How do you actually stay on top of cyber threats week-to-week?
Posted by According-Run-4428@reddit | sysadmin | View on Reddit | 41 comments
modder9@reddit
Mostly because they don’t update unless launched. Chrome sits neglected on an edge users pc. Kill chrome and switch everyone to edge. You’ll have a much better time. Plus, no more duplicating config profiles to cover both.
VMs slow on dell server
Posted by ntuner@reddit | sysadmin | View on Reddit | 42 comments
modder9@reddit
You’re thinking of spectre/meltdown and about a dozen other speculative execution CVES.
Hardware Procurement Automation
Posted by notlateafterall@reddit | sysadmin | View on Reddit | 17 comments
modder9@reddit
Same. Totally depends on if HR can give a forecast for hiring. 5% minimum, probably 10% max.
Idk hardware ordering never has been a burden for us. Open outlook “Send us # of the usual latitudes, # precisions, thanks” to our VAR.
Hardware Procurement Automation
Posted by notlateafterall@reddit | sysadmin | View on Reddit | 17 comments
modder9@reddit
10% of your active fleet. Say he has 200 laptops, have ~20 in storage. Covers a burst of new hires, regular replacements, and emergency replacements.
Personally we kept about 5%, and we’d order to replenish stock about quarterly. Don’t want too many warranties burning away in the storage room.
If rotating passwords is outdated, why are JIT password rotations a security standard?
Posted by JalapenoPopPoop@reddit | sysadmin | View on Reddit | 76 comments
modder9@reddit
There are 2-3 entries you need to add in the VM’s advanced settings iirc
Windows has no built-in way to have a fast screen-off on lock AND enough time to type your password. I fixed that.
Posted by 2thick2fly@reddit | sysadmin | View on Reddit | 14 comments
modder9@reddit
AI slop pollution.
Im lookikg for thoughts on working at a conglomerate Ai data center or other new era IT?
Posted by Rustyshackilford@reddit | sysadmin | View on Reddit | 16 comments
modder9@reddit
Im 30 and can barely operate a touchscreen keyboard if not for autocorrect. It’s not that uncommon.
Im lookikg for thoughts on working at a conglomerate Ai data center or other new era IT?
Posted by Rustyshackilford@reddit | sysadmin | View on Reddit | 16 comments
modder9@reddit
All good friend! Just wanted to clear up the misunderstanding. That guy didn’t read as aggressive I think he (and myself) just couldn’t tell what you meant at first.
Im lookikg for thoughts on working at a conglomerate Ai data center or other new era IT?
Posted by Rustyshackilford@reddit | sysadmin | View on Reddit | 16 comments
modder9@reddit
Proofread your comment he was replying to. I think that’s what he means when he said drunk.
Darktrace flagging protonmail.me domain as suspicious?
Posted by SimplifyAndAddCoffee@reddit | sysadmin | View on Reddit | 25 comments
modder9@reddit
Same experience here. Their pricing was also just random and the time was better spent on literally anything else.
I hate Microsoft Licensing...
Posted by DaemosDaen@reddit | sysadmin | View on Reddit | 38 comments
modder9@reddit
M365 maps is possibly the greatest sysadmin tool ever created.
What the heck: Agentic AI???
Posted by xX8Omni8Xx@reddit | sysadmin | View on Reddit | 301 comments
modder9@reddit
It’s more functional than 95% of AI products out right now.
What the heck: Agentic AI???
Posted by xX8Omni8Xx@reddit | sysadmin | View on Reddit | 301 comments
modder9@reddit
The best example is a YouTube video about “teaching AI to play pokemon Red”. Basically ML with weighted rewards/punishments and running thousands of simulations to find the best actions to gain points.
Very custom, very much not a word guesser. Needs a competent engineer tuning the system so it does not get stuck on the BOX.
Patching Practices
Posted by Rusty_Alley@reddit | sysadmin | View on Reddit | 27 comments
modder9@reddit
> you don’t get those updates through Microsoft
Iirc “Intune suite” is coming to E5 this summer. It includes a MS native attempt to do 3rd party patching called “Enterprise App Management”. I was underwhelmed with the catalog of apps supported 2 years ago and it got lapped by PMPC. Maybe it will get better with the expanded customer base.
Kinda related to that E5 change - I’m hoping “remote help” becomes a real product, because NOBODY was buying it before to give feedback. I’d love to ditch our 3rd party RMM tool for another MS native, but it’s probably years from being a good solution.
Is Dell ProDeploy Plus worth it for a small VMware cluster (3x R760 + ME5024)?
Posted by Stock-@reddit | sysadmin | View on Reddit | 34 comments
modder9@reddit
I can confirm with everyone else that pro deploy is useless.
Looking for an Agentless Solution to Control Software Installations on Windows
Posted by Best_Check_810@reddit | sysadmin | View on Reddit | 46 comments
modder9@reddit
The agent is so noisy. Uses GBs of ram, high CPU use. It’s just a hog.
Looking for an Agentless Solution to Control Software Installations on Windows
Posted by Best_Check_810@reddit | sysadmin | View on Reddit | 46 comments
modder9@reddit
Their agent is the noisiest thing I’ve ever seen. I have a screenshot somewhere of vcenter performance graphs before and after we off boarded that shit. It was like a 30% drop in CPU use across the hosts.
For workstations - we had to start ordering laptops with extra ram until the tanium contract ended.
If you have E5, the “Intune Suite” features are being added this summer. That includes Endpoint Privileged Management which is part of what you’ll need.
Looking for an Agentless Solution to Control Software Installations on Windows
Posted by Best_Check_810@reddit | sysadmin | View on Reddit | 46 comments
modder9@reddit
Do NOT use tanium if you are worried about performance. Grinded our fleet to a halt. Worst software I’ve had the misfortune of using.
Contractor access keeps getting extended week by week because project managers wait until the last minute
Posted by Timely_Aside_2383@reddit | sysadmin | View on Reddit | 21 comments
modder9@reddit
Don’t change your scripting/auto-disable policy as it is good. It’s the managers who are wrong.
LANSweeper Users: Is there any reason to keep scanning Certificates and Firewall Rules?
Posted by Nexzus_@reddit | sysadmin | View on Reddit | 2 comments
modder9@reddit
Firewall can be very useful at times.
Certificates not so much. Certificate scanning can be replaced with defender vuln premium if you ever did want to care about them in the future.
HELP PLEASE! Had my first real email compromise incident this week. Solo IT Admin. Here's what I did — what did I miss?
Posted by LiveGrowRepeat@reddit | sysadmin | View on Reddit | 142 comments
modder9@reddit
“Require compliant/hybrid joined devices” and block all personal enrollment methods. That way logins can only come from company issued devices”.
I’m oversimplifying it, but this should be your end goal.
Haven’t had a user get successfully compromised in years since implementing this CA policy.
Manage engine endpoint central opinion
Posted by stuartall@reddit | sysadmin | View on Reddit | 24 comments
modder9@reddit
Weekly 10/10 vulnerabilities. Dogshit support.
PatchMyPC is dirt cheap and uses native MS Intune functions to work. July of this year, the intune suite features get added to E5. That includes Remote Help. It sucked when I evaluated it 2 years ago but I imagine it will improve significantly now that all e5 customers will have access to it.
VDI
Posted by crankysysadmin@reddit | sysadmin | View on Reddit | 61 comments
modder9@reddit
How do you decide which users get AVD vs W365?
A screw-up that’s very easy to make with APC UPS
Posted by Ill_Preference_7491@reddit | sysadmin | View on Reddit | 180 comments
modder9@reddit
ONE OF US! ONE OF US! ONE OF US!
Tanium
Posted by itiscodeman@reddit | sysadmin | View on Reddit | 11 comments
modder9@reddit
Don’t listen to this guy. He has search results for “Tanium” and runs defense for them(albeit super late/poorly). Pretty typical for them to also have terrible damage control to any negative mentions of their dogshit product.