sysacc

Anyone not able to pull O365 sign in logs

Posted by nijagl@reddit | sysadmin | View on Reddit | 5 comments

Looking for a new Documentation Platform - Recommendations?

Posted by theotheritmanager@reddit | sysadmin | View on Reddit | 51 comments

sysacc@reddit

This is a good way to do it. I generally recommend that Markdown be the common format and that whatever tool the company wants to use should allow imports and exports.

Ansible playbook for Dirty Frag mitigation

Posted by mautobu@reddit | sysadmin | View on Reddit | 6 comments

Corporate ticket SLAs

Posted by DramaticErraticism@reddit | sysadmin | View on Reddit | 21 comments

sysacc@reddit

There are some pretty decent PowerShell or python scripts that will update tickets to make sure you dont miss your SLA. I had one that would put a random message saying your ticket is still being looked at please hold. You could probably set one up to put anything with no updates in X hours to "On Hold"

Best software to search files and files content on Fileserver

Posted by cloudy_cabage@reddit | sysadmin | View on Reddit | 63 comments

anyone else getting tired of explaining why we can't just use cloud for everything

Posted by Sroni4967@reddit | sysadmin | View on Reddit | 325 comments

Suggestions on how to increase my AI token usage

Posted by twistoffate4@reddit | sysadmin | View on Reddit | 307 comments

Anyone build a long-term lifestyle around contract travel/field engineering instead of traditional office work?

Posted by Front_Cup8779@reddit | sysadmin | View on Reddit | 19 comments

sysacc@reddit

The best option for this kind of work lifestyle is doing contracts for the hospitality industry. The gigs for this a very few and well guarded. They can include trips to some of the hotels and resorts.

HP Shutting Down HP Anywhere and Other Remote Desktop Apps

Posted by DeFuchsIschKeinHaas@reddit | sysadmin | View on Reddit | 20 comments

sysacc@reddit

I still have a client with the physical cards for remote access and it works great. I wish they would open-source the protocol, that way it lives on.

Migration from vSphere to Hyper-V

Posted by Former-Mountain-9170@reddit | sysadmin | View on Reddit | 40 comments

Dont tie your Password Manager to SSO

Posted by sysacc@reddit | sysadmin | View on Reddit | 119 comments

sysacc@reddit (OP)

I probably could of written down the title of this post better. There's a series of things that lead to this: 1. The teams who manages the password manager is inexperienced 2. Policies do not allow to write down passwords 3. They removed all other password managers

Dont tie your Password Manager to SSO

Posted by sysacc@reddit | sysadmin | View on Reddit | 119 comments

Dont tie your Password Manager to SSO

Posted by sysacc@reddit | sysadmin | View on Reddit | 119 comments

Dont tie your Password Manager to SSO

Posted by sysacc@reddit | sysadmin | View on Reddit | 119 comments

Ran DR failover test and realized our entire recovery plan assumes Entra ID is still available

Posted by Firm-Goose447@reddit | sysadmin | View on Reddit | 61 comments

Just-in-Time Access: Security Upgrade or Operational Headache?

Posted by Due-Awareness9392@reddit | sysadmin | View on Reddit | 57 comments

sysacc@reddit

This is what I see most commonly and it works well. The only difference is that most roles have an activation time between 4 to 8 hours. So that they only activate once and there is less chance that the PIM Expires when they are doing work.

How many of you have two chat systems where you work?

Posted by sysacc@reddit | sysadmin | View on Reddit | 49 comments

How many of you have two chat systems where you work?

Posted by sysacc@reddit | sysadmin | View on Reddit | 49 comments

How many of you have two chat systems where you work?

Posted by sysacc@reddit | sysadmin | View on Reddit | 49 comments

How many of you have two chat systems where you work?

Posted by sysacc@reddit | sysadmin | View on Reddit | 49 comments

sysacc@reddit (OP)

It would be internal only and hosted on local infra. The two cases are that they can keep teams pretty open for client communication and have two different retention and security policies, one for each system.

Cherche logiciel de prise en main à distance (support utilisateur) prenant en charge la redirection des clés de sécurité (yubikey par ex)

Posted by markham8927@reddit | sysadmin | View on Reddit | 3 comments

How are you actually deciding which patches/CVEs matter?

Posted by Inner_Ad9693@reddit | sysadmin | View on Reddit | 18 comments

Who's fault is it when the end users AI doesn't work?

Posted by antonbp5@reddit | sysadmin | View on Reddit | 270 comments

sysacc@reddit

> “Hi, this is a third‑party service provided by Microsoft, and we do not offer any kind of support. As this is a continuously evolving product, it may contain bugs, limitations, or inaccurate outputs. The service is provided ‘as‑is,’ and **users remain responsible** for validating all information prior to use in any corporate, operational, or compliance‑related context.”

Azure Stack HCI validation fails on HPE DL380 Gen11 || Data disk BusType detected as RAID instead of SAS/SATA in JBOD mode

Posted by daneehunter@reddit | sysadmin | View on Reddit | 11 comments

sysacc@reddit

In case you cant figure out why or how to change the BusType on the Storage controller, you can set a registry key to bypass the check. I would only do that if you are testing out Azure Stack or its a Dev or Test Environment. https://learn.microsoft.com/en-us/answers/questions/2140807/storage-spaces-direct-(s2d)-wrong-bustype-with-rai

Google 8.8.8.8 Down Canada?

Posted by icq-was-the-goat@reddit | sysadmin | View on Reddit | 19 comments

To the european sysadmins: Are you looking into non-us products right now? What did you find?

Posted by Tokata0@reddit | sysadmin | View on Reddit | 269 comments

To the european sysadmins: Are you looking into non-us products right now? What did you find?

Posted by Tokata0@reddit | sysadmin | View on Reddit | 269 comments

sysacc@reddit

Strategies is what I am seeing being requested from our clients (We are in Canada). They are asking about the process of moving away, the timelines and the technicalities. Timelines are the hardest part to figure out but also the scariest for any business. The solution we give to most clients right now is to make sure you have a backup solution that can backup your cloud assets and is either on-prem or in Colo.

Who's still working from home in 2026?

Posted by idrinkpastawater@reddit | sysadmin | View on Reddit | 1179 comments

Do servers really need DLP? Or is Network DLP sufficient?

Posted by kehndi-hundi_si@reddit | sysadmin | View on Reddit | 35 comments

sysacc@reddit

And how much time and money the org is ready to spend. DLP is a huge beast that will eat time and money like nothing else. (Dynamics excluded)

Best bitwarden/Keepass alternatives

Posted by Diligent-Pattern7439@reddit | sysadmin | View on Reddit | 33 comments

Yeastar Registration Failures

Posted by Schubbby1@reddit | sysadmin | View on Reddit | 5 comments

sysacc@reddit

Those Yeastars are pretty solid devices. 1. Check for SIP ALG on the firewall and make sure its off 2. Check the logs to see what is causing the failed registration 3. Check the Registration/Keep Alive timings on the SIP trunk and compare to what Easybell require. 4. Run a packet capture on the device to get more details.

OPNsense + multi-ISP + VLAN-heavy small office design — am I overengineering or missing something?

Posted by No_Entrepreneur118@reddit | sysadmin | View on Reddit | 32 comments

sysacc@reddit

You would be better off using two separate firewalls instead of one that handles everything. On the devices that need to exit via another ISP, just set the gateway to the corresponding firewall. If the cameras are on their own switch they dont need a VLAN on the firewalls, just set them on a different subnet. This feels like a final test at a college.

Post-mortem sanity check: how do you handle “un-scannable” expiries (API keys, internal certs) without spreadsheets?

Posted by sanjayselvaraj@reddit | sysadmin | View on Reddit | 108 comments

sysacc@reddit

A csv/json/xml file that is monitored by your monitoring system. object, desc, expiry Cert Y, cert on system Y - check confluence page Y, 2026-12-30

What do you use to write documentation?

Posted by Chucki_e@reddit | sysadmin | View on Reddit | 67 comments

sysacc@reddit

I do a lot of contract work so whenever I start a new project I spin up a container of Wiki.JS locally. I use it to write all the documentation and at the end of the work stint I will extract the documentation in Markdown or PDF for the client. But what you are experiencing is lack of dynamic documentation, this happens everywhere and is really hard to pin down. Some places simply refer to the configuration options as the documentation and/or by adding a lot of comments to describe the actions. They had one page of the system, under that they had the diagrams and under that all the processes with a link or a path where you can find the configuration.

Keeping Meraki for switches but using Ubiquiti for wireless APs?

Posted by FatBook-Air@reddit | sysadmin | View on Reddit | 160 comments

sysacc@reddit

I have found that Unifi AP's are more performant than Meraki in most scenarios. They have longer range and have better speeds overall. As for features, Meraki does have more features that integrate it with the rest of the ecosystem. Unifi has more options regarding the actual Wireless configurations.

Auditors asking for proof of processes which we’ve always done informally

Posted by JobFinancial7083@reddit | sysadmin | View on Reddit | 71 comments

sysacc@reddit

One thing that might help you is that you can always refer to the official documentation of the service. So if you do a task in Active Directory, simply refer to the Microsoft KB for that action, saying that you are following their Documentation.

Need to cut down Login Times. By a lot

Posted by LordLoss01@reddit | sysadmin | View on Reddit | 97 comments

sysacc@reddit

Smart Cards with VDI is pretty standard in that industry. They pop the card in the reader and their session shows up on the display.

Azure PIM Issues?

Posted by This_Bitch_Overhere@reddit | sysadmin | View on Reddit | 24 comments

It's soon to be 2026 and my F50 corporation is just now implementing a policy to block unapproved software

Posted by Pump_9@reddit | sysadmin | View on Reddit | 61 comments

sysacc@reddit

Policies like this one might not have a high weight so they are considered "Nice to have". So nothing really happens after other than possibly affect a "Score" The other point I see often is that these whitelists take considerable resources to manage for the very low value gained in security.

Windows Admin Center 2511 generally available

Posted by odaniel99@reddit | sysadmin | View on Reddit | 20 comments

Best Way to Manage Multiple Locations DNS with DNS at primary

Posted by MTB_NWI@reddit | sysadmin | View on Reddit | 19 comments

sysacc@reddit

Have the DNS entries be hosted on a public DNS service or if you need more security, host them on a public service that can whitelist the IP's.

Proxmox Datacenter Manager in stable version 1.0 available

Posted by Ci7rix@reddit | sysadmin | View on Reddit | 9 comments

We are starting to pilot linux desktops because Windows is so bad

Posted by crankysysadmin@reddit | sysadmin | View on Reddit | 875 comments

sysacc@reddit

We use Intune and Azure ARC. ARC takes care of most of the things you listed, like Patch Management, Defender and auth if you want it. Intune is a bit more picky but work with Ubuntu and RHEL as long as you use Gnome. (Fedora can be made to work as well)

We work in an industry with more buzzwords than people. Hyper Zero Trust, UltraSASE, AI-XDR, AI sec Posture, AI AI AI AI …& more AI ..it’s getting insane.

Posted by Silly-Commission-630@reddit | sysadmin | View on Reddit | 52 comments

sysacc@reddit

Dont forget: * Edge Computing * Virtualization * Containerization * HCI * NGFW * Automation * Big Data * Internet Of Things * BYOD * Agile * DevOps * Kubernetes * Machine Learning * Blockchain * 5G * Web 3.0 * Serverless * No Code * Digital Transformation * Cloud Computing/Native * SaaS * Paperless * Microservices * Single Pane of Glass. I am forgetting many more

We work in an industry with more buzzwords than people. Hyper Zero Trust, UltraSASE, AI-XDR, AI sec Posture, AI AI AI AI …& more AI ..it’s getting insane.

Posted by Silly-Commission-630@reddit | sysadmin | View on Reddit | 52 comments

sysacc@reddit

People using Observability, Monitoring, KPI and Metrics interchangeably are driving me nuts. They each have a definition and are all have a different setup. I spend more time making sure they understand each term than explaining how each can be configured.

Org goes all shadow IT

Posted by orion3311@reddit | sysadmin | View on Reddit | 160 comments

sysacc@reddit

In that case it was that the department did not grow at the same pace as the rest of the business, while also trying to force new policies.

What's the larged company you worked at that used the Unify stack and what were the limitations you experienced?

Posted by matroosoft@reddit | sysadmin | View on Reddit | 38 comments

sysacc@reddit

It depends on the team and the org. * Can the team manage those devices properly? * Can those devices provide what the business needs? * Are you spending too much time troubleshooting the devices or replacing them? They can handle CAD users quite well, you just need to build the network for that use.

Org goes all shadow IT

Posted by orion3311@reddit | sysadmin | View on Reddit | 160 comments

sysacc@reddit

Yes, I see that one often. The other one I see often is: The Organization processes are too slow to meet the demand of the various departments. Or: Department X is unable to provide enough resources to support the needs of the business and is using "Red Tape" to slow everyone else down.

What's the larged company you worked at that used the Unify stack and what were the limitations you experienced?

Posted by matroosoft@reddit | sysadmin | View on Reddit | 38 comments

sysacc@reddit

The first thing people replace is usually the Firewalls, then the switches and lastly the access points. The firewalls are OK at best. They are not the most stable things and reboots are going to fix things that should not require a reboot to fix. The switches are good up until you need to do stacking or any kind redundancy. Good for access, Not recommended for a core. The Access points are Solid, They perform better than most and at a cheaper entry point.

Is there a reason not to SSO everything?

Posted by en-rob-deraj@reddit | sysadmin | View on Reddit | 214 comments