NinjaOne down?

Eastern US here, anyone else experience extreme slowness or RMM just not loading at all?

https://redd.it/1owas2z
@r_systemadmin

Top 3 Powershell Commands

Hi guys, what are your top 3 favourite commands? I’m currently working on a project at the moment to mass deploy VMs on various server HyperVs.

I’m trying to get better at automating network configuration, computer renaming, IP setting, VM creation, junk/temp file schedule deletion etc etc. Just things that result in better quality of life for the user , but also ease of deployment and maintenance for the admins.

I’ve really started to like Powershell and right now I’m trying to figure out what I CAN’T do with PS haha. Curious how others like to use it to automate or alleviate their work?

https://redd.it/1oweno3
@r_systemadmin

Wireless AP\system recommendations

I am looking to replace our wireless AP's and I am looking for wireless recommendations. We are a medium sized business currently using 6 UniFi UAP-HC-HD AP's. These have been pretty solid but due to POE issues they are incompatible with our current Cisco switches. They will not power on with POE.

Per an open Cisco case, these UAP-HC-HD access point present parameters outside of the IEEE spec.

Since they are about 4 years old and there is no support for them, we are looking at replacing them.


We have a fairly simple setup and only run a corporate and a guest network. Indoor only. We need to secure with certificates this next year so that is needed.


What is everyone using and what would a recommendation be?

https://redd.it/1owauwk
@r_systemadmin

How the hell are faxes HIPAA compliant but email isn’t?

EDIT: This is a rhetorical question. Read the absurdity below.

I’m helping a client of mine implement a new phone system, and the phone system vendor is doing an assisted implementation. As part of the staging in the system, the new provider is using temporary (real) phone numbers until the commissioning and porting date. This particular vendor also has e-fax capabilities on each DID on the phone system.

Apparently, one of the temporary numbers used to be the fax line for a local fertility doctor’s office because one user has received several emails with faxes from Labcorp showing various ladies lab reports.

Faxes are NOT SECURE. Regular-ass email, even sent over unencrypted SMTP on port 25 is less likely to end up in the wrong hands than a “boy I sure hope I typed this phone number in right and there’s a fax machine on the other end” best effort fax. Network packets don’t randomly get sent to the wrong place over a WAN connection, and with as virtually ubiquitous TLS encryption is on everything from SMTP to HTTPS, transferring data across the “open” internet is pretty damned safe.

I 100% know what happened too: our local ILEC started killing old copper POTS accounts in the area, the doctors office didn’t see or understand the notice on the bill, and their account got killed and the phone number released. I’m sure that the office manager at the doc’s office has said something like “It’s weird we haven’t received any faxes in the last few days, right?”

Yeah, we got the fax, and Mary’s estradiol level is 262.6. 🙄 C’mon people, make a web portal for this shit or integrated your EHR. We know you have one… it’s required by HIPAA.

https://redd.it/1owjhk7
@r_systemadmin

Phishing message in Teams

If a phishing message appears in Teams as one of the existing chat participants and the participant says they didn’t post it, where do you start at finding the cause?

I looked in the user’s sign in logs and see no new sign in locations.

Malware on their device?

https://redd.it/1owitbd
@r_systemadmin

Jack of all trades, master of none?

How many different systems are you responsible for? How many is too many? I feel like I may be becoming a jack of all trades and a master of none. Some of my responsibilities are being a Google admin, identity and access management, the firewall, email security, EDR, and I dabble a little in our VM environment.

Is it normal to be responsible for this many systems? Im still pretty new to this, going on 3 years in a few months.

https://redd.it/1owlsb9
@r_systemadmin

I take a deep breath each morning as I open the ticket queue audio

https://www.youtube.com/watch?v=XXsTBKhsSBw

I have started reading poorly worded hyperbolic tickets in my head as if a metal band were singing it. All work and no play makes the help desk a dull boy.

Come up with a good ticket pasted as lyrics and maybe I'll turn it into one for some commiserative laughs - cheers.

https://redd.it/1owo6jw
@r_systemadmin

Management security

Context, I’m responsible for the whole IT in a small company (around 20 people). No specific background, just Reddit under my arm.
We have been asked lately to strengthen our general security to be compliant in regards to one of our client. Task that I’ve taken and done quite well (i think), it’s quite general stuff, like DNS filtering and zero trust policy on computers.

Now, obviously dns filtering is going to block illegal streaming services. But what to do when top management, owner of the company says that she can’t watch here favorite netflix show (not on Netflix) anymore and is simply asking for those security updates to be taken down ?

I’m hesitating between, it’s your company I get paid to do what want yolo and well this is kind of the last computer you want to have compromised as being an owner she by default has access to a lot of sensitive information.

https://redd.it/1owp2ke
@r_systemadmin

Multiple unknown WordPress Administrator accounts suddenly appeared. How bad is this and what should I check?

I logged into the WordPress dashboard of an eCommerce site I manage and found several user accounts with the Administrator role that neither I nor my business partner created.

Screenshot of the User List

We have not checked the User list in months, so these accounts may have existed for a while. The strange part is that the site looks completely normal (as far as I can tell).



Here are the details:

A plugin called File Manager Advanced was installed earlier. I recently learned that this plugin has a long history of security issues.
The site had many outdated plugins and themes before we discovered the problem.
Functionality in the store seems normal, and no strange orders have appeared.
I am trying to understand how serious this is and what the correct cleanup steps should be without damaging the existing eCommerce setup.



My questions:

1. Does this automatically confirm a hack or is there any legitimate explanation for unknown Administrator accounts appearing?
2. What should I inspect to confirm whether attackers left backdoors?
3. Should I check theme files like functions.php, the uploads directory, scheduled tasks, or the database user table?
4. Is deleting the accounts, changing passwords, running Wordfence, and regenerating SALT keys enough, or should I do a full reinstall of WordPress core?
5. Is File Manager Advanced a likely attack vector in this situation?
6. I would appreciate advice from anyone who has dealt with similar silent compromises. I want to clean this properly without breaking the store.



Thanks in advance.

https://redd.it/1ownvuv
@r_systemadmin

Weekly 'I made a useful thing' Thread - November 14, 2025

There is a great deal of user-generated content out there, from noscripts and software to tutorials and videos, but we've generally tried to keep that off of the front page due to the volume and as a result of community feedback. There's also a great deal of content out there that violates our advertising/promotion rule, from noscripts and software to tutorials and videos.

We have received a number of requests for exemptions to the rule, and rather than allowing the front page to get consumed, we thought we'd try a weekly thread that allows for that kind of content. We don't have a catchy name for it yet, so please let us know if you have any ideas!

In this thread, feel free to show us your pet project, YouTube videos, blog posts, or whatever else you may have and share it with the community. Commercial advertisements, affiliate links, or links that appear to be monetization-grabs will still be removed.

https://redd.it/1owshxp
@r_systemadmin

How do you handle visibility gaps across cloud estates?

so many assets, services, identities, and configurations spread out across different cloud environments, and still there’s always something flying under the radar. You don’t know what you don’t know, and sometimes it’s not until something goes wrong

Some tools help, but there’s always a gap. How do you all manage



https://redd.it/1owsbs7
@r_systemadmin

Whats the tool where you send it an email and it checks your SPF / DKIM / DMARC ?

I remeber coming across a really cool app where you send it an email to a randomly generated address and it then analyzes your SPF / DKIM / DMARC.

It was really nicely put together with animations a bit like a terminal output and also had nice clear instructions for copy/paste etc.

https://redd.it/1owr5qz
@r_systemadmin

Every month's patching is always fun? or just me? Brand new servers unable to install November update (for example)

Morning everyone.

Does anyone else feel like patch Tuesday is turning into more and more work? I do staged updates across my fleet, like so many others. Even 6 months ago Id get through it and move on with life a week later.

Last 2-3 months have been a nightmare of time suck invested in getting everything going. Updates that fail, machines that boot into bitlocker recovery etc.

This month, while workstations seem to be going ok, Windows Server 2022 is giving me the royal finger.

How is it possible that a brand new (one month old) VM of Windows Server 2022 cant take the update?

Server errors out saying there were problems. And gives me 0x800f081f error, which leads me to this article here that tells me dism and sfc should fix it up. I do all that, but to no avail will the update go in. Frankly...its a brand new machine, youd think it wouldnt have a lot of debt to deal with, but here I am.

Ive ripped out SentinalOne, no change. This thing is pretty much vanilla machine at this point.

Anyone able to shed some light on it?

https://redd.it/1owwsd5
@r_systemadmin

Crown Castle 8:54 est outage

Anyone else see a 5 minute outage starting around 8:54am est today, SW CT area? Maybe still down or routing issue..
EDIT: came fully back up around 9:18am. seemed hard down for the first 5min, then routing issues for about 15 minutes.

https://redd.it/1owxgah
@r_systemadmin

Question about app provisioning and offboarding

Our company is expanding from one office in NYC to add remote hires in Mexico, Canada and the Philippines over the next 12 months.





HR is pushing for Rippling because it supposedly handles both onboarding and device/app provisioning in one flow. They’re saying I can kill three tools (Jamf, Okta and some manual Google Workspace noscripts). Has anyone used them? Does it really deprovision Google and Slack accounts when someone quits in another country or is that still a manual thing?

https://redd.it/1owyzxr
@r_systemadmin

follow up re: Microsoft has gotten too big to fail

Update to my ticket came in, the one I posted about in Microsoft has gotten too big to fail, and their support shows it. : r/sysadmin


After weeks of no contact, their support got back to me via email with big news: Can they call me to share this news?

Annoyed they had to call me and couldnt just email me, I said fine.

Here is the big news they shared with me: After many days troubleshooting this issue, spending countless hours on the ticket, their escalation engineers determined that.... I need to open a new ticket for this particular issue. My ticket is not in "scope" for this issue.


I fought back and refused to let them close my old ticket out. As someone who worked in helpdesk for many years, I know how SLAs work. You don't get to close my ticket out until its actually resolved.

https://redd.it/1ox14fe
@r_systemadmin

I swear search engines are getting dumber to force us to use AI

I used to open Bing and search "what is my IP" and in the top search box, I'd get my public IP address. This was helpful at work for servers or whatever else I needed it for.

It also worked if I typed speed test, it would run out like it's own mini Ookla thing, not push browser pages..

I get it, it's not actually "Dumber" they're probably just monitoring their search pages by giving those results over actual functionality. Just annoying that we're pushed (by these tech companies, not internally) to use Copilot or Gemini for searches just to make it look like it's doing something meaningful.

Anytime else notice this?

Can I also go out on a limb and say I feel like Gboard for Android is far less accurate at swipe texting than it used to be, as if trying to get me to use voice or Gemini options instead?

https://redd.it/1ox275t
@r_systemadmin

any experiences with bluetally for asset management?

Hey all - we’re reviewing asset management software for our org (roughly maybe 900+ users across multiple offices and some remote contractors). The team’s been running everything through excel and jira exports, and we’re experiencing a bit of slowdown with some processes because of the sheer number of users and workflows.

Team head asked us to demo a few platforms, and BlueTally came up in our shortlist because of the integrations. On paper, it looks clean with intune, jamf, slack/teams, SCIM, Dell/Lenovo warranty sync, etc.

But I know better than to believe the ads. paper and production are never the same thing. I’m now trying to figure out if anyone here’s actually using it at scale, to the tune of like 1k+ assets. Basically, how is it working for your team and would you recommend it?

Thanks

https://redd.it/1owzfw1
@r_systemadmin

Question to satisfy my curiosity: Why did you choose to use Oracle SQL this day and age, and was there a major reason why?

I can only think it would be due to legacy applications that use some type of special feature.

https://redd.it/1ox2d54
@r_systemadmin

Adobe Acrobat Alternatives

Hey everyone, our org is getting hit hard by Adobe Acrobat Pro/Standard renewal costs, so we need to switch ASAP. We just need something cheaper (or open-source) that can handle real editing, splitting/merging, form filling, and markup without being a pain to use.

https://redd.it/1ox2xfj
@r_systemadmin

Who does ITAD well?

In a new role. We have ongoing hardware turnover and need to decommission. have good recommendations for ITAD in the midwest? What security measures, certs, or otherwise should I be looking for? Thanks in advance

https://redd.it/1ox0skb
@r_systemadmin