With AI we are coming full circle to Bonzai Buddy.

Remember how hard it was to get rid of that and ads?

https://redd.it/1pm2wkx
@r_systemadmin

Underpaid for Okta/Jamf Engineering stack? $103k

I am looking for a sanity check on my compensation ahead of an upcoming performance review.

Role: Systems Engineer
Location: Melbourne, Australia
Comp: $103k base (band: $100k–$120k)
Tenure: ~2 years at this company

Current stack & responsibilities:
• Okta (advanced / architecture-level work)
• Jamf Pro (sole admin, ~1,000 devices)
• Google Workspace administration
• Secondary support for Cisco Meraki networking

Key work over the past 2 years:
• Implemented Okta Device Trust and centralized 50+ applications using SSO/SCIM
• Single point of ownership for the entire Jamf environment (MDM engineering, fleet lifecycle, security posture)
• Supported Meraki network build-outs for new office locations
• Contributed to the Zoom → Google Workspace migration
• Currently implementing Okta Workflows integrated with Jamf

I’ve only received around a $3k total raise over two years (3 reviews), despite the scope and responsibility of my role increasing.

Given the systems I own and the fact that my compensation sits near the bottom of the band, I’m planning to ask for the top of the band ($120k).

My questions:
• Is this a reasonable ask given the scope and risk of the role?
• Should I expect pushback?
• Would you consider this underpaid, fairly paid, or market-aligned for Melbourne?

Appreciate any perspective or advice

https://redd.it/1pm2auz
@r_systemadmin

Consumer grade vs Enterprise grade ssd

Our research group uses a workstation machine to run LLM models. We currently have 1 enterprise level SSD (micron 5210) which is nearing its service life. It had \~4.3 years on (5 year warranty) and smartctl says it has 31% life expectancy. I just inherited the position and realized the machine is not used heavily. It was piled with years of unused data and no one realised. It had a total write of \~10 TB in the 4+ years. The models we use right now total around 500GB space. I was wondering if we could get away with a consumer grade ssd (with maybe a raid 1) instead of dropping 600$ for 3.8 TB.

Edit:
We have a UPS. Should be good for at least 10 mins with max load. Not sure if anyone bothered to set up a auto warning to users.

what is the risk if (when!) it fails?
Downtime usually. Potentially people may lose (easy to regenerate(1-2 days)) research data.

criticality of the system?
Most work halts.

required uptime?
24/7. Although occasional outages are fine.

is it 'your money' or the organisations?
Our money in the org. We can do other stuff with the money we save.

https://redd.it/1pm158k
@r_systemadmin

What’s the best way to learn the theory of HPC computing whilst administering one?


I’ve been in the game now about a year as a very junior systems admin and whilst I’ve managed to accumulate a lot of systems, platforms and dev experience on the HPC at work, I often find myself having big gaps in my theoretical knowledge of thinks like how MPI works or how the nodes themselves function and everything else in between. I feel like I have good working knowledge but it’s not deep enough

I guess my question is does anyone have any recommendations on resources I can use to brus up my understanding? Thanks

https://redd.it/1pm9tke
@r_systemadmin

How many of you moved away from VMware ?

I met a lot of engineer who either said they need to migrate ASAP and some who already did. But i know to change vendors is not that ez. I worked with VMware for the last 15 years and it was my go to virtualization but now its not affordable anymore. So i am shifting to Hyper-V to those infrastructure that already have Windows and Microsoft licensing and proxmox its a nice cheap/free alternative but not sure if its still "ripe" for productive stuff ( have not worked with it a lot)
Can you guys give me your experience with switching from VMware ?

https://redd.it/1pmcgu6
@r_systemadmin

File Server + Workstation Build for Small Architecture Firm — Need Feedback

Hey everyone,

I run a 10-person architecture firm. We work mainly with Rhino 3D files and need reliable shared file access across the office. Windows 11

Current situation

One machine handles everything — workstation and file server. It works, but we’ve had hardware issues (failing HDD, thermal problems with Mini-ITX case). Tried a QNAP NAS temporarily but it couldn’t handle multiple users accessing large design files.

The plan

Split into two dedicated machines by repurposing parts from the existing machine and building a new file server.

\-----

EXISTING MACHINE (parts source)

CPU: Ryzen 7 2700X

Motherboard: Gigabyte B450 I AORUS PRO WIFI (Mini-ITX)

RAM: 32 GB DDR4

GPU: GTX 1060 6 GB

OS Drive: 480 GB NVMe SSD

Storage: 2 TB Patriot SATA SSD

\-----

TEAM WORKSTATION (mostly reused parts)

CPU: Ryzen 7 2700X (reused)

Motherboard: Gigabyte B450 I AORUS PRO WIFI Mini-ITX (reused)

RAM: 32 GB DDR4 (reused)

GPU: GTX 1060 6 GB (reused)

OS Drive: 480 GB NVMe SSD (reused)

Secondary Storage: 1 TB HDD (new)

PSU: Corsair RM650x (new)

CPU Cooler: DeepCool AK400 (new)

Case: NZXT H3 (new)

——

FILE SERVER (new build)

This computer will only be used for sharing the files with the team**.** Everything will be backed up via NAS.

CPU: Intel i3-13100 (new)

Motherboard: Gigabyte B760M DS3H DDR4 (new)

RAM: 16 GB DDR4 (new)

OS Drive: 500 GB NVMe SSD (new)

Work Files: 2 TB Patriot SATA SSD (reused)

PSU: Corsair RM650x (new)

CPU Cooler: DeepCool AK400 (new)

Case: NZXT H3 (new)

Network: Gigabit Ethernet (onboard)

\-----

My questions

Is an i3-13100 enough for a file server handling 10 users?

The motherboard has only one M.2 slot. OS drive uses M.2, work files SSD connects via SATA. Any issues with this?

Worth adding 2.5 Gbps networking now, or wait and see if Gigabit is a bottleneck?

Anything I’m missing for reliability?

Thanks for any input!

https://redd.it/1pmdcdu
@r_systemadmin

After first of the year, Assistant Manager spot is coming up, I have a good shot at it.

Hi friends, tale as old as time. IT Manager retired and assistant manager ascended to the role (there were interviews and he just was absolutely the right choice for the job) and now his spot is coming up soon.

It’s a small crew, 12 of us for about 200 users or so. I’m in a sysadmin role there mostly Linux traditional hosting with a mix of literally everything else lol.

I’m confident I could do right by the team and I would do well in the role and the new manager has also given me his vote of confidence.

It just comes down to am I ready for a career change? Because of the size of the team and the lack of overlap in some of my duties I’ll be doing some sysadmin work probably for a very long time if not forever, but it’ll be less and less as time goes on. It’s a government civilian position so I plan to be a lifer, the TSP FERS combo is still really solid.

I just have to decide if I’m ready for the change and I have to decide soon. There’s not much of an age gap between the manager and I and he’s also planning to be a lifer, so I’d be in this spot for a while unless I moved.

Any govvies in here have advice? Also keep in mind this is a rare occasion of a non-toxic environment with a good mission overall and I work with some good people. Any other sysadmins who made the jump and regret it or on the other side feel it was a good choice?

https://redd.it/1pmhruf
@r_systemadmin

Overlooked Aspects of Sysadmin Work

It's funny, you know, how often we sysadmins are reduced to "IT guy" status in the eyes of coworkers and friends. It's not just about resetting forgotten passwords or installing updates. There is so much depth in our roles that too often—for the sake of brevity—gets overlooked. I was recently knee-deep in crafting an intricate data backup strategy, protecting vital company information and ensuring business continuity. Yet, when asked about my day, I simply replied, "Oh, you know, usual computer stuff."

You would think it gets tiresome; that constant trivialization of what we do, but I've actually come to find it somewhat amusing. It's like our own little secret – they never truly grasp the complexity nor scope of our responsibility. We're the guardians in the shadows, silently ensuring the company’s technological lifeline doesn't falter. Have others noticed this pattern and how do you usually respond?

Title: The Hidden Puzzles of Sysadmin Life

Body: So there I was at 2 am, frantically troubleshooting a network issue. The invisible wires that connected our entire company were down, and the responsibility to fix them rested on my shoulders. A typical Saturday night for most, right? It should have been stressful: a high stakes hide-and-seek with problematic IP addresses and elusive whispers of connectivity. But somewhere within that quiet, late-night chaos, I found a strange sense of harmony.

There's something rewarding about conquering those hidden puzzles embedded within sysadmin work. And even though it's all binary codes and command lines on the surface, underneath it's like weaving a complex web of connections and solutions to support the company. But what do you guys think? Is there a particular aspect of sysadmin work that you find strangely enjoyable or rewarding?

Title: The Solitude and Solidarity of Sysadmin Days

Body: Working as a sysadmin provides an interesting contrast. On one hand, we spend a good chunk of our time in solitude—squinting at lines of code, wrestling with network configurations, managing server looms in hushed isolation. But on the other hand, we play such an integral role in ensuring everyone else's workday goes smoothly. In a way, we are solo performers playing in an orchestra of organizational systems.

The rhythm of this solitude and solidarity can be strange, often feeling like we’re silently sailing in a crowded sea. But it all adds to the uniqueness of the job. Despite being mostly behind-the-scenes, we hold this essential place in any organization. What's your take on it—does the solitude/solidity contrast resonate with your experience as a sysadmin?

https://redd.it/1pmiwsk
@r_systemadmin

Is there any reason to change user source of authority to Entra when still using domain-joined devices?

https://learn.microsoft.com/en-us/entra/identity/hybrid/user-source-of-authority-overview

I watched a couple of videos describing how to move the source of authority for hybrid users from on premises AD to Entra.

They mentioned needing the applications needing to be configured for SAML or Open ID Connect authentication, no on premises Exchange Server dependencies, users account configured with Entra ID passwordless authentication with Cloud Kerberos Trust. However, they never mention sign-in to domain joined hybrid devices. There were even some questions about this in comments in some of the related blog posts, but no response given.

Are they just assuming all the computers accessed by these users are Entra joined?

Even with Cloud Kerberos Trust, how are those users going to sign in to hybrid joined workstations? How is RDP going to work? How is UAC elevation going to work?

How will they use run as a different user?

Sign in to Windows Server?



https://redd.it/1pmho6q
@r_systemadmin

Purview is being INCREDIBLY slow

I started a 50gb export of Mailbox + Sites yesterday at 9AM, the orinal ETA for it was 8 hours, it has now been 30 hours and the ETA is still 7 hours, this is not going normally, i've done bigger exports that took less time i was supposed to do this on the weekend so I could get the exported PSTs and files on another account before monday, now that just wont be possible.

Is Microsoft experiencing instabilities and such? Cause this does not make sense

https://redd.it/1pmkjld
@r_systemadmin

Curiousity: Female vs Male Ratio

What is the standard female to male ratio you see on your teams and in your IT/Dev departments? How many female IT managers are out there?

Edit: I'm a chick who just got promoted into a leadership role. I've been an engineer for 7 years.

https://redd.it/1pmmom1
@r_systemadmin

Scan to email

What are people who have a 365 enviroment doing for scan to email functionality for a printer which doesnt support M365 authentication natively.

I am loathe to turn off the security settings even on 1 account because of the security risk.

I have considered sendgrid - but is there a better way?
Scanner is a Epson WF-7845

https://redd.it/1pmojfu
@r_systemadmin

How do you manage your asset changes?

How do you keep track of Hostname, IP address, site, vlan.... Etc changes? A simple sheet? Or a more advanced way?

https://redd.it/1pmoo6d
@r_systemadmin

Do ski hills hire sysadmins

I’m approaching the end of tenure at my current employer. I’ve worked as their primary sysadmin, helped deploy their entire network infrastructure, was the primary on moving their systems off VMware and to Proxmox. now I’m looking to see what’s next. I’ve always wanted to be closer to the ski hills. Do ski hills have sysadmins/network admins?

https://redd.it/1pmsv1a
@r_systemadmin

FINALLY got the AZ-104!!

Okay, so I gotta admit, I'm a bit of an idiot when it comes to learning things from books and I know that some of you got the AZ-104 certification after studying for something like a week, with zero experience, but I am absolutely not like that. I've never been able to learn from books. Like, never. Give me a teacher in a classroom and I'm great. Ditto with learning on my own, but trying to learn it from a book? Forget it. But... I've been hands on with Azure for a few years now and learning AVD mostly on my own for almost a year. I tried the test back in February and bombed with a 55%.

Finally figured out that reviewing the MS Press book with ChatGPT helped me learn the stuff I hadn't touched / wasn't allowed to touch in our work environment, and studied like an insane madman over the past two weeks. I think it was something like 80-90+ hours, averaging 5-10 minutes per page asking questions over and over to the point where I didn't just understand the concepts but I felt like I really knew it. Every time I could, I'd log on to the portal and poke around, look at things in real time, with a lot of questions for ChatGPT about why this interface was different or that option wasn't available, but I got to a point where I was comfortable.

I also had Tutorials Dojo and went through their various exams (timed mode, review mode, and section-based) 22 separate times. I was averaging in the high 90s towards the end. Finally felt ready.

Then I start the actual exam and I'm like... wait... WTF is this? I've never seen this? And I haven't seen that either. I'm also not sure what this other thing is supposed to mean. And so on. My confidence was largely shot about 20 minutes in and while I was hopeful that I *might* pass, I was actually kinda shocked when I found that I'd passed with a 726.

I don't know how some of you guys do it and yeah, as I said, I'm not the best at reading comprehension and learning out of a book, but damn am I happy right now. I'm giggling like a little boy who got locked in a candy store overnight.

https://redd.it/1pmtb2i
@r_systemadmin

Trust relationship

I have new computers, all 2022 servers, linked in a domain that has been upgraded a few times.

From time to time (not every month) we get a trust relationship fail from one of the workstations.

Once in a blue moon, that happens on one of the servers.

The Microsoft information has way too many variables.

We have two Hyper V virtual domain controllers on two hosts plus a simple instance of SQL on its own Hyper V VM

What is a good way to start to trouble shoot this small network?

https://redd.it/1pmt2ru
@r_systemadmin

Fire Department software vendors have been bought up by Private Equity. The fallout is pretty much as you would expect.

Gift article from the NY Times:

https://www.nytimes.com/2025/12/14/us/fire-department-software-private-equity.html?unlocked\_article\_code=1.8k8.ZJtO.RUUHl-kXIsmx&smid=nytcore-ios-share



https://redd.it/1pmwdc8
@r_systemadmin

How to Detect & Stop Shadow AI Tools in the Company

We approved certain AI tools for the team but it feels pointless when people use random tools anyway. Last week someone uploaded customer data to a sketchy Chrome extension and our DLP never saw it because it did not touch our network.

We block what we can at the web filtering layer but new tools keep popping up. By the time we identify and block tool X half the team already uses tool Y. Enforcement conversations are exhausting and it feels like we are constantly behind.

Is this the new normal?....is there a proven way to enforce AI security at scale without becoming compliance bottleneck

https://redd.it/1pn1y3v
@r_systemadmin

How do you protect against this?

Today I found myself reading through a few articles about different spam and phishing attacks out there.

After the one below, I realized "Hey, how come they don't give suggestions on how to protect yourself against this?"

https://www.bleepingcomputer.com/news/security/new-consentfix-attack-hijacks-microsoft-accounts-via-azure-cli/

How do you protect your tenant against this sort of thing? Is there a conditional access policy that can be created to stop this sort of attack from happening or being successful?

And is there a wiki or something full of known threats and best methods to stop them?


https://redd.it/1pmyt24
@r_systemadmin

Is it just me, or are we spending more time reverse-engineering how our own systems work than securing them?

The deeper I dig into our environment, the more it feels like half the job now is figuring out what our systems are really doing - not what the docs say they do, or what teams think they do.

Data moving between services nobody remembers, SaaS connectors doing silent jobs, internal automations with no clear owner…

Lately it feels like the real challenge isn’t new threats, it’s understanding the system-of-systems we’ve accidentally built.

Anyone else dealing with this?

https://redd.it/1pn3wx1
@r_systemadmin

best helpdesk software for a tiny it team that is barely keeping it together

so i just got promoted to lead support at our tiny company and suddenly i am the person everyone comes to when slack or email explodes. we dont have anything set up for tickets or tracking issues right now. its all just replies in slack threads and sometimes i forget things and then someone reminds me a week later. its chaos.

i know helpdesk software is supposed to help with that but there are sooo many options and i literally have no idea where to start. we are like 10 people total, and support tickets are not crazy huge volume yet but it feels like it might hit us soon. i dont want something that feels like too much overhead or that i need a phd to understand.

for folks using helpdesk tools what do you actually like about yours? is there stuff you never use or features that seemed cool but ended up annoying? also how steep was the learning curve for your team? did your customers notice a change once you switched?

i also worry about setup time since i have to do this between answering real support questions. how long did it take you to get everything up and running? any tips to make that easier? thanks in advance

https://redd.it/1pn3omb
@r_systemadmin