Defender for server licensing. How are you doing it?
For those using Defender for servers, how are you licensing it? We are currently an E-5 shop but our licensing rep is telling us we need to purchase Business premium licenses for each server then the defender license as an add on for each server. All servers are on-prem. Can anyone validate if this is how they are licensing their servers with Defender?
https://redd.it/1pzliu7
@r_systemadmin
For those using Defender for servers, how are you licensing it? We are currently an E-5 shop but our licensing rep is telling us we need to purchase Business premium licenses for each server then the defender license as an add on for each server. All servers are on-prem. Can anyone validate if this is how they are licensing their servers with Defender?
https://redd.it/1pzliu7
@r_systemadmin
Reddit
From the sysadmin community on Reddit
Explore this post and more from the sysadmin community
PearsonVue Ruined my Exam, I Reported It
I just had my CompTIA exam canceled by Pearson VUE because of technical/proctoring issues that weren’t my fault. They failed to validate my appeal.
I searched my state AG’s consumer protection office. I Included what happened, dates, and any proof I had.
Each complaint is logged. If enough people report similar issues, regulators notice patterns, investigate, and may force companies to fix policies.
I know companies can be pressured to allow retakes, issue refunds, or clarify appeal processes.
Also I reported it to consumer protection bureau. Comptia and Pearson hate to see the attorney general and CPB complaints.
https://redd.it/1pzt1hv
@r_systemadmin
I just had my CompTIA exam canceled by Pearson VUE because of technical/proctoring issues that weren’t my fault. They failed to validate my appeal.
I searched my state AG’s consumer protection office. I Included what happened, dates, and any proof I had.
Each complaint is logged. If enough people report similar issues, regulators notice patterns, investigate, and may force companies to fix policies.
I know companies can be pressured to allow retakes, issue refunds, or clarify appeal processes.
Also I reported it to consumer protection bureau. Comptia and Pearson hate to see the attorney general and CPB complaints.
https://redd.it/1pzt1hv
@r_systemadmin
Reddit
From the sysadmin community on Reddit
Explore this post and more from the sysadmin community
The mess of overlapping posture controls (ZTNA vs. EDR vs. MDM)
In my org, we have 3+ layers (EDR, MDM, ZTNA) performing independent posture checks, even though we basically rely on Intune as the "Source of Truth."
It feels like this creates a visibility gap where I don't actually know the real state of the assets in my org.
Is this a real pain point causing friction and support tickets or is it just a minor nuisance?
https://redd.it/1pzvc97
@r_systemadmin
In my org, we have 3+ layers (EDR, MDM, ZTNA) performing independent posture checks, even though we basically rely on Intune as the "Source of Truth."
It feels like this creates a visibility gap where I don't actually know the real state of the assets in my org.
Is this a real pain point causing friction and support tickets or is it just a minor nuisance?
https://redd.it/1pzvc97
@r_systemadmin
Reddit
From the sysadmin community on Reddit
Explore this post and more from the sysadmin community
How do I talk some sense into my boss?
I'm the SCCM guy for my company (among other things), which means I'm the one in charge of patching and software management for the servers and desktops. I've been working with SCCM for most of my career so I know all its features and quirks, but I'm not married to it or anything. It's just another tool as far as I'm concerned and I could take it or leave it. My boss, however, has an irrational hate-boner for SCCM and wants to replace it with something else next year. He keeps putting demos on my calendar for NinjaOne, ManageEngine, PDQ, etc. and it's driving me nuts.
First, he complains that SCCM is a black box, I'm the only one who knows anything about it, and the whole org would be fucked if I got hit by a bus (or rage-quit as I like to say). But that's a "him" issue. I've documented my processes. I've posted vendor support links to our team project board for every piece of software I maintain. The app repository is immaculately organized, and I've used every comment field available to explain what's what. There's no way I could possibly make this any easier if someone else had to take up the mantle. But he's obstinate in his refusal to even look at it. He'll swear that some vulnerability alerts in our MDR dashboard are because of missing patches, but won't even let me share my screen with him to walk through the patching reports. It's as if SCCM molested him as a child and the sight of it on my screen brings back too much trauma.
Secondly, he complains that I spend too much time packaging apps, and he's absolutely right about that part. Once a quarter, I have to block a week in my calendar to package and push software updates. I hate it doing it, but most of the software we use is esoteric engineering crap that needs constant maintenance and requires some noscript-fu on my part to get installed correctly. It doesn't matter how many thousands of canned packages other vendors have in their app catalogs; a different product is not going to solve that problem. Keeping Windows, Office, Zoom, Adobe, Chome, etc. patched are not where I'm spending my time.
Like I said before, I'm no SCCM fanboy. But we're already using the hell out of it, so switching to another product would just create a shit ton of extra work for me to have to re-tool and convert everything without solving a single problem my boss complains about with SCCM. He’s just a sucker for pretty dashboards, but "vibes" are a terrible reason to upend an entire workflow for no other tangible benefit.
https://redd.it/1pzvxy6
@r_systemadmin
I'm the SCCM guy for my company (among other things), which means I'm the one in charge of patching and software management for the servers and desktops. I've been working with SCCM for most of my career so I know all its features and quirks, but I'm not married to it or anything. It's just another tool as far as I'm concerned and I could take it or leave it. My boss, however, has an irrational hate-boner for SCCM and wants to replace it with something else next year. He keeps putting demos on my calendar for NinjaOne, ManageEngine, PDQ, etc. and it's driving me nuts.
First, he complains that SCCM is a black box, I'm the only one who knows anything about it, and the whole org would be fucked if I got hit by a bus (or rage-quit as I like to say). But that's a "him" issue. I've documented my processes. I've posted vendor support links to our team project board for every piece of software I maintain. The app repository is immaculately organized, and I've used every comment field available to explain what's what. There's no way I could possibly make this any easier if someone else had to take up the mantle. But he's obstinate in his refusal to even look at it. He'll swear that some vulnerability alerts in our MDR dashboard are because of missing patches, but won't even let me share my screen with him to walk through the patching reports. It's as if SCCM molested him as a child and the sight of it on my screen brings back too much trauma.
Secondly, he complains that I spend too much time packaging apps, and he's absolutely right about that part. Once a quarter, I have to block a week in my calendar to package and push software updates. I hate it doing it, but most of the software we use is esoteric engineering crap that needs constant maintenance and requires some noscript-fu on my part to get installed correctly. It doesn't matter how many thousands of canned packages other vendors have in their app catalogs; a different product is not going to solve that problem. Keeping Windows, Office, Zoom, Adobe, Chome, etc. patched are not where I'm spending my time.
Like I said before, I'm no SCCM fanboy. But we're already using the hell out of it, so switching to another product would just create a shit ton of extra work for me to have to re-tool and convert everything without solving a single problem my boss complains about with SCCM. He’s just a sucker for pretty dashboards, but "vibes" are a terrible reason to upend an entire workflow for no other tangible benefit.
https://redd.it/1pzvxy6
@r_systemadmin
Reddit
From the sysadmin community on Reddit
Explore this post and more from the sysadmin community
Document Translation Services
Hi All,
TL:DR looking for reccomendations on document language translation services that take in a document, and exports a translated one with the same formatting.
I have had an increased need for non-profits wanting/needing to translate their public-facing documents to more languages. One of the non-profits I work with recently trialed https://www[.\]deepl[.\]com/en/pro and it worked really well - the drop in a PDF, select the language, it spits out the PDF.
While it worked well, the cost is a bit steep for what they currently want to take on.
The biggest issue they face is that they would only need to use the software once or twice a year, but when they need it, they need to translate 30+ documents. This service, in the team plan, only allows 20 documents a month. The next plan up becomes overly expensive.
We are happy to pay for the service, but are looking for something that is maybe a similar price range (20-30 a month per user) with more translations, with similar accuracy.
While I am mostly referring to a single org, I have other orgs that would benefit from a solution like this.
Historically, they have painstakingly translated documents with Google Translate, but this causes formatting and accuracy issues - while something like DeepL is fairly accurate (anecdotally), and maintains format.
Does anyone have any recommendations? Thank you in advance.
I will soon be looking into some human-led services and Redokun.
https://redd.it/1pzv2sn
@r_systemadmin
Hi All,
TL:DR looking for reccomendations on document language translation services that take in a document, and exports a translated one with the same formatting.
I have had an increased need for non-profits wanting/needing to translate their public-facing documents to more languages. One of the non-profits I work with recently trialed https://www[.\]deepl[.\]com/en/pro and it worked really well - the drop in a PDF, select the language, it spits out the PDF.
While it worked well, the cost is a bit steep for what they currently want to take on.
The biggest issue they face is that they would only need to use the software once or twice a year, but when they need it, they need to translate 30+ documents. This service, in the team plan, only allows 20 documents a month. The next plan up becomes overly expensive.
We are happy to pay for the service, but are looking for something that is maybe a similar price range (20-30 a month per user) with more translations, with similar accuracy.
While I am mostly referring to a single org, I have other orgs that would benefit from a solution like this.
Historically, they have painstakingly translated documents with Google Translate, but this causes formatting and accuracy issues - while something like DeepL is fairly accurate (anecdotally), and maintains format.
Does anyone have any recommendations? Thank you in advance.
I will soon be looking into some human-led services and Redokun.
https://redd.it/1pzv2sn
@r_systemadmin
Reddit
From the sysadmin community on Reddit
Explore this post and more from the sysadmin community
Windows 11 ram hungry
Lots of old Win10 machines were happy on 8GB.
Upgraded around 1000+ to Win 11 over the past year and they need at least 16GB.
Throw Teams in there and after a few days uptime they have a 20+ GB page file and really need 24 or 32 GB physical memory. Insane.
Cheaper to pay ESU for Windows 10 support and fly along on 8GB.
IMHO Windows 11 is a memory hog and with the insane memory prices it's not good enough.
https://redd.it/1pzicmp
@r_systemadmin
Lots of old Win10 machines were happy on 8GB.
Upgraded around 1000+ to Win 11 over the past year and they need at least 16GB.
Throw Teams in there and after a few days uptime they have a 20+ GB page file and really need 24 or 32 GB physical memory. Insane.
Cheaper to pay ESU for Windows 10 support and fly along on 8GB.
IMHO Windows 11 is a memory hog and with the insane memory prices it's not good enough.
https://redd.it/1pzicmp
@r_systemadmin
Reddit
From the sysadmin community on Reddit
Explore this post and more from the sysadmin community
Anyone else feel like ERP projects fail before software even enters the picture?
I’ve been reading a lot of ERP-related threads here and in other subs, and I keep seeing the same pattern repeat over and over.
The demo looks great. Everyone is optimistic. Then implementation starts — timelines slip, customizations pile up, users resist, and suddenly the ERP is blamed for everything. A year later, people are stuck with something expensive that technically “works” but nobody really trusts or likes.
What strikes me is that many of these problems don’t sound like software limitations at all. They seem to come from unclear or undocumented business processes, decisions made during sales that aren’t revisited later, and a lack of shared understanding about how the business actually runs day to day.
I’m curious from people who’ve been involved in ERP projects — whether as buyers, operators, IT, finance, or consultants:
• Where do ERP projects really go wrong most often — before vendor selection, during implementation, or after go-live?
• What do you wish you had clarified, documented, or stress-tested earlier?
• Was there anything you only realized after it was too late to change easily?
I’m not selling anything here — genuinely trying to understand where the biggest blind spots are and why so many ERP stories follow the same trajectory.
https://redd.it/1q019go
@r_systemadmin
I’ve been reading a lot of ERP-related threads here and in other subs, and I keep seeing the same pattern repeat over and over.
The demo looks great. Everyone is optimistic. Then implementation starts — timelines slip, customizations pile up, users resist, and suddenly the ERP is blamed for everything. A year later, people are stuck with something expensive that technically “works” but nobody really trusts or likes.
What strikes me is that many of these problems don’t sound like software limitations at all. They seem to come from unclear or undocumented business processes, decisions made during sales that aren’t revisited later, and a lack of shared understanding about how the business actually runs day to day.
I’m curious from people who’ve been involved in ERP projects — whether as buyers, operators, IT, finance, or consultants:
• Where do ERP projects really go wrong most often — before vendor selection, during implementation, or after go-live?
• What do you wish you had clarified, documented, or stress-tested earlier?
• Was there anything you only realized after it was too late to change easily?
I’m not selling anything here — genuinely trying to understand where the biggest blind spots are and why so many ERP stories follow the same trajectory.
https://redd.it/1q019go
@r_systemadmin
Reddit
From the sysadmin community on Reddit
Explore this post and more from the sysadmin community
First time getting a virus on a server, need advice
So while doing regular maintenance for one of my servers I found a suspicious binary running in htop having 5 instances of `/root/GZ5pBwko/cCxf -o www.githubabout .top:80 --tls` running image of htop (separated the .top so no one accidentally clicks). They were running for about 22 hours when I caught it but I'm guessing they've been there longer and restart every 24 hours, just guessing ofc.
My course of action has been to block all ports except ssh and remove all ssh keys except my own which I have reissued. All apps on the server run in docker containers with the majority being simple app + database combos and 20% are more complex.
Would the recommendation be here to backup the server, dump all databases, wipe the server and reinstall from scratch ofc keeping all the dockerfiles while changin the password or would you do it differently. I'm quite concerned since I mostly do server maintenance and docker container maintenance and not much else especially no running random noscripts so I don't know how this could've happned so I'm trying to be as careful as possible now.
https://redd.it/1q032nc
@r_systemadmin
So while doing regular maintenance for one of my servers I found a suspicious binary running in htop having 5 instances of `/root/GZ5pBwko/cCxf -o www.githubabout .top:80 --tls` running image of htop (separated the .top so no one accidentally clicks). They were running for about 22 hours when I caught it but I'm guessing they've been there longer and restart every 24 hours, just guessing ofc.
My course of action has been to block all ports except ssh and remove all ssh keys except my own which I have reissued. All apps on the server run in docker containers with the majority being simple app + database combos and 20% are more complex.
Would the recommendation be here to backup the server, dump all databases, wipe the server and reinstall from scratch ofc keeping all the dockerfiles while changin the password or would you do it differently. I'm quite concerned since I mostly do server maintenance and docker container maintenance and not much else especially no running random noscripts so I don't know how this could've happned so I'm trying to be as careful as possible now.
https://redd.it/1q032nc
@r_systemadmin
Dell claiming SED SSDs are unavailable
I'm trying to order a fairly run of the mill server from Dell. PowerEdge R7615 to be exact.
As part of our security policy, cross-OS support, and standardization, we prefer SED (self encrypting disks).
Our Dell team is telling us that "We are showing low inventory/unavailable on 1.6, 3.2, 3.84, and 7.68TB SED"
The only option they've offered up is 800GB drives which won't work for our use case.
We're actually wondering if this is just a ploy to draw the order out past Jan 1st as we've been told that's when the new RAM pricing applies.
Has anyone else has run into this...?
https://redd.it/1q01yij
@r_systemadmin
I'm trying to order a fairly run of the mill server from Dell. PowerEdge R7615 to be exact.
As part of our security policy, cross-OS support, and standardization, we prefer SED (self encrypting disks).
Our Dell team is telling us that "We are showing low inventory/unavailable on 1.6, 3.2, 3.84, and 7.68TB SED"
The only option they've offered up is 800GB drives which won't work for our use case.
We're actually wondering if this is just a ploy to draw the order out past Jan 1st as we've been told that's when the new RAM pricing applies.
Has anyone else has run into this...?
https://redd.it/1q01yij
@r_systemadmin
Reddit
From the sysadmin community on Reddit
Explore this post and more from the sysadmin community
Security scans and backported fixes ignorance
We maintain servers (Ubuntu/RHEL) for a customer who hired an external firm for a security scan.
Customer calls us in a panic. The audit report says their servers are a "Company Wide Risk" with critical CVEs. The reason? The auditors scraped the Apache version banner, saw it wasn't the latest bleeding-edge number from the Apache website, and flagged it.
We explained backporting. We showed them the updates proving the security fixes were applied by the OS vendor. Their reply? "No. You need to upgrade Apache to version x.y.z." It took several meetings to finally convince them we weren't negligent. (The security vendor also wanted the sell their services "to help")
One year later, same customer, same audit firm, different manager. This time we hid the Apache version banner. The auditors sent a questionnaire asking for the specific version number. We provided it, assuming they learned their lesson last time.
Exact the same "Critical Failure" report.
It’s not just this one firm. I’ve noticed this with almost every audit we go through. There is zero nuance. The reports never say "This version appears old, please verify patch status." It is always presented as an absolute, undeniable fact that we are vulnerable, which sends the "less technical" managers into a panic before we can even speak.
Does anyone else deal with this constantly?
How do you handle (bad) auditors who rely entirely on version numbers and refuse to acknowledge how Enterprise Linux distros work?
https://redd.it/1q06vhw
@r_systemadmin
We maintain servers (Ubuntu/RHEL) for a customer who hired an external firm for a security scan.
Customer calls us in a panic. The audit report says their servers are a "Company Wide Risk" with critical CVEs. The reason? The auditors scraped the Apache version banner, saw it wasn't the latest bleeding-edge number from the Apache website, and flagged it.
We explained backporting. We showed them the updates proving the security fixes were applied by the OS vendor. Their reply? "No. You need to upgrade Apache to version x.y.z." It took several meetings to finally convince them we weren't negligent. (The security vendor also wanted the sell their services "to help")
One year later, same customer, same audit firm, different manager. This time we hid the Apache version banner. The auditors sent a questionnaire asking for the specific version number. We provided it, assuming they learned their lesson last time.
Exact the same "Critical Failure" report.
It’s not just this one firm. I’ve noticed this with almost every audit we go through. There is zero nuance. The reports never say "This version appears old, please verify patch status." It is always presented as an absolute, undeniable fact that we are vulnerable, which sends the "less technical" managers into a panic before we can even speak.
Does anyone else deal with this constantly?
How do you handle (bad) auditors who rely entirely on version numbers and refuse to acknowledge how Enterprise Linux distros work?
https://redd.it/1q06vhw
@r_systemadmin
Reddit
From the sysadmin community on Reddit
Explore this post and more from the sysadmin community
ARM and Windows in 2025
What is your current experience with Windows and ARM? How is the compatibility of programs?
https://redd.it/1q0absu
@r_systemadmin
What is your current experience with Windows and ARM? How is the compatibility of programs?
https://redd.it/1q0absu
@r_systemadmin
Reddit
From the sysadmin community on Reddit
Explore this post and more from the sysadmin community
Solo Admin to VP of IT? Proposing an new role that doesn't exist at my job.
Hi All,
I’m currently the sole IT person (Title: Network Administrator) at a place with 65 employees. All things need to go through a board of directors, and our CEO/President just stepped down unexpectedly after less than a year.
I’ve been here for a few years, the prior IT person was here for 25 years. There is another employee with an unrelated job noscript, that does 25% of the work that an IT team should be doing (specific job related software). We use a local MSP for most things I cannot handle (Email, O365, Firewall patching, etc.).
Where I'm at: My noscript is becoming a mismatch for what I actually do. I’ve been working with HR to hire a second IT employee to offload the day-to-day tickets, but I want to take it a step further. I just got approval for the budget of a second IT person, but need to align it with a higher role.
I want to propose a VP of Information Technology role for myself to formalize the strategic, budgetary, and compliance work I’m already doing.
EDIT: There are 6 "Vice Presidents" at this job. That's just how the managers of each department are listed.
The Issue: The role doesn't exist. I report to the CEO/Board on things like compliance and risk management, but I'm still the guy people call when a mouse stops working. My boss, the acting CEO (Executive V.P.) has worked here for longer than I've been alive.
What I need advice on: Has anyone successfully "job-crafted" their way into an executive or high-level management role at a small-to-medium org?
Specifically:
- How do I frame the move from "Tech Guy" to "Business Executive" to a Board that might only see me as the IT guy?
- Is it better to ask for the new hire first, or bundle it into a departmental "restructuring" proposal?
I used some statistics to show that 1/65 IT/employee ratio is insane, and that 1:18 is normal for a small organization. Having a helpdesk break/fix, and a second IT admin would be ideal, but I can't really justify that with the MSP contract.
I’m finishing up my MBA in IT Management soon, so I'll have the credentials moving into 2026, but I want to make sure the business case is airtight. Any advice/guidance is appreciated :)
https://redd.it/1q0c68p
@r_systemadmin
Hi All,
I’m currently the sole IT person (Title: Network Administrator) at a place with 65 employees. All things need to go through a board of directors, and our CEO/President just stepped down unexpectedly after less than a year.
I’ve been here for a few years, the prior IT person was here for 25 years. There is another employee with an unrelated job noscript, that does 25% of the work that an IT team should be doing (specific job related software). We use a local MSP for most things I cannot handle (Email, O365, Firewall patching, etc.).
Where I'm at: My noscript is becoming a mismatch for what I actually do. I’ve been working with HR to hire a second IT employee to offload the day-to-day tickets, but I want to take it a step further. I just got approval for the budget of a second IT person, but need to align it with a higher role.
I want to propose a VP of Information Technology role for myself to formalize the strategic, budgetary, and compliance work I’m already doing.
EDIT: There are 6 "Vice Presidents" at this job. That's just how the managers of each department are listed.
The Issue: The role doesn't exist. I report to the CEO/Board on things like compliance and risk management, but I'm still the guy people call when a mouse stops working. My boss, the acting CEO (Executive V.P.) has worked here for longer than I've been alive.
What I need advice on: Has anyone successfully "job-crafted" their way into an executive or high-level management role at a small-to-medium org?
Specifically:
- How do I frame the move from "Tech Guy" to "Business Executive" to a Board that might only see me as the IT guy?
- Is it better to ask for the new hire first, or bundle it into a departmental "restructuring" proposal?
I used some statistics to show that 1/65 IT/employee ratio is insane, and that 1:18 is normal for a small organization. Having a helpdesk break/fix, and a second IT admin would be ideal, but I can't really justify that with the MSP contract.
I’m finishing up my MBA in IT Management soon, so I'll have the credentials moving into 2026, but I want to make sure the business case is airtight. Any advice/guidance is appreciated :)
https://redd.it/1q0c68p
@r_systemadmin
Reddit
From the sysadmin community on Reddit
Explore this post and more from the sysadmin community
Recommended solution that does both Mac and Windows MDM?
Our set up is very fragmented which is annoying, we use about 7 different tools, none of which have remote wiping or MDM capabilities. Are there any solid solutions that look after both systems?
https://redd.it/1q0bwom
@r_systemadmin
Our set up is very fragmented which is annoying, we use about 7 different tools, none of which have remote wiping or MDM capabilities. Are there any solid solutions that look after both systems?
https://redd.it/1q0bwom
@r_systemadmin
Reddit
From the sysadmin community on Reddit
Explore this post and more from the sysadmin community