Skip to content

Month: March 2021

Blizzard ’21

Posted in Blog, and Computers

It’s slightly snowy outside, and they’re saying it’ll be like this through Wednesday.

Which suits me just fine; I have plenty of food and no real desire to go anywhere, so I’ll just sit here in my office and watch the snow blow past the windows.

I’m still working on the great Goolag migration, and have made a few breakthroughs.

The big one is that after pouring over obfuscated logs for several hours, I’ve discovered that Exchange 365 despises any local Active Directory that has ever come into contact with a local Exchange server. So I’ve had to reverse engineer what old Exchange servers do to old Active directory installs and formulate a way to remove those entries from every user.

Eventually there was a brief bit of PowerShell that cleared it up… Simply put every user login into a text file, one line per user, and then:

$users=Get-content c:\users.txt

This loads the users into the session variable $users so we iterate through it with:

Foreach($user in $users){get-aduser $user| set-aduser -clear msExchMailboxGuid,msexchhomeservername,legacyexchangedn,mail,mailnickname,msexchmailboxsecuritydescriptor,msexchpoliciesincluded,msexchrecipientdisplaytype,msexchrecipienttypedetails,msexchumdtmfmap,msexchuseraccountcontrol,msexchversion}

And this removes the problematic Exchange objects from each user…

Once that was done all I had to do was remove everyone from O365, resync with the local AD, and presto! Everyone can has mailbox now.

Right now I’m attempting another G-Suite <-> O365 sync again, now that I’m about 80% certain the O365 side is set up right. Now if Google cooperates and doesn’t assume the app I set up on their end, with domain permissions and all sorts of assurances that I’m in fact the guy in charge of the data, is a hacking attempt — I’ll get both systems sync’d up.

Hope shines eternal I suppose.

Been a while…

Posted in Blog, Computers, and Work

I’m currently deeply embroiled in transitioning the company to “The Cloud”, so free time has been at a premium these last two weeks.

The difficulty has mostly come from two things: Google and Microsoft.

On the Goolag front, the company has been using G-Suite, now Google Workspace, for many years — so there’s a lot of user-land muscle-memory there that is change-resistant. Adding to the complexity is the big “G” itself being a right pain in the ass to transition out of…

See, I’m migrating the company to Office 365 and that means migrating email, contacts, files, calendars, etc, etc, out of Google. And while a user can “takeout” all of their data from Google, trusting them to know how to import it all into O365 is a bridge too far.

There’s a procedure where you create a Google Cloud ‘app’ and O365 chron process that, with domain admin rights, can set up the forwards and move all of the accumulated user-land detritus from one place to another automagically… But Google keeps breaking this functionality in the name of “security”.

It’s not a security risk if I’m setting it up, and I literally own the domain and the data I’m trying to move Google.

It’s really about the money… Goolag is hoping that if they make it onerous enough, people will simply give up and keep paying them.

Well, don’t give up so easy…

The other player in this sordid tale is Microsoft, who is still a beast of a billion heads, all retarded.

My infrastructure at work runs on a few operating systems; Linux, MacOS, and Windows — and the Windows portion is mostly 2008r2 systems running Active Directory, Terminal Services, Sharepoint, and a Windows-based file server.

Yeah, it’s 2008r2 — because I already paid the tens of thousands in licensing and it works just fine for what I need it to do… That and I briefly toyed with moving to 2012 server when it came out, but the Windows 8 UI tacked onto a server OS sucked so bad I literally burned the installer DVDs.

Anyway, this is where the problem comes in; 2008r2 fell off the support list so Microsoft has completely disowned it, but all of my accumulated user-land data is housed in a 2008r2 AD server…

O365’s “Azure”, the cloudy version of Active Directory will simply import all of that accumulated user-land data — if the AD server is running 2012r2 or later. If the server is 2008r2, you are shit outta luck.

I think I have a workaround for this too — but it involves a bunch of back-end work on my 2008r2 AD server to pull off, and I can’t do that during working hours for obvious reasons, so I’m a vampire for the foreseeable future.

Animated Dragons

Posted in Blog, and Thoughts

So, went and saw “Raya and the Last Dragon” last evening, in iMax, because why not…

I was pleasantly surprised at how good the movie was — because, honestly, my expectations were set pretty low…

Let’s cut to the chase; the House of Mouse these days is pretty much known for being the Church of Social Justice of Latter Day Woke… A studio where telling a good story is somewhere near the bottom of the priority list, under “browbeat the audience with your agenda”, “be as preachy as possible about a current event”, and “you have two hours to convince everyone your kink is cool”.

“Raya” still had its {current year} elements, sure; Princess Power Hour? Yep. Mean girl redemption arc? Check. Broken family dynamic? Double-check. Kowtowing to all of the Asian money invested in the company? Oh hell yes…

But what made the movie actually good was all of the {current year} it didn’t have…

There was a strong father figure instead of the modern-era useless comedy relief male. The female lead had raison d’être versus being inexplicably Harder, Better, Faster, Stronger than everyone ever because woman. And the moral of the story was simply a good moral, so there was no need to try and convince the audience with forced morality.

In short, the movie didn’t harangue at the audience about woke du jour and instead just told a good story.

And that somewhat made the $75 it cost to see the movie worth it.