Elastic{ON} Seattle
FileBeats from Elastic. Install on any Windows/Mac/Linux client and configure logs to pipe to an ingest node. Use specific visualizations to identify suspicious activity. Logstash 6.0 can have multiple pipelines. Disk usage in 6.X will be more efficient Upgrading to. 6.X from 5.X without…
Group Policy User settings on a Computer OU
Problem With great AD organization comes burdensome Group Policy management. Specifically, when computers need software. Maybe that software isn't smart enough to place the correct registry key in the ALL_USERS registry space. Users who log in, don't have the needed registry keys for the software. A solution would be…
Deploying and Managing Windows 10
Training day 1: The objectives of the lab are to learn how to: Configure custom Windows PE boot media Create a custom answer file by using Windows SIM Install a reference computer by using an answer file Prepare a reference computer by using Sysprep Capture a reference computer Create and…
Use iMovie on any Network Share
iMovie is very particular when it comes to where it’s project is stored, it must be a Mac formatted volume. This is why in the past storing on the local disk was the only option. Most network shares are SMB Windows based, iMovie won’t load a project stored…
Installing Puppet 4.X on Raspberry Pi (armhf)
on Puppet, Raspberry-Pi
Problem As of this writing (6/30/16) there is no .deb package or installer for Puppet 4.X for ARMHF on https://apt.puppetlabs.com/. This means with using the default Raspberian repository, apt-get install puppet will not download the latest Puppet, but instead download the previous generation Puppet…
DockerCon takeaways
on Docker, DockerCon16
Update hosts to Docker 1.12 Currently running 1.6,1.8 and 1.11 across 4 hosts 1.12 includes new features Swarm functionality Expanded API, Dockerfile improvements, plugin support Docker client for Mac/Windows New filesystem support Docker Compose built in Reconfigure containers New filesystem types, using ZFS…
Docker Storage
on Docker, DockerCon16
Image and Container Storage This is different than container storage When you pull, the image is a file system contained of diff layers. What storage driver should I choose? This depends Block supports disk quotas. As of 1.12, you can tell a container not to use more than XGb…
Extending Docker with APIs, Drivers and Plugins
on Docker, DockerCon16
Docker for OPS. Find Session: Batteries included, but swappable. Docker comes out of the box with many features and tools, but none are locked in and the project is fully open source. Docker has three extension points. User-Facing APIs Plugins Drivers User Facing API Extending through observation The workload and…
DockerCon Day 2 Opening Keynote
on Docker, DockerCon16
Focus will be Docker for the enterprise. (Kidding) Docker is being used between 30-70% in Enterprise Production. Docker creates a seamless process in running legacy apps and cutting edge apps side by side. The fallacy is you either have Microservices on the cloud, OR you have traditional apps hosted on…
Getting Deep on Orchestration
on Docker, DockerCon16
APIs, Actors, and Abstractions in a Distributed System Find Session: http://sched.co/71Se Orchestration is the act of managing services. Before 2005 it was mostly by hand using a combination of scripts and commands. A system that provides control over high level abstractions. Has nothing to do with containers/…
Windows Server and Docker
on Docker, DockerCon16
The Internals Behind Bringing Docker and Containers to Windows Find Session: http://sched.co/70OD Basics Docker ON Windows, Not "Docker for Windows" Docker engine on Windows, more like a port, not a fork. Same API, same tools (compose, swarm, ect.) Built on new native container technology in Windows. Does…
The Dockerfile Explosion
on Docker, DockerCon16
Find session: http://sched.co/70Ng History of Dockerfiles Dockerfile is the instruction to create a Docker image. Dockerfile is well documented About a year ago, Docker no longer accepts patches to Dockerfile syntax Dockerfile since has been frozen Creates stability for legacy Dockerfiles Not frozen forever, will accept bug…
Containers and VMs and Clouds: Oh My.
on DockerCon16, Docker
Find session: http://sched.co/70OI Physical vs Virtual, Virtual vs Container VM = House Containers = Appartments Should the app be a VM or container? It depends. Performance Security Scalability Exciting skill sets Costs Should consider Capacity Mixed workloads Latency Disaster recovery Licensing costs Existing automation frameworks Resource pools Multi-tenancy The…
Cloning Running Servers with Docker and CRIU
on DockerCon16, Docker
Find the session: http://sched.co/70OK Docker snapshots/checkpoints I was hoping to see the ability to clone a running server and create a docker container from it, but the title/description was deceiving. Instead, this session focused on using Docker for real time checkpoints and restores of Docker…
DockerCon 2016 Opening Keynote
on DockerCon16
DockerCon16 Dubstep - Somebody To Lean On Remix Find live stream video on youtube for embed Docker has grown exponentially and exploded in terms of global market share, it is the most rapidly adopted technology. 40-75% of Enterprises utilize docker in production. Docker was announced 3 years ago. Client apps…
Developing Powershell DSC Environment
on Powershell
Prerequisites First a pull server is needed to be setup. This is straight forward and can be configured with DSC by pushing to the desired server's LCM (Local Configuration Manager). configuration HTTPSPullServer { # Modules must exist on target pull server Import-DSCResource -ModuleName xPSDesiredStateConfiguration Node vmnocnmdsctst01 { WindowsFeature DSCServiceFeature { Ensure = "Present" Name = "DSC-Service"…
Updating Dockerized CAS
During the CAS dockerfile build process, it pulls the repository here: https://github.com/psd401/cas4-overlay This repository is a fork of Unicorn's CAS template: https://github.com/UniconLabs/simple-cas4-overlay-template Cloning and merging with updated code $ git clone https://github.com/psd401/cas4-overlay $ cd cas4-overlay $ git remote add upstream https:…
Updating Debian wheezy clients to Jessie
Just as Windows and OS X receive huge incremental versions, as does Linux. Wheezy is reaching it's end of life and is unsupported by Java 8 due to incompatible dependencies. Here I will document the upgrade process on one machine, then write a self contained script to deploy with Puppet.…
Creating a new Joomla container
on Docker, Cloud
Today we'll be creating a new Joomla container for kghp's 3x website. Get to the Docker04 server Once you're ssh'd in, start by taking a look at the /root/site-joomla-template. Copy that directory recursively to create a new site folder. cd /root/ cp -r site-joomla-template/ joomla-kghp Now we need to…
Updating Docker Joomla Image
on Cloud, Docker
Docker04 currently hosts all school websites in a developmental state. The entire web infrastructure is ran under Docker. Browser not compatible to see top secret information. docker ps CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES 0c0bd3b3eccc psd/joomla:latest "/tmp/setup.sh setup-" 16 minutes ago Up 16 minutes…
KGHP Final Technology Guide
on KGHP
Here we will focus on the most current developments for KGHP following a painful outage in November 2015. We've experienced a similar outage before, and will surely experience an outage of similar magnitude again. Thanks to new technology implementations, future outages will have a smaller impact on the station's legality…
KGHP Raspberry Pi Streamer
on KGHP
This is the first time KGHP has had this level of redundancy. In the past there wasn't enough time or knowledge to successfully mirror the two Airtime systems to both play at the same time. The only issue up to now was failover, which required boots in Spencer's office to…
Chromebox running Chromasaur
on KGHP
Why? For KGHP we need two computers, one for browsing the web, and another for manually cueing up and browsing music in the vault (Collection containing Terabytes of music). We don't need a lot of processing power but don't want to be using some 10 year old garbage. Chromeboxes will…
Peninsula School District Amazon Redundency
on Cloud
Due to recent software outtages, the Peninsula School District is investing heavily in the following practices. Documentation. VM snapshots. Docker commits. Testing environment. Intigration testing. Homegrown SAML SP (Service Provider) for testing/debugging. VM snapshots Being this is an Amazon EC2 server, our regular backup/snapshot tool Veeam does not…
Login Server SAML Meltdown
What happened October 29th 2015? The Shibboleth Docker container is composed of 14 seperate configuration files, and a magnituted of Dockerfile and startup scripts. Modification of any of these files requires a build of the Dockerfile and relaunch of the container. On a normal day, the rebuild would generate the…
Setup Joomla inside Docker with Nginx
on Docker, Cloud
Install Joomla Image Clone the joomla-docker repo $ git clone https://github.com/psd401/joomla-docker Build the docker image $ cd joomla-docker $ docker built -t . psd/joomla Create the directory for your files to live. We need a vhosts directory and a sites directory for nginx. mkdir joomla-site mkdir joomla-site/vhosts mkdir…
The Complete Recipe for Managing OS X
on Mac Admins Conference
Profile Manager, ARD, and Yosemite Server Barebone Apple management. Out with the old, in with the new. Imaging is dead. Image creation process was repeated for every new Mac model. It was time consuming and on going. New Deployment Open the box Enable Remote Desktop Enroll in Profile Manager Network…
Connect the dots with Docker
on Mac Admins Conference, Docker
Pepijin Bruienne @bruinne Containers Everything that makes up the application. Contents of the container are irrelevant as long as they fit. Can be moved between systems very easy. Far less wasited resources realitive to virtual machines for each application. Security Always know what you are about to run, don't run…
Managing Macs in the new frontier
on Mac Admins Conference
You can't do today's jobs with yesterday's tools and still be in business tomorrow. http://johnkitzmiller.com Enterprise is resistant to Apple, not the other way around. Imaging Imaging is Dead. Computing has moved from desktops to laptops. Imaging stems from a world driven by desktop class computers that never…
Communication
on Mac Admins Conference
I suck at Email Email is text based communication that is sent off into the nether and it's whereabouts are certian only when you receive a reply. One of the only legal forms of digital "paperwork" communication most of the time has the same rights as physical mail. A way…
What's new with Munki
on Mac Admins Conference
Presented by IT admin from Disney Animation Studios. What is Munki Open source tools to manage software on OS X. Being used worldwide. Runs on any platform with a webserver. Client tools will run on any intel mac. Installs and removes any Apple packages, including system updates. Desired State: Client…
Deploying 1,400 Machines in 3 weeks
on Mac Admins Conference
Hosted by school district. Before had ~500 machines. Now have 1 Mac Mini at each site as replacements to Xserves. Must have missed where they talk about the actual deployment. Technologies for Deployment Deploystudio dmg Munki Pkgs Puppet for configurations Still using images for new machines Should be using DEP…
Managing Windows in a Mac World
on Mac Admins Conference
#psumac This seems like a Vendor hosted event. Oops.. Deploying Windows Build Master Boot Camp image Haven't done this for a few years Clone Windows image WinClone Creates a pkg that installs bootcamp either on a partition or another hard drive. Can use any pkg installation method, including ARD or…
Administering Office 2016 for Mac
on Mac Admins Conference
Presented by William Smith About 2016 For Mac Comming out later this year Office 2010 ending support January 2016 Will likley see one or two service packs, after the second service pack will go into a support hiatice while Microsoft works on the next version. A complete overhaul, re-written in…
Documentation
on Mac Admins Conference
Why document To take vacations Printed documentation on gear documentation helps as a teaching tool and memory aid When Might be required by law or policy of workplace Check day to day work process, common tasks If unavailible, can others get the job done To cover unusual situations Disaster recovery…
BSDPy
on Mac Admins Conference
Netbooting Without OS X Rewrite intro stuff here, lost it due to Ghost refresh... Docker image https://registry.hub.docker.com/u/bruienne/bsdpy/ Types of Netboot Netboot boot to an OS over the network NetInstall boot to a software installer NetRestore Boot to disk image How does Netboot work…
The Awesome World of SNMP
What is SNMP Simple Network Management Protocal Standardized protocal for managing devices on a network. Widley spread between operating systems, Windows, Mac, Linux. If it has a network card, it likley has SNMP capabilities. Network switches and wireless access points usually are monitored with SNMP. Some capabilities will vary from…
Apple Workshop
on Mac Admins Conference
About Hosted by Apple Engineers from Cupertino. Brett G - Apple US Education Deployment consultation in the microlabs. Will ask about recomended (free?) MDM server, possibly issues with Windows DHCP server and Netboot/Netinstall. Start testing iOS 9 and OSX 10.11. AD integration Printers Scripts Wireless Watch these videos…
PSD homepage migration
on Cloud
Goals Use https (through load balancer) Redirect all port 80 traffic to 443 Redirect all www and * traffic to https://psd401.net Keep old site live at http://old.psd401.net Currently a placeholder until Joomla is deployed to the Amazon Cloud Observations of old DNS Private DNS www is…
Deploying Joomla with Docker
on Cloud
Setup Docker virtual machine Docker Version 1.6.2 or later Hosts Dockerfile images Nginx load balancer Accepts http requests and redirects them to https. Serves as a proxy to the Docker server. Lets create a Joomla site for Voyager Elementary Dockerfile Google took me to this repository, it has…
OSX terminal login window display
I've been looking for some time now, and have been unable to find the command to switch the login window on OSX from "List of Users" and "Name and Password". After Google-ing "login window preferences" I came accross this file. /Library/Preferences/com.apple.loginwindow.plist doing a read on…
Creating an OSX 10.10 image
Create a bootable USB installer Curtisy of Apple. You could do some Googling and follow another tutorial and use an easier GUI tool, there are thousands out there that only do these few commands. Before you're able to create a bootable OS X installer, you'll need to do the following…
Ghost Blogging
This site is ment for super geeky IT people at the Peninsula School District to blog and document their work. Geekzone was founded by the Data Integration Analyst Brandon Martin and is powered by the open source Ghost blogging platform. This blog is geared more twards very specific technical intructions…
Using Dokku at the Peninsula School District
on Docker
WARNING We no longer use dokku here, it was so buggy and crippled with updates that we abandoned it in the great November 2015 crash when we lost it's server... Configure SSH To make life easy, lets add the dokku/apps server to our ssh config vim ~/.ssh/config Add…
Configuring Chrome with Group Policy
In searching for a fix for Office 2013. I have discovered a method where we can manage a large portion of the Google Chrome configurations via group policy. Home page now defaulted to: http://my.psd401.net Home button now enabled Bookmarks bar now enabled by default Here is the…
2014 Firefox freezing
Issue The week before school started, August 26th, Firefox started having spontanious freezing issues rendering it unusable. I pushed an update from the front motion msi repository, version 30 early summer or late in the school year. It was unlikley it was that install. More likley it was the Windows…
KGHP Airtime redundancy reboot
on KGHP
Please note: This was the initial reboot in 2014. This configuration lasted around year before hardware failures exposed the short comings. Some of this is still valid, but not everything. See the updated redundancy post here. Key focal points No more Gnome GUI, use Debian minimal install terminal only Use…