@scottalanmiller said in Azure AD and OnPrem Windows Server 2016:
@bigbear said in Azure AD and OnPrem Windows Server 2016:
Looks like its only available from VULTR in NY/NJC data centers.
That's the good datacenter anyway
Oh yeah? Ive been deploying voice switches from several of their locations. I do notice occasionally Chicago has a lag.
@scottalanmiller said in Azure AD and OnPrem Windows Server 2016:
@bigbear said in Azure AD and OnPrem Windows Server 2016:
@bigbear well another issue, depending on where I store all my data. Do I launch a 3rd server with Vultr BLOB storage and share it to the terminal server, cause that would be another server without internet/updates/backup.
Or do I directly attach a volume with BLOB storage to the terminal server? Which seems odd...
Do you need the BLOB storage and why would it feel odd to have it be direct but not weird to have it on a different server? What's the benefit to having an extra server for storage?
I have a few TB of data so I assumed BLOB storage was the way to go. If I had less data I suppose it wouldnt be necessary. Looks like its only available from VULTR in NY/NJC data centers.
@scottalanmiller said in Azure AD and OnPrem Windows Server 2016:
@bigbear said in Azure AD and OnPrem Windows Server 2016:
@scottalanmiller only issue that came to mind was updates.
Yup, of course an issue. The solution there, and this isn't that great, is that you either use WSUS for Windows or a local mirror for Linux.
Yup, so you can maybe see where my hope was to join a 2016 RDS to Azure AD the way Windows 10 clients do (also havent tested this lol).
The cake is a lie!
@bigbear well another issue, depending on where I store all my data. Do I launch a 3rd server with Vultr BLOB storage and share it to the terminal server, cause that would be another server without internet/updates/backup.
Or do I directly attach a volume with BLOB storage to the terminal server? Which seems odd...
@scottalanmiller only issue that came to mind was updates.
Once again, you are correct lol. Man
I tried deploying a private network on Vultr last night, an AD vm and a RDS vm.
The AD vm ends up multihomed with an external and an internal interface. Apparently internet access is direct for each VM even when you have a private network, it just adds the private adapter. So you couldn't disable the external interface or you'd lose internet access. (Per tech support).
My last ad deployments on premise was a .local domain. Based on previous feedback here we are back to using split DNS and the actual .com?
Not sure how I would do it all on Vultr and remain secure.
He talks in the video above about elminating the need for AD servers and shows a cloud-only deployment of RDS, skip to minute 9:55
You maybe right. I'm starting to think about just ordering in a server and running an on-prem RDS. I'm about to attempt a deployment of Azure AD and an Azure VM with RDS and will report back.
With T56 series here the 48s dropped down to $170 range, everything else has gotten even cheaper.
The t56a is the cost that Yealink 48s was a month ago, and it is android. About $199.
I got Ubiquiti phones in to test and have updated them a couple times. At last pass they still couldn't park or use BLF reliably.
I can't imagine leaving Yealink.
@scottalanmiller said in Azure AD and OnPrem Windows Server 2016:
@bigbear said in Azure AD and OnPrem Windows Server 2016:
Has anyone tried to deplot a Vultr Server 2016 VM and connect it to Azure AD ... or even an OnPrem server (same difference)
Azure AD has no on-prem option.
I am not talking about deploying Azure AD on Orem, rather connecting a Server 2016 box to Azure AD the way that Windows 10 and other devices can be connected.
Once I saw server 2016 can join Azure AD I got excited. But it seems it's only currently possible if you run an Azure VM and connect Azure AD on your Azure Virtual Network.
Leading me to wonder if the Azure Gateway VPN could be used to connect a non-Azure network (premise or Vultr) with Azure AD using a site-to-site link.
@scottalanmiller said in Azure AD and OnPrem Windows Server 2016:
@bigbear said in Azure AD and OnPrem Windows Server 2016:
It seems the only option is a VPN or to run your server on Azure.
Something is CLEARLY wrong here. Azure AD doesn't support the use of VPNs and there is no possible way to run your own server on Azure for Azure AD. These aren't possible and don't make any sense if you know what Azure AD is. I think there is some underlying confusion here.
Azure VPN (I'm referring to site to site)
https://azure.microsoft.com/en-us/services/vpn-gateway/
I don't know where you got that I want to run an "Azure AD Server". I want to avoid running a normal AD server entirely in my RDS deployment.
Azure AD can be used as a replacement for AD to join an RDS server, but apparently only if you run your RDS server on an Azure VM. You have to connect it to your Azure Virtual Network. In the video above the Microsoft RDS guy is showing this.
If I were to run a RDS server on Vultr it would be considered "onprem" from the view of Azure AD. Or if I were to run RDS server in-house I would love to avoid deploying abnormal AD server here.
@Dashrender apparently yes, but online from within an Azure virtual network on an Azure VM.
Start at 9:55 and watch as they magically swipe AD off for AAD...
Has anyone tried to deplot a Vultr Server 2016 VM and connect it to Azure AD (not sync, but actually join the domain) or even an OnPrem server (same difference)
It seems the only option is a VPN or to run your server on Azure. I thought I found an article on this but I keep coming back to options to sync your Local AD with Azure AD. I would prefer not to use Azure, but would like to use Azure AD.
@Ambarishrh said in Dropbox Smart Sync:
One drive now has similar feature (files on demand)
"With Files On-Demand, you can access all your files in the cloud without having to download them and use storage space on your device. You don’t have to change the way you work, because all your files—even online files—can be seen in File Explorer and work just like every other file on your device."
Yeah I saw that when evaluating ODfB over the past couple weeks. Its one of Microsoft's many "coming soon" features in Windows 10 future builds. Who knows when it will come, and if it will ever work.
As it is I can't get ODfB to consistently sync docs. If you place a new file in an existing syncing folder its all "fingers crossed" that it will every sync and appear in the online Sharepoint view. Very scary.
I really wish everything Microsoft has in their cloud arsenal worked reliably. At a concept level I could use them for everything IT related, AND it would save money.
@Francesco-Provino said in Dropbox Smart Sync:
@bigbear said in Dropbox Smart Sync:
So as some may know I have been looking for a solution to make a vast amount of data easily accessible for mobile users.
I just discovered Smart Sync, a feature Dropbox apparently released last year. It seems it will only sync what you "pin' or what you access the most. This may allow me to dump terabytes of data on the cloud and access it from anywhere. I am about to test it out.
Any use this or a product that does something similar, or have any experience with Dropbox Smart Sync?
Side Note: When I first got Dropbox in 2008 this is how it worked, as far as I remember. At some point dropbox changed to syncing everything in real time.
I used it from the very beginning, it's a game changer for us because we have a huge number of files in dropbox so the client initial sync can take ages. It works ok, the only downside is that (obviously) the file pointers are useless without internet connection.
@Francesco-Provino Great to know it is working for you. How does Smart Sync handle file access when two people are editing?
@scottalanmiller said in Dropbox Smart Sync:
Sounds good, looking forward to feedback on it.
Looking forward to trying to break it! lol
@scottalanmiller said in Has Windows 10 VDI Licensing changed yet?:
@bigbear said in Has Windows 10 VDI Licensing changed yet?:
On one hand routing tables definitely matter, say in a site 2 site implementation and in any VPN where you are communicating with a remote network.
They matter, certainly, they are just outside of the VPN scope. VPNs exist whether routing tables are there or not or whether they come into play or not.
Agreed, I guess I am just coming around to accept what you originally postulated, that a VPN by definition isnt limited to the idea of connecting two routable networks. That VPN and SSL are very similar.
I had a guy years ago that used to confuse RDP and VPN, but not because of he knew what he was talking about. He just didn't understand what either of them were to begin with. So he was always telling me he was VPN'd in when in fact he was on our terminal server.
Now I am like...
So as some may know I have been looking for a solution to make a vast amount of data easily accessible for mobile users.
I just discovered Smart Sync, a feature Dropbox apparently released last year. It seems it will only sync what you "pin' or what you access the most. This may allow me to dump terabytes of data on the cloud and access it from anywhere. I am about to test it out.
Any use this or a product that does something similar, or have any experience with Dropbox Smart Sync?
Side Note: When I first got Dropbox in 2008 this is how it worked, as far as I remember. At some point dropbox changed to syncing everything in real time.
@scottalanmiller said in Has Windows 10 VDI Licensing changed yet?:
Pertino and ZeroTier are both full scale enterprise "standard" VPNs that have no need for routing tables for anything. It's actually quite uncommon to use routing tables in the SMB. You only need that when dealing with certain setups. Lots of VPNs work only at layer 2, so no routing at all.
VPNs are just encrypted tunnels.
So I think I agree. On one hand routing tables definitely matter, say in a site 2 site implementation and in any VPN where you are communicating with a remote network.
However I think about Himachi, which was a VPN of sorts that handled this in a totally different way. VPN isn't limited to TCP/IP. So I concede to your point.
@scottalanmiller said in Has Windows 10 VDI Licensing changed yet?:
@bigbear said in Has Windows 10 VDI Licensing changed yet?:
@scottalanmiller its tunnels vs sockets though.... in the traditional sense.
VPN's create tunnels with routing protocols. SSL's create encrypted sockets against application ports.
VPNs don't use routing protocols. They create sockets and use ports. Literally, the two are ACTUALLY the same thing.
Maybe a misfire, VPNs aren't worth much without routing tables. Still different apps though right?
I mean can you establish an ssh connection, add routes and ping a remote server?
Wish there was a mobile app for mangolassi as I always fall off on mobile
