Tag Archives: familiar

Explore the Cubic congestion control provider for Windows

Administrators may not be familiar with the Cubic congestion control provider, but Microsoft’s move to make this the default setting in the Windows networking stack means IT will need to learn how it works and how to manage it.

When Microsoft released Windows Server version 1709 in its Semi-Annual Channel, the company introduced a number of features, such as support for data deduplication in the Resilient File System and support for virtual network encryption.

Microsoft also made the Cubic algorithm the default congestion control provider for that version of Windows Server. The most recent preview builds of Windows 10 and Windows Server 2019 (Long-Term Servicing Channel) also enable Cubic by default.

Microsoft added Cubic to Windows Server 2016, as well, but it calls this implementation an experimental feature. Due to this disclaimer, administrators should learn how to manage Cubic if unexpected behavior occurs.

Why Cubic matters in today’s data centers

Congestion control mechanisms improve performance by monitoring packet loss and latency and making adjustments accordingly. TCP/IP limits the size of the congestion window and then gradually increases the window size over time. This process stops when the maximum receive window size is reached or packet loss occurs. However, this method hasn’t aged well with the advent of high-bandwidth networks.

For the last several years, Windows has used Compound TCP as its standard congestion control provider. Compound TCP increases the size of the receive window and the volume of data sent.

Cubic, which has been the default congestion provider for Linux since 2006, is a protocol that improves traffic flow by keeping track of congestion events and dynamically adjusting the congestion window.

A Microsoft blog on the networking features in Windows Server 2019 said Cubic performs better over a high-speed, long-distance network because it accelerates to optimal speed more quickly than Compound TCP.

Enable and disable Cubic with netsh commands

Microsoft added Cubic to later builds of Windows Server 2016. You can use the following PowerShell command to see if Cubic is in your build:

Get-NetTCPSetting| Select-Object SettingName, CcongestionProvider

Technically, Cubic is a TCP/IP add-on. Because PowerShell does not support Cubic yet, admins must enable it in Windows Server 2016 from the command line with the netsh command from an elevated command prompt.

Netsh uses the concepts of contexts and subcontexts to configure many aspects of Windows Server’s networking stack. A context is similar to a mode. For example, the netsh firewall command places netsh in a firewall context, which means that the utility will accept firewall-related commands.

Microsoft added Cubic-related functionality into the netsh interface context. The interface context — abbreviated as INT in some Microsoft documentation — provides commands to manage the TCP/IP protocol.

Prior to Windows Server 2012, admins could make global changes to the TCP/IP stack by referencing the desired setting directly. For example, if an administrator wanted to use the Compound TCP congestion control provider — which was the congestion control provider since Windows Vista and Windows Server 2008 — they could use the following command:

netsh int tcp set global congestionprovider=ctcp

Newer versions of Windows Server use netsh and the interface context, but Microsoft made some syntax changes in Windows Server 2012 that carried over to Windows Server 2016. Rather than setting values directly, Windows Server 2012 and Windows Server 2016 use supplemental templates.

In this example, we enable Cubic in Windows Server 2016:

netsh int tcp set supplemental template=internet congestionprovider=cubic

This command launches netsh, switches to the interface context, loads the Internet CongestionProvider template and sets the congestion control provider to Cubic. Similarly, we can switch from the Cubic provider to the default Compound congestion provider with the following command:

netsh int tcp set supplemental template=internet congestionprovider=compound

How one nonprofit turned a golf course into a ‘no-fail’ job training program – On the Issues

Shawn Bennett was familiar with the feeling of failure when he was younger. Wrestling with anxiety and substance abuse, he had repeated run-ins with the law – and lacked the support needed to put his life on track.

“I was a self-run riot on cruise control to somewhere no one wanted to be,” is how he described his life after spending time in prison for operating a vehicle while intoxicated.

His situation was like many that John Schmidt, a corporate executive, had in mind when he and other founders – committed members of their community looking for solutions for people living in poverty – created Riverview Gardens. This unusual “no-fail” job training program in Appleton, Wisconsin, has helped more than 1,200 people, including Bennett, regain their footing and reclaim their lives. Schmidt, who has also served for years on the board of a local homeless shelter, knows any of us could face poverty, and even homelessness, because of bad luck and without a support system.

“There’s a very fine line today between the haves and have-nots,” says Schmidt. “There’s oftentimes this perception that there’s something wrong with someone who might be homeless. But most times, these are everyday people whose luck wasn’t quite as good as somebody else’s luck in life.”

The community center at Riverview Gardens, which was formerly a country club. This nonprofit program is supported in part by Microsoft TechSpark Wisconsin, a civic program that fosters greater economic opportunity and job creation in local communities across the country.

Riverview Gardens is situated on 72 bucolic acres of a former country club and golf course along the Fox River in Appleton, in the northeastern part of the state. Appleton has historically been known for its paper mills. It also has a legacy of firsts: The first electricity for sale came from a hydroelectric plant built by a paper company executive in the 1880s. It’s also home to the first telephone system in the country and the first electric trolley system.

In another kind of first, Schmidt and the founding members converted the Riverview Country Club into Riverview Gardens. This private country club, Wisconsin’s oldest, filed for bankruptcy in 2011.

a greenhouse
Lettuce is grown without soil in the pool at the former country club.

About 25 acres of the site are used for the certified organic farming of fruits and vegetables including beets, potatoes, carrots, herbs, tomatoes, onions and kale. There are 20 passive solar greenhouses also on site. The country club pool has gone from a place for swimming laps to growing lettuce without soil.

The hydroponic greenhouse is often tended to by individuals who are veterans who may have post-traumatic stress disorder or are experiencing homelessness.  They find it a more calming environment, in contrast to the noise and activity of the farm.

This nonprofit program is supported in part by Microsoft TechSpark Wisconsin, a civic program that fosters greater economic opportunity and job creation in local communities across the country, particularly in those outside major metropolitan centers. Appleton, with a population of about 75,000, is one of those communities, as is Green Bay, which is about 30 miles away.

Now crop land, Riverview Gardens was once home to a golf course and country club.

TechSpark is assisting Riverview Gardens in three areas. First, it provides technology that is being used in the hydroponics greenhouse to monitor and adjust water temperature, pH balance and nutrient levels in the pool. That should help to reduce the grow time. The technology is already making a difference, providing a more consistent harvest.

Second, Microsoft’s FarmBeats initiative is being employed. FarmBeats, also an AI for Earth feature project, uses ground-based sensors, Power BI, the Internet of Things (IoT) and TV white spaces (which leverage unused broadcasting frequencies to deliver broadband connectivity) to measure soil irrigation needs. It also helps determine the right time to apply fertilizer and other inputs, as well as how much to apply, to grow a more productive crop. Third, Microsoft is helping Riverview Gardens undergo a digital transformation. In the past, the organization has kept much of its data – records like the seed distribution log, grow crop log, even handwashing logs – on paper. Riverview Gardens is now moving some of it to electronics records for better efficiency.

Riverview Gardens took 25 acres of the former golf course and converted it to a rich growing environment for fruits and vegetables, as well as a growing environment for the people it serves.

With these tools, Riverview Gardens can increase its farm yields and raise more money from the sale of produce, which funds the program’s operations. These tools also help give the Riverview Gardens staff more time to spend with the people who need it: their clients.

The technology is “helping us understand our farming better, our water quality better, streamlining our business processes and taking a lot of variability out of the entire operation so that we can focus on the people that we’re serving, and not have to worry as much about other aspects of the business,” says Schmidt.

Photo of John Schmidt
John Schmidt, CEO of U.S. Venture, is among the founders of Riverview Gardens.

Those who participate in Riverview Gardens’ program also can work in the kitchen or otherwise help with setup at events at the club, now a community center. They also work to help clean Appleton’s downtown streets, early in the morning, after they’ve received training on equipment used for cleanup. Or they might do maintenance – such as painting, lawn care or snow removal – at other nonprofits and businesses in town.

Once participants complete 90 hours of work – known as ServiceWorks – along with ongoing counseling about job and life skills, Riverview Gardens helps them find – and keep – jobs by following their progress for three years.

“No matter how long it takes you to do 90 hours, whether that’s three weeks or three years, we will always accept you back into the program, and you will just continue where you left off,” says Pilar Martinez, the director of community engagement at Riverview Gardens.

Baked into Riverview Gardens’ recipe for success is its “no-fail” policy. Those who may have experienced roadblocks in the past are provided the tools and opportunities to not fail.

“’Success’ is a subjective term and can be different for many different people,” says Martinez. “We look at the resiliency of the people we serve and the barriers they overcome to move themselves forward.”

No matter how long it takes you to do 90 hours, whether that’s three weeks or three years, we will always accept you back into the program.

Shawn Bennett at Riverview Gardens’ Earn-A-Bike shop. Those going through Riverview Gardens’ program, as well as volunteers who help out on the farm, can earn a refurbished bike by working a certain number of hours.

For Bennett, “coming out of prison, not having any family – there was no real support, no real comfort,” he says. Bennett, 49, earned his high school equivalency diploma in prison, and is now working as a tech intern at Fox Valley Technical College, which serves about 50,000 students a year.

There, he has earned an associate degree in computer support, and is working on two other related degrees. He was awarded a Fox Valley Technical College Foundation scholarship for an essay about his personal story, something he wrote after going through Riverview Gardens five years ago.

“The sense of community at Riverview Gardens really helped me,” says Bennett. “To be in a place like this, it makes you feel like you’re welcome here. You’re part of something.”

Carl Gustavson says Riverview Gardens made a huge difference in his life.

Carl Gustavson, 29, is also among those who found success after going through a tough time. Things became difficult for him after moving to Nashville to pursue his dream of being a musician.

“I thought I was going to be like Woody Guthrie; he rode the rails and played his guitar for people,” says Gustavson. “I kind of had a romantic view of being a musician. But the reality is you can end up living in a tent, like I did, and just start feeling like you can’t do anything.”

Gustavson is grateful for the help he has received at Riverview Gardens.

“I was frustrated – by society and by my situation,” he says. “I didn’t think it was ever going to get better. I thought I was going to be stuck in a rut forever.”

After completing ServiceWorks, he was placed in a job doing detail work at a car dealership last spring. He feels optimistic about the future, and at some point, says he would like to use the bachelor’s degree in marketing he earned in 2011.

’Success’ is a subjective term and can be different for many different people,” says Martinez. “We look at the resiliency of the people we serve and the barriers they overcome to move themselves forward.

Much of the spark and enthusiasm at Riverview Gardens comes from its staff, led by executive director Cindy Sahotsky. She is often right in the middle of the action, no matter the job. When program participants visited Sacred Heart Parish to help remove large stones where a tree once stood, Sahotsky grabbed a shovel and plunged into the work at hand.

“She values people, and she expects that if she’s going to ask them to do something, she has to do her part,” says Laura Savoie, the parish’s business manager. “She pitches right in. And she does have high expectations. She expects you to do what you said that you’d do.”

Riverview Gardens executive director Cindy Sahotsky, front, center, wearing a dark sweatshirt, surrounded by some of the nonprofit’s staff, and Microsoft TechSpark Wisconsin manager Michelle Schuler, front, third from left.

There is also a three-year “follow” program, based on findings that show individuals who have been incarcerated and are tracked for that length of time, with guidance and counseling, have the lowest recidivism rate, according to Sahotsky.

The follow program offers support with Riverview Gardens alumni who are now employees elsewhere, and also offers those employers guidance regarding behavior. For employees, it can include concerns like how to get a bus pass or feeling like a boss doesn’t like a worker. For employers, it might mean getting Riverview Gardens’ help coaching an employee who is taking breaks too often, or guiding an employee to be more patient in the workplace.

“The people we serve are individuals who have multiple barriers to long-term employment,” says Sahotsky. “Riverview Gardens really came to be to address that root cause of homelessness. It’s not because our folks can’t get jobs. It’s that they struggle to keep them because they have barriers.”

To be in a place like this, it makes you feel like you’re welcome here. You’re part of something.

Sahotsky, who also oversees the COTS homeless shelter in Appleton, the same place where Schmidt volunteers, is a former corporate human resources manager. She knows how such issues can loom large for the clients Riverview Gardens serves.

“Getting the job is just one part of that whole process,” says Sahotsky. “Keeping that job, getting to work, getting along with others – those are all part of it. Having expectations that people who have multiple barriers to stable employment are just going to get a job and keep it is probably not realistic. They’re going to need support to continue along in this process.”

The program is free to participants. In addition to the money raised from the sale of produce grown at Riverview Gardens, revenue from the rental of the country club building for special events is used to run Riverview Gardens.

Volunteers often work on the farm alongside program participants and staff. “We believe all people have value and contribute to the community in which they live,” is part of the nonprofit’s credo.

And not only are area employers involved in hiring Riverview Gardens’ clients, but many from throughout the state also come to work on the farm as volunteers. So do many residents of Appleton. It’s a true partnership. Working together in the fields, no one knows the other person’s title, or background, or standing. They just know one another by the smiles and first names they share.

“The partnerships Riverview Gardens has with employers and the larger community, to create economic opportunities for those who need them, is one of the things that makes it so effective,” says Microsoft TechSpark Wisconsin manager Michelle Schuler. She also serves on this nonprofit’s board. “It’s a real pleasure for those of us at Microsoft to work with Riverview Gardens to help digitally transform their services, and as a result, even more lives.”

That transformation, Schmidt points out, is about recognizing that any of us could be in a position in which we need retraining or other support to help put our lives on better paths.

Top photo: Microsoft’s FarmBeats initiative is being employed at Riverview Gardens in Wisconsin. FarmBeats uses ground-based sensors, Power BI, the Internet of Things (IoT) and TV white spaces to measure soil irrigation needs. Follow @MSFTissues on Twitter. 

Photos courtesy of www.ImageStudios.com

IBM blockchain apps starter pack targets developer disparity

Blockchain has emerged as one of the hottest trends in IT, and as such, it suffers the familiar plight of other big IT trends. There just aren’t enough developers to meet the demand to build blockchain apps.

To help boost the number of blockchain developers, Big Blue recently brought its blockchain platform released last summer to new developers, such as beginners with no previous knowledge of blockchain. The IBM Blockchain Platform Starter Plan helps individual developers, startups and enterprises build blockchain proof of concepts quickly and affordably. The package includes samples, tutorials and videos to help developers learn the basic concepts of blockchain and then build blockchain apps.

For $500 month, the IBM Blockchain Platform Starter Plan includes access to the IBM Cloud compute infrastructure, the open source Hyperledger Fabric blockchain framework and Hyperledger Composer developer tools — to run the blockchain ledger. IBM also offers a set of development, operational and governance tools to make it simpler to set up and run a blockchain network. Starter plan customers also get $500 in IBM Cloud credits when they sign on, said Kathryn Harrison, IBM Blockchain offering director.

Kathryn Harrison, IBM Blockchain offering directorKathryn Harrison

Blockchain is a distributed database ledger that manages transactions and tracks assets. It can enable a network of users who wish to securely record, verify and execute transactions. That security is what draws everyone’s interest, but few blockchain application developers have the skills to match.

“While there are a lot of developers that want to get in this space, there aren’t a lot of developers qualified to work on the core of a lot of these protocols from a security perspective,” said Chris Pacia, lead backend developer at OB1 based in Centreville, Va., at the recent QCon New York 2018 conference. OB1 is the parent company of OpenBazaar, an online marketplace that uses cryptocurrency.

Blockchain apps: The ‘cloud’ of the 21st century

Blockchain expertise is the top request among more than 5,000 skills on Upwork,  the organization, based in Mountain View, Calif., that matches freelance workers with employers. Demand for blockchain expertise on Upwork surged more than 6,000% year-over-year in the first three months of 2018.

In a recent Gartner study of nearly 300 CIOs of organizations with ongoing blockchain initiatives, 23% of respondents said that blockchain requires the most new skills to implement of any technology area, and another 18% said blockchain skills are the most difficult to find.

While there are a lot of developers that want to get in this space, there aren’t a lot of developers qualified to work on the core of a lot of these protocols from a security perspective.
Chris Pacialead backend developer, OB1

New York City-based Global Debt Registry (GDR), a fintech provider of asset certainty solutions, adopted the IBM blockchain starter plan to build its collateral pledge registry, which enables lenders to check the collateral positions of the institutional investors to which it lends money. For example, if Goldman Sachs lends money to a hedge fund and that hedge fund pledges a set of assets to them, that fund may also approach JPMorgan Chase & Co. and try to pledge the same set of assets. GDR’s registry would check to see if those assets are double-pledged, said Robert Brown, CTO of Global Debt Registry.

Brown’s team saw blockchain as a good fit because it’s essentially a set of data shared among a group of companies in an ecosystem. GDR, which started with no blockchain expertise, evaluated different blockchain options and selected Hyperledger because it was built from the ground up as a private blockchain. “We have a set of institutional investors and banks, and they don’t want to have their data in the open,” Brown said.

The IBM blockchain starter plan’s tools helped GDR developers build blockchain apps and get up and running quickly on the IBM Cloud, he said.

“Hyperledger Composer let us write our smart contracts in JavaScript, which is a language we’re familiar with,” Brown said. “The API was straightforward to deal with. Composer also has a modeling language that lets you define your data structures and signatures for the objects you create. The tools make it easy to get going.”

OB1’s Pacia said he is hopeful for projects like IBM’s starter plan approach but worries if it will be enough to overcome the low number of people with blockchain expertise. “I’ve seen other efforts to kind of like train people and slowly bring them along so that they can contribute at that type of high level. But it does take a high level of training to do this securely,” he said.

Voice assistants present new challenges for call clarity

As consumers, most of us are familiar with voice assistants, such as Amazon Alexa and Google Assistant, to help us find information, make calls and order groceries using just our voices. In fact, a survey of 1,000 U.S. consumers found as owners of voice assistants become more familiar with their devices, they are “speaking more and clicking less.” For example:

  • Nearly 90% of respondents use their intelligent voice assistants every day.
  • Nearly 60% use them to accomplish tasks they previously would have done on their smartphones via typing and swiping.
  • Nearly one-quarter of respondents reported they were making more calls to businesses than they previously did. And 35% reported making more calls to friends and family with their virtual assistants.

Ease and convenience are two of the main factors driving the use of voice assistants to place phone calls, as the popularity of virtual assistants continues to rise among consumers and businesses. Consumers are increasingly using virtual assistants to place calls they would have previously done on their smartphones, tablets or landline telephones.

Despite many pundits forecasting voice is dead, it’s actually undergoing a modern renaissance and becoming more critical than ever — especially for businesses.

Voice assistants should initiate clear calls

Al Castle, vice president of product and engineering at FlowrouteAl Castle

Clear and reliable call quality — regardless of the device a caller may be using — is imperative for today’s businesses. Voice assistants can present unique challenges in terms of audio quality. Issues such as background noise or having multiple voices speaking concurrently can affect audio quality.

Being able to deliver reliable connectivity and strong audio quality when a call request is made through a virtual assistant can make or break a customer service interaction or an important sale, which places a direct correlation between call clarity and a company’s bottom line.

While many businesses have worked to make the customer service process faster, efficient and easier, customers usually want to interact with a live human when they have a personalized or complex customer service question. As this Forbes article noted, “While companies are using AI to address customers’ basic questions and requests, like a change of address or checking on a bank balance, it has not gone to the level of replacing people for handling higher-level questions.”

In this scenario, whether a phone-initiated query comes to a business from a landline or a virtual assistant, customers simply want their calls connected flawlessly. The call audio should be clear and strong, and the call shouldn’t drop during the interaction. Actual issue resolution becomes secondary if customers can’t reach a business in the first place, or if they can’t hear clearly during their call.

Ensure high-quality voice connections

In an age of voice assistants, smartphones and other intelligent devices, the role of voice and call quality is regaining its importance for businesses.

In an age of voice assistants, smartphones and other intelligent devices, the role of voice and call quality is regaining its importance for businesses. As consumers and businesses adopt smart speakers, this new technology will emerge as a viable alternative to traditional telephony devices.

Therefore, businesses should work closely with their communication service providers to ensure a clear, reliable and high-quality voice connection, regardless of the devices used today and in the future, as technology companies continue to innovate and offer new advancements for call connectivity.

Al Castle is vice president of product and engineering at Flowroute, a cloud-based communications provider based in Seattle.

Organize Active Directory with these strategies


It’s a familiar refrain for many in the IT field: You start a new job and have to clean up the previous administrator’s…

“;
}
});

/**
* remove unnecessary class from ul
*/
$(“#inlineregform”).find( “ul” ).removeClass(“default-list”);

/**
* Replace “errorMessageInput” class with “sign-up-error-msg” class
*/
function renameErrorMsgClass() {
$(“.errorMessageInput”).each(function() {
if ($(this).hasClass(“hidden”)) {
$(this).removeClass(“errorMessageInput hidden”).addClass(“sign-up-error-msg hidden”);
} else {
$(this).removeClass(“errorMessageInput”).addClass(“sign-up-error-msg”);
}
});
}

/**
* when validation function is called, replace “errorMessageInput” with “sign-up-error-msg”
* before return
*/
function validateThis(v, form) {
var validateReturn = urValidation.validate(v, form);
renameErrorMsgClass();
return validateReturn;
}

/**
* DoC pop-up window js – included in moScripts.js which is not included in responsive page
*/
$(“#inlineRegistration”).on(“click”,”a.consentWindow”, function(e) {
window.open(this.href, “Consent”, “width=500,height=600,scrollbars=1”);
e.preventDefault();
});

handiwork, such as their Active Directory group configuration.

You might inherit an Active Directory group strategy from an admin who didn’t think the process through, leaving you with a setup that doesn’t reflect the usage patterns of your users. Administrators who take the time to organize Active Directory organizational units and groups in a more coherent fashion will simplify their workload by making it easier to audit Active Directory identities and minimize the Active Directory attack surface.

Here are some practical tips and tricks to streamline your Active Directory (AD) administrator work and support your security compliance officers.

The traditional Active Directory design pattern

To start, always organize individual user accounts into groups. Avoid giving access permissions to individual user accounts because that approach does not scale.

Figure 1 shows Microsoft’s recommendation to organize Active Directory user accounts for resource access.

AGDLP model
Figure 1. Microsoft recommends the account, global, domain local, permission security model to organize Active Directory user accounts.

The account, global, domain local, permission (AGDLP) model uses the following workflow:

  • Organize users into global groups based on business criteria, such as department and location.
  • Place the appropriate global groups into domain local groups on resource servers based on similar resource access requirements.
  • Grant resource permissions to domain local groups only.

Note how this model uses two different scopes. Global groups organize AD users at the domain level, and domain local groups organize global groups at the access server level, such as a file server or a print server.

Employ role-based access control principles

Role-based access control (RBAC) grants access to groups based on job role. For example, consider network printer access:

  • Most users need only the ability to submit and manage their own print jobs.
  • Some users have delegated privileges to manage the entire print queue.
  • Select users have full administrative access to the printer’s hardware and software.

Microsoft helps with some of the planning work by prepopulating RBAC roles in Active Directory. For instance, installing the Domain Name Service role creates several sub-administrative groups in Active Directory.

[embedded content]

How to set up users and groups in Active Directory

Instead of relying on prebuilt groups, think about the user population and how to design global and domain local groups. Try to organize Active Directory global groups according to business rules and domain local groups based on access roles.

You might have global groups defined for each business unit at your organization, including IT, accounting, legal, manufacturing and human resources. You might also have domain local groups based on specific job tasks: print queue managers, print users, file access managers, file readers, database reporters and database developers.

When you organize Active Directory, the goals are to describe both the user population and their resource access requirements completely and accurately while you keep the number of global and domain local groups as small as possible to reduce the management workload.

Keep group nesting to a minimum if possible

You should keep group nesting to a minimum because it increases your administrative overhead and makes it more difficult to troubleshoot effective access. You should only populate global groups with individual Active Directory user accounts and only populate domain local groups with global groups.

effective access tab
Figure 2. The effective access tab displays the effective permissions for groups, users and device accounts.

The Windows Server and client operating systems have a feature called effective access, found in the advanced security settings dialog box in a file or folder’s properties sheet. You model effective access for a particular user, group or computer account from this location. But analyzing multiple folders with this feature doesn’t scale. You have to run it multiple times to analyze permissions.

In a multi-domain environment, nesting is unavoidable. Stick to single domain topologies when possible.

cross-domain resource access
Figure 3. A cross-domain resource access configuration in Active Directory offers more flexibility to the administrator.

I recommend the topology in Figure 3 because while global groups can contain Active Directory user accounts from their own domain only, you can add global groups to discretionary access control lists in any forest domain.

Here’s what’s happening in the topology in Figure 3:

  • A: Global groups represent marketing department employees in the contoso.com and corp.contoso.com domains.
  • B: We create a domain local group on our app server named Mktg App Access and populate it with both global groups.
  • C: We assign permissions on our line-of-business marketing app to the Mktg App Access domain local group.

When you need to organize Active Directory groups, develop a naming convention that makes sense to everyone on your team and stick to it.

You might wonder why there is no mention of universal groups. I avoid them because they slow down user logon times due to global catalog universal group membership lookups. Universal groups also make it easy to be sloppy during group creation and with resource access strategy.

How to design for the hybrid cloud

Microsoft offers Azure Active Directory for cloud identity services that you can synchronize with on-premises Active Directory user and group accounts, but Azure AD does not support organizational units. Azure AD uses a flat list of user and group accounts that works well for identity purposes.

With this structure in mind, proper user and group naming is paramount. You should also sufficiently populate Active Directory properties to make it easier to manage these accounts in the Azure cloud.

When you need to organize Active Directory groups, develop a naming convention that makes sense to everyone on your team and stick to it.

One common group naming pattern involves prefixes. For example, you might start all your global group names with GL_ and your domain local group names with DL_. If you use Exchange Server, then you will have distribution groups in addition to the AD security groups. In that instance, you could use the DI_ prefix.

FS: Intel 5820k CPU, MSI X99a mobo, 16gb (4x4gb) Corsair DDR4 & DDR 3 RAM, Asus Essence STX

I’m selling my Core i7-5820k (if you’re not familiar with Intel’s enthusiast range of CPUs, this doesn’t have an in-built GPU) with an MSI X99a SLI plus motherboard and 16gb (4x4gb) of Corsair Vengeance RAM (the RAM is a warranty replacement direct from Corsair and is still factory sealed). It’s been water-cooled since I got it in early 2016 and very lightly overclocked to run at 3.5ghz since then (which it did at very low temperatures). Looking for £300 all in, delivered. I’d…

FS: Intel 5820k CPU, MSI X99a mobo, 16gb (4x4gb) Corsair DDR4 & DDR 3 RAM, Asus Essence STX

For Sale – Intel NUC i3 – 6gb Ram – 120gb

I have decided to sell my Intel NUC DC3217BY due to lack of use.

If you’re not familiar with these, this is a fully featured Windows micro PC in a form factor no bigger than a typical android TV box.

It’s in excellent condition, still has the protective film on the top casing. Complete with original power supply, but sadly I no longer have the box it came in.

Specs:
Intel Core i3-3217u
6GB Ram
120gb MSATA
Windows 10 Pro x64

Here is a link to a review for more information:
Intel Next Unit of Computing (NUC – DC3217BY) Review

£125 posted.

Price and currency: £125
Delivery: Delivery cost is included within my country
Payment method: PPG or BT
Location: Towcester
Advertised elsewhere?: Not advertised elsewhere
Prefer goods collected?: I have no preference

______________________________________________________
This message is automatically inserted in all classifieds forum threads.
By replying to this thread you agree to abide by the trading rules detailed here.
Please be advised, all buyers and sellers should satisfy themselves that the other party is genuine by providing the following via private conversation to each other after negotiations are complete and prior to dispatching goods and making payment:

  • Landline telephone number. Make a call to check out the area code and number are correct, too
  • Name and address including postcode
  • Valid e-mail address

DO NOT proceed with a deal until you are completely satisfied with all details being correct. It’s in your best interest to check out these details yourself.