Feb. 11th, 2012

jecook: (Default)
[personal profile] jecook
I guess what I hate most about my job (AD/Exchange/Backup/COAT* Administrator for a company of ~1400 users/3000 employees) is not the support folks throwing stuff over the fence at me, not departments pulling the 'oh, we need to contact HR to finalize an employee transfer before you'll re-provision their account entitlements, even though we did this weeks ago?' card**, not even the legitimate problems (such as the PDCE domain controller becoming increasingly stupid until I moved it to freshly resurrected server***).

What I hate the most of when groups of users are moved. Such as when a group of five users are moved from one organizational unit to another, with little or notice to the IT group. Especially when said five users are taking up more space on the SAN then the entire department they are moving to. Oh, and world+dog still needs access to their files (but refuse to say WHAT FILES). Oh, AND they absolutely, POSITIVELY REFUSE to use the interdepartmental share that's designed for such nonsense, even AFTER we've told them about it. Multiple times. And then have shit kittens when half their stuff disappears because their workstation decided to cache their files locally (despite the corporate group policy stating otherwise****) instead of using the SAN's ~1 TB or so of storage*****.

Plus, this is not the first time this group has been moved, and since they have upwards of half a TB of crap, I said 'fuck it!' and put them into their own damn group. It's not perfect, but if the rumors of them getting moved again are true, then it'll be less work for me to move them around.

So, what's the nastiest user horror story ya'll have run into?

* Cat of All Trades - generally, I'm generally the poor bastard that gets pestered first before the other senior network administrators, only because of my time in the place and knowledge of almost every system in use.

** I blame the lack of a solid process that's enforced with an iron spike covered fist for these debacles. At least I'm on good terms with the HR staffer that handles all these changes- she's a bit of a dragon when provoked.

*** At one point, we had it from one of the top support engineers at M$ that one could virtualize all the domain controller in an AD forest. We found out about two weeks ago during a risk assessment profile that we paid for that this was not the case. My best guess is that was the straw that broke the cat's back, as the domain controller in question went pear shaped the day after the assessment was finished. Fortunately, I had not pulled the old, out-of-warranty physical domain controllers out of the rack, so a little techno-necromancy later and we have a temporary DC running as the FSMO and nothing BUT the FSMO until we get a brand new pizza box in.

**** I blame the support group for dumping their machine or user account into the "excluded from ALL GROUP POLICIES" group which is supposed to be used for troubleshooting a group policy problem to begin with, which has the effect of breaking stuff on the local machine, which, oh by the way, violates a couple regulatory controls that are part of the compact which allows us to exist. Gawds, I love tribal gaming!

***** At least, until the snapshots for said SAN ran the thing out of space overnight; thank BOG the next morning was our monthly change window, and I came into the business being at a DEAD HALT because the support tech didn't bother calling us in a panic like he should have, and our automated systems don't scream in that manner (yet). That was a FUN morning.


techrecovery: (Default)
Elitist Computer Nerd Posse

April 2017

91011121314 15

Most Popular Tags

Style Credit

Expand Cut Tags

No cut tags
Page generated Sep. 23rd, 2017 01:00 pm
Powered by Dreamwidth Studios