Cila nga makinat e kafese ne treg i bejne kafet "si ne Shqiperi" ?
Po shikoja kete:
Hello,
Anyone has come across their daily rate range? I wanted to engage as an associate auditor, but I want to make sure to make the right offer.
Their proposal is around 800€ per day, which seems a bit low to me.
I have created a tenant to migrate all my users from IMAP to m365. (also to the same existing domain which is yet to be verified before the cutover)
Possibly, due to the fact that the users were created more than 14 years ago, the MFA possibility has expired. I am getting a 0x80004136 error and when i check the sign in history, I see this for basically any possible way to sign in: OOBE, work/school account from Settings on a Windows computer... etc:
The user xxx was trying to sign into Microsoft Intune Company Portal and the sign-in was interrupted by Security Defaults. Microsoft Entra Security Defaults is a feature which helps keep your tenant secure by enforcing security best practices for your organization.
At the time of this sign-in, Security Defaults was enabled. The state of this policy as at the time of the diagnosis is Enabled.
This sign-in was interrupted since the user still needed to register for MFA. With Security Defaults, users have 14 days to register for Microsoft Entra multifactor authentication by using the Microsoft Authenticator app. The user cannot sign-in to applications until they have finished MFA registration once the 14 days have passed.
MFA helps keep your organization secure. Follow up with the user and encourage them to complete MFA registration.
See more information about the user's sign-in attempt below.
Is the only option disabling the security defaults at first log in for all users? I assume that all of the rest will have the problem during the switch over?
Disabling the security defaults would mean that MFA is not enforced anymore or will they be prompted anyway?
I have created a tenant to migrate all my users from IMAP to m365.
Possibly, due to the fact that the users were created more than 14 years ago, the MFA possibility has expired. I am getting a 0x80004136 error and when i check the sign in history, I see this for basically any possible way to sign in: OOBE, work/school account from Settings on a Windows computer... etc:
The user xxx was trying to sign into Microsoft Intune Company Portal and the sign-in was interrupted by Security Defaults. Microsoft Entra Security Defaults is a feature which helps keep your tenant secure by enforcing security best practices for your organization.
At the time of this sign-in, Security Defaults was enabled. The state of this policy as at the time of the diagnosis is Enabled.
This sign-in was interrupted since the user still needed to register for MFA. With Security Defaults, users have 14 days to register for Microsoft Entra multifactor authentication by using the Microsoft Authenticator app. The user cannot sign-in to applications until they have finished MFA registration once the 14 days have passed.
MFA helps keep your organization secure. Follow up with the user and encourage them to complete MFA registration.
See more information about the user's sign-in attempt below.
Is the only option disabling the security defaults at first log in for all users? I assume that all of the rest will have the problem during the switch over?
Disabling the security defaults would mean that MFA is not enforced anymore or will they be prompted anyway?
My brother has engineered a war against us.
I was raised to believe that as the youngest, it was my duty to care for our parents. I took it on genuinely, I thought it was a noble thing. It took me years to recognize the cost: severe compassion fatigue, deep wounds, and a slow erosion of my own life. When I finally found a way out, it felt like coming up for air.
Part of the original "deal" was that I'd inherit the family house in exchange for being the caretaker. My brother and his wife, both textbook narcissists spent years manipulating, gaslighting, and waging quiet war on everyone in the family. He's in conflict with literally every relative; the rest of us get along fine. By the end, I signed away my claim to the inheritance myself. Not because I wanted to, but because I was so depleted I just wanted out out of the fight, out of the contact, out of all of it. Also because he framed it as him taking over caretaker duty. He barely visits them.
Now the situation:
Three things I can't figure out:
I was raised to believe that as the youngest, it was my duty to care for our parents. I took it on genuinely, I thought it was a noble thing. It took me years to recognize the cost: severe compassion fatigue, deep wounds, and a slow erosion of my own life. When I finally found a way out, it felt like coming up for air.
Part of the original "deal" was that I'd inherit the family house in exchange for being the caretaker. My brother and his wife, both textbook narcissists spent years manipulating, gaslighting, and waging quiet war on everyone in the family. He's in conflict with literally every relative; the rest of us get along fine. By the end, I signed away my claim to the inheritance myself. Not because I wanted to, but because I was so depleted I just wanted out out of the fight, out of the contact, out of all of it. Also because he framed it as him taking over caretaker duty. He barely visits them.
Now the situation:
Three things I can't figure out:
TL;DR: Small NGO, Synology NAS, everyone shares one local account over SMB through OpenVPN. I want per-user identity (ideally Entra ID SSO) without taking drive letters away from non-technical users. Looking for the cleanest free/cheap architecture.
Current state
- Synology NAS, single shared local user, SMB shares
- OpenVPN on the Synology, port 1194 forwarded, dynamic DNS (ISP rotates IP every ~5 days)
- Users now are finally on M365 / Entra ID, managed via Intune
I am trying to achieve:
- Per-user authentication and audit on the NAS (no more shared account)
- SSO via Entra ID if possible
- Users still see a mapped drive (NAS_SERVER\ etc.) - they will not accept anything that looks like a web UI
What I've tried / considered:
- OpenVPN with username+password works for the tunnel, but the NAS auth underneath through SMB still needs username and password.
- Thought about pushing SAML SSO via Intune, but I still need something to mount the share
- some friends of mine suggested ditching SMB for S3/HTTP, which is architecturally cleaner but the "map the server" kind of approach by the users as requirement kills it
Replace OpenVPN with Tailscale (if i can get the free tier, Entra SSO, ACLs, no port forwarding, survives IP changes and CGNAT)
Join the Synology to Entra ID (or LDAP-sync users) so each person has their own NAS account
Push a mapped-drive script via Intune so users still get Z:\
Anyone running this Tailscale + Entra-synced Synology + Intune-mapped-drive combo in production? Gotchas?
- Better alternatives I'm missing?
- Is there a sane way to do Entra SSO directly to SMB shares on Synology, or am I always going to need an LDAP/AD bridge?
Users of a NGO (that are not techies) are migrating from IMAP to M365.
I did a test with one of the users who explicitely refuses to use Microsoft Authenticator (and that is allowed by the director) but instead wants to use SMS.
- i disabled registration campaign
- made sure SMS is enabled as mfa option
Signed them out of all sessions, re-required mfa setup, but i can only see the Microsoft Authenticator screen.
This is for a first time ever login.
The only thing that seemed to do the trick is me manually adding their phone numbers on Entra.
Could somebody support what am I missing?
Hello,
I would like to advise proton pass to a ngo as password manager. I was wondering does protonpass support auto provisioning / deprovisioning from hris systems, active directory or ldaps?
Psh ti thush ndonjerit me zinxhir te trashe ne qafe: "pse pshtyve ne toke, merr fshije tashi" ose "ngri cik kte plehren qe e hodhe ne mes te rruges"🤔
Hello berliners,
I have seen these kind of posts on Immobilienscout:
Müggelheim (Köpenick) | Mietkauf+ | StV 134m² | EBK + Garage | keine Stromkosten durch Solar
I was wondering how legit they are and why do they seem "cheap" ?
Does anybody have any experience with this kind of services?
My understanding is that an amount of your "miete" would go into the eventual purchase of the house/apartment? How does it actually work?
Looking for some help from the community 🙏
I am looking to break into becoming a CISO, with all the stress, challenges, perks and growth opportunities that comes with it. I genuinly think I am ready. I talk middle management language, I can sit in a room with DevOps for 3 to 4 hours, I have led and hosted audits with VP level individuals. Have confidently responded to audits as an interviewee in multiple occasions. Yet, I remain in operational roles as information security consultant/expert/specialist/coordinator, while i strongly believe that I could be much more valuable at strategic levels.
Here is my background:
CISSP-certified cybersecurity leader based in Western Europe (Luxemburg, Netherlands, Belgium, France or Germany).
15+ years of experience spanning GRC, security operations, cloud security and IT infrastructure.
Certifications: CISSP (ISC2), ISO 27001 Lead Implementer (PECB), ISO 27001 Lead Auditor, SOC Analyst
Languages: French (native), English (fluent), German (B1)
EXPERIENCE
----------
[2024–Present] Information Security Manager
Pharma SaaS company (regulated cloud product), Remote/Hybrid Germany, france, Italy, Netherlands and Belgium
- Led end-to-end SOC2 type I and type II attestation, owning the full compliance lifecycle from scoping and control design through Big 4 auditor engagement and successful attestation
- Defined Target Operating Model (TOM) for cloud security compliance
- Authored security policies, procedures and controls aligned to BSI C5, NIS2 and ISO 27001
- Served as strategic interface between executive and technical stakeholders across multiple geographies
- Coordinated global cross-functional delivery teams (IT, Risk, Manufacturing, Security)
[2023–2024] Technical Security Consultant / Enterprise Systems Security Administrator
Freelance — Critical infrastructure and financial sector clients, Germany & Belgium
- SIEM integration and configuration (Microsoft Sentinel, Splunk) for critical infrastructure
- Managed Azure and Microsoft 365 security; deployed XDR solutions
- ISO 27001 internal reviews and gap assessments
- DORA resilience implementation for financial sector clients
- Security product evaluation and selection
- Security awareness training and phishing simulation programmes
[2022–2023] Information Security Engineer / IT Operations Engineer
Digital SaaS company (~500 employees), Berlin
- Adversarial simulations and phishing campaigns; assessed effectiveness of countermeasures
- Incident response; tuned SIEM detection rules and playbooks
- DevSecOps collaboration: integrated security controls into SDLC
- Security policies and controls authored to regulatory standards
[2021–2022] IT Systems Administrator — Network & Security
Dating/social platform (~300 employees), Berlin
- Hardened Linux environments; managed PostgreSQL, Apache/NGINX
- Configured Juniper SRX and Palo Alto NGFW firewalls; enforced network access policies
- AWS cloud workloads (EC2, EBS, VPC, S3, FSx); applied cloud security controls
- Virtualisation (VMware vSphere, Hyper-V)
[2009–2021] Information Technology Expert
Consultant — Various major European organisations (EU institutions, telecom operators, financial sector)
- On-site provisioning administrator and 2nd-line technical support at two major national telecom
operators (2011–2013): service provisioning workflows, escalated technical issue resolution
- Network segmentation (VLANs, DMZ, firewall ACLs), RBAC in LDAP/Active Directory
- Policy drafting, asset inventory, risk management framework participation (as auditee)
- ICT support at EU institutions, including VIP-level technical resolution
SKILLS
------
Frameworks: ISO 27001/27002, NIS2, BSI C5, DORA, GDPR, EU CRA, NIST CSF
Security Operations: SIEM (Sentinel, Splunk, Kibana), XDR, Threat Detection, Incident Response
Cloud: Azure Security, M365 Security, AWS Security, IAM
Infrastructure: Linux, VMware, Docker, Kubernetes, Terraform, Python
Leadership: Security Transformation, TOM Design, Global Delivery, Stakeholder Management
WHAT I AM LOOKING FOR / CONTEXT FOR FEEDBACK
---------------------------------------------
I have been applying to CISO and Director of Information Security roles in Europe
(primarily Germany, Belgium, Switzerland) without success so far. I hold CISSP,
ISO 27001 Lead Implementer and Lead Auditor, and have recently completed a full
scale SOC2 type I and type II attestation as well as have end to end certified three health tech / fintech clients with ISO27001.
I have interim CISO experience but no formal CISO title on my CV.
My questions for the community:
Is my profile realistic for CISO roles?
My background has moved between consulting, freelance and FTE roles — does that fragmentation hurt my candidacy?
Education: I do not hold a university degree. Is that a hard blocker at CISO level in Europe?
Any other gaps or red flags you see that I might be blind to?
Honest and critical feedback very welcome.
I was raised to believe that as the youngest, it was my duty to care for our parents. I took it on genuinely, I thought it was a noble thing. It took me years to recognize the cost: severe compassion fatigue, deep wounds, and a slow erosion of my own life. When I finally found a way out, it felt like coming up for air.
Part of the original "deal" was that I'd inherit the family house in exchange for being the caretaker. My brother and his wife, both textbook narcissists spent years manipulating, gaslighting, and waging quiet war on everyone in the family. He's in conflict with literally every relative; the rest of us get along fine. By the end, I signed away my claim to the inheritance myself. Not because I wanted to, but because I was so depleted I just wanted out out of the fight, out of the contact, out of all of it. Also because he framed it as him taking over caretaker duty. He barely visits them.
Now the situation:
Three things I can't figure out:
!!! VINI RE
Ky post është shrku anglisht nga nji njohje që është rrit jashtë shteti, pjesë e një abuzimi nëse muj me thanë "kolektiv" dhe pjesë e një "kulti" shqiptar në diasporë që hala jetojnë si në mesjetë. Tuj e pa situatën n'cilën o dhe tu e dit që me siguri kemi përvoja si njerëz, do doja t'ju kërkoja këshillën tuj sipas përvojave - edhe qysh me dal nga kjo situate?
I was raised to believe that as the youngest, it was my duty to care for our parents. I took it on genuinely, I thought it was a noble thing. It took me years to recognize the cost: severe compassion fatigue, deep wounds, and a slow erosion of my own life. When I finally found a way out, it felt like coming up for air.
Part of the original "deal" was that I'd inherit the family house in exchange for being the caretaker. My brother and his wife, both textbook narcissists spent years manipulating, gaslighting, and waging quiet war on everyone in the family. He's in conflict with literally every relative; the rest of us get along fine. By the end, I signed away my claim to the inheritance myself. Not because I wanted to, but because I was so depleted I just wanted out out of the fight, out of the contact, out of all of it. Also because he framed it as him taking over caretaker duty. He barely visits them.
Now the situation:
Three things I can't figure out:
Has anyone navigated something like this? Specifically the housing piece. I feel completely stuck.
I was raised to believe that as the youngest, it was my duty to care for our parents. I took it on genuinely, I thought it was a noble thing. It took me years to recognize the cost: severe compassion fatigue, deep wounds, and a slow erosion of my own life. When I finally found a way out, it felt like coming up for air.
Part of the original "deal" was that I'd inherit the family house in exchange for being the caretaker. My brother and his wife, both textbook narcissists spent years manipulating, gaslighting, and waging quiet war on everyone in the family. He's in conflict with literally every relative; the rest of us get along fine. By the end, I signed away my claim to the inheritance myself. Not because I wanted to, but because I was so depleted I just wanted out out of the fight, out of the contact, out of all of it. Also because he framed it as him taking over caretaker duty. He barely visits them.
Now the situation:
Three things I can't figure out:
Has anyone navigated something like this? Specifically the housing piece. I feel completely stuck.
Hello community,
I have launched migration batches from IMAP to m365 and it is working smoothly. For the moment in .onmicrosoft.com temporary domain.
Next friday I plan to cutover to the new domain.
The problem is, I have to deal with difficult users who have no idea how to setup MFA nor even install the Office apps.
Meaning, they will completely rely on me to setup everything.
I will of course create a how to, a video tutorial with a complete walkthrough and hopefully they will at least manage to setup a happy flow alone. I was planning to tell them to use the OWA until everything is properly setup.
Could somebody give me a recommendation? Dos and donts?
Many thanks!
That's it.
I am facing some exhausting days, so it makes guilt-tripping on being permissive about screen time even more... On top of it, I just realize how agressive the unskippable ads have become...
Therefore, I need your support on getting responsible, ethical european alternatives that are reuglated and controlled strictly.
Amazon Prime - to?
Disney+ - to?
Youtube/ Kids - to?
Netflix - to?
Also, if the alternatives are weak: anyone has some interesting "alternative" heroes except superficial, uneducative content that is usually found on these platforms?
I feel like like they are being heavily braindumped with the same characters and patterns all the time. Is there no "cartoon" that is a minimum educative nowadays? Or am I just becoming old and grumpy and find that everything creative is beco,ing a less-effort construct made for mass consumption for a society that only wants to consume reels.
I know that they are plenty alternatives out there, but specifically for kids in the EU?
A small business of around 20 users have made the decision to migrate their mailboxes to m365.
I have used the m365 built in migration batch nad has been going pretty ok.
I have some issues purely from a project management perspective.
So everyone using the same shared passwords etc.
Well, with m365 - that is not gonna be the way - and for the better.
I was wondering, what would be the typical way to go about it in terms of permissions in this case and to protect an audit trail when sending emails?
- give full ownership to one spoc (power user) or the exec director with all other as "members" with "send as" permissions or given the size and the "old" way of doing things just add them all as owners?
Is there a way to by default deyning everybody from creating teams channels except the group admin in a clean way?
Are ther any other considerations in this respect?
I have created specific groups for Staff, Directors, Members, Project Managers... typical tree.
