Best Practices in Workgroup Maintenance?

← Back to Stories (view on slashdot.org)

Best Practices in Workgroup Maintenance?

Posted by Cliff on Wednesday July 6, 2005 @12:14PM from the efforts-in-tedium-reduction dept.

option8 asks: "As the sysadmin for a smallish workgroup (15 or so users) I'm constantly wrestling to balance a regular maintenance regime with the users' continued productivity. As it is, I strive to keep my regular maintenance to a minimum -- optimizing drives, checking for directory and file corruption, permissions repairs, clearing logs, software updates -- after hours, on weekends, or whenever someone goes on vacation. I have a lot of stuff scripted - backups and whatnot go off every night - but there's a lot that requires at least a minimum of my 'monkey clicks the Okay button now' attention. Is this the best way, or do the other BOFHs out there have a better solution to regularly scheduled maintenance for the workgroups/labs/studios they oversee?"

10 of 43 comments (clear)

Min score:

Reason:

Sort:

Simple. by Anonymous Coward · 2005-07-06 12:17 · Score: 4, Funny

One whip, one master, 14 slaves. "Code, ye dogs!"
Remote Desktop and Weekends by cdwiegand · 2005-07-06 12:19 · Score: 5, Interesting

I get to take off time early sometimes because I often Remote Desktop to the windows machines (and ssh to the linux ones) to do upgrades/auditing/etc. on Sundays. I don't do that every Sunday, but at least once a month, usually twice a month. So my boss is a little flexible when it comes to coming in at 9, leaving at 5:30, etc.. But without Remote Desktop, I'd have to either a) come in the office, or b) use VNC (which sucks). I have a 12-desktop/9-server setup, so I'm around the same size site as the OP.

--
. Define sqrt(x) as something really evil like (x / rand()), and bury it deep. Watch your coworkers go nuts.
1. Re:Remote Desktop and Weekends by TripMaster+Monkey · 2005-07-06 12:25 · Score: 3, Insightful
  
  I use DameWare myself...glad I was able to talk the boss into it. System administration without DameWare would be a real drag...yes, everything you can do with DameWare can be done with the regular Windows software (Remote Desktop, etc.), but DameWare makes things much more centralized and easily accesable. Bottom line: I'd highly reccomend it.
  
  --
  ____
  ~ |rip/\/\aster /\/\onkey
um by ReverendRyan · 2005-07-06 12:31 · Score: 3, Funny

It seems to me that a good BOFH wouldn't worry about little things like regular maintenance. Or any maintenance. Or users, for that matter. In fact, why do you even go into work, except to delete files?
UltraVNC. AutoIt. OpenVPN. by Futurepower(R) · 2005-07-06 12:37 · Score: 3, Informative

I've found that UltraVNC is the best VNC. Version 1.0.0 was released on 24 Jun 2005, but it is a quite advanced package. Be sure to install UltraVNC with the video driver, which is not included on Sourceforge.

AutoIt is by far the best open source software for automating Windows installs and other tasks in which the program pretends to be a user. There's an IDE with an Intellisense-like interface and a compiler.

I've heard that OpenVPN is the best software-based VPN, but I have not used it. There are hardware firewalls with VPNs; I suggest you stay away from Netgear's, which I have found to be quirky.

--
Bush lied, 100,000 died. J.C. said not to return violence with more violence.
a pound of prevention, vs. a ton of maintenance by tverbeek · 2005-07-06 14:18 · Score: 3, Interesting

I manage about 300 college classroom/lab computers, but I don't really have much "maintenance" for them. Of course shortly before each semester begins, I go around and wipe every hard drive down to the boot sector, and reload pre-configured software images. But not much in between. I do have work-study student employees for "monkey clicks OK" type stuff, but since they rarely actually do what I ask them to do, so that doesn't really count.
Most of my efforts are preventative, putting a lot of thought and fine-tuning into the base software images, to harden them against user abuse and malware, and to automate security patches and definition updates as much as possible. For the Windows machines that's Symantec Anti-Virus with daily updates, Spybot S&D with full Immunization, and MS's auto-critical-updates.

I've found Apple Remote Desktop to be very handy for occasional maintenance on the Macs, such as OS updates and security patches.

For the Windows machines, I usually wait for users to complain about spyware before I wipe them and reload a clean image, rather than doing it on a regular basis during the semester. Mostly that's because the profs don't teach their students good backup habits, and I'm not BOFH enough to go around teaching them painful lessons about not keeping the only copies of their work on the hard drive. Yet. I'm still new on staff, so I'm building up my goodwill reserve before I start doing that.

--
http://alternatives.rzero.com/
Scripting to the rescue!! by chota · 2005-07-06 14:26 · Score: 4, Informative
Seriously, you can do everything you've hinted to with VBScript.

I recommend:
The Microsoft ScriptCenter has just launched a new monthly column regarding beginning scripting in Windows; it's called Sesame Script. (The scripting guys are a little geeky.)
- Sesame Script
Also, point your favorite nntp client at msnews.microsoft.com and do a search for wsh, script, etc, and subscribe and ask! The newsgroups are full of helpful folks!

Remember the motto: If it has to be done more than once, script it!

PS, to get a script to emulate a monkey pressing ok, have it loop, watching for a dialog box of whatever name it will be, then activate that dialog (WScript.AppActivate) and then send an "Enter" keystroke (WScript.SendKeys). Good example is here:
- WScript.AppActivate Method
Take all of this good advice... by jannesha · 2005-07-06 15:35 · Score: 3

...only, remember:

Use this advice to save yourself time, but don't tell your boss about it. Keep him thinking that you do it all on Sundays, and continue to take the extra time off.

Since you seem to actually care about Things Being Done Properly, you deserve it
lazy admin is good admin by outcast36 · 2005-07-07 00:40 · Score: 3, Insightful

I wanted to reiterate how important scripting is for your sanity. Be sure to check out the resource kits that come with each OS & IIS. These have lots of command-line scripts that lend themselves to some time-saving admin scripting fun.

--
Technology Consulting & Free Downloads
If You're Using Windows.... by Doc+Squidly · 2005-07-07 07:12 · Score: 4, Informative

...then 10 systems is about the max for workgroups.

If you plan to grow any larger I'd recommend moving to a Domain instead of a Workgroup. This would give you centralized administration, give you the ability to remotely publish software updates to you systems and the ability to control all your systems via Group Policies.

This will be a hard sell to you boss but, try to provide a detailed cost/benifit analyse looking at the manpower that currently is wasted by having maintain each system seperately and scaleability issues.

If that doesn't work you can still create local policies on each computer to prevent problems.

Good Luck

--
I think I think, therefore I think I am.