🔒 Patreon Special

IT Pros: exclusive shows await you on Patreon, focusing on the more challenging aspects of running your practice and working with clients and employees.

Join us on Patreon

321: Green Acres

/

Topics:

-Special thanks to Puelle Design in Portland, Maine for hosting Joe's mobile recording studio this week.

-Joe is in the Northeast! He is visiting family for some milestones before heading on the road again

-Jerry is in the midst of a move to a new home and new headquarters of MacWorks.  He calls it the reverse Green Acres.

-After having a car mishap, Jerry discovers CarPlay in his rental car

-A recurring theme for our show has been value based billing and, of course managed services plans.  Joe & Jerry share ideas about their formulas for monthly billing.  Ideas like billing per user or per device, preset hours per month, and services used are among the topics of discussion.

-Prepaid discounts are an enticing way for clients to buy in to ongoing services.  “Monthly check-ins” are also something that clients seem to be drawn to.

-Do you install Watchman Monitoring on client devices for free as a “loss leader” or break even point?  What happens if you end the relationship?

-Jerry has a couple of funny client anecdotes with his classic impersonations

-He also has his fair share of gripes

-Joe's client had an issue in Calendar on her Mac: "The server responded with an error. There is insufficient storage space for "event title" in "calendar name" in account "iCloud". The choices were Try Again, Ignore, or Revert to Server. He removed a calendar she didn't need that only had a few events on it, and it solved the problem. Then we added a few tests, and she seemed to hit the limit again. We then moved a calendar with a lot of events to a local On My Mac calendar for archival purposes, and instructed the client to move needed events back onto a calendar on the server. Hasn't happened since.
https://support.apple.com/en-us/HT202158

Thanks to our Patreon Sponsors!

Thanks to our Patreon Sponsors!

319: We All Have Some Value Based Billing In Our Soul

/

Topics:

-As much as we love Ubiquiti, Jerry has an axe to grind on this week’s show with regards to Cloud Keys

-Joe addresses the details of the issue based on his own experiences with Cloud Key power failures and the mongo database that Ubiquiti uses

-Specifically with the first generation Cloud Keys, Joe’s solution was to add power instead of relying on POE. This has been addressed with the newest generation, which now has a battery backup.
https://store.ui.com/products/unifi-cloudkey-gen2-plus

-Jerry doesn’t stop there. He has another saga dealing with a Ubiquiti install

-A strong case for an off-site controller that Richard Wingfield brought up is updating a singular controller as opposed to each cloud key at client sites 

-Circling back to value based billing, the crew reflects how they have already been using it in some respects and how to implement it properly in the future. As Jerry said, “We all have value based billing in our soul”. 

-Sam’s concern with this method is that there is no formula to calculate jobs

-Calculating monthly costs for monitoring & managing network devices leads us down the MSP path. How to bill appropriately? Do you require it? What’s not included? Questions that must be addressed when proposing services like this. 

317: Working On & Working In

/

Topics:

-Joe kicks off the show bringing up leisure time and time management 

-Working ON the business vs working IN the business

-A challenge for Sam is meeting interruptions that occur when clients reach out. Not just for him but for his staff

-Sam may be on the lookout for a new hire but does he look for an admin or a tech?

-The CCP crew are very appreciative of the collective audience and their feedback/advice

-“This is not for everyone”. Sam comes to the realization that running a business isn’t something everyone can handle. 

-A continual question for Sam is taking on Windows clients. 

-Joe explores marketing new services to current clients as a method of increasing revenue. For instance, offering Ubiquiti installations for clients in need of upgraded Wi-Fi. 

-QuickTime screen recording to the rescue for Sam as he tries to see a message that quickly disappears on his screen

-Joe has some follow up to how he sets up his clients with individual Ubiquiti UniFi controllers. While Sam is moving to a central controller, specific logins per client is something they agree on. 

-Cloud Key stability has plagued all of us. After some research, Joe has dug up information about the Mongo database and how it is prone to failure during a power loss. To combat this, Joe discusses his backup power plan for the Cloud Key. 

-After a recent discussion with Christopher Stout on Episode 311, Sam is looking to setup a closed system like UniFi, Synology Surveillance Station or Security Spy

-Sam learns some interesting details from a SonicWALL vendor about true throughput 

-Friend of the show, Weldon Dodd points out a great write up by Rich Trouton on his site, Derflounder. It’s an interesting piece about enabling Touch ID for sudo commands.

316: Wi-Fi On A Stick

/

Special Thanks To Our VIP Sponsors!

Topics:

wifistick.jpg

-Sam has a first run working with the ”Wi-Fi on a stick” method of mapping out Wi-Fi. He uses a product from wifistand.com and NetSpot to create a map":
https://wifistand.com

-Joe brings up a great tool called Magic Plan to create floor plans on iOS:
https://www.magicplan.app/en/

-The nanoHD is a particular Ubiquiti model that same used and likes to deploy

-Joe warns of things to be aware of when scouting out an environment for Wi-Fi

-Another new monthly service that Sam is offering is hosting a UniFi controller in his environment to manage firmware updates and alerts. Joe weighs the responsibilities that comes with such an offering.

-Joe throws Sam a curve ball explaining how he has a singular login for his clients

-Another issue in the long line of networking troubles that Sam has experienced: finding incompatibility between a SonicWall and WAN connection at a NYC client. The fix? A dumb switch!

-That story rings a bell for Joe who has a similar story to tell about a Zywall and WAN connection that turned out to be a multi pronged problem.

Thanks to our Patreon Sponsors!

Thanks to our Patreon Sponsors!

313: Addigy And More...

/

Topics:

-Joe has spent time recently dedicating his focus on Addigy and Watchman Monitoring and understanding how to best leverage those tools

-Scripts has been what Joe has been concentrating on and he has found a tremendous amount of help and support through the MacAdmins Slack and the Addigy community

- Joe created a script to help ensure your client's Mac fleet gets restarted regularly, according to the best practice you decide. Initial prompt to gently suggest a restart after a "recommended" uptime, default to do nothing if ignored. Second prompt when uptime reaches "preferred", defaulting to gracefully restart if ignored. Final prompt when uptime reaches "limit", defaulting to try a graceful restart and then try a forcible restart if needed. Default values: 7 days, 21 days, 75 days. "I prefer HyperCard"

- Joe's script, for Addigy users: Restart Mac per Best Practice gets approved while recording the show!

-Sam talks about the “Easy Button” he learned while working with Jamf. He likes the thought of empowering the users to have them complete step 0 before calling support.

-These conversations seem to always point to how it weaves into your managed services or hourly plans. And having clients wonder why they have you if things are working so well.

-Joe also created a couple of great scripts to work with Watchman Monitoring functionality:
— This script to easily "Adjust Watchman Monitoring Time Machine Warning", default 21 days. For those users who just can't seem to run a backup regularly whether by circumstance or habit. Previously used to connect remotely to adjust this, since it can't be changed remotely in the Monitoring Client web interface. Now we can deploy it remotely, even across multiple machines or an entire client!
—Another script to "Adjust Watchman Monitoring Root Capacity Warning", default 95%. For those users who perpetually, or periodically, ride the edge of Apple's recommended best practice and you want to give them a bit more leeway. Again, it can't be changed remotely in the Monitoring Client web interface and we used to have to connect remotely to adjust this.

-Jerry gets a call from a new client in a remote location and discovers a 2011 iMac that was fairly unresponsive. Jerry is tasked with the job of migrating to a new iMac. He sees an old version of TeamViewer on the computer and discovers a surprise!

-Jerry & Joe discuss an episode of the CYBER podcast - Snowden on iPhone: with Android, patching landscape is a disaster because manufacturers discontinue phones quickly and don't continue providing software updates, and because phone vendors don't control chipset updates like for WiFi and cellular chips. This leaves many older phones vulnerable but in many different ways so there's no simple exploit or "skeleton key" for all devices. This mitigates the kind of widespread attack that can be developed for iPhone, since so many iPhones are running the same versions of iOS and have the same chips and firmware running on the chips.

-A worrisome story about sharing sensitive data with others on Dropbox is shared by Joe. It leads him to think of a method of phishing or scamming end users: create phony Dropbox accounts, create shared folders, share some data with strangers "accidentally" in a folder with a generic name like “SECURE”. Listen as Joe talks about how he would set his trap.

-Dave Provine brought up the SS7 vulnerability in the MacAdmins Slack, which was originally demonstrated at the Chaos Communication Congress hacker conference in 2014 and made some news on 60 Minutes in April 2016. It exploits vulnerabilities in a system called Signaling System No 7 (SS7), originally developed in 1975. So it's not just SIM hijacking that makes SMS a weak link. By hacking SS7, an attacker could silently snoop on SMS text messages, phone calls, and access phone location data. Yikes!

-iOS 12.3 and macOS 10.14.5: wow they fixed a lot of security issues! "An application may be able to execute arbitrary code with system privileges" and "A malicious application may be able to read restricted memory" and "A malicious application may be able to elevate privileges" and "A local user may be able to modify protected parts of the file system" and "Processing maliciously crafted web content may lead to arbitrary code execution"

311: Interview With Chris Stout Of STOUT

/

Topics:

Interview with Chris Stout of STOUT

-Chris shares how he and Sam met at the Jamf Nation User Conference (hint: it involves a Command Control Power t-shirt)

-Chris has a great and unique domain at stout.computer.  He discusses acquiring that domain and some of the initial challenges with a different URL and email address

-Jerry is a fan of the site and the design

-Sam is curious about Chris’ business relationships in the field to grow his operation.  A reliable wiring person can go a long way

-Chris made the push to become a Jamf Integrator about a year and a half ago and tells our audience how that relationship works and how he uses it to help grow his business

-Moving to CA while his wife had worked lined up became the catalyst for him to be able to pursue becoming a Jamf Integrator

-A question Sam posed to the group: have you acquired a new client that had networking equipment you were not familiar with and if so, how do you handle it?

-A subject that Chris is familiar with is surveillance and IP cameras

-Chris backs a product called Security Spy, which is a Mac based product:

https://www.bensoftware.com/securityspy/

-The most common conversation that Chris has is comparing closed circuit camera systems like Security Spy or Surveillance Station to the simple cloud services like Nest or Canary

-Giving users the ability to maintain their own recordings and the ability to fully control who possesses the video is a big selling point

-When making camera solution suggestions, Chris is always looking to spec for growth

-Bringing it all home to managed services, Chris is looking to tie in his security offering to be included in an ongoing monthly management piece