Will create new project or opportunity ticket for this as there are several more computers that need to be replaced.
Atarah called back and said that the internet is working as it should.
Below is the information regarding home antivirus solutions:
After researching the nature of DFS and the way it works with Entra-native devices, the fix was to simply query an SMB share directly to spur Cloud Kerberos Trust in Entra to generate a TGT for the device. Then, DFS worked properly when connected to Twingate. The long-term solution here will be to change DFS over to SMB for Entra native devices. We can still use DFS to replicate between active/passive file servers and simply use a local DNS CNAME to "switch" between the two. This would be necessary due to the lack of true HA solutions. Without the above long-term solution implemented, DFS shares will eventually stop being accessible on a frequent basis for all employees working remotely for long periods.
Replaced the battery, but am still waiting for the laptop to replaced the screen. If the customer wants us to replaced the screen I will reopen the ticket.
After cloning and reinstalling Windows, we ensured the customer was able to access the server and printer.
Transferred files from the cloned backup to her computer onsite.
Enabled reCAPTCHA on the prayer request page on the church's public website via WordPress admin center to ensure spam requests no longer go through.
Reinstalled the Twingate ZTNA application. Then, troubleshooted an issue with the browser not opening automatically due to the Twingate background service not starting - this is because the customer's personal computer was very slow and unreliable. We then were able to sign in after closing Chrome and letting Twingate open it by itself. Finally, we adjusted the RDP file to allow multi-monitor support. Once logged in to the remote computer, we updated ProPresenter to major version 19 and restarted the application. Confirmed the user could use everything they needed successfully.
Upgraded the SSD and cloned the data over to it.
Reconnected to Twingate ZTNA on the customer's laptop. This re-enabled access to DFS and SMB shares.
Implemented DKIM for Liftkeeper to increase anti-impersonation measures in emails for the customer's domain. We then enabled a highly strict DMARC policy to ensure this was enforced. The customer is now maximally protected against email impersonation measures.
Revamped cloud and local infrastructure, followed by the deployment of Twingate ZTNA solution. An administrative (console) RDP file was configured with NLA disabled on the secured network. Subsequently, the customer was able to utilize RDP successfully.
This is best viewed as an opportunity, not as a ticket.
Closing ticket due to no response from customer. If customer decides to upgrade the computer, we will open a new ticket.