metadata
tags:
- sentence-transformers
- sentence-similarity
- feature-extraction
- dense
- generated_from_trainer
- dataset_size:679
- loss:MultipleNegativesRankingLoss
base_model: Alibaba-NLP/gte-modernbert-base
widget:
- source_sentence: >-
Instruct: Identify solution for the email
Query: Hi IT team,
We're in the Denver office and are currently configured with a static
public IP: 4.8.253.30, subnet 255.255.255.252, gateway 4.8.253.29. DNS
servers are 8.8.8.8 and 1.1.1.1. We’re experiencing intermittent
connectivity to corporate resources and VPN. Could you please verify that
this static IP assignment is correctly provisioned on the edge device,
review the firewall/NAT rules, and confirm there are no ISP-side changes
affecting this circuit? If you need us to run any tests from the site,
please advise. Also, please confirm who the Authorized Contacts are for
this site and whether any changes are required in the contract with Lumen.
Thanks
sentences:
- >-
If the Mac SSO Extension is failing to renew the token for a user, an
error message similar to the one below will appear with the error
message "Something went wrong. \[4s7ch\]".
Follow the steps below to resolve this issue.
[{.confluence-embedded-image
.image-center width="524"}]{.confluence-embedded-file-wrapper
.image-center-wrapper .confluence-embedded-manual-size}
1. Login to Entra/AD and navigate to the impacted user.
2. Make note of their object ID.
[{.confluence-embedded-image
.image-center width="465"}]{.confluence-embedded-file-wrapper
.image-center-wrapper .confluence-embedded-manual-size}
3. Open Keychain Access on the device with the error.
4. In the Login keychain, search for primary and navigate to an item
called "primaryrefreshtoken-..."
5. Search for the primaryrefreshtoken that has the account that matches
the object ID you noted from Entra.
[{.confluence-embedded-image
.image-center width="760"}]{.confluence-embedded-file-wrapper
.image-center-wrapper .confluence-embedded-manual-size}
6. Delete the primaryrefreshtoken that matches
7. Close and reopen the application the user was attempting to sign
into and you should be prompted to authenticate as expected.
### If you continue to experience issues with the SSO Extension giving
an error after removing the primaryrefreshtoken, follow the steps below:
{#MacSSOExtensionFailingtoRenewToken(Somethingwentwrong)-IfyoucontinuetoexperienceissueswiththeSSOExtensiongivinganerrorafterremovingtheprimaryrefreshtoken,followthestepsbelow:}
1. Open Keychain Access \> click Keychain Access in the menu bar \>
click Settings \> click Reset Default Keychains.
1. This is completely blow away all sign in tokens for all applications
on the Mac. It is important to communicate this to the user first.
2. Enter the login password for the Mac to finish creating a new
keychain
3. Reboot the Mac
4. Follow the steps in this article to setup passkey again on the Mac
[https://sitesandservices.atlassian.net/wiki/spaces/IT/pages/4690968609/Mac+only+Local+password+reset#Resetting-Mac-Passkey-(P-SSO)](https://sitesandservices.atlassian.net/wiki/spaces/IT/pages/4690968609/Mac+only+Local+password+reset#Resetting-Mac-Passkey-(P-SSO)){card-appearance="inline"
rel="nofollow"}
1. Once passkey is setup again, return to this article
5. Attempt to sign into Teams, Outlook, or Office suite again. SSO
Extension should prompt for sign in again.
6. If successful, sign into all other Microsoft apps including Teams,
Outlook, Office suite, and Edge browser
- >-
Check if Installomator supports the App you want to install by checking
this link:
[Installomator/Labels.txt](https://github.com/Installomator/Installomator/blob/main/Labels.txt){.external-link
rel="nofollow"}
The label is also used when configuring the App Update and App Install
policies, so it is helpful to keep this link open while creating the
policies.
Prior to starting this process, it is helpful to have the application
downloaded already so that the icon can be retrieved from the
application to upload to Jamf Pro.
Documentation for that process:
[Exporting app icon for use in
Jamf](https://sitesandservices.atlassian.net/wiki/spaces/IT/pages/4294934712/Exporting+app+icon+for+use+in+Jamf){linked-resource-id="4294934712"
linked-resource-version="1" linked-resource-type="page"}
There is a Separate Process for Creating Apps that have Native Jamf
Patch Management.
::: {#expander-5443223 .expand-container}
::: {#expander-control-5443223 .expand-control}
[{.expand-control-image
style="vertical-align:middle;"}]{.expand-control-icon}[Has a Jamf Patch
Management ]{.expand-control-text}
:::
::: {#expander-content-5443223 .expand-content}
If the App has a Jamf Patchment Software Title, we can use this to known
when Apps require updating. We can then use a SmartGroup looking at out
of date software to run the Update
## **Add the App to Patch Management**
{#Jamf/Installomator:ConfiguringApplications-AddtheApptoPatchManagement}
1. Navigate to Computers \> Patch Management \> Search for Software
Title in search bar
2. Click + button on desired software
## **Smart Groups**
{#Jamf/Installomator:ConfiguringApplications-SmartGroups}
We need 3 Smart Groups:
1. Display Name: %Name%\_Installed
1. Click Edit, then click Add
2. Criteria is \"Application Title\", Operator is \"is\", Value is
\"%Name%\"
3. After entering the name of the application, click the \"\...\"
button next to the field
4. Click Choose
5. Click Save
2. Display Name: %Name%\_Out of Date
1. Click Edit, click Add, then click Show Advanced Criteria
2. Scroll to Patch Reporting Software Title, click Choose
3. Criteria is \"Patch Reporting: %Name%\", Operator is \"is not\",
Value is \"Latest Version\"
4. Click Save
3. Display Name: %Name%\_Member_Out of Date
1. Click Edit, then click Add
2. Criteria is \"Computer Group\", Operator is \"member of\", Value is
\"%Name%\_Out of Date\"
3. Click Save
## **Policies** {#Jamf/Installomator:ConfiguringApplications-Policies}
Three policies are needed.
- **%Name%\_Install_Installomator** for the initial install
- **%Name%\_Update_Installomator_Self_Service** for updating manually
through Self Service.
- **%Name%\_Update_Installomator** for updating automatically.
### **Configure App Install - %Name%\_Install_Installomator**
{#Jamf/Installomator:ConfiguringApplications-ConfigureAppInstall-%Name%_Install_Installomator}
1. Navigate to Computers \> Policies
2. Click New
3. Click Options header and complete the following steps:
1. Click General
1. Set Display Name to %Name%\_Install_Installomator
2. Set Execution Frequency: Ongoing
2. Click Scripts
1. Click Configure
2. Scroll to Installomator, [Please
See](https://sitesandservices.atlassian.net/wiki/spaces/IT/pages/4594892814/Installomator+Scripts){linked-resource-id="4594892814"
linked-resource-version="12" linked-resource-type="page"} then click Add
3. Set Application Name as it is listed in
[https://github.com/Installomator/Installomator/blob/main/Labels.txt](https://github.com/Installomator/Installomator/blob/main/Labels.txt){.external-link
card-appearance="inline" rel="nofollow"}
4. In Parameter 5, type \"INSTALL=force flag\".
5. Set the Priority to Before
3. Click Maintenance
1. Click Configure
2. Verify that \"Update Inventory\" is checked
4. Click Scope tab and complete the following steps:
1. Click Targets
1. Set Target Computers to All Computers
2. Set Target Users to All Users
2. Click Exclusions
1. Add group %Name%\_Member_of_Out_of_Date
5. Click Self Service tab and complete the following steps:
1. Check the box for "Make the Policy Available in Self Service"
2. Set Self Service Display Name to %Name%
3. Set Description to %Name%
4. Upload Icon (if possible)
1. Click Upload Icon
2. Click Choose File
3. Navigate to file path where %Name% Icon is saved from [Exporting app
icon for use in
Jamf](https://sitesandservices.atlassian.net/wiki/spaces/IT/pages/4294934712/Exporting+app+icon+for+use+in+Jamf){linked-resource-id="4294934712"
linked-resource-version="1" linked-resource-type="page"}
4. Click Upload
5. Click Save
### **Configure App Update Through Self Service -
%Name%\_Update_Installomator_Self_Service**
{#Jamf/Installomator:ConfiguringApplications-ConfigureAppUpdateThroughSelfService-%Name%_Update_Installomator_Self_Service}
1. Navigate to Computers \> Policies
2. Click New
3. In the Options tab complete the following steps:
1. Click General
1. Set Display Name to: %Name%\_Update_Installomator_Self_Service
2. Ensure Execution Frequency is set to Ongoing
3. Ensure the Category is set to "Updates"
2. Click Scripts
1. Click Configure
2. Scroll to Installomator, [Please
See](https://sitesandservices.atlassian.net/wiki/spaces/IT/pages/4594892814/Installomator+Scripts){linked-resource-id="4594892814"
linked-resource-version="12" linked-resource-type="page"} then click Add
3. Set Application Name as it is listed in
[https://github.com/Installomator/Installomator/blob/main/Labels.txt](https://github.com/Installomator/Installomator/blob/main/Labels.txt){.external-link
card-appearance="inline" rel="nofollow"}
4. Set the Priority to Before.
3. Click Maintenance
1. Click Configure
2. Verify that \"Update Inventory\" is checked
4. In the Scope tab complete the following steps:
1. Click Targets
2. Change Target Computers from All Computers to Specific Computers
3. Change Target Users from All Users to Specific Users
4. Click Add
5. Click Computer Groups
6. Navigate to %Name%\_Member_Out of Date, click Add
5. In the Self Service tab complete the following steps:
1. Check the box for "Make the Policy Available in Self Service"
2. Set Self Service Display Name to %Name%
3. Set Description to %Name%
4. Set Button Name Before Initiation to \"Update\"
5. Set Button Name After Initiation to \"Update\"
6. Check the box for Display Notifications for the Policy
1. Set location to Self Service and Notification Center
2. Set subject to %Name% Update Available
3. Set message to There is an update for %Name%, please update to stay
on the latest version.
7. Click Select Existing Icon
8. Click Icon
9. Click Make Selection
10. Click Save
11. If prompted, choose Notify All
12. Click Save
### **Configure App to Update Automatically While Closed -
%Name%\_Update_Installomator**
{#Jamf/Installomator:ConfiguringApplications-ConfigureApptoUpdateAutomaticallyWhileClosed-%Name%_Update_Installomator}
1. Navigate to Computers \> Policies
2. Click New
3. In the Options tab complete the following steps:
1. Click General
1. Set Display Name to: %Name%\_Update_Installomator
2. Set trigger to Recurring Check-in
3. Set execution frequency to "Once every day"
2. Click Scripts
1. Click Configure
2. Scroll to Installomator, [Please
See](https://sitesandservices.atlassian.net/wiki/spaces/IT/pages/4594892814/Installomator+Scripts){linked-resource-id="4594892814"
linked-resource-version="12" linked-resource-type="page"} then click Add
3. Set Priority to Before
4. Set Application Name as it is listed in
[https://github.com/Installomator/Installomator/blob/main/Labels.txt](https://github.com/Installomator/Installomator/blob/main/Labels.txt){.external-link
card-appearance="inline" rel="nofollow"}
5. Set Parameter 5 to \"BLOCKING_PROCESS_ACTION=silent_fail\"
6. Set Parameter 6 to "NOTIFY=silent"
3. Click Maintenance
1. Click Configure
2. Ensure Update Inventory is checked
4. In the Scope tab complete the following steps:
1. Click the Targets tab and set the following settings:
1. Change Target Computers from All Computers to Specific Computers
2. Change Target Users from All Users to Specific Users
3. Click Add
4. Click Computer Groups
5. Navigate to %Name%\_Member_Out of Date, click Add
5. In the Self Service tab complete the following steps:
1. Ensure \"Make the policy available in Self Service\" is unchecked
2. Click Save
:::
:::
::: {#expander-320509342 .expand-container}
::: {#expander-control-320509342 .expand-control}
[{.expand-control-image
style="vertical-align:middle;"}]{.expand-control-icon}[Does not have
Jamf Patch Management]{.expand-control-text}
:::
::: {#expander-content-320509342 .expand-content}
If the App does not have a Parchment Management Software Title in Jamf
then we must ensure that the Installomator label makes use of the
`appNewVersion` attribute. You will need to check the Fragment from the
installomator github page
[https://github.com/Installomator/Installomator/tree/main/fragments/labels](https://github.com/Installomator/Installomator/tree/main/fragments/labels){.external-link
card-appearance="inline" rel="nofollow"}
This is because without one, Installomator will need to download the App
everytime to check the version. If theres an App that doesnt use the
appNewVersion, we will either need to create a custom installomator with
one, use title editor or use manual packaging.
## **Smart Groups**
{#Jamf/Installomator:ConfiguringApplications-SmartGroups.1}
We need a Smart Group for App installed:
1. Display Name: %Name%\_Installed
1. Click Edit, then click Add
2. Criteria is \"Application Title\", Operator is \"is\", Value is
\"%Name%\"
3. After entering the name of the application, click the \"\...\"
button next to the field
4. Click Choose
5. Click Save
## **Policies** {#Jamf/Installomator:ConfiguringApplications-Policies.1}
2 policies are needed.
- **%Name%\_Install_Installomator** for the initial install
- **%Name%\_Update_Installomator** for updating automatically.
### **Configure App Install - %Name%\_Install_Installomator**
{#Jamf/Installomator:ConfiguringApplications-ConfigureAppInstall-%Name%_Install_Installomator.1}
1. Navigate to Computers \> Policies
2. Click New
3. Click Options header and complete the following steps:
1. Click General
1. Set Display Name to %Name%\_Install_Installomator
2. Set Execution Frequency: Ongoing
2. Click Scripts
1. Click Configure
2. Scroll to Installomator, [Please
See](https://sitesandservices.atlassian.net/wiki/spaces/IT/pages/4594892814/Installomator+Scripts){linked-resource-id="4594892814"
linked-resource-version="12" linked-resource-type="page"} then click Add
3. Set Application Name as it is listed in
[https://github.com/Installomator/Installomator/blob/main/Labels.txt](https://github.com/Installomator/Installomator/blob/main/Labels.txt){.external-link
card-appearance="inline" rel="nofollow"}
4. In Parameter 5, type \"INSTALL=force flag\".
5. Set the Priority to Before
3. Click Maintenance
1. Click Configure
2. Verify that \"Update Inventory\" is checked
4. Click Scope tab and complete the following steps:
1. Click Targets
1. Set Target Computers to All Computers
2. Set Target Users to All Users
5. Click Self Service tab and complete the following steps:
1. Check the box for "Make the Policy Available in Self Service"
2. Set Self Service Display Name to %Name%
3. Set the Self Service Install button to "Install" and the Reinstall
button to "Update"
4. Set Description to %Name%
5. Upload Icon (if possible)
1. Click Upload Icon
2. Click Choose File
3. Navigate to file path where %Name% Icon is saved from [Exporting app
icon for use in
Jamf](https://sitesandservices.atlassian.net/wiki/spaces/IT/pages/4294934712/Exporting+app+icon+for+use+in+Jamf){linked-resource-id="4294934712"
linked-resource-version="1" linked-resource-type="page"}
4. Click Upload
5. Click Save
### **Configure App to Update Automatically While Closed -
%Name%\_Update_Installomator**
{#Jamf/Installomator:ConfiguringApplications-ConfigureApptoUpdateAutomaticallyWhileClosed-%Name%_Update_Installomator.1}
1. Navigate to Computers \> Policies
2. Click New
3. In the Options tab complete the following steps:
1. Click General
1. Set Display Name to: %Name%\_Update_Installomator
2. Set trigger to Recurring Check-in
3. Set execution frequency to "Once every day"
2. Click Scripts
1. Click Configure
2. Scroll to Installomator, [Please
See](https://sitesandservices.atlassian.net/wiki/spaces/IT/pages/4594892814/Installomator+Scripts){linked-resource-id="4594892814"
linked-resource-version="12" linked-resource-type="page"} then click Add
3. Set Priority to Before
4. Set Application Name as it is listed in
[https://github.com/Installomator/Installomator/blob/main/Labels.txt](https://github.com/Installomator/Installomator/blob/main/Labels.txt){.external-link
card-appearance="inline" rel="nofollow"}
5. Set Parameter 5 to \"BLOCKING_PROCESS_ACTION=silent_fail\"
6. Set Parameter 6 to "NOTIFY=silent"
3. Click Maintenance
1. Click Configure
2. Ensure Update Inventory is checked
4. In the Scope tab complete the following steps:
1. Click the Targets tab and set the following settings:
1. Change Target Computers from All Computers to Specific Computers
2. Change Target Users from All Users to Specific Users
3. Click Add
4. Click Computer Groups
5. Navigate to %Name%\_Installed, click Add
5. In the Self Service tab complete the following steps:
1. Ensure \"Make the policy available in Self Service\" is unchecked
2. Click Save
:::
:::
- >-
::: table-wrap
+-------------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| Location/Office |
Denver
|
+-------------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| Static or DHCP | -
[Static]{.placeholder-inline-tasks}
|
| | -
[DHCP]{.placeholder-inline-tasks}
|
+-------------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| Public IP |
4.8.253.30
|
+-------------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| Subnet Mask |
255.255.255.252
|
+-------------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| Gateway |
4.8.253.29
|
+-------------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| Additional IP/Address Block in CIDR
|
|
+-------------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| DNS Servers |
8.8.8.8
|
|
|
|
| |
1.1.1.1
|
+-------------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| Advertised Speed |
500/500
|
+-------------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| ISP Name |
Lumen
|
+-------------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| ISP Contact |
[https://passwords-glondon.msappproxy.net/index.php/pwd/view/4489](https://passwords-glondon.msappproxy.net/index.php/pwd/view/4489){.external-link
rel="nofollow"} |
+-------------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| Authorized Contacts
|
|
+-------------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| Contract Information |
3-year
|
+-------------------------------------+---------------------------------------------------------------------------------------------------------------------------------------------------------------------+
:::
- source_sentence: >-
Instruct: Identify solution for the email
Query: Hi IT team,
I forgot my Mac login password and can't sign in to my account. I
understand from the password reset policy that resets are not performed
and identity must be verified, with escalation to IT leadership. I don't
currently have a Passkey device. Could you please advise on the next steps
or escalate my case to leadership? I'm able to provide my employee ID and
HR-approved ID verification information if needed; I can also come to the
office to verify identity in person if required. Any guidance on identity
verification options would be appreciated.
Thanks,
Alex
sentences:
- >-
If a person reaches out to Help Desk to reset their password or passkey,
follow the actions below. The goal is to confirm identity before
proceeding. It is possible an attacker could compromise a user\'s
personal email in order to reach out to us to have us reset the password
or add an MFA device for them. We must verify user identity before
making any changes.
## Entra Password Reset
{#MFA,PasskeyandPasswordResetprocedures-EntraPasswordReset}
As of 2025, there will no more password resets as standard practice. If
someone needs a password reset, escalate to IT leadership. DO NOT RESET
PASSWORDS.
## Mac only: Local password reset
{#MFA,PasskeyandPasswordResetprocedures-Maconly:Localpasswordreset}
Mac Local password changes will require a Passkey(Phone or FIDO) if this
isn't available please follow MFA: Does not have Computer or phone
[Unable to Login to Mac or Forgotten Mac
Password](https://sitesandservices.atlassian.net/wiki/spaces/IT/pages/4690968609/Unable+to+Login+to+Mac+or+Forgotten+Mac+Password){linked-resource-id="4690968609"
linked-resource-version="11" linked-resource-type="page"}
## Does not have computer or phone
{#MFA,PasskeyandPasswordResetprocedures-Doesnothavecomputerorphone}
DO NOT MAKE CHANGES. Regardless of how urgent the situation seems,
**escalate to IT leadership**.
If the person claims to be Mark Lethbridge and it's an emergency,
great... call IT leadership mobile phones over and over until someone
answers.
**[Attackers always make it "an emergency" ]{colorid="brky8ktto6"}**so
you don't have time to follow procedure. Don't fall for it.
IT leadership must verify identity with one of the options below because
it is too easy to AI-generate voice and video. We simply cannot trust
that any inbound digital communication is real.
1. Verify social security number, national insurance number or another
national ID number with HR
1. HR confirms they have a national ID number for all employees and
contractors.
2. Have the person connect directly with HR to provide the information,
and HR can confirm with IT that it is correct.
2. Meet in person
1. Contact HR for help. Usually, an employee lives near another
employee.
2. If we can contact one known-safe employee and ask them to meet the
other employee at an office, a coffee shop, etc. and verify, then that
is sufficient to issue a TAP.
3. Use a notary
1. If there is no practical way to have people meet in person, notaries
are available virtually everywhere.
2. The form is here: [MFA or TAP identity verification
form.pdf](https://glondon.sharepoint.com/:b:/r/sites/Group_IT/Shared%20Documents/Data%20Security/MFA%20or%20TAP%20identity%20verification%20form.pdf?csf=1&web=1&e=Yi4Bqz){.external-link
rel="nofollow"}
4. Verify through HR leadership
1. While much more risky, there may be situations where an HR team
member (Director-level or higher) may request reset on behalf of a user.
While we must verify the identity of the HR team member making the
request, and we should inform them of risks, this counts as acceptable
verification in an emergency.
## Has computer, doesn't have phone
{#MFA,PasskeyandPasswordResetprocedures-Hascomputer,doesn’thavephone}
If a person is unable to access their passkey device, due to it be being
lost, stolen, broken, left at home, bought a new phone, etc...
1. Have them follow the add/remove procedures themselves from their
computer.
1. As of 2025, all computers have passkeys built in: use Windows Hello
for Business, PIN, fingerprint or face.
2. They should be able to go to
[start.gravityglobal.com](http://start.gravityglobal.com){.external-link
rel="nofollow"}, click their photo \> View Account, and go to Security
Info to add/remove MFA devices from that computer.
## Has phone, doesn't have computer
{#MFA,PasskeyandPasswordResetprocedures-Hasphone,doesn’thavecomputer}
In the case of a new computer, we should know that they have a new
computer (obviously). Follow new computer setup steps.
In the case of logging into a personal computer, the user must use
cross-device authentication to log in with their mobile device's passkey
(or Yubikey, for some people).
## Bitlocker Recovery Key: Has phone and computer
{#MFA,PasskeyandPasswordResetprocedures-BitlockerRecoveryKey:Hasphoneandcomputer}
Sometimes, people lock themselves out of their computers by doing
something odd like entering a password too many times, and Windows wants
the recovery key to unlock.
1. Try to ensure they have their phone and can sign in to something,
like the Gravity Start Page
1. Even for users who don't have passkeys set up on their phone, they
should have a Yubikey that works on anything, including mobile browser.
There are very few exceptions.
2. If you can see sign ins in their sign in log, from their phone, to
whatever you asked them to sign into, it's probably really them.
1. Give them the computer recovery key to unlock the machine.
2. Since they can't actually log into the machine without
biometrics/PIN, the ways this could be bad are very few.
- >-
::: table-wrap
+-----------------------------------+---------------------------------------------------------------------------+
|
|
|
+-----------------------------------+---------------------------------------------------------------------------+
| Name
|
|
+-----------------------------------+---------------------------------------------------------------------------+
| Location
|
|
+-----------------------------------+---------------------------------------------------------------------------+
| FreshService Asset Link
|
|
+-----------------------------------+---------------------------------------------------------------------------+
| OS
|
|
+-----------------------------------+---------------------------------------------------------------------------+
| CPU
|
|
+-----------------------------------+---------------------------------------------------------------------------+
| RAM
|
|
+-----------------------------------+---------------------------------------------------------------------------+
| Purpose
|
|
+-----------------------------------+---------------------------------------------------------------------------+
| Owner
|
|
+-----------------------------------+---------------------------------------------------------------------------+
| Department
|
|
+-----------------------------------+---------------------------------------------------------------------------+
| IP Address
|
|
+-----------------------------------+---------------------------------------------------------------------------+
| Serial Number
|
|
+-----------------------------------+---------------------------------------------------------------------------+
| Make and Model
|
|
+-----------------------------------+---------------------------------------------------------------------------+
| Login details: TPM Link
|
|
+-----------------------------------+---------------------------------------------------------------------------+
| IPMI Information
|
|
+-----------------------------------+---------------------------------------------------------------------------+
| Support Information
|
|
+-----------------------------------+---------------------------------------------------------------------------+
| Table of Contents | ::: {.toc-macro
.rbtoc1758184819916} |
| | - [📕 Description of
Use](#seo-aws-screamingfrog-DescriptionofUse) |
| | - [Procedures for
use](#seo-aws-screamingfrog-Proceduresforuse) |
| | - [💸 Purchase
Information](#seo-aws-screamingfrog-PurchaseInformation) |
| | - [Known
Issues](#seo-aws-screamingfrog-KnownIssues) |
| |
:::
|
+-----------------------------------+---------------------------------------------------------------------------+
:::
## {.emoticon
.emoticon-blue-star emoji-id="1f4d5" emoji-shortname=":closed_book:"
emoji-fallback="📕" width="16" height="16" emoticon-name="blue-star"}
Description of Use {#seo-aws-screamingfrog-DescriptionofUse}
## Procedures for use {#seo-aws-screamingfrog-Proceduresforuse}
## {.emoticon
.emoticon-blue-star emoji-id="1f4b8"
emoji-shortname=":money_with_wings:" emoji-fallback="💸" width="16"
height="16" emoticon-name="blue-star"} Purchase Information
{#seo-aws-screamingfrog-PurchaseInformation}
## Known Issues {#seo-aws-screamingfrog-KnownIssues}
::: table-wrap
----------- ----------------
**Issue** **Resolution**
----------- ----------------
:::
- >-
Device compliance is a set of rules that devices must meet to be
considered complaint. When not compliant they are restricted in what
they can access and may be prevent from signing in.
::: plugin_pagetree
:::
## Excluding from compliance policy
{#DeviceCompliance-Excludingfromcompliancepolicy}
If you need to exclude someone temporarily because compliance isn't
working, or because they are a senior person who can't immediately
update their computer and it's an emergency, add the user to the group:
**Users_Device_Compliance_Excluded**
- source_sentence: >-
Instruct: Identify solution for the email
Query: What is the known issue with Self Updater breaking PatchMyPC
installs for VSCode, and what are the recommended workarounds?
sentences:
- >-
The official policy is here. Update if any timelines change: [Data
Deletion Schedules
(sharepoint.com)](https://glondon.sharepoint.com/sites/ITSupport/SitePages/Data-Deletion-Schedules.aspx){.external-link
rel="nofollow"}
This doc explains what controls each piece of retention. Note that all
items in SharePoint, OneDrive and Exchange are backed up for two years
for disaster recovery, so anything should be recoverable for two years
from the time it was made inactive. (See notes at bottom of this doc)
Most of the retention policies are set in the Purview (Compliance)
portal under Data Lifecycle Management \> Retention Policies.
Here is an excellent flowchart on how these policies work: [Flowchart to
determine when an item is retained or deleted \| Microsoft
Learn](https://learn.microsoft.com/en-us/purview/retention-flowchart){.external-link
rel="nofollow"}
[{.confluence-embedded-image
.image-center width="760"}]{.confluence-embedded-file-wrapper
.image-center-wrapper .confluence-embedded-manual-size}
## OneDrive {#Employeedataretention-OneDrive}
Once the manager approves account deletion, it's gone. (After the brief
recovery period)
See "Shared mailboxes" below for the task on finding people where
managers haven't responded to deletion requests.
## Exchange {#Employeedataretention-Exchange}
- **Active mailboxes: "Active Mailboxes Default" policy**
- Keeps content for one year and then does nothing.
- This means everything will be kept for at least one year, no matter
what.
- **Active mailboxes, Deleted Items folder**
- The default Messaging Records Management (MRM) policy is under
Purview (Compliance) portal under Data Lifecycle Management \> Exchange
(legacy)
- [Default Retention Policy in Exchange Online \| Microsoft
Learn](https://learn.microsoft.com/en-us/exchange/security-and-compliance/messaging-records-management/default-retention-policy){.external-link
rel="nofollow"}
- The "Deleted Items" tag is included in this default policy. It
applies to Deleted Items, and it deletes (which is a second deletion,
i.e. permanent deletion) after one year.
- This is necessary because people don't purge their deleted items,
and the folder continues to grow forever.
- **Shared mailboxes**
- Shared mailboxes are just active mailboxes.
- We have a task every year to pull a list of all mailboxes that have
been shared for an excessive amount of time so we can confirm that they
can be removed.
- This also catches issues with OneDrive and user accounts being kept
too long.
- **Inactive Mailboxes: "Inactive Mailboxes" policy**
- Adaptive scope filters this to only inactive mailboxes.
- Mailboxes are kept for two years and then nothing happens.
- We manually exclude mailboxes from the retention policy, and then
they can finally delete.
- [Learn about retention policies & labels to retain or delete \|
Microsoft
Learn](https://learn.microsoft.com/en-us/purview/retention?tabs=table-overriden#retention-policies-and-retention-labels){.external-link
rel="nofollow"}
- [Learn about inactive mailboxes \| Microsoft
Learn](https://learn.microsoft.com/en-us/purview/inactive-mailboxes-in-office-365#what-are-inactive-mailboxes){.external-link
rel="nofollow"}
- [Inactive Mailbox Deletion Procedure - IT Services -
Confluence](https://sitesandservices.atlassian.net/wiki/spaces/IT/pages/5265719404/Inactive+Mailbox+Deletion+Procedure){linked-resource-id="5265719404"
linked-resource-version="2" linked-resource-type="page"}
## Notes on Disaster Recovery
{#Employeedataretention-NotesonDisasterRecovery}
**My questions:**
1. Is it possible to request deletion of particular backups? In other
words, if I sent in a ticket \"please delete all backups before (date)
for User ABC\" \-- is that doable?
```{=html}
<!-- -->
```
2. Does the backup always include Purges and Discovery holds? In our
test restore a few weeks ago, those folders were included.
The reason I ask item 2 is because it affects the total length of time
items are stored. If purges ARE backed up, then a purged item would be
stored in our system for one year due to our retention policy, and then
the BaaS system would keep that backup for two more years, effectively
keeping all items for an absolute minimum of three years.
[Folder Exclusions - Veeam Backup for Microsoft 365
Guide](https://helpcenter.veeam.com/docs/vbo365/guide/vbo_excluding_folder.html?ver=70){.external-link
rel="nofollow"}
**Per Ark Data Centers (formerly Involta):**
Your backups are NOT immutable -- it is possible for us to manually go
in via powershell and remove certain data. This isnt a normal request
and I think i\'ve done it maybe one time in the last year, but its
something we can do :)
The only thing im excluding from backup are:\
Junk\
Sync Issues\
In-Place hold items.
The rest we are backing up.
- >-
::: table-wrap
+----------------------+-----------------------------------------+
| **Application Name** | Visual Studio Code |
+----------------------+-----------------------------------------+
| **Description** | |
+----------------------+-----------------------------------------+
| **Owner** | |
+----------------------+-----------------------------------------+
| **Requester** | |
+----------------------+-----------------------------------------+
| **Service** | |
+----------------------+-----------------------------------------+
| **On this page** | ::: {.toc-macro .rbtoc1758184812055} |
| | - [🚪 Access](#VSCode-Access) |
| | - [Known Issues](#VSCode-KnownIssues) |
| | ::: |
+----------------------+-----------------------------------------+
:::
## {.emoticon
.emoticon-blue-star emoji-id="1f6aa" emoji-shortname=":door:"
emoji-fallback="🚪" width="16" height="16" emoticon-name="blue-star"}
Access {#VSCode-Access}
Installed via PatchMyPC for Windows and Self Service on Mac
## {.emoticon
.emoticon-broken-heart emoji-id="1f494" emoji-shortname=":broken_heart:"
emoji-fallback="💔" width="16" height="16" emoticon-name="broken-heart"}
Known Issues {#VSCode-KnownIssues}
::: table-wrap
+-------------------------------------------------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| **Issue** |
**Details**
|
+-------------------------------------------------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
| Self Updater breaks the Patch My PC Install (Windows) | If the Self
updater runs before the daily PatchMyPC it breaks the install but
updates it enough that PatchMyPC thinks it upto date. The work around is
to prevent the app from Self Updating. |
|
|
|
| | There is a
Post Install Script that does this but the user can re-enable
it.
|
+-------------------------------------------------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
|
|
|
+-------------------------------------------------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------+
:::
- stub for JR
- source_sentence: |-
Instruct: Identify solution for the email
Query: How to enable WSL and Virtual Machine Platform on Windows
sentences:
- >-
Allows users/developers to run a Linux terminal environment directly on
Windows.
- Install both "Windows Subsystem for Linux" and "Ubuntu" from Company
Portal.
- Enable "WSL" and "Virtual Machine Platform" in "Turn Windows
Features on or off".
- Reboot.
- >-
The Azure VPN allows IT to connect to our private Azure vnet, which
currently only has a couple of servers, and to the London office to
access Synergist until that system can be turned off.
**IT:**
Users have to be authorized in the \"Azure VPN\" enterprise app. Then,
they can install Azure VPN desktop program and connect using the base
profile attached here (the one NOT labeled \"finance\"): [Password:
Azure VPN configuration file \| TeamPasswordManager
(msappproxy.net)](https://passwords-glondon.msappproxy.net/index.php/pwd/view/637){.external-link
rel="nofollow"}
**Finance:**
Users must be authorized for the \"Finance VPN\" enterprise app. The
profile is stored in the same location as above, but with \"finance\" in
the name.
**Azure VPN desktop program:**
These apps are available in Self Service(under your user sign-in) and
Company Portal.
- Windows:
[https://learn.microsoft.com/en-us/azure/vpn-gateway/openvpn-azure-ad-client](https://learn.microsoft.com/en-us/azure/vpn-gateway/openvpn-azure-ad-client){.external-link
card-appearance="inline" rel="nofollow"}
- Mac:
[https://learn.microsoft.com/en-us/azure/vpn-gateway/openvpn-azure-ad-client-mac](https://learn.microsoft.com/en-us/azure/vpn-gateway/openvpn-azure-ad-client-mac){.external-link
card-appearance="inline" rel="nofollow"}
- "Remote in to the\_**Management Computer to access Brivo system:**\n\nTPM:\n\n[**Houston Security Card Access**](https://passwords-glondon.msappproxy.net/index.php/pwd/view/1600){.external-link rel=\"nofollow\"}\n\nOpen a browser\n\n[{.confluence-embedded-image .confluence-external-resource .image-center width=\"250\" image-src=\"https://eucattachment.freshservice.com/inline/attachment?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpZCI6NTEwMjYyNzY0MjUsImRvbWFpbiI6ImdyYXZpdHlnbG9iYWwtZXUuZnJlc2hzZXJ2aWNlLmNvbSIsInR5cGUiOjF9.TxWGOydSkiLyQZ-QqQzpwzuDv1QJD1D1aQEws-0enT4\" loading=\"lazy\"}]{.confluence-embedded-file-wrapper .image-center-wrapper .confluence-embedded-manual-size}\n\nOn the Dashboard, select**\_Users**\n\n[{.confluence-embedded-image .confluence-external-resource .image-center width=\"250\" image-src=\"https://eucattachment.freshservice.com/inline/attachment?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpZCI6NTEwMjYyNzY0MjYsImRvbWFpbiI6ImdyYXZpdHlnbG9iYWwtZXUuZnJlc2hzZXJ2aWNlLmNvbSIsInR5cGUiOjF9.IGGPDlnX-AMjjiKlsbr4sDq0-WVg85VsXfzVSJE4R4g\" loading=\"lazy\"}]{.confluence-embedded-file-wrapper .image-center-wrapper .confluence-embedded-manual-size}\n\nFrom the dropdown, select\_**Users**\_if you need to create a new user or\_**Cards**\_if you have the card ID\n\n[{.confluence-embedded-image .confluence-external-resource .image-center width=\"250\" image-src=\"https://eucattachment.freshservice.com/inline/attachment?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpZCI6NTEwMjYyNzY0MjcsImRvbWFpbiI6ImdyYXZpdHlnbG9iYWwtZXUuZnJlc2hzZXJ2aWNlLmNvbSIsInR5cGUiOjF9.jrUr90ULJpLR3-2NJYci-BCoMqPI7AfhypUMtBX6OWE\" loading=\"lazy\"}]{.confluence-embedded-file-wrapper .image-center-wrapper .confluence-embedded-manual-size}\n\n- **When adding a card ID**, search for the ID, select and edit. Add user\\'s First Name and Last Name and select available group to add to In Groups, then save.\n\n[{.confluence-embedded-image .confluence-external-resource .image-center width=\"250\" image-src=\"https://eucattachment.freshservice.com/inline/attachment?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpZCI6NTEwMjYyNzY0MzAsImRvbWFpbiI6ImdyYXZpdHlnbG9iYWwtZXUuZnJlc2hzZXJ2aWNlLmNvbSIsInR5cGUiOjF9.AK8546ZCCx861bcgCHsEqrd_XzcAYL0HSdQ3DrR7d6M\" loading=\"lazy\"}]{.confluence-embedded-file-wrapper .image-center-wrapper .confluence-embedded-manual-size}\n\n[{.confluence-embedded-image .confluence-external-resource .image-center width=\"250\" image-src=\"https://eucattachment.freshservice.com/inline/attachment?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpZCI6NTEwMjYyNzY0MjksImRvbWFpbiI6ImdyYXZpdHlnbG9iYWwtZXUuZnJlc2hzZXJ2aWNlLmNvbSIsInR5cGUiOjF9.66Io1j3qqyU_JsHsvVX2keZyxA6hoNwz8qeuEpLJQKU\" loading=\"lazy\"}]{.confluence-embedded-file-wrapper .image-center-wrapper .confluence-embedded-manual-size}[{.confluence-embedded-image .confluence-external-resource .image-center width=\"250\" image-src=\"https://eucattachment.freshservice.com/inline/attachment?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpZCI6NTEwMjYyNzY0MzEsImRvbWFpbiI6ImdyYXZpdHlnbG9iYWwtZXUuZnJlc2hzZXJ2aWNlLmNvbSIsInR5cGUiOjF9.C7Y3UeDvB9oUBkjGndh7kCEpWtGt0TpuJd_bg2oB0yc\" loading=\"lazy\"}]{.confluence-embedded-file-wrapper .image-center-wrapper .confluence-embedded-manual-size}\n\n- **When creating a user**, select\_**Create New User\_**\n\n[{.confluence-embedded-image .confluence-external-resource .image-center width=\"250\" image-src=\"https://eucattachment.freshservice.com/inline/attachment?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpZCI6NTEwMjYyNzY0MzIsImRvbWFpbiI6ImdyYXZpdHlnbG9iYWwtZXUuZnJlc2hzZXJ2aWNlLmNvbSIsInR5cGUiOjF9.RgQm8ntY92mNmZQ19Pgjr-S6N36Qbddbp5RcT_GF9ss\" loading=\"lazy\"}]{.confluence-embedded-file-wrapper .image-center-wrapper .confluence-embedded-manual-size}\n\nAdd the user\\'s First Name and Last Name and card ID. Select from Available groups to add to In Groups, then save.\n\n[{.confluence-embedded-image .confluence-external-resource .image-center width=\"250\" image-src=\"https://eucattachment.freshservice.com/inline/attachment?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpZCI6NTEwMjYyNzY0MzMsImRvbWFpbiI6ImdyYXZpdHlnbG9iYWwtZXUuZnJlc2hzZXJ2aWNlLmNvbSIsInR5cGUiOjF9.aySMpTif3kSke1LoKOLhAi-A2Ceq1_9nwzo_QPkKLeQ\" loading=\"lazy\"}]{.confluence-embedded-file-wrapper .image-center-wrapper .confluence-embedded-manual-size}\n\nTo Edit or Remove a user:\n\nUnder the User Tab, select user and search for user using last name in the search field\n\n[{.confluence-embedded-image .confluence-external-resource .image-center width=\"250\" image-src=\"https://eucattachment.freshservice.com/inline/attachment?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpZCI6NTEwMjYyNzY0MjgsImRvbWFpbiI6ImdyYXZpdHlnbG9iYWwtZXUuZnJlc2hzZXJ2aWNlLmNvbSIsInR5cGUiOjF9.-DfNzURmEYDzt0iLKnHltmNhJ8velkPRwfGh3uBx2mg\" loading=\"lazy\"}]{.confluence-embedded-file-wrapper .image-center-wrapper .confluence-embedded-manual-size}\n\n[{.confluence-embedded-image .confluence-external-resource .image-center width=\"250\" image-src=\"https://eucattachment.freshservice.com/inline/attachment?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpZCI6NTEwMjYyNzY0MzUsImRvbWFpbiI6ImdyYXZpdHlnbG9iYWwtZXUuZnJlc2hzZXJ2aWNlLmNvbSIsInR5cGUiOjF9.n9CdHFdehhhjqy7dp4d5H5DZlrWuAGx58NQU_hqXWTI\" loading=\"lazy\"}]{.confluence-embedded-file-wrapper .image-center-wrapper .confluence-embedded-manual-size}\n\n- Select user and click\_**edit**\_if you are just making edits to the card ID or removing from In Groups\n\n[{.confluence-embedded-image .confluence-external-resource .image-center width=\"250\" image-src=\"https://eucattachment.freshservice.com/inline/attachment?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpZCI6NTEwMjYyNzY0MzQsImRvbWFpbiI6ImdyYXZpdHlnbG9iYWwtZXUuZnJlc2hzZXJ2aWNlLmNvbSIsInR5cGUiOjF9._XzgYBmdnidPuBh_xO2Xwj1-vF5KQrSELdEZc_2uH_U\" loading=\"lazy\"}]{.confluence-embedded-file-wrapper .image-center-wrapper .confluence-embedded-manual-size}\n\n- Select\_**Delete**\_if you are deleting the user fully\n\n[{.confluence-embedded-image .confluence-external-resource .image-center width=\"250\" image-src=\"https://eucattachment.freshservice.com/inline/attachment?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpZCI6NTEwMjYyNzY0MzYsImRvbWFpbiI6ImdyYXZpdHlnbG9iYWwtZXUuZnJlc2hzZXJ2aWNlLmNvbSIsInR5cGUiOjF9.Q-8aDXixgXejxx4c8-rgdT8IpGJWX7kZtYXUTOX-PEE\" loading=\"lazy\"}]{.confluence-embedded-file-wrapper .image-center-wrapper .confluence-embedded-manual-size}"
- source_sentence: |-
Instruct: Identify solution for the email
Query: How to grant Placer.ai access via Entra group App_PlacerAI
sentences:
- >-
::: table-wrap
+----------------------+-----------------------------------------------------+
| **Application Name** |
Placer.ai |
+----------------------+-----------------------------------------------------+
| **Description** | Media
tool |
+----------------------+-----------------------------------------------------+
| **Owner** | Lou
Roberts |
+----------------------+-----------------------------------------------------+
| **Requester**
| |
+----------------------+-----------------------------------------------------+
| **Service**
| |
+----------------------+-----------------------------------------------------+
| **On this page** | ::: {.toc-macro
.rbtoc1758184816272} |
| | - [🚪
Access](#Placer.AI-Access) |
| | - [🧑🤝🧑 User
Management](#Placer.AI-UserManagement) |
| | - [Known
Issues](#Placer.AI-KnownIssues) |
| |
::: |
+----------------------+-----------------------------------------------------+
:::
## {.emoticon
.emoticon-blue-star emoji-id="1f6aa" emoji-shortname=":door:"
emoji-fallback="🚪" width="16" height="16" emoticon-name="blue-star"}
Access {#Placer.AI-Access}
Add user to App_PlacerAI group in Entra.
There are no licensing limits, so you can add anyone from Media or
related departments who requests access. If questions, ask the app owner
above.
## {.emoticon
.emoticon-blue-star emoji-id="1f9d1-200d-1f91d-200d-1f9d1"
emoji-shortname=":people_holding_hands:" emoji-fallback="🧑🤝🧑"
width="16" height="16" emoticon-name="blue-star"} User Management
{#Placer.AI-UserManagement}
::: table-wrap
-------------- -------------------------------------------------------------------
**Action** **Function**
Add_User Add user to group and have them sign in. It has JIT provisioning.
Remove_User Manual via portal
Disable_User Remove from App_PlacerAI group
-------------- -------------------------------------------------------------------
:::
## {.emoticon
.emoticon-broken-heart emoji-id="1f494" emoji-shortname=":broken_heart:"
emoji-fallback="💔" width="16" height="16" emoticon-name="broken-heart"}
Known Issues {#Placer.AI-KnownIssues}
::: table-wrap
----------- -------------
**Issue** **Details**
----------- -------------
:::
- |-
::: plugin_pagetree
:::
- >-
## **Computer Setup** {#CreatingaUSBdrivewithOSDCloud-ComputerSetup}
> NOTE: Your machine needs to be able to write unencrypted files to a
USB drive. If your computer is not already in
Device_USB_Encryption_Exclusion, add it.
On the machine that will create the USB drive:
Install Windows 11 24H2 ADK:
[https://go.microsoft.com/fwlink/?linkid=2289980](https://go.microsoft.com/fwlink/?linkid=2289980){.external-link
rel="nofollow"}
- Install locally when prompted - we want to install on this machine
- You can accept all the defaults when installing
Install Windows PE add-on:
[https://go.microsoft.com/fwlink/?linkid=2289981](https://go.microsoft.com/fwlink/?linkid=2289981){.external-link
rel="nofollow"}
- There are no settings, so you can click Next to install.
## **Configuring a USB drive with OSD Cloud**
{#CreatingaUSBdrivewithOSDCloud-ConfiguringaUSBdrivewithOSDCloud}
1. Copy this script on a PC:
[https://glondon.sharepoint.com/:u:/r/sites/Group_IT/Shared%20Documents/General/OSDCloud/OSDCloud%20Automated%20USB%20with%20User%20Prompt.ps1?csf=1&web=1&e=6FRniH](https://glondon.sharepoint.com/:u:/r/sites/Group_IT/Shared%20Documents/General/OSDCloud/OSDCloud%20Automated%20USB%20with%20User%20Prompt.ps1?csf=1&web=1&e=6FRniH){.external-link
card-appearance="inline" rel="nofollow"}
::: {.confluence-information-macro
.confluence-information-macro-information}
[]{.aui-icon .aui-icon-small .aui-iconfont-info
.confluence-information-macro-icon}
::: confluence-information-macro-body
It's stored in the team "Gravity -- Group IT" so use your Gravity Global
account to access the link
:::
:::
2. Open PowerShell ISE as an administrator
3. Paste the script in PowerShell ISE and run (or you can download the
file and run it). This script will remind you to have a 32GB flash drive
connected to the PC.
1. NOTE: The initial popup may appear behind the ISE window. If it
seems stuck, there is probably a popup hiding.
2. If you use Windows PowerShell instead (as admin), the first popup
message will fail. You can ignore the error and it will proceed
automatically.
::: {.confluence-information-macro
.confluence-information-macro-information}
[]{.aui-icon .aui-icon-small .aui-iconfont-info
.confluence-information-macro-icon}
::: confluence-information-macro-body
It's probably best to disconnect other USB flash drives to not
accidentally format the wrong flash drive
:::
:::
4. The script will also prompt for a name for the OSDCloud Template.
Follow the naming scheme Win\_(version of Windows)\_(Build
version)\_(Current month and year).
1. Example: Win_11_24H2_Feb25.
5. In the console of PowerShell ISE, eventually you'll be asked to
confirm which USB Drive you want to format.
1. If you only have one USB drive connected, it's the only USB drive
listed. If you have more than one USB drive connected, be careful and
choose the correct drive.
## **Dell BIOS Configuration Files**
{#CreatingaUSBdrivewithOSDCloud-DellBIOSConfigurationFiles}
Add these two files to the root of the OSDCloud drive. (Note there are
two partitions on the USB stick - you want OSDCloud)
- CCTK Folder:
[https://glondon.sharepoint.com/:f:/r/sites/Group_IT/Shared%20Documents/General/OSDCloud/CCTK?csf=1&web=1&e=q5sltN](https://glondon.sharepoint.com/:f:/r/sites/Group_IT/Shared%20Documents/General/OSDCloud/CCTK?csf=1&web=1&e=q5sltN){.external-link
card-appearance="inline" rel="nofollow"}
- BIOSChanges.ini:
[https://glondon.sharepoint.com/:u:/r/sites/Group_IT/Shared%20Documents/General/OSDCloud/BIOSChanges.ini?csf=1&web=1&e=P8ufTf](https://glondon.sharepoint.com/:u:/r/sites/Group_IT/Shared%20Documents/General/OSDCloud/BIOSChanges.ini?csf=1&web=1&e=P8ufTf){.external-link
card-appearance="inline" rel="nofollow"}
Both the folder and file should be placed in the root of the USB drive.
## Dell Command Update and other drivers
{#CreatingaUSBdrivewithOSDCloud-DellCommandUpdateandotherdrivers}
On your OSDCloud USB stick:
- There are two partitions - choose the WINPE "drive" in Windows
Explorer
- Create a folder called "Dell_Drivers" in the root
- Download and copy three files there:
- Installer for latest Dell Command Update (Windows Universal
Application)
[https://www.dell.com/support/kbdoc/en-us/000177325/dell-command-update](https://www.dell.com/support/kbdoc/en-us/000177325/dell-command-update){.external-link
card-appearance="inline" rel="nofollow"}
- .NET Desktop Runtime (the version required by Dell Command Update;
usually the LTS version):
[https://dotnet.microsoft.com/en-us/download/dotnet/8.0](https://dotnet.microsoft.com/en-us/download/dotnet/8.0){.external-link
card-appearance="inline" rel="nofollow"}
- Note that you want the DESKTOP RUNTIME, not the SDK, nor the CLI
runtime. Annoying.
- Latest Intel NPU driver:
[https://www.intel.com/content/www/us/en/download/794734/intel-npu-driver-windows.html](https://www.intel.com/content/www/us/en/download/794734/intel-npu-driver-windows.html){.external-link
card-appearance="inline" rel="nofollow"}
- This is only necessary so long as Dell Command Update still installs
a version with bugs. This shouldn't be necessary past 2025, we hope.
## Rebuild the computer
{#CreatingaUSBdrivewithOSDCloud-Rebuildthecomputer}
If rebuilding a PC already enrolled in Gravity Global, follow this
article:
[PC Rebuild
Procedure](https://sitesandservices.atlassian.net/wiki/spaces/IT/pages/4294672385/PC+Rebuild+Procedure){linked-resource-id="4294672385"
linked-resource-version="11" linked-resource-type="page"}
If needing to rebuild a PC and enroll it in Gravity Global, follow this
article:
[Enrolling a PC in Gravity from other
organizations](https://sitesandservices.atlassian.net/wiki/spaces/IT/pages/4294311952/Enrolling+a+PC+in+Gravity+from+other+organizations){linked-resource-id="4294311952"
linked-resource-version="10" linked-resource-type="page"}
pipeline_tag: sentence-similarity
library_name: sentence-transformers
metrics:
- pearson_cosine
- spearman_cosine
model-index:
- name: SentenceTransformer based on Alibaba-NLP/gte-modernbert-base
results:
- task:
type: semantic-similarity
name: Semantic Similarity
dataset:
name: validation
type: validation
metrics:
- type: pearson_cosine
value: .nan
name: Pearson Cosine
- type: spearman_cosine
value: .nan
name: Spearman Cosine
SentenceTransformer based on Alibaba-NLP/gte-modernbert-base
This is a sentence-transformers model finetuned from Alibaba-NLP/gte-modernbert-base. It maps sentences & paragraphs to a 768-dimensional dense vector space and can be used for semantic textual similarity, semantic search, paraphrase mining, text classification, clustering, and more.
Model Details
Model Description
- Model Type: Sentence Transformer
- Base model: Alibaba-NLP/gte-modernbert-base
- Maximum Sequence Length: 8192 tokens
- Output Dimensionality: 768 dimensions
- Similarity Function: Cosine Similarity
Model Sources
- Documentation: Sentence Transformers Documentation
- Repository: Sentence Transformers on GitHub
- Hugging Face: Sentence Transformers on Hugging Face
Full Model Architecture
SentenceTransformer(
(0): Transformer({'max_seq_length': 8192, 'do_lower_case': False, 'architecture': 'ModernBertModel'})
(1): Pooling({'word_embedding_dimension': 768, 'pooling_mode_cls_token': True, 'pooling_mode_mean_tokens': False, 'pooling_mode_max_tokens': False, 'pooling_mode_mean_sqrt_len_tokens': False, 'pooling_mode_weightedmean_tokens': False, 'pooling_mode_lasttoken': False, 'include_prompt': True})
)
Usage
Direct Usage (Sentence Transformers)
First install the Sentence Transformers library:
pip install -U sentence-transformers
Then you can load this model and run inference.
from sentence_transformers import SentenceTransformer
# Download from the 🤗 Hub
model = SentenceTransformer("sentence_transformers_model_id")
# Run inference
sentences = [
'Instruct: Identify solution for the email\nQuery: How to grant Placer.ai access via Entra group App_PlacerAI',
'::: table-wrap\n+----------------------+-----------------------------------------------------+\n| **Application Name** | Placer.ai |\n+----------------------+-----------------------------------------------------+\n| **Description** | Media tool |\n+----------------------+-----------------------------------------------------+\n| **Owner** | Lou Roberts |\n+----------------------+-----------------------------------------------------+\n| **Requester** | |\n+----------------------+-----------------------------------------------------+\n| **Service** | |\n+----------------------+-----------------------------------------------------+\n| **On this page** | ::: {.toc-macro .rbtoc1758184816272} |\n| | - [🚪 Access](#Placer.AI-Access) |\n| | - [🧑\u200d🤝\u200d🧑 User Management](#Placer.AI-UserManagement) |\n| | - [Known Issues](#Placer.AI-KnownIssues) |\n| | ::: |\n+----------------------+-----------------------------------------------------+\n:::\n\n## {.emoticon .emoticon-blue-star emoji-id="1f6aa" emoji-shortname=":door:" emoji-fallback="🚪" width="16" height="16" emoticon-name="blue-star"} Access {#Placer.AI-Access}\n\nAdd user to App_PlacerAI group in Entra.\n\nThere are no licensing limits, so you can add anyone from Media or related departments who requests access. If questions, ask the app owner above.\n\n## {.emoticon .emoticon-blue-star emoji-id="1f9d1-200d-1f91d-200d-1f9d1" emoji-shortname=":people_holding_hands:" emoji-fallback="🧑\u200d🤝\u200d🧑" width="16" height="16" emoticon-name="blue-star"} User Management {#Placer.AI-UserManagement}\n\n::: table-wrap\n -------------- -------------------------------------------------------------------\n **Action** **Function**\n Add_User Add user to group and have them sign in. It has JIT provisioning.\n Remove_User Manual via portal\n Disable_User Remove from App_PlacerAI group\n -------------- -------------------------------------------------------------------\n:::\n\n## {.emoticon .emoticon-broken-heart emoji-id="1f494" emoji-shortname=":broken_heart:" emoji-fallback="💔" width="16" height="16" emoticon-name="broken-heart"} Known Issues {#Placer.AI-KnownIssues}\n\n::: table-wrap\n ----------- -------------\n **Issue** **Details**\n \n \n ----------- -------------\n:::',
'## **Computer Setup** {#CreatingaUSBdrivewithOSDCloud-ComputerSetup}\n\n> NOTE: Your machine needs to be able to write unencrypted files to a USB drive. If your computer is not already in Device_USB_Encryption_Exclusion, add it.\n\nOn the machine that will create the USB drive:\n\nInstall Windows 11 24H2 ADK: [https://go.microsoft.com/fwlink/?linkid=2289980](https://go.microsoft.com/fwlink/?linkid=2289980){.external-link rel="nofollow"}\n\n- Install locally when prompted - we want to install on this machine\n\n- You can accept all the defaults when installing\n\nInstall Windows PE add-on: [https://go.microsoft.com/fwlink/?linkid=2289981](https://go.microsoft.com/fwlink/?linkid=2289981){.external-link rel="nofollow"}\n\n- There are no settings, so you can click Next to install.\n\n## **Configuring a USB drive with OSD Cloud** {#CreatingaUSBdrivewithOSDCloud-ConfiguringaUSBdrivewithOSDCloud}\n\n1. Copy this script on a PC:\n\n[https://glondon.sharepoint.com/:u:/r/sites/Group_IT/Shared%20Documents/General/OSDCloud/OSDCloud%20Automated%20USB%20with%20User%20Prompt.ps1?csf=1&web=1&e=6FRniH](https://glondon.sharepoint.com/:u:/r/sites/Group_IT/Shared%20Documents/General/OSDCloud/OSDCloud%20Automated%20USB%20with%20User%20Prompt.ps1?csf=1&web=1&e=6FRniH){.external-link card-appearance="inline" rel="nofollow"}\n\n::: {.confluence-information-macro .confluence-information-macro-information}\n[]{.aui-icon .aui-icon-small .aui-iconfont-info .confluence-information-macro-icon}\n\n::: confluence-information-macro-body\nIt\'s stored in the team "Gravity -- Group IT" so use your Gravity Global account to access the link\n:::\n:::\n\n2. Open PowerShell ISE as an administrator\n\n3. Paste the script in PowerShell ISE and run (or you can download the file and run it). This script will remind you to have a 32GB flash drive connected to the PC.\n\n1. NOTE: The initial popup may appear behind the ISE window. If it seems stuck, there is probably a popup hiding.\n\n2. If you use Windows PowerShell instead (as admin), the first popup message will fail. You can ignore the error and it will proceed automatically.\n\n::: {.confluence-information-macro .confluence-information-macro-information}\n[]{.aui-icon .aui-icon-small .aui-iconfont-info .confluence-information-macro-icon}\n\n::: confluence-information-macro-body\nIt\'s probably best to disconnect other USB flash drives to not accidentally format the wrong flash drive\n:::\n:::\n\n4. The script will also prompt for a name for the OSDCloud Template. Follow the naming scheme Win\\_(version of Windows)\\_(Build version)\\_(Current month and year).\n\n1. Example: Win_11_24H2_Feb25.\n\n5. In the console of PowerShell ISE, eventually you\'ll be asked to confirm which USB Drive you want to format.\n\n1. If you only have one USB drive connected, it\'s the only USB drive listed. If you have more than one USB drive connected, be careful and choose the correct drive.\n\n## **Dell BIOS Configuration Files** {#CreatingaUSBdrivewithOSDCloud-DellBIOSConfigurationFiles}\n\nAdd these two files to the root of the OSDCloud drive. (Note there are two partitions on the USB stick - you want OSDCloud)\n\n- CCTK Folder: [https://glondon.sharepoint.com/:f:/r/sites/Group_IT/Shared%20Documents/General/OSDCloud/CCTK?csf=1&web=1&e=q5sltN](https://glondon.sharepoint.com/:f:/r/sites/Group_IT/Shared%20Documents/General/OSDCloud/CCTK?csf=1&web=1&e=q5sltN){.external-link card-appearance="inline" rel="nofollow"}\n\n- BIOSChanges.ini: [https://glondon.sharepoint.com/:u:/r/sites/Group_IT/Shared%20Documents/General/OSDCloud/BIOSChanges.ini?csf=1&web=1&e=P8ufTf](https://glondon.sharepoint.com/:u:/r/sites/Group_IT/Shared%20Documents/General/OSDCloud/BIOSChanges.ini?csf=1&web=1&e=P8ufTf){.external-link card-appearance="inline" rel="nofollow"}\n\nBoth the folder and file should be placed in the root of the USB drive.\n\n## Dell Command Update and other drivers {#CreatingaUSBdrivewithOSDCloud-DellCommandUpdateandotherdrivers}\n\nOn your OSDCloud USB stick:\n\n- There are two partitions - choose the WINPE "drive" in Windows Explorer\n\n- Create a folder called "Dell_Drivers" in the root\n\n- Download and copy three files there:\n\n- Installer for latest Dell Command Update (Windows Universal Application) [https://www.dell.com/support/kbdoc/en-us/000177325/dell-command-update](https://www.dell.com/support/kbdoc/en-us/000177325/dell-command-update){.external-link card-appearance="inline" rel="nofollow"}\n\n- .NET Desktop Runtime (the version required by Dell Command Update; usually the LTS version): [https://dotnet.microsoft.com/en-us/download/dotnet/8.0](https://dotnet.microsoft.com/en-us/download/dotnet/8.0){.external-link card-appearance="inline" rel="nofollow"}\n\n- Note that you want the DESKTOP RUNTIME, not the SDK, nor the CLI runtime. Annoying.\n\n- Latest Intel NPU driver: [https://www.intel.com/content/www/us/en/download/794734/intel-npu-driver-windows.html](https://www.intel.com/content/www/us/en/download/794734/intel-npu-driver-windows.html){.external-link card-appearance="inline" rel="nofollow"}\n\n- This is only necessary so long as Dell Command Update still installs a version with bugs. This shouldn\'t be necessary past 2025, we hope.\n\n## Rebuild the computer {#CreatingaUSBdrivewithOSDCloud-Rebuildthecomputer}\n\nIf rebuilding a PC already enrolled in Gravity Global, follow this article:\n\n[PC Rebuild Procedure](https://sitesandservices.atlassian.net/wiki/spaces/IT/pages/4294672385/PC+Rebuild+Procedure){linked-resource-id="4294672385" linked-resource-version="11" linked-resource-type="page"}\n\nIf needing to rebuild a PC and enroll it in Gravity Global, follow this article:\n\n[Enrolling a PC in Gravity from other organizations](https://sitesandservices.atlassian.net/wiki/spaces/IT/pages/4294311952/Enrolling+a+PC+in+Gravity+from+other+organizations){linked-resource-id="4294311952" linked-resource-version="10" linked-resource-type="page"}',
]
embeddings = model.encode(sentences)
print(embeddings.shape)
# [3, 768]
# Get the similarity scores for the embeddings
similarities = model.similarity(embeddings, embeddings)
print(similarities)
# tensor([[1.0000, 0.7865, 0.1898],
# [0.7865, 1.0000, 0.3530],
# [0.1898, 0.3530, 1.0000]])
Evaluation
Metrics
Semantic Similarity
- Dataset:
validation - Evaluated with
EmbeddingSimilarityEvaluator
| Metric | Value |
|---|---|
| pearson_cosine | nan |
| spearman_cosine | nan |
Training Details
Training Dataset
Unnamed Dataset
- Size: 679 training samples
- Columns:
sentence_0,sentence_1, andsentence_2 - Approximate statistics based on the first 679 samples:
sentence_0 sentence_1 sentence_2 type string string string details - min: 15 tokens
- mean: 65.23 tokens
- max: 408 tokens
- min: 6 tokens
- mean: 890.42 tokens
- max: 5617 tokens
- min: 6 tokens
- mean: 861.59 tokens
- max: 5617 tokens
- Samples:
sentence_0 sentence_1 sentence_2 Instruct: Identify solution for the email
Query: Account locked out MFA / password reset assistance::: plugin_pagetree
:::For systems running in AWS Elastic Container Service (ECS), often in Docker (and Fargate, for searching), you sometimes need to run console or command line commands in the Docker container while it is running.
NOTE: It is possible to SSH into Docker containers, since they are just servers like anything else. But, you would need to use this process or build it into the Docker image to allow SSH, run SSH, and manage SSH keys. (And then you have SSH open, which may not be what you want long-term). This system allows you to do quick commands without messing with all that.
Full description: Monitor Amazon ECS containers with ECS Exec - Amazon Elastic Container Service{.external-link rel="nofollow"}
And there are plenty of external guides, like this:
CLI documentation: [execute-command --- AWS CLI 2.24.20 Command Reference](https://awscli.amazonaws.com/v2/documentation/api/latest/reference/ecs/execute-command.ht...Instruct: Identify solution for the email
Query: Help configuring VPC/subnet CIDRs, route tables, and network ACLs for a new AWS account per the internal guideAWS Organizations made it simpler for us to have many accounts, one for each purpose, instead of trying to set up byzantine permissions to segregate people within one account. For example, creating a limited admin in an account meant for one thing is much, much easier than trying to let people do things like create everything (RDS, EC2, S3) but not be able to touch the ones other people create.
Here's how to set up a new account, since I always forget the steps.
1. In the Management account > AWS Organizations > Create a new AWS account
1. Use a plus address for the admin email
2. In AWS Organizations, move the new account to the proper folder in hierarchy
3. In IAM Identity Center, assign a group permissions to use the account
1. Typically you start with AWS_Console_Admins group having full Administrator permissions.
4. In Entra, set up 1-2 new groups:
1. AWS_Console_... if a subset of people need some level of access to this account, create a group for them and add ...::: table-wrap
+-------------------------------------+-----------------------------------------+
| Location/Office | London |
+-------------------------------------+-----------------------------------------+
| Static or DHCP | - [Static]{.placeholder-inline-tasks} |
| | - [DHCP]{.placeholder-inline-tasks} |
+-------------------------------------+-----------------------------------------+
| Public IP | 62.7.55.181 |
+-------------------------------------+-----------------------------------------+
| Subnet Mask | 255.255.255.254 |
+-------------------------------------+-----------------------------------------+
| Gateway | 62.7.55.180 |
+-------------------------------------+-----------------------------------------+
|...Instruct: Identify solution for the email
Query: Email 3: Trouble adding received hardware to Inventory and ensuring Automated Enrollment / AutoPilot enrollment for a Mac device (checking serial, asset creation, and AE/AutoPilot status).When creating a new Purchase Order, you may need to get a quote from a supplier before placing the order, other times the price and product are already known.
### Creating a New Purchase Order PO {#NewMachinePurchase-CreatingaNewPurchaseOrderPO}
When purchasing a new Machine, a PO should be create in Fresh service.
Go to Assets → Purchase Orders, then select New Purchase Order.
Enter, Name, Vendor and Currency, Shipping and Billing Address. Leave the T&Cs blank unless you need to add notes, try to include the name of the user if known when purchasing, then Click Save.
When adding a item, start typing the model of a machine, eg MacBook Air, and the click on Products select the correct product in the list.
[
{.confluence-embedded-image .image-center width="371"}]{.confluence-embedded-file-wrapper .image-center-wra...::: table-wrap
+----------------------+---------------------------------------------------+
| Application Name | Pigment |
+----------------------+---------------------------------------------------+
| Description | Finance team tool for some kind of forecasting |
+----------------------+---------------------------------------------------+
| Owner | Avi Gal |
+----------------------+---------------------------------------------------+
| Requester | |
+----------------------+---------------------------------------------------+
| Service | |
+----------------------+---------------------------------------------------+
| On this page | ::: {.toc-macro .rbtoc1758184811742} |
| | - 🚪 Access ... - Loss:
MultipleNegativesRankingLosswith these parameters:{ "scale": 20.0, "similarity_fct": "cos_sim", "gather_across_devices": false }
Training Hyperparameters
Non-Default Hyperparameters
eval_strategy: stepsper_device_train_batch_size: 1per_device_eval_batch_size: 1num_train_epochs: 5fp16: Truemulti_dataset_batch_sampler: round_robin
All Hyperparameters
Click to expand
overwrite_output_dir: Falsedo_predict: Falseeval_strategy: stepsprediction_loss_only: Trueper_device_train_batch_size: 1per_device_eval_batch_size: 1per_gpu_train_batch_size: Noneper_gpu_eval_batch_size: Nonegradient_accumulation_steps: 1eval_accumulation_steps: Nonetorch_empty_cache_steps: Nonelearning_rate: 5e-05weight_decay: 0.0adam_beta1: 0.9adam_beta2: 0.999adam_epsilon: 1e-08max_grad_norm: 1num_train_epochs: 5max_steps: -1lr_scheduler_type: linearlr_scheduler_kwargs: {}warmup_ratio: 0.0warmup_steps: 0log_level: passivelog_level_replica: warninglog_on_each_node: Truelogging_nan_inf_filter: Truesave_safetensors: Truesave_on_each_node: Falsesave_only_model: Falserestore_callback_states_from_checkpoint: Falseno_cuda: Falseuse_cpu: Falseuse_mps_device: Falseseed: 42data_seed: Nonejit_mode_eval: Falseuse_ipex: Falsebf16: Falsefp16: Truefp16_opt_level: O1half_precision_backend: autobf16_full_eval: Falsefp16_full_eval: Falsetf32: Nonelocal_rank: 0ddp_backend: Nonetpu_num_cores: Nonetpu_metrics_debug: Falsedebug: []dataloader_drop_last: Falsedataloader_num_workers: 0dataloader_prefetch_factor: Nonepast_index: -1disable_tqdm: Falseremove_unused_columns: Truelabel_names: Noneload_best_model_at_end: Falseignore_data_skip: Falsefsdp: []fsdp_min_num_params: 0fsdp_config: {'min_num_params': 0, 'xla': False, 'xla_fsdp_v2': False, 'xla_fsdp_grad_ckpt': False}fsdp_transformer_layer_cls_to_wrap: Noneaccelerator_config: {'split_batches': False, 'dispatch_batches': None, 'even_batches': True, 'use_seedable_sampler': True, 'non_blocking': False, 'gradient_accumulation_kwargs': None}parallelism_config: Nonedeepspeed: Nonelabel_smoothing_factor: 0.0optim: adamw_torch_fusedoptim_args: Noneadafactor: Falsegroup_by_length: Falselength_column_name: lengthddp_find_unused_parameters: Noneddp_bucket_cap_mb: Noneddp_broadcast_buffers: Falsedataloader_pin_memory: Truedataloader_persistent_workers: Falseskip_memory_metrics: Trueuse_legacy_prediction_loop: Falsepush_to_hub: Falseresume_from_checkpoint: Nonehub_model_id: Nonehub_strategy: every_savehub_private_repo: Nonehub_always_push: Falsehub_revision: Nonegradient_checkpointing: Falsegradient_checkpointing_kwargs: Noneinclude_inputs_for_metrics: Falseinclude_for_metrics: []eval_do_concat_batches: Truefp16_backend: autopush_to_hub_model_id: Nonepush_to_hub_organization: Nonemp_parameters:auto_find_batch_size: Falsefull_determinism: Falsetorchdynamo: Noneray_scope: lastddp_timeout: 1800torch_compile: Falsetorch_compile_backend: Nonetorch_compile_mode: Noneinclude_tokens_per_second: Falseinclude_num_input_tokens_seen: Falseneftune_noise_alpha: Noneoptim_target_modules: Nonebatch_eval_metrics: Falseeval_on_start: Falseuse_liger_kernel: Falseliger_kernel_config: Noneeval_use_gather_object: Falseaverage_tokens_across_devices: Falseprompts: Nonebatch_sampler: batch_samplermulti_dataset_batch_sampler: round_robinrouter_mapping: {}learning_rate_mapping: {}
Training Logs
| Epoch | Step | validation_spearman_cosine |
|---|---|---|
| 0.0736 | 50 | nan |
Framework Versions
- Python: 3.12.11
- Sentence Transformers: 5.1.1
- Transformers: 4.56.1
- PyTorch: 2.8.0+cu128
- Accelerate: 1.10.1
- Datasets: 4.1.0
- Tokenizers: 0.22.0
Citation
BibTeX
Sentence Transformers
@inproceedings{reimers-2019-sentence-bert,
title = "Sentence-BERT: Sentence Embeddings using Siamese BERT-Networks",
author = "Reimers, Nils and Gurevych, Iryna",
booktitle = "Proceedings of the 2019 Conference on Empirical Methods in Natural Language Processing",
month = "11",
year = "2019",
publisher = "Association for Computational Linguistics",
url = "https://arxiv.org/abs/1908.10084",
}
MultipleNegativesRankingLoss
@misc{henderson2017efficient,
title={Efficient Natural Language Response Suggestion for Smart Reply},
author={Matthew Henderson and Rami Al-Rfou and Brian Strope and Yun-hsuan Sung and Laszlo Lukacs and Ruiqi Guo and Sanjiv Kumar and Balint Miklos and Ray Kurzweil},
year={2017},
eprint={1705.00652},
archivePrefix={arXiv},
primaryClass={cs.CL}
}