From 94410944eb5521238f6bfe7e2ae7c62cd5039f10 Mon Sep 17 00:00:00 2001 From: Winter Williams Date: Wed, 10 Jun 2026 10:22:48 -0700 Subject: [PATCH] =?UTF-8?q?wiki:=20compile=20starr-pass=20(seed)=20?= =?UTF-8?q?=E2=80=94=20M365=20onboarding,=20SPF=20cleanup,=20user=20audit?= =?UTF-8?q?=202026-06-10?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- wiki/clients/starr-pass.md | 115 +++++++++++++++++++++++++++++++++++++ wiki/index.md | 3 +- 2 files changed, 117 insertions(+), 1 deletion(-) create mode 100644 wiki/clients/starr-pass.md diff --git a/wiki/clients/starr-pass.md b/wiki/clients/starr-pass.md new file mode 100644 index 0000000..4877cf5 --- /dev/null +++ b/wiki/clients/starr-pass.md @@ -0,0 +1,115 @@ +--- +type: client +name: starr-pass +display_name: Starr Pass Realty +last_compiled: 2026-06-10 +compiled_by: 2026-06-10-discord-bot-dns-spf-m365-onboarding +sources: + - clients/starr-pass/session-logs/2026-06/2026-06-10-discord-bot-dns-spf-m365-onboarding.md + - session-logs/2026-03-24-session.md +backlinks: + - systems/ix-server + - clients/internal-infrastructure + - projects/msp-tools +--- + +# Starr Pass Realty + +## Profile +- **Contract type:** (verify) +- **Key contacts:** + - Brian Shinn — primary M365 admin (sysadmin@starrpass.com) + - Chris Ansley — legacy Neptune mailbox / AD account (cansley@devconllc.com) +- **Billing rate:** (verify) +- **Hours remaining (if prepaid):** (verify) +- **Active ticket:** (verify) + +## Infrastructure + +### Servers & Services +| Host | IP | Role | OS | Notes | +|---|---|---|---|---| +| ix.azcomputerguru.com | 72.194.62.5 | Shared hosting (cPanel) | Rocky Linux | Account "starrpass"; parked, 16 MB, no active mailboxes | +| mail.acghosting.com | (verify) | Neptune Exchange (legacy) | (verify) | Legacy mailbox cansley@devconllc.com; Chris Ansley / Starr Pass association | + +### Email & Identity +- **M365 tenant:** starrpass.onmicrosoft.com (tenant ID: 222450dd-141f-435f-87b8-cec719aac99e) +- **Primary domain:** starrpass.com +- **MX / mail flow:** starrpass-com.mail.protection.outlook.com (priority 0); SPF: `v=spf1 include:spf.protection.outlook.com -all` (cleaned 2026-06-10) +- **DKIM:** selector1 / selector2 CNAMEs → starrpass.onmicrosoft.com (M365 native); legacy `default._domainkey` RSA TXT still present as of 2026-06-10 — pending removal +- **Autodiscover:** CNAME → autodiscover.outlook.com +- **Mailprotector:** CloudFilter account "Starr Pass" (account ID 16170); filtering domain devconllc.com (domain ID 27629) +- **MFA status:** (verify) +- **MDE license:** Not present as of 2026-06-10 + +### M365 Users (as of 2026-06-10, post-cleanup) +| UPN | Display Name | Status | Notes | +|---|---|---|---| +| sysadmin@starrpass.com | Brian Shinn | Enabled, licensed | Sole remaining account | +| bshinn@starrpass.com | Brian Shinn | Deleted 2026-06-10 | In recycle bin until ~2026-07-10 | +| sss@starrpass.com | Sharon Shinn-Smith | Deleted 2026-06-10 | In recycle bin until ~2026-07-10 | +| admin@starrpass.com | Admin | Deleted 2026-06-10 | Was disabled and unlicensed | + +### MSP App Consent (M365, completed 2026-06-10) +- All 5 MSP apps consented; directory roles assigned +- Tenant Admin: Conditional Access Administrator +- Security Investigator + Exchange Operator: Exchange Administrator +- User Manager: User Administrator + Authentication Administrator + +### DNS (starrpass.com — ns1/ns2.acghosting.com) +| Record | Type | Value | Notes | +|---|---|---|---| +| @ | A | 72.194.62.5 | IX server | +| @ | MX (p0) | starrpass-com.mail.protection.outlook.com | M365 | +| @ | TXT (SPF) | v=spf1 include:spf.protection.outlook.com -all | Cleaned 2026-06-10 | +| autodiscover | CNAME | autodiscover.outlook.com | | +| selector1._domainkey | CNAME | selector1-starrpass-com._domainkey.starrpass.onmicrosoft.com | M365 DKIM | +| selector2._domainkey | CNAME | selector2-starrpass-com._domainkey.starrpass.onmicrosoft.com | M365 DKIM | +| default._domainkey | TXT | Legacy RSA key (IX mail era) | Pending removal | + +### Related Domains +- **starrpassrealty.com** — Cloudflare DNS; no MX records; not ACG-hosted +- **devconllc.com** — Mailprotector-filtered (domain ID 27629); legacy Neptune mailbox in use + +### Domain Registration +- **Registrar:** eNom, LLC +- **Expiry:** 2027-06-24 +- **Nameservers:** ns1.acghosting.com / ns2.acghosting.com + +### Network +- **ISP / WAN:** (verify) +- **Firewall:** (verify) +- **VPN:** (verify) + +## Access +- **cPanel (IX):** ix.azcomputerguru.com — account: starrpass (vault: `infrastructure/ix-server.sops.yaml`) +- **M365 Admin:** https://admin.microsoft.com (tenant: starrpass.onmicrosoft.com) +- **Vault path:** `clients/starr-pass/` (verify — no client-specific vault entries yet) + +## Patterns & Known Issues + +- Legacy DNS accumulation: SPF included IX/websvr IPs long after M365 migration; 4 orphaned SRV records required fleet-wide cleanup in March 2026. Zone should be audited before any future DNS work. +- `default._domainkey` legacy RSA TXT record persists after M365 DKIM migration — flagged for removal, not yet deleted as of 2026-06-10. +- devconllc.com / Neptune legacy mailbox (cansley@devconllc.com) creates a dual-system mail dependency. No decommission plan established. +- starrpassrealty.com has no MX and is not managed for mail — confusion risk if end users expect it to receive email. + +## Active Work + +- Remove `default._domainkey` legacy TXT record from starrpass.com DNS on IX +- Confirm decommission plan for cansley@devconllc.com Neptune mailbox and AD account cansley_starrpass.c (acg.local / Dataforth DC16) +- Verify MFA enrollment for sysadmin@starrpass.com +- No Syncro customer record on file — create if billable work begins + +## History Highlights + +- **2026-03-24** — 4 orphaned SRV records removed from starrpass.com DNS (fleet-wide cleanup, 240 records across 27 domains) +- **2026-06-10** — M365 tenant onboarded: all 5 MSP apps consented, all directory roles assigned +- **2026-06-10** — SPF record cleaned (removed legacy `+a`, `+ip4:72.194.62.5`, `+ip4:162.248.93.233`); MX confirmed M365 +- **2026-06-10** — M365 user cleanup: bshinn, sss, admin accounts deleted; sysadmin@starrpass.com retained as sole licensed user +- **2026-06-10** — Mailprotector CloudFilter account confirmed (ID 16170, filtering devconllc.com ID 27629) + +## Backlinks + +- [[systems/ix-server]] — cPanel account "starrpass"; DNS nameservers on ACG IX +- [[clients/internal-infrastructure]] — Neptune Exchange hosts legacy cansley@devconllc.com mailbox; AD account cansley_starrpass.c on acg.local (DC16) +- [[projects/msp-tools]] — Mailprotector CloudFilter; remediation tooling applied 2026-06-10 diff --git a/wiki/index.md b/wiki/index.md index 7de70bc..e8661b6 100644 --- a/wiki/index.md +++ b/wiki/index.md @@ -1,6 +1,6 @@ # Wiki Index -Last updated: 2026-06-07 +Last updated: 2026-06-10 Compiled by: Mikes-MacBook-Air/claude-main This wiki is LLM-maintained. Do not edit articles manually — run `/wiki-compile` to update. @@ -51,6 +51,7 @@ Run `/wiki-lint` to check for stale entries and broken backlinks. | [Deere Park Development, LLC](clients/deere-park-development.md) | Property development ("Glabman"); Syncro 7088463; per-incident, no prepaid block; no tax rate assigned (must fix before billing); active estimate #7190 (ticket #32366) — UniFi WiFi 7 deployment (4x U7 Pro + 2x U7 Mesh + UCG Ultra + USW-Flex-2.5G-8-PoE), $2,816.70, Fresh | 2026-06-02 | | [Universal Cryogenics](clients/ucryo.md) | New client onboarded 2026-06-02; ucryo.local DC (UC2-SERVER), 8 agents, 2019 TrickBot remediated, Backblaze TLS backup fix | 2026-06-02 | | [Sif-oidak District - Tohono O'odham Nation](clients/sif-oidak.md) | Tribal government; SifOidak.local AD domain; SIF-SERVER (primary DC) + SIF-SERVER2 + 2 laptops GuruRMM enrolled; M365 sifoidak.onmicrosoft.com onboarded 2026-06-03 (all 4 ACG MSP apps; 11/11 seats); not yet in CIPP; Syncro 7694718 | 2026-06-03 | +| [Starr Pass Realty](clients/starr-pass.md) | Real estate; starrpass.com M365 tenant (222450dd) fully onboarded 2026-06-10; sole M365 user sysadmin@starrpass.com (Brian Shinn); DNS on ACG IX (ns1/ns2.acghosting.com); legacy Neptune mailbox cansley@devconllc.com; no Syncro record | 2026-06-10 | ## Projects