---
type: client
name: tucson-golden-corral
display_name: Tucson Golden Corral
last_compiled: 2026-06-12
compiled_by: GURU-5070/claude-main
sources:
  - clients/tucson-golden-corral/session-logs/2026-05-26-session.md
  - session-logs/2026-05-25-session.md
  - session-logs/2026-04-30-session.md
  - .claude/memory/reference_resource_map.md
backlinks:
  - systems/neptune
  - systems/ix-server
  - projects/gururmm
---

# Tucson Golden Corral

Restaurant / food-service business in Tucson, AZ. Managed by ACG with a prepaid hour block
contract. Primary contact is Jeffrey Schaufel (owner). Email is on Neptune Exchange.
TGC-SERVER is a single-box DC + RDS + Hyper-V running Windows Server 2016 with several
unresolved architecture concerns flagged at onboarding. The server is **physically
colocated at ACG's main office** (not on-site at the restaurant), so it sits behind ACG's
office network rather than being exposed at a customer site.

## Profile

- **Contract type:** Prepaid hour block
- **Key contacts:**
  - Jeffrey Schaufel (owner) — office 520-574-9167
  - Al Young — 520-571-0972 / mobile 520-338-1004
  - Josie Schaffel — 520-971-3991
- **Service address:** 4380 E 22nd St, Tucson, AZ 85711
- **Billing rate:** (verify — check Syncro invoices)
- **Hours remaining (if prepaid):** 12.75 hrs as of 2026-06-12
- **Syncro customer ID:** 3859123
- **Managed device count (Syncro assets):** 3

## Infrastructure

### Servers & Services

| Host | IP | Role | OS | Notes |
|---|---|---|---|---|
| TGC-SERVER | 98.181.90.163 (public) | DC / DNS / RDS / Hyper-V / SQL / IIS | Windows Server 2016 (build 14393) | **Physically colocated at ACG main office** (behind ACG office network, not at the restaurant). Extended support ends Jan 2027; GuruRMM agent 1275daa1; ScreenConnect installed; admin account actively browsing (Chrome) |

**Hyper-V VMs on TGC-SERVER:**

| VM | State | Notes |
|---|---|---|
| MAS90 | Running | Sage 100 ERP — customer-critical workload |
| MAS90.old | Off | Prior snapshot / backup copy |

**Syncro workstation assets:**

| Device | Type |
|---|---|
| Desktop Dell DHM | Desktop |
| Lenovo ThinkCenter 001LUS | Desktop |
| Lenovo Ideapad 3305-15KB 81FS | Laptop |

**GuruRMM:**
- Client ID: 3248bdec-cbc3-45df-ba63-c8cdc9395e58
- Site: Co-Located (ID: e5caa88f-f395-40e3-befa-f54e035f4293, code: INNER-STORM-2733)
- Agent (TGC-SERVER): 1275daa1-3996-4ecf-a1db-c82e88f757b4

### Email & Identity

- **Email platform:** **Neptune Exchange** (67.206.163.124, Exchange 2016) — confirmed by owner/Mike 2026-06-12. `tucsongoldencorral.com` mailboxes live on Neptune; `accounting@` password resets go through Neptune ECP / AD on DC16 (see 2026-04-30 history).
- **IX cPanel caveat:** the domain's website/hosting is on IX (cPanel account `tucsongc`), and the 2026-05-26 `Erick.Godoy@` termination was handled via IX cPanel UAPI. (verify whether any IX cPanel mail accounts/forwarders remain alongside the Neptune mailboxes, or if those were legacy — does not change that primary mail is Neptune.)
- **M365:** "Office 365 annual" recurring invoice ($108.69/yr) exists in Syncro, but primary email is Neptune (not M365). Verify what that line actually covers (licensing only vs. active mailboxes).
- **MFA status:** (verify)

### Network

- **ISP / WAN:** TGC-SERVER is colocated at ACG main office, so its connectivity is ACG-office WAN, not a restaurant circuit (verify which ACG office uplink/IP block).
- **Firewall:** behind ACG's office network/firewall (TGC-SERVER is colocated at the ACG main office; it is NOT a naked public box at the restaurant despite the 98.181.90.163 public IP). (verify the exact edge device.)
- **VPN:** (verify)

## Access

- **GuruRMM dashboard:** https://rmm.azcomputerguru.com — client filter: Tucson Golden Corral
- **GuruRMM IEX installer:** `irm 'https://rmm.azcomputerguru.com/install/INNER-STORM-2733/windows' | iex`
- **IX cPanel (email / hosting):** https://72.194.62.5:2083 — account `tucsongc`; credentials via vault: `infrastructure/ix-server.sops.yaml`
- **IX WHM API:** https://72.194.62.5:2087 (used for email account management)
- **Vault — GuruRMM enrollment key:** `clients/tucson-golden-corral/gururmm-site-co-located.sops.yaml`
- **RDP to TGC-SERVER:** (verify — no RDP path recorded; use GuruRMM agent 1275daa1 or ScreenConnect)

## Patterns & Known Issues

- **TGC-SERVER is doing too much.** Single Windows Server 2016 machine running DC, DNS, full RDS stack, Hyper-V (with a production ERP VM), SQL Server, and IIS. Customer confirmed Hyper-V was not expected on this box. Architecture needs remediation.
- **MAS90 (Sage 100 ERP) in Hyper-V on the DC.** Running as a VM on the same box as Active Directory. No dedicated Hyper-V host. Migration options (dedicated HV host, or P2V to bare-metal Sage) not yet decided — requires customer input on hardware availability and MAS90 usage.
- **Administrator account browsing from the DC.** Process list at onboarding showed Chrome running as Administrator on TGC-SERVER (a domain controller). Security risk; should be flagged to customer for remediation (dedicated admin workstation or jump server).
- **Windows Server 2016 EOL approaching.** Extended support ends January 2027. OS upgrade planning should be in the queue.
- **Email account churn via Discord.** Terminations/additions are requested by Jeffrey Schaufel via the Discord bot, not a formal ticket. Work is straightforward (IX cPanel UAPI) but tickets should continue to be created in Syncro for audit trail.
- **No backup recorded.** No backup product or destination observed for TGC-SERVER or workstations. (Verify — may be absent or unreported.)

## Active Work

*No open tickets in Syncro as of 2026-06-12. See session logs for recent work.*

## History Highlights

- **2026-04-30** — Webmail password reset requested for `accounting@tucsongoldencorral.com`; attempted via Neptune Exchange ECP, resolved via Active Directory on DC16. (Source: session-logs/2026-04-30-session.md)
- **2026-05-25** — Client onboarded into GuruRMM; TGC-SERVER enrolled (agent 1275daa1, Windows Server 2016, 16 GB RAM, 1.8 TB disk); full Windows role inventory confirmed AD DS, DNS, full RDS stack, Hyper-V, SQL Server, IIS + Certify the Web. Hyper-V flagged as unexpected by customer; MAS90 (Sage 100 ERP) VM found running. Chrome-on-DC and WS2016 EOL noted.
- **2026-05-26** — Email account `Erick.Godoy@tucsongoldencorral.com` deleted via IX cPanel UAPI on employee termination request from Jeffrey Schaufel. Billed 0.25 hrs prepaid; Syncro ticket #32327, invoice ID 1650421921.

## Backlinks

- [[systems/neptune]] — Neptune Exchange (67.206.163.124, Exchange 2016); accounting@ reset attempt April 2026
- [[systems/ix-server]] — IX cPanel server hosts tucsongoldencorral.com email (account `tucsongc`)
- [[projects/gururmm]] — GuruRMM client enrollment; TGC-SERVER monitored via agent 1275daa1