# Client Overview

## Company Name
Cascades - Senior Living / Assisted Living Facility

## IT Contact
- Name: Howard (MSP)

## Environment Summary
- Total Rooms: ~236 (6 floors)
- Domain Name: cascades.local
- Primary Site: Single building, 6 floors + MemCare wing
- ISP: Cox Fiber (primary) + Cox Coax (backup)
- Firewall: pfSense 24.0
- Network: Full UniFi switching + wireless
- Server: CS-SERVER (192.168.2.254, RAID)
- NAS: Synology cascadesds (192.168.0.120)
- VoIP: AudioCodes phones (8 units) — not MSP-managed, but infra must stay static
- RMM: SyncroRMM (migrating from Datto RMM)
- Remote Access: ScreenConnect (all machines)
- Antivirus: Datto EDR (current, migrating away)
- Backup: **NONE — needs implementation**
- Total UniFi Devices: 82 (APs + switches)
- Total Client Devices: ~677

## Building Layout
- Floor 1: Rooms 101-149 (44 rooms) + common areas (Dining, Kitchen, Rec Room)
- Floor 2: Rooms 201-249 (46 rooms) + Atrium
- Floor 3: Rooms 301-350 (48 rooms) + Atrium
- Floor 4: Rooms 401-449 (47 rooms) + Atrium
- Floor 5: Rooms 501-522 (21 rooms) - MemCare
- Floor 6: Rooms 603-631 (29 rooms) - MemCare
- MemCare Wing: Nurse Station, TV Room, Piano Area, Director office

## Staff Workstations (audit 2026-03-20)

Full inventory with hardware, OS, security status: see `workstations.md`

### Summary (19 machines audited: 1 server + 18 workstations)
| PC Name | User/Role | IP | OS | Domain | BitLocker | Updates |
|---------|-----------|-----|-----|--------|-----------|---------|
| **CS-SERVER** | DC/File/Hyper-V | 192.168.2.254 | Server 2019 | cascades.local | n/a | Current |
| ACCT2-PC | Stephanie (Accounting) | 10.0.20.209 | Win 11 Pro WS | cascades.local | Encrypted, OFF | Feb 2026 |
| ANN-PC | Christina / Ann Dery | 192.168.3.252 | **Win 11 Home** | WORKGROUP | None | Current |
| ASSISTMAN-PC | MeredithK (Asst Mgr) | 192.168.2.38 | Win 10 Pro | WORKGROUP | None | **3mo behind** |
| CHEF-PC | Ramon/Michael (Kitchen) | 10.0.20.232 | Win 11 Pro | WORKGROUP | None | Feb 2026 |
| CRYSTAL-PC | Crystal Rodriguez | 10.0.20.205 | Win 11 Pro | cascades.local | None | **5mo behind** |
| DESKTOP-DLTAGOI | Sharon Edwards | 192.168.3.133 | **Win 11 Home** | WORKGROUP | None | Current |
| DESKTOP-H6QHRR7 | Sylvia Cuen | 10.0.20.235 | Win 11 Pro WS | cascades.local | None | Feb 2026 |
| DESKTOP-KQSL232 | Lois Lane | 10.0.20.227 | Win 10 Pro | WORKGROUP | None | **3mo behind** |
| DESKTOP-LPOPV30 | Karen Rossini | 192.168.2.250 | Win 10 Pro | WORKGROUP | **ON** | **13mo behind!** |
| DESKTOP-U2DHAP0 | Ashley (Accounting) | 192.168.3.37 | Win 11 Pro | WORKGROUP | **ON** | Feb 2026 |
| LAPTOP-DRQ5L558 | User (generic) | **10.0.50.141 (Guest!)** | **Win 10 Home** | WORKGROUP | None | Current |
| LAPTOP-E0STJJE8 | User (generic) | 10.0.20.200 | **Win 10 Home** | WORKGROUP | None | Current |
| LAPTOP2 | Training2 | 192.168.2.118 | Win 11 Pro | WORKGROUP | Encrypted, OFF | **8mo behind** |
| MAINTENANCE-PC | Bruce Miller | 192.168.3.156 | **Win 11 Home** | WORKGROUP | None | Current |
| MDIRECTOR-PC | Shelby Trozzi (MemCare Dir) | 10.0.20.71 | **Win 11 Home** | WORKGROUP | None | Current |
| MEMRECEPT-PC | memfrtdesk (MemCare Recept) | 192.168.3.41 | **Win 10 Home** | WORKGROUP | None | **4mo behind** |
| NURSESTATION-PC | Nurses (shared, no pwd) | 192.168.3.135 | Win 10 Pro WS | WORKGROUP | None | Current |
| RECEPTIONIST-PC | Front Desk (shared, no pwd) | 192.168.2.17 | Win 11 Pro | WORKGROUP | Encrypted, OFF | Feb 2026 |

**Not audited (offline):** SALES4-PC, ASSISTNURSE-PC, DESKTOP-VAVKCIM, DESKTOP-TRCIEJA, DESKTOP-ROK7VNM, DESKTOP-MD6UQI3

Also on INTERNAL: 9 kitchen iPads (food order taking only, NOT medical — restrict to kitchen thermal printers), LG TV (10.0.20.234), staff phones

## Synology NAS (cascadesds) — Shared Folders
| Share | Volume | Notes |
|-------|--------|-------|
| Activities | Volume 1 | |
| chat | Volume 1 | Synced to CS-SERVER |
| homes | Volume 1 | User home dirs, synced to CS-SERVER |
| Management | Volume 1 | Synced to CS-SERVER |
| pacs | Volume 1 | **Not in migration plan — verify purpose** |
| Public | Volume 1 | Synced to CS-SERVER |
| SalesDept | Volume 1 | Synced to CS-SERVER |
| Sandra Fish | Volume 1 | **Personal folder — verify if still needed** |
| Server | Volume 1 | Synced to CS-SERVER |
| web | Volume 1 | **Not in migration plan — verify purpose** |

Storage: 371.6 GB used / 540.7 GB free (Volume 1, healthy)

## Ring Security Cameras (8 units, on LAN)
| Device | IP | MAC |
|--------|-----|-----|
| RingStickUpCam | 192.168.2.61 | 90:48:6c:a8:d9:fb |
| RingStickUpCam | 192.168.2.129 | 5c:47:5e:40:e2:82 |
| RingStickUpCam | 192.168.2.252 | ac:9f:c3:86:5a:f4 |
| RingDoorbell | 192.168.3.49 | 90:48:6c:80:6a:f7 |
| RingStickUpCam | 192.168.3.95 | 90:48:6c:a9:14:2f |
| RingStickUpCam | 192.168.3.162 | ac:9f:c3:80:89:c2 |
| RingStickUpCam | 192.168.3.178 | 64:9a:63:1b:d7:0b |
| Ring | 192.168.3.233 | 90:48:6c:3a:dd:3e |

## HIPAA Compliance
- **Primary project objective:** Get Cascades secure and HIPAA compliant (taken over from previous MSP)
- Clinical records: ALIS (cloud SaaS, https://www.go-alis.com/) — accessed via browser
- Local PHI: Synology NAS (cascadesDS) — migrating to CS-SERVER for proper access control + audit
- Kitchen iPads: NOT medical — food order taking only, need access to thermal receipt printers only
- Full compliance plan and gap analysis: `security/hipaa.md`

## Notes
- Residential senior living facility with per-room VLAN isolation
- MemCare (Memory Care) wing spans floors 5-6 with dedicated networking
- Staff devices use INTERNAL VLAN (10.0.20.0/24) via CSCNet WiFi SSID
- Residents get isolated /28 VLANs per room
- Dining Room AP is busiest (26 clients) - heavy iPad usage for residents
- ~626 resident devices on room VLANs (123 DirecTV, 75 phones, 27 Apple devices)
- NurseAssist device at 192.168.3.254 (a8:6d:aa:51:d6:55)
- iDRAC for CS-SERVER at 192.168.2.65 (00:22:19:60:50:e3)