Nelson Rothermel's questions

I'm trying to set up multi-factor authentication for AWS WorkSpaces using AD and OATH TOTP (e.g. Google Authenticator). In the AWS AD Connector config you can set up the RADIUS server's IP, port and shared code. If I understand correctly the RADIUS server is what would then connect to Google Authenticator or any other provider and those details are abstracted away behind RADIUS.

Is it possible to connect NPS to an OATH TOTP provider or do you require another RADIUS server? Did I misunderstand how this works and the provider would have additional software to install? I've searched online but haven't found a very clear answer.

I have an ASP.NET site in folder x. Currently lots of other static content gets added to folder x and gets mixed in, making it one big mess. I would like to keep the ASP.NET site and the content separate somehow.

I know you can create virtual directories in IIS, but there are LOTS and even some content in the root. The content people are not technical and really need an easy way to add it. I would stick everything in a subfolder (they don't touch anything outside, I don't touch their folder), but that would change their URLs (www.example.com/something to www.example.com/content/something).

I almost need a way to "merge" two folders and have them act as one. I'm guessing that is impossible since there could be file conflicts, etc. Any other ways I can achieve this?

I am playing around with PowerShell scripts and they're working great. However, I am wondering if there is any way to also show all the commands that were run, just as if you were manually typing them in yourself. This would be similar to "echo on" in batch files. I looked at the PowerShell command-line arguments, the cmdlets, but I didn't find anything obvious. Thanks!

I have an interesting problem... I need the local SYSTEM account on one server to access a specific network share on another server. Due to other reasons I can't use a regular domain account for the time being.

Using "psexec -s" I have played around with connecting to network shares under the local SYSTEM account with "net use". Since I am in a domain, I can simply add the DOMAIN\COMPUTER$ account to the share and NTFS permissions.

That seems to work fine everywhere except for one server. If I add "Everyone" to the share and NTFS, then that one server can connect. I noticed in the NTFS permissions (Security tab) that all the other servers I add have a computer icon on the left. This one server has a user icon. When adding the account I specifically said to only search for computers in the domain. And if I don't select computers, it never finds the account.

Basically, it seems the server account in the domain is different/corrupt in some way. Has anyone come across this? I would try re-adding the server, but it's critical and needs to be up as much as possible. I'm hoping there is a solution within Active Directory or something...