docker refresh

script német verzio
neue script, check file age
2026-03-25 14:01:26 +01:00 · 2026-03-25 11:51:13 +01:00 · 2026-03-25 11:34:33 +01:00 · 2026-03-25 10:18:00 +01:00 · 2026-03-25 10:09:23 +01:00 · 2026-03-25 10:09:04 +01:00
139 changed files with 5094 additions and 1248 deletions
--- a/.gitignore
+++ b/.gitignore
@@ -3,3 +3,4 @@
 Backup/Sophos/APS_HH.scx
 *.log
 *.log
+*.lock
--- a/App/Backup/Pharmatechnik/PTPublisher/IXOS/ham0489/IXOS
+++ b/App/Backup/Pharmatechnik/PTPublisher/IXOS/ham0489/IXOS
--- a/App/ITPW.kdbx
+++ b/App/ITPW.kdbx
--- a/Viewer_6.7.1116.zip
+++ b/Viewer_6.7.1116.zip
--- a/App/TD-4420TN.exe
+++ b/App/TD-4420TN.exe
--- a/connect-provision.pro
+++ b/connect-provision.pro
@@ -0,0 +1,11 @@
+[
+    {
+        "gateway": "vpn.aps-hh.de",
+        "user_portal_port": 7443,
+        "otp": false,
+        "auto_connect_host": "<Enter internal hostname or IP address>",
+        "can_save_credentials": false,
+        "check_remote_availability": false,
+        "run_logon_script": true
+    }
+]
--- a/Backup/Aps/ITPW.kdbx
+++ b/Backup/Aps/ITPW.kdbx
--- a/Backup/Fischereinschein/digitale-fischereiabgabe-istvan-meszely-sh-von-2026-bis-2030.pdf
+++ b/Backup/Fischereinschein/digitale-fischereiabgabe-istvan-meszely-sh-von-2026-bis-2030.pdf
--- a/Backup/MODOK-20260224T133918Z-1-001.zip
+++ b/Backup/MODOK-20260224T133918Z-1-001.zip
--- a/Conf/LibreNMS/LibreNMS.md
+++ b/Conf/LibreNMS/LibreNMS.md
@@ -0,0 +1,54 @@
+$.devices[*].hardware
+$.devices[*].type
+
+
+{
+    "status": "ok",
+    "devices": [
+        {
+            "device_id": 48,
+            "inserted": "2026-03-09 15:40:30",
+            "hostname": "10.101.0.201",
+            "sysName": "10.101.0.201",
+            "display": "NET-ZE02_(ZG)",
+            "ip": "10.101.0.201",
+            "overwrite_ip": null,
+            "community": null,
+            "authlevel": null,
+            "authname": null,
+            "authpass": null,
+            "authalgo": null,
+            "cryptopass": null,
+            "cryptoalgo": null,
+            "snmpver": "v2c",
+            "port": 161,
+            "transport": "udp",
+            "timeout": null,
+            "retries": null,
+            "snmp_disable": 1,
+            "bgpLocalAs": null,
+            "sysObjectID": null,
+            "sysDescr": null,
+            "sysContact": null,
+            "version": null,
+            "hardware": "",
+            "features": null,
+            "location_id": null,
+            "os": "ping",
+            "status": 1,
+            "status_reason": "",
+            "ignore": 0,
+            "disabled": 0,
+            "uptime": null,
+            "agent_uptime": 0,
+            "last_polled": "2026-03-11 14:53:50",
+            "last_poll_attempted": null,
+            "last_polled_timetaken": 1.0587911605835,
+            "last_discovered_timetaken": 1.3786909580231,
+            "last_discovered": "2026-03-11 13:00:46",
+            "last_ping": "2026-03-11 14:53:49",
+            "last_ping_timetaken": 0.76,
+            "purpose": null,
+            "type": "",
+            "serial": null,
+            "icon": null,
--- a/Conf/Switch/APX120
+++ b/Conf/Switch/APX120
--- a/Conf/Switch/SNMP_Config_Guide.md
+++ b/Conf/Switch/SNMP_Config_Guide.md
@@ -0,0 +1,54 @@
+# SNMP Beállítási Útmutató (Aruba AOS-CX)
+
+Ez az útmutató az Aruba 8360, 6300, 6100 és 6000 sorozatú (AOS-CX) switchekhez használható.
+
+## 1. SNMP Alapbeállítások
+Lépj be konfigurációs módba (`conf t`), és add ki az alábbi parancsokat:
+
+```bash
+# SNMP Közösségi név (Community) beállítása (Read-Only)
+snmp-server community prtg
+
+# Rendszerinformációk (opcionális, de ajánlott)
+snmp-server system-location "Serverraum"
+snmp-server system-contact "Jan Baulig"
+```
+
+## 2. SNMP Engedélyezése a hálózaton (KRITIKUS)
+Az AOS-CX switcheken az SNMP alapértelmezés szerint tiltva van minden hálózati szegmensben (VRF). Engedélyezni kell ott, ahol a switch IP-címe található.
+
+**A) Ha a switch IP-je egy VLAN-on van (pl. vlan 97):**
+```bash
+snmp-server vrf default
+```
+
+**B) Ha a különálló Management (OOBM) portot használod:**
+```bash
+snmp-server vrf mgmt
+```
+
+## 3. Ellenőrző parancsok
+A switchen az alábbi parancsokkal ellenőrizheted a működést:
+
+```bash
+# Megmutatja az aktív community-ket
+show snmp community
+
+# Megmutatja, melyik VRF-en figyel az SNMP
+show snmp vrf
+
+# Általános SNMP állapot és statisztika
+show snmp
+```
+
+## 4. LibreNMS Hozzáadás / Frissítés
+Ha az eszköz már benne van a LibreNMS-ben, de csak Ping-gel:
+1. Az eszköz oldalán: **Edit** -> **SNMP**.
+2. **SNMP Version:** `v2c`.
+3. **Community:** `prtg`.
+4. **Mentés.**
+5. Futtass egy kézi felfedezést a LibreNMS szerveren:
+   `docker exec -it librenms lnms device:discover [IP_CIM]`
+
+# Docker force übervachung
+docker exec -it librenms lnms device:discover 10.220.1.85
--- a/Conf/aps.local/postfix_main.cf.sh
+++ b/Conf/aps.local/postfix_main.cf.sh
@@ -0,0 +1,38 @@
+alias_database = hash:/etc/aliases
+alias_maps = hash:/etc/aliases
+broken_sasl_auth_clients = yes
+command_directory = /usr/bin
+compatibility_level = 3.10
+daemon_directory = /usr/libexec/postfix
+data_directory = /var/lib/postfix
+debug_peer_level = 2
+debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd $daemon_directory/$process_name $process_id & sleep 5
+html_directory = no
+inet_interfaces = all
+inet_protocols = all
+mail_owner = postfix
+mailq_path = /usr/bin/mailq.postfix
+manpage_directory = /usr/share/man
+meta_directory = /etc/postfix
+mydestination = $myhostname, localhost.$mydomain, localhost
+myhostname = antares-apo.local
+mynetworks = 127.0.0.0/8, 10.102.9.0/24, 10.101.0.0/16, 10.102.1.0/24
+newaliases_path = /usr/bin/newaliases.postfix
+queue_directory = /var/spool/postfix
+readme_directory = /usr/share/doc/postfix/README_FILES
+relayhost = [aps-exch01.aps.local]:25
+sample_directory = /usr/share/doc/postfix/samples
+sendmail_path = /usr/bin/sendmail.postfix
+setgid_group = postdrop
+shlib_directory = /usr/lib64/postfix
+smtp_tls_CAfile = /etc/pki/tls/certs/ca-bundle.crt
+smtp_tls_CApath = /etc/pki/tls/certs
+smtp_tls_security_level = may
+smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination
+smtpd_sasl_auth_enable = yes
+smtpd_sasl_local_domain = $myhostname
+smtpd_sasl_security_options = noanonymous
+smtpd_tls_cert_file = /etc/pki/tls/certs/postfix.pem
+smtpd_tls_key_file = /etc/pki/tls/private/postfix.key
+smtpd_tls_security_level = may
+unknown_local_recipient_reject_code = 550
--- a/Conf/home.meszely.eu/matrix.home.meszely.eu.md
+++ b/Conf/home.meszely.eu/matrix.home.meszely.eu.md
@@ -1,7 +0,0 @@
-<<<<<<< HEAD
-# Matrix - n8n-bot - Accesstoken
-syt_Ym90LW44bg_RMzxOFQllPjSPsRWAHvb_0FeoGL
-=======
-# bot-n8n access token
-syt_Ym90LW44bg_AbviDZpPwRhLydqppDvv_2OfdD8
->>>>>>> 2e10f37 (token)
--- a/Conf/home.meszely.eu/nginx_conf/admin.matrix.home.meszely.eu.conf
+++ b/Conf/home.meszely.eu/nginx_conf/admin.matrix.home.meszely.eu.conf
@@ -0,0 +1,30 @@
+server {
+    server_name admin.matrix.home.meszely.eu;
+
+    location / {
+        proxy_pass http://10.11.3.161:80;
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        proxy_set_header X-Forwarded-Proto $scheme;
+    }
+
+    listen 443 ssl; # managed by Certbot
+    ssl_certificate /etc/letsencrypt/live/admin.matrix.home.meszely.eu/fullchain.pem; # managed by Certbot
+    ssl_certificate_key /etc/letsencrypt/live/admin.matrix.home.meszely.eu/privkey.pem; # managed by Certbot
+    include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
+    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
+
+}
+server {
+    if ($host = admin.matrix.home.meszely.eu) {
+        return 301 https://$host$request_uri;
+    } # managed by Certbot
+
+
+    listen 80;
+    server_name admin.matrix.home.meszely.eu;
+    return 404; # managed by Certbot
+
+
+}
--- a/Conf/home.meszely.eu/nginx_conf/gitea.home.meszely.eu.conf
+++ b/Conf/home.meszely.eu/nginx_conf/gitea.home.meszely.eu.conf
@@ -0,0 +1,39 @@
+     server {
+         server_name gitea.home.meszely.eu;
+
+         # Ezt a sort is kommentezd ki most:
+         # return 301 https://$host$request_uri;
+         # Az Nginx-nek tudnia kell, hova tegye a Certbot challenge fájlját.
+         # Ha nincs beállítva root, ideiglenesen adjunk meg egyet.
+         # Ez a location blokk elegendő a Certbotnak.
+         location / {
+             proxy_pass http://10.11.3.98:3000;
+             proxy_set_header Host $host;
+             proxy_set_header X-Real-IP $remote_addr;
+             proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+             proxy_set_header X-Forwarded-Proto $scheme;
+             client_max_body_size 500M;
+             proxy_read_timeout   300s;
+         }
+
+    listen [::]:443 ssl ipv6only=on; # managed by Certbot
+    listen 443 ssl; # managed by Certbot
+    ssl_certificate /etc/letsencrypt/live/gitea.home.meszely.eu/fullchain.pem; # managed by Certbot
+    ssl_certificate_key /etc/letsencrypt/live/gitea.home.meszely.eu/privkey.pem; # managed by Certbot
+    include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
+    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
+
+}
+     server {
+    if ($host = gitea.home.meszely.eu) {
+        return 301 https://$host$request_uri;
+    } # managed by Certbot
+
+
+         listen 80;
+         listen [::]:80;
+         server_name gitea.home.meszely.eu;
+    return 404; # managed by Certbot
+
+
+}
--- a/Conf/home.meszely.eu/nginx_conf/matrix.home.meszely.eu.conf
+++ b/Conf/home.meszely.eu/nginx_conf/matrix.home.meszely.eu.conf
--- a/Conf/home.meszely.eu/nginx_conf/n8n.home.meszely.eu.conf
+++ b/Conf/home.meszely.eu/nginx_conf/n8n.home.meszely.eu.conf
@@ -0,0 +1,35 @@
+server {
+    server_name n8n.home.meszely.eu;
+
+    location / {
+        proxy_pass http://10.11.3.199:5678;
+        proxy_http_version 1.1;
+        proxy_set_header Upgrade $http_upgrade;
+        proxy_set_header Connection "upgrade";
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        proxy_set_header X-Forwarded-Proto $scheme;
+    }
+
+    listen 80;
+    listen 443 ssl; # managed by Certbot
+    ssl_certificate /etc/letsencrypt/live/n8n.home.meszely.eu/fullchain.pem; # managed by Certbot
+    ssl_certificate_key /etc/letsencrypt/live/n8n.home.meszely.eu/privkey.pem; # managed by Certbot
+    include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
+    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
+
+}
+server {
+    if ($host = n8n.home.meszely.eu) {
+        return 301 https://$host$request_uri;
+    } # managed by Certbot
+
+
+    server_name n8n.home.meszely.eu;
+
+    listen 80;
+    return 404; # managed by Certbot
+
+
+}
--- a/Conf/home.meszely.eu/nginx_conf/nginx_matrix.home.meszely.eu.conf
+++ b/Conf/home.meszely.eu/nginx_conf/nginx_matrix.home.meszely.eu.conf
@@ -0,0 +1,31 @@
+server {
+    server_name matrix.home.meszely.eu;
+
+    client_max_body_size 10M;
+
+    location / {
+        proxy_pass http://10.11.3.160:8008;
+        proxy_set_header X-Forwarded-For $remote_addr;
+        proxy_set_header Host $host;
+        proxy_set_header X-Forwarded-Proto $scheme;
+    }
+
+    listen 443 ssl; # managed by Certbot
+    ssl_certificate /etc/letsencrypt/live/matrix.home.meszely.eu/fullchain.pem; # managed by Certbot
+    ssl_certificate_key /etc/letsencrypt/live/matrix.home.meszely.eu/privkey.pem; # managed by Certbot
+    include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
+    ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
+
+}
+server {
+    if ($host = matrix.home.meszely.eu) {
+        return 301 https://$host$request_uri;
+    } # managed by Certbot
+
+
+    listen 80;
+    server_name matrix.home.meszely.eu;
+    return 404; # managed by Certbot
+
+
+}
--- a/Conf/home.meszely.eu/pihole.home.meszely.eu_qnap.dockerfile
+++ b/Conf/home.meszely.eu/pihole.home.meszely.eu_qnap.dockerfile
@@ -1,9 +0,0 @@
-docker run -d \
-  --name pihole.home.meszely.eu \
-  --network pihole \
-  --ip 10.11.3.1 \
-  --cap-add=NET_ADMIN \
-  -e TZ=Europe/Berlin \
-  -v /Docker/PIHOLE:/etc/pihole \
-  --restart unless-stopped \
-  pihole/pihole:latest
--- a/Conf/home.meszely.eu/rpi01/pihole_docker-compose.yaml
+++ b/Conf/home.meszely.eu/rpi01/pihole_docker-compose.yaml
@@ -0,0 +1,39 @@
+# More info at https://github.com/pi-hole/docker-pi-hole/ and https://docs.pi-hole.net/
+services:
+  pihole:
+    container_name: pihole
+    image: pihole/pihole:latest
+    ports:
+      # DNS Ports
+      - "53:53/tcp"
+      - "53:53/udp"
+      # Default HTTP Port
+      - "80:80/tcp"
+      # Default HTTPs Port. FTL will generate a self-signed certificate
+      - "443:443/tcp"
+      # Uncomment the line below if you are using Pi-hole as your DHCP server
+      - "67:67/udp"
+      # Uncomment the line below if you are using Pi-hole as your NTP server
+      - "123:123/udp"
+    environment:
+      # Set the appropriate timezone for your location (https://en.wikipedia.org/wiki/List_of_tz_database_time_zones), e.g:
+      TZ: 'Europe/Berlin'
+      # Set a password to access the web interface. Not setting one will result in a random password being assigned
+      FTLCONF_webserver_api_password: 'correct horse battery staple'
+      # If using Docker's default `bridge` network setting the dns listening mode should be set to 'ALL'
+      FTLCONF_dns_listeningMode: 'ALL'
+    # Volumes store your data between container upgrades
+    volumes:
+      # For persisting Pi-hole's databases and common configuration file
+      - './etc-pihole:/etc/pihole'
+      # Uncomment the below if you have custom dnsmasq config files that you want to persist. Not needed for most starting fresh with Pi-hole v6. If you're upgrading from v5 you and have used this directory before, you should keep it enabled for the first v6 container start to allow for a complete migration. It can be removed afterwards. Needs environment variable FTLCONF_misc_etc_dnsmasq_d: 'true'
+      #- './etc-dnsmasq.d:/etc/dnsmasq.d'
+    cap_add:
+      # See https://github.com/pi-hole/docker-pi-hole#note-on-capabilities
+      # Required if you are using Pi-hole as your DHCP server, else not needed
+      - NET_ADMIN
+      # Required if you are using Pi-hole as your NTP client to be able to set the host's system time
+      - SYS_TIME
+      # Optional, if Pi-hole should get some more processing time
+      - SYS_NICE
+    restart: unless-stopped
--- a/Conf/meszely.eu/mytrix.eu.comf.sh
+++ b/Conf/meszely.eu/mytrix.eu.comf.sh
@@ -0,0 +1,14 @@
+docker run -it --rm --mount type=volume,src=synapse-data,dst=/data -e SYNAPSE_SERVER_NAME=matrix.meszely.eu -e SYNAPSE_REPORT_STATS=yes matrixdotorg/synapse:latest generate
+
+docker run -d --name synapse --mount type=volume,src=synapse-data,dst=/data -p 8008:8008 matrixdotorg/synapse:latest
+
+# uj felhasznälo
+docker exec -it synapse register_new_matrix_user -c /data/homeserver.yaml http://localhost:8008
+# wpanda
+# EsT4 x9g5 C5fy mQ8N wwN3 VBTh EnqF n8un rZ4K 8Czv mYWr 7T1u
+
+# pandabot
+EsTP ciPf 3cWG E62g 6wWk q2vw p8Ds Dzxx KcZy xFMN cB4w y1pX
+# dev key
+syt_cGFuZGFib3Q_ILXWcPmRbRbqkABuLVmt_1yM7WZ
+
--- a/Conf/meszely.eu/ufw_default_rules.sh
+++ b/Conf/meszely.eu/ufw_default_rules.sh
@@ -0,0 +1,22 @@
+# Basic UFW Rules
+#
+# First Reset
+sudo ufw --force reset
+
+# Allow SSH
+sudo ufw allow ssh
+
+# Allow HTTP
+sudo ufw allow 80/tcp
+
+# Allow HTTPS
+sudo ufw allow 443/tcp
+
+# Allow N8N
+sudo ufw allow 5678/tcp
+
+# Deny all other incoming traffic
+sudo ufw default deny incoming
+
+# Allow all outgoing traffic
+sudo ufw default allow outgoing
--- a/Dev/APS-SFTP01/APS-SFTP01_System_Documentation_DE.md
+++ b/Dev/APS-SFTP01/APS-SFTP01_System_Documentation_DE.md
@@ -0,0 +1,56 @@
+# Systemdokumentation: APS-SFTP01 Datenaustausch-Server
+
+Dieses Dokument beschreibt die Funktionsweise, das Berechtigungssystem und die Zugriffspfade des Servers **APS-SFTP01 (10.102.1.202)**. Der Server dient zwei getrennten Importprozessen.
+
+## 1. Systemübersicht
+Der Server fungiert als zentraler Datenaustauschpunkt für die Systeme Bremen und Amondis:
+1. **Bremen-Mave Import:** Empfang externer Daten über SFTP.
+2. **Amondis-Mave Import:** Empfang externer Daten über SMB (Samba), und import nach Mave mit SFTP Protokolle.
+
+## 2. Benutzer und Zugriff
+┌──────────────────┬──────────────┬───────────────┬─────────────────┬─────────────────────────────┐
+│ Benutzer         │ Prozess      │ Typ           │ Shell           │ Aufgabe                     │
+├──────────────────┼──────────────┼───────────────┼─────────────────┼─────────────────────────────┤
+│ mave-sftp        │ Bremen-Mave  │ Nur SFTP      │ /sbin/nologin   │ Import von Bremen-Daten     │
+│ mave-amondis     │ Amondis-Mave │ SFTP & SMB    │ /sbin/nologin   │ Import von Amondis-Daten    │
+└──────────────────┴──────────────┴───────────────┴─────────────────┴─────────────────────────────┘
+*Hinweis: Keiner der Benutzer ist für eine interaktive SSH-Anmeldung (Terminal) berechtigt.*
+
+## 3. Verzeichnisstruktur und Berechtigungen
+
+### Bremen-Mave Import (mave-sftp)
+┌────────────────────────────────────────┬─────────────────────┬──────────────┬──────────────────────────────────┐
+│ Pfad                                   │ Besitzer            │ Berechtigung │ Rolle                            │
+├────────────────────────────────────────┼─────────────────────┼──────────────┼──────────────────────────────────┤
+│ /home/mave-sftp                        │ root:root           │ 755          │ SFTP Chroot-Gefängnis            │
+│ /home/mave-sftp/Schnittstellen/Bremen  │ mave-sftp:mave-sftp │ 775          │ Beschreibbarer Ordner für Bremen │
+└────────────────────────────────────────┴─────────────────────┴──────────────┴──────────────────────────────────┘
+
+### Amondis-Mave Import (mave-amondis)
+┌───────────────────────────────────────────────┬───────────────────────────┬──────────────┬─────────────────────────────┐
+│ Pfad                                          │ Besitzer                  │ Berechtigung │ Rolle                       │
+├───────────────────────────────────────────────┼───────────────────────────┼──────────────┼─────────────────────────────┤
+│ /home/mave-amondis                            │ root:root                 │ 755          │ SFTP Home (nicht schreibbar)|
+│ /home/mave-amondis/Schnittstellen             │ root:root                 │ 755          │ SFTP Chroot-Gefängnis       │
+│ /home/mave-amondis/Schnittstellen/Amondis/APO │ mave-amondis:mave-amondis │ 775          │ Beschreibbares Verzeichnis  │
+└───────────────────────────────────────────────┴───────────────────────────┴──────────────┴─────────────────────────────┘
+
+## 4. Netzwerkzugriff
+
+### SMB (Windows Freigabe)
+*   **Amondis-Pfad:** `\\10.102.1.202\mave-amondis\Schnittstellen\Amondis\APO`
+*   **Funktionsweise:** Samba verwendet die Einstellung `force user = mave-amondis`, um Berechtigungskonflikte zu vermeiden.
+
+### SFTP (Secure FTP)
+*   **Bremen-Verbindung:** `sftp://mave-sftp@10.102.1.202` (sieht nach der Anmeldung den Ordner `mave-amondis\Schnittstellen\Bremen`).
+*   **Amondis-Verbindung:** `sftp://mave-amondis@10.102.1.202` (sieht nach der Anmeldung den Ordner `Amondis\APO`).
+
+## 5. Automatische Benachrichtigungen (Monitoring)
+Bei jeder erfolgreichen Anmeldung (für beide Benutzer) wird eine E-Mail-Benachrichtigung an den Administrator gesendet (`i.meszely@antares-apo.de`).
+
+*   **Script-Speicherort:** `/usr/local/sbin/sftp-notify.sh`
+*   **Funktionsweise:** Das Script wird durch das PAM-System (Pluggable Authentication Modules) bei jedem `open_session`-Ereignis aufgerufen. Es unterscheidet zwischen SFTP (eingeschränkt) und interaktiven SSH-Anmeldungen anhand der Benutzer-Shell und versendet die Details (Benutzer, Remote-IP, Zeitstempel) per E-Mail.
+*   **Logdatei:** `/tmp/sftp-notify.log` (für das Debugging).
+
+---
+*Aktualisiert am: 25. März 2026*
--- a/Dev/APS-SFTP01/APS-SFTP01_System_Documentation_HU.md
+++ b/Dev/APS-SFTP01/APS-SFTP01_System_Documentation_HU.md
@@ -0,0 +1,56 @@
+# Rendszerdokumentáció: APS-SFTP01 Adatcsere Szerver
+
+Ez a dokumentum az **APS-SFTP01 (10.102.1.202)** szerver működését, jogosultsági rendszerét és elérési útjait foglalja össze. A szerver két elkülönített import folyamatot szolgál ki.
+
+## 1. Rendszer Áttekintés
+A szerver központi adatcsere pontként funkcionál a Bremen és az Amondis rendszerek felé:
+1. **Bremen-Mave Import:** Külső adatok fogadása SFTP-n keresztül.
+2. **Amondis-Mave Import:** Belső és külső adatcsere SMB (Samba) és SFTP protokollokon.
+
+## 2. Felhasználók és Hozzáférés
+┌──────────────────┬──────────────┬───────────────┬─────────────────┬───────────────────────────┐
+│ Felhasználó      │ Folyamat     │ Típus         │ Shell           │ Feladat                   │
+├──────────────────┼──────────────┼───────────────┼─────────────────┼───────────────────────────┤
+│ mave-sftp        │ Bremen-Mave  │ Csak SFTP     │ /sbin/nologin   │ Bremen adatok importálása │
+│ mave-amondis     │ Amondis-Mave │ SFTP & SMB    │ /sbin/nologin   │ Amondis adatok kezelése   │
+└──────────────────┴──────────────┴───────────────┴─────────────────┴───────────────────────────┘
+*Megjegyzés: Egyik felhasználó sem jogosult interaktív SSH (terminál) belépésre.*
+
+## 3. Könyvtárstruktúra és Jogosultságok
+
+### Bremen-Mave Import (mave-sftp)
+┌────────────────────────────┬─────────────────────┬─────────────┬─────────────────────────────────┐
+│ Elérési út                 │ Tulajdonos          │ Jogosultság │ Szerep                          │
+├────────────────────────────┼─────────────────────┼─────────────┼─────────────────────────────────┤
+│ /home/mave-sftp            │ root:root           │ 755         │ SFTP Chroot Börtön              │
+│ /home/mave-sftp/feltoltes  │ mave-sftp:mave-sftp │ 775         │ Írható mappa a Bremen adatoknak │
+└────────────────────────────┴─────────────────────┴─────────────┴─────────────────────────────────┘
+
+### Amondis-Mave Import (mave-amondis)
+┌───────────────────────────────────────────┬───────────────────────────┬─────────────┬────────────────────────┐
+│ Elérési út                                │ Tulajdonos                │ Jogosultság │ Szerep                 │
+├───────────────────────────────────────────┼───────────────────────────┼─────────────┼────────────────────────┤
+│ /home/mave-amondis                        │ root:root                 │ 755         │ SFTP Home (nem írható) │
+│ /home/mave-amondis/Schnittstellen         │ root:root                 │ 755         │ SFTP Chroot Börtön     │
+│ /home/mave-amondis/Schnittstellen/Amondis │ mave-amondis:mave-amondis │ 775         │ Írható munkakönyvtár   │
+└───────────────────────────────────────────┴───────────────────────────┴─────────────┴────────────────────────┘
+
+## 4. Hálózati Elérések
+
+### SMB (Windows Megosztás)
+*   **Amondis Útvonal:** `\\10.102.1.202\mave-amondis\Schnittstellen\Amondis\APO`
+*   **Működés:** A Samba a `force user = mave-amondis` beállítást használja a jogosultsági hibák elkerülése érdekében.
+
+### SFTP (Biztonságos FTP)
+*   **Bremen Kapcsolat:** `sftp://mave-sftp@10.102.1.202` (belépéskor a `feltoltes` mappát látja).
+*   **Amondis Kapcsolat:** `sftp://mave-amondis@10.102.1.202` (belépéskor az `Amondis` mappát látja).
+
+## 5. Automatikus Értesítések (Monitoring)
+Minden sikeres bejelentkezéskor (mindkét felhasználó esetén) e-mail értesítés érkezik az adminisztrátornak (`i.meszely@antares-apo.de`).
+
+*   **Script helye:** `/usr/local/sbin/sftp-notify.sh`
+*   **Működés:** A scriptet a PAM (Pluggable Authentication Modules) rendszer hívja meg minden `open_session` eseménynél. A script megkülönbözteti az SFTP (korlátozott) és az interaktív SSH belépéseket a felhasználó shellje alapján, majd elküldi az adatokat (felhasználó, távoli IP, időpont) e-mailben.
+*   **Log fájl:** `/tmp/sftp-notify.log` (hibakereséshez).
+
+---
+*Frissítve: 2026. március 24.*
--- a/Dev/APS-SFTP01/SFTP_Setup_DE.md
+++ b/Dev/APS-SFTP01/SFTP_Setup_DE.md
@@ -0,0 +1,80 @@
+# Konfiguration eines SFTP-Servers auf Fedora Linux
+
+Diese Anleitung beschreibt die Einrichtung eines sicheren SFTP-Servers unter Verwendung von OpenSSH. Der Fokus liegt auf Sicherheit durch die Einschränkung des Benutzerzugriffs (Chroot) und die Deaktivierung des Shell-Zugriffs.
+
+## 1. Benutzer anlegen
+Zuerst erstellen wir einen dedizierten Benutzer für den SFTP-Zugriff. Um die Sicherheit zu erhöhen, deaktivieren wir den normalen SSH-Terminal-Zugriff (`/sbin/nologin`).
+
+```bash
+# Benutzer erstellen (ohne Shell-Zugriff)
+sudo useradd -m -s /sbin/nologin sftpuser
+
+# Passwort für den Benutzer festlegen
+sudo passwd sftpuser
+```
+
+## 2. Firewall-Konfiguration
+SFTP läuft über das SSH-Protokoll (Port 22). Dieser muss in der Firewall freigegeben werden.
+
+```bash
+# SSH-Dienst in der Firewall erlauben
+sudo firewall-cmd --permanent --add-service=ssh
+
+# Konfiguration neu laden
+sudo firewall-cmd --reload
+```
+
+## 3. SSH-Konfiguration (Einschränkungen)
+Um den Benutzer in seinem Home-Verzeichnis zu isolieren (Chroot) und nur SFTP zu erlauben, muss die Datei `/etc/ssh/sshd_config` angepasst werden.
+
+1. Öffnen Sie die Konfigurationsdatei: `sudo nano /etc/ssh/sshd_config`
+2. Fügen Sie am Ende der Datei folgende Zeilen hinzu:
+
+```text
+Match User sftpuser
+    ForceCommand internal-sftp
+    PasswordAuthentication yes
+    ChrootDirectory %h
+    AllowTcpForwarding no
+    X11Forwarding no
+```
+
+*   **Match User:** Wendet die Regeln nur auf diesen Benutzer an.
+*   **ForceCommand internal-sftp:** Erlaubt nur SFTP-Befehle, keinen interaktiven Shell-Zugriff.
+*   **ChrootDirectory %h:** Sperrt den Benutzer in sein Home-Verzeichnis ein.
+
+## 4. Verzeichnisberechtigungen (Wichtig für Chroot)
+Damit der `Chroot`-Mechanismus funktioniert, muss das Home-Verzeichnis dem Benutzer `root` gehören und darf für andere nicht schreibbar sein.
+
+```bash
+# Besitzer auf root setzen
+sudo chown root:root /home/sftpuser
+sudo chmod 755 /home/sftpuser
+
+# Einen Unterordner für Uploads erstellen, in dem der Benutzer schreiben darf
+sudo mkdir /home/sftpuser/uploads
+sudo chown sftpuser:sftpuser /home/sftpuser/uploads
+```
+
+## 5. SELinux-Anpassungen (Fedora-spezifisch)
+Auf Fedora verhindert SELinux standardmäßig, dass der SSH-Dienst in Chroot-Umgebungen Schreibzugriff auf Home-Verzeichnisse hat. Dies muss explizit erlaubt werden.
+
+```bash
+# Schreibzugriff für SFTP-Chroot in SELinux aktivieren
+sudo setsebool -P ssh_chroot_rw_homedirs on
+```
+
+## 6. Dienst neu starten und testen
+Nachdem alle Änderungen vorgenommen wurden, muss der SSH-Dienst neu gestartet werden.
+
+```bash
+# SSH-Dienst neu starten
+sudo systemctl restart sshd
+```
+
+### Testen des Zugriffs:
+Von einem entfernten Rechner oder lokal:
+```bash
+sftp sftpuser@<IP-ADRESSE-DES-SERVERS>
+```
+*Hinweis: Ein Login via normalem SSH (`ssh sftpuser@...`) sollte nun automatisch abgelehnt werden.*
--- a/Dev/APS-SFTP01/SFTP_Setup_HU.md
+++ b/Dev/APS-SFTP01/SFTP_Setup_HU.md
@@ -0,0 +1,45 @@
+  1. Felhasználó létrehozása
+  Hozzunk létre egy felhasználót (pl. sftpuser), de tiltsuk le neki a shell hozzáférést, hogy ne tudjon belépni a terminálba, csak fájlokat másolni:
+   1 sudo useradd -m -s /sbin/nologin sftpuser
+   2 sudo passwd sftpuser
+
+  2. Tűzfal (Firewall) beállítása
+  Fedora alatt a firewalld fut. Engedélyezni kell az SSH-t (ami az SFTP-t is viszi):
+   1 sudo firewall-cmd --permanent --add-service=ssh
+   2 sudo firewall-cmd --reload
+
+  3. Az SFTP korlátozása (Opcionális, de ajánlott)
+  Ha azt szeretnéd, hogy a felhasználó csak az SFTP-t használhassa, és ne lásson bele a teljes szerver fájlrendszerébe, módosítsd az SSH konfigurációt:
+
+   1. Nyisd meg: sudo nano /etc/ssh/sshd_config
+   2. Menj a fájl végére és add hozzá:
+
+   1     Match User sftpuser
+   2         ForceCommand internal-sftp
+   3         PasswordAuthentication yes
+   4         ChrootDirectory %h
+   5         AllowTcpForwarding no
+   6         X11Forwarding no
+      Megjegyzés: A ChrootDirectory %h bezárja a felhasználót a saját home mappájába.
+
+   3. Fontos: Ha ChrootDirectory-t használsz, a home mappa tulajdonosának a root-nak kell lennie:
+
+   1     sudo chown root:root /home/sftpuser
+   2     sudo chmod 755 /home/sftpuser
+   3     # Hozz létre egy mappát, amibe írhat is:
+   4     sudo mkdir /home/sftpuser/feltoltes
+   5     sudo chown sftpuser:sftpuser /home/sftpuser/feltoltes
+
+   4. Indítsd újra az SSH-t:
+   1     sudo systemctl restart sshd
+
+  4. SELinux (A Fedora "lelke")
+  Mivel Fedora alatt dolgozunk, az SELinux alapértelmezés szerint blokkolhatja az SFTP írási jogokat, ha nem a szokványos módon használod. Engedélyezd az SFTP írást a home mappákba:
+
+   1 sudo setsebool -P ssh_chroot_rw_homedirs on
+  (Ha nem használsz Chroot-ot, akkor is érdemes ezt futtatni, ha hiba van.)
+
+  Összegzés:
+   * Ha csak gyorsan kell: useradd + passwd + firewall-cmd -> KÉSZ.
+   * Ha biztonságosan kell: Használd a Match User részt az sshd_config-ban, hogy ne tudjon "mászkálni" a szerveren.
+   
--- a/Dev/APS-SFTP01/SMB_Setup_HU.md
+++ b/Dev/APS-SFTP01/SMB_Setup_HU.md
@@ -0,0 +1,62 @@
+# Samba (SMB) Megosztás Beállítása - APS-SFTP01 (mave-amondis)
+
+Ez a leírás a `mave-amondis` felhasználó home könyvtárának megosztását mutatja be, aki **kizárólag SMB** hozzáféréssel rendelkezik (nem használ SFTP-t).
+
+## 1. Előfeltételek (Rendszerfelhasználó)
+Ellenőrizzük, hogy a felhasználó létezik-e, és a saját mappája az övé:
+```bash
+# Ha még nincs felhasználó:
+# sudo useradd -m -s /sbin/nologin mave-amondis
+
+# Jogosultságok ellenőrzése (Samba eléréshez 0700 vagy 0755 javasolt)
+sudo chown mave-amondis:mave-amondis /home/mave-amondis
+sudo chmod 700 /home/mave-amondis
+```
+
+## 2. Samba jelszó beállítása
+A Samba saját adatbázist használ, így meg kell adni egy jelszót a felhasználónak:
+```bash
+sudo smbpasswd -a mave-amondis
+```
+
+## 3. Samba konfiguráció (/etc/samba/smb.conf)
+Add hozzá a fájl végéhez az alábbi részt:
+
+```ini
+[mave-amondis]
+   comment = Mave Amondis SMB Share
+   path = /home/mave-amondis
+   valid users = mave-amondis
+   public = no
+   writable = yes
+   browsable = yes
+   guest ok = no
+   create mask = 0644
+   directory mask = 0755
+   force user = mave-amondis
+```
+
+## 4. SELinux és Tűzfal (Fedora / RHEL esetén kötelező!)
+A Fedora alapértelmezésben tiltja a Home könyvtárak megosztását és a Samba forgalmat.
+
+```bash
+# SELinux: Home könyvtárak engedélyezése Sambához
+sudo setsebool -P samba_enable_home_dirs on
+
+# Tűzfal: Samba szolgáltatás engedélyezése
+sudo firewall-cmd --permanent --add-service=samba
+sudo firewall-cmd --reload
+```
+
+## 5. Szolgáltatások indítása
+```bash
+sudo systemctl enable --now smb nmb
+sudo systemctl restart smb
+```
+
+## 6. Csatlakozás (Windows)
+Windows Intézőben:
+`\\APS-SFTP01\mave-amondis`
+
+---
+*Megjegyzés: Mivel ez a felhasználó nem használ SFTP-t, nem ütközünk a ChrootDirectory (root-owner) korlátozásaiba.*
--- a/Dev/APS-SFTP01/sftp-notify.sh
+++ b/Dev/APS-SFTP01/sftp-notify.sh
@@ -0,0 +1,45 @@
+#!/bin/bash
+
+# Locale beállítása, hogy a mail parancs ne hibázzon karakterkódolás miatt
+export LC_ALL=C.UTF-8
+export LANG=C.UTF-8
+
+# Log fájl a hibakereséshez (adj rá írási jogot: chmod 666 /tmp/sftp-notify.log)
+LOGFILE="/tmp/sftp-notify.log"
+
+# Csak a sikeres bejelentkezésekről (open_session) küldünk értesítést
+if [ "$PAM_TYPE" = "open_session" ]; then
+    
+    # Környezet mentése logba
+    echo "--- $(/usr/bin/date): Login attempt for $PAM_USER from $PAM_RHOST ---" >> "$LOGFILE"
+
+    # Felhasználó shelljének ellenőrzése
+    USER_SHELL=$(/usr/bin/getent passwd "$PAM_USER" | /usr/bin/cut -d: -f7)
+    
+    # Típus meghatározása
+    if [[ "$USER_SHELL" == *"/nologin" ]] || [[ "$USER_SHELL" == *"/false" ]]; then
+        LOGIN_TYPE="SFTP (Restricted)"
+    else
+        LOGIN_TYPE="SSH (Interactive)"
+    fi
+
+    MESSAGE="Login értesítés ($PAM_SERVICE):
+    Típus: $LOGIN_TYPE
+    Felhasználó: $PAM_USER
+    Távoli gép: $PAM_RHOST
+    Shell: $USER_SHELL
+    Időpont: $(/usr/bin/date)
+    Host: $(/usr/bin/hostname)"
+
+    # Email küldés (abszolút útvonallal)
+    # Ellenőrizd, hogy a 'mail' parancs a /usr/sbin/mail helyen van-e!
+    echo "$MESSAGE" | /usr/sbin/mail -s "$LOGIN_TYPE: $PAM_USER" i.meszely@antares-apo.de >> "$LOGFILE" 2>&1
+    
+    if [ $? -eq 0 ]; then
+        echo "Siker: Email elküldve." >> "$LOGFILE"
+    else
+        echo "HIBA: Az email küldés sikertelen volt! (Exit code: $?)" >> "$LOGFILE"
+    fi
+fi
+
+exit 0
--- a/Dev/APS-SFTP01/sftp-notify_de.sh
+++ b/Dev/APS-SFTP01/sftp-notify_de.sh
@@ -0,0 +1,45 @@
+#!/bin/bash
+
+# Locale-Einstellungen, damit der Mail-Befehl keine Zeichenkodierungsfehler verursacht
+export LC_ALL=C.UTF-8
+export LANG=C.UTF-8
+
+# Logdatei für das Debugging (Schreibrechte setzen: chmod 666 /tmp/sftp-notify.log)
+LOGFILE="/tmp/sftp-notify.log"
+
+# Benachrichtigung nur bei erfolgreichen Anmeldungen (open_session)
+if [ "$PAM_TYPE" = "open_session" ]; then
+    
+    # Umgebung in Log speichern
+    echo "--- $(/usr/bin/date): Anmeldeversuch für $PAM_USER von $PAM_RHOST ---" >> "$LOGFILE"
+
+    # Überprüfung der Benutzer-Shell
+    USER_SHELL=$(/usr/bin/getent passwd "$PAM_USER" | /usr/bin/cut -d: -f7)
+    
+    # Bestimmung des Typs
+    if [[ "$USER_SHELL" == *"/nologin" ]] || [[ "$USER_SHELL" == *"/false" ]]; then
+        LOGIN_TYPE="SFTP (Eingeschränkt)"
+    else
+        LOGIN_TYPE="SSH (Interaktiv)"
+    fi
+
+    MESSAGE="Anmeldebenachrichtigung ($PAM_SERVICE):
+    Typ: $LOGIN_TYPE
+    Benutzer: $PAM_USER
+    Remote-Host: $PAM_RHOST
+    Shell: $USER_SHELL
+    Zeitpunkt: $(/usr/bin/date)
+    Host: $(/usr/bin/hostname)"
+
+    # E-Mail-Versand (mit absolutem Pfad)
+    # Prüfen, ob der 'mail'-Befehl unter /usr/sbin/mail verfügbar ist!
+    echo "$MESSAGE" | /usr/sbin/mail -s "$LOGIN_TYPE: $PAM_USER" i.meszely@antares-apo.de >> "$LOGFILE" 2>&1
+    
+    if [ $? -eq 0 ]; then
+        echo "Erfolg: E-Mail gesendet." >> "$LOGFILE"
+    else
+        echo "FEHLER: E-Mail-Versand fehlgeschlagen! (Exit code: $?)" >> "$LOGFILE"
+    fi
+fi
+
+exit 0
--- a/Dev/APS-SFTP01/ssh_user_im_ssd.conf.md
+++ b/Dev/APS-SFTP01/ssh_user_im_ssd.conf.md
@@ -0,0 +1,11 @@
+[mave-amondis]
+    comment = Mave Amondis SMB Share
+    path = /home/mave-amondis
+    valid users = mave-amondis
+    public = no
+    writable = yes
+    browsable = yes
+    guest ok = no
+    create mask = 0644
+    directory mask = 0755
+    force user = mave-amondis
--- a/Dev/APS-SMTP01/Adduser_für_SMTP_Relay.md
+++ b/Dev/APS-SMTP01/Adduser_für_SMTP_Relay.md
@@ -0,0 +1,13 @@
+useradd -M -s /sbin/nologin n8nuser
+passwd n8nuser
+
+
+sudo postconf -e 'relayhost = [10.102.1.201]'
+sudo postconf -e 'myorigin = antares-apo.de'
+sudo postconf -e 'smtp_generic_maps = hash:/etc/postfix/generic'
+
+echo "apslinux@aps-sftp01.localdomain  sftp-alert@antares-apo.de" | sudo tee /etc/postfix/generic
+sudo postmap /etc/postfix/generic
+
+sudo systemctl restart postfix
+
--- a/Dev/APS-SMTP01/GEMINI_smtp_relay_opprem.md
+++ b/Dev/APS-SMTP01/GEMINI_smtp_relay_opprem.md
--- a/Dev/APS-SMTP01/GEMINI_smtp_user.md
+++ b/Dev/APS-SMTP01/GEMINI_smtp_user.md
@@ -0,0 +1,52 @@
+# Postfix SMTP Hitelesítés Beállítása (Fedora 43)
+
+Ez a dokumentum összefoglalja a lépéseket, amelyekkel lokális felhasználói hitelesítést (SASL) állítottunk be egy meglévő Postfix SMTP relay szerveren.
+
+## 1. Szükséges csomagok telepítése
+A SASL hitelesítéshez a Cyrus SASL könyvtárakra van szükség.
+```bash
+sudo dnf install cyrus-sasl cyrus-sasl-plain
+```
+
+## 2. SASL konfigurálása
+Létrehoztuk a `/etc/sasl2/smtpd.conf` fájlt, amely meghatározza, hogyan ellenőrizze a Postfix a jelszavakat.
+```conf
+# /etc/sasl2/smtpd.conf
+pwcheck_method: saslauthd
+mech_list: plain login
+```
+
+## 3. Postfix konfiguráció módosítása
+Beállítottuk a Postfix-et, hogy használja a SASL hitelesítést és engedélyezze a hitelesített kliensek számára a levélküldést.
+```bash
+sudo postconf -e 'smtpd_sasl_auth_enable = yes'
+sudo postconf -e 'smtpd_sasl_security_options = noanonymous'
+sudo postconf -e 'smtpd_sasl_local_domain = $myhostname'
+sudo postconf -e 'broken_sasl_auth_clients = yes'
+sudo postconf -e 'smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination'
+```
+
+## 4. Lokális felhasználó létrehozása
+Létrehoztunk egy rendszerszintű felhasználót, aki csak hitelesítésre szolgál (nincs shell hozzáférése).
+```bash
+sudo useradd -M -s /sbin/nologin mdmuser
+sudo passwd mdmuser
+```
+
+## 5. Szolgáltatások indítása és engedélyezése
+Elindítottuk a hitelesítésért felelős démont és újraindítottuk a Postfix-et.
+```bash
+sudo systemctl enable --now saslauthd
+sudo systemctl restart postfix
+```
+
+## 6. Ellenőrzés és Tesztelés
+A hitelesítés meglétét `telnet`-tel ellenőriztük:
+```bash
+telnet localhost 25
+# EHLO teszt.local parancs után látni kell:
+# 250-AUTH PLAIN LOGIN
+```
+
+A sikeres küldést a logokban az alábbi bejegyzés igazolja:
+`sasl_method=PLAIN, sasl_username=mdmuser@antares-apo.local, status=sent`
--- a/Dev/APS-SMTP01/Postfix_SMTP_Relay_SOP_de.md
+++ b/Dev/APS-SMTP01/Postfix_SMTP_Relay_SOP_de.md
@@ -0,0 +1,71 @@
+# SOP: Konfiguration Postfix SMTP Relay (APS-SMTP01)
+
+## 1. Zweck & Übersicht
+Diese Dokumentation beschreibt die Konfiguration des zentralen Postfix Mail-Relays (**APS-SMTP01**). Das System dient als Brücke, um internen Geräten (Druckern, Scannern) und automatisierten IT-Skripten den E-Mail-Versand über unseren offiziellen Provider zu ermöglichen.
+
+**System-Details:**
+*   **Server:** Linux (Ubuntu/Fedora basierend)
+*   **Hostname:** `aps-smtp01.aps.local`
+*   **IP-Adresse:** [Bitte interne IP ergänzen]
+*   **Dienst:** Postfix (MTA - Mail Transfer Agent)
+
+## 2. Zentrale Konfigurationsdateien
+Die gesamte Konfiguration befindet sich im Verzeichnis `/etc/postfix/`. Die wichtigsten Dateien sind:
+
+*   **`/etc/postfix/main.cf`**: Die Hauptkonfigurationsdatei mit den globalen Parametern.
+*   **`/etc/postfix/sasl_passwd`**: Enthält die Zugangsdaten für den externen Relay-Host (verschlüsselt via postmap).
+*   **`/etc/aliases`**: Definiert E-Mail-Weiterleitungen für lokale Benutzer.
+
+## 3. Konfigurations-Ausschnitt (main.cf)
+Die folgenden Parameter sind für den Betrieb als Relay entscheidend:
+
+```bash
+# Beispiel-Konfiguration für Relay mit Authentifizierung
+relayhost = [smtp.dein-provider.de]:587
+mynetworks = 127.0.0.0/8, 192.168.1.0/24 [Hier interne Subnetze erlauben]
+smtp_sasl_auth_enable = yes
+smtp_sasl_password_maps = hash:/etc/postfix/sasl_passwd
+smtp_tls_security_level = may
+header_size_limit = 4096000
+```
+
+## 4. Administrative Befehle & Wartung
+Nach Änderungen an der Konfiguration müssen folgende Schritte durchgeführt werden:
+
+### Konfiguration prüfen und laden:
+```bash
+# Syntax-Check der main.cf
+postfix check
+
+# Konfiguration neu laden (ohne Neustart des Dienstes)
+systemctl reload postfix
+```
+
+### Passwort-Datenbank aktualisieren:
+Wenn die `sasl_passwd` geändert wurde, muss die Datenbank neu generiert werden:
+```bash
+postmap /etc/postfix/sasl_passwd
+systemctl restart postfix
+```
+
+### Überprüfung der Logs (Fehlersuche):
+```bash
+# Echtzeit-Überwachung der Mail-Logs
+tail -f /var/log/mail.log
+# Alternativ via journalctl
+journalctl -u postfix -f
+```
+
+## 5. Testen des E-Mail-Versands
+Um die Funktionalität des Relays direkt auf dem Server zu testen:
+
+```bash
+echo "Testmail von APS-SMTP01" | mail -s "Testbetreff" de@deine-domain.de
+```
+
+## 6. Bekannte Probleme (Troubleshooting)
+*   **Relay access denied:** Prüfen Sie den Parameter `mynetworks`. Die IP des sendenden Geräts muss dort erlaubt sein.
+*   **Connection timed out (Port 25/587):** Prüfen Sie die Firewall-Regeln auf dem Server und im Netzwerk (Ausgehende Verbindung zum Provider).
+
+---
+*Erstellt für die IT-Dokumentation - Projekt: IT Internal Repository*
--- a/Dev/autostart/autostart_url.desktop
+++ b/Dev/autostart/autostart_url.desktop
@@ -0,0 +1,7 @@
+[Desktop Entry]
+Encoding=UTF-8
+Type=Application
+Name=Autostart URL
+Comment=Opens a specific URL with the default browser on GUI login.
+Exec=chromium --kiosk https://status.aps.local/
+Terminal=false
--- a/Dev/n8n/docker
+++ b/Dev/n8n/docker
@@ -0,0 +1,6 @@
+docker compose pull
+
+docker compose up -d
+
+docker image prune -f
+
--- a/Dev/n8n/panda_n8n_execute_command/n8n-data/database.sqlite-shm
+++ b/Dev/n8n/panda_n8n_execute_command/n8n-data/database.sqlite-shm
--- a/Dev/postfix_smtp_relay/etc/postfix/main.cf
+++ b/Dev/postfix_smtp_relay/etc/postfix/main.cf
@@ -0,0 +1,43 @@
+alias_database = hash:/etc/aliases
+alias_maps = hash:/etc/aliases
+command_directory = /usr/bin
+compatibility_level = 3.10
+daemon_directory = /usr/libexec/postfix
+data_directory = /var/lib/postfix
+debug_peer_level = 2
+debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd $daemon_directory/$process_name $process_id & sleep 5
+html_directory = no
+inet_interfaces = all
+inet_protocols = all
+mail_owner = postfix
+mailq_path = /usr/bin/mailq.postfix
+manpage_directory = /usr/share/man
+meta_directory = /etc/postfix
+mydestination = $myhostname, localhost.$mydomain, localhost
+mynetworks = 127.0.0.0/8, 10.102.9.0/24, 10.101.0.0/16, 10.102.1.0/24
+newaliases_path = /usr/bin/newaliases.postfix
+queue_directory = /var/spool/postfix
+readme_directory = /usr/share/doc/postfix/README_FILES
+#relayhost = apshh-de0i.mail.protection.outlook.com
+#relayhost = [apshh.mail.protection.outlook.com]:25
+relayhost = [aps-exch01.aps.local]:25
+#relayhost = 
+sample_directory = /usr/share/doc/postfix/samples
+sendmail_path = /usr/bin/sendmail.postfix
+setgid_group = postdrop
+shlib_directory = /usr/lib64/postfix
+#smtp_sasl_auth_enable = no
+smtpd_sasl_auth_enable = yes
+smtpd_sasl_security_options = noanonymous
+smtpd_sasl_local_domain = $myhostname
+broken_sasl_auth_clients = yes
+smtp_tls_CAfile = /etc/pki/tls/certs/ca-bundle.crt
+smtp_tls_CApath = /etc/pki/tls/certs
+smtp_tls_security_level = may
+smtpd_tls_cert_file = /etc/pki/tls/certs/postfix.pem
+smtpd_tls_key_file = /etc/pki/tls/private/postfix.key
+smtpd_tls_security_level = may
+unknown_local_recipient_reject_code = 550
+myhostname = antares-apo.local
+smtpd_recipient_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauth_destination
+
--- a/Dev/postfix_smtp_relay/etc/postfix/main.cf.19.02.2026
+++ b/Dev/postfix_smtp_relay/etc/postfix/main.cf.19.02.2026
@@ -0,0 +1,37 @@
+alias_database = hash:/etc/aliases
+alias_maps = hash:/etc/aliases
+command_directory = /usr/bin
+compatibility_level = 3.10
+daemon_directory = /usr/libexec/postfix
+data_directory = /var/lib/postfix
+debug_peer_level = 2
+debugger_command = PATH=/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin ddd $daemon_directory/$process_name $process_id & sleep 5
+html_directory = no
+inet_interfaces = all
+inet_protocols = all
+mail_owner = postfix
+mailq_path = /usr/bin/mailq.postfix
+manpage_directory = /usr/share/man
+meta_directory = /etc/postfix
+mydestination = $myhostname, localhost.$mydomain, localhost
+mynetworks = 127.0.0.0/8, 10.102.9.0/24, 10.101.0.0/16, 10.102.1.0/24
+newaliases_path = /usr/bin/newaliases.postfix
+queue_directory = /var/spool/postfix
+readme_directory = /usr/share/doc/postfix/README_FILES
+#relayhost = apshh-de0i.mail.protection.outlook.com
+#relayhost = [apshh.mail.protection.outlook.com]:25
+relayhost = [aps-exch01.aps.local]:25
+#relayhost = 
+sample_directory = /usr/share/doc/postfix/samples
+sendmail_path = /usr/bin/sendmail.postfix
+setgid_group = postdrop
+shlib_directory = /usr/lib64/postfix
+smtp_sasl_auth_enable = no
+smtp_tls_CAfile = /etc/pki/tls/certs/ca-bundle.crt
+smtp_tls_CApath = /etc/pki/tls/certs
+smtp_tls_security_level = may
+smtpd_tls_cert_file = /etc/pki/tls/certs/postfix.pem
+smtpd_tls_key_file = /etc/pki/tls/private/postfix.key
+smtpd_tls_security_level = may
+unknown_local_recipient_reject_code = 550
+myhostname = antares-apo.local
--- a/Dev/postfix_smtp_relay/etc/postfix/master.cf
+++ b/Dev/postfix_smtp_relay/etc/postfix/master.cf
@@ -0,0 +1,151 @@
+#
+# Postfix master process configuration file.  For details on the format
+# of the file, see the master(5) manual page (command: "man 5 master" or
+# on-line: https://www.postfix.org/master.5.html).
+#
+# Do not forget to execute "postfix reload" after editing this file.
+#
+# ==========================================================================
+# service type  private unpriv  chroot  wakeup  maxproc command + args
+#               (yes)   (yes)   (no)    (never) (100)
+# ==========================================================================
+smtp      inet  n       -       n       -       -       smtpd
+#smtp      inet  n       -       n       -       1       postscreen
+#smtpd     pass  -       -       n       -       -       smtpd
+#dnsblog   unix  -       -       n       -       0       dnsblog
+#tlsproxy  unix  -       -       n       -       0       tlsproxy
+# Choose one: enable submission for loopback clients only, or for any client.
+#127.0.0.1:submission inet n -   n       -       -       smtpd
+#submission inet n       -       n       -       -       smtpd
+#  -o syslog_name=postfix/submission
+#  -o smtpd_forbid_unauth_pipelining=no
+#  -o smtpd_tls_security_level=encrypt
+#  -o smtpd_sasl_auth_enable=yes
+#  -o smtpd_tls_auth_only=yes
+#  -o local_header_rewrite_clients=static:all
+#  -o smtpd_hide_client_session=yes
+#  -o smtpd_reject_unlisted_recipient=no
+#     Instead of specifying complex smtpd_<xxx>_restrictions here,
+#     specify "smtpd_<xxx>_restrictions=$mua_<xxx>_restrictions"
+#     here, and specify mua_<xxx>_restrictions in main.cf (where
+#     "<xxx>" is "client", "helo", "sender", "relay", or "recipient").
+#  -o smtpd_client_restrictions=
+#  -o smtpd_helo_restrictions=
+#  -o smtpd_sender_restrictions=
+#  -o smtpd_relay_restrictions=
+#  -o smtpd_recipient_restrictions=permit_sasl_authenticated,reject
+#  -o milter_macro_daemon_name=ORIGINATING
+# Choose one: enable submissions for loopback clients only, or for any client.
+#127.0.0.1:submissions inet n  -       n       -       -       smtpd
+#submissions     inet  n       -       n       -       -       smtpd
+#  -o syslog_name=postfix/submissions
+#  -o smtpd_forbid_unauth_pipelining=no
+#  -o smtpd_tls_wrappermode=yes
+#  -o smtpd_sasl_auth_enable=yes
+#  -o local_header_rewrite_clients=static:all
+#  -o smtpd_hide_client_session=yes
+#  -o smtpd_reject_unlisted_recipient=no
+#     Instead of specifying complex smtpd_<xxx>_restrictions here,
+#     specify "smtpd_<xxx>_restrictions=$mua_<xxx>_restrictions"
+#     here, and specify mua_<xxx>_restrictions in main.cf (where
+#     "<xxx>" is "client", "helo", "sender", "relay", or "recipient").
+#  -o smtpd_client_restrictions=
+#  -o smtpd_helo_restrictions=
+#  -o smtpd_sender_restrictions=
+#  -o smtpd_relay_restrictions=
+#  -o smtpd_recipient_restrictions=permit_sasl_authenticated,reject
+#  -o milter_macro_daemon_name=ORIGINATING
+#628       inet  n       -       n       -       -       qmqpd
+pickup    unix  n       -       n       60      1       pickup
+cleanup   unix  n       -       n       -       0       cleanup
+qmgr      unix  n       -       n       300     1       qmgr
+#qmgr     unix  n       -       n       300     1       oqmgr
+tlsmgr    unix  -       -       n       1000?   1       tlsmgr
+rewrite   unix  -       -       n       -       -       trivial-rewrite
+bounce    unix  -       -       n       -       0       bounce
+defer     unix  -       -       n       -       0       bounce
+trace     unix  -       -       n       -       0       bounce
+verify    unix  -       -       n       -       1       verify
+flush     unix  n       -       n       1000?   0       flush
+proxymap  unix  -       -       n       -       -       proxymap
+proxywrite unix -       -       n       -       1       proxymap
+smtp      unix  -       -       n       -       -       smtp
+relay     unix  -       -       n       -       -       smtp
+        -o syslog_name=${multi_instance_name?{$multi_instance_name}:{postfix}}/$service_name
+#       -o smtp_helo_timeout=5 -o smtp_connect_timeout=5
+showq     unix  n       -       n       -       -       showq
+error     unix  -       -       n       -       -       error
+retry     unix  -       -       n       -       -       error
+discard   unix  -       -       n       -       -       discard
+local     unix  -       n       n       -       -       local
+virtual   unix  -       n       n       -       -       virtual
+lmtp      unix  -       -       n       -       -       lmtp
+anvil     unix  -       -       n       -       1       anvil
+scache    unix  -       -       n       -       1       scache
+postlog   unix-dgram n  -       n       -       1       postlogd
+#
+# ====================================================================
+# Interfaces to non-Postfix software. Be sure to examine the manual
+# pages of the non-Postfix software to find out what options it wants.
+#
+# Many of the following services use the Postfix pipe(8) delivery
+# agent.  See the pipe(8) man page for information about ${recipient}
+# and other message envelope options.
+# ====================================================================
+#
+# maildrop. See the Postfix MAILDROP_README file for details.
+# Also specify in main.cf: maildrop_destination_recipient_limit=1
+#
+#maildrop  unix  -       n       n       -       -       pipe
+#  flags=DRXhu user=vmail argv=/usr/local/bin/maildrop -d ${recipient}
+#
+# ====================================================================
+#
+# Recent Cyrus versions can use the existing "lmtp" master.cf entry.
+#
+# Specify in cyrus.conf:
+#   lmtp    cmd="lmtpd -a" listen="localhost:lmtp" proto=tcp4
+#
+# Specify in main.cf one or more of the following:
+#  mailbox_transport = lmtp:inet:localhost
+#  virtual_transport = lmtp:inet:localhost
+#
+# ====================================================================
+#
+# Cyrus 2.1.5 (Amos Gouaux)
+# Also specify in main.cf: cyrus_destination_recipient_limit=1
+#
+#cyrus     unix  -       n       n       -       -       pipe
+#  flags=DRX user=cyrus argv=/usr/lib/cyrus-imapd/deliver -e -r ${sender} -m ${extension} ${user}
+#
+# ====================================================================
+#
+# Old example of delivery via Cyrus.
+#
+#old-cyrus unix  -       n       n       -       -       pipe
+#  flags=R user=cyrus argv=/usr/lib/cyrus-imapd/deliver -e -m ${extension} ${user}
+#
+# ====================================================================
+#
+# See the Postfix UUCP_README file for configuration details.
+#
+#uucp      unix  -       n       n       -       -       pipe
+#  flags=Fqhu user=uucp argv=uux -r -n -z -a$sender - $nexthop!rmail ($recipient)
+#
+# ====================================================================
+#
+# Other external delivery methods.
+#
+#ifmail    unix  -       n       n       -       -       pipe
+#  flags=F user=ftn argv=/usr/lib/ifmail/ifmail -r $nexthop ($recipient)
+#
+#bsmtp     unix  -       n       n       -       -       pipe
+#  flags=Fq. user=bsmtp argv=/usr/local/sbin/bsmtp -f $sender $nexthop $recipient
+#
+#scalemail-backend unix -       n       n       -       2       pipe
+#  flags=R user=scalemail argv=/usr/lib/scalemail/bin/scalemail-store
+#  ${nexthop} ${user} ${extension}
+#
+#mailman   unix  -       n       n       -       -       pipe
+#  flags=FRX user=list argv=/usr/lib/mailman/bin/postfix-to-mailman.py
+#  ${nexthop} ${user}
--- a/Dev/sw_fw_scan_CSV/results/aruba_firmware_versions_2026-02-06_13-41-56.csv
+++ b/Dev/sw_fw_scan_CSV/results/aruba_firmware_versions_2026-02-06_13-41-56.csv
@@ -0,0 +1,17 @@
+switch_name,ip_address,firmware_version
+NET-SW01,10.220.1.84,PL.10.16.1006
+NET-SW02,10.220.1.85,PL.10.16.1006
+NET-SW01,10.220.1.84,PL.10.16.1006
+NET-SW02,10.220.1.85,PL.10.16.1006
+NET-SW04,10.220.1.86,PL.10.16.1006
+NET-SW05,10.220.1.87,PL.10.16.1006
+NET-SW06,10.220.1.88,PL.10.16.1006
+NET-SW01-CORE,10.220.1.89,LL.10.16.1006
+NET-SW07,10.220.1.90,PL.10.16.1006
+NET-SW08,10.220.1.91,PL.10.16.1006
+NET-SW09,10.220.1.92,PL.10.16.1006
+NET-SW10,10.220.1.93,PL.10.16.1006
+NET-SW11,10.220.1.94,PL.10.16.1006
+NET-SW13,10.220.1.96,PL.10.16.1006
+NET-SW16,10.220.1.98,PL.10.16.1006
+N/A,10.220.1.99,Auth Failed
--- a/Dev/sw_fw_scan_CSV/results/aruba_firmware_versions_2026-02-06_14-17-55.csv
+++ b/Dev/sw_fw_scan_CSV/results/aruba_firmware_versions_2026-02-06_14-17-55.csv
@@ -0,0 +1,17 @@
+switch_name,ip_address,firmware_version
+NET-SW01,10.220.1.84,PL.10.16.1006
+NET-SW02,10.220.1.85,PL.10.16.1006
+NET-SW01,10.220.1.84,PL.10.16.1006
+NET-SW02,10.220.1.85,PL.10.16.1006
+NET-SW04,10.220.1.86,PL.10.16.1006
+NET-SW05,10.220.1.87,PL.10.16.1006
+NET-SW06,10.220.1.88,PL.10.16.1006
+NET-SW01-CORE,10.220.1.89,LL.10.16.1006
+NET-SW07,10.220.1.90,PL.10.16.1006
+NET-SW08,10.220.1.91,PL.10.16.1006
+NET-SW09,10.220.1.92,PL.10.16.1006
+NET-SW10,10.220.1.93,PL.10.16.1006
+NET-SW11,10.220.1.94,PL.10.16.1006
+NET-SW13,10.220.1.96,PL.10.16.1006
+NET-SW16,10.220.1.98,PL.10.16.1006
+N/A,10.220.1.99,Auth Failed
--- a/Dev/sw_ip_scann_CSV/config.json
+++ b/Dev/sw_ip_scann_CSV/config.json
@@ -1,19 +1,20 @@
 {
-  "network": {
-    "subnet": "10.101.0.0/24",
-    "auto_detect": false
-  },
-  "scanning": {
-    "ping_timeout": 0.3,
-    "ping_delay": 0.001,
-    "max_threads": 10
-  },
-  "database": {
-    "devices_file": "known_devices.json"
-  },
-  "logging": {
-    "enabled": true,
-    "log_file": "network_scanner.log",
-    "log_level": "INFO"
-  }
-}
+  "switch_ips": [
+    "10.220.1.84",
+    "10.220.1.85",
+    "10.220.1.86",
+    "10.220.1.87",
+    "10.220.1.88",
+    "10.220.1.89",
+    "10.220.1.90",
+    "10.220.1.91",
+    "10.220.1.92",
+    "10.220.1.93",
+    "10.220.1.94",
+    "10.220.1.96",
+    "10.220.1.98",
+    "10.220.1.99"
+  ],
+  "username": "svc.operator",
+  "password": "NuAaGTNPQWyeneQLI5qr"
+}
--- a/Dev/sw_ip_scann_CSV/get_aruba_clients.py
+++ b/Dev/sw_ip_scann_CSV/get_aruba_clients.py
@@ -101,7 +101,7 @@ if __name__ == "__main__":
    

    
-    PASSWORD = os.getenv('ARUBA_PASSWORD')
+    PASSWORD = os.getenv('ARUBA_PASSWORD', 'NuAaGTNPQWyeneQLI5qr')
    if not PASSWORD:
        print("Hiba: Az ARUBA_PASSWORD környezeti változó nincs beállítva.")
        exit()
--- a/Doc/Ai/Codex_AI_CLI.md
+++ b/Doc/Ai/Codex_AI_CLI.md
@@ -0,0 +1,5 @@
+# Codex
+npm i -g @openai/codex
+
+verbung@
+virgI6774#6774
--- a/Doc/Aps/Neue
+++ b/Doc/Aps/Neue
@@ -0,0 +1,3 @@
+# Neue User für SMTP Relay
+sudo useradd -M -s /sbin/nologin printeruser
+sudo passwd printeruser
--- a/Doc/Aps/Reisekosten/FB
+++ b/Doc/Aps/Reisekosten/FB
--- a/Doc/Aps/Reisekosten/FB
+++ b/Doc/Aps/Reisekosten/FB
--- a/Doc/Aps/Securitas.md
+++ b/Doc/Aps/Securitas.md
@@ -0,0 +1,20 @@
+i.A. Tim Grüner
+Projektleiter
+Neuer Höltigbaum 26-30
+22143 Hamburg
+Mobil: +49 170 7983858
+
+i. V. Dipl.-Ing.(FH) Jens Utke
+Senior Regional Account Manager
+Securitas Technology GmbH
+Neuer Höltigbaum 26-30
+22143 Hamburg
+M: +49 151 12237016
+i.A. Nico Wiehr
+Servicekoordinator
+T: +49 40 4149392221
+
+a.NR 206065
+
+IxEx$99
+
--- a/Doc/Aps/User/Alakhras_Ahmed.md
+++ b/Doc/Aps/User/Alakhras_Ahmed.md
@@ -0,0 +1,49 @@
+PS C:\Tools> .\Get-ADUserDetails.ps1 A.Alakhras
+
+========================================================
+ AD FELHASZNALOI ADATOK: Alakhras, Ahmed
+========================================================
+
+[ Allgemein / Altalanos ]
+
+
+Vorname (Keresztnev)  : Ahmed
+Nachname (Vezeteknev) : Alakhras
+Anzeigename           : Alakhras, Ahmed
+Beschreibung          :
+Buero (Iroda)         :
+Telefon               : +49 40 523889-0
+E-Mail                : A.Alakhras@antares-apo.de
+Webseite              : www.aps-hh.de
+
+
+
+--------------------------------------------------------
+[ Adresse / Cim ]
+
+
+Strasse            : Kuehnstraße 75
+Postfach           : {}
+PLZ (Iranyitoszam) : 22045
+Stadt (Varos)      : Hamburg
+Bundesland (Megye) : Hamburg
+Land               : Deutschland
+
+
+
+--------------------------------------------------------
+[ Organisation / Szervezet ]
+
+
+Titel (Beosztas)     :
+Abteilung (Osztaly)  : Lager
+Firma (Ceg)          : antares-apotheke Pharma Service e.K.
+Vorgesetzter (Fonok) : Nincs megadva
+
+
+
+--------------------------------------------------------
+[ Gruppen / Csoporttagsagok (8 db) ]
+DG_antares-apotheke-Jenfeld, Domänen-Benutzer, LIZ-M365-E3, Org-APS-alle, Org-GHKV, Org-Lager, Org-LO, VPN-User-Antares
+
+========================================================
--- a/Doc/Aps/User/Bremer
+++ b/Doc/Aps/User/Bremer
@@ -0,0 +1,49 @@
+PS C:\Tools> .\Get-ADUserDetails.ps1 -UserName "b.bremer"
+
+========================================================
+ AD FELHASZNALOI ADATOK: Bremer Bärbel
+========================================================
+
+[ Allgemein / Altalanos ]
+
+
+Vorname (Keresztnev)  : Bärbel
+Nachname (Vezeteknev) : Bremer
+Anzeigename           : Bremer Bärbel
+Beschreibung          :
+Buero (Iroda)         :
+Telefon               : +49 4141 7886-276
+E-Mail                : b.bremer@antares-apo.de
+Webseite              : www.aps-hh.de
+
+
+
+--------------------------------------------------------
+[ Adresse / Cim ]
+
+
+Strasse            : Harsefelder Straße 6
+Postfach           : {}
+PLZ (Iranyitoszam) : 21680
+Stadt (Varos)      : Stade
+Bundesland (Megye) : Niedersachsen
+Land               : Deutschland
+
+
+
+--------------------------------------------------------
+[ Organisation / Szervezet ]
+
+
+Titel (Beosztas)     : Buchhaltung
+Abteilung (Osztaly)  : STD-OFZ
+Firma (Ceg)          : antares-apotheke Stade e.K.
+Vorgesetzter (Fonok) : Huth Sybille
+
+
+
+--------------------------------------------------------
+[ Gruppen / Csoporttagsagok (11 db) ]
+DG_antares-apotheke-Stade, Domänen-Benutzer, FS_STD_BO_Daten_C, FS_STD_KV_Daten_C, FS_STD_OFZ_Daten_C, FS_STD_ONKO_Daten_C, FS_STD_VW_Daten_C, LIZ-M365-E3, MAP-Pfad-Z, Org-STD-Alle, Org-STD-FIBU
+
+========================================================
--- a/Doc/Aps/User/Steffen_Max.md
+++ b/Doc/Aps/User/Steffen_Max.md
@@ -0,0 +1,49 @@
+PS C:\Tools> .\Get-ADUserDetails.ps1 -UserName "m.steffen"
+
+========================================================
+ AD FELHASZNALOI ADATOK: Steffen, Max
+========================================================
+
+[ Allgemein / Altalanos ]
+
+Vorname (Keresztnev)  : Max
+Nachname (Vezeteknev) : Steffen
+Anzeigename           : Steffen, Max
+Beschreibung          :
+Buero (Iroda)         :
+Telefon               : +49 4141 7886-275
+E-Mail                : m.steffen@antares-apo.de
+Webseite              : www.aps-hh.de
+
+--------------------------------------------------------
+[ Adresse / Cim ]
+
+Strasse            : Harsefelder Straße 6
+Postfach           : {}
+PLZ (Iranyitoszam) : 21680
+Stadt (Varos)      : Stade
+Bundesland (Megye) : Niedersachsen
+Land               : Deutschland
+
+--------------------------------------------------------
+[ Organisation / Szervezet ]
+
+
+Titel (Beosztas)     : Buchhaltung
+Abteilung (Osztaly)  : Org-STD-FIBU
+Firma (Ceg)          : antares-apotheke Stade e.K.
+Vorgesetzter (Fonok) : Huth Sybille
+
+--------------------------------------------------------
+[ Gruppen / Csoporttagsagok (11 db) ]
+DG_antares-apotheke-Stade, 
+Domänen-Benutzer
+FS_STD_BO_Daten_C
+FS_STD_KV_Daten_C
+FS_STD_OFZ_Daten_C
+FS_STD_ONKO_Daten_C
+FS_STD_VW_Daten_C
+LIZ-M365-E3
+MAP-Pfad-Z
+Org-STD-Alle
+Org-STD-FIBU
--- a/Doc/Aps/User/mave-sftp.md
+++ b/Doc/Aps/User/mave-sftp.md
@@ -0,0 +1,8 @@
+Username: mave-sftp
+Password : asdWFWF45mfEGGEwf
+Server : 10.102.1.202
+Server : aps-sftp01
+
+User kann schrieben unten die Schnittstellen/Bremen/ Ordner 
+
+
--- a/Doc/Aps/Yealink.md
+++ b/Doc/Aps/Yealink.md
@@ -0,0 +1,7 @@
+# Benutzung des Yealink WP-20 USB-Adapters
+
+1.  **Anschluss:** Schließen Sie den Adapter an einen freien USB-Anschluss Ihres Computers an. Daraufhin wird auf Ihrem Computer ein neues CD-Laufwerk mit dem Namen "Yealink Pod" angezeigt.
+
+2.  **Dateien kopieren:** Öffnen Sie das CD-Laufwerk "Yealink Pod". Kopieren Sie die beiden darin enthaltenen Dateien auf Ihren Computer. Sie können diese beispielsweise auf den Desktop oder in den Ordner `C:\Tools\` kopieren (falls dieser existiert oder Sie ihn erstellen).
+
+3.  **Anwendung starten und Bildschirmfreigabe:** Starten Sie die Anwendung aus den kopierten Dateien. Mit dieser Anwendung können Sie Ihren gesamten Bildschirm oder ein ausgewähltes Anwendungsfenster mit den Besprechungsteilnehmern teilen.
--- a/Doc/Aps/Yealink_dunkel.pdf
+++ b/Doc/Aps/Yealink_dunkel.pdf
--- a/Doc/Aps/Yealink_hell.pdf
+++ b/Doc/Aps/Yealink_hell.pdf
--- a/Doc/Arbeitsagentur/20260208_031203_LEISTUNGSNACHWEIS.pdf
+++ b/Doc/Arbeitsagentur/20260208_031203_LEISTUNGSNACHWEIS.pdf
--- a/Doc/Aufgabe.md
+++ b/Doc/Aufgabe.md
@@ -6,31 +6,32 @@ https://www.tc-telefon.de/Kontakt/

 -- https://www.behnke-online.de/de/partner-plz-20000-29999

-4.
+8. Anrufen Fabio wegen die Donau Drucker Toner lvl 18%

-5.
-
-6. Druckers Konfig to smtp_relay
-+   Weser
-+   Elbe
-+   Aalbek
-+   Hellbach
-+   Lottbek
-+   Zorge
-+   Goldbach
-+   Flottbek
-+   Hamme
-
-Alster ?
-Ahr_Struensee-Haus
-   Seseke
-   Juemme
-   Radegast
-Steinbach
-Nonne
-   Eider
-   Enz
-   Orthbrookgraben
-   Siede
+11. 
+003 - Becker Florian
+010 - Wako
+025 - Hinck Stefanie (Stru)
+026 - va den Berg Wiebke (Stru)


+Kosten aps - Continia - kosten.aps.7739934@cdc.continiaonline.com
+Einkauf aps - Continia - einkauf.aps.7739934@cdc.continiaonline.com
+
+Informationstechnologie
+Software
+
+tv-token api
+297eca2e0221361646d3aa88f4b00e6f
+
+curl -H 'X-Auth-Token: 297eca2e0221361646d3aa88f4b00e6f' https://10.102.1.201/api/v0
+
+
+jasmin gresen
+
+PG19 : Officin
+
+15454
+
+ilka banemann - laptop - outlook (profile)
+inten im Officein drucker von Iphone
--- a/Doc/Bilders/Development.png
+++ b/Doc/Bilders/Development.png
--- a/Doc/Bilders/Infrastrukture.png
+++ b/Doc/Bilders/Infrastrukture.png
--- a/Doc/Bilders/Infrastrukture2.png
+++ b/Doc/Bilders/Infrastrukture2.png
--- a/Doc/Bilders/Knowledge
+++ b/Doc/Bilders/Knowledge
--- a/Doc/Bilders/Scripts.png
+++ b/Doc/Bilders/Scripts.png
--- a/Doc/Default-01.md
+++ b/Doc/Default-01.md
@@ -1,36 +1,35 @@
-Normal: 
-i.meszely
-vi..+Ma
+Normal: i.meszely - vi..+Ma
+Lokal: t2.meszely - ep..Ep
+Server: t1.meszely - warP#....#Mac
+Ent: adm.meszely@aps-hh.de - win

-Lokal:
-t2.meszely
-ep..Ep
+linux: q5tOCJLo
+Mave: WERNER
+Wifi: a494052388958b494052388958
+Wifi: ASR22Antares
+KP: MuVD9Zcc4HK0jDQ4HzMt

-Server:
-t1.meszely
-warP#....#Maci
+Sftp : mave-sftp : asdWFWF45mfEGGEwf
+SMB : mave-amondis : asdWFasdas43fEGGCf

-000
-pandA#...#min
+Smtp : mdmuser : Q8ZdNSEFCPwDCpoPsage
+Smtp : n8nuser : Q8ZdNSEFCPwDCpoPsage
+Smtp : drucker : Q8ZdNSrFCpwdCPoPsAge
+Smtp : elpro   : Q8ZwerrRTHwdDfoPsAge
+Smtp : maveuser: Q8456rrRgwegwDoRGSRQ
+Smtp : useralert : Q845Rr345gwDoRsdRQ

-Wifi:
-a494052388958b494052388958
-Wifi:
-ASR22Antares
+monitor - GNYOJTPFASNEEICPSV

-KP:
-MuVD9Zcc4HK0jDQ4HzMt
+antares-apo.de
+QuickHelp : win+ctrl+Q

-Web:
-https://aps-hh.estargmbh.de/
-virgI6774+
+Web: https://aps-hh.estargmbh.de/ virgI6774+

 Onboarding : 
 file:///Z:/IT_Dokumentation/APS-IT-Dokumentation/onboarding.pdf

-DHCP Servers:
-APS-Infra01
-APS-Infra02
+DHCP Servers: APS-Infra01, APS-Infra02

 Mysql server:
 root - 
@@ -59,6 +58,9 @@ MicrosoftAuth

 Kapelou2025

+IXOS
+10.90.0.1
+
 000
 pandA#...#min

@@ -70,7 +72,10 @@ Sophos :
 https://vpn.aps-hh.de:7443/


-Mobil : 0171 / 62 29 88 6
+
+hhbeshop.rdp
+
+Mobil : 0171 62 29 88 6
 E-Mail:D.Laumann@mavesoft.de

 steve : 0017649423884
@@ -82,11 +87,6 @@ AWs5XRhwkiBQcFf8Da
 Siebert Kristina - 
 Dirk Jänicke 0-6000 - 94 - 060  ,  0 6000 94 060

-543 Jan 
-546 Mario
-
-Dirk Jänicke 0-6000 - 94 - 060  ,  0 6000 94 060
-
 powercfg /h off

 SOIB-2024!   oder   SOIB2024
@@ -97,6 +97,8 @@ ANTARES

 ASR22Antares

+1234
+
 Status       Lokal     Remote                    Netzwerk

 -------------------------------------------------------------------------------
@@ -124,17 +126,20 @@ virgI6774#Virgi

 virgI6774#

+verbung@meszely.eu
+ionOs#6774#IonOs
+
 nogy tudom a hälozati jelszot viszaällitani windows serveren valami reset-networkpassword
 Reset-ComputerMachinePassword -Server dc01.domain.local -Credential (Get-Credential)

-NET-SW02 - 1/1/23
-Drucker Emmer
-
-NET-SW02 - 1/1/25
-Drucek Etsch
-
+homeassistant key : eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJhMzNjZGMzMDcwNzE0ZTY2YTkwMGUwMjgzMTcxNTg2ZSIsImlhdCI6MTc3MDM2MTk1MiwiZXhwIjoyMDg1NzIxOTUyfQ.6kG97i32BJb_HknD7R-y8xHqSpTaofbmTtoqjB8g1-w
 gemini api key : AIzaSyBUvqSD7llReHbCQAosuDDy1Q5gIT6pKLw
-gitea apy key : d5747e87cb2e1022904c4a60f801cb2758542abb
+gitea api key : d5747e87cb2e1022904c4a60f801cb2758542abb
+apple api key : wflh-aaft-dizu-cyxm
+uptimerobot api key : u3239099-556320ad0c63c591a7742a47
+
+uptmerobot@meszely.eu
+virgI

 docker-compose up -d
 docker-compose up -d --build
@@ -147,14 +152,34 @@ SOIB2026STD!

 KXBPK-6QNPK-93C3C-7KKVG-GMT44

-# Ispconfig
-[INFO] Your ISPConfig admin password is: nqhHDGE5mDAmMpN
-[INFO] Your MySQL root password is: unKdKpZJyCAzM5W8kuKb
-[INFO] Warning: Please delete the log files in /root/ispconfig-install-log/setup-* once you don't need them anymore because they contain your passwords!
-
-
 Herr Werther Rainer
 0172 9428000

 pandA#6774#Maci

+apslinux
+q5tOCJLo
+
+hipas
+321684
+
+verbung@meszely.eu
+ionOs#6774#IonOs
+
+3840 x 
+4096 x 2160
+
+https://prtg.aps.local/public/mapshow.htm?id=5643&mapid=4864A75D-BDEF-4C43-AD6E-02F79DA4A1EC
+
+
+RCPT TO:<istvan@meszely.eu>
+
+
+00:08:7B:25:DD:F3
+
+Kapelou2025
+
+Schliesinger mail:
+wegner@
+
+
--- a/Doc/Default-02.md
+++ b/Doc/Default-02.md
@@ -23,12 +23,7 @@ IKXTBULP

 0045518011453

-pandA6774567+
-
 STart12345!

-APS-TC033 - Updates
-
-HP-Aruba Switch kanni fragen remotelich alle connected client ? z.B. mit SNMP ?


--- a/Doc/Default-03.md
+++ b/Doc/Default-03.md
@@ -19,3 +19,15 @@ User$\j.baulig\_Scans

 aps\svc.scan2home
 4M!HhJhM#To0HDeQ-7qT
+4M!HhJhM#To0HDeQ-7qT
+
+Dein anwendungsspezifisches Passwort lautet:
+xqol-fwhb-cmnb-vgac
+
+APS-FILE02
+User$\p.heinrich\_Scans
+
+IXOS
+j.berg - 1234
+
+4940523889211
--- a/Doc/Drucklog_MySQL_SOP_de.md
+++ b/Doc/Drucklog_MySQL_SOP_de.md
@@ -0,0 +1,49 @@
+# SOP: Export von Druckprotokollen in MySQL (drucklog_export_v.0.1.ps1)
+
+## 1. Zweck des Skripts
+Dieses PowerShell-Skript dient der zentralen Erfassung von Druckvorgängen auf Windows-Servern oder Workstations. Es liest das Ereignisprotokoll `Microsoft-Windows-PrintService/Operational` (Event ID 307) aus und überträgt die Details (Benutzer, Dokumentname, Seitenanzahl, Drucker) in eine MySQL-Datenbank (`drucklog`).
+
+**Nutzen:** Ermöglicht die langfristige Analyse des Druckaufkommens und die Erstellung von Reports für die IT-Administration.
+
+## 2. Voraussetzungen & Installation
+Damit das Skript ordnungsgemäß ausgeführt werden kann, müssen folgende Voraussetzungen erfüllt sein:
+
+*   **MySQL Connector NET:** Das Skript erwartet die `MySql.Data.dll` im Pfad:  
+    `C:\Program Files (x86)\MySQL\MySQL Connector NET 9.4\MySql.Data.dll`
+*   **PrintService Log:** Das "Operational"-Protokoll im Windows Event Viewer muss **aktiviert** sein.
+*   **MySQL Datenbank:** Eine Datenbank namens `drucklog` mit der entsprechenden Tabellenstruktur muss auf dem Host `10.102.1.65` vorhanden sein.
+
+## 3. Zentrale Konfiguration (Skript-Header)
+Die Verbindungsparameter sind im Skript wie folgt definiert:
+
+*   **MySQL-Host:** `10.102.1.65`
+*   **Datenbank-Benutzer:** `svc.druckerlog`
+*   **Datenbank-Passwort:** (Im Skript hinterlegt)
+*   **Ziel-Datenbank:** `drucklog`
+*   **Log-Pfad:** `C:\Tools\drucklog_task.log` (Überprüfung der Skriptausführung)
+
+## 4. Ausführung & Automatisierung
+Das Skript kann manuell oder über die **Windows Aufgabenplanung (Task Scheduler)** ausgeführt werden.
+
+### Manueller Test (PowerShell):
+```powershell
+# In das Verzeichnis wechseln und ausführen
+.\drucklog_export_v.0.1.ps1
+```
+
+### Empfohlene Automatisierung (Task Scheduler):
+*   **Trigger:** Täglich, Wiederholung alle 1 Stunde.
+*   **Aktion:** `powershell.exe`
+*   **Argumente:** `-ExecutionPolicy Bypass -File "C:\Scripts\drucklog_export_v.0.1.ps1"`
+
+## 5. Monitoring & Protokollierung
+Das Skript schreibt bei jedem Durchlauf einen Zeitstempel in die lokale Datei:  
+`C:\Tools\drucklog_task.log`
+
+Bei Fehlern in der Datenbankverbindung prüfen Sie bitte, ob der MySQL-Host `10.102.1.65` vom lokalen System aus erreichbar ist (Port 3306).
+
+## 6. Sicherheitshinweis
+**Achtung:** Das Skript enthält Datenbank-Zugangsdaten im Klartext. Stellen Sie sicher, dass die NTFS-Berechtigungen auf dem Windows-Server so gesetzt sind, dass nur das IT-Team Zugriff auf das Skriptverzeichnis hat.
+
+---
+*Erstellt für die IT-Dokumentation - Projekt: IT Internal Repository*
--- a/Doc/Microsoft
+++ b/Doc/Microsoft
@@ -0,0 +1,24 @@
+  1. Kulcsfontosságú URL-ek (FQDN-ek)
+  A login és az outlook mellett a következőket is engedélyezni kell (jellemzően a 443-as porton):
+
+   * Bejelentkezés és Hitelesítés:
+       * *.microsoftonline.com
+       * *.microsoft.com
+       * *.msftauth.net
+       * *.msauth.net
+   * Outlook/OWA és Kapcsolódó szolgáltatások:
+       * *.office.com
+       * *.office365.com
+       * *.outlook.com
+   * Statikus tartalom és CDN (nélkülük lassú vagy szétesik az oldal):
+       * *.msedge.net
+       * *.msecnd.net
+       * *.res.office365.com
+
+
+*.outlook.office.com
+*.office.com
+*.microsoftonline.com
+*.msftauth.net
+
+https://learn.microsoft.com/en-us/microsoft-365/enterprise/urls-and-ip-address-ranges?view=o365-worldwide
--- a/Doc/MySQL_Cleaning_SOP_de.md
+++ b/Doc/MySQL_Cleaning_SOP_de.md
@@ -0,0 +1,38 @@
+# SOP: Bereinigung alter Datensätze (delete_old_records.py)
+
+## 1. Zweck des Skripts
+Dieses Python-Skript dient der automatischen Bereinigung (Housekeeping) unserer MySQL-Datenbanken. Es entfernt veraltete Datensätze, die eine definierte Aufbewahrungsfrist (Retention Period) überschritten haben, um die Datenbankgröße zu kontrollieren und die Abfragegeschwindigkeit zu optimieren.
+
+## 2. Voraussetzungen
+*   **Python Version:** Mindestens Python 3.8.
+*   **Bibliotheken:** `mysql-connector-python`, `python-dotenv`.
+*   **Datenbankzugriff:** Das Skript benötigt einen Benutzer mit `DELETE`-Berechtigungen auf die entsprechenden Tabellen.
+
+## 3. Konfiguration
+Die Steuerung des Skripts erfolgt über eine `.env`-Datei oder direkt im Skript-Header:
+
+*   **DB_HOST:** IP des Datenbankservers (z. B. `10.102.1.65`).
+*   **RETENTION_DAYS:** Anzahl der Tage, nach denen Daten gelöscht werden (Standard: X Tage).
+*   **DRY_RUN:** Wenn auf `True` gesetzt, zeigt das Skript nur an, was gelöscht würde, ohne die Datenbank tatsächlich zu verändern.
+
+## 4. Ausführung
+Es wird empfohlen, das Skript regelmäßig als Cronjob (Linux) oder Task Scheduler (Windows) auszuführen.
+
+### Testlauf (Dry-Run):
+```bash
+python3 delete_old_records.py --mode dry-run
+```
+
+### Scharfe Ausführung:
+```bash
+python3 delete_old_records.py --mode execute
+```
+
+## 5. Monitoring & Logs
+Alle Löschvorgänge werden in der Standardausgabe und optional in einer Log-Datei protokolliert. Prüfen Sie regelmäßig die Anzahl der gelöschten Datensätze, um sicherzustellen, dass die Logik korrekt arbeitet.
+
+## 6. Sicherheitshinweis
+**Achtung:** Gelöschte Daten können nicht ohne Backup wiederhergestellt werden. Führen Sie vor größeren Änderungen an der Aufbewahrungslogik immer ein Datenbank-Backup durch.
+
+---
+*Erstellt für die IT-Dokumentation - Projekt: IT Internal Repository*
--- a/Doc/O365_Winmail_Dat_Fix_SOP_de.md
+++ b/Doc/O365_Winmail_Dat_Fix_SOP_de.md
@@ -0,0 +1,31 @@
+# SOP: Behebung winmail.dat Anhang-Fehler (Office 365)
+
+## Problembeschreibung
+Wenn E-Mails an externe Empfänger gesendet werden, werden Anhänge (z. B. PDF-Dateien) nicht korrekt angezeigt, sondern sind in einer einzigen `winmail.dat`-Datei verpackt. Dies wird durch das Outlook-eigene **TNEF (Transport Neutral Encapsulation Format)** verursacht, das andere E-Mail-Clients nicht interpretieren können.
+
+## Lösungsmöglichkeiten
+
+### 1. Globale Lösung (Exchange Online Admin) - EMPFOHLEN
+Diese Einstellung gilt für die gesamte Organisation und deaktiviert die TNEF-Codierung auf Serverebene für externe Empfänger.
+
+1. Melden Sie sich im **Exchange Admin Center** an.
+2. Navigieren Sie zu: **Mail flow** (Nachrichtenfluss) -> **Remote domains** (Remote-Domänen).
+3. Wählen Sie die Domäne **Default** (*) aus.
+4. Suchen Sie die Einstellung **Use Table Neutral Encapsulation Format (TNEF)**.
+5. Setzen Sie den Wert auf **Never** (Niemals).
+6. Speichern Sie die Änderungen.
+
+### 2. PowerShell-Lösung (Schnellere Administration)
+Führen Sie den folgenden Befehl im Exchange Online PowerShell-Modul aus:
+
+```powershell
+Set-RemoteDomain -Identity Default -TNEFEnabled $false
+```
+
+### 3. Einzelne Benutzerlösung (Outlook Client)
+Wenn die Korrektur nur an einem PC erfolgen soll:
+1. **Datei -> Optionen -> E-Mail**.
+2. Im Abschnitt **Nachrichtenformat**: *"Beim Senden von Nachrichten im Rich-Text-Format an externe Empfänger"* -> Auf **In HTML-Format konvertieren** umstellen.
+
+---
+*Erstellt am: 24. März 2026*
--- a/Doc/O365_Winmail_Dat_Fix_SOP_hu.md
+++ b/Doc/O365_Winmail_Dat_Fix_SOP_hu.md
@@ -0,0 +1,31 @@
+# SOP: winmail.dat csatolmány hiba javítása (Office 365)
+
+## Probléma leírása
+Külső címzetteknek küldött e-mailek esetén a csatolmányok (például PDF fájlok) nem megfelelően érkeznek meg, hanem egyetlen `winmail.dat` fájlba csomagolva látszanak. Ezt az Outlook saját **TNEF (Transport Neutral Encapsulation Format)** kódolása okozza, amit más levelezőrendszerek nem tudnak értelmezni.
+
+## Megoldási lehetőségek
+
+### 1. Globális megoldás (Exchange Online Admin) - JAVASOLT
+Ez a beállítás az egész szervezetre vonatkozik, és szerver szinten tiltja le a TNEF kódolást a külső címzettek felé.
+
+1. Lépj be az **Exchange Admin Center** felületre.
+2. Navigálj ide: **Mail flow** (Üzenetküldés) -> **Remote domains** (Távoli tartományok).
+3. Válaszd ki a **Default** (*) tartományt.
+4. Keresd meg a **Use Table Neutral Encapsulation Format (TNEF)** beállítást.
+5. Állítsd az értékét **Never** (Soha) típusra.
+6. Mentsd el a módosításokat.
+
+### 2. PowerShell megoldás (Gyorsabb adminisztráció)
+Futtasd az alábbi parancsot az Exchange Online PowerShell modulban:
+
+```powershell
+Set-RemoteDomain -Identity Default -TNEFEnabled $false
+```
+
+### 3. Egyéni felhasználói megoldás (Outlook kliens)
+Ha csak egy gépen kell javítani:
+1. **Fájl -> Beállítások -> Posta**.
+2. Az **Üzenetformátum** résznél: *"Üzenetek küldése RTF formátumban külső címzetteknek"* -> Állítsd át **Konvertálás HTML formátumra** értékre.
+
+---
+*Készült: 2026. március 24.*
--- a/Doc/PDF_Import_O365_SOP_de.md
+++ b/Doc/PDF_Import_O365_SOP_de.md
@@ -0,0 +1,41 @@
+# SOP: Automatisierter PDF-Import aus O365 (import_pdf_from_o365_de.v2.2.py)
+
+## 1. Zweck des Skripts
+Dieses Python-Skript automatisiert den Import von PDF-Dokumenten aus der Microsoft 365-Umgebung (z.B. Outlook-Postfächer oder SharePoint) in das lokale IT-Dateisystem. Es dient zur effizienten Digitalisierung von Dokumenten, die als E-Mail-Anhänge eingehen.
+
+## 2. Voraussetzungen & Bibliotheken
+Um das Skript auszuführen, sind folgende Module notwendig:
+
+*   **Python:** Version 3.8+
+*   **Module:** `pip install O365 requests python-dotenv`
+*   **Infrastruktur:** Eine registrierte Anwendung in Azure AD (Entra ID) mit den entsprechenden API-Berechtigungen (`Mail.Read`, `Files.Read`).
+
+## 3. Zentrale Konfiguration
+Das Skript benötigt eine `.env`-Datei mit folgenden Zugangsdaten:
+
+*   **CLIENT_ID:** Die ID der registrierten Azure-App.
+*   **CLIENT_SECRET:** Das zugehörige Client-Secret für die Authentifizierung.
+*   **TARGET_FOLDER:** Der lokale Pfad, in dem die PDF-Dateien gespeichert werden sollen.
+*   **MAILBOX:** Die E-Mail-Adresse des zu überwachenden Postfachs.
+
+## 4. Ausführung & Betrieb
+Das Skript kann sowohl manuell als auch automatisiert über einen Dienst oder Cronjob gestartet werden.
+
+### Manueller Start:
+```bash
+# Skript manuell aufrufen
+python3 import_pdf_from_o365_de.v2.2.py
+```
+
+### Fehlerbehebung (Troubleshooting):
+*   **Authentifizierungsfehler:** Prüfen Sie, ob das Client-Secret abgelaufen ist oder die Berechtigungen in Azure AD korrekt gesetzt sind.
+*   **Download-Fehler:** Stellen Sie sicher, dass das Zielverzeichnis vorhanden ist und Schreibrechte bestehen.
+
+## 5. Monitoring
+Die Ausführung des Skripts wird standardmäßig protokolliert. Bei erfolgreichem Import werden die entsprechenden Log-Einträge erstellt, die den Dateinamen und den Zeitstempel enthalten.
+
+## 6. Sicherheitshinweis
+Bewahren Sie die `.env`-Datei sicher auf und geben Sie das **Client-Secret** niemals an unbefugte Personen weiter. Es wird empfohlen, die Secret-Rotation gemäß IT-Sicherheitsrichtlinien regelmäßig durchzuführen.
+
+---
+*Erstellt für die IT-Dokumentation - Projekt: IT Internal Repository*
--- a/Doc/WoT/WoT.md
+++ b/Doc/WoT/WoT.md
@@ -0,0 +1,2 @@
+# WoT
+https://worldoftanks.eu/hu/content/guide/twitch-drops/
--- a/Doc/all_ad_users.csv
+++ b/Doc/all_ad_users.csv
@@ -1,444 +0,0 @@
-"Name","SamAccountName","Mail","Telephone","Mobile","Fax_business","Office","Department","Title","Enabled"
-"Exchange Online-ApplicationAccount","$634000-U72RC8FEQJD9",,,,,,,,"False"
-"SystemMailbox{bb558c35-97f1-4cb9-8ff7-d53741dc928c}","SM_5a6e2149ce8342899","SystemMailboxbb558c35-97f1-4cb9-8ff7-d53741dc928c@aps-hh.de",,,,,,,"False"
-"Gast","Gast",,,,,,,,"False"
-"krbtgt","krbtgt",,,,,,,,"False"
-"Administrator","Administrator",,,,,,,,"True"
-"BHS$","BHS$",,,,,,,,"True"
-"Gielsdorf Mario | APS","m.gielsdorf","M.Gielsdorf@aps-hh.de","+49 40 523889-500",,,,"IT","IT-Manager","True"
-"Baulig Jan","j.baulig","j.baulig@aps-hh.de","+49 40 523889-500",,,,"IT","IT System Engineer","True"
-"ext Sabine Gurtzig","ext.Sabine.Gurtzig",,,,,,,,"True"
-"svc.MX42UEMdomjoin","svc.MX42UEMdomjoin",,,,,,,,"True"
-"ext Sergej Borzyh","ext.Sergej.Borzyh",,,,,,,,"True"
-"svc.MX42service","svc.MX42service",,,,,,,,"True"
-"svc.sterimon01","svc.sterimon01","svc.sterimon01@aps-hh.de",,,,,,,"True"
-"FederatedEmail.4c1f4d8b-8179-4148-93bf-00a95fa1e042","SM_82c2982b76c9463fa","FederatedEmail.4c1f4d8b-8179-4148-93bf-00a95fa1e042@aps-hh.de",,,,,,,"False"
-"SystemMailbox{1f05a927-628d-4223-aa89-33e192af1bb0}","SM_4b7d5ebb25974aa19","MSExchApproval1f05a927-3be2-4fb9-aa03-b59fe3b56f4c@aps-hh.de",,,,,,,"False"
-"SystemMailbox{e0dc1c29-89c3-4034-b678-e6c29d823ed9}","SM_329fce240c114c4d9","MsExchDiscoverye0dc1c29-89c3-4034-b678-e6c29d823ed9@aps-hh.de",,,,,,,"False"
-"DiscoverySearchMailbox {D919BA05-46A6-415f-80AD-7E09334BB852}","SM_2a527cbd2fc846aa8","MsExchDiscoveryMailboxD919BA05-46A6-415f-80AD-7E09334BB852@aps-hh.de",,,,,,,"False"
-"Migration.8f3e7716-2011-43e4-96b1-aba62d229136","SM_00f35c8420fa452bb","Migration.8f3e7716-2011-43e4-96b1-aba62d229136@aps-hh.de",,,,,,,"False"
-"SystemMailbox{D0E409A0-AF9B-4720-92FE-AAC869B0D201}","SM_865e24ed3c1a4ba99","SystemMailbox{D0E409A0-AF9B-4720-92FE-AAC869B0D201}@aps-hh.de",,,,,,,"False"
-"SystemMailbox{2CE34405-31BE-455D-89D7-A7C7DA7A0DAA}","SM_3d1b161926fc46378","SystemMailbox{2CE34405-31BE-455D-89D7-A7C7DA7A0DAA}@aps-hh.de",,,,,,,"False"
-"SystemMailbox{8cc370d3-822a-4ab8-a926-bb94bd0641a9}","SM_be0fd275cc3643db8","SystemMailbox8cc370d3-822a-4ab8-a926-bb94bd0641a9@aps-hh.de",,,,,,,"False"
-"HealthMailbox68875620073d4f80be8d87f9029d7757","HealthMailbox6887562","HealthMailbox68875620073d4f80be8d87f9029d7757@aps.local",,,,,,,"True"
-"HealthMailboxab8c0d4eba034c2a83f90ad782a7ea82","HealthMailboxab8c0d4","HealthMailboxab8c0d4eba034c2a83f90ad782a7ea82@aps-hh.de",,,,,,,"True"
-"HealthMailbox74e7ca62b5ea4092882b23d2635c54d2","HealthMailbox74e7ca6","HealthMailbox74e7ca62b5ea4092882b23d2635c54d2@aps.local",,,,,,,"True"
-"HealthMailbox8e7dfaa2030949a0bd5a3de1642dd8ca","HealthMailbox8e7dfaa","HealthMailbox8e7dfaa2030949a0bd5a3de1642dd8ca@aps.local",,,,,,,"True"
-"HealthMailbox8f99773946ac4fbfaedd138f1681e3ed","HealthMailbox8f99773","HealthMailbox8f99773946ac4fbfaedd138f1681e3ed@aps.local",,,,,,,"True"
-"HealthMailbox7042aab3ae4947f08d049a95b01219c8","HealthMailbox7042aab","HealthMailbox7042aab3ae4947f08d049a95b01219c8@aps.local",,,,,,,"True"
-"HealthMailbox0b95dbddfc744ed9b846d78a08d67e92","HealthMailbox0b95dbd","HealthMailbox0b95dbddfc744ed9b846d78a08d67e92@aps.local",,,,,,,"True"
-"HealthMailbox97ac4342b98b4db98c80775548359d63","HealthMailbox97ac434","HealthMailbox97ac4342b98b4db98c80775548359d63@aps.local",,,,,,,"True"
-"HealthMailbox3a70608842ba4e5aad5a35b74cc3374d","HealthMailbox3a70608","HealthMailbox3a70608842ba4e5aad5a35b74cc3374d@aps.local",,,,,,,"True"
-"HealthMailbox675f8d36387246f0b44b723e534a8671","HealthMailbox675f8d3","HealthMailbox675f8d36387246f0b44b723e534a8671@aps.local",,,,,,,"True"
-"HealthMailbox5e6fd9e4f6ba461d95ecfb9d6d5095d8","HealthMailbox5e6fd9e","HealthMailbox5e6fd9e4f6ba461d95ecfb9d6d5095d8@aps.local",,,,,,,"True"
-"HealthMailbox1e45a104a12148ff8af2288c6dd94728","HealthMailbox1e45a10","HealthMailbox1e45a104a12148ff8af2288c6dd94728@aps.local",,,,,,,"True"
-"HealthMailboxb0aec2207b0d4725be66e570e72cc7c8","HealthMailboxb0aec22","HealthMailboxb0aec2207b0d4725be66e570e72cc7c8@aps.local",,,,,,,"True"
-"HealthMailboxa4eb1afc484a4e5a8b6f3b6adf0cb73d","HealthMailboxa4eb1af","HealthMailboxa4eb1afc484a4e5a8b6f3b6adf0cb73d@aps.local",,,,,,,"True"
-"HealthMailboxce6bc0ed68474dabb4a791bc20a72657","HealthMailboxce6bc0e","HealthMailboxce6bc0ed68474dabb4a791bc20a72657@aps.local",,,,,,,"True"
-"HealthMailbox8a35232545e04dc7b026c54f0ec40644","HealthMailbox8a35232","HealthMailbox8a35232545e04dc7b026c54f0ec40644@aps.local",,,,,,,"True"
-"helpdesk","helpdesk","helpdesk@aps-hh.de","+49 40 523889-500",,,,"Informationstechnologie","Ihr Service Desk Team","True"
-"IT","it","it@aps-hh.de","+49 40 523889-500",,,,"IT","IT Service","True"
-"Rechnungen_Streit","rechnungen_streit","rechnungen_streit@aps-hh.de",,,,,,,"False"
-"Rechnungen_Consult","rechnungen_consult","rechnungen_consult@aps-hh.de",,,,,,,"False"
-"Luboeinsky Sara Marie","S.Luboeinsky","s.luboeinsky@aps-hh.de","+49 40 523889-100",,"+49 40 523889-400",,"KPM","Apothekerin","True"
-"Khan Hussain","H.Khan","H.Khan@aps-hh.de","+49 40 523889-0",,"+49 40 523889-400",,"Lager",,"True"
-"FiBu","FiBu","FiBu@aps-hh.de",,,,,,,"False"
-"Corinna Börgeling","corinna.boergeling",,,,,,"ERP Business Unit","Project Manager","True"
-"Monitoring Alarme","monitoringalarme","monitoringalarme@aps-hh.de",,,,,,,"False"
-"Oppermann Larissa","L.Oppermann","L.Oppermann@aps-hh.de","+49 40 523889-222",,"+49 40 523889-401",,"EM","Oecotrophologin","True"
-"sys_BusinessCentra","sys_BusinessCentral",,,,,,,,"False"
-"Yunfei Fu","yunfei.fu",,,,,,,,"True"
-"Ramon Klatt-Philipp","ramon.klatt-philipp",,,,,,,,"True"
-"Gaebert Sinah","S.Gaebert","S.Gaebert@aps-hh.de","+49 40 523889-100",,"+49 40 523889-400",,"KPM","Fachapothekerin für Klinische Pharmazie;","True"
-"Hintz Lennart","L.Hintz","L.Hintz@aps-hh.de","+49 40 523889-0","+49 151 25243765","+49 40 523889-400",,,"Apotheker","True"
-"Heinrich Peggy","P.Heinrich","P.Heinrich@aps-hh.de","+49 40 523889-100",,"+49 40 523889-400","Zentrale","KPM","Fachapothekerin für klinische Pharmazie;","True"
-"Baum Sabine","S.Baum","S.Baum@aps-hh.de","+49 40 523889-100",,"+49 40 523889-400",,"KPM","Fachapothekerin für Klinische Pharmazie","False"
-"Scheithauer Julia Marie","J.Scheithauer","J.Scheithauer@aps-hh.de","+49 40 523889-100",,"+49 40 523889-400",,"KPM","Apothekerin","True"
-"Goll Insa","I.Goll","I.Goll@aps-hh.de","+49 40 523889-100",,"+49 40 523889-400",,"KPM","Fachapothekerin für Klinische Pharmazie","True"
-"Möller Julia","J.Moeller","J.Moeller@aps-hh.de","+49 40 523889-0","+49 151 16026359","+49 40 523889-419",,"MV","Pharmazeutisch-kaufmännische Angestellte (PKA)","True"
-"Bayraktar Betuel","B.Bayraktar","B.Bayraktar@aps-hh.de","+49 40 523889-0",,"+49 40 523889-582",,"SEKR","Pharmazeutisch-kaufmännische Angestellte (PKA)","True"
-"Weinert Pablo","P.Weinert","P.Weinert@aps-hh.de","+49 40 523889-0","+49 170 3223974","+49 40 523889-412",,"MV",,"True"
-"Gessner Nora","N.Gessner","N.Gessner@aps-hh.de","+49 40 523889-0",,"+49 40 523889-400",,"MV",,"True"
-"Borbet Franziska","F.Borbet","F.Borbet@aps-hh.de","+49 40 523889-100",,"+49 40 523889-400",,"KPM",,"True"
-"Schwarz Verena","V.Schwarz","V.Schwarz@aps-hh.de","+49 40 523889-100",,"+49 40 523889-400",,"KPM","Fachapothekerin für Klinische Pharmazie","True"
-"Karl Tina","T.Karl","T.Karl@aps-hh.de","+49 40 523889-472",,"+49 40 523889-582",,"PE","Personalsachbearbeiterin","True"
-"Kothen Luca Sophie","L.Kothen","L.Kothen@aps-hh.de","+49 40 523889-549",,"+49 40 523889-593",,"HERST","Pharmazeutisch-technische Assistentin (PTA)","True"
-"Blum Ilka","I.Blum","I.Blum@aps-hh.de","+49 40 523889-440",,"+49 40 523889-404",,,"Pharmazeutisch-technische Assistentin (PTA)","False"
-"Draliuk Natalia","N.Draliuk","N.Draliuk@aps-hh.de","+49 40 523889-0",,"+49 40 523889-400",,"MV","Pharmazeutisch-kaufmännische Angestellte (PKA)","True"
-"Jörn Christin","C.Joern","C.Joern@aps-hh.de","+49 40 523889-0",,"+49 40 523889-405",,"MV",,"True"
-"Saeed Muhammad","M.Saeed","M.Saeed@aps-hh.de","+49 40 523889-0",,"+49 40 523889-400",,"Lager",,"True"
-"Heymann Peggy","P.Heymann","P.Heymann@aps-hh.de","+49 40 523889-0",,"+49 40 523889-400",,"MV",,"True"
-"Neisewald Jaclyn","J.Neisewald","J.Neisewald@aps-hh.de","+49 40 523889-0",,"+49 40 523889-406",,"MV","Pharmazeutisch-kaufmännische Angestellte (PKA)","False"
-"Driff Cheyenne","C.Driff","C.Driff@aps-hh.de","+49 40 523889-901",,"+49 40 523889-593",,"HERST","Pharmazeutisch-technische Assistentin (PTA)","True"
-"Gergeleit Yvonne","Y.Gergeleit","Y.Gergeleit@aps-hh.de","+49 40 523889-0",,"+49 40 523889-592",,"Lager","Pharmazeutisch-kaufmännische Angestellte (PKA)","True"
-"Thomas Stefanie","S.Thomas","S.Thomas@aps-hh.de","+49 40 523889-526",,"+49 40 523889-582",,"PE",,"True"
-"Klemkow Christin","C.Klemkow","C.Klemkow@aps-hh.de","+49 40 523889-440",,"+49 40 523889-404",,"AKS","Pharmazeutisch-technische Assistentin (PTA)","False"
-"Kociş Maike","M.Kocis","M.Kocis@aps-hh.de","+49 40 523889-0",,"+49 40 523889-592",,"Transport","Pharmazeutisch-kaufmännische Angestellte (PKA)","True"
-"Bidar Sarah","S.Bidar","S.Bidar@aps-hh.de","+49 40 523889-127",,"+49 40 523889-595",,"OQS","Fachapothekerin für Klinische Pharmazie","False"
-"Frische Marina","M.Frische","m.frische@aps-hh.de","+49 40 523889-0",,"+49 40 523889-404",,"MV",,"True"
-"Haaf Moritz","M.Haaf","M.Haaf@aps-hh.de","+49 40 523889-100",,"+49 40 523889-400",,"KPM","Fachapotheker für Klinische Pharmazie;","True"
-"Mester Kathrin","K.Mester","K.Mester@aps-hh.de","+49 40 523889-0",,"+49 40 523889-401",,"MV","Pharmazeutisch-kaufmännische Angestellte (PKA)","True"
-"Granau Andre","A.Granau","A.Granau@aps-hh.de","+49 40 523889-0",,"+49 40 523889-592",,"Lager",,"True"
-"Maasch Birgit","B.Maasch","B.Maasch@aps-hh.de","+49 40 523889-0",,"+49 40 523889-400",,"Lager","Pharmazeutisch-kaufmännische Angestellte (PKA)","True"
-"Rettkowski Ralf","R.Rettkowski","R.Rettkowski@aps-hh.de","+49 40 523889-0",,"+49 40 523889-400",,"Lager Klinikversorgung",,"True"
-"Shimir Hussein","H.Shimir","H.Shimir@aps-hh.de","+49 40 523889-0",,"+49 40 523889-400",,"Lager Großhandel",,"True"
-"Platek Arkadiusz","A.Platek","A.Platek@aps-hh.de","+49 40 523889-0",,"+49 40 523889-400",,"Tourenbereitstellung/Flüssigkeiten",,"True"
-"Essler Jasmine","J.Essler","J.Essler@aps-hh.de","+49 40 523889-0",,"+49 40 523889-592",,"Lager","Pharmazeutisch-kaufmännische Angestellte (PKA)","True"
-"Häusler Anne","A.Haeusler","A.Haeusler@aps-hh.de","+49 40 2707578-0",,"+49 40 2707578-17",,"STERI","Apothekerin","True"
-"Gregersen Levke","L.Gregersen","L.Gregersen@aps-hh.de","+49 40 2707578-0",,,,"STERI","Apothekerin","True"
-"Wilde Lisa-Johanna","L.Wilde","L.Wilde@aps-hh.de","+49 40 2707578-0",,,,"STERI","Apothekerin","True"
-"Kollien Steve","S.Kollien","S.Kollien@aps-hh.de","+49 40 523889-397",,"+49 40 523889-400",,"CO","Betriebswirt","True"
-"Molle Anja","A.Molle","A.Molle@aps-hh.de","+49 40 523889-444",,,,"FIBU",,"True"
-"sys_Matrix42","SYS_Matrix42",,,,,,,,"True"
-"Müller Jan-Hendrik","J.Mueller","J.Mueller@aps-hh.de","+49 40 523889-0","+49 170 6363826","+49 40 523889-400",,"Transport",,"True"
-"Feldmeier Klaus Guido","K.Feldmeier","K.Feldmeier@aps-hh.de","+49 40 523889-0","+49 151 46117647","+49 40 523889-405",,"Transport",,"True"
-"Geier Andre","A.Geier","A.Geier@aps-hh.de","+49 40 523889-0","+49 179 5368740","+49 40 523889-400",,"Transport",,"True"
-"Wiegel Gottlieb","G.Wiegel","G.Wiegel@aps-hh.de","+49 40 523889-0","+49 170 6320476","+49 40 523889-400",,"Transport",,"True"
-"Pichlo Detlef","D.Pichlo","D.Pichlo@aps-hh.de","+49 40 523889-0","+49 151 61339227","+49 40 523889-400",,"Transport",,"True"
-"Lis Dariusz","D.Lis","D.Lis@aps-hh.de","+49 40 523889-0","+49 170 6317570","+49 40 523889-400",,"Transport",,"True"
-"Haeger Andreas","A.Haeger","A.Haeger@aps-hh.de","+49 40 523889-0",,"+49 40 600094-290",,"Transport Zyto, Transport",,"False"
-"Hintz Manfred","M.Hintz","M.Hintz@aps-hh.de","+49 40 523889-0","+49 175 5017626","+49 40 523889-400",,"Transport",,"True"
-"Kocsis Andrei","A.Kocsis","A.Kocsis@aps-hh.de","+49 40 523889-0","+49 171 9754136","+49 40 523889-400",,"Transport",,"True"
-"Aleynikova Galina","G.Aleynikova","G.Aleynikova@aps-hh.de","+49 40 523889-0",,"+49 40 523889-400",,"CO","Diplom-Betriebswirtin","True"
-"Rathmann Andrzej","A.Rathmann","A.Rathmann@aps-hh.de","+49 40 523889-0",,"+49 40 600094-290",,"Transport Zyto, Transport",,"True"
-"Liencke Nadine","N.Liencke","N.Liencke@aps-hh.de","+49 40 523889-100",,"+49 40 523889-400",,"KPM","Fachapothekerin für Klinische Pharmazie;","True"
-"Hakimi Mortaza","M.Hakimi","M.Hakimi@aps-hh.de","+49 40 523889-100",,"+49 40 523889-400",,"KPM","Apotheker","True"
-"Lütgens Lisa","L.Luetgens","L.Luetgens@aps-hh.de","+49 40 523889-100",,"+49 40 523889-400",,"KPM","Apothekerin","True"
-"Schadendorf Jasmin","J.Schadendorf","J.Schadendorf@aps-hh.de","+49 40 2707578-0",,,,"STERI","Apothekerin","True"
-"Meyerring Katrin","K.Meyerring","K.Meyerring@aps-hh.de","+49 40 2707578-0",,"+49 40 523889-595",,"STERI","Pharmazeutisch-technische Assistentin (PTA)","True"
-"Spiller Britta","B.Spiller","B.Spiller@aps-hh.de","+49 40 523889-300",,"+49 40 523889-400",,"KKS","Pharmazeutisch-technische Assistentin (PTA)","True"
-"Kopte Marie","M.Kopte","M.Kopte@aps-hh.de","+49 40 523889-134",,"+49 40 523889-595",,"OQS","Apothekerin","False"
-"Brünker Laura | APS","L.Bruenker","L.Bruenker@aps-hh.de","+49 40 523889-100",,"+49 40 523889-400",,"KPM","Fachapothekerin für Klinische Pharmazie","True"
-"Will Ina","I.Will","I.Will@aps-hh.de","+49 40 523889-448",,"+49 40 523889-400",,"AKS","Pharmazeutisch-technische Assistentin (PTA)","True"
-"Becker Florian","F.Becker","F.Becker@aps-hh.de","+49 40 523889-0",,"+49 40 523889-400",,"GF","Fachapotheker für Klinische Pharmazie;","True"
-"Carsjens Imke","I.Carsjens","I.Carsjens@aps-hh.de","+49 40 523889-100",,,,"KPM","Apothekerin","False"
-"Bock Martina","M.Bock","M.Bock@aps-hh.de","+49 40 523889-100",,"+49 40 523889-400",,"KPM","Apothekerin","True"
-"Schöneberg Helin","H.Schoeneberg","H.Schoeneberg@aps-hh.de","+49 40 523889-100",,"+49 40 523889-400",,"KPM","Apothekerin","True"
-"Berschiek Katharina","K.Berschiek","K.Berschiek@aps-hh.de","+49 40 523889-440","+49 171 9169153","+49 40 523889-404",,"OABR","Pharmazeutisch-technische Assistentin (PTA)","True"
-"Look Tamara","T.Look","T.Look@aps-hh.de","+49 40 523889-125",,"+49 40 523889-595",,"OQS","Apothekerin","True"
-"Mehra Rita","R.Mehra","R.Mehra@aps-hh.de","+49 40 523889-440",,"+49 40 523889-400",,"AKS","Pharmazeutisch-kaufmännische Angestellte (PKA)","True"
-"Millhan Tanja","T.Millhan","T.Millhan@aps-hh.de","+49 40 523889-300",,"+49 40 523889-400",,"KKS","Pharmazeutisch-kaufmännische Angestellte (PKA)","False"
-"Elatr Wael","W.Elatr","W.Elatr@aps-hh.de","+49 40 2707578-0",,,,"STERI","Apotheker","True"
-"Ziegler Sabine","S.Ziegler","S.Ziegler@aps-hh.de","+49 40 523889-448",,"+49 40 523889-410",,"OPEK","Pharmazeutisch-kaufmännische Angestellte (PKA)","True"
-"Polat Zeynep","Z.Polat","Z.Polat@aps-hh.de","+49 40 523889-0",,"+49 40 523889-400",,"Lager","Pharmazeutisch-kaufmännische Angestellte (PKA)","True"
-"Zakrzewski Zbigniew","Z.Zakrzewski","Z.Zakrzewski@aps-hh.de","+49 40 523889-0","+49 170 6322803","+49 40 523889-590",,"Transport",,"True"
-"Kaufman Stefanie","S.Kaufman","S.Kaufman@aps-hh.de","+49 40 2707578-0",,"+49 40 523889-592",,"STERI","Apothekerin","True"
-"Hexamer Andrea","A.Hexamer","A.Hexamer@aps-hh.de","+49 40 523889-440",,"+49 40 523889-404",,"OABR","Pharmazeutisch-technische Assistentin (PTA)","True"
-"Burg Jasmin","J.Burg","J.Burg@aps-hh.de","+49 40 523889-440",,"+49 40 523889-404",,"OABR",,"True"
-"Vogt Linda","L.Vogt","L.Vogt@aps-hh.de","+49 40 523889-442",,"+49 40 523889-404",,"OABR",,"True"
-"Lehmann Michaela","M.Lehmann","M.Lehmann@aps-hh.de","+49 40 523889-440",,"+49 40 523889-404",,"OABR","Pharmazeutisch-kaufmännische Angestellte (PKA)","True"
-"Siebert Kristina","K.Siebert","K.Siebert@aps-hh.de","+49 40 523889-440",,"+49 40 523889-404",,"OABR",,"True"
-"von Deyen Marsha","M.vonDeyen","M.vonDeyen@aps-hh.de","+49 40 523889-440",,"+49 40 523889-404",,"OABR",,"True"
-"Yilmaz Bahar","B.Yilmaz","B.Yilmaz@aps-hh.de","+49 40 523889-440",,"+49 40 523889-404",,"PIV","Pharmazeutisch-technische Assistentin (PTA)","False"
-"Huth Sybille","S.Huth","S.Huth@aps-hh.de","+49 40 523889-122","+49 151 74345682","+49 40 523889-595",,"OQS","Apothekerin","True"
-"Meyer Annkathrin","A.Meyer","A.Meyer@aps-hh.de","+49 40 270 757 816",,,,"STERI","Pharmazeutisch-technische Assistentin (PTA)","False"
-"Landschof Andrea","A.Landschof","A.Landschof@aps-hh.de","+49 40 523889-440",,"+49 40 523889-404",,"OABR",,"True"
-"Semo Ismail","I.Semo","I.Semo@aps-hh.de","+49 40 2707578-0",,,,"STERI","Pharmazeutisch-technischer Assistent (PTA)","True"
-"Brede Katharina","K.Brede","K.Brede@aps-hh.de","+49 40 2707578-0",,,,"STERI","Apothekerin","True"
-"Hussein Ali Wissam","W.HusseinAli","W.HusseinAli@aps-hh.de","+49 40 2707578-0",,,,"STERI","Pharmazeutisch-technischer Assistent (PTA)","True"
-"Borgeest Michaela","M.Borgeest","M.Borgeest@aps-hh.de","+49 40 523889-440",,"+49 40 523889-404",,"OABR",,"True"
-"Gauda Nadine","N.Gauda","N.Gauda@aps-hh.de","+49 40 2707578-0",,,,"STERI","Pharmazeutisch-technische Assistentin (PTA)","True"
-"Hackenberg Bettina","B.Hackenberg","B.Hackenberg@aps-hh.de","+49 40 523889-124",,"+49 40 523889-592",,"OQS","Apothekerin","True"
-"Kling Katharina","K.Kling","K.Kling@aps-hh.de","+49 40 523889-563",,"+49 40 523889-595",,"HERST","Pharmazeutisch-technische Assistentin (PTA)","True"
-"svc.MX42UEMpush","svc.MX42UEMpush",,,,,,,,"True"
-"Abraham Patrick","P.Abraham","P.Abraham@aps-hh.de","+49 40 523889-0",,"+49 40 523889-400",,"Lager",,"True"
-"Badal Maisaa","M.Badal","M.Badal@aps-hh.de","+49 40 523889-563",,,,"OFZ","Auszubildende PKA","True"
-"Ciepluch Malgorzata","M.Ciepluch","M.Ciepluch@aps-hh.de","+49 40 523889-563",,"+49 40 523889-400",,"OFZ","Pharmazeutisch-kaufmännische Angestellte (PKA)","True"
-"Ernst Ronny","R.Ernst","R.Ernst@aps-hh.de","+49 40 523889-0",,"+49 40 523889-400",,"MV",,"True"
-"König-Hennings Tasso","T.Koenig-Hennings","T.Koenig-Hennings@aps-hh.de","+49 40 523889-0",,,,"Transport Zyto, Transport",,"True"
-"Kurtulus Güngör","G.Kurtulus","G.Kurtulus@aps-hh.de","+49 40 523889-0",,,,"Transport Zyto, Transport",,"True"
-"Marschewski Jürgen","J.Marschewski","J.Marschewski@aps-hh.de","+49 40 523889-0",,,,"Transport Zyto, Transport",,"True"
-"Mohamed Nimaan Farah","N.Mohamed","N.Mohamed@aps-hh.de","+49 40 523889-0",,"+49 40 523889-400",,"Lager",,"True"
-"Nunes Costa Paula Cristina","P.NunesCosta","P.NunesCosta@aps-hh.de","+49 40 523889-0",,,,"Lager","Pharmazeutisch-kaufmännische Angestellte (PKA)","True"
-"Paap Stephanie","S.Paap","S.Paap@aps-hh.de","+49 40 523889-0",,,,"Lager","Pharmazeutisch-kaufmännische Angestellte (PKA)","True"
-"Riegert Niklas","N.Riegert","N.Riegert@aps-hh.de","+49 40 523889-117",,"+49 40 523889-400",,"KPM","Pharmazeut im Praktikum (PhiP)","True"
-"Yildirim Semra","S.Yildirim","S.Yildirim@aps-hh.de","+49 40 523889-563",,,,"OFZ","Pharmazeutisch-technische Assistentin (PTA)","True"
-"Kutsch Malte","M.Kutsch","M.Kutsch@aps-hh.de","+49 40 523889-448",,"+49 40 523889-410",,"OPEK","Kaufmann im Gesundheitswesen","True"
-"Heße Philip","P.Hesse","P.Hesse@aps-hh.de","+49 40 523889-300",,,,"KKS","Pharmazeutisch-technischer Assistent (PTA)","True"
-"Kahsay Ghirmay","G.Kahsay","G.Kahsay@aps-hh.de","+49 40 523889-0",,"+49 40 523889-400",,"Lager",,"True"
-"Benkowitsch Katharina","K.Benkowitsch","K.Benkowitsch@aps-hh.de","+49 40 523889-563",,"+49 40 523889-400",,"OFZ","Apothekerin","False"
-"Werther Rainer W. | APS","R.Werther","R.Werther@aps-hh.de","+49 40 523889-0","+49 172 9428000","+49 40 523889-582",,,,"True"
-"svc.SQL01-01Analysis","svc.SQL01-01Analysis",,,,,,,,"True"
-"svc.SQL01-02Analysis","svc.SQL01-02Analysis",,,,,,,,"True"
-"svc.SQL01-01Engine","svc.SQL01-01Engine",,,,,,,,"True"
-"svc.SQL01-02Agent","svc.SQL01-02Agent",,,,,,,,"True"
-"svc.SQL01-01Agent","svc.SQL01-01Agent",,,,,,,,"True"
-"svc.BC-Prod-Engine","svc.BC-Prod-Engine",,,,,,,,"True"
-"svc.SQL01-03Agent","svc.SQL01-03Agent",,,,,,,,"True"
-"svc.SQL01-03Engine","svc.SQL01-03Engine",,,,,,,,"True"
-"svc.SQL01-04Agent","svc.SQL01-04Agent",,,,,,,,"True"
-"svc.SQL01-04Engine","svc.SQL01-04Engine",,,,,,,,"True"
-"Jänicke Dirk","D.Jaenicke","D.Jaenicke@aps-hh.de","+49 40 523889-0",,,,"Technik & Hausverwaltung",,"True"
-"Rattelmüller Elena","E.Rattelmueller","E.Rattelmueller@aps-hh.de","+49 40 523889-132",,"+49 40 523889-595",,"OQS","Apothekerin","True"
-"Sobolewska Anna","A.Sobolewska","A.Sobolewska@aps-hh.de","+49 40 523889-0",,,,"Lager",,"True"
-"Zhivayev-Selest Alexandr","A.Zhivayev-Selest","A.Zhivayev-Selest@aps-hh.de","+49 40 523889-0",,,,"Transport",,"True"
-"Alakhras Ahmed","A.Alakhras","A.Alakhras@aps-hh.de","+49 40 523889-0",,,,"Lager",,"True"
-"svc.genocash01","svc.genocash01",,,,,,,,"True"
-"Vogel Dominique","D.Vogel","D.Vogel@aps-hh.de","+49 40 523889-448",,,,"OPEK","Pharmazeutisch-kaufmännische Angestellte (PKA)","True"
-"Pudmensky Sabrina","S.Pudmensky","S.Pudmensky@aps-hh.de","+49 40 523889-440",,"+49 40 523889-405",,"AKS","Pharmazeutisch-kaufmännische Angestellte (PKA)","True"
-"Vischer Kevin","K.Vischer","K.Vischer@aps-hh.de","+49 40 523889-135",,"+49 40 523889-595",,"OQS","Apotheker","True"
-"Runde Lina Marie","L.Runde","L.Runde@aps-hh.de","+49 40 523889-100",,"+49 40 523889-400",,"KPM","Apothekerin","True"
-"svc.MX42UEMagent","svc.MX42UEMagent",,,,,,,,"True"
-"svc.SQL01-Report","svc.SQL01-Report",,,,,,,,"True"
-"svc.SQL01-02Engine","svc.SQL01-02Engine",,,,,,,,"True"
-"svc.fax01","svc.fax01",,,,,,,,"True"
-"svc.MX42UEMservices","svc.MX42UEMservices",,,,,,,,"True"
-"INT_MAVEtoBC","INT_MAVEtoBC",,,,,,,,"True"
-"Soltau Fabio","F.Soltau","F.Soltau@aps-hh.de","+49 40 523889-529","+49 175 6912536",,,,,"True"
-"Wöllner Katharina","K.Woellner","K.Woellner@aps-hh.de","+49 40 523889-222",,"+49 40 523889-400",,"EM","Oecotrophologin","True"
-"Koiteck Saskia","S.Koiteck","S.Koiteck@aps-hh.de","+49 40 523889-121",,"+49 40 523889-595",,"OQS","Apothekerin","True"
-"Mühlbach Alicia","A.Muehlbach","a.muehlbach@aps-hh.de","+49 40 523889-563",,"+49 40 523889-400",,"OFZ","Pharmazeutisch-kaufmännische Angestellte (PKA)","False"
-"Bauer Anton","a.bauer",,,,,,"Assistenz","Assistenz der Geschäftsführung / Vertragsmanagement","True"
-"Richter Eva","E.Richter","E.Richter@aps-hh.de","+49 40 523889-222",,"+49 40 523889-401",,"EM","Oecotrophologin","True"
-"t0.msx","t0.msx","t0-adm.msx@aps-hh.de",,,,,,,"True"
-"Schönemann, Franziska | extern","ext.f.schoenemann",,,,,,,,"True"
-"msx msx.test01","msx.test01","V.Nachname01@aps-hh.de","+49 40 523889-0","+49 172 12345678","49 40 523889-123",,,"Test-Benutzer","True"
-"Bethcke Jacqueline","J.Bethcke","J.Bethcke@aps-hh.de","+49 40 523889-300",,"+49 40 523889-400",,"KKS","Pharmazeutisch-technische Assistentin (PTA)","True"
-"Bergmann Frank","F.Bergmann","F.Bergmann@aps-hh.de","+49 40 523889-0",,,,"Transport",,"True"
-"Gresens Yasmin","Y.Gresens","Y.Gresens@aps-hh.de","+49 40 523889-563",,"+49 40 523889-400",,"OFZ","Apothekerin","True"
-"svc.SQL01-05Agent","svc.SQL01-05Agent",,,,,,,,"True"
-"svc.SQL01-05Engine","svc.SQL01-05Engine",,,,,,,,"True"
-"svc.ElproOperator","svc.ElproOperator",,,,,,,,"False"
-"HealthMailbox7db879b27e924f54b289c3a5ed4842ee","HealthMailbox7db879b","HealthMailbox7db879b27e924f54b289c3a5ed4842ee@aps-hh.de",,,,,,,"True"
-"HealthMailbox74aede6f3e064d0f9e198c0e18f77753","HealthMailbox74aede6","HealthMailbox74aede6f3e064d0f9e198c0e18f77753@aps-hh.de",,,,,,,"True"
-"HealthMailbox03f7e4a057f34e0993272a5bb76ce4cc","HealthMailbox03f7e4a","HealthMailbox03f7e4a057f34e0993272a5bb76ce4cc@aps-hh.de",,,,,,,"True"
-"svc.ConfBackup","svc.ConfBackup",,,,,,,,"True"
-"HealthMailbox81fd39084b884c20b032abff24829539","HealthMailbox81fd390","HealthMailbox81fd39084b884c20b032abff24829539@aps-hh.de",,,,,,,"True"
-"PF-MBX01","PF-MBX01","PF-MBX01@aps-hh.de",,,,,,,"False"
-"svc.EgoSecure","svc.EgoSecure",,,,,,,,"True"
-"svc.LDAPEgoSecure","svc.LDAPEgoSecure",,,,,,,,"True"
-"t0.gielsdorf","t0.gielsdorf","t0.gielsdorf@aps-hh.de",,,,,,,"True"
-"t0.baulig","t0.baulig","t0.baulig@aps-hh.de",,,,,,,"True"
-"HealthMailbox9c65a2b7573844d295452f71471d3f18","HealthMailbox9c65a2b","HealthMailbox9c65a2b7573844d295452f71471d3f18@aps-hh.de",,,,,,,"True"
-"HealthMailbox32f63266ef57451e90cec3e169b38e72","HealthMailbox32f6326","HealthMailbox32f63266ef57451e90cec3e169b38e72@aps-hh.de",,,,,,,"True"
-"HealthMailbox92f0101cc6dc4943853c94e27bd22a89","HealthMailbox92f0101","HealthMailbox92f0101cc6dc4943853c94e27bd22a89@aps-hh.de",,,,,,,"True"
-"HealthMailbox9634c72ed1484becace14732e567d006","HealthMailbox9634c72","HealthMailbox9634c72ed1484becace14732e567d006@aps-hh.de",,,,,,,"True"
-"HealthMailbox215429e13c3f4c73bd2a625127a872aa","HealthMailbox215429e","HealthMailbox215429e13c3f4c73bd2a625127a872aa@aps-hh.de",,,,,,,"True"
-"HealthMailbox73815f4a8df646e6a601cc04f5f05197","HealthMailbox73815f4","HealthMailbox73815f4a8df646e6a601cc04f5f05197@aps-hh.de",,,,,,,"True"
-"HealthMailboxf0dc974c12634aac89b4399ee5ec330d","HealthMailboxf0dc974","HealthMailboxf0dc974c12634aac89b4399ee5ec330d@aps-hh.de",,,,,,,"True"
-"HealthMailboxd464008522ba4a37bab0df3e9cd83f98","HealthMailboxd464008","HealthMailboxd464008522ba4a37bab0df3e9cd83f98@aps-hh.de",,,,,,,"True"
-"HealthMailbox59f16e8c20344330a6770333f4573377","HealthMailbox59f16e8","HealthMailbox59f16e8c20344330a6770333f4573377@aps-hh.de",,,,,,,"True"
-"HealthMailbox5ec949c7505a4144823e15e9ad2ea478","HealthMailbox5ec949c","HealthMailbox5ec949c7505a4144823e15e9ad2ea478@aps-hh.de",,,,,,,"True"
-"HealthMailbox58aa55302bc7464abba0bf3021ce2b22","HealthMailbox58aa553","HealthMailbox58aa55302bc7464abba0bf3021ce2b22@aps-hh.de",,,,,,,"True"
-"HealthMailbox52ec3149355840feacb4eeaaeca212b3","HealthMailbox52ec314","HealthMailbox52ec3149355840feacb4eeaaeca212b3@aps-hh.de",,,,,,,"True"
-"HealthMailboxdf760daa69504d4fb1f6dee803e58710","HealthMailboxdf760da","HealthMailboxdf760daa69504d4fb1f6dee803e58710@aps-hh.de",,,,,,,"True"
-"svc.CodeTwo","svc.CodeTwo",,,,,,,,"True"
-"svc.LDAPSophosFW","svc.LDAPSophosFW",,,,,,,,"True"
-"Bend Jennifer","j.bend","J.Bend@aps-hh.de","+49 40 523889-563",,,,"OFZ","Pharmazeutisch-technische Assistentin (PTA)","True"
-"Ismail Lamis","l.Ismail","L.Ismail@aps-hh.de","+49 40 523889-563",,"+49 40 523889-405",,"OFZ","Pharmazeutisch-technische Assistentin (PTA)","True"
-"Trzebiatowski Jolanta","J.Trzebiatowski","J.Trzebiatowski@aps-hh.de","+49 40 523889-0",,"+49 40 523889-400",,,,"True"
-"Werther Rainer W. | antares consult","R.Werther2","R.Werther@antares-consult.de","+49 40 523889-511","+49 172 9428000","+49 40 523889-582",,,"Geschäftsführer","True"
-"Hintz Thomas | APS-HH","T.Hintz","hintz@aps-hh.de","+49 40 523889-0",,,,,"Apotheker","True"
-"Hintz Thomas | Antares Consult","T.Hintz2","T.Hintz@antares-consult.de",,,,,,,"True"
-"msx msx.test02","msx.test02","msx.test02@aps-hh.de","1234","9876","5678",,,"Test-Benutzer 2","True"
-"svc.SQL01-06Agent","svc.SQL01-06Agent",,,,,,,,"True"
-"svc.SQL01-06Engine","svc.SQL01-06Engine",,,,,,,,"True"
-"svc.SQL01-06apokomp","svc.SQL01-06apokomp",,,,,,,,"True"
-"Abrechnung","Abrechnung","Abrechnung@aps-hh.de","+49 40 523889-440",,,,,,"False"
-"AMTS","AMTS","AMTS@aps-hh.de",,,,,,,"False"
-"Apotheke","Apotheke","Apotheke@aps-hh.de","+49 40 523889-0",,,,,,"False"
-"Bestellung","Bestellung","Bestellung@aps-hh.de",,,,,,,"False"
-"Bestellung.PKS","Bestellung.PKS","Bestellung.PKS@aps-hh.de",,,,,,,"True"
-"Buchhaltung","Buchhaltung","Buchhaltung@aps-hh.de",,,,,,,"False"
-"Controlling","Controlling","Controlling@aps-hh.de",,,,,,,"False"
-"Debitoren","Debitoren","Debitoren@aps-hh.de",,,,,,,"False"
-"Einkauf","Einkauf","Einkauf@aps-hh.de","+49 40 523889-448",,,,,,"False"
-"Einkauf-Apotheke","Einkauf-Apotheke","Einkauf-Apotheke@aps-hh.de",,,,,,,"False"
-"Elpro-Alarm","Elpro-Alarm","Elpro-Alarm@aps-hh.de",,,,,,,"False"
-"Ernährung","Ernaehrung","Ernaehrung@aps-hh.de","+49 40 523889-222",,"+49 40 523889-401",,,,"False"
-"Großhandel","Grosshandel","Grosshandel@aps-hh.de",,,,,,,"False"
-"Herstellung","Herstellung","Herstellung@aps-hh.de",,,,,,,"False"
-"Info","Info","Info@aps-hh.de",,,,,,,"False"
-"IT-Elpro","It-Elpro","It-Elpro@aps-hh.de",,,,,,,"False"
-"Klinik","Klinik","Klinik@aps-hh.de",,,,,,,"False"
-"Klinikversorgung","Klinikversorgung","Klinikversorgung@aps-hh.de",,,,,,,"False"
-"Marketing","Marketing","Marketing@aps-hh.de",,,,,,,"False"
-"Modulversorgung","Modulversorgung","Modulversorgung@aps-hh.de",,,,,,,"False"
-"Onkologie","Onkologie","Onkologie@aps-hh.de",,,,,,,"False"
-"Personalabteilung","Personalabteilung","Personalabteilung@aps-hh.de",,,,,"Personalabteilung",,"False"
-"Projekte","Projekte","Projekte@aps-hh.de",,,,,,,"False"
-"Qualitätssicherung","Qualitaetssicherung","Qualitaetssicherung@aps-hh.de",,,,,,,"False"
-"Rechnung","Rechnung","Rechnung@aps-hh.de",,,,,,,"False"
-"Rechnungen","Rechnungen","Rechnungen@aps-hh.de",,,,,,,"False"
-"Sekretariat","Sekretariat","Sekretariat@aps-hh.de",,,,,,,"False"
-"Sterilabteilung","Sterilabteilung","Sterilabteilung@aps-hh.de",,,,,,,"False"
-"Pharmazeutisches Management","PharmaManagement","pharm.management@aps-hh.de","+49 40 523889-100",,,,"Pharmazeutisches Management",,"False"
-"svc.MSxTask","svc.MSxTask",,,,,,,,"True"
-"msx.test03","msx.test03","msx.test03@aps-hh.de",,,,,,,"True"
-"Mitarbeiter.Einkauf","Mitarbeiter.Einkauf","Mitarbeiter.Einkauf@aps-hh.de",,,,,,,"False"
-"Info antares Consult","info-consult","info@antares-consult.de",,,,,,,"False"
-"svc.MaveMailer","svc.MaveMailer","svc.maveMailer@aps-hh.de",,,,,,,"True"
-"svc.BCMailer","svc.BCMailer","svc.BCMailer@aps-hh.de",,,,,,,"True"
-"Perleberg, Petra | extern","ext.p.perleberg","P.Perleberg@aps-hh.de",,,,,,,"True"
-"Raum arcturus (OG 2.18)","arcturus","arcturus@aps-hh.de",,,,"OG 2.18",,,"False"
-"Raum antares (OG 2.21)","antares","antares@aps-hh.de",,,,"OG 2.21",,,"False"
-"Raum sirius (ZG 1.02)","sirius","sirius@aps-hh.de",,,,"ZG 1.02",,,"False"
-"svc.UserGroupScripts","svc.UserGroupScripts",,,,,,,,"True"
-"Ernährung FAX","ernaehrungsteam","ernaehrungsteam@aps-hh.de",,,,,,,"False"
-"Hinweisgeber","Hinweisgeber","Hinweisgeber@aps-hh.de",,,,,,,"False"
-"Apotheke FAX","Apotheke2","Apotheke2@aps-hh.de",,,,,,,"False"
-"Fahrzeuge","Fahrzeuge","Fahrzeuge@aps-hh.de",,,,,,,"False"
-"Cegar Kristina","k.cegar","K.Cegar@aps-hh.de","+49 40 523889-440",,"+49 40 523889-404",,"AKS","Pharmazeutisch-technische Assistentin (PTA)","True"
-"Blewussi Gloria","G.Blewussi","G.Blewussi@aps-hh.de","+49 40 523889-128",,,,"OQS","Apothekerin","True"
-"Werther Wioleta","W.Werther","W.Werther@aps-hh.de","+49 40 523889-0",,,,"Lager",,"True"
-"HealthMailbox9fd8b450e33d414c98aa9c9c1500dead","HealthMailbox9fd8b45","HealthMailbox9fd8b450e33d414c98aa9c9c1500dead@aps-hh.de",,,,,,,"True"
-"HealthMailbox7dbc61f602604c7ba65eed39f40c4086","HealthMailbox7dbc61f","HealthMailbox7dbc61f602604c7ba65eed39f40c4086@aps-hh.de",,,,,,,"True"
-"HealthMailbox05065f3f1a444488874e8662a77683f9","HealthMailbox05065f3","HealthMailbox05065f3f1a444488874e8662a77683f9@aps-hh.de",,,,,,,"True"
-"HealthMailbox5c8795b0cac74366b1e83388b5ead07c","HealthMailbox5c8795b","HealthMailbox5c8795b0cac74366b1e83388b5ead07c@aps-hh.de",,,,,,,"True"
-"HealthMailbox937b915638b740b5bf8e713d611fffee","HealthMailbox937b915","HealthMailbox937b915638b740b5bf8e713d611fffee@aps-hh.de",,,,,,,"True"
-"HealthMailboxe4ba40da700649848549bebb86e7d2b8","HealthMailboxe4ba40d","HealthMailboxe4ba40da700649848549bebb86e7d2b8@aps-hh.de",,,,,,,"True"
-"HealthMailbox4b68071610904c0b8f4f057aa7930f61","HealthMailbox4b68071","HealthMailbox4b68071610904c0b8f4f057aa7930f61@aps-hh.de",,,,,,,"True"
-"HealthMailbox321f6f8c981c462583333ef9a4fd35fa","HealthMailbox321f6f8","HealthMailbox321f6f8c981c462583333ef9a4fd35fa@aps-hh.de",,,,,,,"True"
-"HealthMailbox2c71a2b8ad0447a7ad2908c04983ee05","HealthMailbox2c71a2b","HealthMailbox2c71a2b8ad0447a7ad2908c04983ee05@aps-hh.de",,,,,,,"True"
-"HealthMailbox10ff50d9fb6e435dbe1172f49091e2f0","HealthMailbox10ff50d","HealthMailbox10ff50d9fb6e435dbe1172f49091e2f0@aps-hh.de",,,,,,,"True"
-"HealthMailbox957c368b078d4f0695f0d27d913fc216","HealthMailbox957c368","HealthMailbox957c368b078d4f0695f0d27d913fc216@aps-hh.de",,,,,,,"True"
-"HealthMailboxf3f071d45d184c979c2a9b8982d5a08d","HealthMailboxf3f071d","HealthMailboxf3f071d45d184c979c2a9b8982d5a08d@aps-hh.de",,,,,,,"True"
-"HealthMailbox7f46754a602341379225ad2120080063","HealthMailbox7f46754","HealthMailbox7f46754a602341379225ad2120080063@aps-hh.de",,,,,,,"True"
-"HealthMailbox345791810b7e4a9585ae048eca8f2a18","HealthMailbox3457918","HealthMailbox345791810b7e4a9585ae048eca8f2a18@aps-hh.de",,,,,,,"True"
-"Datenschutzkoordination","Datenschutzkoordinat","Datenschutzkoordination@aps-hh.de",,,,,,,"False"
-"Ranseier Karl","K.Ranseier","K.Ranseier@aps-hh.de",,,,,,,"True"
-"Brünker, Laura | antares consult","L.Bruenker2","l.bruenker@antares-consult.de","+49 40 523889-0",,"+49 40 523889-582",,,"Fachapothekerin für Klinische Pharmazie","True"
-"svc.SQL01-07Engine","svc.SQL01-07Engine",,,,,,,,"True"
-"svc.SQL01-07Agent","svc.SQL01-07Agent",,,,,,,,"True"
-"svc.SQL01-07Analysis","svc.SQL01-07Analysis",,,,,,,,"True"
-"t0.gurtzig","t0.gurtzig",,,,,,,,"True"
-"t1.gurtzig","t1.gurtzig",,,,,,,,"True"
-"t2.gurtzig","t2.gurtzig",,,,,,,,"True"
-"Lotto Otto","o.lotto","O.Lotto@aps-hh.de",,,,,,,"True"
-"Soltau Darren","D.Soltau","D.Soltau@aps-hh.de","+49 40 523889-0",,,,"Lager","Auszubildender Fachlagerist","True"
-"Wobig Lucy","L.Wobig","L.Wobig@aps-hh.de","+49 40 523889-440",,,,"AKS","Pharmazeutisch-technische Assistentin (PTA)","True"
-"Zipp, Carolin","C.Zipp","C.Zipp@aps-hh.de","+49 40 523889-444",,,,,,"False"
-"Mauritz Andreas","a.mauritz","a.mauritz@aps-hh.de","+49 40 523889-443",,"+49 40 523889-419",,"OABR",,"True"
-"ext Buhls Diethard","ext.d.buhls",,,,,,,,"True"
-"Qualitaetsmanagement","Qualitaetsmanagement","Qualitaetsmanagement@aps-hh.de",,,,,"Qualitaetsmanagement",,"False"
-"Beltoeva Olesja","o.beltoeva","o.Beltoeva@aps-hh.de","+49 40 523889-563",,,,"OFZ","Pharmazeutisch-kaufmännische Angestellte (PKA)","True"
-"t1.baulig","t1.baulig",,,,,,,,"True"
-"t1.gielsdorf","t1.gielsdorf",,,,,,,,"True"
-"t2.baulig","t2.baulig",,,,,,,,"True"
-"t2.gielsdorf","t2.gielsdorf",,,,,,,,"True"
-"Palmes, Michael | extern","ext.m.palmes",,,,,,,,"True"
-"Hippert, Henning | extern","ext.h.hippert",,,,,,,,"True"
-"Wareneingang","Wareneingang","Wareneingang@aps-hh.de",,,,,,,"False"
-"Retourenlager","Retourenlager","Retourenlager@aps-hh.de",,,,,,,"False"
-"Kliniklager","Kliniklager","Kliniklager@aps-hh.de",,,,,,,"False"
-"svc.scan2home","svc.scan2home",,,,,,,,"True"
-"Wolfram, Peter | extern","p.wolfram","P.Wolfram@aps-hh.de",,,,,,,"True"
-"svc.MaveJobs","svc.MaveJobs",,,,,,,,"True"
-"Andres, Hannah | extern","ext.h.andres",,,,,,,,"True"
-"Gäde, Bianca | extern","ext.b.gaede",,,,,,,,"True"
-"Ahne, Janin | extern","ext.j.ahne",,,,,,,,"True"
-"Hofmann, Lisa | extern","ext.l.hofmann",,,,,,,,"True"
-"Günther, Melanie | extern","ext.m.guenther",,,,,,,,"True"
-"Hemp, Diana | extern","ext.d.hemp",,,,,,,,"True"
-"Jonas, Ivonne | extern","ext.i.jonas",,,,,,,,"True"
-"Kiesendahl, Juliane | extern","ext.j.kiesendahl",,,,,,,,"True"
-"Köster, Florian | extern","ext.f.koester",,,,,,,,"True"
-"Muhamed, Asmaa | extern","ext.a.muhamed",,,,,,,,"True"
-"Schröder, Nicole | extern","ext.n.schroeder",,,,,,,,"True"
-"Schüller, Hendrik | extern","ext.h.schueller",,,,,,,,"True"
-"Kley, Wiebke | extern","ext.w.kley",,,,,,,,"True"
-"Vogel, Sophie | extern","ext.s.vogel",,,,,,,,"True"
-"Peschke, Kerstin | extern","ext.k.peschke",,,,,,,,"True"
-"Wetzel, Martin | extern","ext.m.wetzel",,,,,,,,"True"
-"Lück, Stefanie | extern","ext.s.lueck",,,,,,,,"True"
-"Herrmann, Michael | extern","ext.m.herrmann",,,,,,,,"True"
-"Ortlepp, Anja | extern","ext.a.ortlepp",,,,,,,,"True"
-"Ziems, Lena | extern","ext.l.ziems",,,,,,,,"True"
-"Altner, Nele | extern","ext.n.altner",,,,,,,,"True"
-"Azofeifa-Amann, Luna | extern","ext.l.azofeifa-amann",,,,,,,,"True"
-"Fisser, Franziska | extern","ext.f.fisser",,,,,,,,"True"
-"Gebel, Daniela | extern","ext.d.gebel",,,,,,,,"True"
-"Rother, Nick | extern","ext.n.rother",,,,,,,,"True"
-"Scholtz, Björn | extern","ext.b.scholtz",,,,,,,,"True"
-"Soltau, Ingo | extern","ext.i.soltau",,,,,,,,"True"
-"Sommer, Sandra | extern","ext.s.sommer",,,,,,,,"True"
-"Wullweber, Maike | extern","ext.m.wullweber",,,,,,,,"True"
-"Bieber, Bettina | extern","ext.b.bieber",,,,,,,,"True"
-"Künsebeck, Tanja | extern","ext.t.kuensebeck",,,,,,,,"True"
-"Lübkemeier, Sonja | extern","ext.s.luebkemeier",,,,,,,,"True"
-"Meyer, Dorit | extern","ext.d.meyer",,,,,,,,"True"
-"Laumann, Dieter | extern","ext.d.laumann",,,,,,,,"True"
-"svc.MaveScanner","svc.MaveScanner",,,,,,,,"True"
-"Bartels, Anne | extern","ext.a.bartels",,,,,,,,"True"
-"Buchholtz, Anke | extern","ext.a.buchholtz",,,,,,,,"True"
-"Cäsar, Gabriele | extern","ext.g.caesar",,,,,,,,"True"
-"Indorf, Verena | extern","ext.v.indorf",,,,,,,,"True"
-"Streit, Bernd | extern","ext.b.streit",,,,,,,,"True"
-"Test | extern","test",,,,,,,,"True"
-"heimversorgung@aps-hh.de","heimversorgung","heimversorgung@aps-hh.de",,,,,,,"False"
-"Panther Paul","p.panther",,,,,,,"Apothekerin","True"
-"Klenow Marie","m.klenow","M.Klenow@aps-hh.de","+49 40 523889-573",,,,"FIBU",,"True"
-"Banemann Ilka","i.Banemann","I.Banemann@aps-hh.de",,,"+49 40 523889-400",,"OFZ","Apothekerin","True"
-"Bend Marta","m.bend","M.Bend@aps-hh.de","+49 40 523889-563",,"+49 40 523889-400",,"OFZ","Apothekerin","True"
-"svc.SQL01-08Agent","svc.SQL01-08Agent",,,,,,,,"True"
-"svc.SQL01-08Engine","svc.SQL01-08Engine",,,,,,,,"True"
-"Gielsdorf, Mario | antares consult","m.gielsdorf2","M.Gielsdorf@antares-consult.de",,,,,,,"True"
-"El Haouat Mouad","m.elhaouat","M.ElHaouat@aps-hh.de","+49 40 523889-0",,"+49 40 523889-400",,"Lager","Mitarbeiter Lager","True"
-"t1.borzyh","t1.borzyh",,,,,,,,"True"
-"Seif Jamil | extern","ext.j.seif",,,,,,,,"True"
-"Unsinn Reiner","r.unsinn",,,,,,,,"True"
-"svc.Apotrace","svc.Apotrace",,,,,,,,"True"
-"Mohseni Omied","o.mohseni","O.Mohseni@aps-hh.de","+49 40 523889-0",,,,"OABR","Werksstudent","False"
-"Mettenbrink Vanessa","v.mettenbrink","V.Mettenbrink@aps-hh.de","+49 40 523889-100",,,,"OQS","Apothekerin","True"
-"Kerlen Sabrina","s.kerlen","S.Kerlen@aps-hh.de","+49 40 523889-398",,"+49 40 523889-400",,"CO",,"True"
-"Einzelarbeitsplatz (OG 2.09)","Einzelarbeitsplatz_O","Einzelarbeitsplatz_OG2.09@aps-hh.de",,,,"OG 2.09",,,"False"
-"Grudsiecki Fred","F.Grudsiecki","F.Grudsiecki@aps-hh.de",,,,,"Lager",,"True"
-"Karaput Valeriia","V.Karaput","V.Karaput@aps-hh.de",,,,,"Lager",,"False"
-"Blase Freund","f.blase",,,,,,,,"True"
-"Willimzig André | extern","ext.a.willimzig",,,,,,,,"True"
-"svc.MaveAmondis","svc.MaveAmondis",,,,,,,,"True"
-"svc.AD-ENTRA-connect","svc.AD-ENTRA-connect",,,,,,,,"True"
-"Bergmann Alexander","a.bergmann","A.Bergmann@aps-hh.de","+49 40 523889-0","+49 170 6322243","+49 40 523889-400",,"Transport",,"True"
-"t2.pt-install","t2.pt-install",,,,,,,,"True"
-"Verblisterung","Verblisterung","Verblisterung@aps-hh.de",,,,,,,"False"
-"svc.MaveBremen","svc.MaveBremen",,,,,,,,"True"
-"svc.adm_fileserver","svc.adm_fileserver",,,,,,,,"True"
-"Schuh Melanie","M.Schuh","M.Schuh@aps-hh.de",,,,,"Verblisterung",,"True"
-"svc.piv-lungenclinic","svc.piv-lungenclinic",,,,,,,,"True"
-"medizinproduktebeauftragte","medizinproduktebeauf","medizinproduktebeauftragte@aps-hh.de",,,,,,,"False"
-"svc.t0.prtg","svc.t0.prtg",,,,,,,,"True"
-"svc.t1.prtg","svc.t1.prtg",,,,,,,,"True"
-"svc.t2.prtg","svc.t2.prtg",,,,,,,,"True"
-"svc.PRTG-Admin","svc.PRTG-Admin",,,,,,,,"True"
-"Kakarott, Antje | extern","ext.a.kakarott",,,,,,,,"True"
-"svc.veeam","svc.veeam",,,,,,,,"True"
-"svc.HINTZ01-01Agent","svc.HINTZ01-01Agent",,,,,,,,"True"
-"svc.HINTZ01-01Engine","svc.HINTZ01-01Engine",,,,,,,,"True"
-"Test","ext.test",,,,,,,,"True"
-"Apple APS","apple","apple@aps-hh.de","+49 40 523889-500",,,,"IT","IT Service","True"
-"Android APS","android","android@aps-hh.de",,,,,,,"True"
-"DBS1","DBS1",,,,,,,,"True"
-"Meszely Istvan","i.meszely","I.Meszely@aps-hh.de","+49 40 523889-500",,,,"IT","IT Systemadministrator","True"
-"t2.meszely","t2.meszely",,,,,,,,"True"
-"Kollien Sebastian","se.kollien","se.kollien@aps-hh.de","+49 40 523889-397",,"+49 40 523889-400",,,"Aushilfe","False"
-"Telefonbenachrichtung","Telefonbenachrichtun","Telefonbenachrichtung@aps-hh.de",,,,,,,"False"
-"svc.piv-willach","svc.piv-willach",,,,,,,,"True"
-"t1.Meszely","t1.meszely",,,,,,,,"True"
-"Salenkow Carina","c.salenkow","C.Salenkow@aps-hh.de","+49 40 523889-576",,,,"FIBU",,"False"
-"Kotevski Filip","f.kotevski","F.Kotevski@aps-hh.de","+49 40 523889-579",,,,"FIBU",,"True"
-"Lullo Stefania","s.lullo","S.Lullo@aps-hh.de",,,,,"FIBU",,"True"
-"Kollien Christopher | extern","ext.c.kollien","C.Kollien@aps-hh.de","+49 40 523889-444",,,,"FIBU",,"False"
-"svc.PRTG-read","svc.PRTG-read",,,,,,,,"True"
-"ema","ema","ema@aps-hh.de",,,,,,,"True"
-"ext.svc.zyto","ext.svc.zyto",,,,,,,,"True"
-"svc.fax_bestellung","svc.fax_bestellung","svc.fax_bestellung@aps-hh.de",,,,,,,"True"
-"svc.LDAP4scan","svc.LDAP4scan",,,,,,,,"True"
-"Jürgensen Sven","s.juergensen","S.Juergensen@aps-hh.de","+49 40 523889-445",,,,"FIBU",,"True"
-"bestellung-fax-eingang","bestellung-fax-einga","bestellung-fax-eingang@aps-hh.de",,,,,,,"True"
-"Haidar Sarah Yasmine","s.haidar","S.Haidar@aps-hh.de","+49 40 523889-563",,,,"OFZ","PTA-Praktikantin","True"
-"Geier Vladimir","v.geier","V.Geier@aps-hh.de","+49 40 523889-0",,,,,,"True"
-"ext.elpro01 | extern","ext.elpro01",,,,,,,,"True"
-"Löhr Lennart","l.loehr","L.Loehr@aps-hh.de","+49 40 523889-0",,"+49 40 523889-400",,"KPM","Pharmazeut im Praktikum","True"
-"svc.STAS","svc.STAS",,,,,,,,"True"
-"Ziemnicki Wiktor","W.Ziemnicki",,,,,,,,"True"
-"Schlacher Sandra | Extern","ext.s.schlacher","S.Schlacher@aps-hh.de","+49 40 523889-575",,,,"FIBU",,"True"
-"svc.silverback","svc.silverback",,,,,,,,"True"
-"svc.LDAPSilverback","svc.LDAPSilverback",,,,,,,,"True"
-"Yönden, Michael | extern","ext.m.yoenden",,,,,,,,"True"
-"Test MDM","mdm.test","mdm.test@aps-hh.de",,,,,,,"True"
-"MDM2 Test","mdm.test2","mdm.test2@aps-hh.de",,,,,,,"True"
-"t0.meszely","t0.meszely",,,,,,,,"True"
-"Slawski Nicola","n.slawski","N.Slawski@aps-hh.de","+49 40 523889-117",,"+49 40 523889-400",,"KPM","Pharmazeutin im Praktikum","True"
-"Filatova Anastasia","a.filatova","A.Filatova@aps-hh.de","+49 40 523889-563",,"+49 40 523889-400",,"OFZ","Pharmazeutisch-technische Assistentin (PTA)","True"
-"Goll, Insa | antares consult","i.goll2",,,,,,,,"True"
-"Hakimi, Mortaza | antares consult","m.hakimi2",,,,,,,,"True"
--- a/Doc/selected_users.csv
+++ b/Doc/selected_users.csv
@@ -1,18 +0,0 @@
-"Name","SamAccountName","Mail","Telephone","Mobile","Fax_business","Office","Department","Title","Enabled"
-"Gielsdorf Mario | APS","m.gielsdorf","M.Gielsdorf@aps-hh.de","+49 40 523889-500",,,,"IT","IT-Manager","True"
-"Oppermann Larissa","L.Oppermann","L.Oppermann@aps-hh.de","+49 40 523889-222",,"+49 40 523889-401",,"EM","Oecotrophologin","True"
-"Hintz Lennart","L.Hintz","L.Hintz@aps-hh.de","+49 40 523889-0","+49 151 25243765","+49 40 523889-400",,,"Apotheker","True"
-"Goll Insa","I.Goll","I.Goll@aps-hh.de","+49 40 523889-100",,"+49 40 523889-400",,"KPM","Fachapothekerin für Klinische Pharmazie","True"
-"Driff Cheyenne","C.Driff","C.Driff@aps-hh.de","+49 40 523889-901",,"+49 40 523889-593",,"HERST","Pharmazeutisch-technische Assistentin (PTA)","True"
-"Thomas Stefanie","S.Thomas","S.Thomas@aps-hh.de","+49 40 523889-526",,"+49 40 523889-582",,"PE",,"True"
-"Kollien Steve","S.Kollien","S.Kollien@aps-hh.de","+49 40 523889-397",,"+49 40 523889-400",,"CO","Betriebswirt","True"
-"Liencke Nadine","N.Liencke","N.Liencke@aps-hh.de","+49 40 523889-100",,"+49 40 523889-400",,"KPM","Fachapothekerin für Klinische Pharmazie;","True"
-"Becker Florian","F.Becker","F.Becker@aps-hh.de","+49 40 523889-0",,"+49 40 523889-400",,"GF","Fachapotheker für Klinische Pharmazie;","True"
-"Berschiek Katharina","K.Berschiek","K.Berschiek@aps-hh.de","+49 40 523889-440","+49 171 9169153","+49 40 523889-404",,"OABR","Pharmazeutisch-technische Assistentin (PTA)","True"
-"Ziegler Sabine","S.Ziegler","S.Ziegler@aps-hh.de","+49 40 523889-448",,"+49 40 523889-410",,"OPEK","Pharmazeutisch-kaufmännische Angestellte (PKA)","True"
-"Polat Zeynep","Z.Polat","Z.Polat@aps-hh.de","+49 40 523889-0",,"+49 40 523889-400",,"Lager","Pharmazeutisch-kaufmännische Angestellte (PKA)","True"
-"Zakrzewski Zbigniew","Z.Zakrzewski","Z.Zakrzewski@aps-hh.de","+49 40 523889-0","+49 170 6322803","+49 40 523889-590",,"Transport",,"True"
-"Huth Sybille","S.Huth","S.Huth@aps-hh.de","+49 40 523889-122","+49 151 74345682","+49 40 523889-595",,"OQS","Apothekerin","True"
-"Werther Rainer W. | APS","R.Werther","R.Werther@aps-hh.de","+49 40 523889-0","+49 172 9428000","+49 40 523889-582",,,,"True"
-"Soltau Fabio","F.Soltau","F.Soltau@aps-hh.de","+49 40 523889-529","+49 175 6912536",,,,,"True"
-"Bend Marta","m.bend","M.Bend@aps-hh.de","+49 40 523889-563",,"+49 40 523889-400",,"OFZ","Apothekerin","True"
--- a/Doc/selected_users.xlsx
+++ b/Doc/selected_users.xlsx
--- a/Docker/checkmk_aps/checkmk_import_switches.py
+++ b/Docker/checkmk_aps/checkmk_import_switches.py
@@ -0,0 +1,115 @@
+import requests
+import json
+import urllib3
+
+# Kikapcsoljuk az SSL figyelmeztetéseket
+urllib3.disable_warnings(urllib3.exceptions.InsecureRequestWarning)
+
+# --- KONFIGURÁCIÓ ---
+# Módosítva a kért IP-re:
+URL = "http://10.102.1.201:8080/monitoring/check_mk/api/1.0"
+USERNAME = "cmkadmin"
+PASSWORD = "cmkadmin123"
+FOLDER = "/"
+
+# A fő szülő (Parent) adatai
+GW_NAME = "SOPHOS-GW"
+GW_IP = "10.102.1.1"
+
+# A switchek adatai
+SWITCHES = {
+    "NET-SW01": "10.220.1.84",
+    "NET-SW02": "10.220.1.85",
+    "NET-SW03": "172.16.71.6",
+    "NET-SW04": "10.220.1.86",
+    "NET-SW05": "10.220.1.87",
+    "NET-SW06": "10.220.1.88",
+    "NET-SW07": "10.220.1.90",
+    "NET-SW08": "10.220.1.91",
+    "NET-SW09": "10.220.1.92",
+    "NET-SW10": "10.220.1.93",
+    "NET-SW11": "10.220.1.94",
+    "NET-SW12": "10.220.1.95",
+    "NET-SW13": "10.220.1.96",
+    "NET-SW14": "10.220.1.97",
+}
+
+session = requests.Session()
+session.auth = (USERNAME, PASSWORD)
+session.headers.update({"Accept": "application/json", "Content-Type": "application/json"})
+
+def add_host(name, ip, parents=None):
+    print(f"Adding host: {name} ({ip})...")
+    
+    attributes = {
+        "ipaddress": ip,
+        "tag_agent": "no-agent",
+    }
+    
+    if parents:
+        attributes["parents"] = parents
+        
+    payload = {
+        "host_name": name,
+        "folder": FOLDER,
+        "attributes": attributes
+    }
+    
+    response = session.post(
+        f"{URL}/domain-types/host_config/collections/all",
+        json=payload
+    )
+    
+    if response.status_code == 200:
+        print(f"  [OK] Host '{name}' successfully added.")
+    elif response.status_code == 400 and "already exists" in response.text:
+        print(f"  [INFO] Host '{name}' already exists.")
+    else:
+        print(f"  [ERROR] Failed to add {name}: {response.status_code} - {response.text}")
+
+def activate_changes():
+    print("Fetching pending changes to get ETag...")
+    
+    # Külön session az ETag lekéréshez a biztonság kedvéért
+    etag_session = requests.Session()
+    etag_session.auth = (USERNAME, PASSWORD)
+    etag_session.headers.update({"Accept": "application/json"})
+
+    resp = etag_session.get(f"{URL}/domain-types/activation_run/collections/pending_changes")
+    if resp.status_code != 200:
+        print(f"  [ERROR] Could not fetch pending changes: {resp.text}")
+        return
+
+    etag = resp.headers.get("ETag")
+    
+    # Ha nincs ETag vagy nincs függőben lévő változás, ne csináljunk semmit
+    if not etag or resp.json().get('value') == []:
+        print("  [INFO] No pending changes to activate.")
+        return
+
+    print(f"Activating changes with ETag: {etag}")
+    
+    # Az aktiváláshoz be kell állítani az If-Match fejlécet
+    # Ezt az eredeti session headerjeihez adjuk hozzá
+    session.headers.update({"If-Match": etag})
+    
+    response = session.post(
+        f"{URL}/domain-types/activation_run/actions/activate-changes/invoke",
+        json={"redirect": False, "sites": ["monitoring"]}
+    )
+    
+    if response.status_code == 200:
+        print("  [OK] Changes activated successfully.")
+    else:
+        print(f"  [ERROR] Failed to activate changes: {response.status_code} - {response.text}")
+
+if __name__ == "__main__":
+    # 1. Először a SOPHOS GW-t vesszük fel
+    add_host(GW_NAME, GW_IP)
+    
+    # 2. Utána a switcheket a GW-vel szülőként
+    for name, ip in SWITCHES.items():
+        add_host(name, ip, parents=[GW_NAME])
+    
+    # 3. Aktiváljuk a változtatásokat
+    activate_changes()
--- a/Docker/checkmk_aps/docker-compose.yml
+++ b/Docker/checkmk_aps/docker-compose.yml
@@ -0,0 +1,17 @@
+services:
+  checkmk:
+    image: checkmk/check-mk-raw:2.3.0-latest
+    container_name: checkmk
+    restart: always
+    ports:
+      - "8080:5000"
+    environment:
+      - CMK_SITE_ID=monitoring
+      - CMK_PASSWORD=cmkadmin123
+      - TZ=Europe/Berlin
+    volumes:
+      - ./sites:/opt/omd/sites
+      - /etc/localtime:/etc/localtime:ro
+    cap_add:
+      - NET_ADMIN
+      - NET_RAW
--- a/Docker/checkmk_aps/hosts_for_checkmk.csv
+++ b/Docker/checkmk_aps/hosts_for_checkmk.csv
@@ -0,0 +1,68 @@
+Host,Port,Description,Display Name,Folder
+APPCS01.aps.local,3389,,APPCS01,APS
+APS-ADMIN01.aps.local,3389,,APS-ADMIN01,APS
+APS-ADMIN01.aps.local,3389,,APS-ADMIN01 - FullSize,APS
+APS-AOTRACE01.aps.local,3389,,APS-AOTRACE01,APS\Apotheke
+APS-APO01.aps.local,3389,,APS-APO01,APS\Apotheke
+APS-BK01.aps.local,3389,,APS-BK01,APS\Backup
+APS-CONN01.aps.local,3389,,APS-CONN01,APS\AD
+APS-DC01.aps.local,3389,,APS-DC01,APS\AD
+APS-DC02.aps.local,3389,,APS-DC02,APS\AD
+APS-EGOSEC01.aps.local,3389,,APS-EGOSEC01,APS\Matrix42
+APS-ELPRO01.aps.local,3389,,APS-ELPRO01,APS\Elpro-Monitoring
+APS-EXCH01.aps.local,3389,,APS-EXCH01,APS\Exchange
+APS-EXCH02.aps.local,3389,,APS-EXCH02,APS\Exchange
+APS-FAX01.aps.local,3389,,APS-FAX01,APS\FAX
+APS-FILE01.aps.local,3389,,"APS-FILE01 (Abt.,Apps,Data)",APS\Fileserver
+APS-FILE02.aps.local,3389,,APS-FILE02 (UserShare),APS\Fileserver
+APS-GENO01.aps.local,3389,,APS-GENO01,APS\FB/CO
+APS-Infra01.aps.local,3389,,APS-Infra01,APS\AD
+APS-Infra02.aps.local,3389,,APS-Infra02,APS\AD
+APS-Lizenz01.aps.local,3389,,APS-Lizenz01,APS\AD
+APS-MAVE01.aps.local,3389,,APS-MAVE01 (Jobs),APS\Mave
+APS-MAVE02.aps.local,3389,,APS-MAVE02 (Scanner),APS\Mave
+APS-MAVE03.aps.local,3389,,APS-MAVE03 (Schnittstellen),APS\Mave
+APS-MAVE04.aps.local,3389,,APS-MAVE04 (Datenbank),APS\Mave
+APs-MYSQL01.aps.local,3389,,APS-MYSQL01,APS\SQL
+APS-NPS01.aps.local,3389,,APS-NPS01,APS\AD
+APS-NSM01.aps.local,3389,,APS-NSM01,APS\Matrix42
+APS-PKI01.aps.local,3389,,APS-PKI01 (offline),APS\PKI
+APS-PKI02.aps.local,3389,,APS-PKI02,APS\PKI
+APS-PRINT01.aps.local,3389,,APS-PRINT01,APS\Drucker
+APS-PRINT02.aps.local,3389,,APS-PRINT02,APS\Drucker
+APS-PRTG01.aps.local,3389,,APS-PRTG01,APS\Monitoring
+APS-RDS01.aps.local,3389,,APS-RDS01,APS\Terminal
+APS-RDS02.aps.local,3389,,APS-RDS02,APS\Terminal
+APS-RDS03.aps.local,3389,,APS-RDS03,APS\Terminal
+APS-RDS04.aps.local,3389,,APS-RDS04,APS\Terminal
+APS-RDS05.aps.local,3389,,APS-RDS05,APS\Terminal
+APS-RDS06.aps.local,3389,,APS-RDS06,APS\Terminal
+APS-RDSCB01.aps.local,3389,,APS-RDSCB01,APS\Terminal
+APS-ROXTRA01.aps.local,3389,,APS-ROXTRA01,APS\roXtra
+APS-SASM01.aps.local,3389,,APS-SASM01,APS\Matrix42
+APS-SQL01.aps.local,3389,,APS-SQL01,APS\SQL
+APS-TC011.aps.local,3389,,APS-TC011,APS\xxx-Desktops
+APS-TC022.aps.local,3389,,APS-TC022,APS\xxx-Desktops
+APS-TC068.aps.local,3389,,APS-TC068,APS\xxx-Desktops
+APS-TC069.aps.local,3389,,APS-TC069,APS\xxx-Desktops
+APS-TC073.aps.local,3389,,APS-TC073,APS\xxx-Desktops
+APS-TC074.aps.local,3389,,APS-TC074,APS\xxx-Desktops
+APS-TC075.aps.local,3389,,APS-TC075,APS\xxx-Desktops
+APS-TC076.aps.local,3389,,APS-TC076,APS\xxx-Desktops
+APS-TC077.aps.local,3389,,APS-TC077,APS\xxx-Desktops
+APS-TC078.aps.local,3389,,APS-TC078,APS\xxx-Desktops
+APS-TC079.aps.local,3389,,APS-TC079,APS\xxx-Desktops
+APS-TC080.aps.local,3389,,APS-TC080,APS\xxx-Desktops
+APS-TC081.aps.local,3389,,APS-TC081,APS\xxx-Desktops
+APS-TC082.aps.local,3389,,APS-TC082,APS\xxx-Desktops
+APS-TC083.aps.local,3389,,APS-TC083,APS\xxx-Desktops
+APS-TC086.aps.local,3389,,APS-TC086,APS\xxx-Desktops
+APS-TC087.aps.local,3389,,APS-TC087,APS\xxx-Desktops
+APS-TC088.aps.local,3389,,APS-TC088,APS\xxx-Desktops
+APS-TC089.aps.local,3389,,APS-TC089,APS\xxx-Desktops
+APS-TD001.aps.local,3389,,APS-TD001,APS\xxx-Desktops
+APS-UEM01.aps.local,3389,,APS-UEM01,APS\Matrix42
+mave-terminals.aps.local,3389,,MAVE-TERMINALS,APS\Mave
+10.101.0.83,3389,,10.101.0.83,
+APS-VM01.aps.local,3389,,APS-VM01,
+APS-VM02.aps.local,3389,,APS-VM02,
--- a/Docker/checkmk_aps/import_csv_hosts_to_checkmk.py
+++ b/Docker/checkmk_aps/import_csv_hosts_to_checkmk.py
@@ -0,0 +1,142 @@
+import requests
+import json
+import urllib3
+import csv
+import socket
+import sys
+
+# Kikapcsoljuk az SSL figyelmeztetéseket
+urllib3.disable_warnings(urllib3.exceptions.InsecureRequestWarning)
+
+# --- KONFIGURÁCIÓ ---
+URL = "http://10.102.1.201:8080/monitoring/check_mk/api/1.0"
+USERNAME = "cmkadmin"
+PASSWORD = "cmkadmin123"
+
+# CSV fájl elérési útja, a szkript új helyéhez viszonyítva (Docker/checkmk_aps/)
+CSV_FILE_PATH = "hosts_for_checkmk.csv" 
+
+session = requests.Session()
+session.auth = (USERNAME, PASSWORD)
+session.headers.update({"Accept": "application/json", "Content-Type": "application/json"})
+
+def resolve_hostname_to_ip(hostname):
+    """Feloldja a hosztnevet IP címre. Ha már IP cím, visszaadja azt."""
+    try:
+        socket.inet_pton(socket.AF_INET, hostname)
+        return hostname # Már IP cím
+    except socket.error:
+        # Ha nem IP cím, próbáljuk meg feloldani
+        try:
+            return socket.gethostbyname(hostname)
+        except socket.gaierror:
+            print(f"  [WARNING] Could not resolve hostname: {hostname}")
+            return None
+
+def add_host(name, ip, parents=None):
+    """
+    Hozzáad egy hosztot a Checkmk-hoz.
+    Minden hoszt a gyökér mappába kerül.
+    """
+    checkmk_folder_path_slug = "/" # Mindig a gyökér mappa
+
+    print(f"Adding host: {name} ({ip}) to root folder '/''...")
+    
+    attributes = {
+        "ipaddress": ip,
+        "tag_agent": "no-agent", # Csak pingeljen, ne keressen agentet
+    }
+    
+    if parents:
+        attributes["parents"] = parents
+        
+    payload = {
+        "host_name": name,
+        "folder": checkmk_folder_path_slug, # Folder must be the slugified full path
+        "attributes": attributes
+    }
+    
+    response = session.post(
+        f"{URL}/domain-types/host_config/collections/all",
+        json=payload
+    )
+    
+    if response.status_code == 200:
+        print(f"  [OK] Host '{name}' successfully added.")
+    elif response.status_code == 400 and "already exists" in response.text:
+        print(f"  [INFO] Host '{name}' already exists.")
+    else:
+        print(f"  [ERROR] Failed to add {name}: {response.status_code} - {response.text}")
+        print(f"  [DEBUG] Payload: {json.dumps(payload)}")
+    
+def activate_changes():
+    """
+    Aktiválja a Checkmk-ban lévő függőben lévő változásokat.
+    """
+    print("Fetching pending changes to get ETag...")
+    
+    etag_session = requests.Session()
+    etag_session.auth = (USERNAME, PASSWORD)
+    etag_session.headers.update({"Accept": "application/json"})
+
+    resp = etag_session.get(f"{URL}/domain-types/activation_run/collections/pending_changes")
+    if resp.status_code != 200:
+        print(f"  [ERROR] Could not fetch pending changes: {resp.text}")
+        return
+
+    etag = resp.headers.get("ETag")
+    
+    # Ha nincs ETag vagy nincs függőben lévő változás, ne csináljunk semmit
+    if not etag or not resp.json().get('value'): # ellenőrizzük, hogy 'value' nem üres-e
+        print("  [INFO] No pending changes to activate.")
+        return
+
+    print(f"Activating changes with ETag: {etag}")
+    
+    # Az aktiváláshoz be kell állítani az If-Match fejlécet
+    activation_headers = {
+        "Accept": "application/json",
+        "Content-Type": "application/json",
+        "If-Match": etag
+    }
+    
+    response = session.post(
+        f"{URL}/domain-types/activation_run/actions/activate-changes/invoke",
+        headers=activation_headers,
+        json={"redirect": False, "sites": ["monitoring"]}
+    )
+    
+    if response.status_code == 200:
+        print("  [OK] Changes activated successfully.")
+    else:
+        print(f"  [ERROR] Failed to activate changes: {response.status_code} - {response.text}")
+
+if __name__ == "__main__":
+    hosts_to_import = []
+    
+    try:
+        with open(CSV_FILE_PATH, mode='r', newline='', encoding='utf-8') as file:
+            reader = csv.DictReader(file)
+            for row in reader:
+                hostname = row['Host'].strip()
+                
+                ip_address = resolve_hostname_to_ip(hostname)
+
+                if ip_address:
+                    hosts_to_import.append({
+                        "name": hostname,
+                        "ip": ip_address,
+                    })
+                else:
+                    print(f"Skipping host '{hostname}' due to unresolved IP address.")
+    except FileNotFoundError:
+        print(f"ERROR: CSV file not found at {CSV_FILE_PATH}")
+        sys.exit(1)
+
+    # Nincs mappalétrehozás, minden a gyökérbe kerül
+    
+    # Hosztok hozzáadása a Checkmk-hoz
+    for host in hosts_to_import:
+        add_host(host['name'], host['ip']) # Nincs 'folder_display' paraméter
+    
+    activate_changes()
--- a/Docker/graphana_aps/docker-compose.yml
+++ b/Docker/graphana_aps/docker-compose.yml
@@ -0,0 +1,17 @@
+services:
+  grafana:
+    image: grafana/grafana-oss:9.5.15
+    container_name: graphana_aps
+    restart: unless-stopped
+    ports:
+      - "3000:3000"
+    environment:
+      - GF_INSTALL_PLUGINS=jasonlashua-prtg-datasource
+      - GF_SERVER_ROOT_URL=http://graphana.aps.local
+      - GF_SECURITY_ADMIN_PASSWORD=admin
+      - GF_PLUGINS_ALLOW_LOADING_UNSIGNED_PLUGINS=jasonlashua-prtg-datasource
+    volumes:
+      - graphana_data:/var/lib/grafana
+
+volumes:
+  graphana_data:
--- a/Docker/librenms_aps/.env
+++ b/Docker/librenms_aps/.env
@@ -0,0 +1,5 @@
+# LibreNMS alap beállítások
+MYSQL_PASSWORD=librenms_db_pass
+MYSQL_ROOT_PASSWORD=librenms_root_pass
+TZ=Europe/Berlin
+# Az időzónát módosítsd igény szerint (pl. Europe/Budapest)
--- a/Docker/librenms_aps/docker-compose.yml
+++ b/Docker/librenms_aps/docker-compose.yml
@@ -0,0 +1,106 @@
+services:
+  db:
+    image: mariadb:10.5
+    container_name: librenms_db
+    command:
+      - mysqld
+      - --innodb-file-per-table=1
+      - --lower-case-table-names=1
+      - --character-set-server=utf8mb4
+      - --collation-server=utf8mb4_unicode_ci
+    volumes:
+      - ./db:/var/lib/mysql
+    environment:
+      - TZ=${TZ}
+      - MYSQL_DATABASE=librenms
+      - MYSQL_USER=librenms
+      - MYSQL_PASSWORD=${MYSQL_PASSWORD}
+      - MYSQL_ROOT_PASSWORD=${MYSQL_ROOT_PASSWORD}
+    restart: always
+
+  redis:
+    image: redis:6.0-alpine
+    container_name: librenms_redis
+    environment:
+      - TZ=${TZ}
+    restart: always
+
+  librenms:
+    image: librenms/librenms:latest
+    container_name: librenms
+    hostname: librenms
+    ports:
+      - "8000:8000"
+    volumes:
+      - ./librenms:/data
+    depends_on:
+      - db
+      - redis
+    environment:
+      - TZ=${TZ}
+      - PUID=1000
+      - PGID=1000
+      - APP_URL=http://10.102.1.201:8000
+      - DB_HOST=db
+      - DB_NAME=librenms
+      - DB_USER=librenms
+      - DB_PASSWORD=${MYSQL_PASSWORD}
+      - REDIS_HOST=redis
+    restart: always
+
+  cron:
+    image: librenms/librenms:latest
+    container_name: librenms_cron
+    hostname: librenms-cron
+    volumes:
+      - ./librenms:/data
+    depends_on:
+      - db
+      - redis
+    environment:
+      - TZ=${TZ}
+      - PUID=1000
+      - PGID=1000
+      - DB_HOST=db
+      - DB_NAME=librenms
+      - DB_USER=librenms
+      - DB_PASSWORD=${MYSQL_PASSWORD}
+      - REDIS_HOST=redis
+      - SIDECAR_CRON=1
+    restart: always
+
+  dispatcher:
+    image: librenms/librenms:latest
+    container_name: librenms_dispatcher
+    hostname: librenms-dispatcher
+    volumes:
+      - ./librenms:/data
+    depends_on:
+      - db
+      - redis
+    environment:
+      - TZ=${TZ}
+      - PUID=1000
+      - PGID=1000
+      - DB_HOST=db
+      - DB_NAME=librenms
+      - DB_USER=librenms
+      - DB_PASSWORD=${MYSQL_PASSWORD}
+      - REDIS_HOST=redis
+      - LIBRENMS_ALLOW_LOGIN_GET=true
+      - DISPATCHER_NODE_ID=dispatcher1
+      - SIDECAR_DISPATCHER=1
+    restart: always
+
+  grafana:
+    image: grafana/grafana-oss:latest
+    container_name: grafana
+    ports:
+      - "3000:3000"
+    volumes:
+      - ./grafana_data:/var/lib/grafana
+    environment:
+      - TZ=${TZ}
+      - GF_SECURITY_ADMIN_PASSWORD=admin
+      - GF_USERS_ALLOW_SIGN_UP=false
+    restart: always
--- a/Docker/n8n_aps/Your
+++ b/Docker/n8n_aps/Your
@@ -0,0 +1,5 @@
+Your license key
+5e377abd-f816-4949-9f95-5c8c9dbfbd37
+
+Your license key
+19385219-1295-451f-8130-37557cf74f8c
--- a/Docker/n8n_aps/docker-compose.yml
+++ b/Docker/n8n_aps/docker-compose.yml
@@ -0,0 +1,27 @@
+services:
+  n8n:
+    image: n8nio/n8n
+    restart: always
+    ports:
+      - "5678:5678"
+    volumes:
+      - n8n_data:/home/node/.n8n
+    environment:
+      # The host URL where n8n will be accessible. Change to your domain or IP.
+      - N8N_HOST=${N8N_HOST:-localhost}
+      - N8N_PORT=5678
+      - N8N_PROTOCOL=http
+      # This is the URL that n8n will send to external services for webhooks.
+      # Make sure to update this to your publicly accessible URL.
+      - WEBHOOK_URL=${WEBHOOK_URL:-http://localhost:5678/}
+      # Explicitly set secure cookie to false for testing with HTTP
+      - N8N_SECURE_COOKIE=false
+      # Set your desired timezone
+      - GENERIC_TIMEZONE=${GENERIC_TIMEZONE:-Europe/Berlin}
+      # Database configuration - using SQLite for simplicity with fewer tasks
+      - DB_TYPE=sqlite
+      # No specific host, database, user, or password needed for SQLite
+    # depends_on is no longer needed without postgres
+
+volumes:
+  n8n_data:
--- a/Docker/n8n_aps/n8n.conf
+++ b/Docker/n8n_aps/n8n.conf
@@ -0,0 +1,33 @@
+server {
+    listen 80;
+    server_name your.domain.com; # Replace with your actual domain
+    return 301 https://$host$request_uri;
+}
+
+server {
+    listen 443 ssl http2;
+    server_name your.domain.com; # Replace with your actual domain
+
+    ssl_certificate /path/to/your/fullchain.pem; # Replace with your certificate path (e.g., /etc/letsencrypt/live/your.domain.com/fullchain.pem)
+    ssl_certificate_key /path/to/your/privkey.pem; # Replace with your private key path (e.g., /etc/letsencrypt/live/your.domain.com/privkey.pem)
+    ssl_session_cache shared:SSL:10m;
+    ssl_session_timeout 10m;
+    ssl_protocols TLSv1.2 TLSv1.3;
+    ssl_ciphers "ECDHE+AESGCM:ECDHE+CHACHA20:DHE+AESGCM:DHE+CHACHA20";
+    ssl_prefer_server_ciphers on;
+
+    # Optional: Enable HSTS
+    # add_header Strict-Transport-Security "max-age=63072000" always;
+
+    location / {
+        proxy_pass http://localhost:5678; # n8n is running on port 5678 on the host
+        proxy_set_header Host $host;
+        proxy_set_header X-Real-IP $remote_addr;
+        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+        proxy_set_header X-Forwarded-Proto $scheme;
+        proxy_set_header Upgrade $http_upgrade;
+        proxy_set_header Connection "upgrade";
+        # Required for n8n Webhook URLs
+        proxy_set_header X-N8N-Webhook-Url $scheme://$host$request_uri;
+    }
+}
--- a/Docker/n8n_meszely.eu/example.md
+++ b/Docker/n8n_meszely.eu/example.md
--- a/GEMINI.md
+++ b/GEMINI.md
@@ -16,8 +16,6 @@ This directory contains all the scripts for automation and administration, organ
 ### `/Dev/`
 This directory contains various development projects, such as `network_scann/`, `switch_ip_scann_CSV/`, `switch_ip_scann_DB/` and serves as a collection of configuration files and notes for various system administration tasks.

-
-
 ### `/Doku/`
 This directory is used for documentation, data storage, and logs. It contains CSV and text files with user data, printer information, and various logs, organized into subdirectories like `Ai`, `Logs`, and `Pdf`.

@@ -36,6 +34,7 @@ A kedvenc programozási nyelvem a Python.
 Weboldalak amiket hasznälni szoktunk:
 mermaid.live

-Általában fedora linux alatt dolgozunk.
-Második leggyakrabban használt linux az Ubuntu alapu.
-Virtualizácionk Proxmox VE
+Általában szerver oldalon Fedora Linux alatt dolgozunk.
+A második leggyakrabban használt linux az Ubuntu alapú (szintén szerver).
+Kliens oldalon (munkaállomás) Windows 11-et vagy macOS-t használunk.
+Virtualizációnk Proxmox VE.
--- a/GEMINI_o365_app.md
+++ b/GEMINI_o365_app.md
@@ -0,0 +1,45 @@
+# Microsoft 365 App-Registrierung für Skripte (OAuth 2.0)
+
+Diese Anleitung beschreibt die notwendigen Schritte, um eine Anwendung im Microsoft Entra Admin Center zu registrieren. Dies ermöglicht Skripten und anderen Anwendungen den sicheren Zugriff auf Microsoft 365-Dienste (wie z. B. E-Mails über die Graph-API) mittels OAuth 2.0-Authentifizierung.
+
+---
+
+### Praktische Schritte
+
+Diese Schritte müssen von einem globalen Administrator oder einem Benutzer mit entsprechenden Berechtigungen im [Microsoft Entra Admin Center](https://entra.microsoft.com/) durchgeführt werden.
+
+**Schritt 1: Anwendungsregistrierung**
+
+1.  Öffnen Sie das **Microsoft Entra Admin Center**.
+2.  Navigieren Sie zu: **Identität** > **Anwendungen** > **App-Registrierungen** (Identity > Applications > App registrations).
+3.  Klicken Sie auf **+ Neue Registrierung** (+ New registration).
+4.  **Name:** Geben Sie einen aussagekräftigen Namen ein, z. B. `Python PDF Downloader Skript`.
+5.  **Unterstützte Kontotypen:** Wählen Sie die Standardeinstellung: `Nur Konten in diesem Organisationsverzeichnis (...)` (Accounts in this organizational directory only).
+6.  Den Abschnitt **Umleitungs-URI** (Redirect URI) können Sie leer lassen, da es sich um eine Hintergrundanwendung handelt.
+7.  Klicken Sie auf **Registrieren** (Register).
+
+**Schritt 2: API-Berechtigungen festlegen**
+
+1.  Wählen Sie in der neu registrierten Anwendung das Menü **API-Berechtigungen** (API permissions).
+2.  Klicken Sie auf **+ Berechtigung hinzufügen** (+ Add a permission).
+3.  Wählen Sie **Microsoft Graph**.
+4.  Wählen Sie die Option **Anwendungsberechtigungen** (Application permissions). (WICHTIG: Nicht `Delegierte Berechtigungen`, da das Skript eigenständig und nicht im Namen eines Benutzers ausgeführt wird).
+5.  Geben Sie im Suchfeld `Mail` ein. Wählen Sie die Berechtigung **Mail.Read**. Wenn Ihr Skript E-Mails auch ändern soll (z. B. als gelesen markieren), benötigen Sie zusätzlich `Mail.ReadWrite`. Für den Anfang genügt `Mail.Read`.
+6.  Klicken Sie auf **Berechtigungen hinzufügen** (Add permissions).
+7.  **WICHTIGER SCHRITT:** Sie sehen eine Warnmeldung. Klicken Sie auf die Schaltfläche **`Administratorzustimmung für [Ihr Firmenname] erteilen`** (Grant admin consent for...) und bestätigen Sie das Dialogfeld. Ohne diesen Schritt sind die Berechtigungen nicht aktiv. Neben den Berechtigungen sollte danach ein grünes Häkchen erscheinen.
+
+**Schritt 3: Client-Geheimnis erstellen (Client Secret)**
+
+1.  Navigieren Sie in der Anwendung zum Menü **Zertifikate & Geheimnisse** (Certificates & secrets).
+2.  Klicken Sie auf **+ Neues Client-Geheimnis** (+ New client secret).
+3.  Geben Sie eine Beschreibung ein (z. B. `skript_secret_v1`) und wählen Sie eine Gültigkeitsdauer (z. B. 12 Monate).
+4.  Klicken Sie auf **Hinzufügen** (Add).
+5.  **KRITISCH WICHTIG:** Der geheime Schlüssel wird nun in der Spalte **Wert** (Value) angezeigt. **Kopieren Sie diesen Wert sofort und speichern Sie ihn an einem sicheren Ort (z. B. in einem Passwort-Manager)! Nachdem Sie die Seite verlassen haben, kann der Wert nie wieder vollständig angezeigt werden, und Sie müssen einen neuen erstellen.**
+
+**Schritt 4: Notwendige Daten sammeln**
+
+Sie haben nun alle erforderlichen Informationen für Ihr Skript. Gehen Sie zur **Übersichtsseite** (Overview) Ihrer Anwendung. Sie benötigen die folgenden drei Informationen:
+
+1.  **Anwendungs- (Client-) ID** (Application (client) ID)
+2.  **Verzeichnis- (Mandanten-) ID** (Directory (tenant) ID)
+3.  **Den Wert des Client-Geheimnisses** (Client Secret Value), den Sie in Schritt 3 kopiert und gespeichert haben.
--- a/GEMINI_sharepoint_concept.md
+++ b/GEMINI_sharepoint_concept.md
@@ -0,0 +1,41 @@
+# SharePoint IT Dokumentációs Központ - Koncepció
+
+## 1. Célkitűzés
+Egy központi, felhőalapú (O365) platform létrehozása az IT részleg összes dokumentációjának, konfigurációjának és tudásbázisának tárolására. Ez egy **zárt, belső IT gyűjtemény**, nem nyilvános a többi dolgozó számára.
+
+## 2. Webhely Típusa
+- **Típus:** SharePoint Team Site (**Privát**)
+- **Név:** `IT Internal Repository`
+- **Hozzáférés:** Kizárólag az IT csapat tagjai számára (Tulajdonosok és Tagok).
+
+## 3. Végleges Struktúra (Dokumentumtárak)
+A SharePoint felületen kialakított mappaszerkezet:
+
+- **01_Infrastructure:** Postfix konfigok, Switch beállítások, hálózati rajzok.
+- **02_Software:** Telepítőfájlok (.zip, .exe), szoftveres dokumentációk.
+- **03_Knowledge_Base:** Általános IT útmutatók és Markdown (.md) dokumentumok.
+- **04_Automation_Scripts:** Python és Bash szkriptek gyűjteménye.
+- **05_Archive:** Régi mentések és logok.
+
+## 4. Technikai Funkciók (IT Fókusz)
+- **SOP (Wiki) Oldalak:** Modern SharePoint oldalakat használunk a folyamatok leírására (német nyelven a kollégáknak).
+- **Code Snippets:** A kódminták szintaxis-kiemeléssel jelennek meg az oldalakon.
+- **Verziókezelés:** Minden fájl módosítása visszakövethető.
+- **OneDrive Sync:** Windows/WSL környezetből való kényelmes feltöltés és szinkronizáció.
+
+## 5. Elvégzett és Következő Lépések
+- [x] Célközönség meghatározása (Csak IT).
+- [x] Privát SharePoint Team Site létrehozása.
+- [x] Dokumentumtárak (Libraries) kialakítása (01-05).
+- [x] Kezdőlap (Dashboard) testreszabása (Hero, Schnelllinks).
+- [x] Első SOP (Wiki) oldalak létrehozása (Német nyelven).
+- [ ] Teljes adatkészlet feltöltése (OneDrive szinkronizáció befejezése).
+- [ ] Teams integráció véglegesítése (Tab-ok hozzáadása).
+
+## 6. Megvalósított SOP Oldalak (2026.03.16)
+- **SOP: Automatisierter PDF-Import aus O365 (v2.2)**
+- **SOP: Bereinigung alter Datensätze (delete_old_records.py)**
+- **SOP: Konfiguration Postfix SMTP Relay (APS-SMTP01)**
+
+---
+*Ez a dokumentum a Gemini CLI segítségével készült, és a projekt aktuális állapotát tükrözi.*
--- a/GEMINI_user_sudo.md
+++ b/GEMINI_user_sudo.md
@@ -1,66 +1,15 @@
-# Sudo használata nem-interaktív környezetben (pl. n8n)
+# Sudo jogosultság beállítása Postfix statisztikákhoz

-## A probléma
+Ha egy sima felhasználónak (pl. `apslinux`) jelszó nélkül kell futtatnia a `pflogsumm` parancsot a `/var/log/maillog` fájlon, kövesd az alábbi lépéseket a célszerveren:

-Amikor egy automatizált folyamat (mint egy n8n workflow) SSH-n keresztül egy `sudo`-t igénylő parancsot próbál futtatni, a következő hibaüzenetet kaphatod:
-`sudo: a terminal is required to read the password`
+1. Hozz létre egy sudoers konfigurációs fájlt:
+   `sudo nano /etc/sudoers.d/postfix-stats`

-Ennek oka, hogy a `sudo` parancs alapértelmezetten jelszót kérne, de nincs interaktív terminál, ahol ezt be tudná kérni a felhasználótól.
+2. Add hozzá a következő sort (helyettesítsd a felhasználónevet):
+   `felhasznalonev ALL=(ALL) NOPASSWD: /usr/sbin/pflogsumm /var/log/maillog`

-**Fontos:** Az SSH kulcsos authentikáció (jelszó nélküli bejelentkezés) nem oldja meg ezt a problémát, mivel az a *bejelentkezésre* vonatkozik, míg a `sudo` a *jogosultság emelésére* a bejelentkezés után.
+3. Állítsd be a megfelelő jogosultságot:
+   `sudo chmod 0440 /etc/sudoers.d/postfix-stats`

-## A legjobb megoldás: `sudoers` fájl konfigurálása
-
-A legszabványosabb és legbiztonságosabb megoldás az, ha a `sudoers` fájlban beállítod, hogy egy adott felhasználó (pl. `n8nuser`) **jelszó nélkül** is futtathasson bizonyos parancsokat.
-
-### Lépések:
-
-1.  Jelentkezz be a szerverre egy `sudo` joggal rendelkező felhasználóval.
-
-2.  Nyisd meg a `sudoers` fájlt szerkesztésre a **`visudo`** paranccsal. Ez a parancs ellenőrzi a szintaxist mentés előtt, megelőzve a hibákat.
-    ```bash
-    sudo visudo
-    ```
-
-3.  A megnyílt szerkesztőben menj a fájl aljára, és adj hozzá egy új sort a felhasználó nevével.
-
---
-
-### 1. opció: A LEGJOBB és LEGbiztonságosabb módszer
-
-Csak azokra a konkrét parancsokra adj jelszó nélküli (`NOPASSWD`) jogot, amikre az automatizálásnak valóban szüksége van.
-
-**Példa egy parancsra:**
-```
-# A fájl aljára add hozzá ezt a sort, a 'n8nuser'-t cseréld a te felhasználódra:
-n8nuser ALL=(ALL) NOPASSWD: /usr/bin/apt-get update
-```
-
-**Példa több parancsra (vesszővel elválasztva):**
-```
-# A 'n8nuser'-t és a parancsokat cseréld a tieidre:
-n8nuser ALL=(ALL) NOPASSWD: /usr/bin/apt-get update, /usr/bin/apt-get upgrade -y
-```
-
---
-
-### 2. opció: Az EGYSZERŰBB, de kevésbé biztonságos módszer
-
-Engedélyezd, hogy a felhasználó *bármilyen* parancsot futtathasson jelszó nélkül. Ezt csak akkor használd, ha teljesen megbízol a rendszerben és az automatizált folyamatokban.
-
-```
-# A fájl aljára add hozzá ezt a sort, a 'n8nuser'-t cseréld a te felhasználódra:
-n8nuser ALL=(ALL) NOPASSWD: ALL
-```
-
---
-
-4.  Mentsd el és zárd be a fájlt.
-    *   **nano** szerkesztő esetén: `Ctrl+X`, majd `Y` (vagy `I`), végül `Enter`.
-    *   **vi** szerkesztő esetén: `Esc`, majd írd be `:wq` és `Enter`.
-
-Ettől kezdve az adott felhasználó a megadott parancsokat jelszókérés nélkül futtathatja a nem-interaktív SSH session alatt is.
-
-## Amit NE csinálj
-
-A hibaüzenet említi az `-S` opciót, ami lehetővé teszi a jelszó "bepipelolását" (`echo "jelszavam" | sudo -S parancs`). **Ez egy rendkívül rossz biztonsági gyakorlat**, mert a jelszavadat egyszerű szövegként kellene tárolnod egy scriptben vagy workflow-ban. Ezt mindenképpen kerüld el!
+4. Teszteld a parancsot:
+   `sudo pflogsumm /var/log/maillog`
--- a/Personal/Anamnesebogen__-_Einverst_ndniserkl_rung.doc
+++ b/Personal/Anamnesebogen__-_Einverst_ndniserkl_rung.doc
--- a/Personal/Films.md
+++ b/Personal/Films.md
@@ -0,0 +1,2 @@
+https://www.imdb.com/de/title/tt30923123/
+
--- a/Personal/KaufenList.md
+++ b/Personal/KaufenList.md
--- a/Scripts/bash/ssh_login_alert.sh
+++ b/Scripts/bash/ssh_login_alert.sh
@@ -0,0 +1,37 @@
+#!/bin/bash
+
+# ----------------------------------------------------------------
+# SSH Login Alert Script
+# Ez a script e-mailt küld egy megadott címre,
+# amikor egy felhasználó SSH-n keresztül bejelentkezik.
+# ----------------------------------------------------------------
+
+# Ide írd be az e-mail címet, ahova az értesítést kéred.
+RECIPIENT_EMAIL="ide_ird_az_email_cimed@example.com"
+
+# Az e-mail tárgya. A `hostname` parancs behelyettesíti a szerver nevét.
+SUBJECT="SSH Bejelentkezés: $USER a $(hostname -f) szerveren"
+
+# Az SSH_CLIENT változóból kivesszük csak az IP címet.
+# Pl. "1.2.3.4 56789 22" -> "1.2.3.4"
+CLIENT_IP=${SSH_CLIENT%% *}
+
+# Az e-mail törzse. A 'cat << EOF' egy elegáns módja a több soros szöveg kezelésének.
+BODY=$(cat << EOF
+SSH bejelentkezés történt a $(hostname -f) szerveren.
+
+Részletek:
+Felhasználó: $USER
+IP Címről:  $CLIENT_IP
+Időpont:    $(date +"%Y-%m-%d %H:%M:%S")
+
+--- Aktuálisan bejelentkezett felhasználók ---
+$(who)
+EOF
+)
+
+# Az e-mail elküldése a 'mail' paranccsal.
+# Csak akkor próbáljon küldeni, ha az SSH_CLIENT változó létezik (tehát SSH kapcsolatról van szó).
+if [ -n "$SSH_CLIENT" ]; then
+    echo "$BODY" | mail -s "$SUBJECT" "$RECIPIENT_EMAIL"
+fi
--- a/Scripts/bash/ssh_login_alert_de.sh
+++ b/Scripts/bash/ssh_login_alert_de.sh
@@ -0,0 +1,37 @@
+#!/bin/bash
+
+# ----------------------------------------------------------------
+# SSH Login Alert Script (DE)
+# Dieses Skript sendet eine E-Mail an eine angegebene Adresse,
+# wenn sich ein Benutzer über SSH anmeldet.
+# ----------------------------------------------------------------
+
+# Geben Sie hier die E-Mail-Adresse ein, an die die Benachrichtigung gesendet werden soll.
+RECIPIENT_EMAIL="ihre_email_adresse@example.com"
+
+# Betreff der E-Mail. Der Befehl `hostname` fügt den Servernamen ein.
+SUBJECT="SSH-Anmeldung: $USER auf Server $(hostname -f)"
+
+# Extrahiere nur die IP-Adresse aus der SSH_CLIENT-Variablen.
+# Z. B. "1.2.3.4 56789 22" -> "1.2.3.4"
+CLIENT_IP=${SSH_CLIENT%% *}
+
+# E-Mail-Inhalt. 'cat << EOF' ist eine elegante Art, mehrzeiligen Text zu verarbeiten.
+BODY=$(cat << EOF
+Eine SSH-Anmeldung ist auf dem Server $(hostname -f) erfolgt.
+
+Details:
+Benutzer:     $USER
+IP-Adresse:   $CLIENT_IP
+Zeitpunkt:    $(date +"%Y-%m-%d %H:%M:%S")
+
+--- Aktuell angemeldete Benutzer ---
+$(who)
+EOF
+)
+
+# E-Mail mit dem 'mail'-Befehl senden.
+# Nur senden, wenn die Variable SSH_CLIENT existiert (d. h. es handelt sich um eine SSH-Verbindung).
+if [ -n "$SSH_CLIENT" ]; then
+    echo "$BODY" | mail -s "$SUBJECT" "$RECIPIENT_EMAIL"
+fi
--- a/Scripts/bash/tailscale_install.sh
+++ b/Scripts/bash/tailscale_install.sh
@@ -0,0 +1,13 @@
+curl -fsSL https://tailscale.com/install.sh | sh
+
+tailscale up
+
+echo 'net.ipv4.ip_forward = 1' | sudo tee -a /etc/sysctl.d/99-tailscale.conf
+echo 'net.ipv6.conf.all.forwarding = 1' | sudo tee -a /etc/sysctl.d/99-tailscale.conf
+sudo sysctl -p /etc/sysctl.d/99-tailscale.conf
+
+sudo tailscale set --advertise-routes=10.11.0.0/22
+
+sudo tailscale set --accept-routes
+sudo tailscale set --advertise-exit-node
+
--- a/switch/SNMP
+++ b/switch/SNMP
@@ -0,0 +1,6 @@
+conf t
+snmp-server community prtg
+snmp-server vrf default
+show snmp community
+exit
+exit
--- a/Scripts/powershell/Drucker_Überwachung_0.1.ps1
+++ b/Scripts/powershell/Drucker_Überwachung_0.1.ps1
@@ -1,47 +0,0 @@
-$events = Get-WinEvent -LogName "Microsoft-Windows-PrintService/Operational" -MaxEvents 500 |
-    Where-Object { $_.Id -eq 307 }
-
-$logList = @()
-
-foreach ($event in $events) {
-    $message = $event.Message
-    $user = ""
-    $document = ""
-    $printer = ""
-    $pages = ""
-
-    # Felhasználó (pl. L.Vogt auf APS-NB072)
-    if ($message -match "im Besitz von (.+?) wurde auf") {
-        $user = $matches[1].Trim()
-    }
-
-    # Nyomtató neve (pl. Jasenitz)
-    if ($message -match "wurde auf (.+?) über Port") {
-        $printer = $matches[1].Trim()
-    }
-
-    # Oldalszám (pl. Gedruckte Seiten: 1)
-    if ($message -match "Gedruckte Seiten:\s+(\d+)") {
-        $pages = $matches[1]
-    }
-
-    # Dokumentum sorszám (pl. Dokument 62) – jobb híján
-    if ($message -match "^Dokument\s+(\d+)") {
-        $document = "Dokument " + $matches[1]
-    }
-
-    $logList += [PSCustomObject]@{
-        Datum     = $event.TimeCreated
-        Benutzer  = $user
-        Dokument  = $document
-        Drucker   = $printer
-        Seiten    = $pages
-    }
-}
-
-# Exportálás CSV-be
-$exportPfad = "$env:USERPROFILE\Desktop\drucklog_export.csv"
-$logList | Export-Csv -Path $exportPfad -NoTypeInformation -Encoding UTF8
-
-Write-Host "Exportálás kész: $exportPfad"
-
--- a/Show More
+++ b/Show More
Author	SHA1	Message	Date
wpanda	312e4e713f	docker refresh	2026-03-25 14:01:26 +01:00
wpanda	7d5d3dc0c8	script német verzio	2026-03-25 11:51:13 +01:00
wpanda	8167a3ffff	neue script, check file age	2026-03-25 11:34:33 +01:00
wpanda	3e68e96c8a	script de verzio	2026-03-25 10:18:00 +01:00
wpanda	3b9b7f8789	1	2026-03-25 10:09:23 +01:00
wpanda	62f739344c	.	2026-03-25 10:09:04 +01:00
wpanda	9b913a48bb	képek sharepointhoz pl	2026-03-25 08:31:57 +01:00
wpanda	c1f1b48f6b	.	2026-03-24 16:17:51 +01:00
wpanda	acd7daf36f	dokument update	2026-03-24 15:56:24 +01:00
wpanda	36ac72ec82	neu diabetes dokument	2026-03-24 14:49:43 +01:00
wpanda	440ce4d688	doku für APS-SFTP01	2026-03-24 10:39:41 +01:00
wpanda	99b400cbc1	conf file aktualizäläs	2026-03-23 14:04:26 +01:00
wpanda	d78c846898	.	2026-03-23 10:00:50 +01:00
wpanda	e44480505e	sauber machen	2026-03-20 14:39:23 +01:00
wpanda	625d2fc6bf	putzen	2026-03-19 14:46:37 +01:00
wpanda	324c1b7735	.	2026-03-18 14:53:07 +01:00
wpanda	4a028aab5f	sftp	2026-03-18 14:21:34 +01:00
wpanda	95cc7edba5	.	2026-03-18 14:10:32 +01:00
wpanda	f5802c9be3	.	2026-03-18 14:07:58 +01:00
wpanda	d77bdac13f	sharepoint	2026-03-17 08:29:02 +01:00
wpanda	40fa971f06	.	2026-03-16 12:31:44 +01:00
wpanda	78a88900d8	postfix	2026-03-16 12:13:07 +01:00
wpanda	e91094e344	update	2026-03-16 11:28:18 +01:00
wpanda	d7c6577ec1	.	2026-03-16 08:46:30 +01:00
wpanda	865449cf9c	example	2026-03-12 15:56:55 +01:00
wpanda	7a33e9e082	.	2026-03-12 15:54:54 +01:00
wpanda	719efbd809	.	2026-03-12 15:44:52 +01:00
wpanda	277093a761	drucker_app	2026-03-12 15:44:42 +01:00
wpanda	ea43b5cb6c	grafana docker	2026-03-09 16:21:48 +01:00
wpanda	dfd31c3db2	uj guide	2026-03-09 09:31:01 +01:00
wpanda	68cd4009bc	ordner update	2026-03-04 14:37:41 +01:00
wpanda	0c7d172552	AD_user scripts	2026-03-04 13:52:31 +01:00
wpanda	ac1123c989	mac address	2026-03-03 14:08:56 +01:00
wpanda	b48d2ee03d	pwd	2026-03-02 08:08:28 +01:00
wpanda	90869f9e17	.	2026-02-27 10:09:06 +01:00
wpanda	1538e7c634	klein update	2026-02-26 12:01:18 +01:00
wpanda	6864d29ffb	.	2026-02-24 15:15:02 +01:00
wpanda	414ee2d3d6	.	2026-02-20 14:43:45 +01:00
wpanda	6271755289	.	2026-02-19 15:56:40 +01:00
wpanda	2804ef2146	.	2026-02-19 15:56:22 +01:00
wpanda	616edabf0e	.	2026-02-19 15:02:49 +01:00
wpanda	67b737ea79	.	2026-02-19 14:52:03 +01:00
wpanda	dbb8f1509c	fisch	2026-02-18 15:40:00 +01:00
wpanda	0ac7beeba9	.	2026-02-16 09:06:15 +01:00
wpanda	5d481e95fd	.	2026-02-13 10:35:58 +01:00
wpanda	8ada6689ae	autostart	2026-02-13 09:08:29 +01:00
wpanda	e2bd5746f5	.	2026-02-13 07:48:41 +01:00
wpanda	7f54f37978	delete some old file	2026-02-12 11:58:41 +01:00
wpanda	5ae2747835	pdf script 2.2	2026-02-11 14:14:22 +01:00
wpanda	23a60c6250	neue struktur	2026-02-11 10:16:40 +01:00
wpanda	42531d6e9c	default changes	2026-02-11 10:15:40 +01:00
wpanda	1b3f9e8657	..	2026-02-11 10:15:24 +01:00
wpanda	2f93b02baa	scriptupdate	2026-02-09 12:24:10 +01:00
wpanda	8adbee9f1d	.	2026-02-09 12:23:45 +01:00
wpanda	d8eb92319b	n8n aps	2026-02-06 16:17:59 +01:00
wpanda	9149976db4	. update	2026-02-06 14:49:01 +01:00
wpanda	3b70e1c5fb	uj apy key	2026-02-06 08:17:16 +01:00
wpanda	ff9d926a68	organizieren files	2026-02-05 13:42:57 +01:00
wpanda	0d3fd26237	pihole	2026-02-05 13:36:54 +01:00
wpanda	dea51f0081	neu script	2026-02-05 08:53:36 +01:00
wpanda	e4dcaf6991	.	2026-02-04 15:44:54 +01:00
wpanda	479c91394c	.	2026-02-04 14:10:19 +01:00
wpanda	758f9e8405	get app permission	2026-02-04 13:31:20 +01:00
wpanda	0d5673b02c	script uj vältozatok	2026-02-04 12:56:12 +01:00
wpanda	2e0a3c9e75	doc updates	2026-02-04 08:20:33 +01:00
wpanda	321402f9b7	pandabot	2026-02-03 14:15:28 +01:00
wpanda	be4aa52794	pdf script update	2026-02-03 13:47:51 +01:00
wpanda	d203dc4df8	file move	2026-02-02 15:34:11 +01:00
wpanda	15a35f2b60	uj pdf	2026-02-02 14:27:31 +01:00
wpanda	05c0dd7d8c	.	2026-02-02 13:26:09 +01:00
wpanda	45824c14ae	config changes	2026-01-30 15:40:07 +01:00
wpanda	2fb174ccc4	update	2026-01-30 13:23:49 +01:00
wpanda	2100ab916c	.putzen	2026-01-30 12:36:27 +01:00
wpanda	b0e5318ae6	ufw rules	2026-01-30 12:27:46 +01:00
wpanda	1c88e37122	delete pär file	2026-01-29 15:58:33 +01:00
wpanda	fbe7f0afc3	backup	2026-01-29 07:40:58 +01:00
wpanda	2e52ac53e1	reisekosten	2026-01-26 11:03:51 +01:00
wpanda	3634b3605d	.	2026-01-23 10:21:32 +01:00
wpanda	35f73c0c3f	neue script	2026-01-23 07:53:11 +01:00
				`@@ -0,0 +1,2 @@`
				`https://www.imdb.com/de/title/tt30923123/`