Command Center

Single source of truth. Everything tracked, nothing lost.

URGENT - All Domains

URGENT - All Domains

Professional

Carryover Backlog (CRITICAL)

Task Details Origin Days Status

k3s NAT verification

NAT rule 170 for 10.42.0.0/16 pod network - test internet connectivity

2026-03-09

31

P0 - BLOCKING

Wazuh indexer recovery

Restart pod after NAT confirmed working - SIEM visibility blocked

2026-03-09

31

P0 - Blocked by k3s

Strongline Gateway VLAN fix

8 devices in wrong identity group (David Rukiza assigned)

2026-03-16

24

P0 - TODO

Monad Pipeline Evaluation

Test pipeline creation, input sources, transforms (LEAD ROLE)

2026-03-11

29

P1 - TODO

Vocera EAP-TLS Supplicant Fix

~10 phones failing 802.1X, missing supplicant config

2026-03-12

28

P1 - TODO

ISE MnT Messaging Service

Enable "Use ISE Messaging Service for UDP syslogs delivery"

2026-03-12

28

P2 - TODO

ISE Patch 9 upgrade

ISE 3.2 Patch 9 addresses known replication issues

2026-03-12

28

P2 - TODO

Personal - Blockers

BLOCKERS — Fix Immediately

Task Details Origin Days Impact

Z Fold 7 Termux

gopass and SSH not working

2026-03-10

30

BLOCKER — Cannot access passwords on mobile

gopass v3 organization

Inconsistent structure, poor key-value usage

2026-03-20

20

Inefficient password management, no aggregation

Personal - Life Admin

URGENT - Requires Immediate Action

Item Details Deadline Status Impact

Housing Search

Granada Hills area - apartments/rooms

TBD

In Progress

Quality of life, commute

Education - Certification Deadlines

URGENT — Performance Review Deadline (June 1, 2026)

Certification Provider Deadline Status Impact

CISSP

ISC² — Certified Information Systems Security Professional

June 1, 2026

ACTIVE — Phase 0 (Project)

Required for performance review

RHCSA 9

Red Hat Certified System Administrator

June 1, 2026

ACTIVE — 21-phase curriculum (Project)

Required for performance review
53 days remaining until June 1st deadline.

Work Projects (CHLA)

Priority 0 - Mission Critical

Critical (P0)

Project Description Owner Status Due Blocker

Linux Research (Xianming Ding)

EAP-TLS for Linux workstations, dACL, UFW

Evan

BEHIND

02-24

Certificate "password required" - nmcli fix documented

iPSK Manager

Pre-shared key automation

Ben Castillo

BEHIND

 — 

DB replication issues

MSCHAPv2 Migration

Legacy auth deprecation

Evan

BEHIND

 — 

No progress on planning

Research Segmentation

All endpoints to Untrusted VLAN

Evan

BLOCKED

 — 

CISO decision pending

Priority 1 - High Impact

High Priority (P1)

Project Description Owner Status Target

ISE 3.4 Migration

Upgrade from 3.2p9

Evan

Blocked

Q1 2026

Switch Upgrades

IOS-XE fleet update (C9300, 3560CX)

Evan

Pending

Q1 2026

Spikewell BYOD VPN

dACL SQL, AD group integration

Evan

Active

 — 

Strongline Gateway

MAC capture, Identity Group setup

Evan

Active

 — 

QRadar → Sentinel Migration

Full SIEM platform transition, Monad evaluation

Evan

Active

Q2 2026

Priority 2 - Important

Strategic (P2)

Project Description Owner Status

HHS Regulatory Compliance

New HHS security policies implementation

TBD

NOT STARTED

InfoSec Reporting Dashboard

PowerBI metrics for executives

TBD

NOT STARTED

EDR Migration (AMP → Defender)

Endpoint protection consolidation

TBD

NOT STARTED

Azure Legacy Migration

Modern landing zone

Team

In Progress

ChromeOS EAP-TLS

SCEP + Victor, Paul testing

Victor

In Progress

Carryover Backlog

Carryover Backlog (CRITICAL)

Task Details Origin Days Status

k3s NAT verification

NAT rule 170 for 10.42.0.0/16 pod network - test internet connectivity

2026-03-09

31

P0 - BLOCKING

Wazuh indexer recovery

Restart pod after NAT confirmed working - SIEM visibility blocked

2026-03-09

31

P0 - Blocked by k3s

Strongline Gateway VLAN fix

8 devices in wrong identity group (David Rukiza assigned)

2026-03-16

24

P0 - TODO

Monad Pipeline Evaluation

Test pipeline creation, input sources, transforms (LEAD ROLE)

2026-03-11

29

P1 - TODO

Vocera EAP-TLS Supplicant Fix

~10 phones failing 802.1X, missing supplicant config

2026-03-12

28

P1 - TODO

ISE MnT Messaging Service

Enable "Use ISE Messaging Service for UDP syslogs delivery"

2026-03-12

28

P2 - TODO

ISE Patch 9 upgrade

ISE 3.2 Patch 9 addresses known replication issues

2026-03-12

28

P2 - TODO

TAC Cases

TAC Cases

ID Issue Opened Status Notes

TAC-2026-03

ISE 802.1X auth failures (MnT messaging, RabbitMQ)

2026-03-10

Resolved

Full Case

Personal Tasks

Active Tasks

Active — Infrastructure

Task Details Priority Status Due

Wazuh agent deployment

Deploy agents to all infrastructure hosts

P2

Pending

After archives fix

k3s Platform

Production k3s cluster on kvm-01

P1

In Progress

 — 

Wazuh Archives

Enable archives indexing in Filebeat, PVC fix

P1

In Progress

 — 

kvm-02 Hardware

Supermicro B deployment, RAM upgrade done

P1

In Progress

 — 

Active — Security & Encryption

Task Details Priority Status Due

Configure 4th YubiKey

SSH FIDO2 keys

P1

TODO

 — 

Cold storage M-DISC backup

age-encrypted archives

P1

TODO

After YubiKey setup

Active — Development & Tools

Task Details Priority Status Due

netapi Commercialization

Go CLI rewrite with Cobra-style argument discovery, package for distribution

P0

Active

 — 

Ollama API Service

FastAPI (17 endpoints), productize — config audit, doc tools, runbook gen

P0

Active

 — 

Shell functions (fe, fec, fef)

File hunting helpers

P3

TODO

 — 

Active — Documentation

Task Details Priority Status Due

D2 Catppuccin Mocha styling

domus-* spoke repos (177 files total)

P3

In Progress

 — 

Active — Financial

Task Details Priority Status Due

Amazon order history import

Download CSV from Privacy Central → parse with awk → populate subscriptions tracker

P1

Waiting

Pending Amazon data export (requested 2026-04-04)

Active — Education

Task Details Priority Status Due

No active education tasks — see education trackers

Active — Personal & Life Admin

Task Details Priority Status Due

ThinkPad T16g Setup

Arch install, stow dotfiles, Ollama stack, netapi dev env

P0

Pending

 — 

P50 Arch to Ubuntu migration

CR-2026-03-12

P2

In Progress

 — 

X1 Carbon Ubuntu installs

2 laptops, LUKS encryption

P2

In Progress

 — 

P50 Steam Test

Test Flatpak Steam + apt cleanup of broken i386 packages

P3

Pending

 — 

Deferred

Deferred

Task Details Reason Revisit

ISE HA

PAN HA (ise-01 reconfigure)

Wait until ise-02 stable

After ISE 3.4 migration

ISE 3.5 Migration

Upgrade path: 3.2p9 → 3.4 → 3.5

After 3.4 completes

Q3 2026

Keycloak Rebuild

keycloak-01 corrupted, rebuild from scratch

Priority P3 — SSO broken but not blocking

When bandwidth allows

FreeIPA HA

ipa-02 replica

SPOF but stable

After Vault HA

AD DC HA

home-dc02 replication

SPOF but stable

After FreeIPA HA

iPSK Manager HA

ipsk-mgr-02 with MySQL replication

Low urgency

After AD HA

Dotfiles Windows sync

winfiles-optimus parity with dotfiles-optimus

Low priority

 — 

Recurring

Recurring — Operations

Task Context Frequency Notes

Borg backup verification

Workstation backups

Weekly

SSH cert renewal

vault-ssh-sign

Every 8h

Automated

Vault unseal check

After reboots

As needed

ISE eval backup restore

Cisco ISE 3.4 eval license

Every 90 days

Restore from backup to reset timer

Tracker days update

work/adhoc.adoc, personal/adhoc.adoc

Each worklog

Recurring — Maintenance & Hygiene

Task Context Frequency Notes

Subscriptions tracker review

Audit for cost creep, unused services

Monthly

Subscriptions & Bills

Cancelled services audit

Verify no zombie charges after cancellation

Quarterly

FOSS inventory sync

pacman -Qe reconciliation

Quarterly

Catch drift between system and tracker

Infrastructure

Single Points of Failure (CRITICAL)

Single Points of Failure (CRITICAL)

These systems have NO redundancy - outage impacts production.
System Impact if Down Mitigation

ISE (ise-02)

All 802.1X stops - wired and wireless auth fails

ise-01 reconfiguration deferred until ise-02 stable

Keycloak (keycloak-01)

SAML/OIDC SSO broken (ISE admin, Grafana, etc.)

NEXT PRIORITY - Rebuild runbook

FreeIPA (ipa-01)

Linux auth, sudo rules, HBAC fails

ipa-02 replica planned

AD DC (home-dc01)

Windows auth, Kerberos, GPO fails

home-dc02 replica planned

iPSK Manager

Self-service PSK portal unavailable

ipsk-mgr-02 with MySQL replication planned

HA Deployment Status

HA Deployment Status

System Description Status Notes

VyOS HA

vyos-01 (kvm-01) + vyos-02 (kvm-02) with VRRP VIP

✅ COMPLETE

2026-03-07 - pfSense decommissioned

BIND DNS HA

bind-01 (kvm-01) + bind-02 (kvm-02) with AXFR

✅ COMPLETE

Zone transfer operational

Vault HA

Raft cluster (vault-01/02/03)

✅ COMPLETE

Integrated with PKI

Keycloak Rebuild

keycloak-01 corrupted, rebuild from scratch

🔄 NEXT

Priority P3 - SSO broken

FreeIPA HA

ipa-02 replica planned

📋 PLANNED

Linux auth redundancy

AD DC HA

home-dc02 replication

📋 PLANNED

Windows auth redundancy

iPSK Manager HA

ipsk-mgr-02 with MySQL replication

📋 PLANNED

PSK portal redundancy

ISE HA

PAN HA (ise-01 reconfigure)

⏳ DEFERRED

Wait until ise-02 stable

ISE 3.5 Migration

Upgrade path: 3.2p9 → 3.4 (P1) → 3.5 (target)

📋 PLANNED

After 3.4 Migration completes (Q2 2026)

Home Lab Systems

Home Lab Infrastructure

System Role Status

VyOS HA (vyos-01, vyos-02)

Primary router, VRRP

Operational

k3s Cluster

Container orchestration

NAT issue pending

Vault PKI

Certificate authority

Operational

FreeIPA (ipa-01)

Linux identity

Operational

BIND DNS (bind-01, bind-02)

Authoritative DNS

Operational

KVM Hypervisors (kvm-01, kvm-02)

Virtualization

Operational

Validation Tasks

Validation Tasks

Task Details Status

docs.domusdigitalis.dev validation

Test all cross-references, search, rendering

TODO

docs.domusdigitalis.dev hardening

HTTPS, CSP headers, security review

TODO

docs.architectus.dev validation

Public site content review

TODO

Hub-spoke sync verification

All components building correctly

Ongoing

Projects Portfolio

Tier 1 - Flagship

Tier 1 Projects (Flagship)

Project Description Status

netapi

Multi-vendor network CLI (ISE, Cloudflare, Keycloak, GitHub, GitLab, Monad)

Polish phase

domus-docs

19-repo Antora aggregator with Cloudflare Pages

Production

architectus.dev

Public learning platform (Linux, Windows, Networking, Security, Cloud)

Production

dotfiles-optimus

GNU Stow modular developer environment

Personal use

dsec

Secrets management CLI (~/.secrets/dsec system)

Production

Principia PKMS

Obsidian-based personal knowledge management

Active

Tier 2 - Infrastructure

Tier 2 Projects (Infrastructure)

Project Description Status

802.1X EAP-TLS

Linux wired/wireless auth with Vault PKI certs

Production

Vault PKI

HashiCorp Vault as enterprise CA

Production

Vault SSH CA

8-hour SSH certificates, Vault-signed

Production

gopass v3

Hierarchical password taxonomy

Migration complete

FreeIPA

Linux identity management

Deployed

Keycloak

OIDC federation

Corrupted - rebuild NEXT

k3s Cluster

Lightweight Kubernetes with Cilium CNI

NAT issue pending

KVM Virtualization

libvirt/QEMU on Supermicro servers

Production

Tier 3 - Developer Tools

Tier 3 Projects (Developer Tools)

Project Description Status

domus-nvim

Personal Neovim config (82 plugins, Rose Pine)

Public

quijote-reader

Spanish learning tool (Don Quijote analysis)

Learning project

vim-odyssey

Vim training game in Rust

Learning project

Documentation Sites

Documentation Sites

Site URL Status Actions Needed

Domus Digitalis

docs.domusdigitalis.dev

Active

Validate, harden, improve

Architectus

docs.architectus.dev

Active

Public portfolio site - maintain

Hub-Spoke Architecture

Hub-Spoke Architecture

Hub: domus-docs (aggregator)

Spokes:

Component Purpose Status

domus-captures

Worklogs, chronicles, learning

Active

domus-infra-ops

Infrastructure runbooks

Active

domus-ise-linux

802.1X EAP-TLS Linux

Active

domus-ise-windows

802.1X EAP-TLS Windows

Active

domus-ise-ops

ISE operations

Active

domus-netapi-docs

netapi CLI documentation

Active

domus-secrets-ops

Vault, dsec, secrets management

Active

domus-linux-ops

Linux administration

Active

domus-identity-ops

FreeIPA, AD, identity

Active

domus-automation-ops

Ansible, automation

Active

domus-siem-ops

SIEM, logging, monitoring

Active

domus-o11y-ops

Observability

Active

domus-windows-ops

Windows administration

Active

domus-python

Python development

Active

Education - All Tracks

Education Tracks Overview

Literature

Track Description Status Progress

Don Quijote

Cervantes' masterwork in original Spanish

ACTIVE

Primera Parte Ch 33/52

García Márquez

Colombian magical realism

In Progress

Cien años de soledad

La Reina Valera

Biblical literature in classical Spanish

In Progress

Pentateuco + Evangelios

Languages

Track Description Status Progress

DELE C1/C2

Instituto Cervantes Spanish certification

ACTIVE

Conectores phase

SIELE

Computer-based proficiency (modular)

Planning

0%

Redacción Español

Formal writing skills

In Progress

Essays + conectores

Latin

Classical Latin for etymology, scientific/legal terminology

Planning

0%

Mathematics

Track Description Status Progress

College Algebra

Foundation for calculus (LaTeX textbook)

ACTIVE

Ch 1/8

Certifications

Track Description Status Progress

RHCSA 9

Red Hat Certified System Administrator

ACTIVE

Ch 1-2 / 20

CISSP

ISC² Security Professional

Planning

0/8 domains

DevNet Associate

Cisco Developer Network

Planning

netapi = portfolio

LPIC-1

Linux Professional (101/102)

Planning

After RHCSA

LPIC-2

Linux Professional (201/202)

Planning

After LPIC-1

Programming

Track Description Status Progress

Python

Automation, CLI, API development

In Progress

netapi development

Ruby

Metaprogramming and DSLs

PARKED

0%

C++

Systems programming foundation

Planning

Future

Systems & Tools

Track Description Status Progress

Terminal Mastery

CLI patterns, shell efficiency

DONE

100%

Vim Mastery

Neovim expertise

In Progress

Codex + daily use

Regex Mastery

Pattern matching across contexts

In Progress

BRE/ERE done, PCRE learning

CLI Mastery

Advanced patterns: awk, sed, jq, find, xargs

ACTIVE

Daily deliberate practice

Kubernetes

Container orchestration (k3s)

In Progress

Cluster deployed

Music

Track Description Status Progress

Violin

Classical violin, Heifetz-inspired

In Progress

Scales + études

Cello

Secondary instrument

Planning

Future

Sciences

Track Description Status Progress

Applied Cryptography

PKI, TLS, secrets management

In Progress

Vault PKI production

Humanities

Track Description Status Progress

Philosophy

Biblical and classical traditions

In Progress

Wisdom literature

History

Context for technology and culture

Planning

Via literature

Linguistics

Language science for Spanish mastery

In Progress

Syntax + morphology

Track Status Legend

Status Meaning

ACTIVE

Currently working on (limit to 3-4 max)

In Progress

Started, working intermittently

Planning

Study plan created, not started

PARKED

Deliberately paused (priority shift)

DONE

Completed, may revisit for mastery

Quick Stats

Active In Progress Planning Parked Done

5

9

9

1

1

Total tracks: 25

Category Quick Reference

Category Tracks

Literature

don-quijote, garcia-marquez, la-reina-valera

Languages

dele-spanish, siele, spanish-writing, latin

Mathematics

college-algebra

Certifications

rhcsa, cissp, devnet, lpic-1, lpic-2

Programming

python-fundamentals, ruby-metaprogramming, cpp-fundamentals

Systems/Tools

terminal-mastery, vim-mastery, regex-mastery, cli-mastery, k8s-fundamentals

Music

violin, cello

Sciences

cryptography

Humanities

philosophy, history, linguistics

Life Administration

URGENT - Requires Immediate Action

Item Details Deadline Status Impact

Housing Search

Granada Hills area - apartments/rooms

TBD

In Progress

Quality of life, commute

Housing

Type Details Monthly Status

Current

Add current housing

Storage

Extra Space - 8x11

See Subscriptions

Active
Payment details tracked in Subscriptions & Bills Tracker under Essential.
Subscriptions and services tracked in Subscriptions & Bills Tracker.

Medical

Item Provider Due Status

Annual physical

Schedule

Dental cleaning

Schedule

Eye exam

Schedule

Financial Tasks

Item Details Due Status

Tax preparation

2025 filing

Apr 15, 2026

Not started
Subscriptions and recurring bills tracked in Subscriptions & Bills Tracker.

Ideas & Backlog

Weekly review - promote to active/projects or archive.

Ideas — Infrastructure

Idea Context Category Captured

Vault HA runbook

3-node Vault cluster on kvm-02

infra

2026-03-22

k3s HA runbook

3-node control plane

infra

2026-03-22

BIND secondary DNS

bind-02 for HA (currently SPOF)

infra

2026-03-22

ipa-02 replica

FreeIPA HA (currently SPOF)

infra

2026-03-22

Borg backup dashboard

Visualize backup status across hosts

infra

2026-03-22

Vault backup to S3

Automated Vault snapshots to MinIO

infra

2026-03-22

Ideas — Development & Tools

Idea Context Category Captured

netapi vyos commands

Add VyOS API integration (replaced pfSense)

netapi

2026-03-22

netapi bind commands

Add BIND nsupdate/rndc integration (DNS management)

netapi

2026-03-22

netapi k3s commands

kubectl wrapper with common patterns

netapi

2026-03-22

netapi batch operations

Cross-vendor batch commands (e.g., backup all)

netapi

2026-03-22

adoc improvements

Add --watch flag, live reload

tooling

2026-03-22

tmux sessionizer

Project-based tmux sessions (like ThePrimeagen)

tooling

2026-03-22

fzf git integrations

Interactive branch switching, log searching

tooling

2026-03-22

gopass v3 restructure

Use gopass-personal-docs templates (bills, storage, subscriptions)

tooling

2026-03-22

gopass-query enhancements

Add gopass-query vehicles, gopass-query insurance, monthly totals

tooling

2026-03-22

gopass v3 → ADMINISTRATIO migration

Script to move remaining entries from old structure

tooling

2026-03-22

Ideas — Education & Training

Idea Context Category Captured

AWK curriculum

Like regex curriculum — 10 modules, drills

education

2026-03-22

sed curriculum

Pattern-based editing mastery

education

2026-03-22

Lua/Neovim curriculum

Plugin development, lazy.nvim patterns

education

2026-03-22

Go CLI curriculum

Learn Go via CLI tool development

education

2026-03-22

Anki deck from Don Quijote

Extract vocabulary to spaced repetition

language

2026-03-22

DELE C1 mock exams

Practice test structure

language

2026-03-22

Ideas — Documentation

Idea Context Category Captured

Antora search fix

Lunr index too large — explore alternatives

docs

2026-03-22

domus-* cross-reference audit

Find and fix broken xrefs across all repos

docs

2026-03-22

Runbook template standardization

Consistent format across all runbooks

docs

2026-03-22

Ideas — Personal & Creative

Idea Context Category Captured

LilyPond → PDF pipeline

Automate music notation compilation

music

2026-03-22

age encryption workflow doc

Document full workflow for cold storage

security

2026-03-22

Strategic Alignment

Life Goals

Life Goals (North Stars)

These are the unchanging destinations. Everything else serves these.

Goal Definition Measurement

Financial Independence

Passive income exceeds expenses; work becomes optional

Net worth, passive income streams, runway months

Technical Excellence

Recognized expert in security, automation, infrastructure

Certifications, project portfolio, reputation, compensation

Bilingual Mastery

C2-level Spanish; think, dream, write in both languages

DELE C2, literary comprehension, native speaker feedback

Creative Expression

Music, writing, and building things that outlast me

Compositions completed, published works, open source impact

Physical Sovereignty

Health that enables everything else for 50+ more years

Vitals, mobility, energy, sleep quality, bloodwork

Wisdom Accumulation

Deep understanding of life, ethics, history, human nature

Books read, essays written, quality of decisions

Goal-Track Matrix

Goal → Track Alignment Matrix

Every track should serve at least one life goal. Orphan tracks are candidates for elimination.

Track Financial Technical Bilingual Creative Physical Wisdom

RHCSA

✓✓

CISSP

✓✓

DevNet

✓✓

Python

✓✓

Regex

✓✓

k8s

✓✓

DELE/SIELE

✓✓

Don Quijote

✓✓

✓✓

García Márquez

Spanish Writing

✓✓

Violin

✓✓

Philosophy

✓✓

History

✓✓

Linguistics

College Algebra

Cryptography

✓✓

Vault

✓✓

Bash/AWK/sed

✓✓

Vim

✓✓

netapi

✓✓

Legend: ✓ = contributes | ✓✓ = primary driver

Quarterly Priorities

Q2 2026 Strategic Priorities

Based on goal alignment, these are the highest-leverage activities:

Priority Action Why

P0

SIELE C1 exam (Q2)

Validates bilingual asset; enables consulting in Spanish-speaking markets

P0

k3s NAT fix + Wazuh deployment

Completes home lab → portfolio piece → technical excellence proof

P1

netapi polish + public release

Portfolio piece + DevNet alignment + creative expression

P1

RHCSA study resume

Most direct path to salary increase (certification premium)

P2

Don Quijote Primera Parte complete

C1 vocabulary + wisdom accumulation + bilingual mastery

P2

Keycloak rebuild

Removes SPOF + completes identity stack → technical excellence

Q2 2026 Roadmap

Q2 2026 Roadmap (April — June)

Certifications (HARD DEADLINE: June 1)

Performance review deadline. These are non-negotiable.
Domain Item Target Date Status Dependencies

Certification

CISSP — ISC2 Certified Information Systems Security Professional

June 1, 2026

NOT STARTED

Study plan needed, exam scheduling

Certification

RHCSA 9 — Red Hat Certified System Administrator

June 1, 2026

Ch 1-2 / 20

Lab environment (KVM), study schedule

Certification

Claude Code Certification — Anthropic (Nick Saraev course)

Q2 2026

IN PROGRESS (26:49/4hr)

Course completion, practice projects

Certification

LPIC-1 Renewal — Linux Professional Institute

Q2 2026

RENEW

Check expiry date, register for exam

Language

SIELE C1 — Instituto Cervantes (computer-based)

Q2 2026

ACTIVE

Comprension auditiva practice, subjuntivo mastery

Work Projects (CHLA)

Domain Item Target Date Status Dependencies

Work P0

Linux Research (Xianming Ding) — EAP-TLS completion

Overdue (02-24)

BEHIND

nmcli certificate fix

Work P0

iPSK Manager — Pre-shared key automation

 — 

BEHIND

DB replication (Ben Castillo)

Work P0

MSCHAPv2 Migration — Run netapi reports, pandas graphs, Chromebook+Wyse wave (~2K/8K endpoints)

Q2 2026

URGENT — team meeting

netapi DataConnect queries, pandas analytics

Work P0

Research Segmentation — Untrusted VLAN migration

 — 

BLOCKED

CISO decision

Work P1

Sentinel KQL Proficiency — First access, Copilot-assisted queries, differentiate from team

April 2026

NEW — onboarding

Azure portal access acquired

Work P1

QRadar to Sentinel Migration — SIEM platform transition (leading)

Q2 2026

Active

Monad pipeline evaluation

Work P1

Vocera/Wyse iTrack RCA — RabbitMQ CPU spike, no definitive root cause

April 2026

OPEN

Cisco TAC case, endpoint log analysis

Work P1

Spikewell BYOD VPN — dACL SQL, AD group integration

Q2 2026

Active

None

Work P1

Strongline Gateway — MAC capture, Identity Group setup

Q2 2026

Active

8 devices reassignment (David Rukiza)

Work P1

NebulaONE AI Platform — Azure/Cloudforce

Q2 2026

Active

C-level direction

Personal Milestones

Domain Item Target Date Status Dependencies

Personal

Z Fold 7 Termux — gopass and SSH restoration

ASAP

BLOCKER

Termux SSH + gopass configuration

Personal

gopass v3 organization — Restructure password store

April 2026

Active

gopass-personal-docs templates

Personal

P50 Arch to Ubuntu migration

April 2026

IN PROGRESS

LUKS encryption, Steam testing

Personal

X1 Carbon Ubuntu installs — 2 laptops

April 2026

IN PROGRESS

LUKS encryption

Personal

Housing search — Granada Hills area

Q2 2026

In Progress

Budget, location research

Personal

Tax preparation — 2025 filing

April 15, 2026

Not started

Gather documents

Revenue

netapi Commercialization — Go CLI rewrite, Cobra-style arg discovery, package for distribution

Q2-Q3 2026

P0 ACTIVE

Go evaluation, CLI framework selection

Revenue

Ollama API Service — 17 endpoints, productize config audit + doc tools + runbook gen

Q2 2026

P0 ACTIVE

Web UI, fine-tuning pipeline

Personal

ThinkPad T16g Setup — Arch install, stow, Ollama, netapi dev

Apr 2-3, 2026

PENDING

Delivery Thursday

Infrastructure

Domain Item Target Date Status Dependencies

Infra

k3s NAT verification — NAT rule 170 for pod network

ASAP (21 days carried)

P0 BLOCKING

VyOS NAT rule testing

Infra

Wazuh indexer recovery — Restart pod after NAT fix

After k3s NAT

P0 Blocked

k3s NAT verification

Infra

ISE Patch 9 upgrade — ISE 3.2 Patch 9

Q2 2026

P2 TODO

Change window, TAC guidance

Infra

ISE MnT Messaging Service — Enable UDP syslog delivery

Q2 2026

P2 TODO

ISE maintenance window

Infra

Monad Pipeline Evaluation — Test pipeline creation

April 2026

P1 TODO

Lab environment, test data

Cross-Domain Blockers

CRITICAL Blockers

Domain Blocker Impact Days Blocked By Action Required

Work

k3s NAT verification

SIEM visibility blocked — Wazuh cannot start without pod networking

21

VyOS NAT rule 170 untested

Test NAT for 10.42.0.0/16 pod network, verify internet connectivity

Work

Wazuh indexer recovery

No SIEM log ingestion — security blind spot

21

k3s NAT verification

Restart Wazuh pod after NAT confirmed working

Work

MSCHAPv2 Migration Reporting

Team waiting for endpoint data + auth trend graphs (Chromebook + Wyse wave)

0

Need to run netapi queries

Execute ise-mschapv2-audit.py → profiler-migration-analytics.py → pandas dashboard

Work

Monad ETL Pipeline

Blocks QRadar → Sentinel log source migration

21

Vendor delivery pending

Lead evaluation, prepare lab environment

Work

Research Segmentation

Research endpoints remain on trusted network

 — 

CISO decision pending

Escalate for CISO decision on Untrusted VLAN migration

Personal

Z Fold 7 Termux

Cannot access passwords on mobile — no gopass, no SSH

20

Termux SSH and gopass broken

Debug Termux SSH config, reinstall gopass, test key access

Work Blockers

Domain Blocker Impact Days Blocked By Action Required

Work P0

k3s NAT verification

Blocks Wazuh recovery, SIEM visibility

21

VyOS NAT rule 170

Test NAT rule, verify pod internet access

Work P0

Wazuh indexer recovery

Security monitoring offline

21

k3s NAT fix

Restart pod after NAT confirmed

Work P0

Strongline Gateway VLAN fix

8 devices in wrong identity group

14

David Rukiza assignment

Follow up with David, verify identity group reassignment

Work P0

Research Segmentation

Research endpoints on trusted VLAN

 — 

CISO decision

Escalate to CISO

Work P0

Linux Research (overdue)

EAP-TLS project behind schedule

34

Certificate password issue

Apply nmcli fix, test with Xianming Ding

Work P0

iPSK Manager

Pre-shared key automation stalled

 — 

DB replication

Follow up with Ben Castillo on replication fix

Work P0

MSCHAPv2 Migration

Legacy auth deprecation not started

 — 

No planning initiated

Schedule planning session, define wave strategy

Work P1

Monad Pipeline Evaluation

QRadar to Sentinel migration blocked on pipeline testing

19

Lab environment setup

Set up test pipeline, evaluate input sources and transforms

Work P1

Vocera EAP-TLS Supplicant Fix

~10 phones failing 802.1X

18

Missing supplicant config

Configure supplicant on affected Vocera phones

Work P1

ISE 3.4 Migration

Running outdated ISE 3.2

 — 

ISE Patch 9 prerequisite

Complete Patch 9 first, then plan 3.4 migration

Personal Blockers

Domain Blocker Impact Days Blocked By Action Required

Personal

Z Fold 7 Termux

No mobile password or SSH access

20

gopass + SSH broken in Termux

Reinstall gopass, configure SSH keys, test connectivity

Personal

gopass v3 organization

Inconsistent password store, no aggregation queries

10

Needs restructure plan

Use gopass-personal-docs templates, migrate remaining entries

Personal

Tax preparation

2025 filing deadline April 15

 — 

Documents not gathered

Gather W-2, 1099s, deductions; file or extend

Personal

Housing search

Quality of life, commute impact

 — 

Budget and location research

Research Granada Hills apartments, set budget

Recently Resolved

Recently Resolved

Task Details Resolved Notes

domus-captures accuracy sweep

Verify all statistics, indices

2026-03-16

Completed

nvim-domus public release

GitHub repo creation

2026-03-16

CR

Repository structure audit

Projects vs operations organization

2026-03-16

Fixed

Kinesis 360 BT disconnect

Keyboard pairing

2026-02-27

Troubleshooting guide

Attributes split

attributes.adoc → home/work/styles

2026-03-22

327 → 94+239+33 lines

Wazuh SIEM 4.14.3 deploy

k3s deployment, all pods running

2026-02-23

Completed

Vault SSH CA

8h certs, 9 hosts configured

2026-02-21

Production

Prometheus + Grafana

Monitoring stack on k3s

2026-02-23

Production

Recently Resolved (March 2026)

Task Details Resolved Resolution

ISE RabbitMQ CPU 109%

MnT node message queue saturation

2026-03-11

TAC-guided ise-02 restart

Xianming Ding Linux EAP-TLS

Certificate chain validation

2026-03-14

CA chain fix documented

Quick Reference

Meta Partials Guide

META - Transcendent Value System

These partials provide cross-domain strategic insight. They answer WHY, not just WHAT.

Meta Partials

Partial Purpose Key Tags

Strategic Alignment

Connect tracks to life goals - no activity without purpose

life-goals, goal-track-matrix, career-vector, time-alignment, quarterly-priorities, anti-patterns, decision-framework

Skill Synergies

Map how skills compound each other - see the learning chains

compound-chains, synergy-matrix, cross-domain, investment-priority, unlocks, current-bottlenecks

Compound Multipliers

Force multiplier skills that accelerate everything

definition, tier-1, tier-2, tier-3, investment-tracker, neglected, multiplier-audit, compound-math

Weekly Retrospective

Structured reflection framework - capture insights

weekly-prompts, energy-audit, time-truth, next-week, monthly-additions, quarterly-deep-dive, capture-template

Velocity Metrics

Track learning velocity and momentum patterns

velocity-definition, track-velocity, momentum-indicators, velocity-killers, acceleration-levers, weekly-velocity-check, quarterly-velocity-analysis, current-assessment
Use these for Sunday reviews, monthly calibration, and quarterly strategic planning.

Include Patterns

Quick Include Reference

Show all urgent items:

include::partial$trackers/master-index.adoc[tag=urgent-all]

Professional carryover only:

include::partial$trackers/work/adhoc.adoc[tag=carryover]

Personal blockers only:

include::partial$trackers/personal/adhoc.adoc[tag=blockers]

Ideas backlog:

include::partial$trackers/personal/adhoc.adoc[tag=ideas]

Certification deadlines only:

include::partial$trackers/education/certifications-deadlines.adoc[tag=urgent]

Life admin urgent only:

include::partial$trackers/personal/life-admin.adoc[tag=urgent]

Skills mastery critical:

include::partial$trackers/education/skills-mastery.adoc[tag=critical]

Infrastructure sites:

include::partial$trackers/personal/infrastructure.adoc[tag=sites]

HA deployment status:

include::partial$trackers/personal/infrastructure.adoc[tag=ha-status]

Single points of failure:

include::partial$trackers/personal/infrastructure.adoc[tag=spof]

Project portfolio (Tier 1):

include::partial$trackers/personal/infrastructure.adoc[tag=projects-tier1]

META Partials (Transcendent Value)

Life goals and alignment:

include::partial$trackers/meta/strategic-alignment.adoc[tag=life-goals]
include::partial$trackers/meta/strategic-alignment.adoc[tag=goal-track-matrix]
include::partial$trackers/meta/strategic-alignment.adoc[tag=quarterly-priorities]

Skill compound chains:

include::partial$trackers/meta/skill-synergies.adoc[tag=compound-chains]
include::partial$trackers/meta/skill-synergies.adoc[tag=synergy-matrix]
include::partial$trackers/meta/skill-synergies.adoc[tag=current-bottlenecks]

Force multipliers:

include::partial$trackers/meta/compound-multipliers.adoc[tag=tier-1]
include::partial$trackers/meta/compound-multipliers.adoc[tag=investment-tracker]
include::partial$trackers/meta/compound-multipliers.adoc[tag=compound-math]

Weekly reflection:

include::partial$trackers/meta/weekly-retrospective.adoc[tag=weekly-prompts]
include::partial$trackers/meta/weekly-retrospective.adoc[tag=capture-template]

Velocity tracking:

include::partial$trackers/meta/velocity-metrics.adoc[tag=track-velocity]
include::partial$trackers/meta/velocity-metrics.adoc[tag=current-assessment]
include::partial$trackers/meta/velocity-metrics.adoc[tag=weekly-velocity-check]

Last built: 2026-04-10 | Single source of truth: Edit partials, not this page.