“So, this is the final version, right? We’re basing the whole Q3 procurement on this?”
“It’s as final as it’s ever going to be.”
Kwame didn’t mention that the diagram was a fantasy. He didn’t mention that the blue lines representing the failover cluster were essentially a tribute to a disaster that happened in , a night where the primary server rack decided to imitate a toaster. He didn’t say that the “Secondary Site” was actually a single, dusty workstation sitting under a desk in the marketing department because the real failover hardware never arrived from the vendor.
He just watched the manager nod, satisfied with the clean, symmetrical boxes on the screen. The manager saw a logical map. Kwame saw a graveyard of compromises.
The Tangible Weight of IT Debt
There is a specific, sharp pain that comes from biting your tongue while you’re trying to explain something complicated. It’s a physical distraction, a pulsing reminder that your mouth is faster than your brain. I’m feeling that right now, a metallic tang on the side of my teeth, which is perhaps a fitting metaphor for the state of most corporate IT infrastructure.
We try to swallow the truth of our systems, and we end up hurting ourselves in the process. We pretend the Visio diagram is the territory, but the territory is actually a tangled mess of “temporary” fixes that have celebrated their .
The architect drew the diagram with a sense of divine order. It’s a beautiful thing, really. There are no loose cables in a Visio file. There are no firmware incompatibilities between the Gateway and the Session Hosts. In the architect’s mind, every user is a standard unit of productivity, and every server is a tireless servant.
But the administrator, the person who actually has to answer the phone at when the “divine order” collapses, knows exactly where the drawing diverged from the reality of the rack. They know that the load balancer isn’t actually balancing anything; it’s just a glorified pass-through because the SSL certificate wouldn’t bind correctly on the secondary node.
The Cost of Invisible Infrastructure
This divergence isn’t just an aesthetic problem. It’s a financial one. When the time comes to buy Remote Desktop Services Client Access Licenses (RDS CALs), most companies reach for the diagram first. They count the boxes labeled “Users” or “Devices” and think they have a number.
They assume that the system is functioning exactly as it was designed . But licensing is a reflection of usage, not a reflection of intent. A server that was supposed to be decommissioned but is still quietly hosting forty legacy sessions is a liability. A group of contractors who were supposed to have their own silo but are instead piggybacking on the main RDS farm represents a gap in compliance.
The Diagram (Expected)
150 CALs
The Reality (Actual)
194 CALs
The Discrepancy: Ghost instances and undocumented roles create a silent deficit that leads to audit failure.
The diagram is a snapshot of intention. The running system is a continuous improvisation.
The administrative burden of this drift is heavy. Every time a new manager pulls up that network map to plan a purchase, the admin has to decide whether to be the bearer of bad news or the accomplice to a future audit. If Kwame tells the truth, he has to explain why the “Failover” is actually a Dell OptiPlex with a failing fan. If he stays silent, the company buys 150 CALs when they actually need 194.
The discrepancy hides in the dark matter of the infrastructure-those undocumented roles, the forgotten virtual machines, and the “special” configurations that only work if you don’t restart the service on a Tuesday.
Ghosts in the License Server
When you look at a network map, you’re looking at what the company wanted to be. When you look at the RDS license server, you’re looking at what it is. The license server doesn’t care about the architect’s vision. It only cares about the handshake. It counts the pulses of the network.
If the diagram says you have two session hosts but the license server is tracking requests from four, you have a ghost problem. And ghosts are expensive when the auditors come to visit.
We often treat documentation as a chore, something to be finished so we can get back to the real work of fixing things. But the documentation is the only thing that keeps the “temporary” from becoming “immortal.” Without a living record of the drift, the cost of the system becomes impossible to calculate. You end up overpaying for what you don’t use, or underpaying for what you do, and both are forms of failure. The only way to win is to admit that the diagram is a lie.
Shifts, Devices, and Real-World Math
The reality of licensing is that it’s rarely as simple as “one box equals one license.” In an RDS environment, the choice between User CALs and Device CALs often depends on the specific shifts or the mobility of the workforce-details that a static diagram completely ignores.
If your diagram shows a call center with 100 desks, you might think you need 100 Device CALs. But if the admin knows that those 100 desks are actually used by 300 different people across three shifts, the licensing math changes completely. Or perhaps the admin knows that half those workers are actually using their own tablets from home, which shifts the burden back toward User CALs.
Static desk counts miss the reality of multi-shift workforce scaling.
Mobility and remote access can double your required CAL count overnight.
This is where a specialized partner like the
becomes more than just a vendor. They act as a translator between the fiction of the architecture and the friction of the hardware.
When you’re staring at a gap between what your manager thinks you have and what you know is actually running, you need a way to bridge that gap quickly. You don’t need a consulting engagement to tell you that your servers are out of sync; you need the licenses delivered in so you can bring the system into alignment before the next reporting cycle.
Notes from the Margin
The admin holds the unwritten list of every place the two worlds parted ways. It’s a heavy list. It’s written in the margins of old notebooks and stored in the “Miscellaneous” folders of their brain.
They know that Server-04 is actually running a version of Windows Server that shouldn’t even be on the network anymore, but it’s the only thing that can talk to the accounting software. They know that the “Load Balancer” is held together by a PowerShell script that someone wrote in and then quit. These are the things that don’t make it into the Visio.
The Admin’s Unwritten List:
- ☐ Server-04: The legacy anchor.
- ☐ The 2017 PowerShell script holding the gateway together.
- ☐ The “retired” cloud instance still drawing power.
It is easy to blame the admin for the drift. It’s easy to say they should have updated the documentation as they went. But in the heat of a system outage, nobody cares about the diagram. They care about the uptime.
When the pressure is on, the quickest path to a “running” state is rarely the path that was mapped out in the boardroom. We trade order for speed every single day, and the interest on that debt is the drift. We are all living in a world of technical debt, and the diagram is just the credit card statement we refuse to open.
The Invisible Fleet
I’ve seen environments where the gap was so large that the original architect wouldn’t even recognize the network they supposedly designed. I’ve seen session hosts running in the cloud that the local manager didn’t even know existed because a developer needed “extra compute” for a weekend project and never turned it off.
Those “extra” instances are still drawing power, still consuming resources, and still requiring licenses. They are the stowaways on your corporate ship, and they are eating your rations.
If we want to fix this, we have to stop treating the diagram as a sacred text. We have to start treating it as a hypothesis that needs to be tested against the reality of the command line.
An admin who can point out the flaws in the map is not a pessimist; they are the only person in the room with a compass. They are the ones who understand that the “Enterprise” version of the software isn’t just a label on a box-it’s a set of permissions that has real-world consequences for the budget.
Reconciling the Network
When we finally decided to reconcile Kwame’s network, we didn’t start with the Visio. We started with a packet sniffer and a cup of coffee. We followed the traffic. We looked at where the users were actually landing, not where they were supposed to go.
We found three servers that were “retired” but still actively authenticating users. We found a branch office that had been using a grace period for because of a registry hack that someone had found on a forum. It was a mess, but it was an honest mess.
Honesty in infrastructure is expensive in the short term. It requires admitting that the plan failed, or at least that it evolved into something unrecognizable. It requires buying the licenses you actually need, rather than the ones you wish you needed.
But the cost of that honesty is nothing compared to the cost of a failed audit or a system-wide lockout because your license server finally realized it was being lied to.
Choosing Stability
We eventually bought the licenses. We didn’t buy them based on the pretty blue boxes. We bought them based on the sweaty, dusty reality of the server room. We chose perpetual licenses because we didn’t want to be back in this situation in , arguing about subscription renewals for a system that was still changing under our feet. We went for the stability of a known quantity in an unknown environment.
My tongue still hurts. The bite was deep, and it’s a constant reminder to be more careful with how I move. Maybe that’s what a good admin is-a constant reminder to the organization to be more careful with how it moves.
The architect can draw the lines, but the admin has to live inside them. And when the lines start to blur, as they always do, the person who knows the truth is the most valuable person in the building. They are the only ones who can tell you how many seats are actually at the table, even if the table has been moved to the basement and covered in old keyboards.
In the end, the system keeps living. It doesn’t care if the diagram is updated. It only cares that the electricity keeps flowing and the handshakes keep happening. The drift will continue, the dark matter will expand, and the admin will keep their unwritten list. That is the nature of the machine. Our job isn’t to stop the drift, but to have enough grace-and enough licenses-to survive it.
The cable is a physical truth that eventually chokes the digital diagram. When the manager finally walked away, Kwame didn’t delete the old diagram. He just put a sticky note on the corner of his monitor with the real numbers.
He knew which one he’d be looking at the next time the phone rang. The Visio stayed on the server, a pristine monument to a world that never actually existed, while the real work continued in the shadows of the rack.