Perfmon data Difference in blg csv format
Hi, I have captured 1 week %processor Time for a Windows server 2008. now in Graph it's showing max as 60% but when I convert .blg file into .csv with Relog, showing max as 92%. Which one is correct? why 92% max not showing in graph? it was using default threashold 15 sec. Regards, Dhiraj --- This email is confidential and intended only for the use of the individual or entity named above and may contain information that is privileged. If you are not the intended recipient, you are notified that any dissemination, distribution or copying of this email is strictly prohibited. If you have received this email in error, please notify us immediately by return email or telephone and destroy the original message. - This mail is sent via Sony Asia Pacific Mail Gateway. --- ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Powershell arrays
If I want to write a script that takes a list of files as one of the inputs, is it safe to to define a parameter as an array and pass it the files like c:\path\file,d:\path\file and expect the order to be reliable? is their a smarter way to do this, or is that sufficient? Thanks! jlc ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Powershell arrays
If you want an ordered dictionary, then you should specify an ordered dictionary. Otherwise, the order is defined to be random; even though may be able to determine a predictable order, it is not guaranteed. Especially between versions of PowerShell. -Original Message- From: Joseph L. Casale [mailto:jcas...@activenetwerx.com] Sent: Monday, April 09, 2012 11:32 AM To: NT System Admin Issues Subject: Powershell arrays If I want to write a script that takes a list of files as one of the inputs, is it safe to to define a parameter as an array and pass it the files like c:\path\file,d:\path\file and expect the order to be reliable? is their a smarter way to do this, or is that sufficient? Thanks! jlc ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Powershell arrays
That would be a type of System.Collections.Specialized.OrderedDictionary, by the way. -Original Message- From: Michael B. Smith [mailto:mich...@smithcons.com] Sent: Monday, April 09, 2012 11:51 AM To: NT System Admin Issues Subject: RE: Powershell arrays If you want an ordered dictionary, then you should specify an ordered dictionary. Otherwise, the order is defined to be random; even though may be able to determine a predictable order, it is not guaranteed. Especially between versions of PowerShell. -Original Message- From: Joseph L. Casale [mailto:jcas...@activenetwerx.com] Sent: Monday, April 09, 2012 11:32 AM To: NT System Admin Issues Subject: Powershell arrays If I want to write a script that takes a list of files as one of the inputs, is it safe to to define a parameter as an array and pass it the files like c:\path\file,d:\path\file and expect the order to be reliable? is their a smarter way to do this, or is that sufficient? Thanks! jlc ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Powershell arrays
Yup, just found it. Thanks! jlc From: Michael B. Smith [mich...@smithcons.com] Sent: Monday, April 09, 2012 9:56 AM To: NT System Admin Issues Subject: RE: Powershell arrays That would be a type of System.Collections.Specialized.OrderedDictionary, by the way. -Original Message- From: Michael B. Smith [mailto:mich...@smithcons.com] Sent: Monday, April 09, 2012 11:51 AM To: NT System Admin Issues Subject: RE: Powershell arrays If you want an ordered dictionary, then you should specify an ordered dictionary. Otherwise, the order is defined to be random; even though may be able to determine a predictable order, it is not guaranteed. Especially between versions of PowerShell. -Original Message- From: Joseph L. Casale [mailto:jcas...@activenetwerx.com] Sent: Monday, April 09, 2012 11:32 AM To: NT System Admin Issues Subject: Powershell arrays If I want to write a script that takes a list of files as one of the inputs, is it safe to to define a parameter as an array and pass it the files like c:\path\file,d:\path\file and expect the order to be reliable? is their a smarter way to do this, or is that sufficient? Thanks! jlc ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: MDM - Tablet/BYOD
In my setup, we have a secure mail gateway. If the user removes the AirWatch App, they no longer get email from our server. They cannot bypass this as the secure gateway requires the app. Once we are fully deployed, there will be no other way to get Active Sync as this port will not be open externally and will be blocked / redirected to the secure gateway internally. BF From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk] Sent: Monday, April 09, 2012 12:29 PM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD Bob, how does Airwatch (or any other MDM if anyone reading has any experience) stop people from simply bypassing it and connecting their device directly to your ActiveSync without bothering with the MDP app? Thanks, Paul From: Bob Fronk [b...@btrfronk.com] Sent: 06 April 2012 3:57 AM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD Using Airwatch for IOS devices. No BYOD though. Airwatch supports several OSs. So far, it has been able to do everything we need, save one - Add a proxy to Safari. The settings are there, it just does not work. Hopefully they will fix the bug and this will work soon. BF From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk]mailto:[mailto:paul.hutchi...@mira.co.uk] Sent: Thursday, April 05, 2012 8:36 AM To: NT System Admin Issues Subject: MDM - Tablet/BYOD Are any of you using a third party MDM such as MaaS/MobileIron/AirWatch with either your company owned or BYOD tablets and phones? I'm about to look at tablets, most likely iPads, with an eye on possible BYOD for mobiles. These days if someone walks through the door with a personal device it's an Apple with the odd Android or Windows Mobile/Windows Phone device. I can't easily trial every MDM out there, and right now I don't even know exactly what policies we'd want to enforce, but I know that ActiveSync can be variable with device support and devices can basically lie/ignore settings in some situations. Thanks, Paul MIRA Ltd Watling Street, Nuneaton, Warwickshire, CV10 0TU, England Registered in England and Wales No. 402570 VAT Registration GB 100 1464 84 The contents of this e-mail are confidential and are solely for the use of the intended recipient. If you receive this e-mail in error, please delete it and notify us either by e-mail, telephone or fax. You should not copy, forward or otherwise disclose the content of the e-mail as this is prohibited. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Machine name with $ sign as username
That's the computer account in the domain. When the computer needs to authenticate, that's the account it uses --Original Message-- From: Sharie Breaux To: NT System Admin Issues ReplyTo: NT System Admin Issues Subject: Machine name with $ sign as username Sent: 9 Apr 2012 18:59 What program or sevice uses the machine name with a dollar sign as the username? Background: I have a Small Business Server 2003 machine that is not our domain controller. It is our mail server. In the event viewer under the Security tab, there is a failure audit being logged every 30 minutes; Event ID 529; Logon Process: NtLmSsp This is being caused by my machine (Windows 7 Pro) with the username as [machine name]$ How do I troubleshoot this? What other information do you need to help me? Thanks in advance! Sharie ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ---Blackberried ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Machine name with $ sign as username
And the error generally means that the secure channel between the machine and the domain controller has failed. -Original Message- From: Rankin, James R [mailto:kz2...@googlemail.com] Sent: Monday, April 09, 2012 2:04 PM To: NT System Admin Issues Subject: Re: Machine name with $ sign as username That's the computer account in the domain. When the computer needs to authenticate, that's the account it uses --Original Message-- From: Sharie Breaux To: NT System Admin Issues ReplyTo: NT System Admin Issues Subject: Machine name with $ sign as username Sent: 9 Apr 2012 18:59 What program or sevice uses the machine name with a dollar sign as the username? Background: I have a Small Business Server 2003 machine that is not our domain controller. It is our mail server. In the event viewer under the Security tab, there is a failure audit being logged every 30 minutes; Event ID 529; Logon Process: NtLmSsp This is being caused by my machine (Windows 7 Pro) with the username as [machine name]$ How do I troubleshoot this? What other information do you need to help me? Thanks in advance! Sharie ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ---Blackberried ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Machine name with $ sign as username
In the NT4 days, nltest was the way to reset it...I have no idea how its done now ---Blackberried -Original Message- From: Michael B. Smith mich...@smithcons.com Date: Mon, 9 Apr 2012 18:16:00 To: NT System Admin Issuesntsysadmin@lyris.sunbelt-software.com Reply-To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.comSubject: RE: Machine name with $ sign as username And the error generally means that the secure channel between the machine and the domain controller has failed. -Original Message- From: Rankin, James R [mailto:kz2...@googlemail.com] Sent: Monday, April 09, 2012 2:04 PM To: NT System Admin Issues Subject: Re: Machine name with $ sign as username That's the computer account in the domain. When the computer needs to authenticate, that's the account it uses --Original Message-- From: Sharie Breaux To: NT System Admin Issues ReplyTo: NT System Admin Issues Subject: Machine name with $ sign as username Sent: 9 Apr 2012 18:59 What program or sevice uses the machine name with a dollar sign as the username? Background: I have a Small Business Server 2003 machine that is not our domain controller. It is our mail server. In the event viewer under the Security tab, there is a failure audit being logged every 30 minutes; Event ID 529; Logon Process: NtLmSsp This is being caused by my machine (Windows 7 Pro) with the username as [machine name]$ How do I troubleshoot this? What other information do you need to help me? Thanks in advance! Sharie ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ---Blackberried ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Machine name with $ sign as username
You can still use nltest. Or netdom. Or remove the computer from AD and immediately rejoin it. -Original Message- From: Rankin, James R [mailto:kz2...@googlemail.com] Sent: Monday, April 09, 2012 2:22 PM To: NT System Admin Issues Subject: Re: Machine name with $ sign as username In the NT4 days, nltest was the way to reset it...I have no idea how its done now ---Blackberried -Original Message- From: Michael B. Smith mich...@smithcons.com Date: Mon, 9 Apr 2012 18:16:00 To: NT System Admin Issuesntsysadmin@lyris.sunbelt-software.com Reply-To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.comSubject: RE: Machine name with $ sign as username And the error generally means that the secure channel between the machine and the domain controller has failed. -Original Message- From: Rankin, James R [mailto:kz2...@googlemail.com] Sent: Monday, April 09, 2012 2:04 PM To: NT System Admin Issues Subject: Re: Machine name with $ sign as username That's the computer account in the domain. When the computer needs to authenticate, that's the account it uses --Original Message-- From: Sharie Breaux To: NT System Admin Issues ReplyTo: NT System Admin Issues Subject: Machine name with $ sign as username Sent: 9 Apr 2012 18:59 What program or sevice uses the machine name with a dollar sign as the username? Background: I have a Small Business Server 2003 machine that is not our domain controller. It is our mail server. In the event viewer under the Security tab, there is a failure audit being logged every 30 minutes; Event ID 529; Logon Process: NtLmSsp This is being caused by my machine (Windows 7 Pro) with the username as [machine name]$ How do I troubleshoot this? What other information do you need to help me? Thanks in advance! Sharie ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ---Blackberried ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Machine name with $ sign as username
I'd like to think I could have found that out, if I wasn't in a bar trying to erase a bad result for my football team out of my memory :-) stored for future reference though ---Blackberried -Original Message- From: Michael B. Smith mich...@smithcons.com Date: Mon, 9 Apr 2012 18:25:35 To: NT System Admin Issuesntsysadmin@lyris.sunbelt-software.com Reply-To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.comSubject: RE: Machine name with $ sign as username You can still use nltest. Or netdom. Or remove the computer from AD and immediately rejoin it. -Original Message- From: Rankin, James R [mailto:kz2...@googlemail.com] Sent: Monday, April 09, 2012 2:22 PM To: NT System Admin Issues Subject: Re: Machine name with $ sign as username In the NT4 days, nltest was the way to reset it...I have no idea how its done now ---Blackberried -Original Message- From: Michael B. Smith mich...@smithcons.com Date: Mon, 9 Apr 2012 18:16:00 To: NT System Admin Issuesntsysadmin@lyris.sunbelt-software.com Reply-To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.comSubject: RE: Machine name with $ sign as username And the error generally means that the secure channel between the machine and the domain controller has failed. -Original Message- From: Rankin, James R [mailto:kz2...@googlemail.com] Sent: Monday, April 09, 2012 2:04 PM To: NT System Admin Issues Subject: Re: Machine name with $ sign as username That's the computer account in the domain. When the computer needs to authenticate, that's the account it uses --Original Message-- From: Sharie Breaux To: NT System Admin Issues ReplyTo: NT System Admin Issues Subject: Machine name with $ sign as username Sent: 9 Apr 2012 18:59 What program or sevice uses the machine name with a dollar sign as the username? Background: I have a Small Business Server 2003 machine that is not our domain controller. It is our mail server. In the event viewer under the Security tab, there is a failure audit being logged every 30 minutes; Event ID 529; Logon Process: NtLmSsp This is being caused by my machine (Windows 7 Pro) with the username as [machine name]$ How do I troubleshoot this? What other information do you need to help me? Thanks in advance! Sharie ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ---Blackberried ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Machine name with $ sign as username
In addition to the excellent responses already given, please note that the phrase Small Business Server 2003 machine that is not our domain controller doesn't make any sense in the context of SBS 2003, at least from what I remember about it. I think SBS 2003 must hold all FSMO roles for what is limited to a single domain forest, so by definition it has to be a domain controller. You can have additional DCs, but the SBS machine should be a DC unless you're running an unsupported configuration. On Mon, Apr 9, 2012 at 1:59 PM, Sharie Breaux sharielbre...@gmail.comwrote: What program or sevice uses the machine name with a dollar sign as the username? Background: I have a Small Business Server 2003 machine that is not our domain controller. It is our mail server. In the event viewer under the Security tab, there is a failure audit being logged every 30 minutes; Event ID 529; Logon Process: NtLmSsp This is being caused by my machine (Windows 7 Pro) with the username as [machine name]$ How do I troubleshoot this? What other information do you need to help me? Thanks in advance! Sharie ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Machine name with $ sign as username
The problem with removing the computer from the domain to reset the secure channel and rejoining it is the computer gets a new SID and any groups it might belong to are no longer valid. And you have a few reboots in there. Try this in an elevated command prompt. Type: nltest /Server:ServerName /SC_Reset:Domain\DomainController No reboot needed and it preserves the SID because you do not do a rejoin. -Original Message- From: Michael B. Smith [mailto:mich...@smithcons.com] Sent: Monday, April 09, 2012 11:26 AM To: NT System Admin Issues Subject: RE: Machine name with $ sign as username You can still use nltest. Or netdom. Or remove the computer from AD and immediately rejoin it. -Original Message- From: Rankin, James R [mailto:kz2...@googlemail.com] Sent: Monday, April 09, 2012 2:22 PM To: NT System Admin Issues Subject: Re: Machine name with $ sign as username In the NT4 days, nltest was the way to reset it...I have no idea how its done now ---Blackberried -Original Message- From: Michael B. Smith mich...@smithcons.com Date: Mon, 9 Apr 2012 18:16:00 To: NT System Admin Issuesntsysadmin@lyris.sunbelt-software.com Reply-To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.comSubject: RE: Machine name with $ sign as username And the error generally means that the secure channel between the machine and the domain controller has failed. -Original Message- From: Rankin, James R [mailto:kz2...@googlemail.com] Sent: Monday, April 09, 2012 2:04 PM To: NT System Admin Issues Subject: Re: Machine name with $ sign as username That's the computer account in the domain. When the computer needs to authenticate, that's the account it uses --Original Message-- From: Sharie Breaux To: NT System Admin Issues ReplyTo: NT System Admin Issues Subject: Machine name with $ sign as username Sent: 9 Apr 2012 18:59 What program or sevice uses the machine name with a dollar sign as the username? Background: I have a Small Business Server 2003 machine that is not our domain controller. It is our mail server. In the event viewer under the Security tab, there is a failure audit being logged every 30 minutes; Event ID 529; Logon Process: NtLmSsp This is being caused by my machine (Windows 7 Pro) with the username as [machine name]$ How do I troubleshoot this? What other information do you need to help me? Thanks in advance! Sharie ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ---Blackberried ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Machine name with $ sign as username
In ADUC you can right click a computer object and Reset Account I usually have better luck removing a computer account from the domain and re-joining it. Christopher Bodnar Enterprise Achitect I, Corporate Office of Technology Tel 610-807-6459 3900 Burgess Place, Bethlehem, PA 18017 christopher_bod...@glic.com The Guardian Life Insurance Company of America www.guardianlife.com From: Rankin, James R kz2...@googlemail.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Date: 04/09/2012 02:22 PM Subject:Re: Machine name with $ sign as username In the NT4 days, nltest was the way to reset it...I have no idea how its done now ---Blackberried -Original Message- From: Michael B. Smith mich...@smithcons.com Date: Mon, 9 Apr 2012 18:16:00 To: NT System Admin Issuesntsysadmin@lyris.sunbelt-software.com Reply-To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.comSubject: RE: Machine name with $ sign as username And the error generally means that the secure channel between the machine and the domain controller has failed. -Original Message- From: Rankin, James R [mailto:kz2...@googlemail.com] Sent: Monday, April 09, 2012 2:04 PM To: NT System Admin Issues Subject: Re: Machine name with $ sign as username That's the computer account in the domain. When the computer needs to authenticate, that's the account it uses --Original Message-- From: Sharie Breaux To: NT System Admin Issues ReplyTo: NT System Admin Issues Subject: Machine name with $ sign as username Sent: 9 Apr 2012 18:59 What program or sevice uses the machine name with a dollar sign as the username? Background: I have a Small Business Server 2003 machine that is not our domain controller. It is our mail server. In the event viewer under the Security tab, there is a failure audit being logged every 30 minutes; Event ID 529; Logon Process: NtLmSsp This is being caused by my machine (Windows 7 Pro) with the username as [machine name]$ How do I troubleshoot this? What other information do you need to help me? Thanks in advance! Sharie ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ---Blackberried ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin - This message, and any attachments to it, may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are notified that any use, dissemination, distribution, copying, or communication of this message is strictly prohibited. If you have received this message in error, please notify the sender immediately by return e-mail and delete the message and any attachments. Thank you. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadminimage/jpeg
RE: MDM - Tablet/BYOD
Yes. (Both are VM) From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk] Sent: Monday, April 09, 2012 2:46 PM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD Thanks Bob, so the secure mail gateway is what, some sort of AirWatch VM or something that the app talks to? From: Bob Fronk [b...@btrfronk.com] Sent: 09 April 2012 6:30 PM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD In my setup, we have a secure mail gateway. If the user removes the AirWatch App, they no longer get email from our server. They cannot bypass this as the secure gateway requires the app. Once we are fully deployed, there will be no other way to get Active Sync as this port will not be open externally and will be blocked / redirected to the secure gateway internally. BF From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk]mailto:[mailto:paul.hutchi...@mira.co.uk] Sent: Monday, April 09, 2012 12:29 PM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD Bob, how does Airwatch (or any other MDM if anyone reading has any experience) stop people from simply bypassing it and connecting their device directly to your ActiveSync without bothering with the MDP app? Thanks, Paul From: Bob Fronk [b...@btrfronk.com] Sent: 06 April 2012 3:57 AM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD Using Airwatch for IOS devices. No BYOD though. Airwatch supports several OSs. So far, it has been able to do everything we need, save one - Add a proxy to Safari. The settings are there, it just does not work. Hopefully they will fix the bug and this will work soon. BF From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk]mailto:[mailto:paul.hutchi...@mira.co.uk] Sent: Thursday, April 05, 2012 8:36 AM To: NT System Admin Issues Subject: MDM - Tablet/BYOD Are any of you using a third party MDM such as MaaS/MobileIron/AirWatch with either your company owned or BYOD tablets and phones? I'm about to look at tablets, most likely iPads, with an eye on possible BYOD for mobiles. These days if someone walks through the door with a personal device it's an Apple with the odd Android or Windows Mobile/Windows Phone device. I can't easily trial every MDM out there, and right now I don't even know exactly what policies we'd want to enforce, but I know that ActiveSync can be variable with device support and devices can basically lie/ignore settings in some situations. Thanks, Paul MIRA Ltd Watling Street, Nuneaton, Warwickshire, CV10 0TU, England Registered in England and Wales No. 402570 VAT Registration GB 100 1464 84 The contents of this e-mail are confidential and are solely for the use of the intended recipient. If you receive this e-mail in error, please delete it and notify us either by e-mail, telephone or fax. You should not copy, forward or otherwise disclose the content of the e-mail as this is prohibited. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here:
RE: MDM - Tablet/BYOD
Perfect, I think that makes sense now as an architecture. I'm still a little unsure how you'd stop them from using ActiveSync directly assuming that you need to leave ActiveSync enabled, and you have your Exchange facing the Internet for OWA and RPC over HTTPS but I'm assuming there are a few ways such as blocking access to the ActiveSync Virtual Directories other than to the Airwatch IP. I'll have a word with Airwatch I think - their SaaS solution looks very cheap but I expect there are some costs that aren't listed. From: Bob Fronk [b...@btrfronk.com] Sent: 09 April 2012 7:57 PM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD Yes. (Both are VM) From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk] Sent: Monday, April 09, 2012 2:46 PM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD Thanks Bob, so the secure mail gateway is what, some sort of AirWatch VM or something that the app talks to? From: Bob Fronk [b...@btrfronk.com] Sent: 09 April 2012 6:30 PM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD In my setup, we have a secure mail gateway. If the user removes the AirWatch App, they no longer get email from our server. They cannot bypass this as the secure gateway requires the app. Once we are fully deployed, there will be no other way to get Active Sync as this port will not be open externally and will be blocked / redirected to the secure gateway internally. BF From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk]mailto:[mailto:paul.hutchi...@mira.co.uk] Sent: Monday, April 09, 2012 12:29 PM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD Bob, how does Airwatch (or any other MDM if anyone reading has any experience) stop people from simply bypassing it and connecting their device directly to your ActiveSync without bothering with the MDP app? Thanks, Paul From: Bob Fronk [b...@btrfronk.com] Sent: 06 April 2012 3:57 AM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD Using Airwatch for IOS devices. No BYOD though. Airwatch supports several OSs. So far, it has been able to do everything we need, save one – Add a proxy to Safari. The settings are there, it just does not work. Hopefully they will fix the bug and this will work soon. BF From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk]mailto:[mailto:paul.hutchi...@mira.co.uk] Sent: Thursday, April 05, 2012 8:36 AM To: NT System Admin Issues Subject: MDM - Tablet/BYOD Are any of you using a third party MDM such as MaaS/MobileIron/AirWatch with either your company owned or BYOD tablets and phones? I’m about to look at tablets, most likely iPads, with an eye on possible BYOD for mobiles. These days if someone walks through the door with a personal device it’s an Apple with the odd Android or Windows Mobile/Windows Phone device. I can’t easily trial every MDM out there, and right now I don’t even know exactly what policies we’d want to enforce, but I know that ActiveSync can be variable with device support and devices can basically lie/ignore settings in some situations. Thanks, Paul MIRA Ltd Watling Street, Nuneaton, Warwickshire, CV10 0TU, England Registered in England and Wales No. 402570 VAT Registration GB 100 1464 84 The contents of this e-mail are confidential and are solely for the use of the intended recipient. If you receive this e-mail in error, please delete it and notify us either by e-mail, telephone or fax. You should not copy, forward or otherwise disclose the content of the e-mail as this is prohibited. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send
RE: GPP Drives Maps Not Updating Or Replacing
We've also run into issues with update vs replace, and are using replace. Another important note is to check the box to Remove this item when it is no longer applied and when you are changing a drive map, delete that item and create a new one. From: James Hill [mailto:falc...@gmail.com] Sent: Saturday, April 07, 2012 2:56 PM To: NT System Admin Issues Subject: RE: GPP Drives Maps Not Updating Or Replacing When Windows 2008 first came out I came across this same issue and found it quite frustrating. I ended up only using Replace as Update was unreliable. I found that I had to make sure that Replace was used from the start. If it wasn't I had to Delete the drive mappings and then use Replace from then on. James. From: James Kerr [mailto:cluster...@gmail.com] Sent: Sunday, 8 April 2012 12:08 AM To: NT System Admin Issues Subject: Re: GPP Drives Maps Not Updating Or Replacing I just created a test GPO and first created a drive mapping set to delete all drives starting at before creating the actual drive maps and this seems to work. This would be a workaround but I really do not feel like deleting then recreating all the drives maps in all the GPOs in AD that have drive maps in them unless it is the last resort. It doesn't matter if the drives are set to replace, they do not get replaced and based on my googling this seems to happen to many and I have not found a solution other then workarounds so far. On Sat, Apr 7, 2012 at 9:41 AM, Tom Miller tmil...@hnncsb.orgmailto:tmil...@hnncsb.org wrote: Is your GPP set to create or replace? I've had the same issue you report here when moving department files to new servers. Those I had set to create. I *think* change it to replace took care of it, but can't recall off-hand. You may wish to give it a try. One annoyance similar to what you report: on laptops that staff take home, the drive mappings are still listed in Explorer. Staff think they can cannot, but of course they cannot. We've considered it a training issue, but you'd think if a drive is not available, Windows (XP) would remove it? James Kerr cluster...@gmail.commailto:cluster...@gmail.com 4/6/2012 2:34 PM Thought I would inquire with the hive mind on this one. Whenever we make a change to a drive albeit a change in path or label whether we have the drive set to replace or to update the changes are never made. We have to disconnect the drive and then logon to get the changes. Has anybody else run into this and found a solution? Our DCs are 2008 and 2008R2. I thought maybe I could create a delete of the drive and place it before the mapping of the drive but GP editor only allows me to move the delete job up one order slot. What are most of you doing fore drive mapping these days? I really don't want to go back to Kixtart and my google-fu isn't working well today :-\ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body:
RE: MDM - Tablet/BYOD
The SEG takes the place of your OWA, etc. From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk] Sent: Monday, April 09, 2012 3:08 PM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD Perfect, I think that makes sense now as an architecture. I'm still a little unsure how you'd stop them from using ActiveSync directly assuming that you need to leave ActiveSync enabled, and you have your Exchange facing the Internet for OWA and RPC over HTTPS but I'm assuming there are a few ways such as blocking access to the ActiveSync Virtual Directories other than to the Airwatch IP. I'll have a word with Airwatch I think - their SaaS solution looks very cheap but I expect there are some costs that aren't listed. From: Bob Fronk [b...@btrfronk.com] Sent: 09 April 2012 7:57 PM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD Yes. (Both are VM) From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk]mailto:[mailto:paul.hutchi...@mira.co.uk] Sent: Monday, April 09, 2012 2:46 PM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD Thanks Bob, so the secure mail gateway is what, some sort of AirWatch VM or something that the app talks to? From: Bob Fronk [b...@btrfronk.com] Sent: 09 April 2012 6:30 PM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD In my setup, we have a secure mail gateway. If the user removes the AirWatch App, they no longer get email from our server. They cannot bypass this as the secure gateway requires the app. Once we are fully deployed, there will be no other way to get Active Sync as this port will not be open externally and will be blocked / redirected to the secure gateway internally. BF From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk]mailto:[mailto:paul.hutchi...@mira.co.uk] Sent: Monday, April 09, 2012 12:29 PM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD Bob, how does Airwatch (or any other MDM if anyone reading has any experience) stop people from simply bypassing it and connecting their device directly to your ActiveSync without bothering with the MDP app? Thanks, Paul From: Bob Fronk [b...@btrfronk.com] Sent: 06 April 2012 3:57 AM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD Using Airwatch for IOS devices. No BYOD though. Airwatch supports several OSs. So far, it has been able to do everything we need, save one - Add a proxy to Safari. The settings are there, it just does not work. Hopefully they will fix the bug and this will work soon. BF From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk]mailto:[mailto:paul.hutchi...@mira.co.uk] Sent: Thursday, April 05, 2012 8:36 AM To: NT System Admin Issues Subject: MDM - Tablet/BYOD Are any of you using a third party MDM such as MaaS/MobileIron/AirWatch with either your company owned or BYOD tablets and phones? I'm about to look at tablets, most likely iPads, with an eye on possible BYOD for mobiles. These days if someone walks through the door with a personal device it's an Apple with the odd Android or Windows Mobile/Windows Phone device. I can't easily trial every MDM out there, and right now I don't even know exactly what policies we'd want to enforce, but I know that ActiveSync can be variable with device support and devices can basically lie/ignore settings in some situations. Thanks, Paul MIRA Ltd Watling Street, Nuneaton, Warwickshire, CV10 0TU, England Registered in England and Wales No. 402570 VAT Registration GB 100 1464 84 The contents of this e-mail are confidential and are solely for the use of the intended recipient. If you receive this e-mail in error, please delete it and notify us either by e-mail, telephone or fax. You should not copy, forward or otherwise disclose the content of the e-mail as this is prohibited. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe
Re: MDM - Tablet/BYOD
We block ActiveSync externally and use GOOD Technology for iPhones here. We are looking at a BYOD policy here. On Mon, Apr 9, 2012 at 12:36 PM, Bob Fronk b...@btrfronk.com wrote: The SEG takes the place of your OWA, etc. ** ** ** ** ** ** *From:* Paul Hutchings [mailto:paul.hutchi...@mira.co.uk] *Sent:* Monday, April 09, 2012 3:08 PM *To:* NT System Admin Issues *Subject:* RE: MDM - Tablet/BYOD ** ** Perfect, I think that makes sense now as an architecture. I'm still a little unsure how you'd stop them from using ActiveSync directly assuming that you need to leave ActiveSync enabled, and you have your Exchange facing the Internet for OWA and RPC over HTTPS but I'm assuming there are a few ways such as blocking access to the ActiveSync Virtual Directories other than to the Airwatch IP. ** ** I'll have a word with Airwatch I think - their SaaS solution looks very cheap but I expect there are some costs that aren't listed. -- *From:* Bob Fronk [b...@btrfronk.com] *Sent:* 09 April 2012 7:57 PM *To:* NT System Admin Issues *Subject:* RE: MDM - Tablet/BYOD Yes. (Both are VM) *From:* Paul Hutchings [mailto:paul.hutchi...@mira.co.uk] *Sent:* Monday, April 09, 2012 2:46 PM *To:* NT System Admin Issues *Subject:* RE: MDM - Tablet/BYOD Thanks Bob, so the secure mail gateway is what, some sort of AirWatch VM or something that the app talks to? -- *From:* Bob Fronk [b...@btrfronk.com] *Sent:* 09 April 2012 6:30 PM *To:* NT System Admin Issues *Subject:* RE: MDM - Tablet/BYOD In my setup, we have a secure mail gateway. If the user removes the AirWatch App, they no longer get email from our server. They cannot bypass this as the secure gateway requires the app. Once we are fully deployed, there will be no other way to get Active Sync as this port will not be open externally and will be blocked / redirected to the secure gateway internally. BF *From:* Paul Hutchings [mailto:paul.hutchi...@mira.co.uk] *Sent:* Monday, April 09, 2012 12:29 PM *To:* NT System Admin Issues *Subject:* RE: MDM - Tablet/BYOD Bob, how does Airwatch (or any other MDM if anyone reading has any experience) stop people from simply bypassing it and connecting their device directly to your ActiveSync without bothering with the MDP app? *** * Thanks, Paul -- *From:* Bob Fronk [b...@btrfronk.com] *Sent:* 06 April 2012 3:57 AM *To:* NT System Admin Issues *Subject:* RE: MDM - Tablet/BYOD Using Airwatch for IOS devices. No BYOD though. Airwatch supports several OSs. So far, it has been able to do everything we need, save one – Add a proxy to Safari. The settings are there, it just does not work. Hopefully they will fix the bug and this will work soon. BF *From:* Paul Hutchings [mailto:paul.hutchi...@mira.co.uk] *Sent:* Thursday, April 05, 2012 8:36 AM *To:* NT System Admin Issues *Subject:* MDM - Tablet/BYOD Are any of you using a third party MDM such as MaaS/MobileIron/AirWatch with either your company owned or BYOD tablets and phones? I’m about to look at tablets, most likely iPads, with an eye on possible BYOD for mobiles. These days if someone walks through the door with a personal device it’s an Apple with the odd Android or Windows Mobile/Windows Phone device. I can’t easily trial every MDM out there, and right now I don’t even know *exactly *what policies we’d want to enforce, but I know that ActiveSync can be variable with device support and devices can basically lie/ignore settings in some situations. Thanks, Paul -- *MIRA Ltd* Watling Street, Nuneaton, Warwickshire, CV10 0TU, England Registered in England and Wales No. 402570 VAT Registration GB 100 1464 84 The contents of this e-mail are confidential and are solely for the use of the intended recipient. If you receive this e-mail in error, please delete it and notify us either by e-mail, telephone or fax. You should not copy, forward or otherwise disclose the content of the e-mail as this is prohibited. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to
RE: MDM - Tablet/BYOD
I'm hoping to speak to Good at some point. My understanding so far is that they're going to be a significantly more expensive option than the likes of Airwatch/MaaS though. From: Steven Peck [sep...@gmail.com] Sent: 09 April 2012 9:07 PM To: NT System Admin Issues Subject: Re: MDM - Tablet/BYOD We block ActiveSync externally and use GOOD Technology for iPhones here. We are looking at a BYOD policy here. On Mon, Apr 9, 2012 at 12:36 PM, Bob Fronk b...@btrfronk.commailto:b...@btrfronk.com wrote: The SEG takes the place of your OWA, etc. From: Paul Hutchings [mailto:paul.hutchi...@mira.co.ukmailto:paul.hutchi...@mira.co.uk] Sent: Monday, April 09, 2012 3:08 PM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD Perfect, I think that makes sense now as an architecture. I'm still a little unsure how you'd stop them from using ActiveSync directly assuming that you need to leave ActiveSync enabled, and you have your Exchange facing the Internet for OWA and RPC over HTTPS but I'm assuming there are a few ways such as blocking access to the ActiveSync Virtual Directories other than to the Airwatch IP. I'll have a word with Airwatch I think - their SaaS solution looks very cheap but I expect there are some costs that aren't listed. From: Bob Fronk [b...@btrfronk.commailto:b...@btrfronk.com] Sent: 09 April 2012 7:57 PM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD Yes. (Both are VM) From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk]mailto:[mailto:paul.hutchi...@mira.co.uk] Sent: Monday, April 09, 2012 2:46 PM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD Thanks Bob, so the secure mail gateway is what, some sort of AirWatch VM or something that the app talks to? From: Bob Fronk [b...@btrfronk.commailto:b...@btrfronk.com] Sent: 09 April 2012 6:30 PM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD In my setup, we have a secure mail gateway. If the user removes the AirWatch App, they no longer get email from our server. They cannot bypass this as the secure gateway requires the app. Once we are fully deployed, there will be no other way to get Active Sync as this port will not be open externally and will be blocked / redirected to the secure gateway internally. BF From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk]mailto:[mailto:paul.hutchi...@mira.co.uk] Sent: Monday, April 09, 2012 12:29 PM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD Bob, how does Airwatch (or any other MDM if anyone reading has any experience) stop people from simply bypassing it and connecting their device directly to your ActiveSync without bothering with the MDP app? Thanks, Paul From: Bob Fronk [b...@btrfronk.commailto:b...@btrfronk.com] Sent: 06 April 2012 3:57 AM To: NT System Admin Issues Subject: RE: MDM - Tablet/BYOD Using Airwatch for IOS devices. No BYOD though. Airwatch supports several OSs. So far, it has been able to do everything we need, save one – Add a proxy to Safari. The settings are there, it just does not work. Hopefully they will fix the bug and this will work soon. BF From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk]mailto:[mailto:paul.hutchi...@mira.co.uk] Sent: Thursday, April 05, 2012 8:36 AM To: NT System Admin Issues Subject: MDM - Tablet/BYOD Are any of you using a third party MDM such as MaaS/MobileIron/AirWatch with either your company owned or BYOD tablets and phones? I’m about to look at tablets, most likely iPads, with an eye on possible BYOD for mobiles. These days if someone walks through the door with a personal device it’s an Apple with the odd Android or Windows Mobile/Windows Phone device. I can’t easily trial every MDM out there, and right now I don’t even know exactly what policies we’d want to enforce, but I know that ActiveSync can be variable with device support and devices can basically lie/ignore settings in some situations. Thanks, Paul MIRA Ltd Watling Street, Nuneaton, Warwickshire, CV10 0TU, England Registered in England and Wales No. 402570 VAT Registration GB 100 1464 84 The contents of this e-mail are confidential and are solely for the use of the intended recipient. If you receive this e-mail in error, please delete it and notify us either by e-mail, telephone or fax. You should not copy, forward or otherwise disclose the content of the e-mail as this is prohibited. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
Re: UAG now not working
I'm not finding what you're referring to. I'm going to go home for the evening, and come at this with fresh eyes in the morning. My inclination is to start over, and redo the server from scratch, but I'd like to see if I can figure this out. Kurt On Fri, Apr 6, 2012 at 19:20, John Cook john.c...@pfsf.org wrote: I don't have access to one right now but I would go into the console for the rules and check through them. You can test them with a query I just don't remember the details. John W. Cook Systems Administrator Partnership for Strong Families - Original Message - From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Friday, April 06, 2012 08:54 PM To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Subject: UAG now not working So, DA/UAG worked yesterday, and I brought a laptop home and used it for a couple of hours last night, but since then I've been testing DA/UAG at work, one part of which was rebooting the UAG server to see what would happen, and after rebooting, the UAG server broke. The DCA utility on the clients shows that DA is broken. Oddly enough, though, I can put a laptop outside the network, and ping internal hosts and get directory listings of my file server and connect to internal web sites, all of which are Win2k3 machines. So, I poked around a bunch, and found the following: First thing I noticed is that the web site I put up on it for IPHTTPS was just gone. Not in IIS at all, just gone. I've recreated the web site, and it keeps disappearing, with and without reboots. It seems to be time dependent, though I'm not sure of that. I looked in the event logs, and find in the System log a set of three events that seem to be connected with the IPHTTPS web site disappearing: 15300 for HttpEvent saying: SSL Certificate Settings deleted for Port : 67.xxx.yyy.zzz443 . and 15300 for HttpEvent saying: SSL Certificate Settings deleted for Port : 0.0.0.0:6002 . and 15301 for HttpEvent saying: SSL Certificate Settings created by an admin process for Port : 0.0.0.0:6002 . In the Application log I found a couple of these that probably aren't related, but might be worth mentinoing - I'm not running an NLB configuration, it's a single box for this pilot project: 23474 for Microsoft Forefront TMG Control saying: Forefront TMG detected Windows Filtering Platform filters that may cause policy conflicts on the server G1. The following providers may define filters that conflict with the Forefront TMG firewall policy: UAG-DA NLB. In the Security log *many* of the following, starting with my DCs immediately after booting, then other machines: 4653 for IPSec Main Mode Text in this varies by computer. I'm guessing that the IPSec failure audits are the root cause, but my googling is not revealing any magic sauce for me. Does the collective oracle have anything for this poor supplicant? Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin CONFIDENTIALITY STATEMENT: The information transmitted, or contained or attached to or with this Notice is intended only for the person or entity to which it is addressed and may contain Protected Health Information (PHI), confidential and/or privileged material. Any review, transmission, dissemination, or other use of, and taking any action in reliance upon this information by persons or entities other than the intended recipient without the express written consent of the sender are prohibited. This information may be protected by the Health Insurance Portability and Accountability Act of 1996 (HIPAA), and other Federal and Florida laws. Improper or unauthorized use or disclosure of this information could result in civil and/or criminal penalties. Consider the environment. Please don't print this e-mail unless you really need to. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: UAG now not working
Is this a server you built or an appliance? John W. Cook Systems Administrator Partnership for Strong Families - Original Message - From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Monday, April 09, 2012 08:39 PM To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Subject: Re: UAG now not working I'm not finding what you're referring to. I'm going to go home for the evening, and come at this with fresh eyes in the morning. My inclination is to start over, and redo the server from scratch, but I'd like to see if I can figure this out. Kurt On Fri, Apr 6, 2012 at 19:20, John Cook john.c...@pfsf.org wrote: I don't have access to one right now but I would go into the console for the rules and check through them. You can test them with a query I just don't remember the details. John W. Cook Systems Administrator Partnership for Strong Families - Original Message - From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Friday, April 06, 2012 08:54 PM To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Subject: UAG now not working So, DA/UAG worked yesterday, and I brought a laptop home and used it for a couple of hours last night, but since then I've been testing DA/UAG at work, one part of which was rebooting the UAG server to see what would happen, and after rebooting, the UAG server broke. The DCA utility on the clients shows that DA is broken. Oddly enough, though, I can put a laptop outside the network, and ping internal hosts and get directory listings of my file server and connect to internal web sites, all of which are Win2k3 machines. So, I poked around a bunch, and found the following: First thing I noticed is that the web site I put up on it for IPHTTPS was just gone. Not in IIS at all, just gone. I've recreated the web site, and it keeps disappearing, with and without reboots. It seems to be time dependent, though I'm not sure of that. I looked in the event logs, and find in the System log a set of three events that seem to be connected with the IPHTTPS web site disappearing: 15300 for HttpEvent saying: SSL Certificate Settings deleted for Port : 67.xxx.yyy.zzz443 . and 15300 for HttpEvent saying: SSL Certificate Settings deleted for Port : 0.0.0.0:6002 . and 15301 for HttpEvent saying: SSL Certificate Settings created by an admin process for Port : 0.0.0.0:6002 . In the Application log I found a couple of these that probably aren't related, but might be worth mentinoing - I'm not running an NLB configuration, it's a single box for this pilot project: 23474 for Microsoft Forefront TMG Control saying: Forefront TMG detected Windows Filtering Platform filters that may cause policy conflicts on the server G1. The following providers may define filters that conflict with the Forefront TMG firewall policy: UAG-DA NLB. In the Security log *many* of the following, starting with my DCs immediately after booting, then other machines: 4653 for IPSec Main Mode Text in this varies by computer. I'm guessing that the IPSec failure audits are the root cause, but my googling is not revealing any magic sauce for me. Does the collective oracle have anything for this poor supplicant? Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin CONFIDENTIALITY STATEMENT: The information transmitted, or contained or attached to or with this Notice is intended only for the person or entity to which it is addressed and may contain Protected Health Information (PHI), confidential and/or privileged material. Any review, transmission, dissemination, or other use of, and taking any action in reliance upon this information by persons or entities other than the intended recipient without the express written consent of the sender are prohibited. This information may be protected by the Health Insurance Portability and Accountability Act of 1996 (HIPAA), and other Federal and Florida laws. Improper or unauthorized use or disclosure of this information could result in civil and/or criminal penalties. Consider the environment. Please don't print this e-mail unless you really need to. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions
Re: UAG now not working
Built from scratch on a Dell PE 1950 with 16g RAM and a dual core proc. On Mon, Apr 9, 2012 at 18:31, John Cook john.c...@pfsf.org wrote: Is this a server you built or an appliance? John W. Cook Systems Administrator Partnership for Strong Families - Original Message - From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Monday, April 09, 2012 08:39 PM To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Subject: Re: UAG now not working I'm not finding what you're referring to. I'm going to go home for the evening, and come at this with fresh eyes in the morning. My inclination is to start over, and redo the server from scratch, but I'd like to see if I can figure this out. Kurt On Fri, Apr 6, 2012 at 19:20, John Cook john.c...@pfsf.org wrote: I don't have access to one right now but I would go into the console for the rules and check through them. You can test them with a query I just don't remember the details. John W. Cook Systems Administrator Partnership for Strong Families - Original Message - From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Friday, April 06, 2012 08:54 PM To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Subject: UAG now not working So, DA/UAG worked yesterday, and I brought a laptop home and used it for a couple of hours last night, but since then I've been testing DA/UAG at work, one part of which was rebooting the UAG server to see what would happen, and after rebooting, the UAG server broke. The DCA utility on the clients shows that DA is broken. Oddly enough, though, I can put a laptop outside the network, and ping internal hosts and get directory listings of my file server and connect to internal web sites, all of which are Win2k3 machines. So, I poked around a bunch, and found the following: First thing I noticed is that the web site I put up on it for IPHTTPS was just gone. Not in IIS at all, just gone. I've recreated the web site, and it keeps disappearing, with and without reboots. It seems to be time dependent, though I'm not sure of that. I looked in the event logs, and find in the System log a set of three events that seem to be connected with the IPHTTPS web site disappearing: 15300 for HttpEvent saying: SSL Certificate Settings deleted for Port : 67.xxx.yyy.zzz443 . and 15300 for HttpEvent saying: SSL Certificate Settings deleted for Port : 0.0.0.0:6002 . and 15301 for HttpEvent saying: SSL Certificate Settings created by an admin process for Port : 0.0.0.0:6002 . In the Application log I found a couple of these that probably aren't related, but might be worth mentinoing - I'm not running an NLB configuration, it's a single box for this pilot project: 23474 for Microsoft Forefront TMG Control saying: Forefront TMG detected Windows Filtering Platform filters that may cause policy conflicts on the server G1. The following providers may define filters that conflict with the Forefront TMG firewall policy: UAG-DA NLB. In the Security log *many* of the following, starting with my DCs immediately after booting, then other machines: 4653 for IPSec Main Mode Text in this varies by computer. I'm guessing that the IPSec failure audits are the root cause, but my googling is not revealing any magic sauce for me. Does the collective oracle have anything for this poor supplicant? Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin CONFIDENTIALITY STATEMENT: The information transmitted, or contained or attached to or with this Notice is intended only for the person or entity to which it is addressed and may contain Protected Health Information (PHI), confidential and/or privileged material. Any review, transmission, dissemination, or other use of, and taking any action in reliance upon this information by persons or entities other than the intended recipient without the express written consent of the sender are prohibited. This information may be protected by the Health Insurance Portability and Accountability Act of 1996 (HIPAA), and other Federal and Florida laws. Improper or unauthorized use or disclosure of this information could result in civil and/or criminal penalties. Consider the environment. Please don't print this e-mail unless you really need to. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~
Re: UAG now not working
Ours is an appliance but here's what I'd do. Go to the TMG console (the block wall), go to logs and reports' start a new query and try to get in via DA, you should see some info on why it's not working (which rule is blocking you). HTH John W. Cook Systems Administrator Partnership for Strong Families - Original Message - From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Monday, April 09, 2012 09:44 PM To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Subject: Re: UAG now not working Built from scratch on a Dell PE 1950 with 16g RAM and a dual core proc. On Mon, Apr 9, 2012 at 18:31, John Cook john.c...@pfsf.org wrote: Is this a server you built or an appliance? John W. Cook Systems Administrator Partnership for Strong Families - Original Message - From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Monday, April 09, 2012 08:39 PM To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Subject: Re: UAG now not working I'm not finding what you're referring to. I'm going to go home for the evening, and come at this with fresh eyes in the morning. My inclination is to start over, and redo the server from scratch, but I'd like to see if I can figure this out. Kurt On Fri, Apr 6, 2012 at 19:20, John Cook john.c...@pfsf.org wrote: I don't have access to one right now but I would go into the console for the rules and check through them. You can test them with a query I just don't remember the details. John W. Cook Systems Administrator Partnership for Strong Families - Original Message - From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Friday, April 06, 2012 08:54 PM To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Subject: UAG now not working So, DA/UAG worked yesterday, and I brought a laptop home and used it for a couple of hours last night, but since then I've been testing DA/UAG at work, one part of which was rebooting the UAG server to see what would happen, and after rebooting, the UAG server broke. The DCA utility on the clients shows that DA is broken. Oddly enough, though, I can put a laptop outside the network, and ping internal hosts and get directory listings of my file server and connect to internal web sites, all of which are Win2k3 machines. So, I poked around a bunch, and found the following: First thing I noticed is that the web site I put up on it for IPHTTPS was just gone. Not in IIS at all, just gone. I've recreated the web site, and it keeps disappearing, with and without reboots. It seems to be time dependent, though I'm not sure of that. I looked in the event logs, and find in the System log a set of three events that seem to be connected with the IPHTTPS web site disappearing: 15300 for HttpEvent saying: SSL Certificate Settings deleted for Port : 67.xxx.yyy.zzz443 . and 15300 for HttpEvent saying: SSL Certificate Settings deleted for Port : 0.0.0.0:6002 . and 15301 for HttpEvent saying: SSL Certificate Settings created by an admin process for Port : 0.0.0.0:6002 . In the Application log I found a couple of these that probably aren't related, but might be worth mentinoing - I'm not running an NLB configuration, it's a single box for this pilot project: 23474 for Microsoft Forefront TMG Control saying: Forefront TMG detected Windows Filtering Platform filters that may cause policy conflicts on the server G1. The following providers may define filters that conflict with the Forefront TMG firewall policy: UAG-DA NLB. In the Security log *many* of the following, starting with my DCs immediately after booting, then other machines: 4653 for IPSec Main Mode Text in this varies by computer. I'm guessing that the IPSec failure audits are the root cause, but my googling is not revealing any magic sauce for me. Does the collective oracle have anything for this poor supplicant? Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin CONFIDENTIALITY STATEMENT: The information transmitted, or contained or attached to or with this Notice is intended only for the person or entity to which it is addressed and may contain Protected Health Information (PHI), confidential and/or privileged material. Any review, transmission, dissemination, or other use of, and taking any action in reliance upon this information by persons or entities other than the intended recipient without the express written consent of the sender are prohibited. This information may be protected by the Health Insurance Portability and Accountability Act of 1996 (HIPAA), and other Federal and Florida laws. Improper or
