Third Party Load Balancing Active Directory

Similar Messages

• LOGON LOAD BALANCING WITH THIRD PARTY LOAD BALANCERS

  Hello Everybody,
  We would like to implement third party Application Load Balancers for all our Applications including SAP Landscape (HTTP and SAP LOGON).
  Could you please indicate which third party load balancers are compatibles with SAP LOGON GROUP LOAD BALANCING ? 
  Thanks for your help.
  Mauricio Cardozo.

  Hello Mayank,
  how we we can maintain the logon load balancing for http requests
  Use the SAP webdispatcher (and logon groups on services) for that ....
  http://help.sap.com/saphelp_nw04/helpdata/en/5f/7a343cd46acc68e10000000a114084/content.htm
  Regards
  Stefan

• Third-Party Licensing and Activation Toolkit for Labview 8.5

  There is any Third-Party Licensing and Activation Toolkit for Labview 8.5 as LV2010. PLS help..
  Solved!
  Go to Solution.

  I know what you are asking and in the other thread, you were told it was for 2010 only. There is some support for 2009 but not for your old version. Go with the dongle suggested or upgrade your version of LabVIEW.

• Settings for a third party app accessing the directory.

  I've only ever used Open Directory to control user access to our computers, wikis, etc.
  I am now using a VOIP Softphone called "Bria" which has the ability to connect to an LDAP server to access contact information.
  In the settings, it asks for:
  Server
  Authentication Method (Anonymous or Simple)
  User name (dn=)
  Credential
  Root DN
  Search Expression
  How to I find out what goes in these fields (I think I can figure out server, user name, and credential!;-))

  The following is far from a complete answer, and I don't have a Bria around to check.
  In the following, the host name with the Open Directory server is sls.example.net.  You'll need to substitute hunks of that host name in various parts of the following.  (Note that the terms used in the following are different than what you're using; they're a different application connecting to LDAP and performing user authentication, and not from a "Bria" device.)
  server = sls.example.net
  port = 389
  bind_dn = uid={your-ldap-user-here},cn=users,dc=sls,dc=example,dc=net
  bind_password = {your-ldap-password-here}
  base_dn = cn=users,dc=sls,dc=example,dc=net
  scope = sub
  port_security = none
  password_type = standard
  What little I can find on the search expression (basically, nothing) is shown in this posting.
  The other option according to this post appears to be to use Jabber/XMPP to get to this information, which should include iChat Server, which 10.6 does offer.
  Unless you find somebody here that's used this combination, I suspect you'll have to rummage LDAP with Workgroup Manager and the Bria, or get somebody to rummage for you.  I dislike devices that connect into LDAP.  Not because it's a bad idea, it's a great idea, but rather that I've yet to encounter a device that documented the LDAP connection decently.   It seemingly always involves rummaging, too.

• Global load balancing/active active vip and virtual interface redundancy

  Is there a way to configure both of these technologies without exposing the external addressing to the internal network? I have active active within the data center and would like to have active/active across two data centers but I don't see any way to use internal addressing for my content rules and still use them for dns unless I can specify records without using content rules. Thanks.
  http://www.cisco.com/en/US/products/hw/contnetw/ps789/products_configuration_example09186a008009438a.shtml
  http://www.cisco.com/en/US/products/hw/contnetw/ps792/products_configuration_guide_chapter09186a0080157898.html

  Hi Victor,
  In response to your questions regarding doing Active/Active GSLB using VIP and interface redundancy.
  Rule Based GSLB will not work with VIP/Interface
  redundancy.
  The reason is because the CSS can not set up an app session to a redundant
  interface, it needs to set the app session up to a real interface. Thus, a
  full mess topology must be used for GSLB and vip/interface redudancy.
  Bug ID CSddw27861 reported this problem and engineering added the command
  "ap-kal-vip" to support a full mess topology. This command can only be used
  under zone based GSLB and not rule based.
  The syntax for the command would be:
  dns-record a www.work.com 5.5.5.5 0 single kal-ap-vip 1.1.1.1
  rule/ACL based GSLB with vip/int redundancy will not work.
  Regards,
  Mark

• Load balancing on Integrated ITS

  Hi
  How do I setup load balancing on Integrated ITS.
  Windows 2003 server.
  Thanks

  Hello,
  You'll need a third party load balancer or you can use the SAP Web Dispatcher.  You can find more information on the SAP Web Dispatcher at: http://help.sap.com/saphelp_nw04/helpdata/en/42/5cfd3b0e59774ee10000000a114084/frameset.htm
  Edgar

• Load balancing for BPEL Cluster

  Can anybody tell how to configure the load balancer in BPEL Cluster ..? I am not able to get the correct documents for that. I want the request from the client can be redirect to any of the cluster server that will be having the PPEL Process deployed.
  Can i use third party load balancer also or can i use oracle http server as load balancer ....how to configure in both the case?

  Hi Dominik.
  Thanks for responding to my message.
  Where could i find more info relating to the WEB dispatcher.
  I also posted a message on OSS and SAP did not mention
  a WEB Dispatcher. (Startup Framework and the J2ee dispatcher handing the load balancing)
  Is the WEB dispatcher a must or are there alternate solutions. I am still confused on this topic ??
  On the current EP5 release, the load balancing is handled
  via MS Load Balancing.
  Thanks and appreciate the help !!
  Morgan
  Message was edited by: Morgan Moodley

• Load Balancing Directory Servers with Access Manager - Simple questions

  Hi.
  We are in the process of configuring 2 Access Manager instances (servers) accessing the same logical LDAP repository (comprising physically of two Directory Servers working together with Multi-Master Replication configured and tested) For doing this, we are following guide number 819-6258.
  The guide uses BigIP load balancer for load balancing the directory servers. However, we intend to use Directory Proxy Server. Since we faced some (unresolved) issues last time that we used DPS, there are some simple questions that I would be very grateful to have answers to:
  1. The guide, in section 3.2.10 (To configure Access Manager 1 with the Directory Server load balancer), talks about making changes at 4 places, and replacing the existing entry (hostname and port) with the load balancer's hostname and port (assuming that the load balancer has already been configured). It says that changes need not be made on Access Manager 2 since the LDAPs are in replication, and hence changes will be replicated at all places. However, the guide also states that changes have to be made in two files, namely AMConfig.properties, and the serverconfig.xml file. But these changes will not be reflected on Access Manager 2, since these files are local on each machine.
  Question 1. Do changes have to be made in AMConfig.properties and serverconfig.xml files on the other machine hosting Access Manager 2?
  Question 2: What is the purpose of putting these values here? Specifically, what is achieved by specifying the Directory server host and port in AMConfig.properties, as well as in serverconfig.xml?
  Question 3. In the HTTP console, there is the option of specifying multiple primary LDAP servers, as well as multiple secondary LDAP servers. What is the purpose of these? Are secondary servers attempted when none of the list in the primary list are accessible? Also, if there are multiple entries in the primary server list, are they accessed in a round robin fashion (hereby providing rudimentary load balancing), or are other servers accessed only when the one mentioned first is not reachable etc.?
  2. Since I do not have a load balancer setup yet, I tried the following deviation to the above, which, according to me, should have worked. If viewed in the HTTP console, LDAP / Membership / MSISDN and Policy configuration all pointed to the DS on host 1. When I changed all these to point to the directory server on host 2 (and made AMConfig.properties and serverconfig.xml on host 1 point to DS of host 2 as well), things should have worked fine, but apparently Access manager 1 could not be started. Error from Webserver:
  [14/Aug/2006:04:30:36] info (13937): WEB0100: Loading web module in virtual server [https-machine_1_FQDN] at [search]
  [14/Aug/2006:04:31:48] warning (13937): CORE3283: stderr: Exception in thread "EventService" java.lang.ExceptionInInitializerError
  [14/Aug/2006:04:31:48] warning (13937): CORE3283: stderr: at com.iplanet.services.ldap.event.EventServicePolling.run(EventServicePolling.java:132)
  [14/Aug/2006:04:31:48] warning (13937): CORE3283: stderr: at java.lang.Thread.run(Thread.java:595)
  [14/Aug/2006:04:31:48] warning (13937): CORE3283: stderr: Caused by: java.lang.InterruptedException
  [14/Aug/2006:04:31:48] warning (13937): CORE3283: stderr: at com.sun.identity.sm.ServiceManager.<clinit>(ServiceManager.java:74)
  [14/Aug/2006:04:31:48] warning (13937): CORE3283: stderr: ... 2 more
  In effect, AM on 1 did not start. On rolling back the changes, things again worked like previously.
  Will be really grateful for any help / insight / experience on dealing with the above.
  Thanks!

  Update to the above, incase anyone is reading:
  We setup a similar setup in Windows, and it worked. Here is a detailed account of what was done:
  1. Host 1: Start installer, install automatically, chose Directory server, Directory Administration server, Directory Proxy server, Web server, Access Manager.
  All installed, and worked fine. (AMConfig.properties, serverconfig.xml, and the info in LDAP service, all pointed to HOST1:389)
  2. Host 2: Start installer, install automatically, chose Directory server, Directory Administration server, Directory Proxy server, Web server, Access Manager.
  All installed, and worked fine. (AMConfig.properties, serverconfig.xml, and the info in LDAP service, all pointed to HOST2:389)
  3. Host 1: Started replication. Set to Master
  4. Host 2: Started replication. Set to Master
  5. Host 1: Setup replication agreement to Host 2
  6. Host 2: Setup replication agreement to Host 1
  7. Initiated the remote replica from Host 1 ----> Host 2
  Note that since default installation uses abc.....xyz as the encryption key, setting this to same was not an issue.
  9. Started webserver for Host 1 and logged into AM as amadmin.
  10. Added Host 2 FQDN in DNS Aliases / Realms
  11. Added http://HOST2_FQDN:80 in the Platform server (instance) list.
  12. Started Host 2 webserver. Logged in AM on Host 2, things worked fine.
  At this stage, note the following:
  a) Host 1:
  AMConfig.properties file has
  com.iplanet.am.directory.host=host1_FQDN
  and
  com.iplanet.am.directory.port=389
  serverconfig.xml has:
  <Server name="Server1" host="host1_FQDN" port="389" type="SIMPLE" />
  b) Host 2:
  AMConfig.properties file has
  com.iplanet.am.directory.host=host2_FQDN
  and
  com.iplanet.am.directory.port=389
  serverconfig.xml has:
  <Server name="Server1" host="host2_FQDN" port="389" type="SIMPLE" />
  c) If one logs into AM, and checks LDAP servers for LDAP / Policy Configuration / Membership etc services, they all contain Host2_FQDN:389 (which makes sense, since replica 2 was initialized from 1)
  Returning back to the configuations:
  13. On Host 1, login into the Admin server console of the Directory server. Navigate to the DPS, and confgure the following:
  a) Network Group
  b) LDAP servers
  c) Load Balancing
  d) Change Group
  e) Action on-bind
  f) Allow all actions (permit modification / deletion etc.).
  g) any other configuations required - Am willing to give detailed steps if someone needs them to help me / themselves! :)
  So now, we have DPS configured and running on Host1:489, and distributing load to DS1 and DS2 on a 50:50 basis.
  14. Now, log into AM on Host 1, and instead of Host1_fqdn:389 (for DS) in the following places, specify Host1_fqdn:489 (for the DPS)--
  LDAP Authentication
  MSISDN server
  Membership Service
  Policy configuation.
  Verified that this propagated to the Policy Configuration service and the LDAP authentication service that are already registered with the default organization.
  15. Log out of AM. Following the documentation, modify directory.host and directory.port in AMConfig.properties to point to Host 1_FQDN and 489 respectively. Make this change in AMConfig.properties of both Host 1 as well as 2.
  16. Edit serverconfig.xml on both hosts, and instead of they pointing to their local directory servers, point both to host1_FQDN:489
  17. When you start the webserver, it will refuse to start. Will spew errors such as:
  [https-host1_FQDN]: Sun ONE Web Server 6.1SP5 B06/23/2005 17:36
  [https-host1_FQDN]: info: CORE3016: daemon is running as super-user
  [https-host1_FQDN]: info: CORE5076: Using [Java HotSpot(TM) Server VM, Version 1.5.0_04] from [Sun Microsystems Inc.]
  [https-host1_FQDN]: info: WEB0100: Loading web module in virtual server [https-host1_FQDN] at [amserver]
  [https-host1_FQDN]: warning: WEB6100: locale-charset-info is deprecated, please use parameter-encoding
  [https-host1_FQDN]: info: WEB0100: Loading web module in virtual server [https-host1_FQDN] at [ampassword]
  [https-host1_FQDN]: warning: WEB6100: locale-charset-info is deprecated, please use parameter-encoding
  [https-host1_FQDN]: info: WEB0100: Loading web module in virtual server [https-host1_FQDN] at [amcommon]
  [https-host1_FQDN]: info: WEB0100: Loading web module in virtual server [https-host1_FQDN] at [amconsole]
  [https-host1_FQDN]: warning: WEB6100: locale-charset-info is deprecated, please use parameter-encoding
  [https-host1_FQDN]: info: WEB0100: Loading web module in virtual server [https-host1_FQDN] at [search]
  [https-host1_FQDN]: warning: CORE3283: stderr: netscape.ldap.LDAPException: error result (32); matchedDN = dc=sun,dc=com; No such object (DN changed)
  [https-host1_FQDN]: warning: CORE3283: stderr: Got LDAPServiceException code=-1
  [https-host1_FQDN]: warning: CORE3283: stderr: at com.iplanet.services.ldap.DSConfigMgr.getConnection(DSConfigMgr.java:357)
  [https-host1_FQDN]: warning: CORE3283: stderr: at com.iplanet.services.ldap.DSConfigMgr.getNewFailoverConnection(DSConfigMgr.java:314)
  [https-host1_FQDN]: warning: CORE3283: stderr: at com.iplanet.services.ldap.DSConfigMgr.getNewConnection(DSConfigMgr.java:253)
  [https-host1_FQDN]: warning: CORE3283: stderr: at com.iplanet.services.ldap.DSConfigMgr.getNewProxyConnection(DSConfigMgr.java:184)
  [https-host1_FQDN]: warning: CORE3283: stderr: at com.iplanet.services.ldap.DSConfigMgr.getNewProxyConnection(DSConfigMgr.java:194)
  [https-host1_FQDN]: warning: CORE3283: stderr: at com.iplanet.ums.DataLayer.initLdapPool(DataLayer.java:1248)
  [https-host1_FQDN]: warning: CORE3283: stderr: at com.iplanet.ums.DataLayer.(DataLayer.java:190)
  [https-host1_FQDN]: warning: CORE3283: stderr: at com.iplanet.ums.DataLayer.getInstance(DataLayer.java:215)
  [https-host1_FQDN]: warning: CORE3283: stderr: at com.iplanet.ums.DataLayer.getInstance(DataLayer.java:246)
  [https-host1_FQDN]: warning: CORE3283: stderr: at com.sun.identity.sm.ldap.SMSLdapObject.initialize(SMSLdapObject.java:156)
  [https-host1_FQDN]: warning: CORE3283: stderr: at com.sun.identity.sm.ldap.SMSLdapObject.(SMSLdapObject.java:124)
  [https-host1_FQDN]: warning: CORE3283: stderr: at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
  [https-host1_FQDN]: warning: CORE3283: stderr: at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:39)
  [https-host1_FQDN]: warning: CORE3283: stderr: at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:27)
  [https-host1_FQDN]: warning: CORE3283: stderr: at java.lang.reflect.Constructor.newInstance(Constructor.java:494)
  [https-host1_FQDN]: warning: CORE3283: stderr: at java.lang.Class.newInstance0(Class.java:350)
  [https-host1_FQDN]: warning: CORE3283: stderr: at java.lang.Class.newInstance(Class.java:303)
  [https-host1_FQDN]: warning: CORE3283: stderr: at com.sun.identity.sm.SMSEntry.(SMSEntry.java:216)
  [https-host1_FQDN]: warning: CORE3283: stderr: at com.sun.identity.sm.ServiceSchemaManager.(ServiceSchemaManager.java:67)
  [https-host1_FQDN]: warning: CORE3283: stderr: at com.iplanet.am.util.AMClientDetector.getServiceSchemaManager(AMClientDetector.java:219)
  [https-host1_FQDN]: warning: CORE3283: stderr: at com.iplanet.am.util.AMClientDetector.(AMClientDetector.java:94)
  [https-host1_FQDN]: warning: CORE3283: stderr: at com.sun.mobile.filter.AMLController.init(AMLController.java:85)
  [https-host1_FQDN]: warning: CORE3283: stderr: at org.apache.catalina.core.ApplicationFilterConfig.getFilter(ApplicationFilterConfig.java:262)
  [https-host1_FQDN]: warning: CORE3283: stderr: at org.apache.catalina.core.ApplicationFilterConfig.setFilterDef(ApplicationFilterConfig.java:322)
  [https-host1_FQDN]: warning: CORE3283: stderr: at org.apache.catalina.core.ApplicationFilterConfig.(ApplicationFilterConfig.java:120)
  [https-host1_FQDN]: warning: CORE3283: stderr: at org.apache.catalina.core.StandardContext.filterStart(StandardContext.java:3271)
  [https-host1_FQDN]: warning: CORE3283: stderr: at org.apache.catalina.core.StandardContext.start(StandardContext.java:3747)
  [https-host1_FQDN]: warning: CORE3283: stderr: at com.iplanet.ias.web.WebModule.start(WebModule.java:251)
  [https-host1_FQDN]: warning: CORE3283: stderr: at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1133)
  [https-host1_FQDN]: warning: CORE3283: stderr: at org.apache.catalina.core.StandardHost.start(StandardHost.java:652)
  [https-host1_FQDN]: warning: CORE3283: stderr: at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1133)
  [https-host1_FQDN]: warning: CORE3283: stderr: at org.apache.catalina.core.StandardEngine.start(StandardEngine.java:355)
  [https-host1_FQDN]: warning: CORE3283: stderr: at org.apache.catalina.startup.Embedded.start(Embedded.java:995)
  [https-host1_FQDN]: warning: CORE3283: stderr: at com.iplanet.ias.web.WebContainer.start(WebContainer.java:431)
  [https-host1_FQDN]: warning: CORE3283: stderr: at com.iplanet.ias.web.WebContainer.startInstance(WebContainer.java:500)
  [https-host1_FQDN]: warning: CORE3283: stderr: at com.iplanet.ias.server.J2EERunner.confPostInit(J2EERunner.java:161)
  [https-host1_FQDN]: failure: WebModule[amserver]: WEB2783: Servlet /amserver threw load() exception
  [https-host1_FQDN]: javax.servlet.ServletException: WEB2778: Servlet.init() for servlet LoginLogoutMapping threw exception
  [https-host1_FQDN]: at org.apache.catalina.core.StandardWrapper.loadServlet(StandardWrapper.java:949)
  [https-host1_FQDN]: at org.apache.catalina.core.StandardWrapper.load(StandardWrapper.java:813)
  [https-host1_FQDN]: at org.apache.catalina.core.StandardContext.loadOnStartup(StandardContext.java:3478)
  [https-host1_FQDN]: at org.apache.catalina.core.StandardContext.start(StandardContext.java:3760)
  [https-host1_FQDN]: at com.iplanet.ias.web.WebModule.start(WebModule.java:251)
  [https-host1_FQDN]: at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1133)
  [https-host1_FQDN]: at org.apache.catalina.core.StandardHost.start(StandardHost.java:652)
  [https-host1_FQDN]: at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1133)
  [https-host1_FQDN]: at org.apache.catalina.core.StandardEngine.start(StandardEngine.java:355)
  [https-host1_FQDN]: at org.apache.catalina.startup.Embedded.start(Embedded.java:995)
  [https-host1_FQDN]: at com.iplanet.ias.web.WebContainer.start(WebContainer.java:431)
  [https-host1_FQDN]: at com.iplanet.ias.web.WebContainer.startInstance(WebContainer.java:500)
  [https-host1_FQDN]: at com.iplanet.ias.server.J2EERunner.confPostInit(J2EERunner.java:161)
  [https-host1_FQDN]: ----- Root Cause -----
  [https-host1_FQDN]: java.lang.NullPointerException
  [https-host1_FQDN]: at com.sun.identity.authentication.UI.LoginLogoutMapping.init(LoginLogoutMapping.java:71)
  [https-host1_FQDN]: at org.apache.catalina.core.StandardWrapper.loadServlet(StandardWrapper.java:921)
  [https-host1_FQDN]: at org.apache.catalina.core.StandardWrapper.load(StandardWrapper.java:813)
  [https-host1_FQDN]: at org.apache.catalina.core.StandardContext.loadOnStartup(StandardContext.java:3478)
  [https-host1_FQDN]: at org.apache.catalina.core.StandardContext.start(StandardContext.java:3760)
  [https-host1_FQDN]: at com.iplanet.ias.web.WebModule.start(WebModule.java:251)
  [https-host1_FQDN]: at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1133)
  [https-host1_FQDN]: at org.apache.catalina.core.StandardHost.start(StandardHost.java:652)
  [https-host1_FQDN]: at org.apache.catalina.core.ContainerBase.start(ContainerBase.java:1133)
  [https-host1_FQDN]: at org.apache.catalina.core.StandardEngine.start(StandardEngine.java:355)
  [https-host1_FQDN]: at org.apache.catalina.startup.Embedded.start(Embedded.java:995)
  [https-host1_FQDN]: at com.iplanet.ias.web.WebContainer.start(WebContainer.java:431)
  [https-host1_FQDN]: at com.iplanet.ias.web.WebContainer.startInstance(WebContainer.java:500)
  [https-host1_FQDN]: at com.iplanet.ias.server.J2EERunner.confPostInit(J2EERunner.java:161)
  [https-host1_FQDN]:
  [https-host1_FQDN]: info: HTTP3072: [LS ls1] http://host1_FQDN:58080 [i]ready to accept requests
  [https-host1_FQDN]: startup: server started successfully
  Success!
  The server https-host1_FQDN has started up.
  The server infact, didn't start up (nothing even listening on 58080).
  However, if AMConfig.properties is left as it originally was, and only serverconfig.xml files were changed as mentioned above, web servers started fine, and things worked all okay. (Alright, except for some glitches when viewed in /amconsole. If /amserver/console is accessed, all is good. Can this mean that all is still not well? I am not sure).
  So far so good. Now comes the sad part. When the same is done on Solaris 9, things dont work. You continue to get the above error, OR the following error, and the web server will refuse to start:
  Differences in Solaris and Windows are as follows:
  1. Windows hosts have 1 IP and hostname. Solaris hosts have 3 IPs and hostnames (for DS, DPS, and webserver).
  No other difference from an architectural perspective.
  Any help / insight on why the above is not working (and why the hell does the documentation seem so sketchy / insecure / incorrect).
  Thanks a bunch!

• Bulk create Active Directory Users and Groups in PowerShell using Excel XLSX source file instead of CSV

  Hi Scripting Guy.  I am a Server Administrator who is very familiar with Active Directory, but new to PowerShell.  Like many SysAdmins, I often need to create multiple accounts (ranging from 3-200) and add them multiple groups (ranging
  from 1 - 100).  Previously I used VBS scripts in conjunction with an Excel .XLS file (not CSV file).  Since VBS is essentially out the door and PowerShell is in - I am having to re-create everthing.
  I have written a PowerShell script that bulk creates my users and adds them to their corresponding groups - however, this can only use a CSV file (NOT an XLS file).  I understand that "CSV is much easier to use than Excel worksheets", but
  most times I have three sets of nearly identical groups (for Dev, QA and Prod).  Performing Search and Replace on the Excel template across all four Worksheets ensures the names used are consistent throughout the three environments.
  I know each Excel Worksheet can be exported as a separate CSV file and then use the PowerShell scripts as is, but since I am not the only SysAdmin who will be using these it leads to "unnecessary time lost", not to mention the reality that even
  though you clearly state "These tabs need to be exported using this naming standard" (to work with the PowerShell scripts) that is not the result.
  I've been tasked to find a way to modify my existing PowerShell/CSV scripts to work with Excel spreadsheets/workbooks instead - with no success.  I have run across many articles/forums/scirpts that let you update Excel or export AD data into an Excel
  spreadsheet (even specifying the worksheet, column and row) - but nothing for what I am trying to do.
  I can't imagine that I am the ONLY person who is in this situation/has this need.  So, I am hoping you can help.  How do I modify my existing scripts to reference "use this Excel spreadsheet, and this specific worksheet in the spreadsheet
  prior to performing the New-ADUser/Add-ADGroupMember commands".
  For reference, I am including Worksheet/Column names of my Excel Spreadsheet Template as well as the first part of my PowerShell script.  M-A-N-Y T-H-A-N-K-S in advance.
     Worksheet:  Accounts
       Columns: samAccountName, CN_DisplayName_Name, sn_LastName, givenName_FirstName, Password, Description, TargetOU
     Worksheets:  DevGroups / QAGroups / ProdGroups
       Columns:  GroupName, Members, MemberOf, Description, TargetOU
  # Load PowerShell Active Directory module
  Write-Host "Loading Active Directory PowerShell module." -foregroundcolor DarkCyan # -backgroundcolor Black
  Import-Module ActiveDirectory
  Write-Host " "
  # Set parameter for location of CSV file (so source file only needs to be listed once).
  $path = ".\CreateNewUsers-CSV.csv"
  # Import CSV file as data source for remaining script.
  $csv = Import-Csv -path $path | ForEach-Object {
  # Add '@saccounty.net' suffix to samAccountName for UserPrincipalName
  $userPrincinpal = $_."samAccountName" + "@saccounty.net"
  # Create and configure new AD User Account based on information from the CSV source file.
  Write-Host " "
  Write-Host " "
  Write-Host "Creating and configuring new user account from the CSV source file." -foregroundcolor Cyan # -backgroundcolor Black
  New-ADUser -Name $_."cn_DisplayName_Name" `
  -Path $_."TargetOU" `
  -DisplayName $_."cn_DisplayName_Name" `
  -GivenName $_."givenName_FirstName" `
  -SurName $_."sn_LastName" `
  -SamAccountName $_."samAccountName" `
  -UserPrincipalName $userPrincinpal `

  Here is the same script as a function:
  Function Get-ExcelSheet{
  Param(
  $fileName = 'C:\scripts\test.xls',
  $sheetName = 'csv2'
  $conn = New-Object System.Data.OleDb.OleDbConnection("Provider=Microsoft.Jet.OLEDB.4.0;Data Source = $fileName;Extended Properties=Excel 8.0")
  $cmd=$conn.CreateCommand()
  $cmd.CommandText="Select * from [$sheetName$]"
  $conn.open()
  $cmd.ExecuteReader()
  It is called like this:
  Get-ExcelSheet -filename c:\temp\myfilename.xslx -sheetName mysheet
  Do NOT change anything in the function and post the exact error.  If you don't have Office installed correctly or are running 64 bits with a 32 bit session you will have to adjust your system.
  ¯\_(ツ)_/¯
  HI JRV,
  My apologies for not responding sooner - I was pulled off onto another project this week.  I have included and called your Get-ExcelSheet function as best as I could...
  # Load PowerShell Active Directory module
  Write-Host "Loading Active Directory PowerShell module." -foregroundcolor DarkCyan # -backgroundcolor Black
  Import-Module ActiveDirectory
  Write-Host " "
  # JRV This Function Loads the Excel Reader
  Function Get-ExcelSheet{
  Param(
  $fileName = 'C:\scripts\test.xls',
  $sheetName = 'csv2'
  $conn = New-Object System.Data.OleDb.OleDbConnection("Provider=Microsoft.Jet.OLEDB.4.0;Data Source = $fileName;Extended Properties=Excel 8.0")
  $cmd=$conn.CreateCommand()
  $cmd.CommandText="Select * from [$sheetName$]"
  $conn.open()
  $cmd.ExecuteReader()
  # Set parameter for location of CSV file (so source file only needs to be listed once) as well as Worksheet Names.
  $sourceFile = ".\NewDocClass-XLS-Test.xlsx"
  # Add '@saccounty.net' suffix to samAccountName for UserPrincipalName
  $userPrincinpal = $_."samAccountName" + "@saccounty.net"
  # Combine GivenName & SurName for DisplayName
  $displayName = $_."sn_LastName" + ". " + $_."givenName_FirstName"
  # JRV Call the Get-ExcelSheet function, providing FileName and SheetName values
  # Pipe the data from source for remaining script.
  Get-ExcelSheet -filename "E:\AD_Bulk_Update\NewDocClass-XLS-Test.xlsx" -sheetName "Create DocClass Accts" | ForEach-Object {
  # Create and configure new AD User Account based on information from the CSV source file.
  Write-Host " "
  Write-Host " "
  Write-Host "Creating and configuring new user account from the CSV source file." -foregroundcolor Cyan # -backgroundcolor Black
  New-ADUser -Name ($_."sn_LastName" + ". " + $_."givenName_FirstName") `
  -SamAccountName $_."samAccountName" `
  -UserPrincipalName $userPrincinpal `
  -Path $_."TargetOU" `
  Below is the errors I get:
  Exception calling "Open" with "0" argument(s): "The 'Microsoft.Jet.OLEDB.4.0'
  provider is not registered on the local machine."
  At E:\AD_Bulk_Update\Create-BulkADUsers-XLS.ps1:39 char:6
  + $conn.open()
  + ~~~~~~~~~~~~
  + CategoryInfo : NotSpecified: (:) [], MethodInvocationException
  + FullyQualifiedErrorId : InvalidOperationException
  Exception calling "ExecuteReader" with "0" argument(s): "ExecuteReader
  requires an open and available Connection. The connection's current state is
  closed."
  At E:\AD_Bulk_Update\Create-BulkADUsers-XLS.ps1:40 char:6
  + $cmd.ExecuteReader()
  + ~~~~~~~~~~~~~~~~~~~~
  + CategoryInfo : NotSpecified: (:) [], MethodInvocationException
  + FullyQualifiedErrorId : InvalidOperationException

• Unable to add Active Directory: Kerberos Client trace scenario configuraiton

  Hi,
  While trying to add Active Directory: Kerberos Client trace scenario configuraiton, I am getting this error message in the log (see below).
  What am I missing?
  Thanks
  Alex.
  6/24/2014 10:09:18 AM Information running ETW Manifest Import Adapter on supplemental OPN: done
  6/24/2014 10:09:18 AM Warning Cannot create ETW manifest loader for Active Directory: Kerberos Client: The system cannot find the file specified. Please check that the manifest is properly installed
  6/24/2014 10:09:18 AM Information running ETW Manifest Import Adapter on Active_Directory__Kerberos_Client: completed successfully
  6/24/2014 10:09:18 AM Error running ETW Manifest Import Adapter on Active_Directory__Kerberos_Client: Unexpected exception happened: The given key was not present in the dictionary. stacktrace:    at Microsoft.Opn.Runtime.Messaging.Etw.GeneratedOpnCacheManager.ImportEtwProviderMetadata(Guid
  providerId, EtwManifestResolver manifestResolver, Boolean reportConflicts)
  Product Technical Specialist in Identity Management, Microsoft Canada. http://blogs.msdn.com/alextch

  Active Directory: Kerberos Client is MOF based ETW provider.
  Looks like PEF/Message Analyzer version which your using doesn't have parsing of events from MOF based providers.
  We added support MOF based ETW providers in PEF/MA v1.0.2 . What is PEF/MA version your using?
  Alternatively, you can use LinkLayer/Firewall Trace Scenarios to get the Kerberos Network traffic or other Kerberos Manifest based ETW providers for example "Microsoft-Windows-Security-Kerberos" etw provider if these providers produce any ETW events.

• Load Balancing Windows File Share? Doable ??

  So I have a storage design question. The goal of this question is to find out how to best design a high availability storage solution without a single point of failure (SPF). 
  We need a storage location that needs to be accessed via an smb share in format of \\servername\sharename. We need to have an extremely high available solution as this share will be used to host remote IIS files and other important files being used by multiple
  web servers. The most ideal solution is if there is a way to load balance an SMB fileshare so that it can be accessed by \\loadbalanced_name\sharename. 
  I am not sure if such technology exists for Windows 2008, Windows Storage Server, or with using 3rd party load balancing / file server / iscsi solution. 
  The current setup of our high available fileshare is with using Windows Clustering with 2 file servers attached to a singled Direct Attached Storage (DAS). Although we never really have an issue with this design, we would like to entirely eliminate the single
  point of failure of the DAS.
  So, any ideas / Input from anyone? 
  Thanks in advance!
  Ed

  In message
  <[email protected]> ed
  4t wowrack.com was claimed to have wrote:
  hmm after thinking about this a little bit more, I guess I can use DFS. 
  However, I used to run a corporate file server for mid size company of 400 people using windows 2003 and I hated the replication to the guts. It doesn't seem to work well for large volumes... 
  FRS had issues, especially with large volumes.  DFS-R solves that.
  More importantly, DFS and DFS-R can be used independently, so if you
  can't figure out how to get DFS-R working for you, you can always look
  into your own replication scheme and just use DFS to get clients to the
  appropriate server.

• Load Balancing - BSP Applications

  Hi All,
  Our current system has lot of custom BSP Applications. Recently the basis/network teams have taken up load balancing activities to better manage the workload.
  We have observed after the load balancing activity came into play that our BSP calls have been failing(end in ST22 dumps) more frequently then they were happening before.
  Failure rate : % of BSP calls ending in ST22 dumps.
  Failure rate before load balancing : < 3%.
  Failure rate after load balancing : > 25%.
  There has been no code change recently.
  Dump analysis points to a new line of code each time, also point to standard SAP code most of the times.
  Does anyone know what are we doing wrong?
  Let me know in case you have more questions.
  Regards,
  Karthik

  Hi!
  In order to really use Load Balancing for BSPs you can
  1. install and use SAP Web Dispatcher (no Redirect) or
  2. use the SAP Message Server (=Redirect)
  In both cases you have to adjust your URLs to the server and port of Web Dispatcher resp. Message Server.
  What kind/types of dumps do you get?
  Regards,
  Volker

• Cisco load balancer?

  Just curious if anybody has tried using a Cisco load balancer with Directory Server (5.x.) Specifically:
  http://www.cisco.com/warp/public/cc/pd/si/11000/prodlit/cs105_ds.htm
  (They start out talking about web, but if you look further down you'll see they also support LDAP.)
  Here's my thought: get two 5.x servers in multi-master configuration behind one of these Cisco products. That way applications that like to cache DNS info on the LDAP server they should be using won't get confused if one of the hosts is taken down for upgrades/whatever. Thoughts?
  I guess the other way to handle this would be to run Sun Cluster + necessary stuff for LDAP. Any unbiased opinions as to which approach might be better? ;-)

  Or use the Directory Proxy (aka iDAR)...
  We have customers using the Cisco load balancer with Directory server 5. Others are using iDAR, others use Sun Cluster... Can't tell which approach is better.
  The only issue I forsee with a load balancer in front of 2 masters, is that it may increase the risks of conflicts if the servers are not fully synchronized (such as under heavy load).
  Regards,
  Ludovic.

• RD Connection Broker, do I need any third party items to do load balancing?

  RD Connection Broker does load balancing and session reconnect.  Are there limitations to its load balancing features? (i.e. reasons to go with a third party solution) 
  Also is it a stand a lone service do we need specific network/services to make it work?

  Hi,
  Remote Desktop Connection Broker enables you to evenly distribute the session load among RD Session Host servers in a load-balanced RD Session Host server farm.
  More information:
  Installing and Configuring RD Connection Broker High Availability in Windows Server 2012
  http://social.technet.microsoft.com/wiki/contents/articles/10391.installing-and-configuring-rd-connection-broker-high-availability-in-windows-server-2012.aspx
  Overview of Remote Desktop Connection Broker (RD Connection Broker)
  http://technet.microsoft.com/en-us/library/cc772245.aspx
  Hope this helps.
  Jeremy Wu
  TechNet Community Support

• Load balancing in Active-Passive architecture

  1) Is it possible to have load balancing in Active-Passive architecture?
  2) Pros & cons of RAC and Vertias cluster
  Cheers,
  Ashok Kumar C.

  Note:183408.1
  Note:259301.1
  Please see the above notes for anwers. Hope it helps.
  Though Oracle says that it does not need third party cluster software for RAC installation (Note:259301.1)
  , my experience on AIX was different, without HACMP in place we could not install Oracle CRS.
  On windows and Linux you do not need third party cluster software (Note:183408.1) ) and I did not need to use any third party cluster software on Linux platform.