AD ignoring PoSiXGroup Permissions set on 10.4.11 Server
I have an Xserve running 10.4.11 which is joined to AD and uses the AD's kerberos for authentication / single sign-on. The file shares are hosted on a RAID volume connected to the Xserve. Groups are created in OD and populated with the AD users.
Problem i have is as follows. Around a week ago, AFP seemed to screw up and freeze the Xserve. End result was an attempted restart which locked, forced shut down and cold boot.
Since then, kerberos just seems to ignore any Group permissions that are set. Tried unbinding / rebinding server, deleting group, creating groups and shares from scratch, overwriting Kerberos config, checked that services are pointed to the right place etc.
Any suggestions?
Oops, wrong place - can a moderator please move? Ta
Similar Messages
-
OS 10.4.11 FTP Permissions set to 640 on Upload
I have a G4 in my classroom running OS 10.4.11 (not OS X Server) with Personal Web Sharing and FTP turned on. My students upload web pages to it over FTP. Whenever they upload a NEW file, permissions get set to 640 on the server. Of course this prevents anyone from browsing to the web pages, defeating the whole purpose. Permissions are set to 640 no matter the permissions of the original file, and no matter which FTP client I use. (I've tried Dreamweaver, FireFTp, and command line FTP in the Terminal.) In order for the web pages to be browsable, I have to go in and manually change permissions to something sensible like 644, which is impractical because there are 40 students constantly updating their web pages. If they upload a REPLACEMENT file, the permissions are not modified and everything is OK.
Last year we were running OS 10.2, and there was a fix in which I set the ftp unmask by creating a file /etc/ftpd.conf which had one line saying:
umask all 022
But since upgrading to 10.4, I tried this fix and it no longer works.There's many ways to accomplish this, but I'd use Sharepoints...
http://www.hornware.com/sharepoints/
Set up a Normal Share, Give it the AFP/SMB Sharing you need, click on the Show File System Properties, set the Owner, Group, & Permissions, click on the inherit Permissions from Parent, Update Share.
If that doesn't work there's always BatchMod to drop the whole Share on and change Permissions wholesale in one swoop. -
File Receiver Adapter - writes empty message although ignore flag is set
Hi,
i have an file FTP receiver channel configured with content conversion. I also have set the "Empty-Message-Handling" flag to "Ignore", so empty messages with 0 kb are not written to the FTP server.
My problem is now: empty file are written to FTP server although this flag is set to "Ignore".
For example: A message with the following content arrives at my receiver adapter:
<?xml version="1.0" encoding="UTF-8"?>
<ns0:MT_ArticleMaster xmlns:ns0="http://ihle.com/tyredating/core"></ns0:MT_ArticleMaster>
The resulting file has 0kb.
Does anyone have an idea why empty message are not getting ignored by this setting? Although the flag is set?
Thanks in advance,
MS
System: PI 7.1 SP 7
Edited by: Manuel Schlestein on May 12, 2009 5:17 PM>
Manuel Schlestein wrote:
> Hi,
>
> i have an file FTP receiver channel configured with content conversion. I also have set the "Empty-Message-Handling" flag to "Ignore", so empty messages with 0 kb are not written to the FTP server.
>
> My problem is now: empty file are written to FTP server although this flag is set to "Ignore".
>
> For example: A message with the following content arrives at my receiver adapter:
>
> <?xml version="1.0" encoding="UTF-8"?>
> <ns0:MT_ArticleMaster xmlns:ns0="http://ihle.com/tyredating/core"></ns0:MT_ArticleMaster>
>
> The resulting file has 0kb.
>
> Does anyone have an idea why empty message are not getting ignored by this setting? Although the flag is set?
>
> Thanks in advance,
> MS
>
> System: PI 7.1 SP 7
>
> Edited by: Manuel Schlestein on May 12, 2009 5:17 PM
ideally the file adapter will expect a message with no content in it. so i suggest you use a simple java mapping to check if there is any content between the tags, if there is no content then write out an empty string to the outputstream else pass the same inputstream out -
Access denied for folder when permissions set with WMI
Hi,
When I add/modify access rights based on the Win32_ACE class, there seems to be a difference in the result, then when setting it with the GUI in Windows.
The situation is as follow:
I want to set Modify access on a remote folder, but also want to avoid deletion of the folder itself. This can easily be done by setting "deny delete on this folder only" in addition to "allow modify to this folder, files and subfolders".
So far no issue.
Now I notice that, although the GUI shows exactly the same result in advanced settings of the security property, the folder set with WMI script gives a deny when opening it with the user account. The same folder, set with the same security and result in
the advanced tab, but set in the GUI, works fine.
Note: The reason that I use WMI is because the remote system is a standalone machine, not sharing the same domain or trust.
I compared the ACEFlags, AceType and AccessMask for both the GUI set and script set permissions, and they are exactly the same.
GUI => AccessMask:1179817 AceType:0 iAceFlags:3
Script => AccessMask:1179817 AceType:0 iAceFlags:3
What a strange world we live in... :-)
Any idea?What Operating System Interface are you referring? What program?
You are being obtuse. What is it that you are trying to compare. THe settings in WMI cannot be directly compared to anything in the Security Wizard.
¯\_(ツ)_/¯
Just the properties of the folder in Windows on the security tab. The result is the same for both the permissions set with the interface as well as the one set with the WMI script. The two references you see are just taken with WMI:
Set by Windows interface => AccessMask:1179817 AceType:0 iAceFlags:3
Set by WMI script => AccessMask:1179817 AceType:0 iAceFlags:3
This are the values "AceFlags", "AceType" and "AccessMask" from management class WIN32_ACE:
http://msdn.microsoft.com/en-us/library/aa394063(v=vs.85).aspx
I just want to show that the actual ACE object returns the same values for both methods, but the effect appear to be that the script set permission are denied. And I am looking for the reason why.
Can you provide the script that you're using to create the ACE(s) and add them? If I'm understanding what you're trying to do, there should be two ACEs created: one to allow the modify access and one to deny the folder deletion. The ACE you're showing is just
an allow ACE (AceType 0).
That is correct there are (or should be) two ACEs. I cannot get hold on my source right now (will be later today), but my code is based on this source:
http://www.minasi.com/forum/topic.asp?TOPIC_ID=7501
What I basically do is getting the DACL properties, loop through it to check that the user exists that I want to update. If it does I check that the current AceType is of the same type (allow or deny) that I am updating/adding. If that type is a match, I
replace the ACE object with the new Flag, Type and Mask using a Win32_ACE object. If type type doesn't match, then I add both the current ACE with the new ACE at the same time. I noticed that if I don't do it at the same time, only the last remains. If the
user doesn't match I check that the AceFlags is not equal to 16 (inherit) and then add the original ACE object in the ACE array. At the end I add the new ACE if the user was not found at all (new). The array of individual ACE objects is added to List of managementobjects
and then again linked to the DACL value. -
Read all items when when item-level permissions set
I have a SharePoint 2010 list where the general user population should be able to submit and read only their own items.
Item-level permissions set as follows:
Read access : Read items that were created by the user
Creaed and Edit access : Create items and edit items that were created by the user
That works fine.
Now, I have a small group of power users that need read-access to all list items. I can do that by granting 'Contribute' permissions, but I don't want them to be able to modify items, so I prefer granting only read permissions. When I do that, they can't
see all the items due to the item-level permission settings.
Is there a permission level that I can use (perhaps a custom permission level) that enables a read-all (and overrides the item-level permission)?With these specific settings, there are not. It is possible to do security through obscurity by only showing views that allow the users to see their items and use audience targeting for the others, but that is not true security, so it will depend on your
requirements.
Andy Wessendorf SharePoint Developer II | Rackspace [email protected] -
Revision: 9127
Author: [email protected]
Date: 2009-08-05 17:25:39 -0700 (Wed, 05 Aug 2009)
Log Message:
Fixes bug in Slider animation where we would set the actual value during the animation, ignoring any snapInterval setting. The fix uses the pendingValue property to hold the animated value, which makes the slider look correct, but no actual value update is sent until the animation completes.
QE notes: None
Doc notes: None
Bugs: SDK-21776
Reviewer: Hans
Tests run: checkintests, Mustella (gumbo/components/Slider)
Is noteworthy for integration: No
Ticket Links:
http://bugs.adobe.com/jira/browse/SDK-21776
Modified Paths:
flex/sdk/trunk/frameworks/projects/spark/src/spark/components/supportClasses/Slider.asRevision: 9127
Author: [email protected]
Date: 2009-08-05 17:25:39 -0700 (Wed, 05 Aug 2009)
Log Message:
Fixes bug in Slider animation where we would set the actual value during the animation, ignoring any snapInterval setting. The fix uses the pendingValue property to hold the animated value, which makes the slider look correct, but no actual value update is sent until the animation completes.
QE notes: None
Doc notes: None
Bugs: SDK-21776
Reviewer: Hans
Tests run: checkintests, Mustella (gumbo/components/Slider)
Is noteworthy for integration: No
Ticket Links:
http://bugs.adobe.com/jira/browse/SDK-21776
Modified Paths:
flex/sdk/trunk/frameworks/projects/spark/src/spark/components/supportClasses/Slider.as -
What is factory default "Sharing & Permissions" setting for User folders?
System:
Mac OS X Lion 10.7.2
MacBook Air (Mid 2011)
Single User – Administrative Account
Question:
What is factory default “Sharing & Permissions” setting for User folders (Desktop, Downloads, Library, Movies, Music, Pictures, Public), subfolders, and documents and other contents?
I’m thinking the factory default “Sharing & Permissions” for all of the above (except Drop Box in the Public folder) is as follows, but not certain.
Name Privilege
myusername (Me) Read & Write
staff Read only
everyone Read onlyAre these also the settings on your Documents folder and the various files in the Documents folder? Same question for your Library folder?
Name Privilege
myusername (Me) Read & Write
everyone No Access -
Permissions re: Mount Volume/Connect to Server
I wrote a simple little AppleScript to automate users' weekly email backup. the script gets triggered by the user's email client (Entourage)... Here's the script:
tell application "Finder"
mount volume "afp://SERVER.ADDRESS/USER BACKUP"
duplicate folder "USER'S EMAIL FOLDER" of startup disk to folder "USER'S BACKUP FOLDER" of disk "USER BACKUP" with replacing
end tell
However, I've noticed that this script only works if I have the user's folder permissions set to "read and write" for everyone (I can't set individual user permissions to restrict access)
How can I run this script in a way that will authenticate on the fly and then restrict access accordingly?
Mac OS X (10.4.7)Mount volume doesn't have to go through the finder AFAIK. Also, I'd put the username and password in the applescript.
mount volume "afp://username:[email protected]/somemountpoint"
Or if you don't want to put the u/name and password, write a script that prompts for them.
HTH
edit: but I think you're right going through the finder, otherwise your your duplicate command would probably not work. It would have to be "do shell script cp blah blah" or "do shell script ditto -rsrcFork blah blah"
Message was edited by: Ang Moh -
How do I set up a local testing server?
Hey again everyone. I am trying to figure out how to set up a local testing server. I've read a couple different tutorials online and i still can't figure it out. I added a new server, named it test server, I'm connecting using local/network, my server folder is C:\Users\Jake\Website\testfolder, and my web URL is http://localhost/. My server model is PHP/MySQL.
My site's root folder is C:\Users\Jake\Website\. I have also downloaded XXAMP. It downloaded and that was it though, I'm not sure if I need to apply it somehow to Dreamweaver. When I try to preview my pages I get a message that asks me if I want to update copy on testing server. If I choose yes, another message comes up and asks me if I want to put dependent files. Whether I choose yes or no it just says IE cannot display the web page.
Any help would be appreciated, thanks!Site Name: PHP Test Site
Local Site Folder: C:\xampp\htdocs\php_test\
Server Name: Local Testing
Connect Using: Local/Network
Server Folder: C:\xampp\htdocs\php_test
Default Images Folder: C:\xampp\htdocs\php_test\Images\
Web URL: http://localhost/php_test/Server Model: PHP MySQL
Is that everything you need to know? Note that I do not have a remote testing site set up yet. -
How to set up SAPconnect with email server
Hi,
Does any one know <b>how to set up SAPconnect with email server</b>
We are using workflow and when it fails it we are sending the notification mail to the user on his company mail id, i.e. [email protected]
This is working in the current production system. We are doing the new development which will replace the current production system. The existing Basis team does not know how it was setup in production system and how to set it up in the new system.
When we send any mail notification from workflow we can see the mail in SCOT transaction but it is not received at the specified mail address.
Can any one provide the configuration steps or any document for this.
Thanks in advance..
PratikHi Pratik,
Check the following link:-
/people/thomas.jung3/blog/2004/09/08/sending-e-mail-from-abap--version-610-and-higher--bcs-interface
http://help.sap.com/saphelp_nw04/helpdata/en/2b/d925bf4b8a11d1894c0000e8323c4f/frameset.htm
these link will help u to config SMTP.
And one more thing u have to do..
Go to SE11 n open Table sxnodes in change mode.
And change F_ESMTP field to false i.e. BLANK for the Field NODE = SMTP.
Hope this will work For U.
Regards
Sachin Dhingra -
Hi to all.
Currently, i am trying to install patches for portal server.
The server OS is Sun Solaris 8.
We are using Oracle9iAS.
Now, we are installing 9.0.1.4.0 patch set for the Oracle Database Server.
We managed to install the patch, but have problem with the Post Install Action.
We managed to run
-ALTER SYSTEM ENABLE RESTRICTED SESSION;
-@rdbms/admin/catpatch.sql
-ALTER SYSTEM DISABLE RESTRICTED SESSION;
-CONNECT / AS SYSDBA
-update obj$ set status=5 where type#=29 and owner#!=0;
-commit;
But, when we come to the next command, which is to shutdown, it gives us like
this..
SQL> update obj$ set status=5 where type#=29 and owner#!=0;
1402 rows updated.
SQL> commit;
Commit complete.
SQL> shutdown immediate
Database closed.
Database dismounted.
ORA-00604: error occurred at recursive SQL level 1
ORA-01219: database not open: queries allowed on fixed tables/views only
We tried to startup the database..it gives us this error..
SQL> startup
ORA-01081: cannot start already-running ORACLE - shut it down first
So, we tried to shutdown again..
SQL> shutdown immediate
ORA-01089: immediate shutdown in progress - no operations are permitted
I been informed that this is maybe a Database problem related. Any ideas?
Best Wishes,
Rushdan Md Saad.Patchsets could be obtained (only) from http://metalink.oracle.com
You need to have valid CSI for access.
P.S: Sorry Werner, I didn't see you post.
Message was edited by:
Ivan Kartik -
Failed to set Subscriptions on the WSUS Server
We are running SCCM 2012 R2; synchronization of updates is not working.
The SUP is running on a Windows 2008 R2 server and it is not the Site Server.
Below I have some log data. I have already tried uninstalling and reinstalling WSUS.
WCM.log
Starting WSUS category sync from upstream... SMS_WSUS_CONFIGURATION_MANAGER 1/6/2015 1:14:22 PM 4488 (0x1188)
Refreshing categories from WSUS server SMS_WSUS_CONFIGURATION_MANAGER 1/6/2015 1:14:27 PM 4488 (0x1188)
Attempting connection to WSUS server: cobalt.ad.northcentral.edu, port: 8530, useSSL: False SMS_WSUS_CONFIGURATION_MANAGER 1/6/2015 1:14:27 PM 4488 (0x1188)
Successfully connected to server: cobalt.ad.northcentral.edu, port: 8530, useSSL: False SMS_WSUS_CONFIGURATION_MANAGER 1/6/2015 1:14:27 PM 4488 (0x1188)
Successfully refreshed categories from WSUS server SMS_WSUS_CONFIGURATION_MANAGER 1/6/2015 1:14:53 PM 4488 (0x1188)
Attempting connection to WSUS server: cobalt.ad.northcentral.edu, port: 8530, useSSL: False SMS_WSUS_CONFIGURATION_MANAGER 1/6/2015 1:14:53 PM 4488 (0x1188)
Successfully connected to server: cobalt.ad.northcentral.edu, port: 8530, useSSL: False SMS_WSUS_CONFIGURATION_MANAGER 1/6/2015 1:14:53 PM 4488 (0x1188)
Category Company:94d731de-22a6-4458-dc4d-b5267de026fc (Adobe Systems, Inc.) not found on WSUS SMS_WSUS_CONFIGURATION_MANAGER 1/6/2015 1:14:53 PM 4488 (0x1188)
Subscription contains categories unknown to WSUS. SMS_WSUS_CONFIGURATION_MANAGER 1/6/2015 1:14:53 PM 4488 (0x1188)
Failed to set Subscriptions on the WSUS Server. Error:(-2147467259)Unspecified error SMS_WSUS_CONFIGURATION_MANAGER 1/6/2015 1:14:53 PM 4488 (0x1188)
STATMSG: ID=6603 SEV=E LEV=M SOURCE="SMS Server" COMP="SMS_WSUS_CONFIGURATION_MANAGER" SYS=ALGAE.ad.northcentral.edu SITE=NCU PID=1204 TID=4488 GMTDATE=Tue Jan 06 19:14:53.974 2015 ISTR0="cobalt.ad.northcentral.edu" ISTR1=""
ISTR2="" ISTR3="" ISTR4="" ISTR5="" ISTR6="" ISTR7="" ISTR8="" ISTR9="" NUMATTRS=0 SMS_WSUS_CONFIGURATION_MANAGER 1/6/2015 1:14:53 PM 4488 (0x1188)
Waiting for changes for 59 minutes SMS_WSUS_CONFIGURATION_MANAGER 1/6/2015 1:14:53 PM 4488 (0x1188)
wsyncmgr.log
Found active SUP SUP.ad.domain.tld from SCF File.SMS_WSUS_SYNC_MANAGER
1/6/2015 1:10:45 PM 4576 (0x11E0)
Sync failed: WSUS update source not found on site NCU. Please refer to WCM.log for configuration error details.. Source: getSiteUpdateSourceSMS_WSUS_SYNC_MANAGER
1/6/2015 1:10:45 PM
4576 (0x11E0)
STATMSG: ID=6703 SEV=E LEV=M SOURCE="SMS Server" COMP="SMS_WSUS_SYNC_MANAGER" SYS=Siteserver.ad.domain.tld SITE=NCU PID=1204 TID=4576 GMTDATE=Tue Jan 06 19:10:45.260 2015 ISTR0="getSiteUpdateSource" ISTR1="WSUS update source
not found on site NCU. Please refer to WCM.log for configuration error details." ISTR2="" ISTR3="" ISTR4="" ISTR5="" ISTR6="" ISTR7="" ISTR8="" ISTR9="" NUMATTRS=0SMS_WSUS_SYNC_MANAGER
1/6/2015 1:10:45 PM
4576 (0x11E0)
Sync failed. Will retry in 60 minutes
SMS_WSUS_SYNC_MANAGER 1/6/2015 1:10:45 PM
4576 (0x11E0)
Setting sync alert to active state on site NCU
SMS_WSUS_SYNC_MANAGER 1/6/2015 1:10:45 PM
4576 (0x11E0)
Sync time: 0d00h00m00s SMS_WSUS_SYNC_MANAGER
1/6/2015 1:10:45 PM
4576 (0x11E0)
WSUSCtrl.log
Failed to create instance of Microsoft.SystemsManagementServer.WSUS.WSUSServer. error = Unspecified errorSMS_WSUS_CONTROL_MANAGER
1/6/2015 12:39:11 PM
4888 (0x1318)Blank out/remove all of the categories you have configured in ConfigMgr on the Software Update Point. Then run a full synchronization from the console. This will synch up all available categories without trying to subscribe to any. Then, you can go back
re-select the categories that want (after the full synch completes) and perform another full synch.
Right now, you are trying to subscribe to a category that doesn't exist.
Jason | http://blog.configmgrftw.com | @jasonsandys -
Recently restored SCCM 2012 SP1 from Sever 2008 R2, to Server 2012 R2. I had Updates Publisher installed on old 2008 Server with Firefox and Chrome imported into Configuration Manager. Since I have upgraded I am no longer able to sync updates with Microsoft.
WCM.log says:
Category Product:44048288-2aac-b2b5-3730-fc020622ea05 (Firefox) not found on WSUS
Category Product:cc5cb1bb-6b87-94ae-f96a-f758195112a7 (Chrome) not found on WSUS
Subscription contains categories unknown to WSUS.
Failed to set Subscriptions on the WSUS Server. Error:(-2147467259)Unspecified error
STATMSG: ID=6603 SEV=E LEV=M SOURCE="SMS Server" COMP="SMS_WSUS_CONFIGURATION_MANAGER" SYS=wdlsccmpri.aarcorp.com SITE=AAR PID=2788 TID=4668 GMTDATE=Mon Feb 17 18:22:43.654 2014 ISTR0="wdlsccmpri.aarcorp.com" ISTR1=""
ISTR2="" ISTR3="" ISTR4="" ISTR5="" ISTR6="" ISTR7="" ISTR8="" ISTR9="" NUMATTRS=
I have gone to deselect these products from syncing in Administration> Site > Configure Site Components >Software Update Point Products Tab. They are not there. Any help on getting SCCM to sync updates would be greatly appreciated.PROBLEM
=========
Unable to sync after moving the Primary site server to different OS.
CAUSE
=======
Issues with the product and classification setup in the SUP after the restore.
RESOLUTION
===========
Ran below query to check if we have reference to Firefox and Chrome categories in the database.
QUERY:
select CategoryInstance_UniqueID, CategoryInstanceName
from fn_ListUpdateCategoryInstances(9) cat
where cat.AllowSubscription=1 and cat.IsSubscribed=1 and cat.IsParentSubscribed=0
order by cat.CategoryInstance_UniqueID
RESULT: [Along with other products we found Chrome and Firefox]
Product:44048288-2aac-b2b5-3730-fc020622ea05 Firefox
Product:cc5cb1bb-6b87-94ae-f96a-f758195112a7 Chrome
Ran Select Query
select * from CI_CategoryInstances where categoryinstanceid in
(select categoryinstanceid from CI_LocalizedCategoryInstances where LocaleID = 9 and CategoryInstanceName = 'Firefox'or
CategoryInstanceName = 'Chrome')
RESULT:
CategoryInstanceID CategoryInstance_UniqueID CategoryTypeName DateLastModified SourceSite ParentCategoryInstanceID IsDeleted rowversion
16777523 Product:cc5cb1bb-6b87-94ae-f96a-f758195112a7 Product 2013-11-27 21:05:23.000 AAR 16777522 0 0x0000000006B08673
16777549 Product:44048288-2aac-b2b5-3730-fc020622ea05 Product 2013-11-27 21:05:23.000 AAR 16777536 0 0x0000000006B08676
Ran Select Query
select * from CI_LocalizedCategoryInstances where LocaleID = 9 and CategoryInstanceName = 'Firefox'or
CategoryInstanceName = 'Chrome'
RESULT:
CategoryInstanceID LocaleID CategoryInstanceName rowversion
16777523 9 Chrome 0x0000000006B08674
16777549 9 Firefox 0x0000000006B08677
We did find Chrome and Firefox items in the database.
We need to delete these items in the database.
We used below queries to delete the reference from the database.
delete from CI_CategoryInstances where categoryinstanceid in
(select categoryinstanceid from CI_LocalizedCategoryInstances where LocaleID = 9 and CategoryInstanceName = 'Firefox'or
CategoryInstanceName = 'Chrome')
delete from CI_LocalizedCategoryInstances where LocaleID = 9 and CategoryInstanceName = 'Firefox'or
CategoryInstanceName = 'Chrome'
After deleting performed Scheduled Sync. Was successful -
Setting up local web test server
Hi All,
Apologies if this should go in installation and setup but here goes.
Running 10.3.9.
Httpd running
MySQL server running
PHP enabled
I'm trying to set up a local testing server on my G4 powerbook so I can do my mods and just occasionally ftp up the code, say, once a week.
I've started personal web sharing and can access my local site's index page ok (i.e. http://mymachine.local/~me/website/ ). That's all fine.
But I've installed the oscommerce app under my web directory and unless I have a connection toi the net then it just doesn't want to know.
So calling up " http://mymachine/local/~me/website/catalog/index " gives me a nothing if I don't have an internet connection.
I think I have set everything up as I should to have a local testing server for web apps :- Personal web sharing enabled, MySQL sorted, PHP sorted.
Does anyone know what I might need to do further or perhaps point me in the right direction?
Much appreciated.Try using http://localhost/local/~me/website/catalog/index . It may be that your original link doesn't work because your machine is trying to look up the IP-address of "mymachine" using DNS, and that won't work if you're off-line; "localhost" is a synonym for "127.0.0.1", which is the "loopback address" -- it always means your own machine. No DNS lookup required, no real network interface required, so it should work whether you're on-line or not.
-
Could you please share your best practices for setting up a new Windows Server 2012 r2 Hyper-V Virtualized AD DC, that will be running on a new WinSrv 2012 r2 host server. (This
will be for a brand new network setup, new forest, domain, etc.)
Specifically, your best practices regarding:
the sizing of non virtual and virtual volumes/partitions/drives,
the use of sysvol, logs, & data volumes/drives on hosts & guests,
RAID levels for the host and the guest(s),
IDE vs SCSI and drivers both non virtual and virtual and the booting there of,
disk caching settings on both host and guests.
Thanks so much for any information you can share.A bit of non essential additional info:
We are small to midrange school district who, after close to 20 years on Novell networks, have decided to design and create a new Microsoft network and migrate all of our data and services
over to the new infrastructure . We are planning on rolling out 2012 r2 servers with as much Hyper-v virtualization as possible.
During the last few weeks we have been able to find most of the information we need to undergo this project, and most of the information was pretty solid with little ambiguity, except for
information regarding virtualizing the DCs, which as been a bit inconsistent.
Yes, we have read all the documents that most of these posts tend point to, but found some, if not most are still are referring to performing this under Srvr 2008 r2, and haven’t really
seen all that much on Srvr2012 r2.
We have read these and others:
Introduction to Active Directory Domain Services (AD DS) Virtualization (Level 100),
Virtualized Domain Controller Technical Reference (Level 300),
Virtualized Domain Controller Cloning Test Guidance for Application Vendors,
Support for using Hyper-V Replica for virtualized domain controllers.
Again, thanks for any information, best practices, cookie cutter or otherwise that you can share.
Chas.
Maybe you are looking for
-
How can I see a list of all my comments for a certain PDF document on my iPad?
how can I c a list of all of the comments in a PDF document in the acrobat app on my iPad? thanks, ori
-
Hello guys, I'm begging for your help, I've read so many threads, nothing works for me. I hope you will try to help me First message I get when I connect the iphone is "The software on iphone has expired and must be updated to a newer version" Then i
-
PDF form column has dollar amount how can I line up numbers and have auto calculate?
PDF file has columns that have dollar amounts. I can not get it to line up or add up automatically.
-
HT4600 Set Airport Express to "Flash on Activity"
I have an Airport Extreme that is using the 7.6.1 firmware. I wan to have the device's green light flash green when activity is detected. However, there isn't a setting in Airport 6.0 that says "Flash on Activity" under the Base Station tab. How can
-
My MacBook Pro don't want stay off but he restarts. What can i do?
Hi, So when I click on turn off in the apple my MacBook Pro turn off, but less 5 secondes later it restart. I don't know what can I do? Can you help me?