AD RMS for multi tenant domain environment

Similar Messages

• Multi-Tenant Environment

  what is Multi-Tenant Environment and who are providing services for Multi-Tenant Enviroment.
  Thanks, Avaneesh

  In Oracle E-Business Suite Release 12.1 Oracle introduced multi-tenancy features for HRMS (I think it only applies to HRMS). This uses a new 'Enterprise' Organization Classification to partition each tenant on a database and then applies that security using row-level VPD.
  This document provides more information:
  Oracle HRMS Multi-Tenant Functionality - An Oracle White Paper [ID 760500.1]
  This is an important step for Oracle E-Business Suite - it means that HRMS can be provided as a true SaaS offering. Some providers are already doing this - KBACE's Mentor offering is a good US example (see http://mentor.kbace.com).

• Move hana db from single tenant to multi tenant

  Hi experts,
  I have read that, for the moment, we cannot do an upgrade of a SAP system + conversion to a multi tenant Hana database in one shot. We have to deploy it on a single tenant and then move it to a multi tenant environment (where we can put a series of systems). Am I right? Right now we have a single tenant environment (A), and a multi tenant environment (B).
  How can we move the database from a single tenant to a multi tenant?
  - do we need to 'upgrade' the single tenant (A) to a multi tenant and then put it to our other multi tenant (B) environment? Problem here is that we then lose our single tenant environment for deploying new systems. We then need to redeploy everything, no?
  - or do we just need to restore the system database to the multi tenant database?
  Regards,
  Kenny

  Hi,
  Have you changed the <sid>adm user environment variables?
  You can resolve this problem using system copy procedure.
  Use installation master,, export database and Instance files ..
  Regards
  Ben

• Can SCSM2012 be used as multi-tenant solution?

  Hello,
  I was wondering if the SCSM2012 can be used for multi-tenant purposes + monitoring of separated tenants.
  Situation:
  Deploying SCSM2012 to several customer sites(non-trusted domain) then providing the service from one location(1 console) to multiple (separated) customer sites. Customer will have own separated self service portal with pre configured (automated)workflows.
  For the monitoring case, the information needs to be collected from the customers site(deployed agents) and displayed at our centralized site(maybe 1 big screen for all tenants )
  Any ideas ?

  Hello Ayman,
  thank you for the quick reply. I was already afraid for this answer :(. But there could be scenarios where it is implemented already.
  The requirements that are needed are  complex. The deployement scenario will need to cover whole customers (complex) infrastructures. We want to deploy the SCSM2012 to manage (remote)the infrastructures.. Hereby is the monitoring also important part
  of our solution. The most common incidents,changes,problems will be automated(this is not the problem), but the collection of the data from the customer site and access it on our site is the issue. So this would be implemented as on- promise solution and we
  would manage (as needed) remotely.
  Not sure if the solution can be like this:
  Implement SCSM2012 at customer site, cache the data from CMDB into some tool that can be replicated to our site, whereby we could get the data out of this tool to use it for monitoring purpose. Then, when needed(as alert is popped up for random customer)
  we could log in remotely to solve this(if its not solved automatically). This is just idea please put some "better" idea(s). Thank you

• SQL pricing for Migrating an existing multi-tenant application

  We have a client with an ~10 year old multi-tenant application running on a traditional dedicated hosting environment.  The client is interested in migrating to Azure but only if they can benefit from PAAS features (managed backups, snapshots, scaling,
  etc).
  Their application automatically creates a new SQL database with each new customer signup.  As such, there are 886 databases which would need to be moved.  The total size on disk of all DBs together is only 3.82 GB.  Only 3 DBs are more than
  100 MB.  862 of the DBs are less than 10MB each (794 of those are less than 5MB).
  The way I read Azure pricing, each of these 883 DBs less than 100 GB would cost $5/month.  The only other alternative is to get a VM with SQL server on it -- but I can't see the advantage of that vs. the dedicated host they are already using.
  Is there any other alternative to consider when contemplating an application made up of many small databases?
  Thanks in advance for any advice,
  Jason

  Hi,
  If you have existing applications or workloads you simply want to grab and move to the cloud, SQL Server in a Virtual Machine is the easiest path to realize the benefits of the cloud. If you are looking to innovate and build new relational applications running
  in the cloud or extend parts of on-premises applications into the cloud, SQL Database is the best long-term solution.
  In your scenario, if use azure SQL, you must pay for each database per month, refer to
  http://azure.microsoft.com/en-us/pricing/details/sql-database/for more information about SQL Azure, cost too much.
  About use SQL VM, I suggest you read the following article.
   #http://blogs.msdn.com/b/windowsazure/archive/2013/06/04/the-top-10-things-to-know-when-running-sql-server-workloads-on-windows-azure-virtual-machines.aspx?Redirected=true
  Best Regards
  We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
  Click
  HERE to participate the survey.

• Lync 2013 Multi-tenant Hosting Pack third-party solutions available for features listed as "Via Thirdparty"

  Hi,
  Who are all the third party vendors that can integrate with Lync 2013 Multi-tenant hosting pack V2  features that are supported Via 3rd party.
  1) Call park
  2) Outgoing DID manipulation
  3) E-911
  3) Dialplans & Policies
  4) Support for Analog devices (e.g. FAX)
  5) Response groups
  6) Network QoS - DSCP
  7) Phone number management
  8) IM/P & Voice with Skype. 
  9)Inteoperability with on-premises video conferencing systems
  Regards,
  SR

  Hi,
  Base on my understanding, as it is the Mutli-Tenant environment, in internal DNS server, there is no need to add the DNS A record
  lyncdiscoverinternal. However, you can try to add the DNS record in internal DNS server to test the issue as well.
  Also, please make sure you have updated both Lync Server 2013 and Exchange 2013 to the latest version. If not, update it and then test again.
  Best Regards,
  Eason Huang
  Eason Huang
  TechNet Community Support

• Exchange 2010SP1 Multi-Tenant Issue with Multiple Domains

  I have an installation of Exchange 2010 SP1 with multi-tenant support enabled via the install time /hosting switch.
  Everything works well for my smaller clients. I now have a bigger client that has about 300 users and 3 domains. The users are divided roughly equally amongst the domains - ie, 3 domains each with 100 users. I've added the first domain as normal:
  $c = get-credential
  New-organization -name "Pretend Company" -DomainName domain1.com -ProgramId HostingSample -OfferId 2 -location en-US -AdministratorPassword $c.password
  After that I logged into the ECP control panel and created all the users. The migration went smoothly and has been working well for the last week. Now, it's time to add the next domain. Since the client wants all 300 users visible in the same GAL, I just
  added a domain to the organization:
  New-AcceptedDomain -Name domain2.com -DomainName domain2.com -Organization "Pretend Company"
  This is where I run into problems. When I try to create the users for domain2.com via ECP, I am able to create the user successfully, and select domain2.com from the drop down. Once the user is created however, I am able to see that although their UPN
  is [email protected], it created their email address as [email protected].
  I tried creating the users manually via EMS:
  $password = Read-Host "Enter password" -AsSecureString
  New-MailUser -UserPrincipalName [email protected] -Password $password -Name "Test User" -Organization "Pretent Company" -PrimarySmtpAddress [email protected]
  The user creates successfully and I can see the user created in the proper OU in AD. Unfortunately I can not see them in ECP nor can I see them if I do:
  get-mailbox -Organization "Pretend Company"
  This makes the management of the users very difficult to delegate, and I'm not sure that the users at domain2.com will even work.
  This brings me to my questions:
  (1) Is is possible create accounts that have different domain names in their default email addresses within the same Organization in /hosting mode?
  (2) Is this something I need to do with an EmailAddressPolicy? I read the documentation but it didn't seem /hosting friendly.

  Hi Earonk,
  Please post your issue on below forum, you will get more help from there:
  http://social.technet.microsoft.com/Forums/en-us/exchange2010hosters/threads
  Regards!
  Gavin

• MDT from Single Site for Multi Domain OS Deployment

  Hi all,
  We are looking for a solution which will make it possible to use MDT from a single site to deploy Windows 7 or Windows 8 and join different domains of different customers without trust relationships between domains.
  We are a service provider which supports different customers with separate domains. At this moment those different customers have their own WDS server on site and administration is time consuming because a lot of hardware changes occur.
  We are now searching for a solution which is easier to manage and one of the solutions we are thinking about is to install a WDS server in our office and use MDT for some custom task sequences but just build one image with all the different driver packs we
  have.
  Does anyone know how to deal with this from our point of view. All tooling I can find is based on Enterprise clients with one Domain Forest and maybe some different sites but all in one domain, which makes deployment a bit easier then in our situation I guess
  as we are looking for a solution that supports Multi-domain deployment.
  Hope someone might experienced this before and can help us in the right direction. If someone has experience with additional tooling which might help us I am more then interested to know how the tooling helped in solving this.
  Preferrably we had a tool which was Multi-tenant and multiple domains could be managed from a single console, but I think that tool just doesn't exist.
  Hope someone is able to help us in the right direction. Please let me know if you have any tips or did experience the same while making a Deployment plan for the service provider you are working for.
  Many thanks in advance!

  Hi all,
  We are looking for a solution which will make it possible to use MDT from a single site to deploy Windows 7 or Windows 8 and join different domains of different customers without trust relationships between domains.
  We are a service provider which supports different customers with separate domains. At this moment those different customers have their own WDS server on site and administration is time consuming because a lot of hardware changes occur.
  We are now searching for a solution which is easier to manage and one of the solutions we are thinking about is to install a WDS server in our office and use MDT for some custom task sequences but just build one image with all the different driver packs we
  have.
  Does anyone know how to deal with this from our point of view. All tooling I can find is based on Enterprise clients with one Domain Forest and maybe some different sites but all in one domain, which makes deployment a bit easier then in our situation I guess
  as we are looking for a solution that supports Multi-domain deployment.
  Hope someone might experienced this before and can help us in the right direction. If someone has experience with additional tooling which might help us I am more then interested to know how the tooling helped in solving this.
  Preferrably we had a tool which was Multi-tenant and multiple domains could be managed from a single console, but I think that tool just doesn't exist.
  Hope someone is able to help us in the right direction. Please let me know if you have any tips or did experience the same while making a Deployment plan for the service provider you are working for.
  Many thanks in advance!
  So is the goal is not only to get multiple domains to select from, if so you could use a DomainOUList.xml file .
  Also would the clients be imaged at your site or your clients site?
  If this post is helpful please click "Mark for answer", thanks! Kind regards

• Implementing Sites for a new Single Domain Environment and effects on Exchange

  Copied from the Active Directory forums as the suggestion of replies.
  I didn't find exactly what I was looking for so decided to create my own question to get some direct feedback.
  Currently we have a single domain environment with two domain controllers located at two separate sites. When the domain was first set up, no configuration was done in the Sites and Services module for Active Directory. The two domain controllers we have are
  currently located in the Default-First-Site-Name container. We do not have any subnets configured with the Sites and Services module.
  These two domain controllers are located at two different sites with different IP schemes and the sites are connected with a high speed site-to-site VPN. We also have 2 satellite offices with their own IP schemes as well with more offices to come. In the future
  domain controllers will be placed at these satellite offices which are connected with a slower site-to-site VPN to the main offices.
  All replication and network functions are working well now, but I would like to know what the effects would be and what to watch out for if I create sites for our environment. I am particularly concerned about our Exchange 2010 server and need to make sure
  that the change will not disrupt communications between it and the domain controllers.
  I would like to create a site for each of our locations and link the subnet to that site now so that when we install the domain controllers the configuration is ready.
  Any suggestions or input is highly appreciated thank you in advance.

  Exchange will be an issue only if your Exchange servers span sites when your new Windows sites are created.  If you have Exchange servers all in a single location, adding sites to your Windows forest will cause no issues.  However, if you have
  Exchange servers in both locations, as soon as a new site is defined for an Exchange server in a separate location from your other Exchange servers, you will start having issues.  Let me give some examples so you can see what problems might occur:
  Two datacenters, one Windows site, Exchange mailbox servers in both locations (primary and DR), but hub and CAS roles only in the primary datacenter:
  In this situation, as soon as your second site is defined, the server in the DR datacenter will no longer be receiving mail - there is no hub to deliver it - and users will no longer be able to access their mailboxes - there is no CAS to support them. 
  Solution:  Add hub and CAS to second datacenter and all is well with the world.
   Two datacenters, one Windows site, Exchange multirole servers in both locations (primary and DR), but CAS Array defined:
  Now we have a little bit better setup, since we have all roles in both locations.  However, the CAS array in the primary site isn't going to be able to support your client connections in the DR site - so users will be connecting directly to the CAS
  servers in the DR site (not optimum).  Solution:  Define a second CAS array for the DR site, with its own load balancer and configure the databases in your DR location to use that CAS array as the RPC Client Access Server.
  There are other oddities, but as you can see, there will definitely be issues if your Exchange servers aren't all in the same location and you start defining Windows sites ...

• Could not verify this domain because it was previously configured for your tenant or for another tenant.

  I have a set up a single tenant in my Azure portal, and added three domains.   Although two verify okay, for one domain I get an error:
  Could not verify this domain because it was previously configured for your tenant or for another tenant.
  Research on this matter usually indicates a tenant clash with Office 365, but we don't use  that service, nor can we access it using our normal credentials.
  The only other place that this domain is utilised, in with Azure web site hosting.  In my portal I see our company web site and the domain is used there to host our site.
  Would this cause the clash?  If not, can anyone interrogate the back-end of Azure to tell me where the clash is occurring?
  I have also amended the MX/TXT records to no avail.

  I just wanted to close this thread off now that the issue is has been resolved offline. the domain was verified against another directory. you had access to that directory as an admin but this account was an MSA. You didn't have any ability to login to manage.windowsazure.com
  with that MSA because you had cancelled your subscriptions, which is why you were unable to access the directory. 
  We added your MSA to a Azure Subscription so that you could login to the management portal. and then you were able to remove the domain from the directory and proceed! :-)
  Thanks, 
  James.

• Preventing Item On Hand reservation in a configure to order environment for multi org same OU environment

  I have a scenario in a configure to order environment where I want to automatically creating flow schedules based on sales order demand. I have two orgs in same OU.
  1. How to setup sales order line to generate flow schedules in the manufacturing org and then ship the finished goods from the shipping org. I believe this can be done from sourcing rules to populate Warehouse field in sales order line with the shipping org and create Flow schedule in another manufacturing org. Please advise ?
  2. Once flow schedule is completed I want to prevent the reservation of Finished good on hand against Sales order so that the On hand could be transferred to shipping org and shipped. Please advise ?
  Thanks for your inputs.
  Best,
  Rajesh

  Pl do not post duplicates - Preventing Item On Hand reservation in a configure to order environment for multi org same OU environment

• Unable to verify domain "Could not verify this domain because it was previously configured for your tenant or for another tenant."

  I've been trying to verify the domain kailice.co.uk which I own , however I receive the following "Could not verify this domain because it was previously
  configured for your tenant or for another tenant."
  I believe I verified this domain with a previous trial subscription which has since expired and so I'm unable to login and remove the domain but wish to transition it to my new subscription

  Hi Jack,
  Each custom domain can only be used in one Azure AD tenant and you can’t add the same domain to multiple Windows Azure AD tenants. In general, if you delete a domain in a Azure directory, then you can add it to another Windows AD Tenant.
  I am not sure if you have deleted this domain in your previous trial subscription. But it appears like you have not deleted the domain. Is that right?
   Recommend you to check the TXT/MX record in your Domain name register, delete other original TXT/MX records and just keep the TXT/MX record for the new verification.
  Also, it needs some time for your domain to update the record, if you still receive the same error, I recommend you to wait for a while and then have a try.
  Regards,
  Shirisha Paderu

• Recommended DNS zone replication scope for single domain environment

  Hi, in my company we have domain/forest functional level Windows Server 2008 R2 - there is only one domain. AD DS is installed on 5 servers -
  AD integrated DNS zone is used.
  I noticed today that on both forward lookup DNS zones, _msdcs.internaldomain.com
  & internaldomain.com, zone replication scope was set to
  All DNS servers in this domain and also for one reverse lookup zone. I changed this setting for all these zones to
  All domain controllers in this domain but later (10-15 mins at most) I reverted these settings back to
  All DNS servers in this domain.
  Which zone replication scope for mentioned zones is recommended keeping in mind this is single domain environment? Also could I do any harm to DNS and AD in all when I changed zone replication scope and later reverting it back for these zones? How to check
  that dns related informations (zones) are located where they should be in Active Directory and that there is no any garbage in other locations (partitions) in AD database.

  Hi,
  All DNS servers in this domain : Replicates zone data to all Windows Server 2003 and Windows Server 2008 domain controllers running the DNS Server service in the Active Directory domain. This option replicates zone data
  to the DomainDNSZone partition. It is the default setting for DNS zone replication in Windows Server 2003 and Windows Server 2008.
  http://technet.microsoft.com/en-us/library/cc772101.aspx
  Hope this helps.
  Regards.
  If you have any feedback on our support, please click
  here
  Vivian Wang

• SharePoint Foundation 2013 - Multi-tenant Install and OneDrive for Business with Yammer i

  Hello,
  After installing SP Foundation 2013 (SP1) with Partitioned service applications we have noticed that while clicking on the "yammer and oneDrive" link the below error message comes up:
  _admin/yammerconfiguration.aspx
  any ideas??
  http://technet.microsoft.com/en-us/library/dn659286%28v=office.15%29.aspx
  we have also noticed that MS mentioned "OneDrive for Business with Yammer integration doesn’t work for multi-tenancy or partitioned service applications for on-premises deployments"
  ja

  ULS
  Application error when access /_admin/cloudconfiguration.aspx, Error=Object reference not set to an instance of an object.   at Microsoft.SharePoint.WebControls.SPPinnedSiteTile.OnInit(EventArgs e)     at System.Web.UI.Control.InitRecursive(Control
  namingContainer)     at System.Web.UI.Control.InitRecursive(Control namingContainer)     at System.Web.UI.Control.InitRecursive(Control namingContainer)     at System.Web.UI.Control.InitRecursive(Control
  namingContainer)     at System.Web.UI.Control.InitRecursive(Control namingContainer)     at System.Web.UI.Page.ProcessRequestMain(Boolean includeStagesBeforeAsyncPoint, Boolean includeStagesAfterAsyncPoint)
  =====
  To me it seems SharePoint social networking features require the full SharePoint Server product AND are not available with the free SharePoint Foundation, If correct then why MS punching it here in Foundation without a friendly error message..
  ja

• SMTP Authentication in Exchange 2013 multi tenant

  I have configure a multi tenant environment. local domain is scurenet.local and i have host 3 different email domains like
  abcd.com efg.com and xyz.com. now how its possible to create 3 mailboxes of same login in 3 different domains like [email protected] [email protected] [email protected] also
  want to authenticate with there emailIDs and that is main issue. i can create 3 different logins like john1 john2 and john3 in AD and manually add smtp like [email protected] etc.
  but issue is how i authenticate users with SMTP IDs so john1 can login using [email protected] and
  password john2 use [email protected] as
  login id and so on. 

  Hi,
  I think you can try creating mailboxes for the three users and assign the full access permissions to each other.
  Thanks,
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
  [email protected]
  Simon Wu
  TechNet Community Support