AD Trust Winddows 2008 R2

I am planning to configure two-way trust between two 2008 R2 forests - say D1 & D2, belongs to same org. I have some queries here.
1. If I enable Forest wide authentication between D1 and D2 and vice versa , will this allow users of D1 and D2 to access resources freely. For Ex: Whether a D1 user can delete user in D2 / can a D2 user be able to reset the passwords in D1?
2. Once trust is enabled will all the desktops in D1 and D2 shows , 2 domains listed in their computer login screen?

1. If you enable a two way forest trust with Forest-wide authentication, users will be able to access resources in the other domain provided they have the required permissions. You also need to delegate the required rights to users in D1 to delete/reset
password in D2 or Vice Versa. Check the Link for more information on Trusts:
http://technet.microsoft.com/en-us/library/cc771568.aspx
2. This depends on how many domains you have in each forest and what you have selected in the Name-Suffix-Routing. If both of your forest have single domain each, then Yes, users will see 2 domains listed at the login screens(Win xp/Windows 2003,
Higher OS will not show the domain list). But let’s say the forest D1 has 2 sub-domain and you have enabled name-suffix routing for all three domain in Forest D1, then users will see 4 domains (3 from D1 forest and 1 from D2 forest)
Routing name suffixes across forests
http://technet.microsoft.com/en-us/library/cc784334.aspx
Exclude name suffixes from routing to a local forest
http://technet.microsoft.com/en-us/library/cc758388.aspx
Hope this Helps!!!!

Similar Messages

Can I migrate an old MacBook (2008) running Lion to new MacBook Air running Yosemite?

Hey all,
I'm planning on helping my aunt migrate her trusted old 2008 MacBook (white, non-alu) running OSX Lion 10.7.5 to a brand new MacBook Air running Yosemite.
Is such a migration between the mentioned two versions possible? Or is Lion 10.7.5 too dated for a successful migration to Yosemite?
I hope someone can provide an answer - I would like things to go smoothly for her.
Lemme know

Hi jwrusa,
Welcome to the Apple Support Communities!
You can transfer information from a 10.7 to a 10.10 computer. Please use read over and use the information located in the following article for further information.
OS X Yosemite: Transfer your info from a computer or storage device
Cheers,
Joe

Trusted Authentication on Windows 2008 64 bit

Has any one got Trusted Authenctication working on Windows 2008 server? We are having issues with making it to work. We followed the documentation on the SAP web site but are still not able to make it work. In particular the ISAPI redirector is not working. After congiguring the ISAPI redirector, when we try to view the jsp examples we get a http 500 error message.
Any insights?
Thanks

Hi,
this forum is for the SAP BusinessObjects BI Solution Architecture. I would suggest you post your question into the forum for BusinessObjects Enterprise assuming that is the product that you are using as it is not 100% clear in your description
regards
Ingo Hilgefort

Adding sites to compatibility mode and trusted sites, IE10 and Server 2008

We're having a challenge with configuring a GPO to add several sites to Compatibility View Settings as well as adding several others (the same sites, plus some others) to Trusted Sites. We are currently running VMware's Persona Management/floating
pools (thin provisioned linked clones), with the appdata folder redirected to the Persona server. Clients are running IE10, DCs are running Server 2008 R2 with IE8.
gpresult/r shows the GPO listed under Applied GPOs on the User Settings side (and all the settings are user settings); however, compatibility and trusted sites settings do not apply.
From prior research on the topic, I seem to recall that I needed to install the IE10 IEAK; however, I cannot install that without having IE10 installed first, and I cannot install IE10 without installing the pre-requisite elements, which I cannot install
(either through Windows Update or the IE10 standalone installer). When the IE10 install fails, it refers me to a Microsoft KB article that won't open. If I open the article on a workstation PC, I find links to five separate prerequisite files.
If I download all five files and attempt to install them, they say they're not applicable to my computer. I can't post links in this article yet (account hasn't been verified), but a Google search for "MS KB 2818833" leads to the page with
the links.
64-bit Server 2008 R2.
Any thoughts?

Hi,
Before going further, how did we configure the settings? Since Windows 8, the IEM settings have been deprecated. As a result, IEM settings won't apply to IE10 or above. However, in this situation, we should be able to use administrative templates
to configure the settings we want.
Regarding how to add web site to Compatibility View List via GPO, the following article can be referred to as reference.
How to add web site to Compatibility View List via GPO
http://blogs.msdn.com/b/asiatech/archive/2013/10/23/how-to-add-web-site-to-compatibility-view-list-via-gpo.aspx
Regarding how to Internet Explorer security zone sites via native policies, the following article can be referred to for more information.
How to configure Internet Explorer security zone sites using group polices
http://blogs.msdn.com/b/askie/archive/2012/06/05/how-to-configure-internet-explorer-security-zone-sites-using-group-polices.aspx
Best regards,
Frank Shen

Does adding a 2008 DC to a 2003 AD break NT 4.0 trusts ?

Hello
we have a AD envionrment with 3 2003 DCs and it has a trust to a seperate NT 4.0 domain.
We are planning to add a 2008 additional DC to the same existing 2003 domain ; it'll require adprep /forest prep switches.
My question here ; does this forest change affect our NT 4.0 two-way trust with 2003 Domain ?
Our domain is running in 2003 forest and domain functional level.

The 2008 box should not affect the trust as long as you have configured
Allow cryptography algorithms compatible with Windows NT 4.0
More on that in this article http://support.microsoft.com/kb/942564
Notice that 2008 R2 will break the trust (no workaround for 2008 R2)
*** Full Disclosure ***
I have not tested your exact scenario (just haven't had the time to build out an NT domain and none of the networks I work on have NT on them at this point)
Thanks
Mike
http://adisfun.blogspot.com
http://twitter.com/mekline

Windows Server 2008 Active Directory Trust

Hi ,
Can anyone help with the answer to the following questions please?
a) Whether Microsoft Windows Server 2008 SP2 Standard Edition support AD trust relationships (one-way; two-way)
b) Whether we can create trust between Windows Server 2008 R2 SP1 and Windows Server 2008 SP2 Standard Edition AD servers?
Thanks in advance.
India1947

Hello,
First of all, please confirm the firewall on the Windows Server 2008, the TCP/IP filter or any 3 party firewall is not blocking the RPC and ICMP traffic between two domain controllers.
1.    Have a test of creating and verifying trust while all firewalls are all disabled. Then re-create and verify the trust to check how it works.
Allowing Inbound Network Traffic that Uses Dynamic RPC
http://207.46.196.114/windowsserver2008/en/library/d37f96c6-c729-4b29-80a9-88db3d97b8631033.mspx
2.    If it still fails, please try to collect the following information for our further investigation:
-      Run "Netdiag /v >>netdiag.txt" on both DCs
-      Network Monitor trace when verifying the trust:
Download the NetMon3.1 from the following link:
http://www.microsoft.com/downloads/details.aspx?FamilyID=18b1d59d-f4d8-4213-8d17-2f6dde7d7aac&DisplayLang=en
1.    Install the NetMon on Windows Server 2008.
2.    In the Microsoft Network Monitor 3.1 window, click Create a new capture tab….
3.    In the new tab, select all the Network Adapter in the Select Networks window.
4.    After that, press F10 to start NetMon.
5.    In the Active Directory Domains and Trusts, try to verify the trust to reproduce the issue.
6.    After that, go back to the Netmon window and press F11 to stop the Netmon on the Windows Vista machine.
7.    Press Ctrl+S to save the Netmon files.
Please send files to [email protected]
Note:
a. Please include the following three lines for this issue in the email body:
Trust Windows Server 2008 and Windows 2000
http://forums.microsoft.com/TechNet/ShowPost.aspx?PostID=3210801&SiteID=17
Miles Li - MSFT
b. We will continue to discuss the issue here in the newsgroup and will NOT reply via emails.
c. Pease post a quick note in the current thread to inform me after sending the email.
Thanks.

Trust relation between mac server 2.2.1 (10.8 mountain lion) and windows server 2008 r2

i have the following settings:
windows 2008R2 domain server.
mac server 2.2.1
mac client machines
mac server machine is joined to Active Directory in windows 2008r2 without any problems.
mac client machine is joined to mac server without any problem.
the only problem is that i cannot log in to the mac client machine with a username from the active directory in windows 2008r2. i can log in with a created user on the mac server.
i did a trust relation in windows 2008r2:
Realm trust
Transitive
One-way incoming
still cannot log with ad users. can anyone help me in the configurations if i missed something? i am new to mac servers and their configurations.

does this mean that on every mac client i have to join 2 domains, the windows domain and mac domain?
Yes
then, why to use "workgourp manager" in mac to copy all the active directory users to mac server group? i do this to make all users available for authentication through mac serve ronly.
Am I right? The users on your macserver are a copy of your users of the AD? It was not necessary to do that. Because all Users will listed on the Server.app on the User-Manager if you setup was correct. And this means:
- first join your Mac (used as Server) to your Active Directory
- second Install the Server.app. The Setup Wizard will do the rest.
In my case, on the Usersection an the Server.app I will find "Benutzer von FAMILY-NET" that is my Active Domain.
and if i join the mac client to windows domain for authentication, why do i need the mac server for? i need only to authenticate users in active directory on mac os x and that is only it.
In this case - you need no Mac Server!
Only if you want to use the Services of the Mac-Server (DNS, Wiki, Mail,...) or Manage you IOS/Mac Devices. Than it is necessary.
sorry for my many questions, i am very new to mac os x and server.
No problem. I lived in Mac-Worlds since 2 years. I infected with it with the purchase of my first iphone.

My MAC is running very slow and i am a complete novice and don't know what to do. i have had my Mac since 2008 and its probably in a mess. if you can help i would be grateful. EtreCheck version: 1.9.15 (52) Report generated 8 September 2014 09:09:26

My MAC runs very slow. Rainbow wheel every time i try to go somewhere. Im a complete MAC novice. Only really use it for iTunes and email. the odd document here and there. The odd spreadsheet. Was brought up on a PC. I would imagine my system is in mess. I think i downloaded that Mackeeper which i have just discovered was not a good idea. I found a thread about EtreCheck and it suggested i posted the report of my machine which i have done.I only have 2GB of space. Not sure how much i have left. My wife keeps putting photos on here like they are going out of fashion. Bought the machine in 2008 because everybody said you have a MAC. I've never really got to grips with it but at least it worked. Now it does not run very well at all. That spinning wheel is driving me mad. HELP please, never ever used a forum light this either so please go gentle on me. Cheers Paul
EtreCheck version: 1.9.15 (52)
Report generated 8 September 2014 09:09:26 BST
Hardware Information: ?
iMac (20-inch, Early 2008) (Verified)
iMac - model: iMac8,1
1 2.66 GHz Intel Core 2 Duo CPU: 2 cores
2 GB RAM
Video Information: ?
ATI Radeon HD 2600 Pro - VRAM: 256 MB
iMac 1680 x 1050
System Software: ?
OS X 10.9.4 (13E28) - Uptime: 0 days 0:31:45
Disk Information: ?
Hitachi HDP725032GLA380 disk0 : (320.07 GB)
S.M.A.R.T. Status: Verified
EFI (disk0s1) <not mounted>: 209.7 MB
Macintosh HD (disk0s2) / [Startup]: 319.21 GB (117.84 GB free)
Recovery HD (disk0s3) <not mounted>: 650 MB
USB Information: ?
Apple Inc. Built-in iSight
Apple Inc. BRCM2046 Hub
Apple Inc. Bluetooth USB Host Controller
Bose Corporation Bose USB Audio
Apple Computer, Inc. IR Receiver
Gatekeeper: ?
Mac App Store and identified developers
Launch Daemons: ?
[loaded] com.adobe.fpsaud.plist Support
[loaded] com.macpaw.CleanMyMac2.Agent.plist Support
[running] com.trusteer.rooks.rooksd.plist Support
[loaded] net.sourceforge.MonolingualHelper.plist Support
Launch Agents: ?
[running] com.trusteer.rapport.rapportd.plist Support
User Login Items: ?
iTunesHelper
Internet Plug-ins: ?
Google Earth Web Plug-in: Version: 5.1 Support
Default Browser: Version: 537 - SDK 10.9
Flip4Mac WMV Plugin: Version: 3.2.0.16   - SDK 10.8 Support
OfficeLiveBrowserPlugin: Version: 12.3.6 Support
Silverlight: Version: 5.1.10411.0 - SDK 10.6 Support
FlashPlayer-10.6: Version: 14.0.0.145 - SDK 10.6 Support
AmazonMP3DownloaderPlugin101749: Version: AmazonMP3DownloaderPlugin 1.0.17 - SDK 10.4 Support
Flash Player: Version: 14.0.0.145 - SDK 10.6 Outdated! Update
iPhotoPhotocast: Version: 7.0
QuickTime Plugin: Version: 7.7.3
eMusicRemote: Version: (null) Support
eMusic: Version: Unknown
Audio Plug-ins: ?
BluetoothAudioPlugIn: Version: 1.0 - SDK 10.9
AirPlay: Version: 2.0 - SDK 10.9
AppleAVBAudio: Version: 203.2 - SDK 10.9
iSightAudio: Version: 7.7.3 - SDK 10.9
iTunes Plug-ins: ?
Quartz Composer Visualizer: Version: 1.4 - SDK 10.9
3rd Party Preference Panes: ?
Flash Player Support
Flip4Mac WMV Support
Trusteer Endpoint Protection Support
Time Machine: ?
Time Machine not configured!
Top Processes by CPU: ?
      2% iTunes
      2% WindowServer
      0% coreaudiod
      0% fontd
      0% rapportd
Top Processes by Memory: ?
178 MB Finder
133 MB com.apple.WebKit.WebContent
109 MB iTunes
92 MB Safari
63 MB com.apple.quicklook.satellite
Virtual Memory Information: ?
24 MB Free RAM
821 MB Active RAM
807 MB Inactive RAM
291 MB Wired RAM
338 MB Page-ins
680 KB Page-outs

1. This procedure is a diagnostic test. It changes nothing, for better or worse, and therefore will not, in itself, solve the problem. But with the aid of the test results, the solution may take a few minutes, instead of hours or days.
Don't be put off merely by the seeming complexity of these instructions. The process is much less complicated than the description. You do harder tasks with the computer all the time.
2. If you don't already have a current backup, back up all data before doing anything else. The backup is necessary on general principle, not because of anything in the test procedure. Backup is always a must, and when you're having any kind of trouble with the computer, you may be at higher than usual risk of losing data, whether you follow these instructions or not.
There are ways to back up a computer that isn't fully functional. Ask if you need guidance.
3. Below are instructions to run a UNIX shell script, a type of program. As I wrote above, it changes nothing. It doesn't send or receive any data on the network. All it does is to generate a human-readable report on the state of the computer. That report goes nowhere unless you choose to share it. If you prefer, you can read it yourself without disclosing the contents to me or anyone else.
You should be wondering whether you can believe me, and whether it's safe to run a program at the behest of a stranger. In general, no, it's not safe and I don't encourage it.
In this case, however, there are a couple of ways for you to decide whether the program is safe without having to trust me. First, you can read it. Unlike an application that you download and click to run, it's transparent, so anyone with the necessary skill can verify what it does.
You may not be able to understand the script yourself. But variations of the script have been posted on this website thousands of times over a period of years. The site is hosted by Apple, which does not allow it to be used to distribute harmful software. Any one of the millions of registered users could have read the script and raised the alarm if it was harmful. Then I would not be here now and you would not be reading this message.
Nevertheless, if you can't satisfy yourself that these instructions are safe, don't follow them. Ask for other options.
4. Here's a summary of what you need to do, if you choose to proceed:
☞ Copy a line of text in this window to the Clipboard.
☞ Paste into the window of another application.
☞ Wait for the test to run. It usually takes a few minutes.
☞ Paste the results, which will have been copied automatically, back into a reply on this page.
The sequence is: copy, paste, wait, paste again. You don't need to copy a second time. Details follow.
5. You may have started the computer in "safe" mode. Preferably, these steps should be taken in “normal” mode, under the conditions in which the problem is reproduced. If the system is now in safe mode and works well enough in normal mode to run the test, restart as usual. If you can only test in safe mode, do that.
6. If you have more than one user, and the one affected by the problem is not an administrator, then please run the test twice: once while logged in as the affected user, and once as an administrator. The results may be different. The user that is created automatically on a new computer when you start it for the first time is an administrator. If you can't log in as an administrator, test as the affected user. Most personal Macs have only one user, and in that case this section doesn’t apply. Don't log in as root.
7. The script is a single long line, all of which must be selected. You can accomplish this easily by triple-clicking anywhere in the line. The whole line will highlight, though you may not see all of it in the browser window, and you can then copy it. If you try to select the line by dragging across the part you can see, you won't get all of it.
Triple-click anywhere in the line of text below on this page to select it:
PATH=/usr/bin:/bin:/usr/sbin:/sbin:/usr/libexec;clear;cd;p=(Software Hardware Memory Diagnostics Power FireWire Thunderbolt USB Fonts SerialATA 4 1000 25 5120 KiB/s 1024 85 \\b%% 20480 1 MB/s 25000 ports ' com.clark.\* \*dropbox \*GoogleDr\* \*k.AutoCAD\* \*k.Maya\* vidinst\* ' DYLD_INSERT_LIBRARIES\ DYLD_LIBRARY_PATH -86 "` route -n get default|awk '/e:/{print $2}' `" 25 N\\/A down up 102400 25600 recvfrom sendto CFBundleIdentifier 25 25 25 1000 MB com.apple.AirPortBaseStationAgent 464843899 51 5120 files );N5=${#p[@]};p[N5]=` networksetup -listnetworkserviceorder|awk ' NR>1 { sub(/^$[0-9]+$ /,"");n=$0;getline;} $NF=="'${p[26]}')" { sub(/.$/,"",$NF);print n;exit;} ' `;f=('\n%s: %s\n' '\n%s\n\n%s\n' '\nRAM details\n%s\n' %s\ %s '%s\n-\t%s\n' );S0() { echo ' { q=$NF+0;$NF="";u=$(NF-1);$(NF-1)="";gsub(/^ +| +$/,"");if(q>='${p[$1]}') printf("%s (UID %s) is using %s '${p[$2]}'",$0,u,q);} ';};s=(' /^ *$|CSConfigDot/d;s/^ */   /;s/[-0-9A-Fa-f]{22,}/UUID/g;s/(ochat)\.[^.]+(\..+)/\1\2/;/Shared/!s/\/Users\/[^/]+/~/g ' ' s/^ +//;/de: S|[nst]:/p;' ' {sub(/^ +/,"")};/er:/;/y:/&&$2<'${p[10]} ' 1s/://;3,6d;/[my].+:/d;s/^ {4}//;H;${ g;s/\n$//;/s: [^EO]|x([^08]|02[^F]|8[^0])/p;} ' ' 5h;6{ H;g;/P/!p;} ' ' ($1~/^Cy/&&$3>'${p[11]}')||($1~/^Cond/&&$2!~/^N/) ' ' /:$/{ N;/:.+:/d;s/ *://;b0'$'\n'' };/^ *(V.+ [0N]|Man).+ /{ s/ 0x.... //;s/[()]//g;s/(.+: )(.+)/ (\2)/;H;};$b0'$'\n'' d;:0'$'\n'' x;s/\n\n//;/Apple[ ,]|Genesy|Intel|SMSC/d;s/\n.*//;/\)$/p;' ' s/^.*C/C/;H;${ g;/No th|pms/!p;} ' '/= [^GO]/p' '{$1=""};1' ' /Of/!{ s/^.+is |\.//g;p;} ' ' $0&&!/ / { n++;print;} END { if(n<200) print "com.apple.";} ' ' $3~/[0-9]:[0-9]{2}$/ { gsub(/:[0-9:a-f]{14}/,"");} { print|"tail -n'${p[12]}'";} ' ' NR==2&&$4<='${p[13]}' { print $4;} ' ' END { $2/=256;if($2>='${p[15]}') print int($2) } ' ' NR!=13{next};{sub(/[+-]$/,"",$NF)};'"`S0 21 22`" 'NR!=2{next}'"`S0 37 17`" ' NR!=5||$8!~/[RW]/{next};{ $(NF-1)=$1;$NF=int($NF/10000000);for(i=1;i<=3;i++){$i="";$(NF-1-i)="";};};'"`S0 19 20`" 's:^:/:p' '/\.kext\/(Contents\/)?Info\.plist$/p' 's/^.{52}(.+) <.+/\1/p' ' /Launch[AD].+\.plist$/ { n++;print;} END { print "'${p[41]}'";if(n<200) print "/System/";} ' '/\.xpc\/(Contents\/)?Info\.plist$/p' ' NR>1&&!/0x|\.[0-9]+$|com\.apple\.launchctl\.(Aqua|Background|System)$|'${p[41]}'/ { print $3;} ' ' /\.(framew|lproj)|\):/d;/plist:|:.+(Mach|scrip)/s/:[^:]+//p ' '/^root$/p' ' !/\/Contents\/.+\/Contents|Applic|Autom|Frameworks/&&/Lib.+\/Info.plist$/ { n++;print;} END { if(n<1100) print "/System/";} ' '/^\/usr\/lib\/.+dylib$/p' ' /Temp|emac/{next};/(etc|Preferences|Launch[AD].+)\// { sub(".(/private)?","");n++;print;} END { print "'${p[41]}'.plist\t'${p[42]}'";if(n<500) print "Launch";} ' ' /\/(Contents\/.+\/Contents|Frameworks)\/|\.wdgt\/.+\.([bw]|plu)/d;p;' 's/\/(Contents\/)?Info.plist$//;p' ' { gsub("^| |\n","\\|\\|kMDItem'${p[35]}'=");sub("^...."," ") };1 ' p '{print $3"\t"$1}' 's/\'$'\t''.+//p' 's/1/On/p' '/Prox.+: [^0]/p' '$2>'${p[43]}'{$2=$2-1;print}' ' BEGIN { i="'${p[26]}'";M1='${p[16]}';M2='${p[18]}';M3='${p[31]}';M4='${p[32]}';} !/^A/{next};/%/ { getline;if($5<M1) a="user "$2"%, system "$4"%";} /disk0/&&$4>M2 { b=$3" ops/s, "$4" blocks/s";} $2==i { if(c) { d=$3+$4+$5+$6;next;};if($4>M3||$6>M4) c=int($4/1024)" in, "int($6/1024)" out";} END { if(a) print "CPU: "a;if(b) print "I/O: "b;if(c) print "Net: "c" (KiB/s)";if(d) print "Net errors: "d" packets/s";} ' ' /r\[0\] /&&$NF!~/^1(0|72\.(1[6-9]|2[0-9]|3[0-1])|92\.168)\./ { print $NF;exit;} ' ' !/^T/ { printf "(static)";exit;} ' '/apsd|BKAg|OpenD/!s/:.+//p' ' (/k:/&&$3!~/(255\.){3}0/ )||(/v6:/&&$2!~/A/ ) ' ' $1~"lR"&&$2<='${p[25]}';$1~"li"&&$3!~"wpa2";' ' BEGIN { FS=":";p="uniq -c|sed -E '"'s/ +\$[0-9]+\$\$.+\$/\\\2 x\\\1/;s/x1$//'"'";} { n=split($3,a,".");sub(/_2[01].+/,"",$3);print $2" "$3" "a[n]$1|p;b=b$1;} END { close(p) if(b) print("\n\t* Code injection");} ' ' NR!=4{next} {$NF/=10240} '"`S0 27 14`" ' END { if($3~/[0-9]/)print$3;} ' ' BEGIN { L='${p[36]}';} !/^[[:space:]]*(#.*)?$/ { l++;if(l<=L) f=f"\n   "$0;} END { F=FILENAME;if(!F) exit;if(!f) f="\n   [N/A]";"file -b "F|getline T;if(T!~/^(AS.+ (En.+ )?text$|(Bo|PO).+ sh.+ text ex)/) F=F" ("T")";printf("\nContents of %s\n%s\n",F,f);if(l>L) printf("\n   ...and %s more line(s)\n",l-L);} ' ' /^ +[NP].+ =/h;/^( +D.+[{]|[}])/{ g;s/.+= //p;};' 's/0/Off/p' ' END{print NR} ' ' /id: N|te: Y/{i++} END{print i} ' ' / / { print "'"${p[28]}"'";exit;};1;' '/ en/!s/\.//p' ' NR!=13{next};{sub(/[+-M]$/,"",$NF)};'"`S0 39 40`" ' $10~/$L/&&$9!~"localhost" { sub(/.+:/,"",$9);print $1": "$9;} ' '/^ +r/s/.+"(.+)".+/\1/p' 's/(.+\.wdgt)\/(Contents\/)?Info\.plist$/\1/p' 's/^.+\/(.+)\.wdgt$/\1/p' ' /l: /{ /DVD/d;s/.+: //;b0'$'\n'' };/s: /{ /V/d;s/^ */- /;H;};$b0'$'\n'' d;:0'$'\n'' x;/APPLE [^:]+$/d;p;' ' /^find: /d;p;' "`S0 44 45`" );c1=(system_profiler pmset\ -g nvram fdesetup find syslog df vm_stat sar ps sudo\ crontab sudo\ iotop top pkgutil 'PlistBuddy 2>&1 -c "Print' whoami cksum kextstat launchctl sudo\ launchctl crontab 'sudo defaults read' stat lsbom mdfind ' for i in ${p[24]};do ${c1[18]} ${c2[27]} $i;done;' defaults\ read scutil sudo\ dtrace sudo\ profiles sed\ -En awk /S*/*/P*/*/*/C*/*/airport networksetup mdutil sudo\ lsof test );c2=(com.apple.loginwindow\ LoginHook '" /L*/P*/loginw*' '" L*/P*/*loginit*' 'L*/Ca*/com.ap*.Saf*/E*/* -d 1 -name In*t -exec '"${c1[14]}"' :CFBundleDisplayName" {} \;|sort|uniq' '~ $TMPDIR.. \( -flags +sappnd,schg,uappnd,uchg -o ! -user $UID -o ! -perm -600 $' '.??* -path .Trash -prune -o -type d -name *.app -print -prune' :${p[35]}\" :Label\" '{/,}L*/{Con,Pref}* -type f ! -size 0 -name *.plist -exec plutil -s {} \;' "-f'%N: %l' Desktop L*/Keyc*" therm sysload boot-args status " -F '\$Time \$Message' -k Sender kernel -k Message Req 'bad |Beac|caug|dead[^bl]|FAIL|fail|GPU |hfs: Ru|inval|jnl:|last value [1-9]|n Cause: -|NVDA$|pagin|proc: t|Roamed|rror|ssert|Thrott|tim(ed? ?|ing )o|WARN' -k Message Rne 'Goog|ksadm|SMC:| VALI|xpma' -o -k Sender fseventsd -k Message Req 'SL' " '-du -n DEV -n EDEV 1 10' 'acrx -o comm,ruid,%cpu' '-t1 10 1' '-f -pfc /var/db/r*/com.apple.*.{BS,Bas,Es,J,OSXU,Rem,up}*.bom' '{/,}L*/Lo*/Diag* -type f -regex .\*[cgh] ! -name *ag \( -exec grep -lq "^Thread c" {} \; -exec printf \* \; -o -true $ -execdir stat -f:%Sc:%N -t%F {} \;|sort -t: -k2 |tail -n'${p[38]} '-L {/{S*/,},}L*/Lau* -type f' '-L /{S*/,}L*/StartupItems -type f -exec file {} +' '-L /S*/L*/{C*/Sec*A,E}* {/,}L*/{A*d,Ca*/*/Ex,Co{mpon,reM},Ex,Inter,iTu*/*P,Keyb,Mail/B,Pr*P,Qu*T,Scripti,Sec,Servi,Spo,Widg}* -path \\*s/Resources -prune -o -type f -name Info.plist' '/usr/lib -type f -name *.dylib' `awk "${s[31]}"<<<${p[23]}` "/e*/{auto,{cron,fs}tab,hosts,{[lp],sy}*.conf,pam.d/*,ssh{,d}_config,*.local} {,/usr/local}/etc/periodic/*/* /L*/P*{,/*}/com.a*.{Bo,sec*.ap}*t /S*/L*/Lau*/*t .launchd.conf" list getenv /Library/Preferences/com.apple.alf\ globalstate --proxy '-n get default' -I --dns -getdnsservers\ "${p[N5]}" -getinfo\ "${p[N5]}" -P -m\ / '' -n1 '-R -l1 -n1 -o prt -stats command,uid,prt' '--regexp --only-files --files com.apple.pkg.*|sort|uniq' -kl -l -s\ / '-R -l1 -n1 -o mem -stats command,uid,mem' '+c0 -i4TCP:0-1023' com.apple.dashboard\ layer-gadgets '-d /L*/Mana*/$USER&&echo On' '-app Safari WebKitDNSPrefetchingEnabled' "+c0 -l|awk '{print(\$1,\$3)}'|sort|uniq -c|sort -n|tail -1|awk '{print(\$2,\$3,\$1)}'" );N1=${#c2[@]};for j in {0..9};do c2[N1+j]=SP${p[j]}DataType;done;N2=${#c2[@]};for j in 0 1;do c2[N2+j]="-n ' syscall::'${p[33+j]}':return { @out[execname,uid]=sum(arg0) } tick-10sec { trunc(@out,1);exit(0);} '";done;l=(Restricted\ files Hidden\ apps 'Elapsed time (s)' POST Battery Safari\ extensions Bad\ plists 'High file counts' User Heat System\ load boot\ args FileVault Diagnostic\ reports Log 'Free space (MiB)' 'Swap (MiB)' Activity 'CPU per process' Login\ hook 'I/O per process' Mach\ ports kexts Daemons Agents launchd Startup\ items Admin\ access Root\ access Bundles dylibs Apps Font\ issues Inserted\ dylibs Firewall Proxies DNS TCP/IP Wi-Fi Profiles Root\ crontab User\ crontab 'Global login items' 'User login items' Spotlight Memory Listeners Widgets Parental\ Controls Prefetching SATA Descriptors );N3=${#l[@]};for i in 0 1 2;do l[N3+i]=${p[5+i]};done;N4=${#l[@]};for j in 0 1;do l[N4+j]="Current ${p[29+j]}stream data";done;A0() { id -G|grep -qw 80;v[1]=$?;((v[1]==0))&&sudo true;v[2]=$?;v[3]=`date +%s`;clear >&-;date '+Start time: %T %D%n';};for i in 0 1;do eval ' A'$((1+i))'() { v=` eval "${c1[$1]} ${c2[$2]}"|'${c1[30+i]}' "${s[$3]}" `;[[ "$v" ]];};A'$((3+i))'() { v=` while read i;do [[ "$i" ]]&&eval "${c1[$1]} ${c2[$2]}" \"$i\"|'${c1[30+i]}' "${s[$3]}";done<<<"${v[$4]}" `;[[ "$v" ]];};A'$((5+i))'() { v=` while read i;do '${c1[30+i]}' "${s[$1]}" "$i";done<<<"${v[$2]}" `;[[ "$v" ]];};';done;A7(){ v=$((`date +%s`-v[3]));};B2(){ v[$1]="$v";};for i in 0 1;do eval ' B'$i'() { v=;((v['$((i+1))']==0))||{ v=No;false;};};B'$((3+i))'() { v[$2]=`'${c1[30+i]}' "${s[$3]}"<<<"${v[$1]}"`;} ';done;B5(){ v[$1]="${v[$1]}"$'\n'"${v[$2]}";};B6() { v=` paste -d: <(printf "${v[$1]}") <(printf "${v[$2]}")|awk -F: ' {printf("'"${f[$3]}"'",$1,$2)} ' `;};B7(){ v=`grep -Fv "${v[$1]}"<<<"$v"`;};C0(){ [[ "$v" ]]&&echo "$v";};C1() { [[ "$v" ]]&&printf "${f[$1]}" "${l[$2]}" "$v";};C2() { v=`echo $v`;[[ "$v" != 0 ]]&&C1 0 $1;};C3() { v=`sed -E "$s"<<<"$v"`&&C1 1 $1;};for i in 1 2;do for j in 0 2 3;do eval D$i$j'(){ A'$i' $1 $2 $3; C'$j' $4;};';done;done;{ A0;D20 0 $((N1+1)) 2;D10 0 $N1 1;B0;C2 27;B0&&! B1&&C2 28;D12 15 37 25 8;A1 0 $((N1+2)) 3;C0;D13 0 $((N1+3)) 4 3;D23 0 $((N1+4)) 5 4;D13 0 $((N1+9)) 59 50;for i in 0 1 2;do D13 0 $((N1+5+i)) 6 $((N3+i));done;D13 1 10 7 9;D13 1 11 8 10;D22 2 12 9 11;D12 3 13 10 12;D23 4 19 44 13;D23 5 14 12 14;D22 6 36 13 15;D22 7 37 14 16;D23 8 15 38 17;D22 9 16 16 18;B1&&{ D22 35 49 61 51;D22 11 17 17 20;for i in 0 1;do D22 28 $((N2+i)) 45 $((N4+i));done;};D22 12 44 54 45;D22 12 39 15 21;A1 13 40 18;B2 4;B3 4 0 19;A3 14 6 32 0;B4 0 5 11;A1 17 41 20;B7 5;C3 22;B4 4 6 21;A3 14 7 32 6;B4 0 7 11;B3 4 0 22;A3 14 6 32 0;B4 0 8 11;B5 7 8;B1&&{ A2 19 26 23;B7 7;C3 23;};A2 18 26 23;B7 7;C3 24;A2 4 20 21;B7 6;B2 9;A4 14 7 52 9;B2 10;B6 9 10 4;C3 25;D13 4 21 24 26;B4 4 12 26;B3 4 13 27;A1 4 22 29;B7 12;B2 14;A4 14 6 52 14;B2 15;B6 14 15 4;B3 0 0 30;C3 29;A1 4 23 27;B7 13;C3 30;D13 24 24 32 31;D13 25 37 32 33;A2 23 18 28;B2 16;A2 16 25 33;B7 16;B3 0 0 34;B2 21;A6 47 21&&C0;B1&&{ D13 21 0 32 19;D13 10 42 32 40;D22 29 35 46 39;};D13 14 1 48 42;D12 34 43 53 44;D22 0 $((N1+8)) 51 32;D13 4 8 41 6;D12 26 28 35 34;D13 27 29 36 35;A2 27 32 39&&{ B2 19;A2 33 33 40;B2 20;B6 19 20 3;};C2 36;D23 33 34 42 37;B1&&D23 35 45 55 46;D23 32 31 43 38;D12 36 47 32 48;D13 20 42 32 41;D13 14 2 48 43;D13 4 5 32 1;D13 4 3 60 5;D12 26 48 49 49;B3 4 22 57;A1 26 46 56;B7 22;B3 0 0 58;C3 47;D22 4 4 50 0;D23 22 9 37 7;A7;C2 2;} 2>/dev/null|pbcopy;exit 2>&-
Copy the selected text to the Clipboard by pressing the key combination command-C.
8. Launch the built-in Terminal application in any of the following ways:
☞ Enter the first few letters of its name into a Spotlight search. Select it in the results (it should be at the top.)
☞ In the Finder, select Go ▹ Utilities from the menu bar, or press the key combination shift-command-U. The application is in the folder that opens.
☞ Open LaunchPad. Click Utilities, then Terminal in the icon grid.
Click anywhere in the Terminal window and paste by pressing command-V. The text you pasted should vanish immediately. If it doesn't, press the return key.
9. If you see an error message in the Terminal window such as "Syntax error" or "Event not found," enter
exec bash
and press return. Then paste the script again.
10. If you're logged in as an administrator, you'll be prompted for your login password. Nothing will be displayed when you type it. You will not see the usual dots in place of typed characters. Make sure caps lock is off. Type carefully and then press return. You may get a one-time warning to be careful. If you make three failed attempts to enter the password, the test will run anyway, but it will produce less information. In most cases, the difference is not important. If you don't know the password, or if you prefer not to enter it, press the key combination control-C or just press return three times at the password prompt. Again, the script will still run.
If you're not logged in as an administrator, you won't be prompted for a password. The test will still run. It just won't do anything that requires administrator privileges.
11. The test may take a few minutes to run, depending on how many files you have and the speed of the computer. A computer that's abnormally slow may take longer to run the test. While it's running, there will be nothing in the Terminal window and no indication of progress. Wait for the line
[Process completed]
to appear. If you don't see it within half an hour or so, the test probably won't complete in a reasonable time. In that case, close the Terminal window and report what happened. No harm will be done.
12. When the test is complete, quit Terminal. The results will have been copied to the Clipboard automatically. They are not shown in the Terminal window. Please don't copy anything from there. All you have to do is start a reply to this comment and then paste by pressing command-V again.
At the top of the results, there will be a line that begins with the words "Start time." If you don't see that, but instead see a mass of gibberish, you didn't wait for the "Process completed" message to appear in the Terminal window. Please wait for it and try again.
If any private information, such as your name or email address, appears in the results, anonymize it before posting. Usually that won't be necessary.
13. When you post the results, you might see an error message on the web page: "You have included content in your post that is not permitted," or "You are not authorized to post." That's a bug in the forum software. Please post the test results on Pastebin, then post a link here to the page you created.
14. This is a public forum, and others may give you advice based on the results of the test. They speak only for themselves, and I don't necessarily agree with them.
Copyright © 2014 by Linc Davis. As the sole author of this work, I reserve all rights to it except as provided in the Use Agreement for the Apple Support Communities website ("ASC"). Readers of ASC may copy it for their own personal use. Neither the whole nor any part may be redistributed.

Creation of Trusted RFC fails

Hello
I am trying to connect my ERP and BW systems to Solution Manager but I can't make Trusted RFC connections.
When I checked SM59 on three systems I see `You are not authorized to logon to the target system (error code 1)
I did successfully installed Solution Manager, did initial and basic settings. I created SOLMAN_ADMIN user every system assigned it SAP_ALL, SAP_NEW and created a role with S_RFCACL authorization object, (I assigned full authorization on all objects on that role). I did add IP numbers and hostnames to hosts file but still same. When I test connection I get success but authorization check always fails.
I both tried from SOLMAN_SETUP > Managed Systems and also after clearing all RFCs and trusted system entries from SMT1 and SMT2, I added RFCs from SMSY but I get same results.
Side note, all servers are in the same subnet but Solution Manager server belongs to different domain.
My main reason to implement trusted rfc is I need to implement ServiceDesk and I have to test it before going live, so all data on Solution Manager is expendable.
My systems are
ERP: Windows 2003 R2 x64, SQL 2005 SP3, ERP EHP4 SP5
BW: Windows 2003 R2 x64, SQL 2008 SP1, NW 7.0 EHP2 SP6
Solman: Windows 2003 R2, SQL 2008 SP1, EHP1 SP7
What am I doing wrong there?

Hello,
Are you letting the wizard create the RFC's for you?
On the Client tab in SMSY?
Also you assigned S_RFCACL what about S_RFC?
I would ask you to check the logon tab and make sure Current user is not checked.
Also, please review this Note 128447 - Trusted/trusting systems
This should help resolve.
Regards,
Paul

Bit Locker on windows 2008 R2 Virtual machine

Hello there !
We have a a number of Windows 2008 R2 machines and we wish to provide an encryption mechanism for each Virtual machine.
It's a VMware environment and all the VM files go into NFS drives.
Do you think , Bitlocker will help ?
Is Bitlocker supported on Virtual machines ?
In my opinion , Bitlocker is to safeguard against any "physical" threat to a machine.
But I wanted a second opinion here.
Please help me.

VMs don't have a Trusted Platform Module (TPM) available to store the Full Volume Encryption Key (FVEK) used for BitLocker, but you can still use Hyper-V by storing the necessary information on a floppy drive. Use the command line:
cscript c:\Windows\System32\manage-bde.wsf -on C: -rp -sk A:
BitLocker is now enabled within the VM.
VMs don't have a Trusted Platform Module (TPM) available to store the Full Volume Encryption Key (FVEK) used for BitLocker, but you can still use Hyper-V by storing the necessary information on a floppy drive. Use the command line:
cscript c:\Windows\System32\manage-bde.wsf -on C: -rp -sk A:
BitLocker is now enabled within the VM.
Hyper-V Security How to: Use BitLocker to Protect Your VMs
http://blogs.technet.com/b/tonyso/archive/2008/07/01/hyper-v-security-how-to-use-bitlocker-to-protect-your-vms.aspx
for VMeare VMs you have to check with VMware and these links may help you
How to Encrypt VMware VM running Windows 2008 R2 with Microsoft Bitlocker
http://www.christowles.com/2010/10/how-to-encrypt-vmware-vm-running.html
http://www.networknet.nl/apps/wp/archives/395
Mohamed Fawzi | http://fawzi.wordpress.com

Installation of Client Access role fails on Windows Server 2008 R2 (Execution of: "$error.Clear(); Install-ExchangeCertificate -services "IIS, POP, IMAP")

Hello
I am trying to install Exchange Server 2010 beta 1 onto a Windows Server 2008 R2 (build 7000) machine which has also been set up as a domain controller.
However when attempting to install the Client Access role, setup fails with the error below.
Does anyone know of a way to get around this please?
I have already searched for this error and not found any similar threads.
Also every time I press the code button on this forum it crashes the browser and I keep losing the message! (IE8 from within Server R2). Also the message box is very small, will not expand and keeps jumping to the top.
Thanks
Robin
[code]
Summary: 4 item(s). 1 succeeded, 1 failed.
Elapsed time: 00:00:01
Preparing Setup
Completed
Elapsed Time: 00:00:00
Client Access Role
Failed
Error:
The execution of: "$error.Clear(); Install-ExchangeCertificate -services "IIS, POP, IMAP" -DomainController $RoleDomainController", generated the following error: "Could not grant Network Service access to the certificate with thumbprint 2F320F5D5B5C6873E54C8AB57F604D8AFA31D18C because a cryptographic exception was thrown.".
Could not grant Network Service access to the certificate with thumbprint 2F320F5D5B5C6873E54C8AB57F604D8AFA31D18C because a cryptographic exception was thrown.
Access is denied.
Elapsed Time: 00:00:01
Mailbox Role
Cancelled
Finalizing Setup
Cancelled
[/code]
Robin Wilson

Hello
Thanks for all the replies.
I have since wiped the system and installed everything again and it all worked this time so not sure what was wrong last time. I did try to uninstall all Exchange components and then uninstall IIS and Application server, reboot and re-install but I received the same error still when it came to installing the client access role.
Walter: I just attempted the standard installation which should have used the default self-signed certificate. Everything was a fresh install done at the same time on a freshly formatted PC.
For info last time when it failed to work:
- Installed Windows Server 2008 R2
- Installed Domain Controller role using dcpromo. I set the forest and domain as Windows Server 2008 R2
- Added a forest trust between main domain and test Exchange domain (set up as ex2010.local)
- Installed IIS and Application Server role
- Installed Hyper-v role
- Installed Desktop Experience feature
- Installed Exchange and recieved the error
When it worked I set up the forest and domain in Windows Server 2008 mode (i.e. not R2), installed Exchange first and then set up the forest trust and then Hyper-v. It did say it failed to configure dns which was probably because it started trying to do automatic updates half way through the dcpromo! DNS seems to work ok though.
I did notice this time that Hyper-v gave a warning about the virtual network adapter not being set up correctly and the local network did not work correctly although I could access the internet. Not sure if this could have been related to the cause of the problem previously. For now I have disabled the virtual network until I get time to try and get it working and so the mail will work in the meantime.
I also noticed that Hyper-v added an extra 443 ssl binding to the default website so as it had 2 bindings on port 443 it refused to start. After deleting one it worked.
I decided to install Exchange onto a domain controller as it is only a test and I wouldn't do it in a live environment. I am also short of test machines! It didn't give me any warnings about this actually, I think previous versions warn you that it is not recommended.
Andreas and Chinthaka: I did not know about the requirement to run the domain at 2003 mode. The main domain is running in 2008 mode with Exchange 2007 so I assume this is just a temporary beta related requirement. It does seem to be working (second attempt) so far in a 2008 mode domain although I haven't had a chance to fully test it yet.
Thanks
Robin
P.S. Sorry it's taken me a while to reply!
Robin Wilson

SSTP problem on Windows Server 2008 r2, clients getting error 0x8007274C

PROBLEM: Clients keep getting error 0x8007274C when attempting to connect to the VPN server using SSTP.
SYMPTOMS:
- L2TP connections works great
--- L2TP connections generate RemoteAccess events in Event viewer, but none whatsoever for the failed SSTP attempts
- Client CANNOT ACCESS
https://vpn.mycompany.net/sra_{BA195980-CD49-458b-9E23-C84EE0ADCD75}
- After several attempts to check and recheck RRAS Setup. Added IIS Role (much later) just to prove that cert is valid.
--- If server's RRAS service disabled, IIS enabled, client is able to browse to that VPN server, certificate checks out.
http://vpn.mycompany.net &
https://vpn.mycompany.net.
--- However, if RRAS service is running, IIS would not respond to either HTTP nor HTTPS traffic.
--- SSTP won't work whether or not WWW service is running.
- Port Scanner tests to the VPN Server reveals that port 80 & 443 are not open when RRAS service is running and IIS service stopped.
--- But, when RRAS service is stopped and IIS is running, port 80 & 443 responds.
--- Not sure whether 443 is [b]supposed to be open[/b] when only RRAS is running.
============================================================================
CLIENT:
============================================================================
- Vista SP1 (32-bit), Windows 7 (32-bit), Windows 7 x64 SP1
- CRL entry is resolvable
- vpn.mycompany.net certificate installed in Local Computer > Trusted Root CA
- SSTP Client connecting to FQDN vpn.mycompany.net
- Windows Firewall is DISABLED (for testing purposes)
- No Anti Virus nor Anti Malware protection running (for testing purposes)
- Can access other HTTPS sites
============================================================================
SERVER (Windows 2008 Svr r2; Roles: DNS, AD, RRAS):
============================================================================
- 2 NICS (1 bound to an internal IP, 1 bound to an external IP addr)
-- External NIC bound to a valid ISP IP Address, with a FQDN vpn.mycompany.net
- Windows Firewall Service on Server DISABLED
- No other device in front of the external IP addr NIC
- IPV6 on RRAS DISABLED
- NO RRAS Inbound/Outbound filter at all
- Windows Firewall Service disabled
- Using external Certificate Authority
- Certs bound to port 443 seem to match in registry key HKLM\...\SstpSvc\Parameters
It seems that the VPN server is simply not accepting the SSTP traffic. I don't think we've even gotten to certificate negotiation.
Been trying for a few days now, have consulted many SSTP online resources (MS and others) before posting.
Am stumped. Any help would be greatly appreciated.
============================================================================
SERVER CONFIGURATION CHECKLIST:
============================================================================
SERVICE_NAME: remoteaccess
        TYPE               : 20 WIN32_SHARE_PROCESS
        STATE              : 4 RUNNING
                                (STOPPABLE, PAUSABLE, ACCEPTS_SHUTDOWN)
        WIN32_EXIT_CODE    : 0 (0x0)
        SERVICE_EXIT_CODE : 0 (0x0)
        CHECKPOINT         : 0x0
        WAIT_HINT          : 0x0
============================================================================
SERVICE_NAME: sstpsvc
        TYPE               : 20 WIN32_SHARE_PROCESS
        STATE              : 4 RUNNING
                                (STOPPABLE, NOT_PAUSABLE, ACCEPTS_SHUTDOWN)
        WIN32_EXIT_CODE    : 0 (0x0)
        SERVICE_EXIT_CODE : 0 (0x0)
        CHECKPOINT         : 0x0
        WAIT_HINT          : 0x0
============================================================================
TCP    0.0.0.0:443            0.0.0.0:0              LISTENING       4
TCP    192.168.2.109:3268     192.168.2.116:45443    ESTABLISHED     500
TCP    [::]:443               [::]:0                 LISTENING
4
UDP    0.0.0.0:59443          *:*
1616
UDP    0.0.0.0:60443          *:*
1616
UDP    0.0.0.0:61443          *:*
1616
============================================================================
SSL Certificate bindings:
    IP:port                 : 0.0.0.0:443
    Certificate Hash        : 4cbfd1fc43d4fea1cd9dce519a0c0901330a343d
    Application ID          : {ba195980-cd49-458b-9e23-c84ee0adcd75}
    Certificate Store Name : MY
    Verify Client Certificate Revocation    : Enabled
    Verify Revocation Using Cached Client Certificate Only    : Disabled
    Usage Check    : Enabled
    Revocation Freshness Time : 0
    URL Retrieval Timeout   : 0
    Ctl Identifier          :
    Ctl Store Name          :
    DS Mapper Usage    : Disabled
    Negotiate Client Certificate    : Disabled
    IP:port                 : [::]:443
    Certificate Hash        : 4cbfd1fc43d4fea1cd9dce519a0c0901330a343d
    Application ID          : {ba195980-cd49-458b-9e23-c84ee0adcd75}
    Certificate Store Name : MY
    Verify Client Certificate Revocation    : Enabled
    Verify Revocation Using Cached Client Certificate Only    : Disabled
    Usage Check    : Enabled
    Revocation Freshness Time : 0
    URL Retrieval Timeout   : 0
    Ctl Identifier          :
    Ctl Store Name          :
    DS Mapper Usage    : Disabled
    Negotiate Client Certificate    : Disabled
============================================================================
Selected (some, not all) Info about Certificate bound to SSTP viewed through RRAS MMC:
Version: V3
Valid To: ‎Thursday, ‎August ‎30, ‎2012 6:59:59 PM
Subject:
CN = vpn.mycompany.net
OU = nsProtect Secure Xpress
OU = Domain Control Validated
Enhanced Key Usage:
Server Authentication (1.3.6.1.5.5.7.3.1)
Client Authentication (1.3.6.1.5.5.7.3.2)
CRL Distribution Points:
[1]CRL Distribution Point
     Distribution Point Name:
          Full Name:
               URL=http://crl.netsolssl.com/NetworkSolutionsDVServerCA.crl
Thumbprint Algorithm: sha1
Thumbprint: ‎4c bf d1 fc 43 d4 fe a1 cd 9d ce 51 9a 0c 09 01 33 0a 34 3d
============================================================================
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\SstpSvc\Parameters]
"ServiceDllUnloadOnStop"=dword:00000001
"ServiceDll"=hex(2):25,00,53,00,79,00,73,00,74,00,65,00,6d,00,52,00,6f,00,6f,\
00,74,00,25,00,5c,00,73,00,79,00,73,00,74,00,65,00,6d,00,33,00,32,00,5c,00,\
73,00,73,00,74,00,70,00,73,00,76,00,63,00,2e,00,64,00,6c,00,6c,00,00,00
"ServerURI"="/sra_{BA195980-CD49-458b-9E23-C84EE0ADCD75}/"
"ListenerPort"=dword:00000000
"UseHttps"=dword:00000001
"SHA1CertificateHash"=hex:4c,bf,d1,fc,43,d4,fe,a1,cd,9d,ce,51,9a,0c,09,01,33,\
0a,34,3d
"isHashConfiguredByAdmin"=dword:00000001
"SHA256CertificateHash"=hex:ee,06,d8,78,2a,8c,95,d6,a1,40,d1,80,77,2c,e5,4c,f9,\
83,a1,e4,94,60,82,28,3d,56,49,82,44,bc,1e,a9
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\SstpSvc\Parameters\ConfigStore]
"ListenerPort"=dword:000001bb
"UseHttps"=dword:00000001
"V4CertPlumbedBySstp"=dword:00000000
"V6CertPlumbedBySstp"=dword:00000000
============================================================================
SELECTED EVENT VIEWER ENTRIES AFTER RESTART OF RRAS + SUCCESSFUL ATTEMPT OF L2TP (BUT NO ENTRIES AT ALL FOR SSTP CONN ATTEMPTS):
Level Date and Time Source Event ID Task Category
Information 8/31/2011 11:36:42 AM Microsoft-Windows-Time-Service 37 None The time provider NtpClient is currently receiving valid time data from zeus.olympia.local (ntp.d|0.0.0.0:123->192.168.2.114:123).
Information 8/31/2011 11:35:22 AM RemoteAccess 20275 None CoID={075CE235-832C-45FE-BE27-8B41BC765125}: The user with ip address 192.168.2.145 has disconnected
Information 8/31/2011 11:35:22 AM RemoteAccess 20272 None CoID={075CE235-832C-45FE-BE27-8B41BC765125}: The user OLYMPIA\inul connected on port VPN2-15 on 8/31/2011 at 11:34 AM and disconnected on 8/31/2011 at 11:35 AM. The user
was active for 0 minutes 32 seconds. 17264 bytes were sent and 21956 bytes were received. The reason for disconnecting was user request. The tunnel used was WAN Miniport (L2TP). The quarantine state was 'not nap-capable'.
Information 8/31/2011 11:34:57 AM Microsoft-Windows-Iphlpsvc 4200 None Isatap interface isatap.{6E06F030-7526-11D2-BAF4-00600815A4BD} with address fe80::5efe:192.168.2.144 has been brought up.
Information 8/31/2011 11:34:51 AM Microsoft-Windows-UserPnp 20003 (7005) Driver Management has concluded the process to add Service tunnel for Device Instance ID ROOT\*ISATAP\0002 with the following status: 0.
Information 8/31/2011 11:34:50 AM RemoteAccess 20274 None CoID={075CE235-832C-45FE-BE27-8B41BC765125}: The user OLYMPIA\inul connected on port VPN2-15 has been assigned address 192.168.2.145
Information 8/31/2011 11:34:50 AM RemoteAccess 20250 None CoID={075CE235-832C-45FE-BE27-8B41BC765125}: The user OLYMPIA\inul has connected and has been successfully authenticated on port VPN2-15.
Information 8/31/2011 11:34:49 AM RemoteAccess 20088 None The Remote Access Server acquired IP Address 192.168.2.144 to be used on the Server Adapter.
Information 8/31/2011 11:30:26 AM Microsoft-Windows-HttpEvent 15007 None Reservation for namespace identified by URL prefix
https://+:443/sra_{BA195980-CD49-458b-9E23-C84EE0ADCD75}/ was successfully added.
Information 8/31/2011 11:30:26 AM Microsoft-Windows-HttpEvent 15008 None Reservation for namespace identified by URL prefix
https://+:443/sra_{BA195980-CD49-458b-9E23-C84EE0ADCD75}/ was successfully deleted.
Information 8/31/2011 11:30:26 AM Service Control Manager 7036 None The Application Layer Gateway Service service entered the running state.
Information 8/31/2011 11:30:26 AM Service Control Manager 7036 None The Routing and Remote Access service entered the running state.
Error 8/31/2011 11:30:26 AM RemoteAccess 20106 None "Unable to add the interface {BBF2BA88-DCC5-4D36-9256-E1C8AF602467} with the Router Manager for the IPV6 protocol. The following error occurred: Cannot complete this function.
Error 8/31/2011 11:30:26 AM RemoteAccess 20106 None "Unable to add the interface {DF914ECC-AC6A-441E-A47C-57CE90C7F8B0} with the Router Manager for the IPV6 protocol. The following error occurred: Cannot complete this function.
Information 8/31/2011 11:30:21 AM Service Control Manager 7036 None The Routing and Remote Access service entered the stopped state.
Information 8/31/2011 11:30:20 AM Service Control Manager 7036 None The Application Layer Gateway Service service entered the stopped state.
Information 8/31/2011 11:30:01 AM Microsoft-Windows-Eventlog 104 Log clear The System log file was cleared.
============================================================================
============================================================================

Hi, I'm in the exact same situation and for once google is of no help. I have tried to get a simple connect through to my server (by using "telnet vpn.myserver.com 443") but it will only timeout. After deactivating the Windows firewall on the VPN box (which
is a virtual machine on a Hyper-V R2 SP1) I can locally telnet the VPN box and even get the special url (https://vpn.myserver.com/sra_{BA195980-CD49-458b-9E23-C84EE0ADCD75}/) to work. But this only works on the VPN box itself, no other server or client is
able to contact it. I have tried to connect from another server sitting next to the vpn box and in the same subnet (public IPs) but couldn't connect either. PPTP and L2TP connections are working but not SSTP. Another approach was to manually bind the http.sys
to specific IPs. No change. I'm fresh out of ideas. Anyone? regards, ck

EPM 11.1.2: Foundation Services config fails on Windows 2008 SP1 server.

Hi,
I installed EPM 11.1.2 on Windows 2008 SP1, 32-bit. The installation succeeded (no errors in logs). However, when I run EPM Configurator to configure Foundation Services, it fails.
Environment:
EPM Server: Windows 2008 SP1 32-bit
RDBMS: Oracle Enterprise Edition 10.2.0.4 (running on remote AIX 5.3 TL 8 server)
Oracle Client: 10.2.0.4 (full client install)
The configtool.log (see below) indicates that the program cannot find the reg.properties file. I checked the server and this file does not exist. The log file also reports non-existing classpath entries (not sure if this is related). The registry.log file (see below) reports a jdbc driver error: java.sql.SQLSyntaxErrorException: ORA-00917: missing comma.
I submitted a service request with Oracle Support, but the support engineer said that installation and configuration errors are outside the scope of technical support.
Any ideas/suggestions would be greatly appreciated.
Thank you.
Configtool_Summary.log:
---- Product Configuration Summary.....
( May 9, 2010 6:55:58 AM ): ---- Hyperion Foundation Configuration......
( May 9, 2010 6:55:59 AM ): Pre-Configuration :: pass
( May 9, 2010 6:55:59 AM ): Common Settings :: fail
( May 9, 2010 6:56:03 AM ): Configure Database :: pass
( May 9, 2010 6:56:03 AM ): Deploy to Application Server :: fail
( May 9, 2010 6:57:03 AM ): Configure Oracle Configuration Manager :: fail
( May 9, 2010 6:57:08 AM ): ---- Workspace Configuration......
( May 9, 2010 6:57:08 AM ): Deploy to Application Server :: fail
Configtool.log:
[2010-05-09T06:49:19.927-06:00] [EPMCFG] [TRACE] [EPMCFG-01001] [oracle.EPMCFG] [tid: 10] [ecid: 0000IXx7D4337E65zNd9iW1BtexF000000,0] [SRC_CLASS: com.oracle.preconfig.util.EpmLoggerPreConfigReporter] trace: Running preconfig checks...[[
Running EPM_ORACLE_HOME check...
EPM_ORACLE_HOME environment variable value: C:\Oracle\Middleware\EPMSystem11R1
JAVA_HOME environment variable value: C:\Oracle\Middleware\EPMSystem11R1\..\jdk160_11
EPM_ORACLE_HOME check succeeded
Running .oracle.products check... .oracle.products check succeeded
Running Jars manifest check...
Time spent for manifests parsing: 55129 ms
Maximum jars depth achieved: 9, while restriction was: unrestricted
Parsed 439 manifests
Total jars and classpath entries encountered: 439
Total not-existing referenced classpath entries count: 28
Enumerating not-existing classpath entries:
Missing (depth 9) file C:\oracle\Middleware\modules\com.bea.cie.comdev.it_6.1.1.0.jar referenced from C:\oracle\Middleware\modules\features\com.bea.cie.config.it_6.1.0.0.jar referenced from C:\oracle\Middleware\modules\features\com.bea.cie.config.L10N_6.1.0.0.jar referenced from C:\oracle\Middleware\modules\features\com.bea.cie.config_6.1.0.0.jar referenced from C:\oracle\Middleware\utils\config\10.3\config-launch.jar referenced from C:\oracle\Middleware\wlserver_10.3\common\lib\pdev.jar referenced from C:\oracle\Middleware\wlserver_10.3\server\lib\weblogic.jar referenced from C:\oracle\Middleware\EPMSystem11R1\common\jlib\11.1.2.0\epm_jrf.jar referenced from C:\oracle\Middleware\EPMSystem11R1\common\jlib\11.1.2.0\epm_j2se.jar referenced from C:\oracle\Middleware\EPMSystem11R1\common\config\11.1.2.0\configtool.jar
Missing (depth 5) file C:\oracle\Middleware\wlserver_10.3\server\lib\wlw-langx-L10N.jar referenced from C:\oracle\Middleware\wlserver_10.3\server\lib\wlw-langx.jar referenced from C:\oracle\Middleware\wlserver_10.3\server\lib\weblogic.jar referenced from C:\oracle\Middleware\EPMSystem11R1\common\jlib\11.1.2.0\epm_jrf.jar referenced from C:\oracle\Middleware\EPMSystem11R1\common\jlib\11.1.2.0\epm_j2se.jar referenced from C:\oracle\Middleware\EPMSystem11R1\common\config\11.1.2.0\configtool.jar
Total classpath elements to check: 67
Check for C:\oracle\Middleware\EPMSystem11R1\common\config\11.1.2.0\lib\hit-common.jar existence succeeded; file depth: 1
Check for C:\oracle\Middleware\EPMSystem11R1\common\config\11.1.2.0\lib\hit-config.jar existence succeeded; file depth: 1
Jars manifest check succeeded
Running Environment variables check... Environment variables check succeeded
Running Windows system32 directory check... Windows system32 directory check succeeded
Preconfig checks passed! Going further
[2010-05-09T06:49:22.303-06:00] [EPMCFG] [NOTIFICATION] [EPMCFG-01731] [oracle.EPMCFG] [tid: 10] [ecid: 0000IXx7D4337E65zNd9iW1BtexF000000,0] [SRC_CLASS: com.hyperion.config.wizard.ConfigToolWizardLoader] Couldnt find proper class for wizard state: {0}, skipping...
[2010-05-09T06:49:22.943-06:00] [EPMCFG] [WARNING] [EPMCFG-01001] [oracle.EPMCFG] [tid: 10] [ecid: 0000IXx7D4337E65zNd9iW1BtexF000000,0] [SRC_CLASS: com.hyperion.config.document.Storage] trace: {0}[[
com.hyperion.hit.registry.exceptions.RegistryException: No database properties could be read
[2010-05-09T06:49:22.943-06:00] [EPMCFG] [TRACE] [EPMCFG-05934] [oracle.EPMCFG] [tid: 10] [ecid: 0000IXx7D4337E65zNd9iW1BtexF000000,0] [SRC_CLASS: com.hyperion.cis.utils.StopWatch] Task [Init Storage] has been started.
[2010-05-09T06:49:22.943-06:00] [EPMCFG] [TRACE] [EPMCFG-05934] [oracle.EPMCFG] [tid: 10] [ecid: 0000IXx7D4337E65zNd9iW1BtexF000000,0] [SRC_CLASS: com.hyperion.cis.utils.StopWatch] Task [Getting registry instance] has been started.
[2010-05-09T06:49:22.943-06:00] [EPMCFG] [WARNING] [EPMCFG-01001] [oracle.EPMCFG] [tid: 10] [ecid: 0000IXx7D4337E65zNd9iW1BtexF000000,0] [SRC_CLASS: com.hyperion.config.document.Storage] trace: com.hyperion.hit.registry.exceptions.RegistryException: No database properties could be read
[2010-05-09T06:49:22.943-06:00] [EPMCFG] [TRACE] [EPMCFG-05935] [oracle.EPMCFG] [tid: 10] [ecid: 0000IXx7D4337E65zNd9iW1BtexF000000,0] [SRC_CLASS: com.hyperion.cis.utils.StopWatch] Task [Getting registry instance] has been ended. Execution time [0] sec.
[2010-05-09T06:49:22.943-06:00] [EPMCFG] [TRACE] [EPMCFG-05934] [oracle.EPMCFG] [tid: 10] [ecid: 0000IXx7D4337E65zNd9iW1BtexF000000,0] [SRC_CLASS: com.hyperion.cis.utils.StopWatch] Task [Loading CT documents] has been started.
[2010-05-09T06:49:22.959-06:00] [EPMCFG] [NOTIFICATION] [EPMCFG-01044] [oracle.EPMCFG] [tid: 10] [ecid: 0000IXx7D4337E65zNd9iW1BtexF000000,0] [SRC_CLASS: com.hyperion.cis.config.document.ConfigToolDocumentManager] Loading product descriptor from file C:\Oracle\Middleware\EPMSystem11R1\common\config\11.1.2.0\product\aps\11.1.2.0\default_aps_1.xml...
[2010-05-09T06:50:53.137-06:00] [EPMCFG] [TRACE] [EPMCFG-05922] [oracle.EPMCFG] [tid: 13] [ecid: 0000IXx7Zkm37E65zNd9iW1BtexF000004,0] [SRC_CLASS: com.hyperion.install.sw.SoftwareRegistry] Adding Hyperion Home entry...
[2010-05-09T06:50:53.137-06:00] [EPMINS] [NOTIFICATION] [EPMINS-00006] [oracle.EPMINS] [tid: 13] [ecid: 0000IXx7Zkm37E65zNd9iW1BtexF000004,0] [SRC_CLASS: com.hyperion.hit.wizard.Wizard] Wizard state is: RegistryWizardState
[2010-05-09T06:51:41.437-06:00] [EPMINS] [TRACE] [EPMINS-00015] [oracle.EPMINS] [tid: 11] [ecid: 0000IXx7Zhb37E65zNd9iW1BtexF000002,0] [SRC_CLASS: com.hyperion.hit.wizard.AbstractWizardAction] Invoked action: navigation.next
[2010-05-09T06:51:41.453-06:00] [EPMCFG] [ERROR] [EPMCFG-01001] [oracle.EPMCFG] [tid: 14] [ecid: 0000IXx7j^D37E65zNd9iW1BtexF000005,0] [SRC_CLASS: com.hyperion.config.document.Storage] trace: {0}[[
com.hyperion.hit.registry.exceptions.RegistryException: com.hyperion.hit.registry.exceptions.RegistryException: No database properties could be read
     at com.hyperion.hit.registry.Registry.releaseInstance(Registry.java:2039)
     at com.hyperion.config.document.Storage.resetRegistryItems(Storage.java:811)
     at com.hyperion.config.document.Storage.resetRegistry(Storage.java:798)
     at com.hyperion.config.wizard.impl.RegistryWizardState$1.validate(RegistryWizardState.java:348)
     at com.hyperion.hit.wizard.Wizard$NextClass.run(Wizard.java:504)
     at java.lang.Thread.run(Thread.java:619)
Caused by: com.hyperion.hit.registry.exceptions.RegistryException: No database properties could be read
     at com.hyperion.hit.registry.datasource.SharedServicesDataSourceFactory.getDataSource(SharedServicesDataSourceFactory.java:29)
     at com.hyperion.hit.registry.datasource.SharedServicesDatabaseConnectionBuilder.getConnection(SharedServicesDatabaseConnectionBuilder.java:26)
     at com.hyperion.hit.registry.RegistryUtils.createNewConnection(RegistryUtils.java:183)
     at com.hyperion.hit.registry.RegistryConnection.getInstance(RegistryConnection.java:149)
     at com.hyperion.hit.registry.Registry.releaseInstance(Registry.java:2030)
     ... 5 more
[2010-05-09T06:51:46.891-06:00] [EPMCFG] [WARNING] [EPMCFG-01863] [oracle.EPMCFG] [tid: 14] [ecid: 0000IXx7j^D37E65zNd9iW1BtexF000005,0] [SRC_CLASS: com.hyperion.config.wizard.impl.RegistryWizardState] Unknown server type: ORACLE
[2010-05-09T06:51:46.938-06:00] [EPMCFG] [TRACE] [EPMCFG-01864] [oracle.EPMCFG] [tid: 14] [ecid: 0000IXx7j^D37E65zNd9iW1BtexF000005,0] [SRC_CLASS: com.hyperion.config.wizard.impl.RegistryWizardState] HSS DB commit: serverType = ORACLE, host = fsdev21.jeffco.k12.co.us, port = 1521, db = EPMDMO
[2010-05-09T06:54:20.402-06:00] [EPMCFG] [TRACE] [EPMCFG-01001] [oracle.EPMCFG] [tid: 22] [ecid: 0000IXx8MHf37E65zNd9iW1BtexF00000B,0] [SRC_CLASS: com.hyperion.cis.utils.Log4jEPMLoggerAdapter] trace: oracle.sysman.ccr.common.network.EndPoint: SSL Protocol Initialized - SSL SocketFactory initialized
[2010-05-09T06:54:20.699-06:00] [EPMCFG] [TRACE] [EPMCFG-01001] [oracle.EPMCFG] [tid: 22] [ecid: 0000IXx8MHf37E65zNd9iW1BtexF00000B,0] [SRC_CLASS: com.hyperion.cis.utils.Log4jEPMLoggerAdapter] trace: oracle.sysman.ccr.common.network.EndPoint: Peer Certificate Chain(3):
[2010-05-09T06:54:20.714-06:00] [EPMCFG] [TRACE] [EPMCFG-01001] [oracle.EPMCFG] [tid: 22] [ecid: 0000IXx8MHf37E65zNd9iW1BtexF00000B,0] [SRC_CLASS: com.hyperion.cis.utils.Log4jEPMLoggerAdapter] trace: oracle.sysman.ccr.common.network.EndPoint: [[[
Version: V3
Subject: CN=ccr.oracle.com, OU=Terms of use at www.verisign.com/rpa (c)05, OU=Global IT, O=Oracle Corporation, L=Redwood Shores, ST=California, C=US
Signature Algorithm: SHA1withRSA, OID = 1.2.840.113549.1.1.5
Key: Sun RSA public key, 1024 bits
modulus: 126484617735060833031672477175673947636995798346030414463203905767325249772953279144384357766006815101034501698878511926718137275402247180206176507598520965207099036209959054153609440070358274987559344845438007585125964758282852498389487164896685302381484205088204064664382056656592869143856352689583929480807
public exponent: 65537
Validity: [From: Mon May 04 18:00:00 MDT 2009,
               To: Sun Jul 04 17:59:59 MDT 2010]
Issuer: CN=VeriSign Class 3 Secure Server CA, OU=Terms of use at https://www.verisign.com/rpa (c)05, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
SerialNumber: [    52b9bccd 239d7a0d 7bb16003 389848b0]
Certificate Extensions: 8
[1]: ObjectId: 1.3.6.1.5.5.7.1.12 Criticality=false
Extension unknown: DER encoded OCTET string =
0000: 04 62 30 60 A1 5E A0 5C 30 5A 30 58 30 56 16 09 .b0`.^.\0Z0X0V..
0010: 69 6D 61 67 65 2F 67 69 66 30 21 30 1F 30 07 06 image/gif0!0.0..
0020: 05 2B 0E 03 02 1A 04 14 4B 6B B9 28 96 06 0C BB .+......Kk.(....
0030: D0 52 38 9B 29 AC 4B 07 8B 21 05 18 30 26 16 24 .R8.).K..!..0&.$
0040: 68 74 74 70 3A 2F 2F 6C 6F 67 6F 2E 76 65 72 69 http://logo.veri
0050: 73 69 67 6E 2E 63 6F 6D 2F 76 73 6C 6F 67 6F 31 sign.com/vslogo1
0060: 2E 67 69 66 .gif
[2]: ObjectId: 2.5.29.35 Criticality=false
AuthorityKeyIdentifier [
KeyIdentifier [
0000: 6F EC AF A0 DD 8A A4 EF F5 2A 10 67 2D 3F 55 82 o........*.g-?U.
0010: BC D7 EF 25 ...%
[3]: ObjectId: 2.5.29.31 Criticality=false
CRLDistributionPoints [
[DistributionPoint:
[URIName: http://SVRSecure-crl.verisign.com/SVRSecure2005.crl]
[4]: ObjectId: 2.5.29.37 Criticality=false
ExtendedKeyUsages [
serverAuth
clientAuth
[5]: ObjectId: 2.5.29.32 Criticality=false
CertificatePolicies [
[CertificatePolicyId: [2.16.840.1.113733.1.7.23.3]
[PolicyQualifierInfo: [
qualifierID: 1.3.6.1.5.5.7.2.1
qualifier: 0000: 16 1C 68 74 74 70 73 3A   2F 2F 77 77 77 2E 76 65 ..https://www.ve
0010: 72 69 73 69 67 6E 2E 63   6F 6D 2F 72 70 61        risign.com/rpa
[6]: ObjectId: 2.5.29.15 Criticality=false
KeyUsage [
DigitalSignature
Key_Encipherment
[7]: ObjectId: 1.3.6.1.5.5.7.1.1 Criticality=false
AuthorityInfoAccess [
[accessMethod: 1.3.6.1.5.5.7.48.1
   accessLocation: URIName: http://ocsp.verisign.com, accessMethod: 1.3.6.1.5.5.7.48.2
   accessLocation: URIName: http://SVRSecure-aia.verisign.com/SVRSecure2005-aia.cer]
[8]: ObjectId: 2.5.29.19 Criticality=false
BasicConstraints:[
CA:false
PathLen: undefined
Algorithm: [SHA1withRSA]
[2010-05-09T06:54:20.714-06:00] [EPMCFG] [TRACE] [EPMCFG-01001] [oracle.EPMCFG] [tid: 22] [ecid: 0000IXx8MHf37E65zNd9iW1BtexF00000B,0] [SRC_CLASS: com.hyperion.cis.utils.Log4jEPMLoggerAdapter] trace: oracle.sysman.ccr.common.network.EndPoint: [[[
Version: V3
Subject: CN=VeriSign Class 3 Secure Server CA, OU=Terms of use at https://www.verisign.com/rpa (c)05, OU=VeriSign Trust Network, O="VeriSign, Inc.", C=US
Signature Algorithm: SHA1withRSA, OID = 1.2.840.113549.1.1.5
Key: Sun RSA public key, 2048 bits
modulus: 18905729229464742433949840178165285210788629616064305164260843170201977241822595607598003983710482114887504542420063531704226365322091550579034120400511694538047325464426047959412241672706076731441028369861556999479337863789783838582999151810376013650218058341794419022809268802993425241541430009002110553726612125414429934927217253337526656605550620555845061032537869588361121949241772361851996536275260212221084778605793422355009443918198903890623415507477268041766919150091887619618794603091993360637671933766441597921249204891707900552776893415739395596650548462810104696585021566385762017523199762687187467514321
public exponent: 65537
Validity: [From: Tue Jan 18 17:00:00 MST 2005,
               To: Sun Jan 18 16:59:59 MST 2015]
Issuer: OU=Class 3 Public Primary Certification Authority, O="VeriSign, Inc.", C=US
SerialNumber: [    75337d9a b0e1233b ae2d7de4 469162d4]
<RESPONSE><STATUS CODE="202"><MESSAGE></MESSAGE></STATUS><REQUEST_DATA><REGISTRATION_CIPHER VALUE="09944570f33deb38b7f170e09875db7e6ceb032d7b721409201e9990f06403478f4ebc88b080ac6b391b466b13abdd11056e5fc1ede4a4c3c45e377689daa321118296752b3efe0d9deaa9fc7150a1c7e6aeb26df38f35ccc96e8cb4cda148049e8b439f58c3c14fcfbc9067f2f81761803554fe79f9a7dbd2b3f79c0a040b19d941d6ab436bf2d016c36531486aa47ce430024bb51e6adfd3a82d9b8b0672935259764208f28ae626f5ab79efad45b11b058c872d6f69e328068957b6c545dea09ebcff54f920e5d0758ce0546352d03b426b7384058a0178599692be48753d7b4cfc1b98b80e68b9b3a93200679e62d62f8a837e45af992651e2eba1906ae5e892761e7005cb75b72e4d5e1a12810a5b61c6a4a670062b6f5af633f2742e93f04030552cbef91de925e8e81b2117922f4b72be9fa495bee4cc230357207fb6ae6ad77bb87f3d5d13d5f5dcd1b219adc857fc09f5d5a448aa2c79723a642d0a1839ac3a12b71159dd0ca1dc36a8eb46a7fb8ca05d86ede61b0f75640ff183efe1faf317202604f928137f7c4b58d9d8c02eb1d5997df2d6"/></REQUEST_DATA></RESPONSE>
[2010-05-09T06:55:22.359-06:00] [EPMCFG] [WARNING] [EPMCFG-01001] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.hit.fusion.FusionComponent] trace: The component type 'Foundation' is not supported. Valid component types are: [OCM, OHS, WebCache]
[2010-05-09T06:55:33.954-06:00] [EPMCFG] [ERROR] [EPMCFG-01001] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.config.document.Storage] trace: com.hyperion.hit.registry.exceptions.RegistryException: Unable to create registry.
[2010-05-09T06:55:33.954-06:00] [EPMCFG] [TRACE] [EPMCFG-02015] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.config.wizard.impl.RunAllTasks] Creating product component(s) in the HIT Registry (if not created yet) for all selected product(s)...
[2010-05-09T06:55:33.954-06:00] [EPMCFG] [TRACE] [EPMCFG-01321] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.cis.config.ConfigRegistryUtils] Creating product component: component type = SHARED_SERVICES_PRODUCT
[2010-05-09T06:55:33.954-06:00] [EPMCFG] [TRACE] [EPMCFG-01322] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.cis.config.ConfigRegistryUtils] Product component already exists in the registry: component type = SHARED_SERVICES_PRODUCT
[2010-05-09T06:55:33.954-06:00] [EPMCFG] [TRACE] [EPMCFG-01321] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.cis.config.ConfigRegistryUtils] Creating product component: component type = WORKSPACE
[2010-05-09T06:55:42.970-06:00] [EPMCFG] [TRACE] [EPMCFG-05955] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.config.document.Storage] Setting link. Parent: id [b57bd794d9cd2537337158c31287d1efc497ffe], componnet type [FOUNDATION_SERVICES_PRODUCT]. Child: id [b57bd794d9cd2537337158c31287d1efc497ff1], component type [WORKSPACE]
[2010-05-09T06:55:42.970-06:00] [EPMCFG] [TRACE] [EPMCFG-02144] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.config.document.Storage] Storage storeComponent trace : WORKSPACE:[b57bd794d9cd2537337158c31287d1efc497ff1] to be stored
[2010-05-09T06:55:42.970-06:00] [EPMCFG] [TRACE] [EPMCFG-02144] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.config.document.Storage] Storage storeComponent trace : allRegistryComponents contains WORKSPACE:[b57bd794d9cd2537337158c31287d1efc497ff1]
[2010-05-09T06:55:42.970-06:00] [EPMCFG] [TRACE] [EPMCFG-02144] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.config.document.Storage] Storage storeComponent trace : toUpdateComponents did not contain WORKSPACE:[b57bd794d9cd2537337158c31287d1efc497ff1]. It has been added to toUpdateComponents
[2010-05-09T06:55:42.970-06:00] [EPMCFG] [TRACE] [EPMCFG-01426] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.cis.ant.AbstractAntConfigurator] propertiesExtractLocation : C:\Oracle\Middleware\user_projects\domains\EPMSystem\scripts
[2010-05-09T06:55:47.986-06:00] [EPMCFG] [ERROR] [EPMCFG-01001] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.cis.utils.Shortcut] trace: shortcut out:Microsoft (R) Windows Script Host Version 5.7[[
Copyright (C) Microsoft Corporation. All rights reserved.
[2010-05-09T06:55:58.627-06:00] [EPMCFG] [ERROR] [EPMCFG-02151] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.hit.fusion.FusionComponent] oracleComponent is null. Component will not be provisioned.
[2010-05-09T06:56:02.690-06:00] [EPMCFG] [WARNING] [EPMCFG-01113] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.cis.config.AbstractProductDBConfigurator] Couldn't find product component in updateRegistryEntries
[2010-05-09T06:56:02.706-06:00] [EPMCFG] [NOTIFICATION] [EPMCFG-01107] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.cis.DBConfigurator] Running file: C:\Oracle\Middleware\EPMSystem11R1\products\Foundation\workspace\database\Oracle\create.sql
[2010-05-09T06:56:03.503-06:00] [EPMCFG] [ERROR] [EPMCFG-01020] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.config.wizard.impl.RunAllTasks] Error: [[
java.lang.NullPointerException
     at com.hyperion.cis.config.AppServerDeployer.isDeployAsWinService(AppServerDeployer.java:1699)
     at com.hyperion.cis.config.AppServerDeployer.initializeParameters(AppServerDeployer.java:169)
     at com.hyperion.config.wizard.impl.RunAllTasks.executeAppDeploymentTask(RunAllTasks.java:636)
     at com.hyperion.config.wizard.impl.RunAllTasks.execute(RunAllTasks.java:331)
     at com.hyperion.config.wizard.impl.RunnAllTasksState.run(RunnAllTasksState.java:89)
     at java.lang.Thread.run(Thread.java:619)
[2010-05-09T06:57:03.804-06:00] [EPMCFG] [ERROR] [EPMCFG-01020] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.foundation.config.OCMTaskProcessor] Error: [[
java.lang.NullPointerException
     at com.hyperion.foundation.config.OCMTaskProcessor.uploadOCMConfigurationToRegistry(OCMTaskProcessor.java:209)
     at com.hyperion.foundation.config.OCMTaskProcessor.execute(OCMTaskProcessor.java:95)
     at com.hyperion.cis.CustomTaskProcessor.execute(CustomTaskProcessor.java:94)
     at com.hyperion.config.wizard.impl.RunAllTasks.executeCustomTask(RunAllTasks.java:725)
     at com.hyperion.config.wizard.impl.RunAllTasks.execute(RunAllTasks.java:313)
     at com.hyperion.config.wizard.impl.RunnAllTasksState.run(RunnAllTasksState.java:89)
     at java.lang.Thread.run(Thread.java:619)
[2010-05-09T06:57:07.992-06:00] [EPMCFG] [ERROR] [EPMCFG-02151] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.hit.fusion.FusionComponent] oracleComponent is null. Component will not be provisioned.
[2010-05-09T06:57:07.992-06:00] [EPMCFG] [TRACE] [EPMCFG-01001] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.config.wizard.impl.RunAllTasks] trace: Component provisioning is done.
[2010-05-09T06:57:07.992-06:00] [EPMCFG] [TRACE] [EPMCFG-01001] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.config.wizard.impl.RunAllTasks] trace: Done sorting tasks by priority
[2010-05-09T06:57:07.992-06:00] [EPMCFG] [TRACE] [EPMCFG-07326] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.config.wizard.impl.RunAllTasks] Executing deployment task for ProductDescriptor [workspace]
[2010-05-09T06:57:07.992-06:00] [EPMCFG] [TRACE] [EPMCFG-01328] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.cis.config.ConfigRegistryUtils] Looking for product component in the registry: component type = SHARED_SERVICES_PRODUCT
[2010-05-09T06:57:08.007-06:00] [EPMCFG] [ERROR] [EPMCFG-01020] [oracle.EPMCFG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.config.wizard.impl.RunAllTasks] Error: [[
java.lang.NullPointerException
     at com.hyperion.cis.config.AppServerDeployer.isDeployAsWinService(AppServerDeployer.java:1699)
     at com.hyperion.cis.config.AppServerDeployer.initializeParameters(AppServerDeployer.java:169)
     at com.hyperion.config.wizard.impl.RunAllTasks.executeAppDeploymentTask(RunAllTasks.java:636)
     at com.hyperion.config.wizard.impl.RunAllTasks.execute(RunAllTasks.java:331)
     at com.hyperion.config.wizard.impl.RunnAllTasksState.run(RunnAllTasksState.java:89)
     at java.lang.Thread.run(Thread.java:619)
Registry.log:
[2010-05-09T06:51:46.860-06:00] [EPMREG] [NOTIFICATION] [EPMREG-51096] [oracle.EPMREG.REG] [tid: 14] [ecid: 0000IXx7j^D37E65zNd9iW1BtexF000005,0] [SRC_CLASS: com.hyperion.hit.registry.RegistryUtils] [SRC_METHOD: readDatabaseProperties] Security Key could not be read from reg.properties file.
[2010-05-09T06:55:33.719-06:00] [EPMREG] [ERROR] [EPMREG-11054] [oracle.EPMREG.REG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.hit.registry.RegistryConnection] [SRC_METHOD: createRegistry] [arg: C:\Oracle\Middleware\EPMSystem11R1\common\config\11.1.2.0\resources\registry\create_oracle.sql] An SQL Exception executing the registry DDL script C:\Oracle\Middleware\EPMSystem11R1\common\config\11.1.2.0\resources\registry\create_oracle.sql.
[2010-05-09T06:55:33.735-06:00] [EPMREG] [ERROR] [EPMREG-11099] [oracle.EPMREG.REG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.hit.registry.RegistryConnection] [SRC_METHOD: createRegistry] Exception occurred.[[
java.sql.SQLSyntaxErrorException: ORA-00917: missing comma
     at oracle.jdbc.driver.SQLStateMapping.newSQLException(SQLStateMapping.java:91)
     at oracle.jdbc.driver.DatabaseError.newSQLException(DatabaseError.java:133)
     at oracle.jdbc.driver.DatabaseError.throwSqlException(DatabaseError.java:206)
     at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:455)
     at oracle.jdbc.driver.T4CTTIoer.processError(T4CTTIoer.java:413)
     at oracle.jdbc.driver.T4C8Oall.receive(T4C8Oall.java:1035)
     at oracle.jdbc.driver.T4CStatement.doOall8(T4CStatement.java:183)
     at oracle.jdbc.driver.T4CStatement.executeForRows(T4CStatement.java:942)
     at oracle.jdbc.driver.OracleStatement.doExecuteWithTimeout(OracleStatement.java:1223)
     at oracle.jdbc.driver.OracleStatement.executeInternal(OracleStatement.java:1775)
     at oracle.jdbc.driver.OracleStatement.execute(OracleStatement.java:1744)
     at oracle.jdbc.driver.OracleStatementWrapper.execute(OracleStatementWrapper.java:299)
     at com.hyperion.hit.registry.RegistryConnection.createRegistry(RegistryConnection.java:241)
     at com.hyperion.hit.registry.RegistryUtils.initRegistry(RegistryUtils.java:82)
     at com.hyperion.hit.registry.Registry.createRegistry(Registry.java:2220)
     at com.hyperion.config.document.Storage.createRegProperties(Storage.java:1396)
     at com.hyperion.config.wizard.impl.RunAllTasks.execute(RunAllTasks.java:105)
     at com.hyperion.config.wizard.impl.RunnAllTasksState.run(RunnAllTasksState.java:89)
     at java.lang.Thread.run(Thread.java:619)
[2010-05-09T06:56:03.456-06:00] [EPMREG] [ERROR] [EPMREG-11037] [oracle.EPMREG.REG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.hit.registry.Registry] [SRC_METHOD: getConnection] An error occured when checking the status of the registry connection and reseting it.[[
com.hyperion.hit.registry.exceptions.RegistryException: No database properties could be read
     at com.hyperion.hit.registry.datasource.SharedServicesDataSourceFactory.getDataSource(SharedServicesDataSourceFactory.java:29)
     at com.hyperion.hit.registry.datasource.SharedServicesDatabaseConnectionBuilder.getConnection(SharedServicesDatabaseConnectionBuilder.java:26)
     at com.hyperion.hit.registry.RegistryUtils.createNewConnection(RegistryUtils.java:183)
     at com.hyperion.hit.registry.Registry.getConnection(Registry.java:161)
     at com.hyperion.hit.registry.Registry.lookupComponents(Registry.java:1263)
     at com.hyperion.hit.registry.Registry.lookup(Registry.java:517)
     at com.hyperion.css.registry.RegistryManager.<init>(RegistryManager.java:70)
     at com.hyperion.css.registry.RegistryManager.populateCSSTrustedServicesKey(RegistryManager.java:140)
     at com.hyperion.foundation.config.FoundationDbConfigurator.populateCssTrustedKey(FoundationDbConfigurator.java:121)
     at com.hyperion.foundation.config.FoundationDbConfigurator.configure(FoundationDbConfigurator.java:88)
     at com.hyperion.config.wizard.impl.RunAllTasks.executeDbConfigTask(RunAllTasks.java:753)
     at com.hyperion.config.wizard.impl.RunAllTasks.execute(RunAllTasks.java:322)
     at com.hyperion.config.wizard.impl.RunnAllTasksState.run(RunnAllTasksState.java:89)
     at java.lang.Thread.run(Thread.java:619)
[2010-05-09T06:56:03.456-06:00] [EPMREG] [ERROR] [EPMREG-11045] [oracle.EPMREG.REG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.hit.registry.Registry] [SRC_METHOD: lookupComponents] [arg: SYSTEM9] An exception when looking up components of type SYSTEM9 matching the specified properties.
[2010-05-09T06:56:03.456-06:00] [EPMREG] [ERROR] [EPMREG-11099] [oracle.EPMREG.REG] [tid: 27] [ecid: 0000IXx8^W937E65zNd9iW1BtexF00000G,0] [SRC_CLASS: com.hyperion.hit.registry.Registry] [SRC_METHOD: lookupComponents] Exception occurred.[[
com.hyperion.hit.registry.exceptions.RegistryException: com.hyperion.hit.registry.exceptions.RegistryException: No database properties could be read
     at com.hyperion.hit.registry.Registry.getConnection(Registry.java:178)
     at com.hyperion.hit.registry.Registry.lookupComponents(Registry.java:1263)
     at com.hyperion.hit.registry.Registry.lookup(Registry.java:517)
     at com.hyperion.css.registry.RegistryManager.<init>(RegistryManager.java:70)
     at com.hyperion.css.registry.RegistryManager.populateCSSTrustedServicesKey(RegistryManager.java:140)
     at com.hyperion.foundation.config.FoundationDbConfigurator.populateCssTrustedKey(FoundationDbConfigurator.java:121)
     at com.hyperion.foundation.config.FoundationDbConfigurator.configure(FoundationDbConfigurator.java:88)
     at com.hyperion.config.wizard.impl.RunAllTasks.executeDbConfigTask(RunAllTasks.java:753)
     at com.hyperion.config.wizard.impl.RunAllTasks.execute(RunAllTasks.java:322)
     at com.hyperion.config.wizard.impl.RunnAllTasksState.run(RunnAllTasksState.java:89)
     at java.lang.Thread.run(Thread.java:619)
Caused by: com.hyperion.hit.registry.exceptions.RegistryException: No database properties could be read
     at com.hyperion.hit.registry.datasource.SharedServicesDataSourceFactory.getDataSource(SharedServicesDataSourceFactory.java:29)
     at com.hyperion.hit.registry.datasource.SharedServicesDatabaseConnectionBuilder.getConnection(SharedServicesDatabaseConnectionBuilder.java:26)
     at com.hyperion.hit.registry.RegistryUtils.createNewConnection(RegistryUtils.java:183)
     at com.hyperion.hit.registry.Registry.getConnection(Registry.java:161)
     ... 10 more

Yes. I downloaded and extracted the additional components. I have also dropped and recreated the HSS repository. Each time I have tried to reinstall, I have uninstalled all EPM/Oracle components, removed registry keys, removed EPM environment variables and removed references to oracle in the PATH environment variable.
I have tried installing/configuring HSS 11.1.2 on both Windows 2008 SP1 64-bit and Windows 2008 SP1 32-bit. The configuration error is the same.
I was able to get my SR reassigned to a different support analyst, and we are working on troubleshooting now.
If you can think of anything else to try, let me know.
BTW...on the 32-bit server, the page file maximum is 16GB (should be enough)?
Thanks.

Error: "We're having a problem opening this location on file explorer. Add this website to your trusted sites list and try again"

Hello,
When i try to open document library from SharePoint Production portal then it throws the specified error. However, when i open document library from SharePoint Development portal then it opens it in file explorer quite easily.
Production portal is on https whereas development portal is on http. Also, UAG has been configured on production portal.
Any idea where it's getting stuck up? Surely, this is not a browser issue on Windows 7 as it's opening the development portal's document library on the same machine.
I've also done following things:
- Configured Desktop Experience on production environment
- Installed the hotfix for Windows 7
Regards,
Sohaib
Sohaib Khan

Hello Sohaib.
Here is the list of causes defined here.Hope it helps you
The cause and the resolution methods are the following:
Cause: There is a missing Root site collection...
Resolution: Check and ensure, that the “Managed Paths” are not changed in the web Application’s page, there is a (root) explicit for
this web application and there is a working Root site collection.
If for any reason this is not the case in your environment, you may try the following:
- Apply (if not already) the following Hotfix to one of those clients:
Error when you open a SharePoint Document Library in Windows Explorer or map a network drive to the library after you install Internet Explorer 10 in Windows 7 or Windows Server 2008 R2
http://support.microsoft.com/kb/2846960
Then, try to delete the cache of the IE browser before reproducing the issue. Check the result..
- Try to temporarily disable the Antivirus and test again.
- Check if you have installed the Desktop Experience feature on the SPS13 server.
- Check if you face this behavior with all users, Or only with some specific ones, Or with all different client OSes..
Otherwise you will need to collect the logs to further analyze...
http://blogs.msdn.com/b/george_bethanis/archive/2013/11/04/sps13-quot-open-with-explorer-quot-random-error-quot-we-re-having-a-problem-opening-this-location-in-file-explorer-add-this-web-site-to-your-trusted-sites-list-and-try-again-quot.aspx
Please remember to click 'Mark as Answer' on the answer if it helps you

DNS and Active Directory error 4000 server 2008

Hello all,
My network skills aren't very good and I'm facing a dilemma. First off we have two Windows servers on the network. The newest is 2008 Standard (named Vader) and the other is 2000 (dells3). Obviously I'd like to get rid of the 2000, but the people in charge
of my budget haven't given me the option to do so and it's the only back up we have.
Earlier in the week we had lots of problems. One of our nas boxes locked everyone out who was mapped to it and it would only let me log in through the web portal. Two of our Macs our marketing department uses suddenly locked up and wouldn't let them back
in (both were part of the Active Directory). A second nas box won't let certain people map to it and for awhile I had issues logging into Vader itself.
I believe all of these problems are connected to some issues on Vader and possibly in conduction with dells3. In Server Manager under DNS I get error 4000 "The DNS server was unable to open Active Directory.
This DNS server is configured to obtain and use information from the directory for this zone and is unable to load the zone without it. Check that the Active Directory is functioning properly and reload the zone. The event data is the error code."
Then under Active Directory Domain Services I get error 2042 "It has been too long since this machine last replicated with the named source machine. The time between replications with this source has exceeded
the tombstone lifetime. Replication has been stopped with this source."
Followed by more text I can post if needed.
Under File Services error 1202 "The DFS Replication service failed to contact domain controller to access configuration information. Replication is stopped. The service will try again during the
next configuration polling cycle, which will occur in 60 minutes. This event can be caused by TCP/IP connectivity, firewall, Active Directory Domain Services, or DNS issues."
And finally if I try to open Active Directory Domains and Trusts "The configuration information describing this enterprise is not available. The server is not operational."
I'm not sure where to start or what to post that might help. Any and all help is appreciated.
Edit: Also I can only add dells3 as the DNS on Vader in the DNS Manager if I try to add Vader to itself I get an error.

It's the other way around. Overall, I'm advising ripping the 2008 server out of AD and adding it back . Let's look at this as a series of steps:
1.) You do a force demote of the 2008 server because it's tombstoned. This means the 2008 server is no longer a DC. You are doing a force because it doesn't have the ability to replicate. If it could replicate, we'd just do a graceful demotion
and be done with it.
2.) Once the 2008 server is demoted, we go to the 2000 server which holds the only good copy of AD. From that server we run a metadata cleanup using the ntdsutil utility. We use that utility to clean out references to the 2008 server which is
no longer a DC.
3.) Once you have a clean AD, you can then promote the 2008 server back into Active Directory. Make sure Vader is pointing to Dells3 as its primary DNS server before promoting or you'll run into issues.
Hopefully that clarifies things.

AD Trust Winddows 2008 R2

Similar Messages

Maybe you are looking for