Add NAS to DSFW Domain

Similar Messages

• Cannot add Computers to DSfW domain

  We have been running DSfW for a couple of years.
  Recently we found we couldn't add computers to the domain any longer. Also using the MMC all the existing computers are of type mSDSComputer which the team suggest what is normally there.
  Both DSfW servers are running SLES10 sp3 and eDir 8.8sp3
  The logs show the following error:
  Aug 11 19:00:33 dsfw1 xadsd: [NETLOGON] PC02335$ opened secure channel
  Aug 11 19:00:33 dsfw1 xadsd: [NETLOGON] Setting account password for object <cn=PC1234,cn=Computers,dc=company,dc=com>
  Aug 11 19:00:33 dsfw1 xadsd: [NETLOGON] Setting account password failed: Access Denied.
  Googling didn't reveal much useful info.
  Thanks
  Simon

  Hi,
  Thanks for responding.
  Originally Posted by psahukar
  Hi,
  Can you please try creating a computer in MMC as the same user (used for adding the computer into the domain). If the computer creation works then I think the admin rights of that user is fine.
  So I would next doubt on the password policy settings. Have the NMAS password policy settings changed that you know of ?
  Also try creating a user and see how it goes.
  Thanks,
  Praveen Kumar
  Tried adding via MMC - we get an error "Windows cannot create the object because: The requested operation did not satisfy one or more constraints associated with the class of the object"
  I have followed TID 7010319 as we had an issue with ldap groups thinking this may also be the problem. But it doesn't appear to be. Also as mentioned in my OP the item type in MMC is mSDSComputer which appears as an unknown object for all the currently registered computer objects.
  TIA

• Joining existing OES servers running samba to DSfW domain

  I fell dense for asking but I have not seen an answer to this question anywhere. I added DSfW into my environment and I had existing OES 11 (sp1) servers that had samba running and functioning well for what I needed. Now (before I upgrade to service pack 2, I would like to get some ducks in a row.
  The servers that were running samba prior to the introduction of DSfW, I want to have as members of the domain.
  What are the steps to do this?
  Daniel Wells AIA, VCP
  Senior Associate | IT Coordinator
  MHTN Architects, Inc.
  Direct: 801.326.3215 | www.mhtn.com
  vision made real

  We are a file and print shop with users demanding all sorts of ways to access their files. The three file servers in questions are set up with NSS/NCP access to the file systems with SMB (as part of a workgroup, since the DSfW domain was added later) and AFP overlaid. SMB was originally used for web access to the file systems through our SSL VPN.
  I would like to join the Macs int he office to the DSfW domain and have them authenticate to the domain and have access to the files, hopefully without having to re-enter passwords for each server, and thus be able to discard AFP on the servers.
  If I need to redo the SMB configuration to get it to work with DSfW, then that is alright. I'm sure I can reconfigure the VPN to access any new SMB configuration.
  Daniel Wells AIA, VCP
  Senior Associate | IT Coordinator
  MHTN Architects, Inc.
  Direct: 801.326.3215 | www.mhtn.com
  vision made real
  >>> ab<[email protected]> 9/12/2014 10:11 PM >>>
  It may help to understand exactly what these servers are doing now, vs.
  what you want them to do. Should they be DCs when done? Are you just
  wanting to share files to workstations using SMB? Are there
  pieces/configurations of Samba right now on those other servers that you
  would like to preserve?
  Good luck.
  If you find this post helpful and are logged into the web interface,
  show your appreciation and click on the star below...

• How to add NAS for iTunes and backups

  I would like to add NAS to home network of older iMac (OSX 10.7.4), win 7 notebook, soon to be added MacAir, plus iPad, iPhones, and sonos.  I would like to move iTunes from iMac external drive to NAS and also use NAS for time machine backups of the 2 Macs and a backup for the win 7 notebook.  Any recommendations on NAS for mostly Mac network?  Can I use the NAS for both iTunes and for backups? 

  Most of the big brands support TM.. QNAP and Synology being the main contenders.
  Moving itunes library is always dangerous and TM will not back it up.. since it is now on a network drive.. so take steps to ensure the library cannot be lost. This is of course far easier on a brand that has automatic backups and mirrored drives.. that the TC.

• Cannot add users to new domains anymore

  I got messaging server and delegated admin to work just fine recently until I tried getting LDAP authentication to work so LDAP users could log into Sunrays.
  I used idsconfig and saw that it added a bunch of stuff to the directory so I deleted that stuff after I realized I couldn't add users to a new domain anymore. It just says "cannot create user - unknown error". I can still add users to old domains just fine.
  And I tried both DA and commadmin, neither work. Heres my Messaging server and DA version:
  Sun Java(tm) System Messaging Server 6.2-3.04 (built Jul 15 2005)
  libimta.so 6.2-3.04 (built 01:43:03, Jul 15 2005)
  SunOS testy.i-n-control.com 5.10 Generic_118822-25 sun4u sparc SUNW,Sun-Fire-V440
  Delegated Administrator 6.3-0.09
  I turned on debugging for DA and heres the output:
  TRACE [Wed Aug 02 10:10:47 MDT 2006] Default people container = ou=People,o=domain,dc=mail,dc=example,dc=com
  TRACE [Wed Aug 02 10:10:47 MDT 2006] ServerPushThread: setting stop flag
  TRACE [Wed Aug 02 10:10:47 MDT 2006] commTaskManager: progress thread stopped
  TRACE [Wed Aug 02 10:10:47 MDT 2006] com.iplanet.am.sdk.AMException: Unable to create entry.
       at com.iplanet.am.sdk.ldap.DirectoryManager.processInternalException(DirectoryManager.java:433)
       at com.iplanet.am.sdk.ldap.DirectoryManager.createUser(DirectoryManager.java:1046)
       at com.iplanet.am.sdk.ldap.DirectoryManager.createEntry(DirectoryManager.java:1525)
       at com.iplanet.am.sdk.AMDirectoryManager.createEntry(AMDirectoryManager.java:651)
       at com.iplanet.am.sdk.AMCacheManager.createEntry(AMCacheManager.java:337)
       at com.iplanet.am.sdk.AMObjectImpl.create(AMObjectImpl.java:1009)
       at com.iplanet.am.sdk.AMPeopleContainerImpl.createUser(AMPeopleContainerImpl.java:285)
       at sun.comm.cli.server.servlet.CreateUser.create(CreateUser.java:677)
       at sun.comm.cli.server.servlet.CreateUser.doTask(CreateUser.java:91)
       at sun.comm.cli.server.servlet.commTaskManager.execute(commTaskManager.java:196)
       at sun.comm.cli.server.servlet.commServlet.doPost(commServlet.java:90)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:807)
       at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
       at org.apache.catalina.core.StandardWrapperValve.invokeServletService(StandardWrapperValve.java:771)
       at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:322)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
       at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:212)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
       at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:209)
       at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
       at com.iplanet.ias.web.connector.nsapi.NSAPIProcessor.process(NSAPIProcessor.java:161)
       at com.iplanet.ias.web.WebContainer.service(WebContainer.java:580)
  TRACE [Wed Aug 02 10:10:47 MDT 2006] After AM Exception , msg being sent is Unable to create entry.^324^NONE
  TRACE [Wed Aug 02 10:10:47 MDT 2006] in CLIPageData constructor:status = 1
  TRACE [Wed Aug 02 10:10:47 MDT 2006] commTaskManager - execute => generateOutput
  TRACE [Wed Aug 02 10:10:47 MDT 2006] In CLIPageGenerator ....
  TRACE [Wed Aug 02 10:10:47 MDT 2006] CLIPageGenerator - generateOutput : cliData.status = 1
  TRACE [Wed Aug 02 10:10:47 MDT 2006] CLIPageGenerator - generateOutput : CLIPageData.OK = 0
  TRACE [Wed Aug 02 10:10:47 MDT 2006] CLIPageGenerator - generateOutput : CLIPageData.FAIL = 1
  TRACE [Wed Aug 02 10:10:47 MDT 2006] Failed: Unable to create entry.^324^NONE
  TRACE [Wed Aug 02 10:10:47 MDT 2006] CLIPageGenerator - generateOutput - Printing successfull results
  TRACE [Wed Aug 02 10:10:47 MDT 2006] CLIPageGenerator - generateOutput - status => FAIL
  TRACE [Wed Aug 02 10:10:47 MDT 2006] CLIPageGenerator - generateOutput - message => Unable to create entry.^324^NONE
  TRACE [Wed Aug 02 10:10:48 MDT 2006] ServerPushThread: done
  TRACE [Wed Aug 02 10:10:48 MDT 2006] ServerPushThread: done
  TRACE [Wed Aug 02 10:10:49 MDT 2006] ServerPushThread: done
  TRACE [Wed Aug 02 10:10:58 MDT 2006] sun.comm.cli.server.servlet.commLDAPAuth: shutting down. Total access count = 1
  Message was edited by:
  nate.wheeler

  Frankly, I'm new to LDAP so I don't know really what
  changed.No time like the present to start learning.
  Its weird, I can do some things, but not
  others. Like I can assign service packages, but not
  change the login id or password of a user. So it
  doesn't look like amadmin can't change things.LDAP provides "ACI", or Access Control settings that can be changed, and create exactly the kinds of things you're looking at.
  The Directory Console can view ACI
  >
  The password encryption seemed to have changed from
  {SSHA} to {CRYPT}. Although I have no idea how to
  switch it back or where to look to see if it did.Unlikely to have made any difference. That should be transparent to the application using DS.
  Most of our applications don't compare the password entry, but attempt a BIND for that very reason.
  Again, I'd be looking at your LDAP access logs for a clue to what's happening.
  >
  Message was edited by:
  nate.wheeler

• I have imac 10.6.8 how to add it to my domain server windows 2003

  i have imac 10.6.8 how to add it to my domain server windows 2003
  and .
  i cant find the directory access any

  One option is to create a new partition (~30- 50 GB), install the new OS, and ‘test drive’ it. If you like/don’t like it it, you can then remove the partition. Do a backup before you do anything. By doing this, if you don’t like it you won’t have to go though the revert process.
  Check to make sure your applications are compatible.
  Application Compatibility
  Applications Compatibility (2)

• Exchange 2010 in a DSfW Domain?

  Hi
  Can i install Exchange 2010 in a DSFW only Domain or does i need a real AD Domain and then make a trust between the two domains?
  Thanks
  Ren

  Originally Posted by RENEK
  Hi
  Can i install Exchange 2010 in a DSFW only Domain or does i need a real AD Domain and then make a trust between the two domains?
  Thanks
  Ren
  Hi Ren,
  Installing Exchange 2010 directly into a DSfW domain will not work and is not supported. You won't even get passed the prep stage as the schema extensions that are required won't get accepted by the DSfW controllers.
  Best way to go about this (if you already have DSfW setup) is to create a basic AD and define a cross forest trust between the two. Install Exchange 2010 into AD and provision the users from the DSfW domain over the trust.
  If you don't have DSfW setup, using IDM (the bundle edition is licensed along with GroupWise/OES) is another option.
  Cheers,
  Willem

• SCCM 2007 OSD to add computer account to domain

  Running SCCM 2007 R2 OSD to add computer account to domain has always been working, until recently after I added Intel 217/218 NIC drivers to the PE boot image.
  The task sequence "Apply Network Settings" runs successfully though. It broke other TS steps too, such as enabling BitLocker, because, I guess, if the computer is not domain-joined, it won't be able to write recovery key to AD. I can use the same
  network account to manually add the computer to domain. This doesn't seem to be a network issue, because the NIC drivers are applied, and software installation in the TS runs with no issue.
  Here's the deployment log:
  ==============================[ OSDNetSettings.exe ]===========================
  Command line: "osdnetsettings.exe" configure Setting %SystemRoot% to "D:\Windows"
  Loading existing answer file "D:\Windows\panther\unattend\unattend.xml"
  Configuring global network settings
  Join type: 0 Joining domain: MyDomainName
  Getting namespace "Microsoft-Windows-UnattendedJoin" for architecture "amd64"
  DNS domain:  DNS domain search order:  IP filter sec enabled: false
  No adapters found in environment. 
  Performing global configuration only.
  Writing configuration information to D:\Windows\panther\unattend\unattend.xml
  Successfully saved configuration information to D:\Windows\panther\unattend\unattend.xml
  Configuring "OSDNetSettings.exe finalize" to run on first boot OSDNetSettings
  finished: 0x00000000
  Thanks and regards.

  Running SCCM 2007 R2 OSD to add computer account to domain has always been working, until recently after I added Intel 217/218 NIC drivers to the PE boot image.
  The task sequence "Apply Network Settings" runs successfully though. It broke other TS steps too, such as enabling BitLocker, because, I guess, if the computer is not domain-joined, it won't be able to write recovery key to AD. I can use the same
  network account to manually add the computer to domain. This doesn't seem to be a network issue, because the NIC drivers are applied, and software installation in the TS runs with no issue.
  Here's the deployment log:
  ==============================[ OSDNetSettings.exe ]===========================
  Command line: "osdnetsettings.exe" configure Setting %SystemRoot% to "D:\Windows"
  Loading existing answer file "D:\Windows\panther\unattend\unattend.xml"
  Configuring global network settings
  Join type: 0 Joining domain: MyDomainName
  Getting namespace "Microsoft-Windows-UnattendedJoin" for architecture "amd64"
  DNS domain:  DNS domain search order:  IP filter sec enabled: false
  No adapters found in environment. 
  Performing global configuration only.
  Writing configuration information to D:\Windows\panther\unattend\unattend.xml
  Successfully saved configuration information to D:\Windows\panther\unattend\unattend.xml
  Configuring "OSDNetSettings.exe finalize" to run on first boot OSDNetSettings
  finished: 0x00000000
  Thanks and regards.

• RDS 2012 R2 cannot add 3rd party (parent domain) licensing server

  Hi,
  I have a RDS 2012 R2 farm and i cannot add a 3rd party licensing server that is in a parent domain (forest root domain - hosted by our corp HQ). I will edit deployment properties for the deployment in the first CB server to add a licensing server in per
  user mode. Seemes to work, however no licenses are given to SH servers. Have made GPO aswell to explicitly specify licensing server and mode, however i think this should not be neccessary.
  Any ideas?
  This posting is provided "AS IS" with no warranties or guarantees and confers no rights

  Hi,
  Thank you for posting in Windows Server Forum.
  1. In Server Manager -- RDS -- Overview -- Tasks -- Edit Deployment Properties -- RD Licensing tab, please make sure that the Licensing mode is set to match the type of licenses you purchased, and that the FQDN of your RD Licensing server is listed.
  2. In Server Manager -- RDS -- Collections -- <your collection> -- Host Servers, please make sure that your RDSH server is listed.  If you have more than one server with the RDSH Role Service in your deployment make sure that all of them are
  listed.  If they are not you may click Tasks -- Add RD Session Host Servers (make sure the servers are part of the Server Manager server pool prior to this).
  3. On Server 1, please open an Administrator PowerShell prompt and enter the following command:
  Add-WindowsFeature RDS-Licensing-UI
  4. After the above powershell command completes you should be able to open RD Licensing Manager (licmgr.exe) on Server 1 if you need to.  Please note that it is more important to have the licensing configured properly in deployment properties and your
  RDSH servers part of a collection than it is to be able to open RD Licensing Manager on both of your servers. 
  (Above one quoted from beneath thread)
  Source:
  RDS 2012 Can't add a licensing server
  In addition, check below article.
  RD Licensing Configuration on Windows Server 2012
  Hope it helps!
  Thanks.
  Dharmesh Solanki

• Can i add a windows 2008 domain controller in a open directory  ?

  i want to add an windows 2008 r2 domain controller to a open directory .
  is this possible, and replicated all users to active directory?

  Yes, You must establish a two-way trust between the central forest and user forests to enable distribution group expansion when groups from user forests are synchronized as contacts to the central forest.
  Also you can refer below link
  http://technet.microsoft.com/en-us/library/gg670909%28v=ocs.14%29.aspx
  Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question, please click "Mark As Answer"
  Mai Ali | My blog: Technical

• Add workgroups to a domain

  Hello guys,At this moment we are working with 5 different fysical sites. All of the sites have a different vlan. On one site are the servers with all of the services. At this moment the other sites are configured as workgroups. They all have there own router. If they want to do something on the server users can create a terminal session to access data ect..
  Now recently all buildings are connected by a fiber. I would like to know what I have to do to connect these computers from the current workgroup to our domain?Change dns to our proper dns server on every router in the workgroup and then just add the pc to the domain? At this moment every router in the workgroup has dhcp functionality and set dns to the dns servers of the internet provider.Will the vlans still have there value after the change? I can imagine that there will be...
  This topic first appeared in the Spiceworks Community

  Hi
  I never tried this to join remotecomputers to the domain but you can download this utility called PsExec and with the help of Netdom command you can add the computers to the domain form one computer.
  http://technet.microsoft.com/en-gb/sysinternals/bb897553.aspx
  Download this software and put all the files form the zip file to c:\windows\system32 folder.
  Open Command promt as domain admin account once in command prompt type
  psexec.exe \\remotecomputername cmd
  this will take you the remote computer cmd
  then use the netdom command
  netdom join %computername% /domain:nameof the domain /userd:domainadminuser/passwordd:domainadminpassword /reboot:0
  hope this help.
  Thanks

• How to add NAS to existing Airport Extreme Base Station Network...

  Hi! I have a Airport Express network (DSL provided via a DSL modem) that is connected to the PC via ethernet, iMac 333 via Wireless adapter, and Powerbook via wireless card. I am bursting at the seams with components!!
  I have the printer set up via the AE.
  I would like to add a NAS to the works. (Just to see if it can frustrate me even more! )
  How exactly would I hook this up? Any suggestions? Has anyone done this? Have a favorite NAS device you can recommend? We are looking to install this for a centralized place to store all our music, photos, movies, etc. We have TONS of digital media to store and it is clogging up our respective hard drives!
  Thanks in advance for the help!!
  Minder
  Ti Powerbook 15 inch   Mac OS X (10.4.6)   iMac Grape 333MHz, Custom built PC and a Flower Power iMac soon coming home with me too...
  Ti Powerbook 15 inch   Mac OS X (10.4.6)   iMac Grape 333MHz also

  It is unclear... Do you have an AirPort Extreme base station (AEBS) or AirPort Express (AX)?
  If you have an AEBS then you should have this configuration:
  DSL modem<->[WAN] AEBS [LAN]<->PC
  If that is your current setup, you would need to modify it by adding an Ethernet switch (or hub) so that it looks like this:
  DSL modem<->[WAN] AEBS [LAN]<->switch<-+->PC
  .......................................|->NAS

• Add mac to windows domain

  Hi, everyone
  I need to get connected to a corporate domain, which is Windows based server.
  I have both the name and address of the domain, my user name and password.
  But my MBP says all the time that either "server is not existing...." or "can notfind server...."
  I would appreciate some help solving this.
  Thanks.
  Igor

  Hi BDAqua,
  Why should we create a user again? The point is I am going to join this Mac Mini to a windows domain controller. Windows domain controller means a centralized database of an organization. It is communicating with my Domain controller. But the issue is it is not founding my domain node while joining to a domain. Please find the attached screen shots for your reference. If you have worked on this please send me step by step configuration.

• Secure script to add PCs to the domain

  Hello, we are currently being tasked to utilize VMWare Mirage to upgrade our remote PCs from Windows XP to Windows 7 and readd them to the domain in a secure manner over and internet/vpn connection. We are concerned with storing AD credentials on the PCs
  in order to image the computers and also concerned with the script being used to join unauthorized PCs to the domain.
  Is there a secure way to store the AD credentials on the images we are pushing down within a script?
  Is there a way to pre-stage computer names in AD and only allow a certain username to join pre-staged PCs within AD?

  Hello, we are currently being tasked to utilize VMWare Mirage to upgrade our remote PCs from Windows XP to Windows 7 and readd them to the domain in a secure manner over and internet/vpn connection. We are concerned with storing AD credentials on the PCs
  in order to image the computers and also concerned with the script being used to join unauthorized PCs to the domain.
  Is there a secure way to store the AD credentials on the images we are pushing down within a script?
  Is there a way to pre-stage computer names in AD and only allow a certain username to join pre-staged PCs within AD?

• Is it necessary to add the computer to domain to active sso?

  Hi,
  We want to active sso,and the host name of ecc and portal don't have the domain,so can we make that?

  Hi,
  the servers need to be in the same domain.
  You may configure Multible Domain SSO only between Portals.
  Some SAP Notes on the topic:
  654326 Domain restrictions in a portal environment
  701205 Single Sign-On using SAP Logon tickets
  814832 Hostnames and Cookies 
  654982 and 654326 configuring logon ticket for multiple domain.
  Regards
  Johannes