ADFS 2.1 Farm Network Requirement

Similar Messages

• Loadbalancing an ADFS 2.2 Farm

  Is anyone aware of any documentation on how to setup ADFS on Windows Server 2012 R2 behind a load balancer?
  I have an existing ADFS 2.0 farm on Windows Server 2008 R2, and am setting up a new ADFS farm on Windows Server 2012 R2.  The load balancer configuration for my 2.0 farm works fine, but when I try to use the same simple load balancing settings for the
  2.2 farm, I am unable to get it to work.  With the changes in ADFS with Server 2012 R2, are there changes to how load balancing is performed?

  Hi Everyone,
  We just put in 2x KEMP VLM-200 Virtual Appliances in front of an AD FS 3.0 (2012 R2) Farm, consisting of 2 Farm Servers. We got the KEMPs working, but not via their documentation [https://support.kemptechnologies.com/hc/en-us/articles/203107249-AD-FS],
  which directly contradicts the following TechNet Blog: [http://blogs.technet.com/b/applicationproxyblog/archive/2014/05/28/understanding-and-fixing-proxy-trust-ctl-issues-with-ad-fs-2012-r2-and-web-application-proxy.aspx]
  To save you having to read through the whole blog, I will refer to the following section:
  "Root Cause 6  – SSL termination taking place on a network device between Web Application Proxy and AD
  FS server
  As the Proxy Trust relationship between Web Application Proxy and AD FS server is client certificate based this was breaking the proxy trust relationship.
  The SSL communications between the Web Application Server and AD FS server cannot be pre-terminated on a load balancer, Firewall, other reverse proxy device and doing so
  will break the proxy trust relationship."
  So now that we know we cannot terminate the SSL connection on the KEMP devices, what options do we have? More than happy to share...
  In the properties of our Virtual Service for ADFS we configured/enabled the following:
  Standard Options
  - Force L7: Enabled
  - Transparency: Disabled
  - Extra Ports: N/A
  - Persistence: Source IP Address (Timeout: 1 Hour)
  - Scheduling Method: Least Connection
  SSL Properties
  - SSL Acceleration: Disabled
  Advanced Properties
  - Nothing has been touched here
  ESP Options
  - Nothing has been touched here
  Real Servers
  - Check Parameters: TCP Connection Only (443) <- You can play around with another string, but we didn't bother
  Basically, we are passing the Layer 7 packet through to the AD FS Farm, as Layer 4 just results in the packet never getting there. Would be great if KEMP updated their documentation with some knowledge around how ADFS 3.0 works,
  as the inclusion of SNI is NOT the only difference between 2.0 and 3.0.
  We then of course changed our FQDN entry in the host file on the AD FS Web Application Servers to resolve the KEMP Virtual Services IP Addresses [we had one in each Datacentre]and everything worked as intended.
  Hope this helps others, as there's nothing online about this.
  Regards,
  Stefano Belluomini

• Itouch states "Network required" and all is good, need help connecting....

  itouch: states 'Network required' 'not connected to internet' 'Cannot Open Page' BUT all info entered is correct, wi-fi bars full, master reset done & updated through itunes.....please help

  Read on another similar post to RESET WI-FI ROUTER, then reset network settings & reenter wi-fi info.....& that seems to have rectified the problem!

• Oracle ADF EAR 11.1.1 requires EAR 5.0  ??

  Hi,
  I am trying to create a new Oracle ADF application in Eclipse, as soon as I type the application name, an error show in the top of the dialog saying :
  Oracle ADF EAR 11.1.1 requires EAR 5.0
  and the Next and Finish buttons are disabled .
  your help is appreciated.

  It seems you are trying to develop an ADF 11.1.1.x application on an unsupported version of WebLogic Server.
  The certification matrix for ADF and WebLogic Server can be found here - http://www.oracle.com/technetwork/developer-tools/jdev/index-091111.html
  For example, if you are developing an ADF 11.1.1.6 application in OEPE, you will want to target a WebLogic Server 10.3.6 installation.
  Thanks,
  Greg

• ORACLE 11G R1 CHECKING NETWORK REQUIREMENTS NOT EXECUTED

  Hi all,
  Im trying to install Oracle 11g R1 on Oracle Enterprise linux 5 so while it was checking for network requirements it showed me an requirement here is the short message :
  Checking network configuration requirements ...
  check complete The overall result of this check is : not executed
  Recommendation : oracle supports installations on systems with DHCP-assigned public ip addresses. however the primary network interface on the system should be configured withstatic ip addresses in order for the oracle software to function properly. see the installation guide for more details on installing the software on systems configured with DHCP.
  =====================================================================================================
  So what should i do ? continue installation or no , can someone guide
  Help me please
  Thanks a lot

  Thanks PavanG for your information
  So i m gonna proceed to the installation and let you informed about that ...

• When trying to use my banking apps I get the error "Network Required  This application requires an active Internet Connection.  Please try again"

  When trying to use my banking apps I get the error "Network Required  This application requires an active Internet Connection.  Please try again".  This happens with two different apps from two different banks.  One of them works occasionally and have not figured out why.  I have cell signal and I am on a strong WiFi network.  Same thing happens when I turn off the WiFi too.    I have tried uninstalling and re-installing the app with no improvement.   I can't seem to find any setting that would cause this.   Does anyone have any suggestions?  

  I can access the internet just fine in the browser and i can use any other app i have.
  Sent from my Verizon Wireless 4G LTE DROID

• Network requirements for SQL Server Replication

  Hi,
  Can any one tell me what is network requirements for SQL Server replication.
  I have successfully configured the replication on LAN with active directory but I am unable to configure it on WAN.
  Can anyone tell me how WAN can be configured for sql server replication. 
  Any help in this regard will be highly appreciated.
  Regards,
  Muhammad Imran

  Hi Muhammad,
  In addition to Prashanth’s post, please also check the following things  to optimize SQL Server replication with a WAN link.
  • Initialize the Subscriber from a backup.
  Publishing the execution of stored procedures as opposed to replicating each operation performed by the stored procedure.
  Leveraging Subscription Streams.
  For more information, please review the following blog:
  http://sqlblog.com/blogs/argenis_fernandez/archive/2011/05/31/transactional-replication-and-wan-links.aspx
  Thanks,
  Lydia Zhang
  Lydia Zhang
  TechNet Community Support

• ADE Network requirements - License Server Communication Problem: E_ADEPT_DOCUMENT_TYPE_UNKNOWN:

  Oh the joy and bliss of DRM'd training material. From my Android I can access the SAP training manual, however, from my work desktop I cannot. ADE is installed, my account activated, I have downloaded a free document (The Adventures of Sherlock Holmes). However, when I try to load the training manual, I get this error:
  "Unable to download. Error getting License. License Server Communication Problem: E_ADEPT_DOCUMENT_TYPE_UNKNOWN:"
  My theory is that ADE is attempting to access a server through our proxy / web content filter and is being tripped up. I would like to view some log files, understand the network requirements, etc. in order to properly formulate a request to have our network configuration adjusted to permit this content.
  ADE Version 1.x had the option to turn on logging (Ctrl-Shift-T, enable logging...) however, in version 3.x, Ctrl-Shift-T does nothing.
  Any help is appreciated!

  Adobe Digital Editions Communications Error When Downloading PDF from Overdrive (and maybe elsewhere too):
  If you get an “error getting license server communication problem” message in Adobe Digital Editions:
  1.  Try downloading any of the PDF files from Adobe here: http://www.adobe.com/products/digital-editions/eBook.html
  2.  Now re-download the book from Overdrive
  3.  Enjoy!!
  I figured this out after many, many hours of frustration . .  hope it helps!!

• What are the network requirements for the Remote Panel Server?

  What are the network requirements for the Remote Panel Server?
  I've been trying for a while now to setup a Remote Panel.  I can connect to my computers remote panel from other computers on my LAN but nowhere else.  
  When ever I use the web publishing tool it gives me a URL in this format:  http://Computer-Name.Corporate-Name.local:8086/VI-Name.html Apparently this means I have a local DNS server and this URL has no meaning from the public.
  When I try connecting with the Operate>>Connect to Remote Panel..., I get this error message:
  "Connecting to remote panel server...
  Remote panel connection refused by specified server: Make sure LabVIEW Web Server is enabled on specified server"
  I got the same error when I tried to host a remote panel from my laptop at home, on my Wi-Fi.  Is there some network or firewall setting I'm not seting?  Could it be my server or router or private network?
  My goal is to be able to host Remote Panels from my laptop while I am travailing internationally, by using 4G mobile internet.  Is that even passable?
  Solved!
  Go to Solution.

  Over_Nyquest
  Have you enabled the Remote Panel Server in the Web Server options on the server?
  Kyle B  |  Product Support Engineer  |  ni.com/support

• Network Requirement in Clustered environment ( EP 6.0 )

  Hi,
  We are testing to deploy EP 6.0 SP2 in relatively slow WAN environment (latency 300 ms, bandwidth 1,5 mbit). We tried to add another J2EE node to the remote location but starting of additional J2EE node take several hours ( we had to modified CoreLoadTimeout, AdditionalLoadTimeout in Service manager to maximum ).
  Are you aware of any network requirement for communication between J2EE node in cluster? Do you think that additional J2EE node in remote location will improve the local performance in remote location ?
  Thank you,
  Marek

  Hi Richard,
  Actually there is a virtual LAN over the WAN so all nodes are in the same subnet. The problem is bandwidth I think.
  The remote server is starting in more that 12 hours. Does anybody know what kind of communication is between J2EE node ? (aside from synchronization)
  Here are some examples from console logs on both servers:
  <b>J2EE node close to primary J2EE node:</b>
  Loading core services:
    Starting core service monitor ... done. (437 ms)
    Starting core service p4 ... done. (531 ms)
    Starting core service log ... done. (484 ms)
    Starting core service dbms ... done. (1391 ms)
    Starting core service security ... done. (21547 ms)
    Starting core service naming ... done. (75422 ms)
    Starting core service admin ... done. (75844 ms)
    Starting core service file ... done. (102781 ms)
    Starting core service deploy ... done. (110875 ms)
  Core services loaded successfully.
  Loading additional services:
    Starting service telnet ... done. (219 ms)
    Starting service runtimeinfo ... done. (15 ms)
    Starting service appclient ... done. (234 ms)
    Starting service shell ... done. (203 ms)
    Starting service ts ... done. (859 ms)
    Starting service http ... done. (485 ms)
    Starting service jms ... done. (922 ms)
    Starting service PRTBridge ... done. (813 ms)
    Starting service javamail ... done. (1250 ms)
    Starting service logviewer ... done. (1484 ms)
    Starting service dbpool ... done. (4000 ms)
    Starting service rfcengine ... done. (4968 ms)
    Starting service ejb ... done. (13625 ms)
    Starting service eisconnector ... done. (15016 ms)
    Starting service servlet_jsp ... done. (18782 ms)
  <b>Remote J2EE node (slow connection to primary J2EE node):</b>
  Loading core services:
    Starting core service monitor ... done. (16531 ms)
    Starting core service p4 ... done. (18172 ms)
    Starting core service log ... done. (19000 ms)
    Starting core service dbms ... done. (28203 ms)
    Starting core service security ... done. (675656 ms)
    Starting core service naming ... done. (2339172 ms)
    Starting core service admin ... done. (2343891 ms)
    Starting core service file ... done. (2398781 ms)
    Starting core service deploy ... done. (2479313 ms)
  Core services loaded successfully.
  Loading additional services:
    Starting service runtimeinfo ... done. (0 ms)
    Starting service shell ... done. (672 ms)
    Starting service http ... done. (5234 ms)
    Starting service appclient ... done. (6234 ms)
    Starting service telnet ... done. (12735 ms)
    Starting service PRTBridge ... done. (24359 ms)
    Starting service logviewer ... done. (25656 ms)
    Starting service jms ... done. (27406 ms)
    Starting service ts ... done. (29500 ms)
    Starting service javamail ... done. (32625 ms)
    Starting service dbpool ... done. (118906 ms)
    Starting service rfcengine ... done. (164734 ms)
    Starting service eisconnector ... done. (387156 ms)
    Starting service ejb ... done. (6086899 ms)
    Starting service servlet_jsp ... done. (6908429 ms)
  Thank you,
  Marek

• SBO 2005 Network Requirement

  Dear all,
    Does SAP provides a guide on the network requirement such as bandwidth,etc??
  Regards,
  Kit

  Hi Kit,
  I don't ever remember seeing anything that quotes network usage. It's such a wide-open question that it's doubtful that standard specs exist.
  In my experience, bandwidth in a LAN is very unlikely to be a bottleneck for SBO and if you have industry standard hardware (ie 100Mbit+ cards, switches and routers) then you're not going to have a problem. Any performance issue is more likely to be caused by insufficient memory or processor power (...or inefficient code )
  Don't know if this will be of interest but Dell did some research in to SBO and their hardware:
  http://www.dell.com/downloads/global/power/ps2q06-20060333-SAP.pdf
  thought this doesn't really cover network bandwidth.
  Kind Regards,
  Owen

• What are the network requirements with respect to latency in Forms?

  Our company is a global provider of online sourcing, procurement and collaboration solutions and services to Engineering, Procurement and Construction (EPC) projects and companies.
  We operate three Internet trading portals with 1000+ buyers & supplier companies around the world.
  The application is:
  - based on Forms 9.0.2
  - use SUN J2SE 1.4.2_0X on the client side
  - runs on the public Internet using SSL
  - hosted in Norway
  Some companies reports about bad response times and the users claims that our application runs slow. The application do not run slowly, it is very responsive - however it requires a good network connection. Upon request from our customer base I need to know what is the requirements for the network in order to achive an acceptable user experience?:
  - Maximum lantency
  - Minimum bandwith
  What where the design requirements Oracle set forth when developing Forms?
  There can be a lot of "latency" generating network equipment in the path between the user and our server farm: switches, routers, proxy servers, chaching servers, firewalls, packet shapers, QoS, etc. One customer have all of these goodies and our users in that company do not have fun with the Forms application! However, they do not belive that there is something wrong with the network because normal HTML based sites works OK!
  In order to help these customers I need (URGENTLY) to know what the network requirments are?

  Its difficult to answer since the limits on latency will be governed by the user expectiation....
  For example, a financail trading application which has fast data entry may see a latency of .7 second as not acceptable but this would be fine for an HR application.
  The thing is that a user action, such as navigation between fields, wil generate a round trip to the application server to check for triggers (regardless if there is a trigger to file or not). Its this behaviour that gives Forms is very rich productive interface.
  To compare with HTML is not reasonable since HTML can't do all these things like instant validation, masterdetail coordication, scrolling etc that Forms can do...
  Its like complaining that your Sports car uses more petrol that your 50cc moped!!! ;o) It uses more petrol because its doing so much more.... Ok, I digress but you get the idea.
  Forms will require a certain level of network performance. the figures for that performance will depend on user expectation/scenarios, the type of application and the way it is written (a badly written Forms application can still run slow even on a fast network).
  Using network tools you can work out the latency (ping) from client to server. If this result comes out a figure which is not acceptable then no amount of tweeking of Forms will get it to run faster...You either need to upgrade the network to improve this; or change the style of application (e.g. to and HTML application) which will only ping the server on a POST/GET request but you lose a huge amount of functionality...and you need to ask your end users if they can live with that.
  Hope that helps.
  Grant Ronald
  Forms Product Management

• What are the host network requirements for a 2012 R2 failover cluster using fiber channel?

  I've seen comments on here regarding how the heartbeat signal isn't really required anymore - is that true?  We started using Hyper-V in its infancy and have upgraded gleefully every step of the way.  With 2012 R2, we also upgraded from 1gb iSCSI
  to 8GB Fiber Channel.  Currently, I have three NICs in use on each host.  One for "No cluster communication" on it's own VLAN.  Another for "Allow cluster network communication on this network" but NOT allowing clients, on
  a different VLAN.  And lastly the public network which allows cluster comms and clients on it (public VLAN).
  Is it still necessary to have all three of these NICs in use?  If the heartbeat isn't necessary any more, is there any reason to not have two public IPs and do away with the rest of the network?  (two for fault tolerance)  Does Live Migration
  still use Ethernet if FC is available?  I wasn't sure what all has changed with these requirements since Hyper-V first came out.
  If it matters, we have 5 servers w/160GB RAM, 8 NICs, dual HBAs connected to redundant FC switches, going to two SANs.  We're running around 30 VMs right now.  
  Can someone share their knowledge with me regarding the proper setup for my environment?  Many Thanks!

  Hi,
  You can setup cluster with a single network but that leaves you with single point of failure on the Networking front, it is still recommended to have a heartbeat network.
  Live migration would still happen though Ethernet, it has nothing to do with FC. Don't get confused, you had iSCSI for storage which used one of your VLAN and now you have FC for your storage.
  Your hardware specs looks good. You can set up the following networks -
  1. Public Network - Team two or more NICs (based on bandwidth aggregation)
  2. Heartbeat Network - Don't use teamed Adaptor
  3. Live Migration - Team two or more NICs (based on bandwidth aggregation)
  Plan properly and draw guidelines to visualize and to remove single point of failure at all points.
  Feel free to ask if you have some more queries.
  Regards
  Prabhash

• SCCM 2012 - Network requirements for Client communication to primary in a Cross Forest Environment

  Hello, I have been trying to get some definitive answers on what network traffic is required between a client and a primary site versus a secondary in a cross forest scenario.
  Here is the scenario:
  Company A has an existing SCCM 2012 primary Site. Company B (Separate Forest) has now been brought in. One subnet on each side can route to each other and using that one subnet a two way forest
  trust has been setup. But the remote offices have IP address overlaps between companies. At some point in the future all assets on company B will be re-IP and brought over to Company A domain. But in the interim it would be nice to get SCCM cross forest clients
  working. Upgrading to a CAS model with two Primaries would not be preferred here as this is a temporary solution. 
  My questions are as follows.
  If a secondary site is deployed into Company B Forest/Network. I have seen people online elude to that clients will still need to communicate to the Primary located at Company A, even though they
  are assigned to a secondary on Company B’s network. Is this true? Is there any workarounds for this? Is a NAT back to the primary acceptable, or is reverse lookup required?
  Will the Primary need to communicate directly to the clients in Company B? If this is in fact a requirement, then this would be a show stopper. But if its only needed for things like client pushes,
  then we could work around it.
  Thanks

  "But the remote offices have IP address overlaps between companies"
  Technically, this is unsupported because clients, depending upon your boundaries, will not be able to find a local DP since they use IP addresses for this. The only way to work around this is to use AD Site boundaries.
  "though they are assigned to a secondary"
  Clients are *never* assigned to a secondary site -- that's not what secondary sites are for. Yes, clients require communication with an MP in the primary site where they are assigned. There is no way to change this or work-around this except to put
  an MP from the primary site closer to those clients and use the new MP affinity option in R2 CU3.
  Reverse lookups are only used to verify names by applications that wish to have this type of functionality (which are very few in number) and have nothing to do with true network traffic. NATing is an issue for the reason I gave above -- DP location.
  Remote control, client push, and WoL won't work either because there is no way for the traffic to reach the destination behind the NAT.
  All client *agent* communication in ConfigMgr is client initiated in ConfigMgr (remote control, client push, and WoL -- as just mentioned -- are sort of exceptions to this but they don't really involve the client *agent*.)
  Jason | http://blog.configmgrftw.com | @jasonsandys

• Network requirements for deploying RAC in VM manager V3 with a RAC template

  Now I have two VM servers and installe VM manager on another server.
  Each server has only one NIC with one port.
  I have deployed single virtual machines successfully on the two VM servers.
  Can I deploy RAC with a RAC template with the two VM servers.
  How do I need to do with the network?

  Yes. Create a new virtual MAC/NIC.
  Should you do this?????
  NO.
  RAC requires a dedicated NIC. Testing... you will be okay but don't expect good performance. You can not do this in production.