AP541N SNMP for Active Clients

I'm hoping to query our AP541N's for the number of active wireless clients.
I've walked the device and searched the MIBs but can't find what I need.
Aironets seem to use "CISCO-DOT11-ASSOCIATION-MIB|cdot11active devices" (1.3.6.1.4.1.9.9.273.1.1.2), but our AP541N's don't respond to this OID.
Do the AP541N's have something similar?
Software image is AP541N-K9-2.0(4).
Thanks in advance - JD

Hi
I'm looking for the exact same thing.. And cannot find it either.
I'd appreciate if someone could find a solution for this.
We have over 15 other APs (1230's, 1252's) and all of them have their clients graphed nicely.. only that ap541n is missing from the graph.
Thank you

Similar Messages

WLC OID (snmp) for authenticated clients

I know the OID for associated users 1.3.6.1.4.1.14179.2.1.1.1.38.
But is there one for Authenticated clients? I am looking for the numbers similar to the one I can get from the report tools in WCS.
I think the number of authenticated clients is a better number than using the associated client count when talking about guest WLAN's.
Best regards,
Steffen Lindemann

Hi,
yes there is. I have created a table with solarwinds for this but they represent or provide information in diffrent way.
The table consist of
>WLAN Profile
1.3.6.1.4.1.9.9.599.1.3.1.1.3
This object specifies the WLAN Profile name
this 802.11 wireless client is connected to.
>Client Status
1.3.6.1.4.1.9.9.599.1.3.1.1.2
The object that represents the current status of the client.
>MobileStationUserName
1.3.6.1.4.1.14179.2.1.4.1.3
User Name , if any , of the Mobile Station. This would
be non empty in case of Web Authentication and IPSec.
>Client Protocol
1.3.6.1.4.1.9.9.599.1.3.1.1.6
The 802.11 protocol type of the client.
'dot11a' - The client is using 802.11a standard
to connect to the access point (AP)
>MobileStationIpAddress
1.3.6.1.4.1.14179.2.1.4.1.2
Ip address
Well the Clinet status would be represted in num value:
Client status:
4 = associated
6 = Probing
8 = Disconnected
Protocol:
1 = 802.11a
2 = 802.11b
3 = 802.11g
Hope this helps

Automatic Proxy Failover for Extend Client Connections

Hi
I looked at the documentation but this is a still unclear to me. We have a C++ application doing continuous puts/putAlls on a Coherence cluster through a set of storage disabled Proxy nodes. (I am guessing this is referred to as 'active' client?)
Clients:
Multiple C++ processes doing puts and putAlls via multiple proxy nodes
Proxies:
6 nodes acting purely as proxies without storage
Servers:
6 Storage nodes
Each client has the addresses of all proxy nodes and ports. We are running a failover test where we kill a proxy node and see if the client fails over to next proxy that is alive. From what we see, this is not happening. Can someone explain what happens when a proxy server fails? I read in one of the forum responses that
"For active client, when a request to proxy failed, the client will automatically connect to the next proxy server. But the reconnection only occurs the next request to proxy. It’s up to the client to retry the failed request."
What does "retry the failed request" mean? - Is it - retry the PUT or PUTALL() that failed or retry getting the instance of the cache in C++ once I catch the socket failure exception in my code?
Any pseudo code you can furnish would be very helpful
Thank you
Sairam

As soon as we kill the proxy server that the client is connected to, we are getting the following socket disconnect exception, although other proxy nodes are up and running. What am I missing?
terminate called after throwing an instance of 'coherence::lang::throwable_spec<coherence::net::messaging::ConnectionException, coherence::lang::extends<coherence::io::pof::PortableException, std::runtime_error>, coherence::lang::implements<void, void, void, void, void, void, void, void, void, void, void, void, void, void, void, void>, coherence::lang::throwable_spec<coherence::io::pof::PortableException, coherence::lang::extends<coherence::lang::RuntimeException, std::runtime_error>, coherence::lang::implements<coherence::io::pof::PortableObject, void, void, void, void, void, void, void, void, void, void, void, void, void, void, void>, coherence::lang::throwable_spec<coherence::lang::RuntimeException, coherence::lang::extends<coherence::lang::Exception, std::runtime_error>, coherence::lang::implements<void, void, void, void, void, void, void, void, void, void, void, void, void, void, void, void>, coherence::lang::throwable_spec<coherence::lang::Exception, coherence::lang::extends<coherence::lang::Object, std::exception>, coherence::lang::implements<void, void, void, void, void, void, void, void, void, void, void, void, void, void, void, void>, coherence::lang::TypedHandle<coherence::lang::Object const> >::hierarchy>::hierarchy>::hierarchy>::bridge'
what(): coherence::net::messaging::ConnectionException: coherence::component::util::TcpInitiator::TcpConnection@0xf511730{Id=0x0000012D76A6F7DB0A9869A922AC93E0ABB1489FC9E126BAC29CF570C15A218E, Open=1, LocalAddress=NULL, RemoteAddress=PosixRawSocketAddress[family=2]}: socket disconnect
    at virtual coherence::lang::TypedHandle<coherence::net::messaging::Response> coherence::component::net::extend::AbstractPofRequest::Status::getResponse()(AbstractPofRequest.cpp:189)
    at coherence::component::net::extend::AbstractPofRequest::Status::getResponse()
    at coherence::component::net::extend::AbstractPofRequest::Status::waitForResponse(long)
    at coherence::component::net::extend::PofChannel::request(coherence::lang::TypedHandle<coherence::net::messaging::Request>, long)
    at coherence::component::net::extend::PofChannel::request(coherence::lang::TypedHandle<coherence::net::messaging::Request>)
    at coherence::component::net::extend::RemoteNamedCache::BinaryCache::put(coherence::lang::TypedHandle<coherence::lang::Object const>, coherence::lang::TypedHolder<coherence::lang::Object>, long, bool)
    at coherence::component::net::extend::RemoteNamedCache::BinaryCache::put(coherence::lang::TypedHandle<coherence::lang::Object const>, coherence::lang::TypedHolder<coherence::lang::Object>)
    at coherence::util::WrapperCollections::AbstractWrapperMap::put(coherence::lang::TypedHandle<coherence::lang::Object const>, coherence::lang::TypedHolder<coherence::lang::Object>)
    at coherence::util::ConverterCollections::ConverterMap::put(coherence::lang::TypedHandle<coherence::lang::Object const>, coherence::lang::TypedHolder<coherence::lang::Object>)
    at coherence::component::net::extend::RemoteNamedCache::put(coherence::lang::TypedHandle<coherence::lang::Object const>, coherence::lang::TypedHolder<coherence::lang::Object>)
    at coherence::component::util::SafeNamedCache::put(coherence::lang::TypedHandle<coherence::lang::Object const>, coherence::lang::TypedHolder<coherence::lang::Object>)
    at CoherenceCache::insertData(std::string const&, std::string const&, std::string const&, unsigned long)
    at SessionManager::executeCacheOperation(int, std::string const&, std::string const&)
    at KeyPublisher::publishCycle()
    at VECLFunctor<KeyPublisher>::operator()()
    at VEThread::_run(void*)
    <stack frame symbol unavailable>
    on thread "Thread-1"
Caused by: coherence::io::IOException: socket disconnect
    at virtual coherence::lang::size32_t coherence::net::Socket::readInternal(coherence::lang::octet_t*, coherence::lang::size32_t)(Socket.cpp:333)
    at coherence::net::Socket::readInternal(unsigned char*, unsigned int)
    at coherence::net::Socket::SocketInput::read(coherence::lang::SubscriptHandle<coherence::lang::Array<unsigned char>, unsigned char, unsigned int>, unsigned int, unsigned int)
    at coherence::io::BufferedInputStream::fillBuffer()
    at coherence::io::BufferedInputStream::read()
    at coherence::component::util::TcpInitiator::readMessageLength(coherence::lang::TypedHandle<coherence::io::InputStream>)
    at coherence::component::util::TcpInitiator::TcpConnection::TcpReader::onNotify()
    at coherence::component::util::Daemon::run()
    at coherence::lang::Thread::run()
    on thread "ExtendTcpCacheService:coherence::component::util::TcpInitiator:coherence::component::util::TcpInitiator::TcpConnection::TcpReader"See below our proxy and client configs
Client:
<remote-cache-scheme>
      <scheme-name>extend-dist</scheme-name>
      <service-name>ExtendTcpCacheService</service-name>
      <initiator-config>
        <tcp-initiator>
          <remote-addresses>
            <socket-address>
              <address system-property="tangosol.coherence.proxy.address">10.152.105.169</address>
              <port system-property="tangosol.coherence.proxy.port">9099</port>
            </socket-address>
          </remote-addresses>
         <remote-addresses>
            <socket-address>
              <address system-property="tangosol.coherence.proxy.address">10.152.105.171</address>
              <port system-property="tangosol.coherence.proxy.port">9099</port>
            </socket-address>
          </remote-addresses>
         <remote-addresses>
            <socket-address>
              <address system-property="tangosol.coherence.proxy.address">10.152.105.170</address>
              <port system-property="tangosol.coherence.proxy.port">9099</port>
            </socket-address>
          </remote-addresses>
         <remote-addresses>
            <socket-address>
              <address system-property="tangosol.coherence.proxy.address">10.152.105.172</address>
              <port system-property="tangosol.coherence.proxy.port">9099</port>
            </socket-address>
          </remote-addresses>
         <remote-addresses>
            <socket-address>
              <address system-property="tangosol.coherence.proxy.address">10.152.105.173</address>
              <port system-property="tangosol.coherence.proxy.port">9099</port>
            </socket-address>
          </remote-addresses>
          <connect-timeout>10s</connect-timeout>
        </tcp-initiator>
        <outgoing-message-handler>
          <request-timeout>5s</request-timeout>
        </outgoing-message-handler>
      </initiator-config>
    </remote-cache-scheme>
Proxy:

    <proxy-scheme>
      <service-name>ExtendTcpProxyService</service-name>
      <thread-count system-property="tangosol.coherence.extend.threads">25</thread-count>
      <acceptor-config>
        <tcp-acceptor>
          <local-address>
            <address system-property="tangosol.coherence.extend.address">localhost</address>
            <port system-property="tangosol.coherence.extend.port">9099</port>
          </local-address>
        </tcp-acceptor>
        <outgoing-message-handler>
          <request-timeout>10s</request-timeout>
        </outgoing-message-handler>
      </acceptor-config>
      <autostart>true</autostart>
    </proxy-scheme>
...Thanks
Sairam
Edited by: SKR on Jan 12, 2011 3:09 PM

CS6 Offline Activation for Cloned Clients

My job requires that we have no internet access. I currently deploy our clients using a cloning machine. I create a master image and clone to our clients with all applications installed. I would like to be able to include the activation before I clone to the clients. I watched the video for AAMES and it mentioned about a workaround for cloned clients. It also said there was a video available on the topic. Can someone point me in the right direction for this?

Please refer Serializing a package when a user is offline section :
http://goo.gl/uNEZLQ
Enterprise Deployment Resources:
http://www.adobe.com/devnet/creativesuite/enterprisedeployment.html
Regards,
Ashutosh

ACS SNMP OID for active authenticated user

Hi, anyone know the OID or MIB name for Active TACACS and Radius authentication? like to use some NMS tool to pull out this information for monitoring.

I could test it , but in the meantime you could try by using acs web services
http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.1/sdk/mrvapis.html

AnyConnect error " User not authorized for AnyConnect Client access, contact your administrator"

Hi everyone,
it's probably just me but I have tried real hard to get a simple AnyConnect setup working in a lab environment on my ASA 5505 at home, without luck. When I connect with the AnyConnect client I get the error message "User not authorized for AnyConnect Client access, contact your administrator". I have searched for this error and tried some of the few solutions out there, but to no avail. I also updated the ASA from 8.4.4(1) to 9.1(1) and ASDM from 6.4(9) to 7.1(1) but still the same problem. The setup of the ASA is straight forward, directly connected to the Internet with a 10.0.1.0 / 24 subnet on the inside and an address pool of 10.0.2.0 / 24 to assign to the VPN clients. Please note that due to ISP restrictions, I'm using port 44455 instead of 443. I had AnyConnect working with the SSL portal, but IKEv2 IPsec is giving me a headache. I have stripped down certificate authentication which I had running before just to eliminate this as a potential cause of the issue. When running debugging, I do not get any error messages - the handshake completes successfully and the local authentication works fine as well.
Please find the current config and debugging output below. I appreciate any pointers as to what might be wrong here.
: Saved
ASA Version 9.1(1)
hostname ASA
domain-name ingo.local
enable password ... encrypted
xlate per-session deny tcp any4 any4
xlate per-session deny tcp any4 any6
xlate per-session deny tcp any6 any4
xlate per-session deny tcp any6 any6
xlate per-session deny udp any4 any4 eq domain
xlate per-session deny udp any4 any6 eq domain
xlate per-session deny udp any6 any4 eq domain
xlate per-session deny udp any6 any6 eq domain
passwd ... encrypted
names
name 10.0.1.0 LAN-10-0-1-x
dns-guard
ip local pool VPNPool 10.0.2.1-10.0.2.10 mask 255.255.255.0
interface Ethernet0/0
switchport access vlan 2
interface Ethernet0/1
interface Ethernet0/2
interface Ethernet0/3
interface Ethernet0/4
interface Ethernet0/5
interface Ethernet0/6
interface Ethernet0/7
interface Vlan1
nameif Internal
security-level 100
ip address 10.0.1.254 255.255.255.0
interface Vlan2
nameif External
security-level 0
ip address dhcp setroute
regex BlockFacebook "facebook.com"
banner login This is a monitored system. Unauthorized access is prohibited.
boot system disk0:/asa911-k8.bin
ftp mode passive
clock timezone PST -8
clock summer-time PDT recurring
dns domain-lookup Internal
dns domain-lookup External
dns server-group DefaultDNS
name-server 10.0.1.11
name-server 75.153.176.1
name-server 75.153.176.9
domain-name ingo.local
object network obj_any
subnet 0.0.0.0 0.0.0.0
object network LAN-10-0-1-x
subnet 10.0.1.0 255.255.255.0
object network Company-IP1
host xxx.xxx.xxx.xxx
object network Company-IP2
host xxx.xxx.xxx.xxx
object network HYPER-V-DUAL-IP
range 10.0.1.1 10.0.1.2
object network LAN-10-0-1-X
access-list 100 extended permit tcp any4 object HYPER-V-DUAL-IP eq 3389 inactive
access-list 100 extended permit tcp object Company-IP1 object HYPER-V-DUAL-IP eq 3389
access-list 100 extended permit tcp object Company-IP2 object HYPER-V-DUAL-IP eq 3389
tcp-map Normalizer
check-retransmission
checksum-verification
no pager
logging enable
logging timestamp
logging list Threats message 106023
logging list Threats message 106100
logging list Threats message 106015
logging list Threats message 106021
logging list Threats message 401004
logging buffered errors
logging trap Threats
logging asdm debugging
logging device-id hostname
logging host Internal 10.0.1.11 format emblem
logging ftp-bufferwrap
logging ftp-server 10.0.1.11 / asa *****
logging permit-hostdown
mtu Internal 1500
mtu External 1500
ip verify reverse-path interface Internal
ip verify reverse-path interface External
icmp unreachable rate-limit 1 burst-size 1
icmp deny any echo External
asdm image disk0:/asdm-711.bin
no asdm history enable
arp timeout 14400
no arp permit-nonconnected
object network obj_any
nat (Internal,External) dynamic interface
object network LAN-10-0-1-x
nat (Internal,External) dynamic interface
object network HYPER-V-DUAL-IP
nat (Internal,External) static interface service tcp 3389 3389
access-group 100 in interface External
timeout xlate 3:00:00
timeout pat-xlate 0:00:30
timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
timeout tcp-proxy-reassembly 0:01:00
timeout floating-conn 0:00:00
dynamic-access-policy-record DfltAccessPolicy
aaa-server radius protocol radius
aaa-server radius (Internal) host 10.0.1.11
key *****
radius-common-pw *****
user-identity default-domain LOCAL
aaa authentication ssh console radius LOCAL
http server enable
http LAN-10-0-1-x 255.255.255.0 Internal
no snmp-server location
no snmp-server contact
snmp-server enable traps snmp authentication linkup linkdown coldstart
crypto ipsec ikev2 ipsec-proposal DES
protocol esp encryption des
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal 3DES
protocol esp encryption 3des
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES
protocol esp encryption aes
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES192
protocol esp encryption aes-192
protocol esp integrity sha-1 md5
crypto ipsec ikev2 ipsec-proposal AES256
protocol esp encryption aes-256
protocol esp integrity sha-1 md5
crypto ipsec security-association pmtu-aging infinite
crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set ikev2 ipsec-proposal AES256 AES192 AES 3DES DES
crypto map External_map 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
crypto map External_map interface External
crypto ca trustpoint srv01_trustpoint
enrollment terminal
crl configure
crypto ca trustpoint asa_cert_trustpoint
keypair asa_cert_trustpoint
crl configure
crypto ca trustpoint LOCAL-CA-SERVER
keypair LOCAL-CA-SERVER
crl configure
crypto ca trustpool policy
crypto ca server
cdp-url http://.../+CSCOCA+/asa_ca.crl:44435
issuer-name CN=...
database path disk0:/LOCAL_CA_SERVER/
smtp from-address ...
publish-crl External 44436
crypto ca certificate chain srv01_trustpoint
certificate <output omitted>
quit
crypto ca certificate chain asa_cert_trustpoint
certificate <output omitted>
quit
crypto ca certificate chain LOCAL-CA-SERVER
certificate <output omitted>
quit
crypto ikev2 policy 1
encryption aes-256
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 10
encryption aes-192
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 20
encryption aes
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 30
encryption 3des
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 policy 40
encryption des
integrity sha
group 5 2
prf sha
lifetime seconds 86400
crypto ikev2 enable External client-services port 44455
crypto ikev2 remote-access trustpoint asa_cert_trustpoint
telnet timeout 5
ssh LAN-10-0-1-x 255.255.255.0 Internal
ssh xxx.xxx.xxx.xxx 255.255.255.255 External
ssh xxx.xxx.xxx.xxx 255.255.255.255 External
ssh timeout 5
ssh version 2
console timeout 0
no vpn-addr-assign aaa
no ipv6-vpn-addr-assign aaa
no ipv6-vpn-addr-assign local
dhcpd dns 75.153.176.9 75.153.176.1
dhcpd domain ingo.local
dhcpd option 3 ip 10.0.1.254
dhcpd address 10.0.1.50-10.0.1.81 Internal
dhcpd enable Internal
threat-detection basic-threat
threat-detection scanning-threat shun except ip-address LAN-10-0-1-x 255.255.255.0
threat-detection statistics access-list
threat-detection statistics tcp-intercept rate-interval 30 burst-rate 400 average-rate 200
dynamic-filter use-database
dynamic-filter enable interface Internal
dynamic-filter enable interface External
dynamic-filter drop blacklist interface Internal
dynamic-filter drop blacklist interface External
ntp server 128.233.3.101 source External
ntp server 128.233.3.100 source External prefer
ntp server 204.152.184.72 source External
ntp server 192.6.38.127 source External
ssl encryption aes256-sha1 aes128-sha1 3des-sha1
ssl trust-point asa_cert_trustpoint External
webvpn
port 44433
enable External
dtls port 44433
anyconnect image disk0:/anyconnect-win-3.1.02026-k9.pkg 1
anyconnect profiles profile1 disk0:/profile1.xml
anyconnect enable
smart-tunnel list SmartTunnelList1 mstsc mstsc.exe platform windows
smart-tunnel list SmartTunnelList1 putty putty.exe platform windows
group-policy DfltGrpPolicy attributes
vpn-tunnel-protocol ikev1 ikev2 l2tp-ipsec ssl-client ssl-clientless
webvpn
anyconnect profiles value profile1 type user
username write.ingo password ... encrypted
username ingo password ... encrypted privilege 15
username tom.tucker password ... encrypted
class-map TCP
match port tcp range 1 65535
class-map type regex match-any BlockFacebook
match regex BlockFacebook
class-map type inspect http match-all BlockDomains
match request header host regex class BlockFacebook
class-map inspection_default
match default-inspection-traffic
policy-map type inspect dns preset_dns_map
parameters
message-length maximum client auto
message-length maximum 1500
id-randomization
policy-map TCP
class TCP
set connection conn-max 1000 embryonic-conn-max 1000 per-client-max 250 per-client-embryonic-max 250
set connection timeout dcd
set connection advanced-options Normalizer
set connection decrement-ttl
policy-map type inspect http HTTP
parameters
protocol-violation action drop-connection log
class BlockDomains
policy-map global_policy
class inspection_default
inspect ftp
inspect h323 h225
inspect h323 ras
inspect rsh
inspect rtsp
inspect esmtp
inspect sqlnet
inspect skinny
inspect sunrpc
inspect xdmcp
inspect sip
inspect netbios
inspect tftp
inspect ip-options
inspect dns preset_dns_map dynamic-filter-snoop
inspect http HTTP
service-policy global_policy global
service-policy TCP interface External
smtp-server 199.185.220.249
privilege cmd level 3 mode exec command perfmon
privilege cmd level 3 mode exec command ping
privilege cmd level 3 mode exec command who
privilege cmd level 3 mode exec command logging
privilege cmd level 3 mode exec command failover
privilege cmd level 3 mode exec command vpn-sessiondb
privilege cmd level 3 mode exec command packet-tracer
privilege show level 5 mode exec command import
privilege show level 5 mode exec command running-config
privilege show level 3 mode exec command reload
privilege show level 3 mode exec command mode
privilege show level 3 mode exec command firewall
privilege show level 3 mode exec command asp
privilege show level 3 mode exec command cpu
privilege show level 3 mode exec command interface
privilege show level 3 mode exec command clock
privilege show level 3 mode exec command dns-hosts
privilege show level 3 mode exec command access-list
privilege show level 3 mode exec command logging
privilege show level 3 mode exec command vlan
privilege show level 3 mode exec command ip
privilege show level 3 mode exec command failover
privilege show level 3 mode exec command asdm
privilege show level 3 mode exec command arp
privilege show level 3 mode exec command ipv6
privilege show level 3 mode exec command route
privilege show level 3 mode exec command ospf
privilege show level 3 mode exec command aaa-server
privilege show level 3 mode exec command aaa
privilege show level 3 mode exec command eigrp
privilege show level 3 mode exec command crypto
privilege show level 3 mode exec command ssh
privilege show level 3 mode exec command vpn-sessiondb
privilege show level 3 mode exec command vpnclient
privilege show level 3 mode exec command vpn
privilege show level 3 mode exec command dhcpd
privilege show level 3 mode exec command blocks
privilege show level 3 mode exec command wccp
privilege show level 3 mode exec command dynamic-filter
privilege show level 3 mode exec command webvpn
privilege show level 3 mode exec command service-policy
privilege show level 3 mode exec command module
privilege show level 3 mode exec command uauth
privilege show level 3 mode exec command compression
privilege show level 3 mode configure command interface
privilege show level 3 mode configure command clock
privilege show level 3 mode configure command access-list
privilege show level 3 mode configure command logging
privilege show level 3 mode configure command ip
privilege show level 3 mode configure command failover
privilege show level 5 mode configure command asdm
privilege show level 3 mode configure command arp
privilege show level 3 mode configure command route
privilege show level 3 mode configure command aaa-server
privilege show level 3 mode configure command aaa
privilege show level 3 mode configure command crypto
privilege show level 3 mode configure command ssh
privilege show level 3 mode configure command dhcpd
privilege show level 5 mode configure command privilege
privilege clear level 3 mode exec command dns-hosts
privilege clear level 3 mode exec command logging
privilege clear level 3 mode exec command arp
privilege clear level 3 mode exec command aaa-server
privilege clear level 3 mode exec command crypto
privilege clear level 3 mode exec command dynamic-filter
privilege cmd level 3 mode configure command failover
privilege clear level 3 mode configure command logging
privilege clear level 3 mode configure command arp
privilege clear level 3 mode configure command crypto
privilege clear level 3 mode configure command aaa-server
prompt hostname context
no call-home reporting anonymous
call-home
profile CiscoTAC-1
no active
destination address http https://tools.cisco.com/its/service/oddce/services/DDCEService
destination address email [email protected]
destination transport-method http
subscribe-to-alert-group diagnostic
subscribe-to-alert-group environment
subscribe-to-alert-group inventory periodic monthly
subscribe-to-alert-group configuration periodic monthly
subscribe-to-alert-group telemetry periodic daily
Cryptochecksum:41a021a28f73c647a2f550ba932bed1a
: end
Many thanks,
Ingo

Hi Jose,
here is what I got now:
ASA(config)# sh run | begin tunnel-group
tunnel-group DefaultWEBVPNGroup general-attributes
address-pool VPNPool
authorization-required
and DAP debugging still the same:
ASA(config)# DAP_TRACE: DAP_open: CDC45080
DAP_TRACE: Username: tom.tucker, aaa.cisco.grouppolicy = DfltGrpPolicy
DAP_TRACE: Username: tom.tucker, aaa.cisco.username = tom.tucker
DAP_TRACE: Username: tom.tucker, aaa.cisco.username1 = tom.tucker
DAP_TRACE: Username: tom.tucker, aaa.cisco.username2 =
DAP_TRACE: Username: tom.tucker, aaa.cisco.tunnelgroup = DefaultWEBVPNGroup
DAP_TRACE: Username: tom.tucker, DAP_add_SCEP: scep required = [FALSE]
DAP_TRACE: Username: tom.tucker, DAP_add_AC:
endpoint.anyconnect.clientversion="3.1.02026";
endpoint.anyconnect.platform="win";
DAP_TRACE: Username: tom.tucker, dap_aggregate_attr: rec_count = 1
DAP_TRACE: Username: tom.tucker, Selected DAPs: DfltAccessPolicy
DAP_TRACE: Username: tom.tucker, DAP_close: CDC45080
Unfortunately, it still doesn't work. Hmmm.. maybe a wipe of the config and starting from scratch can help?
Thanks,
Ingo

OneDrive for Business sync prompts for ODfB client install

Working with a client that has installed Office 2013 ProPlus on an image that is being deployed. Users currently logon to their computer with a local account (Active Directory in process of being deployed).  User is "migrated" and begins
to logon to Active Directory. User now logs on to the O365 portal and accesses their OneDrive site, not yet populated with documents. User clicks "sync" and is prompted to install a OneDrive for Business client, even though it has
already been installed as part of Office 2013 ProPlus. Install proceeds and Internet Explorer closes. Once install has completed, user logs on to O365 portal and attempts to sync OneDrive.   User is prompted again to install the appropriate
client.
I have tried clearing IE cache, launching IE in InPrivate mode and using Chrome.   Same behavior.
Any suggestions?
Thanks,
[email protected]

New fun behavior noted:
New behavior. Similar scenario:   User logging on to PC with a local account.   Office 2013 ProPlus, including ODfB is installed.   User is NOT currently using ODfB. Using Word
2013, Excel 2013, PPT 2013, Outlook 2013 ( connecting to Office 365 mailbox) and Lync 2013 (connecting to Lync Online) are being used by the users. Users machine is joined to a domain, User local account profile is migrated to domain profile.
User logs into PC with domain account. ( Matching the Office 365 account, typically [email protected] ). User logs into Outlook and Lync with no issues. User logs into the Office 365 Portal, selects OneDrive, and selects Sync.
"Sync this library to your device for easy access" window appears. User selects Sync now.. User is presented with "Sign in Call us overprotective, but we need to verify you account again before opening "https://realgoods-my.sharepoint.com""
windows. User enter his email address and clicks Next. User is then presented with "Sign In" windows and enters User ID and password. User is then presented with the "Overprotective" window. This happens 3 times
until user gets "We cannot connect to the specified SharePoint site." error message.
IE browser cache has been cleared. Steps have been followed to clear all document cache files. sharepoint.com, microsoftonline.com, office365.com have been added to the Trusted Sites zone and added to IE compatibility list.
Any clues on this one as well????
R,
Dale
[email protected]

Cisco Jabber for Windows Client SDK

Is there an SDK for Cisco Jabber for Windows client? I could only find the Web SDK. Are there no other SDKs that would let me control features of the Jabber Windows Client?

And in order to avoid TAPI limitation, they say they have started using Jabber which controls all phone functionalities through an Application User connected to the Call Manager.
Assuming they are referring to the normal Jabber for Windows/Mac/iOS/Android applications then this is wrong. Jabber - the client, not the IM&P servers which are part of the CUCM cluster (if you're familiar with Lync consider CUCM+IM&P servers a Front End Pool) - do not use an Application User at all. When a user starts Jabber, assuming SAML SSO is off, they supply an email address. This is used to find the servers via DNS SRV records, or the Mobile and Remote Access Expressway (roughly analogous to a Lync Edge pool) to tunnel through the firewall. After the email address they are prompted for their End User username and password. This is then used to access several APIs on the server, namely the User Data Service to discover what the user has. This would include what the user has configured/available to them. After this is done the Jabber client does one of three things with respect to phone functionality:
If the user has no phone devices provisioned for them - physical or software - it becomes an IM&P client only.
If the user has a software phone phone provisioned, it registers as that using SIP. In this way Jabber is the actual phone. This is called a CSF device for Jabber Windows/OS X.
If the user has a desk phone assigned to their End User account AND administrative policy is to default to desk phone control, it registers to CTI Manager on the CUCM server to control the user's physical phone.
A user can toggle between option two and three, if appropriately provisioned, but cannot have both simultaneously. In other words, Jabber is either controlling a physical phone over CTI or is a phone itself using SIP. The difference is where the audio/video media is sent from/to.
All of this happens using that human's End User credentials.
Now, if you wanted to have a server control the user's phone - either a physical one or Jabber - you would use the TSP as an interface to CTI Manager on the CUCM server and receive real-time events (e.g. the user went off-hook, the phone is ringing with this caller ID, etc.) and issue commands to that phone (e.g. make a call to X). This is done using an Application User account because the server would need to do this for multiple users simultaneously. If you also use the Super Provider concept, the CUCM administrator doesn't have to take the extra step of associating every phone to your Application User manually. Instead, you can simply issue CTI subscriptions to see any/all device activity you want.
This is all assuming you wanted to do the integration server-side to avoid having to update the Cisco TSP application on every user PC (which also limits your WPF application to machines capable of running the TSP) every time the CUCM administrator patches the servers. If you don't care about that, then you can do this all client-side on the user's PC, and have them supply their End User credentials.
Of course, you could also reconsider the Jabber SDK and just embed the make/receive call functionality directly into your application instead.

IMessage and Facetime "waiting for activation" on iPhone4s (Brazil)

I've had an iPhone 3GS for 3 years, had iMessage working perfectly.
On march 16th, i bought an iPhone 4S from my supported carrier, TIM. Since then, I cannot activate my phone number neither in iMessage nor in Facetime.
If I log in my Apple ID, both work fine, but under my email address.
I've been searching for answers since then, tried everything - Date/Time adjustments, reset network config, set up as new phone, restore from iTunes backup, restore from iCloud backup, activate/deactivate iCloud account, setting up my phone number under my Apple ID, even DFU mode, but nothing seems to work.
I reached my carrier, who said there are no issues on my phone line, and thus it must be something that should be solved by Apple.
Sometimes, just trying to turn on iMessage or Facetime will give me an instant popup message on the iPhone saying "iMessage Activation - An error occurred during activation. Try again". If I click "OK" and try to activate it, I get "Waiting for activation" under the iMessage on/off button for about 4 to 5 hours before it says again that my iPhone has not been verifyed and I must try again.
This has been going on for a week now, and I sure hope someone can help me solve this thing.
By the way, I'm running iOS 5.1 on 4S, as I was running iOS 5.1 on the 3GS before.

TIM
Como muitas pessoas, assim como eu, também não conseguem ativar o Imessage, resolvi compartilhar a solução a seguir, a qual ainda não tentei.
É da época dos problemas com o Facetime, mas dado que o sistema de ativação é semelhante ao iMessage, vale a pena tentar, visto que é a solução mais coerente que vi até hoje.
O texto a seguir foi Publicado em 22 Dezembro 2010 por Fábio Kohn,
no link a seguir:
http://pt-br.paperblog.com/solucao-definitiva-como-ativar-o-facetime-na-tim-1650 48/
ABRE ASPAS:
Em menos de 3 meses de cliente da TIM, foram 8 protocolos de atendimento direto com eles devido a problemas distintos e 3 chamados junto a ANATEL
incluindo um deles o da ativação do FaceTime, nada adiantou, sempre alegavam que o problema estava na Apple e não na operadora,
Não vou nem descrever o fato de os atendentes da TIM no *144 não saberem nem do que se trata “FaceTime”.
pra terem uma ideia, ao falar que o aparelho era um iPhone, a primeira pergunta: – De qual marca Senhor?
Foi quando fui até uma loja física da TIM, relatei rapidamente meu problema no pré-atendimento e foi quando veio o gerente da loja,
começou a falar comigo e sacou o iPhone 4 dele do bolso dizendo que ele teve exatamente o mesmo problema.
Foi quando ele em poucos minutos me explicou o que eu deveria fazer, vamos então a solução:
Primeiramente como funciona a ativação do FaceTime? Quando você ativa ela, o aparelho envia um SMS internacional para o servidor,
onde contem armazena seu número, e então o servidor lhe envia de volta uma autorização para utilização do serviço,
é ai onde esta o problema da TIM, alguns números da TIM o servidor reconhece como número fixo (caso de números que começam com o número 6),
e em outros ele simplesmente desconfigura a formatação que deveria ser +55 (11) XXXX-XXXX para alguma outra que não consegue identificar o código de área
fazendo com que a autorização NUNCA chegue no seu aparelho.
Existem duas soluções para isso, uma extremamente rápida solicitando a troca de seu número, e outra para quem não quer abrir mão do número
que leva até 05 dias para resolver, ambas garantidas pelo gerente da loja que funcionam e aqui estou eu como prova viva .
Solução 1 – Rápida, solicitação de troca do número.
- Ligue no atendimento da TIM no *144 direto do seu celular.
- No menu, escolha a opção 1 (confirmação de atendimento direto do aparelho) e logo em seguida a opção 3 (atendimento personalizado).
- Ao escolher a opção 3, será transferido para um dos atendentes.
- Confirme seus dados com ele, e de maneira muito simples e direta sem muita explicação faça a seguinte solicitação:
1.Solicite a troca de seu número.
2.Provavelmente ela irá perguntar o motivo: Relate que você precisa utilizar um serviço do qual não aceita números de celular começando com o número X (fale o número do seu).
3.Ela irá confirmar, e te passará algumas opções de número, diga que você tem preferência por números que começam com 7 ou 8.
4.Escolha seu número, ela efetuando a troca e finalizando o atendimento, espere alguns minutos que pode levar até 2 horas, desligue o aparelho, ligue ele de novo, e realize a ativação do FaceTime.
5.Pronto, em até 2 horas terá seu FaceTime ativado.
OBS: Não necessariamente seu número tenha que começar com 6 para ter esse problema, como disse, existem números que dão problema na hora do recebimento da autorização. Como saber se você vai pegar um número que funcione? Não da para saber, a única certeza que você tem, é que o que você esta não funciona! Por isso, faça essa opção por sua conta e risco!
Solução 2 – Um pouco mais demorada, mantendo seu número.
- Ligue no atendimento da TIM no *144 direto do seu celular.
- No menu, escolha a opção 1 (confirmação de atendimento direto do aparelho) e logo em seguida a opção 3 (atendimento personalizado).
- Ao escolher a opção 3, será transferido para um dos atendentes.
- Confirme seus dados com ele, e de maneira muito simples solicite falar no atendimento especial de iPhone. Ele irá te transferir:
1.No atendimento de iPhone, relate rapidamente seu problema de ativação do FaceTime.
2.Solicite a abertura de um protocolo para ativação do FaceTime em sua linha, pois devido a sua linha pertencer as que estão com problema de ativação, você não consegue ativar.
3.Diga para ele colocar na abertura do chamado exatamente isso: “Solicitação de ativação de FaceTime para o número “tal” que apresenta falha na ativação do serviço devido a ser reconhecido como número FIXO impossibilitando o recebimento de SMS internacional requisitado para a ativação. Solicitamos a liberação e confirmação desde terminal como número móvel”.
4.Finalizando o chamado, aguarde até 05 dias úteis, sempre que for tentar realizar a ativação dentro dos 05 dias desligue o aparelho, ligue novamente e tente ativar. Nesse intervalo de 05 dias pode acontecer de ativar nos primeiros 15 minutos ou até completar o prazo.
OBS: Essa opção foi a realizada pelo gerente da loja TIM relatada na história acima, dica dele inclusive de o que colocar no chamado para a solução
relatada no passo 3.
Sempre anote o número dos respectivos protocolos, eles são a prova de que você fez a solicitação, caso em até 05 dia ainda assim não conseguir realizar a ativação recomendo a solução 01.
Essa dica é valida e testada com a operadora TIM com 100% de solução em ambas as dicas, porém caso alguém consiga com o mesmo método em outra operadora deixe a confirmação ai também!

RFC Adapter for multiple clients

Hi All
I have a situation where we have a Dev client (030) and a Test client (041) on our SAP Dev system. We are implementing an XI interface with a non-SAP system that also has a Dev and Test environment. Up to now the interface has only needed to work between our client 041 and either the other Dev <b>or</b> Test system but not both at the same time (I have simply re-configured the target URL in the SOAP adapter).
However, I have been asked to set up XI so it works with the other system's Dev and Test environements simultaneously.
Ideally I would like to link our client 030 to their Dev system and our client 041 to their Test system but I don't believe I can have the RFC Sender adapter active for both client 030 and client 041 at the same time.
If this is not possible then it would be OK for our client 041 to work with both the Dev and Test systems but how do I configure this?
Our R/3 environment is 4.6C so I can't use Proxies. I have wondered whether using Parties would help but am not sure that they are an appropriate tool for internal communication.
Any advice, pointers, links would be greatly appreciated.
Thanks
Andrew

<b>Ideally I would like to link our client 030 to their Dev system and our client 041 to their Test system but I don't believe I can have the RFC Sender adapter active for both client 030 and client 041 at the same time.</b>
u r having 3 option
1)RFC
2)Idoc and
3)proxy
since u r having problem with RFC and Proxy..u can go for Idoc...
parties are used in B2B communication.... i am not sure here u can use it or not....

Query on DNS setup for Active Directory for a new data center

I have third party DNS appliances providing DNS Service for Active Directory (Windows 2008 R2) and there are also secondary DNS servers, which are MS DNS server with a secondary zone configured, for redundancy. I have to setup a new data center
and move servers/services to this data center. In this scenario, can I install a new Microsoft DNS server with a secondary zone and use this as the primary DNS Server for all the member servers at this new location ? I am aware that this new DNS server will
not be able to make any updates to the secondary zone and for that purpose, is there anyway to redirect such requests to the DNS appliances in my current data center across the WAN ? I am trying to avoid purchasing a new DNS appliance for the new data center
and want to know what are the alternatives I have.

im not entirely sure by your setup, as normally you would use AD integrated zones for DNS in an AD environment - although there are other options as you have already setup.
the fact the zone is a secondary zone in DNS server terms doesn't mean you can't point your clients to it as their primary dns server. They will quite happily resolve names using a secondary server.
so as long as your dns devices are correctly setup to support the additional secondary zone I see no reason why you couldn't do this.
Regards,
Denis Cooper
MCITP EA - MCT
Help keep the forums tidy, if this has helped please mark it as an answer
My Blog
LinkedIn:

Selecting the second result for each client...

Hi,
I have a table containing all the contacts we had with our clients.
We consider a file an active file from the moment there have been 2 contacts for that client.
Today somebody asked me "can you tell me how many new clients with an active file we have this year"
So what I actualy want to do now, is make a view containing the DATE of the SECOND CONTACT for each CLIENT_ID.
the table looks like this:
CONTACT_ID
CLIENT_ID
DATE
CONTACT_FORM (doesn't matter in this story)
REMARKS (doesn't matter in this story)
Can somebody assist me with this please?
Thanks in advance for your replies.
L
edit I do know how to make a view, that's not the problem :) in this case only the select query to make it is the problem.
edit 2 I made a little example
If I start with this table data:
CLIENT_ID || DATE           .... other columns here...
436     || 01-02-2011
328     || 05-04-2011
319     || 13-01-2011
220     || 03-09-2011
319     || 17-12-2011
220     || 25-11-2011
436     || 01-04-2011
436     || 01-04-2011than the view would have to make me end up with:
CLIENT_ID || DATE_OF_SECOND_CONTACT
436     || 01-04-2011
220     || 25-11-2011
319     || 17-12-2011(working with version 11.2.0.1.0)
Edited by: 901981 on 13-dec-2011 2:16

I hope this helps:
with t as
select 436 client_id, to_date('01-02-2011','DD-MM-YYYY') d from dual union all
select 328 client_id, to_date('05-04-2011','DD-MM-YYYY') d from dual union all
select 319 client_id, to_date('13-01-2011','DD-MM-YYYY') d from dual union all
select 220 client_id, to_date('03-09-2011','DD-MM-YYYY') d from dual union all
select 319 client_id, to_date('17-12-2011','DD-MM-YYYY') d from dual union all
select 220 client_id, to_date('25-11-2011','DD-MM-YYYY') d from dual union all
select 436 client_id, to_date('01-04-2011','DD-MM-YYYY') d from dual union all
select 436 client_id, to_date('01-04-2011','DD-MM-YYYY') d from dual
select client_id,
       to_char(d,'DD-MM-YYYY') d
from
select client_id,
         d,
         row_number() over (partition by client_id order by d) rn
from t
where rn=2; Edited by: hm on 13.12.2011 02:17
please try out this to see how it works:
with t as
select 436 client_id, to_date('01-02-2011','DD-MM-YYYY') d from dual union all
select 328 client_id, to_date('05-04-2011','DD-MM-YYYY') d from dual union all
select 319 client_id, to_date('13-01-2011','DD-MM-YYYY') d from dual union all
select 220 client_id, to_date('03-09-2011','DD-MM-YYYY') d from dual union all
select 319 client_id, to_date('17-12-2011','DD-MM-YYYY') d from dual union all
select 220 client_id, to_date('25-11-2011','DD-MM-YYYY') d from dual union all
select 436 client_id, to_date('01-04-2011','DD-MM-YYYY') d from dual union all
select 436 client_id, to_date('01-04-2011','DD-MM-YYYY') d from dual
select client_id,
       d,
       row_number() over (partition by client_id order by d) rn
from t;(By the way: in my opinion it is not a good idea to choose a keyword "DATE" as a column name. That the reason why I choose "d" in my example.)

Planning Layout for Activity Rate

Hi
My Client is a German Company. Controlling Area currency is EURO, It has operations in India also.
For India, required to create BDC for Activity rate planning.
1. Is it necessary to create separate Planning Layout for INR currency?..I did not find any currency in standard layout.
2. Please explain how it works. whether it takes Cost Center currency or Controlling Area currency?
Regards
Pradeep Veer
Edited by: Pradeep Veer on Feb 9, 2011 7:13 AM

Hi,
The standard setting for the leading currency plans the transaction currency for costs and the controlling area currency for prices. This is the Standard design. Please review 100379 & 183556 for further information on this.
Please pay attention to the following section of note 100379:
'Note: you can only change these settings in the following Transactions: KP97 (as of Release 3.1I) and KP98 (as of Release
4.6), as well as CP97 and CP98 (as of Release 4.6C). However, you should only carry this out after you have taken Note 183556 into account.'
regards
Waman

WLC 2006 INTERNAL DHCP FOR GUESTS CLIENTS

I would like to use the internal DHCP to issue ipaddress to the guest wireless clients.
However; when i setup the wlc internal DCHP scope and try to connect to the wireless guest vlan the WLC debug DHCP reads ...forwarding to 192.168.255.2 which i have listed as the gateway to the pix
any examples on how to do this would be great.
here is what i have for the dhcp scope:
Dhcp Scope Info
Scope: Guest.Data.DHCP
Enabled.......................................... Yes
Lease Time....................................... 86400 (1 day )
Pool Start....................................... 192.168.255.17
Pool End......................................... 192.168.255.30
Network.......................................... 192.168.255.0
Netmask.......................................... 255.255.255.0
Default Routers.................................. 192.168.255.2 0.0.0.0 0.0.0.0
DNS Domain.......................................
DNS.............................................. 0.0.0.0 0.0.0.0 0.0.0.0
Netbios Name Servers............................. 0.0.0.0 0.0.0.0 0.0.0.0
Here is what i have for the wlan
WLAN Identifier.................................. 2
Network Name (SSID).............................. Guest.Data
Status........................................... Disabled
MAC Filtering.................................... Disabled
Broadcast SSID................................... Enabled
AAA Policy Override.............................. Disabled
Number of Active Clients......................... 0
Exclusionlist Timeout............................ 60 seconds
Session Timeout.................................. Infinity
Interface........................................ guest.data
WLAN ACL......................................... unconfigured
DHCP Server...................................... Default
DHCP Address Assignment Required................. Enabled
Quality of Service............................... Silver (best effort)
WMM.............................................. Disabled
CCX - AironetIe Support.......................... Enabled
CCX - Gratuitous ProbeResponse (GPR)............. Disabled
Dot11-Phone Mode (7920).......................... Disabled
Wired Protocol................................... None
IPv6 Support..................................... Disabled
--More-- or (q)uit
Radio Policy..................................... All
Security
802.11 Authentication:........................ Open System
Static WEP Keys............................... Disabled
802.1X........................................ Disabled
Wi-Fi Protected Access (WPA/WPA2)............. Disabled
CKIP ......................................... Disabled
IP Security Passthru.......................... Disabled
Web Based Authentication...................... Disabled
Web-Passthrough............................... Disabled
Auto Anchor................................... Disabled
H-REAP Local Switching........................ Disabled
Management Frame Protection................... E

when i try to assocate the dhcp scope to wireless.guest.data interface using 192.168.255.1 which is the ip of the that interface it will not let me. I would have thought since i was using the interal dhcp that the .1 address would be the dhcp scope address also. i can assign 192.168.255.0 or 192.168.255.2(gateway)if i use .0 or .2 the dhcp request (discovery) process starts and then will forward to .2 (gateway) and never assign an address. the only thing that happens is that the client wireless interface will get 255.255.255.255 for a few seconds then go away.
what i am trying to accomplish is to connect the wlc port 2 directly to a pix 506 which goes to the internet so the guest traffice is not on our vlan.
any other suggestions on guest vlans would be appricated....
Tom
Interface Name................................... wireless.guest.data
IP Address....................................... 192.168.255.1
IP Netmask....................................... 255.255.255.0
IP Gateway....................................... 192.168.255.2
VLAN............................................. 150
Quarantine-vlan.................................. no
Physical Port.................................... 2
Primary DHCP Server.............................. Unconfigured
Secondary DHCP Server............................ Unconfigured
DHCP Option 82................................... Disabled
ACL.............................................. Unconfigured
AP Manager....................................... No
Scope: wireless.guest.data.dhcp.server
Enabled.......................................... Yes
Lease Time....................................... 86400 (1 day )
Pool Start....................................... 192.168.255.17
Pool End......................................... 192.168.255.30
Network.......................................... 192.168.255.0
Netmask.......................................... 255.255.255.0
Default Routers.................................. 192.168.255.2 0.0.0.0 0.0.0.0
DNS Domain.......................................
DNS.............................................. 0.0.0.0 0.0.0.0 0.0.0.0
Netbios Name Servers............................. 0.0.0.0 0.0.0.0 0.0.0.0

Difference between two queries for no client installed

I have created a collection for all discovered computers with no client installed using the following query:
select SMS_R_SYSTEM.ResourceID,SMS_R_SYSTEM.ResourceType,SMS_R_SYSTEM.Name,SMS_R_SYSTEM.SMSUniqueIdentifier,SMS_R_SYSTEM.ResourceDomainORWorkgroup,SMS_R_SYSTEM.Client from SMS_R_System where SMS_R_System.Client is null
If I go to Monitoring -> Client Status -> Client Activity and click on the link next to the pie chart for no clients installed I get a completely different result and they neither query contains the same computers as each other.
Anyone know what the exact query the link in the monitoring section is using and why the results between the two are completely different?
If would expect them to match up or at the very least that my first query should be the source of truth.

If I use:
select SMS_R_SYSTEM.ResourceID,SMS_R_SYSTEM.ResourceType,SMS_R_SYSTEM.Name,SMS_R_SYSTEM.SMSUniqueIdentifier,SMS_R_SYSTEM.ResourceDomainORWorkgroup,SMS_R_SYSTEM.Client from SMS_R_System where SMS_R_System.Client is null OR SMS_R_System.Client = 0
and use the same limiting collection as the built in monitoring query "All Desktop and Server Clients" I actually get 0 results from the query. If I use "All Systems" as the limiting collection I still only get the same results
that I do with out also querying for "equals 0" as well.
I read one article that said that "equals 0" actually shows you the clients had the CCM client but it was uninstalled where "is Null" returns systems that never had the CCM client.
I don't know if this is accurate but it doesn't explain why a built in monitoring query would return inaccurate results. It only returns a fraction of the non-client systems that the above query returns and as mentioned, the systems returned in one
are not included in the other.

AP541N SNMP for Active Clients

Similar Messages

Maybe you are looking for