CAS SSO not working for VPN Group

Similar Messages

• Center alignment not working for all groups

  We are trying to center our visual within our blank white canvas, and we have multiple groups within the file. See image attached. When we select all groups then hit the center alignment button, only the bottom group becomes centered and nothing else. When we try to select all layers within the first group and hit it, everything moves except the color mask which stays in the original place.
  This seems to be a glitch or bug that it's not working automatically for everything.
  ~Katie

  Ask in the PS forum and provide exact system and version info.
  Mylenium

• Port forwarding not working for VPN

  Hi there,
  I am at a loss as to what I am doing wrong with regards to setting up a VPN. I admit this is all completely new territory for me, and I am learning as I go along, so may have overlooked something very obvious.
  I have openned up the VPN ports on the router (500, 1701, 4500 - UDP; 1723 - TCP), and can confirm from the logs that they are letting traffic in ok.
  So that leaves the server itself - testing using an open port checking tool confirms all ports I have open in the router firewall, and active and accessible on the server, except the VPN ports and service, are indeed open and accessible.
  The VPN service is running, and I have ensured the services are available within the firewall service for 'all', and all services available for the 192.168.1.xxx range.
  I have indicated that the VPN should use the range - 10.0.0.1 to 200
  The DNS and DHCP services on the server are running. At the domain resgitsrar, I have indicated that the subdomain I am using to access the server and its services via the web should point to the static IP I have from the ISP.
  I should mention that if I use the local IP address of the server, I can connect ok, it is only when I use the static IP that I am unable to connect.
  Every other port opens up successfully - FTP (21), Web (80/443), etc - just not the ones for the VPN, so I assume there is some sort of conflict between or within the the VPN/DHCP/DNS services or with the VPN service itself.
  Any advice and potential solutions would be greatly appreciated, as I have spent quite a bit of time trying to figure this one out by myself.
  Thanks in advance, and I hope to hear from folk soon.
  Chris

  OK - here's how my router is configured:
  NAT (Type = Destination) Public IP address to VPN Server IP address (I had a problem when I didn't have the NAT Type set properly)
  I have a separate public IP address reserved for VPN traffic, but that's not necessary if you set up the order of the rules on your router properly. It's just easier to have a separate IP address.
  These are the ports I have open:
  UDP - 500
  UDP - 1701
  TCP - 1723
  TCP - 3283
  UDP - 3283
  UDP - 4500
  TCP - 5900
  TCP - 5988
  I have these ports open to accomodate remoting in via Apple Remote Desktop.
  However, since Mavericks, I can't use ARD anymore. But I can use Back to My Mac and Screen Sharing (go figure!) to get to my server and then from the server I can use ARD within the network.
  Don't know if that helps or not, but it works for me.

• Center alignment not working fora ll groups

  We are trying to center our visual within our blank white canvas, and we have multiple groups within the file. See image attached. When we select all groups then hit the center alignment button, only the bottom group becomes centered and nothing else. When we try to select all layers within the first group and hit it, everything moves except the color mask which stays in the original place.
  This seems to be a glitch or bug that it's not working automatically for everything. We are using Adobe Photoshop CC, 2014.1.0 release

  Ask in the PS forum and provide exact system and version info.
  Mylenium

• SSO not working for a custom WDA application that runs in the Portal

  I have a Portal system (Java stack, NW04s) that has an iView of type webDynpro ABAP. The custom Web Dynpro ABAP application resides on another system (ABAP stack, running ECC6). We have configured the trust relationship between the Portal and the ECC system as per
  http://help.sap.com/saphelp_nw04s/helpdata/en/61/42897de269cf44b35f9395978cc9cb/content.htm
  We know this is working since we are able to run ESS. However, for the custom WebDynpro ABAP application, when calling it for the first time, a logon screen shows up. How can we get rid of it? what are we missing to have SSO work for the custom WebDynpro application?

  Please check this link:
  https://www.sdn.sap.com/irj/sdn/go/portal/prtroot/docs/library/uuid/d35bb690-0201-0010-988a-d669c8530518
  https://www.sdn.sap.com/irj/servlet/prt/portal/prtroot/com.sap.km.cm.highlightedcontent?documenturi=%2fhelp%2fsdn_help_nw04s%2fsaphelp_nw04s%2fhelpdata%2fen%2f5e%2f6c85c3edf942f39349a1e337434d29%2fcontent.htm
  Hope it helps.
  Regards,
  Mona

• Sample Custom SSO not working for external userid mapped in userprofile in 11.1.1.8

  Hi,
  WebCenter sites v: 11gR1 (11.1.1.8)
  I am in the process of validating Custom SSO Behaviour. I am facing hurdles. I have mentioned below the steps I preformed.
  1. Deployed customizable-sso-11.1.1.8.0 .jar in cas/WEB-INF/lib
  2. Copied SampleLoginform.jsp file to cas/fatwire
  3. Copied the customSampleSSObeans.xml configuration file into cas/WEB-INF/spring-configuration folder.
  4. Modified the following bean
          <bean id="customUserConfiguration" class="com.fatwire.wem.sso.cas.sample.SampleConfiguration"
                  p:casLoginUrl="http://xyz.com:7001/cas/login"
                  p:resolverUrl="http://xyz.com:7001/cs/custom/customCsResolver.jsp"
                  p:resolverCredential-ref="resolverCredential"
                  p:traceFlag="false"
                  p:sampleDomain="mydomain"
                  p:sampleFormUrl="http://xyz.com:7001/cas/fatwire/SampleLoginForm.jsp"
                  />
    Note: p:resolverCredential - I found it new in this bean, as it is not referenced anywhere in the WCS documentation. This resolverCredentail is actually another bean configured in customResolverCredentail.xml under spring-configuration folder. Also, I am not sure if p:sampleDomain has to be modified to suit the environment. Currently I have retained the default value of "mydomain".
  <?xml version="1.0" encoding="UTF-8"?>
  <beans xmlns="http://www.springframework.org/schema/beans"
          xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:p="http://www.springframework.org/schema/p"
          xsi:schemaLocation="http://www.springframework.org/schema/beans http://www.springframework.org/schema/beans/spring-beans-2.0.xsd">
          <description>
                  This defines the SitesCS username/password credentials needed for identity resolution
          </description>
          <bean id="resolverCredential" class="com.fatwire.security.common.SecurityCredential">
                  <property name="username" value="fwadmin" />
                  <property name="password" value="xceladmin" />
                  </bean>
  </beans>
  The default value mentioned for property name username and password were "@username@" and "@password@" respectively. I changed them to fwadmin/xceladmin as in the file above.
  5. In WCS Admin UI, I added a user atribute "samplesso" and assigned unique value for couple of users
  6. Restarted CAS.
  7. On accessin wcs url, I am now redirected to custom sample login page(SampleLoginform.jsp)
      Following are the form fields: username, password, domain, external userid
  8. It works fine, if I submit wcs credentails for username,password and default domain (mydomain) and I am taken to the WCS Admin UI
  9. But if I submit domain(mydomain) and mapped user(unique value in sep 5) against userid, I get an error page. Following is the error
  org.springframework.webflow.engine.ActionExecutionException: Exception thrown executing [AnnotatedAction@5f82e73 targetAction = com.fatwire.wem.sso.cas.web.CustomLoginViewAction@68b18314, attributes = map[[empty]]] in state 'viewLoginForm' of flow 'login-webflow' -- action execution attributes were 'map[[empty]]'; nested exception is java.lang.SecurityException: java.lang.NullPointerException
  What is the cause and fix for the problem. Am I supposed to perform any other step?
  Is there anything specific to p:resolverUrl="http://xyz.com:7001/cs/custom/customCsResolver.jsp" ? I did not do any deployment corresponding to this, as there was no such step mentioned in documentation.
  Thanks

  I just recently implemnted this for my current client.
  http://xyz.com:7001/cs/custom/customCsResolver.jsp
  The context "cs" here is important. For my current client, we installed 11G with context "cm". So for us the the resolver URL is:
  http://xyz.com:7001/cm/custom/customCsResolver.jsp  and when we login into FatWire we use:
  http://xyz.com:7001/cm/login.
  If you look in your Sites application folder you should see <Sites App/Context>/custom/customcsResolver.jsp. In the Jsk it's located at:
  C:\Oracle\WebCenter\Sites\11gR1\App_Server\apache-tomcat-6.0.32\webapps\cs\custom\customCsResolver.jsp
  Regards,
  Robert Jackson

• Monthly and Yearly backups not working for Protection Group?

  Hi
  We have a Protection Group with 160 members currently attached to it. The group has the following customized Recovery Points:-
  - 1 recovery point every 1 day for the last 2 weeks, 1 recovery point every 1 month for the last 60 months and 1 recovery point every year for the last 5 years.
  The schedule is as follows:-
  - Every Day at 01:00, Every Month on First Day at 01:00 and Every 12 Months on 01 January at 01:00.
  The daily tape backups are working fine without issue but neither the Monthly or Yearly backups are being attempted. We have checked the monthly backups for this issue for the last few months and are unable to see any evidence of the Monthly schedule even
  running? This means that we are having to manually label the Daily tapes once a month as Monthly tapes but they will then stay on the Reports for the next 5 years as DPM will constantly request these tapes back.
  Are you able to help with this matter?
  Not that we really want to do this but if we removed the group completely and re-create it would this cause problems with our restore points?

  Hi,
  This is a known issue that can occur in all current versions of
  DPM including DPM 2012, to correct the condition, you simply need to perform this step. Any time before the next scheduled (monthly or longer) backup, manually update
  the long term backup schedule by hitting the MODIFY button.  The code that runs when modifying the backup schedule redoes the bacup schedules and it fixes the scheduling issue. 
  Below is a DPM Power-shell script that will show you the scheduled backups for all recovery goals for all protection groups.  You can see the last time each recovery goal ran, and the NEXT run time, so you can monitor
  the goals and re-fix them if necessary.
  NOTE: It takes about 20-30 minutes before the fixed next run time schedule will be populated after modify the protection group and updating the schedule.
  # This script will list all currently scheduled backup to tape jobs #
  # It will list scheduled, last run and next run dates #
  # Note: The script takes in consideration that the DPM Database was installed locally on its #
  # Default instance. If SQL is installed on a different location/instance, edit the line #
  # that starts with $instance = '.\msdpm2010 #
  # Author : Wilson Souza #
  # Date Created : 1/13/2012 #
  # Last modified : 1/17/2012 #
  # Version : 1.0 #
  # This version of the script was only tested on DPM 2010 #
  param([string] $verbose)
  add-pssnapin sqlservercmdletsnapin100
  Add-PSSnapin -Name Microsoft.DataProtectionManager.PowerShell
  $ConfirmPreference = 'None'
  cls
  $instance = '.\msdpm2010' # <---- If DPM Database is on a different location, edit this line accordinly
  $query = "use DPMDB
  go
  CREATE FUNCTION label (@GUID varchar(36), @kindred varchar(4), @vault varchar(8))
  returns varchar (1024)
  as
  Begin
  declare @result varchar (1024)
  select @result = vaUltlabel from tbl_mm_vaultlabel where mediapoolid = @GUID and generation =
  case @kindred
  when 'Fath' Then '2'
  when 'Gran' then '1'
  when 'grea' Then '0'
  end and
  vault =
  case @vault
  when 'Offsite1' then '3'
  when 'Offsite2' then '4'
  when 'Offsite3' then '5'
  when 'Offsite4' then '6'
  when 'Offsite5' then '7'
  when 'Offsite6' then '8'
  when 'Offsite7' then '9'
  else
  '1'
  end
  RETURN @result
  END
  go
  use DPMDB
  select ScheduleId as name
  ,def.JobDefinitionId as JD
  ,FriendlyName as PG
  ,SUBSTRING (CONVERT(VARCHAR(10),active_start_date),5,2) + '-' + SUBSTRING (CONVERT(VARCHAR(10),active_start_date),7,2) + '-' + SUBSTRING (CONVERT(VARCHAR(10),active_start_date),1,4) as SD
  ,jobs.date_created as SCD
  ,SUBSTRING (CONVERT(VARCHAR(10),last_run_date),5,2) + '-' + SUBSTRING (CONVERT(VARCHAR(10),last_run_date),7,2) + '-' + SUBSTRING (CONVERT(VARCHAR(10),last_run_date),1,4) + ' ' +
  SUBSTRING (CONVERT(VARCHAR(6),last_run_time),1,2) + ':' + SUBSTRING (CONVERT(VARCHAR(6),last_run_time),3,2) + ':' + SUBSTRING (CONVERT(VARCHAR(6),last_run_time),5,2) as LRD
  ,SUBSTRING (CONVERT(VARCHAR(10),next_run_date),5,2) + '-' + SUBSTRING (CONVERT(VARCHAR(10),next_run_date),7,2) + '-' + SUBSTRING (CONVERT(VARCHAR(10),next_run_date),1,4) + ' ' +
  SUBSTRING (CONVERT(VARCHAR(6),next_run_time),1,2) + ':' + SUBSTRING (CONVERT(VARCHAR(6),next_run_time),3,2) + ':' + SUBSTRING (CONVERT(VARCHAR(6),next_run_time),5,2) as NRD
  ,dbo.label ((substring(xml,(patindex('%MediaPoolId%',Xml))+13,36)), (substring(xml,(patindex('%generation%',Xml))+12,4)), (substring(xml,(patindex('%vault%',Xml))+7,8))) as TL
  ,case
  when substring(xml,(patindex('%vault%',Xml))+7,3) = 'off' then 'Long-Term'
  else 'Short-term'
  end as STLT
  ,case
  when substring(xml,(patindex('%generation%',Xml))+12,4) = 'Fath' then 'Recovery Goal 1'
  when substring(xml,(patindex('%generation%',Xml))+12,4) = 'Gran' then 'Recovery Goal 2'
  when substring(xml,(patindex('%generation%',Xml))+12,4) = 'Grea' then 'Recovery Goal 3'
  end as RG
  from tbl_SCH_ScheduleDefinition sch
  ,msdb.dbo.sysjobs jobs
  ,tbl_JM_JobDefinition def
  ,DPMDB.dbo.tbl_IM_ProtectedGroup prot
  ,msdb.dbo.sysjobschedules jobsch
  ,msdb.dbo.sysjobsteps jobsteps
  ,msdb.dbo.sysschedules syssch
  where CAST(sch.ScheduleId as NCHAR (128)) = jobs.name
  and def.JobDefinitionId = sch.JobDefinitionId
  and def.ProtectedGroupId = prot.ProtectedGroupId
  and jobs.job_id = jobsch.job_id
  and jobs.job_id = jobsteps.job_id
  and jobsch.schedule_id = syssch.schedule_id
  and (def.Type = '913afd2d-ed74-47bd-b7ea-d42055e5c2f1' or def.Type = 'B5A3D25C-8EB2-4032-9428-C852DA5CE2C5')
  and sch.IsDeleted = '0' and def.ProtectedGroupId is not null
  order by FriendlyName, next_run_date, next_run_time
  go
  drop function label
  go"
  $result = Invoke-Sqlcmd -ServerInstance $instance -Query $query
  $count = 1
  write-host " The list below shows all scheduled backup to tape jobs (short term and long term)" -f green
  write-host
  if ($verbose.ToLower() -eq '')
  write-host " For optimun output, set PoweShell Width for screen buffer size to at least 200" -f yellow; write-host
  write-host
  write-host " Protection Group name Creation Date [Schedule Creation Date] [Last Run Date / time] [Next Sched Run Date/time] Goal type Recovery Goal # Custom Tape Label"
  write-host " ------------------------------ ------------- ------------------------ ---------------------- -------------------------- ---------- --------------- -----------------"
  foreach ($result1 in $result)
  if ($color -eq 'white') {$color = 'cyan'} else {$color = 'white'}
  write-host ("{0,2}"-f $count) -foreground green -nonewline
  write-host ( " - {0,-30} {1,-13} {2,-24} {3,-24} {4,-27} {5,-10} {6,15} " -f $result1.PG, $result1.SD, $result1.SCD, $result1.LRD, $result1.NRD, $result1.STLT, $result1.RG) -nonewline -f $color
  write-host $result1.TL -f yellow
  $count++
  else
  write-host " For optimun output, set PoweShell Width for screen buffer size to at least 110" -f yellow; write-host
  write-host " Protection Group Term Goal Tape Label"
  write-host " ------------------------------ ---------- --------------- --------------"
  foreach ($result1 in $result)
  if ($color -eq 'white') {$color = 'cyan'} else {$color = 'white'}
  write-host ("{0,2}"-f $count) -foreground green -nonewline
  write-host ( " - {0,-30} {1,-10} {2,15} " -f $result1.PG, $result1.STLT, $result1.RG) -nonewline -f $color
  write-host $result1.TL -f yellow
  $count++
  Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread. Regards, Mike J. [MSFT] This
  posting is provided "AS IS" with no warranties, and confers no rights.
  I cant seem to get this script to run.. can someone point out what might be missing..
  I've tried creating a shortcut like the following as well:
  Target: C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe -noexit -File "C:\Program Files\Microsoft
  DPM\DPM\bin\dpmcliinitscript.ps1" "C:\Data\scripts\scheduledjobs.ps1"
  Start in: "C:\Program Files\Microsoft DPM\DPM\bin\"
  If i run as admin in just takes you to a command line prompt in PS..
  Any thoughts on what is missing here.. i've modified the ps1 to reflect 2012 in my case.. 2012 R2
  DPM
  Tech, the Universe, Everything: http://tech-stew.com
  Ok, the 1.6 script works.. but only if i run it from the ps1 script file.. by right clicking it and doing the Run with Powershell option (non admin).. my shortcut doesnt work.. same issue.. it just goes to a power shell prompt.  The right click and
  run is non admin mode as well.
  When I run it with the right click it shows no jobs scheduled.. If i look in dpm 2012 r2 i see a yearly tape backup scheduled for today.. the script doesnt show me a way to also get the monthly to appear (i've set the monthly for a day later but it doesnt
  appear in the scheduled tasks for next 7 days).. i was under the impression this script would help force the monthly to appear/run.. but even the yearly that does show in DPM scheduled tasks isnt showing up with the script (maybe admin issue?)
  Tech, the Universe, Everything: http://tech-stew.com

• SSO not working for BW reports as iview in Portal

  Hi,
  I have setup SSO for netweaver portal 7.0 and BI 7.0 as backend system.
  I have used SAPLOGONTICKET for SSO.
  1. Now if I create iView for some transaction , its working fine. UserID and password is not asked and i'm getting into BW sytem.
  2. But if I create an iView for BW report type 3.x and pull a report from BI system, it is showing a login screen to me. now I have to give clientno, userID and password to get into the system.
  Can please some help me in this issue.
  is there some specific configuration I need to make..?
  Thanks in Advance.
  Regards,
  Saurabh

  Hi Kiran,
  Thanks for your reply.
  My problem is now solved. Actually transaction iViews use connectors to connect to the backend system, where as BW reports iviews use WAS to connect to the backend system.
  while accessing the portal i was not giving the fully qualified name in URL.
  while accessing the portal correct way is to use the URL is :
  http://hostname.domain:port/irj/portal ...I was missing the domain portion.
  Use the fully qualified name so that both EP and backend systems comes in same domain.
  Regards
  Saurabh

• Keyshield SSO not working for Vibe 4.0

  Hi All,
  Using keyshield from a long time ago (version 5.4 Build 2014-09-30 16:46:30).
  I was using it with previous version of Vibe and Filr (by installing the java servlet).
  Now Keyshield is included in Vibe 4.0 and Filr 1.2.
  With Filr, everything is fine. With Vibe 4.0, it doesn't work.
  Keyshield configuration parameters are the same in both products and are accepted as Valid by the administration page in both products also.
  But, even with a keyshield client in green state, it works fine with Filr but it doesn't work with Vibe 4.0.
  I try to find tracks in the logs but i've got nothing (logs, catalina.out, etc ...).
  Did somebody test keyshield ? Is there a special way to try to debug it ?
  Many thanks in advance

  worked! :)

• SSO is not working for SAPGUI for HTML

  Hi Experts,
  We have configured SSO between EP and ECC.SSO is working fine for SAPGUI for windows.But it is not working for SAPGUI for HTML.
  Workflow iViews are getting error.
  "SWITCH to HTTPS does not occur."
  The domain names are different for EP and ECC.
  Please let me know ,is there any settings need to check.
  Regards,
  Bala.

  Hi
  The point here is that your Portal server is on a different domain, so you have to configure the logon ticket issuer (portal) to generate logon ticket for multiple domains.
  http://help.sap.com/saphelp_nw04s/helpdata/en/a0/88a340fa432b54e10000000a1550b0/frameset.htm
  Best regards
  Johann

• HP PRime Calculator - RPN active - 'Get Home' in CAS do not work

   Firmware version : 20150617 v8151 If I have RPN active in home view, when in CAS I press Menu->Get Home, the list of values that are shown are of the Textbook setting.The virtual calculator has the same problem. RPN Screen:   CAS Screen:  

  Hi,
  I would suggest you try:
  http://www.hpmuseum.org/cgi-sys/cgiwrap/hpmuseum/forum.cgi
  there is some discussion there about about starting a bug reporting forum. A feature request section would be a useful part of that too.
  You can also try the comp.sys.hp48 newsgroup. The GoogleGroups link:
  https://groups.google.com/forum/#!forum/comp.sys.hp48
  Regards.
  Note: I do not work for HP, I just like playing with calculators :-)

• IPhone 6 External Mic not working for Siri/Dictation

  I am finding that the external mic on my iPhone 6 works for phone calls and voice memos, but does not work for Siri/Dictation.  When I plug in the earbuds, they work for everything (including Siri/Dictation).
  Was chatting to Apple support who had me reset all settings.  I thought that worked, but realized that after a reset, Siri is off and I was talking to "Voice control" (which works).  When I turned Siri back on, it does not work.
  I have two questions for the community to see if you can help:
  1- I have been assuming this must be a software problem since the mic does work for non-Siri access.  But is that true?  Is there a hardware component that Siri depends on which could be faulty here?
  2- If it is software, what action should I try to address it?  I have done a reset all settings already and that did not help.
  Doug

  Hi, everyone.  I talked to Apple Genius at Apple Store last week, she said it should be a software issue and I needed to reset my iphone 6 plus as a new device and I can not use the backup restore from my iCloud, it was because the microphone bug or glitch can be in the backup also. Ok, followed her advice, erased all contents and set my iphone as a new device , the microphone worked for an hour, but went bad again.  I used "voice memo" app from Apple to test the microphone. It is the best tool since it doesn't involve any provider's network and it doesn't need another person's phone to listen and test.  If you can hear your voice recording clearly, then the mic works.  I tested it 3-4 times a day for a few days now, half of the time the mic doesn't work.  So, set as a new device isn't working. The issue is intermittent and it comes and goes as it likes, so very annoying. I carry my Apple EarPods with me in these past few days ust in case I need to make important phone calls.  Will need to go back to Apple Genius this weekend for sure.  Will give update after the weekend.

• Wake on Demand: Not working for some services, others OK

  I haven't been able to figure this problem out... Wake on Demand for a previous generation Mac mini running Snow Leopard 10.6.8 works for things like a CrashPlan automated backup but does not work for things like remote SSH login or Screen Sharing. In all cases, the services are being originated on a latest generation iMac running Mac OS X Lion (10.7.2).
  While it's not an earth-shattering event to get off my backside and walk over to the Mac mini across the house to press its Shift key to waken the thing, it gets rather old to have to keep doing so, especially since CrashPlan automated backups are taking place while the Mac mini is otherwise asleep (the sleep indicator is slowly pulsing).
  I've been through the Apple tech notes regarding Wake on Demand for Snow Leopard 10.6 and have ensured that AirPort and its network are at the top-most position in their respective lists. Other than that, I'm not sure what else I can do. Wake on Network is enabled in the Snow Leopard Mac mini's network System Preferences and there doesn't seem to be any on/off option in the AirPort Extreme base station (just recently updated to 7.6 firmware).
  Any thoughts... hints... suggestions?
  One final note: this Mac mini is new as of July 2011; just days before the latest generation of Mac mini came out. It came pre-installed with Snow Leopard and, as soon as the users of this mini find software replacements for the old PPC style applicaitons they're used to using, will be upgraded to Lion. However, I feel a bit unsettled in making the move to Lion if I can't get a Snow Leopard feature to work properly. There's no telling if the Lion upgrade will actually fix this behavior or make it worse.
  Thanks in advance.

  I don't think you can wake on network with a closed lid. Try keeping the lid open and putting the machine to sleep. Does it work?

• Outlook autodiscover is not working for some users in coexistence

  Hi
  We are doing exchnage 2013/2010 coexistence
  Most everything is ok BUT outlook autodiscover is not working for some exchange 2010 users now that 2013 is in the front!!!.  We end up creating the profiles manually.  It has affected some but not all the users.
  I followed the instructions here but it didn't help.
  http://blogs.technet.com/b/tips_from_the_inside/archive/2012/01/11/autodiscover-fails-for-one-or-more-users.aspx
  Using outlook 2010, 2013, patches, .... didn't make a difference
  Would you please help?
  Thank you

  Hi 
  If it is affecting only few handful of users i could suspect a mailbox corruption and would recommend to move mailbox and see the results.
  Also you can try below
  You need to set the values MaxFieldLength, MaxRequestBytes & MaxTokenSize to below on Exchange 2010 CAS servers as well as Exchange 2013 CAS servers
  Path: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\HTTP\Parameters
  Name: MaxFieldLength
  Type: DWORD
  Value: 65534
  Path: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\HTTP\Parameters
  Name: MaxRequestBytes
  Type: DWORD
  Value: 16777216
  Path: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\Kerberos\Parameters
  Name: MaxTokenSize
  Type: REG_DWORD
  Value: 48000 
  Just reboot the servers once its done and you will be good to go.
   References
  https://social.technet.microsoft.com/Forums/en-US/cc2929ac-4d36-4e84-a567-ce9b3bec1398/http-400-bad-request-on-iis-8-exchange-2013-cu2-on-windows-server-2012-autodiscovery-is-not?forum=exchangesvrgeneral
  http://blogs.technet.com/b/kristinw/archive/2013/03/28/recommended-changes-and-enhancements-to-support-exchange-in-an-enterprise-environment-whew.aspx
  Remember to mark as helpful if you find my contribution useful or as an answer if it does answer your question.That will encourage me - and others - to take time out to help you Check out my latest blog posts on http://exchangequery.com Thanks Sathish
  (MVP)

• Software Update Point Switching is not working for some Clients

  Hi there,
  I found nothing similar here and I hope this is the right section.
  I´m running ConfigMgr 2012 R2 where one of the Site Systems from one of the Primaries is located in an untrusted Forest in a perimeter Network. The Site System there has the MP, SUP and DB Roles. In general it works great. The Systems in that untrusted Forest
  get the SCCM Agent pushed, see and can install published Software packages and receive Windows Updates. But there are a few systems where everything works, except Windows Updates.
  So I had a deeper look at what is happening and found out that the SUP switching is not working for them. They always try to contact the SUP from the Primary, which they cannot reach (this is intended).
  From how I understand SUP switching as described here
  http://blogs.technet.com/b/configmgrteam/archive/2013/03/27/software-update-points-in-cm2012sp1.aspx#pi140062=1
  the Windows Update Agent tries to connect to a SUP every 30 minutes and after 4 failed attempts he will try to connect to the next one until he finds one which works.
  As I said before, this seems to work for most systems in the untrusted forest, but some do not make any intentions to switch the SUP.
  So my next step was to find out from where the Update Agent can get the information of the available SUPs. I think they either don´t receive the information that other SUPs exist, or if the Information is there, they don´t realize that there´s an error and
  make no attempt to switch.
  I used the System Center Support Center to gather all Information from some of the systems with that problems (Log Files, WMI information, registry information, policies etc.) but I cannot find where SCCM or the Update Agent store the information which SUPs
  are available in my environment.
  I´m sure the problem is on the Systems which fail to connect to the right SUP and not in the SCCM infrastructure itself, because for most of the systems everything is working just perfect. Unfortunately in the Blog Post above there´s also no information
  where this information is stored and how it is obtained by the clients. In the comments there´s even one post which describes the same problem I have here, but there was no answer. I hope someone can point me into the right direction, because I´m stuck currently.
  Things I tried additionally to all the log file / WMI / registry sniffing:
  Removing the Software Distribution Folder and restarting the Windows Update Agent
  Removing the WindowsUpdate Registry folder in the HKLM\SOFTWARE\Policies\Windows section in the Registry and restarting the Windows Update Agent.
  Tried to reset the WUAgent with wuauclt /Resetauthorization additionally to the steps above.
  I also tried to manually set the WUServer and WUStatusServer Keys in the registry to the new Server, but as soon as the next Update Scan cycle runs, the value is set back to the URL of the Primary Sites SUP
  Is someone having additional ideas? It seems to me older systems are more affected (which were configured for a standard WSUS before SCCM 2012 was deployed) than newer ones which were installed when SCCM was in place already. But I don´t know what else to
  "reset" on those machines without reinstalling them.

  Thank you very much for your response. I must have missed that one by looking through numerous Logfiles. In this, there´s indeed a list of all available SUPs. So according to the LocationServices.log the machine should have a choice.
  The WMI Key however, contains just one entry and this is the URL of the Primaries SUP which is not reachable in the untrusted forest. Is it OK that the WMI entry includes only one entry? If yes, what process is putting the results from the LocationServices
  into WMI? It seems like the Windows Update Agent is feeded from the WMI Key then. If this is the case my problems seems to be the "communication path" between these two components.
  Is this the job from the SCCM Agent, the Windows Update Agent or maybe some third component I´m not aware of? I wonder how I can fix this.