Clients with managed preferences using parallels

If I use Mac OS X server to restrict which applications a user can access it causes a problem if they run parallels.
Because although they can launch parallels application, they get a warning for each application running inside the virtual machine "The application xxxx is not allowed" and although the message can be dismissed and you can continue to use the application it is very annoying for the user.
I am restricting allowed applications by folder in WGM and have tried adding /users/shared/parallels to the list of allowed folders but that didn't work.
Does any one know if its possible to get this to work or do i have to turn off application restrictions?

This isn't completely related to the issue, but has resolved it to some extent.
I ran FS Eventer whilst attempting to open an application in the VM, and found that the file /private/var/root/Library/Preferences/com.parallels.desktop.plist was being written to. After looking at this file, I noticed that this was where the settings for the VM were stored. For example, Isolating the VM from OSX.
I found that many values were duplicated 4-5 times, and had different values. Possibly causing some conflicts. So i manually changed these to all the same values to totally isolate the VM. After testing this did not seem to change the result.
I then proceeded to see if the Shared Application folder was still being used (even though it shouldn't be due to the isolation) after deleting it I re-ran the VM and found that it was recreated when I tried to open an application, but only the applications I had tried opening were contained there, instead of the full list.
I then proceeded to add access to this folder "~user/Applications/Windows 7 Applications" to the WGM allow list. Running the VM again after logging out and back in, I found that I could now use the Windows Apps fine. Although Internet Explorer still seemed to crash upon loading.
One side note about IE, if I was to launch it from the OSX folder mentioned above, it launched within the VM and ran fine, allowing me to use it.
This is really odd, as the setting to isolate the VM from the Host, should in theory, stop this applications folder from A) appearing, and B) running the contained apps connected to the VM.
I have logged a bug report with Parallels to see if a resolution can be found to get this functionality working correctly. As I have used versions 4&5 without any issues, with identical VM setups (not including the Isolation as its not required)
I would be interested to see if Kevin is able to try the above steps to see if he can get the same results. If you do, it may be worth filing a report with Parallels also, to bring this bug to their attention some more to get it fixed.
Cheers, Chris

Similar Messages

  • Client Replaced - Managed Preferences no longer working

    An iMac on my network came down with a hardware problem, so I replaced it with a different unit. I removed the computer from Workgroup Manager, gave the second one the same name and re-bound it to OD. Workgroup Manager can see the system in the Computer List, and I can add it to the Computer Groups I need, but the managed preferences of the group don't push out to the new system. I've since tried renaming it, but the problem remains.
    The groups are working with all the other Macs that belong to them and the new unit is bound in the exact same way - is there some residual of the old machine that OSX server isn't liking? I've been pulling my hair out over this one.

    Hi
    If you've had the logic board replaced the new board will have a different MAC address - obviously. Managing hardware using Computer Lists is actually done using the MAC addressess (ethernet hardware address). Its not enough to name it the same. You have to remove it completely from the Computer List and browse for it again. Better still make a note of the new MAC address and manually add it.
    You can find the MAC addresses (as well as the IP addresses) of any networked mac/pc/printer etc by issuing:
    ping 192.168.x.255
    Or whatever IP address range you are using. Let it run for a few seconds. Use Control C to stop the ping and issue:
    arp -a
    This should list all IP addresses and associated MAC addresses. If you keep a list of which client computer name is associated with which IP address and MAC address then you should have a clearer picture of your network topology. This is better achieved if the Server is also the DHCP Server.
    Tony

  • Not able to connect with managed server using ssl connection

    Hi Guys,
    My weblogic server is running on linux. I have setup ssl connction bu using Demo Identity and Demo Trust.In server logs i can find the following infomation that server is running on secure port.
    But once i try connect to managed server using client i m facing below error:
    <May 27, 2013 2:55:00 PM IST> <Info> <Security> <BEA-090905> <Disabling CryptoJ JCE Provider self-integrity check for better startup performance. To enable this check, specify -Dweblogic.security.allowCryptoJDefaultJCEVerification=true>
    <May 27, 2013 2:55:00 PM IST> <Info> <Security> <BEA-090906> <Changing the default Random Number Generator in RSA CryptoJ from ECDRBG to FIPS186PRNG. To disable this change, specify -Dweblogic.security.allowCryptoJDefaultPRNG=true>
    <May 27, 2013 2:55:00 PM IST> <Info> <Security> <BEA-090908> <Using default WebLogic SSL Hostname Verifier implementation.>
    javax.naming.CommunicationException [Root exception is java.net.ConnectException: t3s://host:port: Destination unreachable; nested exception is:
         javax.net.ssl.SSLHandshakeException: General SSLEngine problem; No available router to destination]
         at weblogic.jndi.internal.ExceptionTranslator.toNamingException(ExceptionTranslator.java:40)
         at weblogic.jndi.WLInitialContextFactoryDelegate.toNamingException(WLInitialContextFactoryDelegate.java:767)
         at weblogic.jndi.WLInitialContextFactoryDelegate.getInitialContext(WLInitialContextFactoryDelegate.java:366)
         at weblogic.jndi.Environment.getContext(Environment.java:315)
         at weblogic.jndi.Environment.getContext(Environment.java:285)
         at weblogic.jndi.WLInitialContextFactory.getInitialContext(WLInitialContextFactory.java:117)
         at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:684)
         at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:307)
         at javax.naming.InitialContext.init(InitialContext.java:242)
         at javax.naming.InitialContext.<init>(InitialContext.java:216)
         at com.akt.client.WLCLIENT.makeConnection(WLCLIENT.java:40)
         at com.akt.client.WLCLIENT.main(WLCLIENT.java:60)
    Caused by: java.net.ConnectException: t3s://host:port: Destination unreachable; nested exception is:
         javax.net.ssl.SSLHandshakeException: General SSLEngine problem; No available router to destination
         at weblogic.rjvm.RJVMFinder.findOrCreateInternal(RJVMFinder.java:216)
         at weblogic.rjvm.RJVMFinder.findOrCreate(RJVMFinder.java:170)
         at weblogic.rjvm.ServerURL.findOrCreateRJVM(ServerURL.java:165)
         at weblogic.jndi.WLInitialContextFactoryDelegate$1.run(WLInitialContextFactoryDelegate.java:345)
         at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
         at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:146)
         at weblogic.jndi.WLInitialContextFactoryDelegate.getInitialContext(WLInitialContextFactoryDelegate.java:340)
         ... 9 more
    Caused by: java.rmi.ConnectException: Destination unreachable; nested exception is:
         javax.net.ssl.SSLHandshakeException: General SSLEngine problem; No available router to destination
         at weblogic.rjvm.ConnectionManager.bootstrap(ConnectionManager.java:470)
         at weblogic.rjvm.ConnectionManager.bootstrap(ConnectionManager.java:321)
         at weblogic.rjvm.RJVMManager.findOrCreateRemoteInternal(RJVMManager.java:260)
         at weblogic.rjvm.RJVMManager.findOrCreate(RJVMManager.java:197)
         at weblogic.rjvm.RJVMFinder.findOrCreateRemoteServer(RJVMFinder.java:238)
         at weblogic.rjvm.RJVMFinder.findOrCreateInternal(RJVMFinder.java:200)
         ... 15 more
    But in server logs i can see below message
    opt/Oracle/Middleware/wlserver_12.1/server/lib/DemoIdentity.jks.>
    <May 27, 2013 2:47:06 PM IST> <Notice> <Security> <BEA-090169> <Loading trusted certificates from the jks keystore file /opt/Oracle/Middleware/wlserver_12.1/server/lib/DemoTrust.jks.>
    <May 27, 2013 2:47:06 PM IST> <Notice> <Security> <BEA-090169> <Loading trusted certificates from the jks keystore file /opt/jdk1.7.0_21/jre/lib/security/cacerts.>
    <May 27, 2013 2:47:06 PM IST> <Notice> <Server> <BEA-002613> <Channel "DefaultSecure" is now listening on hostname:port for protocols iiops, t3s, ldaps, https.>
    <May 27, 2013 2:47:06 PM IST> <Notice> <WebLogicServer> <BEA-000332> <Started the WebLogic Server Managed Server "Server-Test" for domain "base_domain" running in development mode.>
    Please suggest
    Edited by: 1008140 on May 27, 2013 2:37 AM

    Welcome to OTN
    This section related to Database question not fusion middle ware Post your question
    Oracle Discussion Forums » Fusion Middleware

  • Two issues with KeywordQuery in Client with Managed CSOM

    Hi All,
    I’m new in SharePoint development and facing an issue for a week w/o any resolution. After extensive search, posting here with hope that some kind person will suggest what to do.
    Background: we are developing a client desktop tool for sharepoint online site search. So we are using CSOM and KeywordQuery.
    Issues:
    keywordQuery.QueryText, can not search by custom column of document library. Suppose we have added two custom columns- “CaseNo” and “PurchaseAmount” in a document library called “DocLib1”. When using keywordQuery.QueryText = "caseno:123"; -
    it does not return anything
    The CaseNo, PurchaseAmount fields are not returned in search result when search by keywordQuery.QueryText = "123";
    So tried to add the property “keywordQuery.SelectProperties.Add("CaseNo ");” – it returns less number of column (32), but don’t return the CaseNo.
    Giving code below:
    using (ClientContext clientContext = new ClientContext("https://zzz"))
                    SecureString passWord = new SecureString();
                    string pass = "zzzz";
                    foreach (char c in pass.ToCharArray())
                        passWord.AppendChar(c);
                    clientContext.Credentials = new SharePointOnlineCredentials("zzz.hotmail.com", passWord);
                    KeywordQuery keywordQuery = new KeywordQuery(clientContext);
                     keywordQuery.RowLimit = 500;
                     keywordQuery.TrimDuplicates = true;
                     keywordQuery.SortList.Add("LastModifiedTime", Microsoft.SharePoint.Client.Search.Query.SortDirection.Descending);
                    StringCollection selectProperties = keywordQuery.SelectProperties;
                    keywordQuery.SelectProperties.Add("caseno");
                     keywordQuery.QueryText = "caseno:123"; 
                    SearchExecutor searchExecutor = new SearchExecutor(clientContext);
                    ClientResult<ResultTableCollection> results = searchExecutor.ExecuteQuery(keywordQuery);
                    clientContext.ExecuteQuery();
                    foreach (var resultRow in results.Value[0].ResultRows)
                        Console.WriteLine("{0}: {1} ({2})", resultRow["Title"], resultRow["Path"], resultRow["Write"]);
                    Console.WriteLine("END");
                    Console.ReadLine();
    Look forward your kind response with the answer
    Regards,

    Hi,
    For any properties to be added in the KQL query, you need to have managed properties.  In your scenario, you are creating two custom columns in the document library.  These two columns will create the crawled properties, not managed properties.
    In order to include in search, you have create the managed property and map to the crawl property.  How to create managed property and map to crawl property, please refer to the following article.
    Creating Custom Managed Properties
    Once you create the custom managed property, you can include either in KQL or search directly in the search box.
    Please mark it answered, if your problem resolved.

  • Linux and Solaris Clients with password policy using LDAP

    Anybody managed to get Linux (RHEL) and Solaris 9 Client authenticate against Sun Directory Server 5.2p4 using the same password policy?
    For me it looks like Linux needs attribute shadowlastchanged set to display proper Warnings, that the password will expire/needs to be changed now. On the other hand Solaris (using pam_ldap) never writes this attribute, because it's using the password policy attribute pwdchangedtime.
    Hints very wellcome!
    Can anybody confirm Solaris9 pam_unix still sets this shadow* attributes correct on any password change executed by a user?

    Hi Jeremy,
    here the answers to your questions:
    >My question is which system takes precedence over the password policy?
    Unfortunately there is no policy verification between the portal and your Sun One LDAP. So if you reset the password from the portal then only the portal password policies can be checked.
    >  If I wanted to do password resets from the Portal, does the portal then store only the password in its database?
    No, the password will be stored in the LDAP, but only if it also corresponds with the LDAP policies. If not, then you will get an error, but you will not see the real LDAP exception.
    > Also what would then happen if you tried to reset the password from the LDAP?
    The password in the LDAP does not have to fit to the Portal password policies. When you log in, the portal will only check if the password you tipped in is the new one in LDAP and will not check any policies.
    Hope this brings some light in,
    Robert

  • Communication problem with printer when using Parallels

    OK, apologies if this has been asked elsewhere but I've been trawling the forum for an hour and have yet to find the exact problem that I'm having!
    First of all, I'm a recent convert to Mac (hurrah I hear you all cry), secondly, I've set up Parallels to deal with some PC left-overs, thirdly, I've tried to use my old Dell printer and realised Dell doesn't support Macs (or not my AIO 922 anyway).
    So, I thought I'd get round this by installing the drivers for the printer on the Windows partition, which all went well until I actually tried to print something... although the printer is visible and 'on-line', I get the box informing me there's a communation problem with the printer and computer.
    It's beginning to wind me up so any info/advice would be greatly appreciated

    This is either a Windows or a Parallels problem. For Parallels go to http://forum.parallels.com. For Windows go to the support forums at Microsoft.
    There is no support for either product at these Discussions.

  • "Application not supported" but only in Managed Preferences

    Using  Server 10.9.1  and OSX 10.9.1.
    If I open the client computer locally and go to Applications, I can launch the application.
    However if I log in as a networked user with managed preferences, the application is greyed out and I get the "You can't open the application because it is not supported on this type of Mac".
    there are no other copies of the aplication on the server.  I have

    Posting got cut off.. sorry.
    There is only one copy of the application on both the Server and the Client.
    Any ideas?
    Thanks
    Mitch

  • Troubleshooting Managed Preferences

    I've been playing around with managed preferences on my test server. I've set up things like managed printing and preferences for the mouse and iChat.
    This all works like a charm on my test server, however it doesn't on my production server. So I'm pretty sure the setting on my test server are correct, I'm just not curtain about interfering factors.
    Now I've been looking around a lot and what I cannot find is a document about the inner workings of managed preferences. I know it's nothing more than a bunch of plist files that get pushed to the clients, but for some reason there is more magic at work in the background.
    So if anyone has some information or documentation about how managed preferences work. What kind of check are used to make sure the settings need to be applied (I read something about the MAC address in inspector for instance)? So if anybody some useful information regarding this subject I would be grateful.

    No, I'm sorry mate, but I never had one of my questions answered here. When I do make some progress you can count on it I will post it here.

  • Time machine sharepoint and managed preferences

    I have added a share point as a time machine backup destination, and it shows up with Bonjour users. But I am setting up some machines with managed preferences, and I add the time machine volume in the time machine managed preferences pane, and supply the whole network path (afp://server.com/TimeMachine).
    The settings are added to the managed machine, but it can't mount the backup destination. Gives me error "The backup disk is not available".
    This error doesn't show when the disk is manually chosen in Time Machine preferences on non-managed computers.
    Any ideas?

    it sounds like you are using an OS X server. I suggest you post in the Snow leopard server forum
    http://discussions.apple.com/category.jspa?categoryID=264
    and please fill in your profile to indicate what hardware and software you are running.

  • ASA , Cisco VPN client with RADIUS authentication

    Hi,
    I have configured ASA for Cisco VPN client with RADIUS authentication using Windows 2003 IAS.
    All seems to be working I get connected and authenticated. However even I use user name and password from Active Directory when connecting with Cisco VPN client I still have to provide these credentials once again when accessing domain resources.
    Should it work like this? Would it be possible to configure ASA/IAS/VPN client in such a way so I enter user name/password just once when connecting and getting access to domain resources straight away?
    Thank you.
    Kind regards,
    Alex

    Hi Alex,
    It is working as it should.
    You can enable the vpn client to start vpn before logon. That way you login to vpn and then logon to the domain. However, you are still entering credentials twice ( vpn and domain) but you have access to domain resources and profiles.
    thanks
    John

  • Using PPC iBook as Client with OS X Snow Leopard Server

    Hey, I am interested in purchasing a mac mini server edition as a home server for all of my family, and in addition to several intel macbook pros, we have a couple of Power PC macs.
    Is it possible to use the power pc macs (all running 10.5 leopard) as clients for the server? I want to be able to make them sync home folders with a user on the server.

    When you set up your Mini server, in Server Admin you go to the Open Directory service and then you can use the wizard to create an Open Directory Master (ODM). Once you have that setup you can then bind your clients using Directory Access in the Utilities folder (up to 10.5) 10.6 is located in /System/Library/CoreServices/ or through the Accounts pane in System Prefs under Login Options. You can then use that utility to "bind" to the ODM using the IP address of the ODM or the DNS name. If you are setting up a fake home network, you should setup DNS first on the Mini so you have a FQDN to resolve to for your clients. Then you can create users and groups in Workgroup Manager and assign the accounts to be Mobile users and have their settings sync'd to the servers home directory folders for your users. You will need to create a share on the server and then enable as a Share Point is Server Admin and then set it to Enable Automount. Then under the home directory tab in WGM you can set the user home dirs to be in the share you created.
    So steps:
    Update Server for all updates
    Set up DNS
    Create ODM
    Create Share, set as automount
    Create users in WGM, point to share for home dir
    -Add users to group
    -Set up Preferences for group and enable Mobile for sync services.
    Bind clients to ODM
    Login using mobile or network accounts, sync files and folders based on your prefs.
    Hope this helps,
    -JL

  • Publish client print queues as managed preferences?

    Hello,
    I followed the documentation from Papercut NG on Mac printing, section Publishing the printer via Workgroup Manager to get the defined print queues for my client machines published as managed preferences.
    I set up the print queues on the server. On the client, I configured the server print queues using the local Administrator account and printed successfully a few test pages. I then logged in with an Open Directory account with admin privileges. I then open Workgroup Manager, select a Computer Group, click Preferences, select Printing. I enable Manage Always, but the list of Available Printers remains empty, contrary to what the screenshot tells me from the referred article.
    Environment:
    + Snow Leopard Server 10.6.1 on a MacMini.
    + Snow Leopard 10.6.1 on a MacPro.
    Am I missing something?
    Ringo

    Hello,
    I followed the documentation from Papercut NG on Mac printing, section Publishing the printer via Workgroup Manager to get the defined print queues for my client machines published as managed preferences.
    I set up the print queues on the server. On the client, I configured the server print queues using the local Administrator account and printed successfully a few test pages. I then logged in with an Open Directory account with admin privileges. I then open Workgroup Manager, select a Computer Group, click Preferences, select Printing. I enable Manage Always, but the list of Available Printers remains empty, contrary to what the screenshot tells me from the referred article.
    Environment:
    + Snow Leopard Server 10.6.1 on a MacMini.
    + Snow Leopard 10.6.1 on a MacPro.
    Am I missing something?
    Ringo

  • How to copy a page( webpart page) with its content using client side.

    How to copy a page(in my case  webpart page) with its content(it may contain webparts) using client code (i mean using SPservices or ECMA script).
    What i am planning is ,to give end user a page where it will contain text box to specify  name of page and a button with the help of  content editor webpart.
    where on click of button we need to write client side code such that it should create a new page from a existing page in a library with given name by user.
    Any suggestion would be helpful. For your information we can do it through UI with the help Site Actions / Manage Content and Structure.But i want to automate it using client side code.Server side code is restricted.
    or can we create a template of an existing page with content without the help of sharepoint designer.
    Thanks in advance
    with regards Ravichandra

    This is good example
    http://balajiindia.wordpress.com/2011/05/27/using-jquery-with-custom-web-services-in-sharepoint/
    Create web service
    http://balajiindia.wordpress.com/2011/05/27/using-jquery-with-custom-web-services-in-sharepoint/. Create method "Create Page" http://www.learningsharepoint.com/2010/09/17/create-publishing-pages-sharepoint-2010-programmatically/
    Build your Java Script. You can use Content Editor Web Part if you want to avoid custom web part development http://www.codeproject.com/Articles/544538/JQuery-with-SharePoint
    Oleg

  • Has anyone managed to create an email account on the OS X mail client with Exchange 2007?

    Hi guys,
    the IT chaps of my new employer tell me that it is impossible to use the OS X mail client with Exchange 2007 servers. Is that correct? If so, does anyone know a workaround?
    Thanks
    Juergen

    jthurner wrote:
    Hi guys,
    the IT chaps of my new employer tell me that it is impossible to use the OS X mail client with Exchange 2007 servers. Is that correct? If so, does anyone know a workaround?
    Thanks
    Juergen
    No workaround needed, open Mail, Contacts and Calendars (in System Preferences) select Exchange, enter your email address and password, opt to setup Contacts and Calendars as well as mail and hit enter. That should set it up (assuming your apparently witless IT dept has setup the autodiscover record correctly at their end)

  • 10.5 Client refuses to authenticate Kerberos or obey managed preferences

    I am sure this has come up time and again, but a search in the forums has not come back with a work around.
    I am running Tiger Server 10.4.11 as an OD master serving up portable accounts in a mixed Tiger and Leopard Client Environment. I just did a Leopard upgrades on two MacBooks that were previously bound to the OD server when running Tiger.
    Upon completing the upgrades I have found two things:
    1) Local and network users working on the laptops are no longer being challenged for a kerberos ticket to authenticate to network shares served up by the 10.4 server
    2) Managed preferences for users as well as the clients are no longer being obeyed by the Leopard upgraded clients.
    Everything works as it should on my Tiger Clients connecting to the server.
    I have flushed the kerberos plists and rebound the Leopard clients to no effect, except to see some managed preferences on the login screen that somehow were honored in the upgrade be rolled back to factory defaults.
    I know that Apple has made a lot of changes in Leopard, but is there any known work around to get Leopard to pull kerberos tickets from the server and obey managed preferences? I am not yet ready to make the upgrade to Leopard server with a stable server environment already in place.
    Seems to me there should be some sort of workaround.
    Help!
    TIA,
    Art
    Message was edited by: MacWay

    Turns out it was a time synch issue. I discovered this without any help from the forums.

Maybe you are looking for