Connecting to Multiple Domains

We have 2 domains, SharePoint 2010 is installed on one Domain. We need a group of users from the other Domain to access SharePoint. What steps are needed to set this up?
dfrancis

If this is a child domain of the existing forest, you won't need to do anything. If it is a second forest, you'll need to create a trust in Active Directory Domains and Trusts. Given it is a two-way forest-wide trust, you won't have to do anything.
If it is a one-way trust, you'll need to do some PowerShell work.
http://thesharepointfarm.com/2014/01/powershell-for-people-picker-properties/
Namely execute this once:
$key = ConvertTo-SecureString "Password1" -AsPlainText -Force
[Microsoft.SharePoint.SPSecurity]::SetApplicationCredentialKey($key)
And for each Web App:
$wa = Get-SPWebApplication http://webAppUrl
$adsearchobj = Microsoft.SharePoint.Administration.SPPeoplePickerSearchActiveDirectoryDomain
$userpassword = ConvertTo-SecureString "UserPassword1" -AsPlainText -Force #Password for the user account CONTOSO\s-useraccount
$adsearchobj.DomainName = "contoso.com"
$adsearchobj.ShortDomainName = "CONTOSO" #Optional
$adsearchobj.IsForest = $true #$true for Forest, $false for Domain
$adsearchobj.LoginName = "s-useraccount"
$adsearchobj.SetPassword($userpassword)
$wa.PeoplePickerSettings.SearchActiveDirectoryDomains.Add($adsearchobj)
$wa.Update()
In addition, regardless of the type of trust, SharePoint servers must have port access to the other domain's Domain Controllers. See http://blogs.technet.com/b/wbaer/archive/2009/01/21/people-picker-port-protocol-requirements.aspx
for details on requirements.
Trevor Seward
Follow or contact me at...
&nbsp&nbsp
This post is my own opinion and does not necessarily reflect the opinion or view of Microsoft, its employees, or other MVPs.

Similar Messages

  • Connection between multiple domains of AD and OIM

    I am trying to integrate OIM and AD (target resource) and I have 13 domains in AD. For one domain, connection between AD and OIM is established using OOTB connector.
    Can someone provide me approach for connection between multiple domains of AD and OIM.
    Do I need to install different connector server for different domains or OIM provides with some Connector Server cloning feature.

    Hi,
    this forum is for asking and answering JDeveloper and ADF related question. Your question should be asked to the FMW security forum here on OTN
    Frank

  • Trying to modify a script to use test-connections in multiple domains?

    Hey Scripting Guy!
    I've created the script (below) to use test-connection against a list of hosts and write the results of the machines that respond to a .txt file. The only issue is that one of my sites utilizes two separate domains, does anyone have any advice as far as
    when a test connection fails, retrying the command using another domain name? (server.domain.com)
    I'll take any advice at this point... Thanks!
    New-PSDrive -Name S -PSProvider FileSystem -Root \\server\share -ErrorAction SilentlyContinue
    Get-ChildItem "S:\Folder1\Folder2\backup\backup Audits\Host Audits" -Filter *.txt | `
    Foreach-Object{
        $content = Get-Content $_.FullName
        #$SiteName = Get-ChildItem "S:\Folder1\Folder2\backup\backup Audits\Host Audits"
        #Find alive machines, and write their hostnames to output file for auditing
        Test-Connection -count 5 -ErrorAction SilentlyContinue $Content | Select-object -unique | Out-File      "S:\Folder1\Folder2\backup\backup Audits\Audit results by Site\$_"

    what i would like to do is when my test-connection fails with an error, append another domain suffix to the hostname so that if:
    test-connection computerxyz fails
    then test-connection computerxyz.domain.corp.com
    $server="$computer.domain1.com"
    if(Test-Connection $server -count 1 -quiet){
        $server="$computer.domain2.com"
        ... other code
    ¯\_(ツ)_/¯

  • How do I host multiple domains on a single Messaging Server?

    How do I host multiple domains on a single Messaging Server?
    <p>
    To host multiple domains on one Messaging Server, use the
    mailAlternateAddress attribute. If you want to host two domains
    (customer1.com and customer2.com) on your server mail1.domain.com,
    make sure that:
    The various domains (in DNS) point to the installed mail server
    (you must have the MX records that
    points mail for customer1.com to mail1.domain.com and
    customer2.com to mail1.domain.com)
    That each person receiving mail at customer1.com and
    customer2.com has an appropriate mailAlternateAddress
    attribute describing the appropriate email address. For
    instance, John Doe can have an email address (i.e. the value
    of the 'mail' attribute for the John Doe LDAP entry) of
    [email protected] and receive his mail on
    [email protected] (the value of the mailAlternateAddress
    attribute)
    With Messaging Server 3.5, mailAlternateAddress can take the
    form of @mail1.domain.com. If jdoe's mailAlternateAddress is
    set to @mail1.domain.com, mail sent to [email protected]
    will be delivered to [email protected]

    jaygatsby1123 wrote:
    So what exactly am I doing with virtual hosts?  There is a place for Aliases...  What would I put in the "Aliases" box?
    Any other host name that you want to resolve to the specified virtual host.  It's quite literally an alias.
    if you want www.example.com and www.example.org to end up at the same web site and you already have a virtual host — Apple refers to virtual hosts as sites — configured for www.example.com in Server.app, then you'd add www.example.org as an alias for the www.example.com virtual host (site).
    Virtual hosts are implemented in a web server using some details of the HTTP or HTTPS protocol, and what the web browser (client) specified.  The client gets handed an IP address or a domain name by the user, and the client then fetches the associated IP address for the target web server from the client's DNS services or local host database, and the client then connects to the IP address and passes over the text string that the user had requested — the IP address or domain name or even some local shortcut set up in the client system — via the HTTP or HTTPS protocol.  The web server receives and processes this arriving text string from the client, and uses it to select which web site to render back to the web client.   One subtle detail lurks here, too: the server's own DNS configuration really isn't involved in the selection of the virtual host.

  • Can you host multiple domain names on mobile me with iWeb '09?

    Hi
    Can anyone help, before I upgrade to iLife '09, I have a personal web domain name which I host on my mobileme account. My girlfriend now wants a website and I have bought her a domain name and want to use iWeb to design it but I can't seem to host multiple domains on iWeb '08, can you with iLife '09? Or will she have to buy her own mobile me account? Any help will be great!!!
    Thanks

    MobileMe -MME -is Apple's hosting service.
    Domain Name System - DNS translates an understandable address like www.mywebsite.com into the IP address which is a number like 40:75:92:301.
    Cname is a name of record in a database that records what domain name goes to what IP address.
    IP address is just a unique number that identifies any device connected to the internet.
    An FTP client is an application the uploads your files to a server using File Transfer Protocol.
    I mainly use Web Site Maestro because it doesn't just upload the files but optimizes them first to remove all the unnecessary code that iWeb creates to allow your website to download at least 30% faster.
    I also use Yummy FTP for sorting out and keeping track of my files on the server and uploading folders of images and music files along with their assets for flash presentations.
    I have used Host Excellence for years because of the way they allow you to name your own root folder on the server and also their great tech support.
    FTP and servers can be a bit confusing but, if you have a good hosting company, you can get by on very little knowledge and understanding. I do!
    I couldn't agree more with you about the acronyms and jargon. The more people use them usually means the less they know. One of the most misused words is "domain". I tried to sort that one out here...
    http://www.iwebformusicians.com/SearchEngines/Upload.html
    Now I'm going FUH and ATNP.

  • Multiple domains via DHCP (option 15)

    It seems Mac OS X (I use 10.4.10 but I suspect it affects many versions) is incompatible with receiving multiple domain names in a single string over DHCP Option 15.
    If DHCP returns Option 15 with "exampledomain.com eng.exampledomain.com", then any lookup (using dig, ping, Microsoft Entourage, etc.) of a non-fully qualified domain name will fail.
    You can see this in the /etc/resolv.conf file, which contains:
    domain exampledomain.com eng.exampledomain.com
    nameserver 10.X.X.1
    nameserver 10.X.X.2
    I know that putting multiple domains within the same "domain" option in DHCP is a proprietary hack but some networks still use this. Has anybody run into this and have they found a good resolution to make Mac OS X work with multiple domains?

    While a single mailbox can be configured to receive on multiple addresses (called "proxy addresses" or "aliases"), the mailbox is configured with only one primary SMTP address (outbound address).  So if your requirement is to send
    as the received address, you would not be able to do that with a single mailbox through normal means.
    Some people have developed a workaround to the above limitation by configuring Outlook to use multiple POP3 accounts for a single mailbox.  See this link for additional details: 
    http://blogs.technet.com/b/hot/archive/2012/04/26/how-to-add-an-alias-to-an-office-365-account-and-how-to-set-up-outlook-to-send-email-messages-as-this-alias.aspx
    I would also be sure to look at the client requirements for Exchange Online.  The supported version of Outlook is going to be Outlook 2010 SP2.  Older versions may work but would not be supported.  Outlook 2003 would at best possibly
    connect via POP3.
    Joseph Palarchio http://www.itworkedinthelab.com

  • Multiple Domains with oc4j-ra.xml

    Hi, I am using the oc4j-ra.xml file in the /oracle/app/10Gias/j2ee/OC4J_BPEL/application-deployments/default/DbAdapter/ directory to my database connection. I have now created a second domain for a TEST environment and want to use a seperate oc4j-ra.xml file for it. Is this possible? Should'nt there be a seperate oc4j-ra.xml file for each domain? Or is there another way to handle this with multiple domains?
    Thanks

    Hi,
    I am sorry it is not oc4j-ra.xml rather it is OraHome_1\j2ee\OC4J_BPEL\config\data-sources.xml where we have jndi location of all datasources.
    i think here we can define multiple datasource elements pointing to diffrent databases say one for Development and one for Testing like:
    for Development:
    <data-source class="com.evermind.sql.DriverManagerDataSource"
         name="BPELServerDataSource"
         location="jdbc/BPELServerDataSourceWorkflowDev"
         xa-location="BPELServerDataSource"
         ejb-location="jdbc/BPELServerDataSource"
         connection-driver="oracle.jdbc.OracleDriver"
         max-connections="50"
         min-connections="10"
         connection-retry-interval="30"
         max-connect-attempts="10"
         username="orabpel"
         password="->pwForOrabpel"
         url="jdbc:oracle:thin:@(DESCRIPTION=(ADDRESS_LIST=(LOAD_BALANCE=on)(ADDRESS=(PROTOCOL=tcp)(HOST=101.11.50.51)(PORT=1521)))(CONNECT_DATA=(SERVICE_NAME=esb)))"/>
    for Testing:
    <data-source class="com.evermind.sql.DriverManagerDataSource"
         name="BPELServerDataSource"
         location="jdbc/BPELServerDataSourceWorkflowTest"
         xa-location="BPELServerDataSource"
         ejb-location="jdbc/BPELServerDataSource"
         connection-driver="oracle.jdbc.OracleDriver"
         max-connections="50"
         min-connections="10"
         connection-retry-interval="30"
         max-connect-attempts="10"
         username="orabpel"
         password="->pwForOrabpel"
         url="jdbc:oracle:thin:@(DESCRIPTION=(ADDRESS_LIST=(LOAD_BALANCE=on)(ADDRESS=(PROTOCOL=tcp)(HOST=101.11.50.52)(PORT=1521)))(CONNECT_DATA=(SERVICE_NAME=esb)))"/>
    after that, modify the domain.xml in Development domain to point
    <property id="datasourceJndi">
    <name>Domain datasource JNDI</name>
    <value>jdbc/BPELServerDataSourceWorkflowDev</value>
    <comment><![CDATA[
    The JNDI name for the domain datasource. This datasource may refer to any datasource (JTA not required).
    ]]></comment>
    </property>
    and modify the domain.xml in Testing domain to point
    <property id="datasourceJndi">
    <name>Domain datasource JNDI</name>
    <value>jdbc/BPELServerDataSourceWorkflowTest</value>
    <comment><![CDATA[
    The JNDI name for the domain datasource. This datasource may refer to any datasource (JTA not required).
    ]]></comment>
    </property>
    I hope this will help you.
    Thanks,
    -Vidya

  • DNS for Multiple Domains

    I am trying to figure out the proper configuration for DNS that will support multiple domains. I have DSN working now for just one domain.
    My XServe has a static IP connected directly to cable modem and is the master nameserver. I also have an Ubuntu server with static IP connected directly to cable modem that is the secondary (slave) nameserver.
    On the XServe, I currently have a primary zone created for domain1.com. with:
    * an A record for domain.com. (Fully Qualified) and the same static IP as the XServe
    * an A record for ns1 (not fully qualified) and the same static IP as the XServe
    * Aliases for ftp, www and mail (not fully qualified) mapped to destination ns1.domain1.com. (Fully Qualified)
    Nameservers under the Primary Zone is ns1.domain1.com. and Mail Exchangers is ns1.domain1.com. with a priority of 10.
    The reverse zone is getting created appropriately for me as far as I can tell. I am able to access www.domain1.com just fine as well as mail and ftp.
    Now I want to add a new domain2.com to this master nameserver. I know that I will need a new Primary Zone for domain2.com. to be recognized and to setup it's aliases?
    Can I use the same static IP or do I have to have a unique static IP?
    Can I use the ns1.domain1.com. nameserver or does the new domain2.com need new nameservers?
    Does domain2.com have it's own A records?
    Does the mail exchangers need to be different for domain2.com?
    It seems like all the documentation and information that I can find are just for configuring one domain and not so much for multiple domains. Any help would be greatly appreciated.
    Spotted Dog

    Don't think of subsequent domains as being any different from the first domain.
    For every domain you need to provide certain information, including a list of the hostnames within that domain. There is no relationship between 'www' in domain1.com and 'www' in domain2.com (unless you point them to the same address, but that's a different issue).
    Any host record in the zone can either be an A record (where you specify an IP address) or a CNAME (where you specify another hostname that it maps to).
    In the case of your web server handling both domains you could set 'www.domain2.com' as an A record with the appropriate IP address, or you could set it as a CNAME with a value of 'www.domain1.com.' (essentially saying 'www.domain2.com has the same IP address of www.domain1.com, so go find that address').
    It's also possible to use cross-domain records for things like name servers and mail servers - in other words you can set your MX record for domain2.com to mail.domain1.com (essentially saying that domain2.com's email is handled by mail.domain1.com).
    Can I use the same static IP or do I have to have a unique static IP?
    That's not a question for DNS. What you're defining are the hostnames in that domain. If you have one server (e.g. a web server) that can handle multiple domains (e.g. one apache server handling web traffic for both domain1.com and domain2.com) then, sure, you can use the same IP address for both.
    If, on the other hand, you have specific services that cannot be multi-hosted (e.g. HTTPS) then you will need different IP addresses.
    Can I use the ns1.domain1.com. nameserver or does the new domain2.com need new nameservers?
    Sure, it's entirely possible to use domain1.com's name servers for domain2.com.
    Does domain2.com have it's own A records?
    It can do, or not, as you choose. If you're running www.domain2.com on the same server as www.domain1.com then you could use a CNAME record to point www.domain2.com to www.domain1.com.,or you could set an A record with the same IP address.
    The result would be the same, but the CNAME has the advantage that if your IP address changes you only need to change your DNS in one place (www.domain1.com) and all the other addresses would automatically follow.
    Does the mail exchangers need to be different for domain2.com?
    Not at all, if your mail server is configured to handle mail for both domains it's entirely possible to specify mail.domain1.com as the MX record for domain2.com.

  • Problem while connecting the Weblogic Domain to MySql5.

    Hi,
    I would like to send you the entire stacktrace..
    JAVA Memory arguments: -Xms256m -Xmx768m -XX:CompileThreshold=8000 -XX:PermSize=128m -XX:MaxPermSize=192m
    WLS Start Mode=Development
    CLASSPATH=;C:\WEBLOG~1\patch_wlw1030\profiles\default\sys_manifest_classpath\weblogic_patch.jar;C:\WEBLOG~1\patch_wls1030\profiles\default\sys_manifest_classpath\weblogic_patch.jar;C:\WEBLOG~1\patch_wlp1030\profiles\default\sys_manifest_classpath\weblogic_patch.jar;C:\WEBLOG~1\patch_cie670\profiles\default\sys_manifest_classpath\weblogic_patch.jar;C:\WEBLOG~1\patch_cie660\profiles\default\sys_manifest_classpath\weblogic_patch.jar;C:\WEBLOG~1\JDK160~1\lib\tools.jar;C:\WEBLOG~1\WLSERV~1.3\server\lib\weblogic_sp.jar;C:\WEBLOG~1\WLSERV~1.3\server\lib\weblogic.jar;C:\WEBLOG~1\modules\features\weblogic.server.modules_10.3.0.0.jar;C:\WEBLOG~1\WLSERV~1.3\server\lib\webservices.jar;C:\WEBLOG~1\modules\ORGAPA~1.5/lib/ant-all.jar;C:\WEBLOG~1\modules\NETSFA~1.0_1/lib/ant-contrib.jar;;C:\WEBLOG~1\WLSERV~1.3\common\eval\pointbase\lib\pbclient57.jar;C:\WEBLOG~1\WLSERV~1.3\server\lib\xqrl.jar;C:\WEBLOG~1\WLSERV~1.3\server\lib\xquery.jar;C:\WEBLOG~1\WLSERV~1.3\server\lib\binxml.jar;
    PATH=C:\WEBLOG~1\patch_wlw1030\profiles\default\native;C:\WEBLOG~1\patch_wls1030\profiles\default\native;C:\WEBLOG~1\patch_wlp1030\profiles\default\native;C:\WEBLOG~1\patch_cie670\profiles\default\native;C:\WEBLOG~1\patch_cie660\profiles\default\native;C:\WEBLOG~1\WLSERV~1.3\server\native\win\32;C:\WEBLOG~1\WLSERV~1.3\server\bin;C:\WEBLOG~1\modules\ORGAPA~1.5\bin;C:\WEBLOG~1\JDK160~1\jre\bin;C:\WEBLOG~1\JDK160~1\bin;C:\WebLogicBea\jrockit_160_05\jre\bin;E:\Oracle\bin;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\system32\WBEM;F:\Oracle\Ora81\bin;C:\Program Files\Oracle\jre\1.1.7\bin;F:\Oracle\Ora81\orb\bin;C:\Program Files\Java\jdk1.5.0_06\bin;E:\Oracle\orb\bin;C:\WEBLOG~1\WLSERV~1.3\server\native\win\32\oci920_8
    * To start WebLogic Server, use a username and *
    * password assigned to an admin-level user. For *
    * server administration, use the WebLogic Server *
    * console at http:\\hostname:port\console *
    starting weblogic with Java version:
    Cleaning up license and uid files
    Starting Autonomy with CONTENT_SEARCH_OPTION = full
    Autonomy Distributed Search Handler engine started.
    java version "1.6.0_05"
    Java(TM) SE Runtime Environment (build 1.6.0_05-b13)
    Java HotSpot(TM) Client VM (build 10.0-b19, mixed mode)
    Starting WLS with line:
    C:\WEBLOG~1\JDK160~1\bin\java -client -Xms256m -Xmx768m -XX:CompileThreshold=8000 -XX:PermSize=128m -XX:MaxPermSize=192m -Xverify:none -da -Dplatform.home=C:\WEBLOG~1\WLSERV~1.3 -Dwls.home=C:\WEBLOG~1\WLSERV~1.3\server -Dweblogic.home=C:\WEBLOG~1\WLSERV~1.3\server -Dweblogic.wsee.bind.suppressDeployErrorMessage=true -Dweblogic.wsee.skip.async.response=true -Dweblogic.management.discover=true -Dwlw.iterativeDev=true -Dwlw.testConsole=true -Dwlw.logErrorsToConsole=true -Dweblogic.ext.dirs=C:\WEBLOG~1\patch_wlw1030\profiles\default\sysext_manifest_classpath;C:\WEBLOG~1\patch_wls1030\profiles\default\sysext_manifest_classpath;C:\WEBLOG~1\patch_wlp1030\profiles\default\sysext_manifest_classpath;C:\WEBLOG~1\patch_cie670\profiles\default\sysext_manifest_classpath;C:\WEBLOG~1\patch_cie660\profiles\default\sysext_manifest_classpath;C:\WebLogicBea\wlportal_10.3\p13n\lib\system;C:\WebLogicBea\wlportal_10.3\light-portal\lib\system;C:\WebLogicBea\wlportal_10.3\portal\lib\system;C:\WebLogicBea\wlportal_10.3\info-mgmt\lib\system;C:\WebLogicBea\wlportal_10.3\analytics\lib\system;C:\WebLogicBea\wlportal_10.3\apps\lib\system;C:\WebLogicBea\wlportal_10.3\info-mgmt\deprecated\lib\system;C:\WebLogicBea\wlportal_10.3\content-mgmt\lib\system -Dweblogic.alternateTypesDirectory=C:\WebLogicBea\wlportal_10.3\portal\lib\security -Dweblogic.Name=AdminServer -Djava.security.policy=C:\WEBLOG~1\WLSERV~1.3\server\lib\weblogic.policy weblogic.Server
    <Oct 27, 2009 11:15:35 AM IST> <Notice> <WebLogicServer> <BEA-000395> <Following extensions directory contents added to the end of the classpath:
    C:\WebLogicBea\wlportal_10.3\analytics\lib\system\analytics_sys.jar;C:\WebLogicBea\wlportal_10.3\apps\lib\system\groupspace_system.jar;C:\WebLogicBea\wlportal_10.3\content-mgmt\lib\system\content_system.jar;C:\WebLogicBea\wlportal_10.3\info-mgmt\deprecated\lib\system\commerce_system.jar;C:\WebLogicBea\wlportal_10.3\info-mgmt\lib\system\wlp-schemas.jar;C:\WebLogicBea\wlportal_10.3\info-mgmt\lib\system\wlp_content_system.jar;C:\WebLogicBea\wlportal_10.3\info-mgmt\lib\system\wps_system.jar;C:\WebLogicBea\wlportal_10.3\light-portal\lib\system\netuix_common.jar;C:\WebLogicBea\wlportal_10.3\light-portal\lib\system\netuix_schemas.jar;C:\WebLogicBea\wlportal_10.3\light-portal\lib\system\netuix_system.jar;C:\WebLogicBea\wlportal_10.3\light-portal\lib\system\wsrp-client.jar;C:\WebLogicBea\wlportal_10.3\light-portal\lib\system\wsrp-common.jar;C:\WebLogicBea\wlportal_10.3\p13n\lib\system\p13n-schemas.jar;C:\WebLogicBea\wlportal_10.3\p13n\lib\system\p13n_common.jar;C:\WebLogicBea\wlportal_10.3\p13n\lib\system\p13n_system.jar;C:\WebLogicBea\wlportal_10.3\p13n\lib\system\wlp_services.jar;C:\WebLogicBea\wlportal_10.3\portal\lib\system\netuix_system-full.jar>
    <Oct 27, 2009 11:15:35 AM IST> <Info> <WebLogicServer> <BEA-000377> <Starting WebLogic Server with Java HotSpot(TM) Client VM Version 10.0-b19 from Sun Microsystems Inc.>
    <Oct 27, 2009 11:15:36 AM IST> <Info> <Management> <BEA-141107> <Version: WebLogic Server Temporary Patch for CR376251 Wed Aug 06 09:19:34 PDT 2008
    WebLogic Server Temporary Patch for CR371247 Sat Aug 09 20:10:38 PDT 2008
    WebLogic Server Temporary Patch for CR377673 Tue Aug 12 20:39:50 EDT 2008
    WebLogic Server Temporary Patch for CR377673 Tue Aug 12 20:39:50 EDT 2008
    WebLogic Server Temporary Patch for CR376759 Thu Aug 14 14:53:02 PDT 2008
    WebLogic Server 10.3 Fri Jul 25 16:30:05 EDT 2008 1137967 >
    <Oct 27, 2009 11:15:42 AM IST> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to STARTING>
    <Oct 27, 2009 11:15:42 AM IST> <Info> <WorkManager> <BEA-002900> <Initializing self-tuning thread pool>
    <Oct 27, 2009 11:15:42 AM IST> <Notice> <Log Management> <BEA-170019> <The server log file C:\WebLogicBea\user_projects\domains\zarDbDomain\zarDbDomain\servers\AdminServer\logs\AdminServer.log is opened. All server side log events will be written to this file.>
    <Oct 27, 2009 11:15:57 AM IST> <Notice> <Security> <BEA-090082> <Security initializing using security realm myrealm.>
    <Oct 27, 2009 11:16:10 AM IST> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to STANDBY>
    <Oct 27, 2009 11:16:10 AM IST> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to STARTING>
    <Oct 27, 2009 11:16:40 AM IST> <Notice> <Log Management> <BEA-170027> <The Server has established connection with the Domain level Diagnostic Service successfully.>
    <Oct 27, 2009 11:16:41 AM IST> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to ADMIN>
    <Oct 27, 2009 11:16:41 AM IST> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to RESUMING>
    <Oct 27, 2009 11:16:41 AM IST> <Notice> <Server> <BEA-002613> <Channel "Default" is now listening on 192.9.200.236:7001 for protocols iiop, t3, ldap, snmp, http.>
    <Oct 27, 2009 11:16:41 AM IST> <Warning> <Server> <BEA-002611> <Hostname "ZieF.pl", maps to multiple IP addresses: 192.9.200.236, 127.0.0.1>
    <Oct 27, 2009 11:16:41 AM IST> <Notice> <Server> <BEA-002613> <Channel "Default[1]" is now listening on 127.0.0.1:7001 for protocols iiop, t3, ldap, snmp, http.>
    <Oct 27, 2009 11:16:41 AM IST> <Notice> <WebLogicServer> <BEA-000331> <Started WebLogic Admin Server "AdminServer" for domain "zarDbDomain" running in Development Mode>
    <Oct 27, 2009 11:16:41 AM IST> <Warning> <Server> <BEA-002611> <Hostname "192.9.200.236", maps to multiple IP addresses: 192.9.200.236, 127.0.0.1>
    <Oct 27, 2009 11:16:41 AM IST> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to RUNNING>
    <Oct 27, 2009 11:16:41 AM IST> <Notice> <WebLogicServer> <BEA-000360> <Server started in RUNNING mode>
    <Oct 27, 2009 11:17:18 AM IST> <Error> <Security> <BEA-090064> <The DeployableAuthorizer "myrealm_weblogic.security.providers.xacml.authorization.XACMLAuthorizationProviderImpl" returned an error: weblogic.security.spi.ResourceCreationException: Security:090310Failed to create resource.>
    <Oct 27, 2009 11:17:20 AM IST> <Error> <Deployer> <BEA-149265> <Failure occurred in the execution of deployment request with ID '1256622425468' for task '0'. Error is: 'weblogic.application.ModuleException: Exception preparing module: EJBModule(netuix.jar)
    Unable to deploy EJB: ProxyPagePersistenceManager from netuix.jar:
    Exception while attempting to deploy Security Policy: weblogic.security.service.ResourceCreationException: weblogic.security.spi.ResourceCreationException: Security:090310Failed to create resource
    weblogic.application.ModuleException: Exception preparing module: EJBModule(netuix.jar)
    Unable to deploy EJB: ProxyPagePersistenceManager from netuix.jar:
    Exception while attempting to deploy Security Policy: weblogic.security.service.ResourceCreationException: weblogic.security.spi.ResourceCreationException: Security:090310Failed to create resource
    at weblogic.ejb.container.deployer.EJBModule.prepare(EJBModule.java:452)
    at weblogic.application.internal.flow.ModuleListenerInvoker.prepare(ModuleListenerInvoker.java:93)
    at weblogic.application.internal.flow.DeploymentCallbackFlow$1.next(DeploymentCallbackFlow.java:387)
    at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:37)
    at weblogic.application.internal.flow.DeploymentCallbackFlow.prepare(DeploymentCallbackFlow.java:58)
    Truncated. see log file for complete stacktrace
    weblogic.ejb20.interfaces.PrincipalNotFoundException: Exception while attempting to deploy Security Policy: weblogic.security.service.ResourceCreationException: weblogic.security.spi.ResourceCreationException: Security:090310Failed to create resource
    at weblogic.ejb.container.internal.SecurityHelperWLS.deployPolicy(SecurityHelperWLS.java:357)
    at weblogic.ejb.container.internal.SecurityHelper.deployPolicy(SecurityHelper.java:306)
    at weblogic.ejb.container.internal.SecurityHelper.deployPolicy(SecurityHelper.java:294)
    at weblogic.ejb.container.internal.SecurityHelper.deployAllPolicies(SecurityHelper.java:249)
    at weblogic.ejb.container.internal.SecurityHelper.deployAllPolicies(SecurityHelper.java:228)
    Truncated. see log file for complete stacktrace
    <Oct 27, 2009 11:17:20 AM IST> <Warning> <Deployer> <BEA-149004> <Failures were detected while initiating deploy task for application 'myPortalEAR'.>
    <Oct 27, 2009 11:17:20 AM IST> <Warning> <Deployer> <BEA-149078> <Stack trace for message 149004
    weblogic.application.ModuleException: Exception preparing module: EJBModule(netuix.jar)
    Unable to deploy EJB: ProxyPagePersistenceManager from netuix.jar:
    Exception while attempting to deploy Security Policy: weblogic.security.service.ResourceCreationException: weblogic.security.spi.ResourceCreationException: Security:090310Failed to create resource
    at weblogic.ejb.container.deployer.EJBModule.prepare(EJBModule.java:452)
    at weblogic.application.internal.flow.ModuleListenerInvoker.prepare(ModuleListenerInvoker.java:93)
    at weblogic.application.internal.flow.DeploymentCallbackFlow$1.next(DeploymentCallbackFlow.java:387)
    at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:37)
    at weblogic.application.internal.flow.DeploymentCallbackFlow.prepare(DeploymentCallbackFlow.java:58)
    Truncated. see log file for complete stacktrace
    weblogic.ejb20.interfaces.PrincipalNotFoundException: Exception while attempting to deploy Security Policy: weblogic.security.service.ResourceCreationException: weblogic.security.spi.ResourceCreationException: Security:090310Failed to create resource
    at weblogic.ejb.container.internal.SecurityHelperWLS.deployPolicy(SecurityHelperWLS.java:357)
    at weblogic.ejb.container.internal.SecurityHelper.deployPolicy(SecurityHelper.java:306)
    at weblogic.ejb.container.internal.SecurityHelper.deployPolicy(SecurityHelper.java:294)
    at weblogic.ejb.container.internal.SecurityHelper.deployAllPolicies(SecurityHelper.java:249)
    at weblogic.ejb.container.internal.SecurityHelper.deployAllPolicies(SecurityHelper.java:228)
    Truncated. see log file for complete stacktrace
    There is around 140 Tables created in mysql database...
    Is there anything wrong ?
    Regards
    Zarrakh

    Well.. When i runned the script for mysql from the weblogic domain configuration and compared the pointbase and mysql database.. i found that there are few tables, views and triggers that are missing in mysql db.. Could you telll me how can i create this missing tables, views and triggeres
    Regards

  • Checking against multiple domains

    Hi all
    The script below works perfectly fine, but I feel there is a better way to write it/condense it. We have a list of nearly 2,800 servers that we have to confirm which of the 8 domains they belong to. When I run this script from the root domain it checks against
    that domain and, if not a part of the root domain, then moves onto the first child domain, and then the next child domain, and so on.
    $servers = Get-Content c:\scripts\servers.txt
    foreach ($server in $servers){
      If (test-connection $server){
           write-host "Checking which domain $server is part of..."
           try {
                $a = Get-ADComputer -Identity $server
                Write-Host "$server is member of rootdomain"
           catch [Microsoft.ActiveDirectory.Management.ADIdentityNotFoundException] {
                 try {
                      $a = Get-ADComputer -Identity $server -server childdomain1
                      Write-Host "$server is member of childdomain1"
                 catch [Microsoft.ActiveDirectory.Management.ADIdentityNotFoundException] {
                      try {
                           $a = Get-ADComputer -Identity $server -server childdomain2
                           Write-Host "$server is member of childdomain2"
                      catch [Microsoft.ActiveDirectory.Management.ADIdentityNotFoundException]{
                           try {
                                $a = Get-ADComputer -Identity $server -server childdomain3
                                Write-Host "$server is member of childdomain3"
                           catch [Microsoft.ActiveDirectory.Management.ADIdentityNotFoundException]{
                                   Write-Host "$server not found on any domain"
      }Else{
            Write-Host "$server not responding"
    That's a lot of Try/Catch when you have 7 child domains, so I was wondering if there was a way to check against multiple domains in a better way.
    ~Rick

    While the method you suggest is easier if the list was flat, the list I am using is dynamic and the script will run against it every night. Essentially, it pulls from an XLS sheet in column A (hostname), looks to see if column B (domain) is empty, and if
    it is empty it then runs the script to pull specific details about the server. Once it captures the info it then populates the spreadsheet with the required details (IP, # of CPU cores, memory, storage size, OS, service pack, DNS details, etc...).
    Unfortunately we don't have SCCM to do something like this. The portion I copied above is just a small snip-it from the real script. I was hoping to simplify that portion so I could condense the script a little more.

  • Java client connecting to multiple weblogic instances

    We have a standalone java client JMS application that needs to connect to multiple
    Weblogic instances running in different domains.
    The client works fine when we obtain an initial context to the multiple instances
    without specifying a security principle and password. As soon as we add in this
    information, we get problems: The initial context is still successfully retrieved
    for each of the weblogic instances, but we cannot send JMS messages to destinations
    on one of the Weblogic instances due to a security exception which states that
    there is an 'Invalid Principal'.
    Any advice would be appreciated.

    You should first establish a trust relationship between your Weblogic
    servers:
    http://e-docs.bea.com/wls/docs70/secmanage/domain.html#1171534
    It is very poorly documented since this is a change in the behavior with
    previous versions and should have been in the Release Notes but instead
    is inside the normal documentation.
    --dejan
    jonathan wrote:
    Thanks Arvind, but both JVMs are the same (1.3.1) and there is no jsse stuff in
    the classpath.
    "Arvind Gudipati" <[email protected]> wrote:
    check if yr client's jvm version is the same as server's jvm.. ive noticed
    this problem a few times when i was using client jvm (1.4.x) connecting
    to
    server jvm (1.3.x).. also check if u have any jsse libraries in yr
    classpath.. if so remove 'em
    +arvind
    "Jonathan" <[email protected]> wrote in message
    news:3f2f9f19$[email protected]..
    We have a standalone java client JMS application that needs to connect
    to
    multiple
    Weblogic instances running in different domains.
    The client works fine when we obtain an initial context to the multiple
    instances
    without specifying a security principle and password. As soon as we
    add in
    this
    information, we get problems: The initial context is still successfully
    retrieved
    for each of the weblogic instances, but we cannot send JMS messages
    to
    destinations
    on one of the Weblogic instances due to a security exception which
    states
    that
    there is an 'Invalid Principal'.
    Any advice would be appreciated.

  • Modifying the script to include multiple domains

    Hi,
    The below script will start the servers by connecting to node manager for a particular domain. How can I modify the below script to include multiple servers which are from multiple domains.
    from java.util import Properties
    from java.io import FileInputStream
    from java.io import File
    from string import split
    def carryFileProperties(serverName) :
    print 'carrying properties of: ' + serverName
    #properties file to be loaded
    myProps = Properties()
    #load properties file
    myProps.load(FileInputStream(File(serverName)))
    return myProps
    def serversList(fileProperties):
    print 'selecting servers from the properties'
    servers = []
    properties = fileProperties.propertyNames()
    while properties.hasMoreElements():
    key = properties.nextElement()
    element = split(key, '_')
    if element[0] == 'SERVER':
    servers.append(key)
    print'LIST OF servers to initialize'
    for server in servers:
    print 'Server ==>> ' + fileProperties.get(server)
    return servers
    def startInstance():
    user = fileProperties.get('USER_ADM')
    passwd = fileProperties.get('USER_ADM_PASSWD')
    nmIP = fileProperties.get('NODEMANAGER_IP')
    nmPort = fileProperties.get('NODEMANAGER_PORT')
    domainName = fileProperties.get('DOMAIN_NAME')
    domainDirectory = fileProperties.get('DOMAIN_DIRECTORY')
    nmConnect(user,passwd, nmIP, nmPort, domainName, domainDirectory, 'plain', 'true')
    for server in servers:
    print 'requesting the server startup ' + fileProperties.get(server)
    nmStart(fileProperties.get(server), domainDirectory)
    fileProperties = carryFileProperties('servers.properties')
    servers = serversList(fileProperties)
    startInstance()
    below is the properties file
    NODEMANAGER_IP=localhost
    NODEMANAGER_PORT=5559
    DOMAIN_NAME=base_domain
    DOMAIN_DIRECTORY=/opt/weblogic/base_domain/
    USER_ADM=weblogic
    USER_ADM_PASSWD=weblogic
    SERVER_1=managedServer1
    SERVER_2=managedServer2
    ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

    I was able to answer myself

  • Help Setup KMS on single domain and active for multiple domain another

    Hi all,
    I have a problem about configure DNS for KMS host. My company use a single domain "abc.com". But I must mange more than 10 company different and they use another domain and dns running independently, they have a one lease line connect them together.
    My challenge is how to active all client on more than 10 company. Any ideas is very appreciate.
    Please help.
    Thanks,

    That's a good article suggested by Meinolf, but it's a little outdated.
    For an updated guide for this:
    https://technet.microsoft.com/en-us/library/ff793409.aspx
    Publishing to Multiple DNS Domains
    By default, the KMS host is registered only in the DNS domain to which the host belongs. If the network environment has only one DNS domain, no further action is required.
    If there is more than one DNS domain name, you can create a list of DNS domains for a KMS host to use when publishing its SRV RR. Setting this registry value suspends the KMS host’s default behavior of publishing only in the domain specified as the Primary
    DNS Suffix.
    Optionally, add priority and weight parameters to the
    DnsDomainPublishList registry value for KMS. This feature enables you to establish KMS host priority groupings and weighting within each group to define which KMS host to try first and balance traffic among multiple KMS hosts.
    Note   DNS changes might not be reflected until all DNS servers have been replicated. Changes made too frequently (time < replication time) can leave older records if the change is performed on a server that has not been
    replicated.
    To automatically publish KMS in multiple DNS domains, add each DNS domain suffix to whichever KMS should publish to the multi-string registry value
    DnsDomainPublishList in registry subkey HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SoftwareProtectionPlatform. After changing the value , restart the Software Licensing Service to create the SRV RRs.
    Note   This key has changed from the Windows Vista location of
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SL.
    After configuring a KMS host to publish to multiple domains, export the registry subkey, and then import it in to the registry on additional KMS hosts. To verify that this procedure was successful, check the Application event log on each KMS host. Event
    ID 12294 indicates that the KMS host successfully created the SRV RRs. Event ID 12293 indicates that the attempt to create the SRV RRs was unsuccessful. For a complete list of error codes, see the
    Volume Activation 2.0 Operations Guide at
    http://technet.microsoft.com/en-us/library/cc303695.aspx.
    Don
    (Please take a moment to "Vote as Helpful" and/or "Mark as Answer", where applicable.
    This helps the community, keeps the forums tidy, and recognises useful contributions. Thanks!)

  • Exchange setup for multiple domains

    We are planning to deploy Exchange server 2013, We have two companies and would like to create Email box for both the companies with same name.
    Example : [email protected], [email protected]
    We would like to have separte email boxes for the both companies. Please suggest us accordingly.

    That should be simple enough. Exchange can handle having multiple domains for sending / receiving and users can have multiple mailboxes configured in Outlook. The name field in Exchange doesn't need to be unique (the account name does obviously), so for
    instance there's no issue having "Fred Bloggs" <[email protected]> and "Fred Bloggs" <[email protected]> both setup.
    In a way the trickier part is setting it up in Outlook since different versions react differently. If you're using Outlook 2013 it should be quite straight forward. As you can see here
    http://technet.microsoft.com/en-us/library/ee815819.aspx the manual setup is easy enough for multiple exchange mailboxes, though auto mapping should work as well. If you're in a network AD
    environment (eg connecting using your local password), then realistically you'll want one mailbox to be primary which is associated to your network login, and then that login to have full access and send as permissions on the second mailbox.
    You may also need to deploy a reg key change to enable saving sent items from the second mailbox into that mailboxes sent items folder rather then the primary mailboxes (assuming you want to keep messages two and from both domains separate and in their own
    mailboxes). The reg key is listed here
    http://support.microsoft.com/kb/2843677 and is definitely needed in Outlook 2007 and 2010 but I'm not sure if it's still an issue if you're using Outlook 2013.

  • Autodiscover and outlook anywhere for multiple domains

    Hello
     I have exchange 2010 SP3 environment  which is currently in production. We have multiple domain names added to accepted domain and it’s working fine.
    I have two different public IP Address for MX (SMTP ) and OWA.
    following DNS records are created with ISP DNS Servers. Below find the example.
    MX Records
    Smtp.abc.com (10.1.202.10) (SMTP /MX)
    Smtp.zxc.com  (10.1.202.10) (SMTP /MX)- new domain
    Smtp.qwe.com  (10.1.202.10) (SMTP /MX) - new domain
    OWA and Autodiscover
    Mail.abc.com (10.1.202.2) (owa)
    Autodiscover.abc.com (10.1.202.2)
    Currently outlook anywhere and  outlook autodiscover  working for (mail.abc.com) domain without having any issues. All the other domain are failing errors when I’m testing the Remote connectivity Analyzer. When I’m trying configure the outlook
    profile it’s not resolving the domain name.
    OWA working for domain they also using the same url to access the OWA (https://Mail.abc.com/owa)
    Any idea how to resolve this issue.
    Aucsna

    Hi,
    Agree with Ed, generally, all names autodicover.SMTPAddressSuffix should be added in the certificate and Public DNS entries.
    Alternatively, you can refer to the following article to simplify the namespace in certificate:
    http://www.msexchange.org/articles-tutorials/exchange-server-2010/mobility-client-access/using-autodiscover-large-numbers-accepted-domains-part1.html
    Note: Microsoft is providing this information as a convenience to you. The sites are not controlled by Microsoft. Microsoft cannot make any representations regarding the quality, safety, or suitability of any software or information found there. Please make
    sure that you completely understand the risk before retrieving any suggestions from the above link.
    Thanks,
    Angela Shi
    TechNet Community Support

Maybe you are looking for