Deactivating server admin for DNS

Similar Messages

• HT1822 I don't find any application för Server Admin for my Mountain Lion at Mac app store as stated in the information. Where can I find it?

  Where can I find Server Admin after installing Mountain Lion? I can not find it on the store or anywhere? Please help, I need it to connect to my server from my other mac's, in order to administrate without logging in to the server.

  If you want the new OS X Server (Mountain Lion) look for "OS X Server" in the App Store.
  Server Admin no longer exists for OS X Server - the main functionality like Mail service and Open Directory has been simplified and integrated within the new server app.
  The optional Server Admin add-on for Lion was only available from the Apple support site, not from the App store.

• Can't create DNS zones in Server Admin

  Hi All,
  So, I've run into this strange problem where when configuring the zone files for the DNS server in Server Admin that clicking on the + button doesn't do anything. I've re-installed Tiger Server including reformating the disk and still nothing.
  Can anyone tell me where the zone file is kept. It might be better just to make my own unless anyone can tell me why the + button isn't working.
  Thanks much!

  Definitely better to make your own, if you know how (lots of good google-able docs on this). Using Server Admin for DNS zone files is dicey at best.
  BIND config file is located at '/etc/named.conf'
  Zone files live in '/var/named/.' Primary zone files are named 'myDomain.com.zone' and secondary files are named 'myDomain.com.bak'
  Feel free to email me if you need some default files.
  Can anyone tell me where the zone file is kept. It
  might be better just to make my own unless anyone can
  tell me why the + button isn't working.
  iBook G4   Mac OS X (10.4.3)  

• No DNS zones in server admin

  Here's my log: 
  Oct 21 12:49:25 server servermgrd[2019]: -[DNSManagerRRMgr bindZoneDB]: Unable to load zone database (RRs) for "***.com" from file "/var/named/db.***.com": CNAME and other data

  Definitely better to make your own, if you know how (lots of good google-able docs on this). Using Server Admin for DNS zone files is dicey at best.
  BIND config file is located at '/etc/named.conf'
  Zone files live in '/var/named/.' Primary zone files are named 'myDomain.com.zone' and secondary files are named 'myDomain.com.bak'
  Feel free to email me if you need some default files.
  Can anyone tell me where the zone file is kept. It
  might be better just to make my own unless anyone can
  tell me why the + button isn't working.
  iBook G4   Mac OS X (10.4.3)  

• Server Admin keeps overwriting my manual DNS entries

  Hi,
  In Lion's DNS server I need to create PTR records for which my DNS server doesn't hold the corresponding forward lookup (I'm on a large .edu network).  I can't find a way to do this in Server Admin as it won't let you manually enter a reverse record, and creating the forward record to create the reverse automatically appends my sub-domain to the address (these names, which point to addresses on subnets I manage, are in a different sub-domain).  I really just need a working reverse lookup and don't want the forward lookup.  I tried creating the records manually in the reverse zone files and they work for a while, but whenever I go into Server Admin for day to day maintenance (or seemingly at random even when I don't), my manually entered records get erased.  Has anyone out there found a way to make this work?
  Thanks

  Hi
  "Has anyone out there found a way to make this work?"
  Yes. Once you make manual changes to the config files themselves you wave bye bye to Server Admin. Basically stick with the command line when dealing with Services that have been manually configured. It's well known Server Admin has always 'behaved' this way since at least 10.3.
  My 2p.
  HTH?
  Tony

• Server Admin completely Useless for advanced apache configurations?

  If you are doing things like rewrites with mod_rewrite Server Admin messes up the config e.g. by removing duplicate but necessary rewrite conditions. Further the site edit thing at all has some very strange bugs I can't really describe - it does some weird renaming and so on. Realms and Webdav seems to be problematic to as soon as you need to modify something by hand.
  In short - Server Admin is still not usable for productive Apache deployment. Apple should have a look on Tenon iTools or other tools out there which don't mess with your config so much.
  For myself I decided not to use Server Admin for apache Administration anymore cause I am frightened.
  Maybe I am wrong - If yes try to tell me how to get things right with it.

  Server Admin provides a simple front-end for many common tasks. If you need more flexibility, then you may find that you need to edit the configuration file yourself.
  There is a config file which is included into httpd.conf but which Server Admin never touches, and you should put your custom configuration directives into that. You shouldn't modify the file which Server Admin is responsible for
  I forget what the different files are called, I don't have access to an installation of Server at the moment; however there are useful comments in httpd.conf which explain it IIRC.

• Print Queue Management via Server Admin not working

  We have Xserves (10.5.8) running the Print Service for queue management to our printers. Clients print through the server just fine.
  When the printer jams or is otherwise paused, print jobs pile up in the queue as expected. The queue can be seen and managed by logging into the server, going to Server Preferences/Print & Fax and selecting the print queue.
  However, when the queue for the paused printer is viewed within Server Admin/Print, the queue shows as empty and therefore can't be managed. We want to use Server Admin for this function because:
  1) Server Admin can be run remotely on a workstation, so no login to the server required.
  2) We can assign Print Service management rights to select non-admins so they can manage the queues.
  Any ideas on why Server Admin fails to show spooled jobs? Is it working for anyone else?
  I am using Server Admin version 10.5.3 which are the latest available that comes with Server Admin Tools 10.5.7. We had been running 10.5.7 on the Xserve and it didn't work then either.

  Here's a bit more information about our setup and our experiences with Apple's CUPS implementation:
  On the server, all printer queues are set up with only lpr and ipp sharing enabled with the PPD setting for each printer set to Generic Postscript. We found that setting the PPD to the printer specific one on the server caused problems when clients tried to use printer specific options, like paper tray selection, etc.. The selection would be undone, apparently because the driver on the server would override the previous settings. Using Generic Postscript allows the client PPD settings to go through unmodified. Our printers are general a mix of HP LaserJets and some Sharp Copiers.
  All clients use lpd to the server queues with the printers' actual PPDs configured. Using ipp is superior in that printer feedback (jams, out of toner, etc) makes it back to the clients, but ipp only works when the client, the server, and the printer are on the same network. If the ipp client is not on the same network, the client spooler immediately goes into a paused state and the print job is stuck on the client.
  Using lpd to the server queues works reliably, but there is no feedback to the client. Jobs disappear from the client queue and go to the server, appearing to the user as a successful print. If the printer is down, there's nothing they can see or do about it.

• Server Admin stop working

  Hi,
  I'm logged in to the xserve and start the Server Admin application. Normally it would see itself not problem. But now it is not. In a terminal window I see with the command ps that there is a "servermgrd -x" running. All the services that are on seem OK, but I cannot monitor them with "Server Admin". Any hints on how I can get the "Server Admin" monitoring back?

  Hi,
  I'm having the same issue here on an xserve with Snow Leopard Server.
  I have just freshly installed and updated to 10.6.5, everything was fine. I'm running it as an OD Master connected to AD. I read the reports about apple pulling back the 10.6.5 update and decided to re-do the newly released 10.6.5 update. Since then I cannot connect in Server Admin.
  DNS is fine via changeip -checkhostname and forward and reverse is ok via dig. No matter what I type in Server Admin, IP, server.local or fqdn, it still states it cannot connect. I have tried connecting via an older version Of SA on another machine with the same error, and also trying to connect to other good servers on 10.6.4 via 10.6.5 Server Admin, same error though..cannot connect.
  I have a proxy and tried entering the server in the bypass option and also turning the proxy completely off.
  All clients are connecting ok though, and there doesn't seem anything bad going on in system.log
  I have deleted /Home/Library/Preferences/com.apple.serveradmin.plist with no success.
  Re-booted numerous times also.
  are you on 10.6.5 mtlgeek ? what have you tried ?
  Any suggestion anyone?....please

• Server Admin: Certificate Icon Disappearing

  When I launch Server Admin 10.6.3 on my powerbook in order to connect to my OS X Server 10.5.8, I am unable to add Certificates.
  Initially, when the server isn't connected yet, the "Certificate Icon" appears in the toolbar:
  (Overview) (Logs) (File Sharing) (Server Updates) (Certificates) (Access) (Settings)
  but as soon as it connects (green dot), the icon disappears:
  (Overview) (Logs) (File Sharing) (Server Updates) (Access) (Settings)
  Has anyone experienced this, or have any tips on where I can look for answers?

  I also am having this problem in Server Admin for 10.6.4. No solutions?

• Fix the Server Admin UI for DNS

  Apple.
  DNS is a fairly important service as you know. I don't have time to edit zone entries manually and then also adjust reverse entries.
  The Server Admin UI for DNS has been broken for a long while now.
  Please.
  Fix it.
  Regards,
  Mezza

  I agree that the DNS GUI in Server Admin is bad and should never have been released as it is. It should at least have the option to be disabled. That way, the limited and somewhat useless config files the GUI generates wouldn't overwrite painstakenly edited config files. Why does my mail server have to sit on the same domain? Why does my primary DNS have to exist within the created domain? Anyway enough complaining. On to solutions...
  I would recommend you download "Webmin". It has a great interface for managing DNS and can do everything you should need. Keep in mind, for all my complaints about Server Admin Tool, it does keep you from adding multiple A records for the same IP which really shouldn't be done. "Webmin" will allow you to do just about anything you want to with DNS. It can be found at:
  http://www.webmin.com
  Hope that helps.

• Remote Server Admin not working from outside of network for 1 server

  Our company recently changed ISPs and I had to change our two 10.4 server's IP addresses. We have a mail server (intel xserve) and a file/web server (quicksilver g4). Both servers have two network cards in them. The problem is two-fold:
  1- I can successfully manage the Xserve machine locally on our network and from my home. However, I can only manage the Quicksilver g4 server locally. Any kind of external access is not even acknowledged.
  2- I'm not sure if I missed any steps when changing IP addresses for these server-based computers. Also, I'm not sure if I correctly set our dns names to the correct IP address.
  For some background, this is the exact IP update process I used for each server:
  Quicksilver G4 (file/web server) - Installed network card #2 and configured it with the new Public IP in the "System Preferences/Network" panel. In Server Admin I set our website to use the new public IP address. (network card #2 has no firewall device in between it and the internet.)
  Then, I configured the default network card #1 to a static, yet private IP address that's behind our DLink firewall device with the rest of our network.
  Intel Xserve (e-mail server) - Network card #1 was the only one setup before our network change. It had a static, public IP address. When we changed ISPs, I configured network card #2 to the new static, public IP address supplied to us by the new ISP in the "System Preferences/Network" panel. This new IP address is where all email traffic currently gets pointed to. (All mail is successfully sent and delivered.) Until our former ISP gets shutdown, I still have network card #1 configured to the older static public IP address. After the old ISP is shut off, I plan on changing network card #1 to a static, private address.
  Any assistance would be greatly appreciated.
    Mac OS X (10.4.8)  

  What should I check in AD?  I am by no means an expert with AD.
  Yes, I am using the same client OS.
  I am talking about RDP over the internet, like from home to the office.  We have a static IP assigned to the router from ISP.  A static internal IP assigned to the server on the LAN.  And the router port forwards 3389 to the assigned IP. 
  It was working fine before we reinstalled Server 2012.  These are the steps I took when reinstalling:
  1. format drive and install OS
  2. rename the server
  3. install SQL server
  4. Install TFS and SharePoint
  5. Add Active Directory role and promote to Domain Controller
  6. Add domain users
  7. Enable remote access on the server and add users to remote access list

• DNS setup on server bound to AD and using domain controllers for DNS

  My server is bound to our AD network and in the network pref I have entered the two IPs for the domain controllers on our network that serve DNS.
  My question is, am I right not to enable/configure and start the DNS service on the Mac server since it is getting DNS already?
  If yes, how do I confirm that my Mac server is correctly listed in our domain controllers DNS? Should I be concerned that I get the following?
  knws3135:~ mactech$ sudo changeip -checkhostname
  Password:
  Primary address = 10.31.3.135
  Current HostName = knws3135.ad.ewsad.net
  The DNS hostname is not available, please repair DNS and re-run this tool.

  Hi
  It looks all OK to me? As for the hostname having capitals could pose a problem but only if the Mac Server was its own KDC. Which it is not. If the hostname is defined as you have it now in the AD's DNS Service then leave it alone.
  Sometimes even when DNS checks out OK you can still have fundamental errors that only demotion to Standalone will cure. I think this is the point that you are at now. To be honest I would do this. Judging from what you've said there would be very little to lose when you do this apart from managed preferences. These can easily be re-applyed on successful promotion.
  needs to be changed so it is configured in Open Directory as connected to a Directory Server
  Not sure what you mean by this?
  If you have or are about to update your Server to 10.5.4 - which I recommend you do. Then you could follow this procedure:
  Demote to Standalone
  Stop all Services
  Restart the Server
  Update to 10.5.4. Restart the Server (this happens anyway)
  Make sure your Server resolves on the forward and reverse pointers (again)
  If you want run changeip again (you may be surprised)
  Use the Active Directory plug in in Directory Utility to bind the Server to the AD. Make sure you use an AD admin account that has authority to do this. De-select 'force home directory creation on startup disk' I have a feeling this will be de-selected anyway.
  After successful binding quit out of Directory Utility and launch Server Admin
  Select the Open Directory Service
  Change the role from Standalone to Open Directory Master
  Create the Directory Administrator account's username and password. Don't be tempted to change the UID or use the system admin account's user name. You can use the same password if you wish. What I've done before in the past is to create the diradmin account on the AD first with full authority for the domain.
  On successful promotion you should now see in the Overview Pane everything running apart from Kerberos which should be Stopped. This is how it should be. Apple's 10.5.4 Update has took a lot of the donkey work out of this whole process. No need for the command line. Simply click.
  If you launch Directory Utility you should now see the server's loopback address has been added in the LDAPv3 Plugin. Also the Server should be topmost in the Search Order under the Authentication and Contacts field. Bind your clients first to the AD and then the OD (make sure use for authentication and contacts are unchecked).
  Browse the two nodes, add your groups and apply MCX in the usual way.
  Does this help?
  Tony

• Unable to start admin server service for weblogic (startWebLogic.sh) Linux

  I installed ECM 11g on Linux 64-bit , installed weblogic 12
  so when I try to start admin server service for weblogic (startWebLogic.sh) and following error its showing
  I found solution to give full access permeation for the user , but it's still same issue
  and i am triyng to start services from the users how installed the Weblogic and ECM
  bash-4.1$ '/home/ecm/Oracle/Middleware/user_projects/domains/ecm_domain/startWebLogic.sh' .
  JAVA Memory arguments: -Xms256m -Xmx512m -XX:CompileThreshold=8000 -XX:PermSize=128m -XX:MaxPermSize=512m
  WLS Start Mode=Development
  CLASSPATH=/home/ecm/Oracle/Middleware/oracle_common/modules/oracle.jdbc_11.1.1/ojdbc6dms.jar:/home/ecm/Oracle/Middleware/patch_wls1211/profiles/default/sys_manifest_classpath/weblogic_patch.jar:/home/ecm/Oracle/Middleware/patch_ocp371/profiles/default/sys_manifest_classpath/weblogic_patch.jar:/usr/lib/jvm/jdk1.6.0_33/lib/tools.jar:/home/ecm/Oracle/Middleware/wlserver_12.1/server/lib/weblogic_sp.jar:/home/ecm/Oracle/Middleware/wlserver_12.1/server/lib/weblogic.jar:/home/ecm/Oracle/Middleware/modules/features/weblogic.server.modules_12.1.1.0.jar:/home/ecm/Oracle/Middleware/wlserver_12.1/server/lib/webservices.jar:/home/ecm/Oracle/Middleware/modules/org.apache.ant_1.7.1/lib/ant-all.jar:/home/ecm/Oracle/Middleware/modules/net.sf.antcontrib_1.1.0.0_1-0b2/lib/ant-contrib.jar:/home/ecm/Oracle/Middleware/oracle_common/soa/modules/commons-cli-1.1.jar:/home/ecm/Oracle/Middleware/oracle_common/soa/modules/oracle.soa.mgmt_11.1.1/soa-infra-mgmt.jar:/home/ecm/Oracle/Middleware/oracle_common/modules/oracle.jrf_11.1.1/jrf.jar:/home/ecm/Oracle/Middleware/wlserver_12.1/common/derby/lib/derbyclient.jar:/home/ecm/Oracle/Middleware/wlserver_12.1/server/lib/xqrl.jar:/home/ecm/Oracle/Middleware/Oracle_ECM1/ucm/idc/jlib/idcloader.jar:/home/ecm/Oracle/Middleware/Oracle_ECM1/ucm/idc/components/NativeOsUtils/classes-NativeOsUtils.jar
  PATH=/home/ecm/Oracle/Middleware/wlserver_12.1/server/bin:/home/ecm/Oracle/Middleware/modules/org.apache.ant_1.7.1/bin:/usr/lib/jvm/jdk1.6.0_33/jre/bin:/usr/lib/jvm/jdk1.6.0_33/bin:/usr/lib64/qt-3.3/bin:/usr/local/bin:/usr/bin:/bin:/usr/local/sbin:/usr/sbin:/sbin:/home/ecm/bin
  * To start WebLogic Server, use a username and *
  * password assigned to an admin-level user. For *
  * server administration, use the WebLogic Server *
  * console at http://hostname:port/console *
  starting weblogic with Java version:
  java version "1.6.0_33"
  Java(TM) SE Runtime Environment (build 1.6.0_33-b04)
  Java HotSpot(TM) 64-Bit Server VM (build 20.8-b03, mixed mode)
  Starting WLS with line:
  /usr/lib/jvm/jdk1.6.0_33/bin/java -client -Xms256m -Xmx512m -XX:CompileThreshold=8000 -XX:PermSize=128m -XX:MaxPermSize=512m -Dweblogic.Name=AdminServer -Djava.security.policy=/home/ecm/Oracle/Middleware/wlserver_12.1/server/lib/weblogic.policy -Xverify:none -Djava.endorsed.dirs=/usr/lib/jvm/jdk1.6.0_33/jre/lib/endorsed:/home/ecm/Oracle/Middleware/wlserver_12.1/endorsed -da -Dplatform.home=/home/ecm/Oracle/Middleware/wlserver_12.1 -Dwls.home=/home/ecm/Oracle/Middleware/wlserver_12.1/server -Dweblogic.home=/home/ecm/Oracle/Middleware/wlserver_12.1/server -Dcommon.components.home=/home/ecm/Oracle/Middleware/oracle_common -Djrf.version=11.1.1 -Dorg.apache.commons.logging.Log=org.apache.commons.logging.impl.Jdk14Logger -Ddomain.home=/home/ecm/Oracle/Middleware/user_projects/domains/ecm_domain -Djrockit.optfile=/home/ecm/Oracle/Middleware/oracle_common/modules/oracle.jrf_11.1.1/jrocket_optfile.txt -Doracle.server.config.dir=/home/ecm/Oracle/Middleware/user_projects/domains/ecm_domain/config/fmwconfig/servers/AdminServer -Doracle.domain.config.dir=/home/ecm/Oracle/Middleware/user_projects/domains/ecm_domain/config/fmwconfig -Digf.arisidbeans.carmlloc=/home/ecm/Oracle/Middleware/user_projects/domains/ecm_domain/config/fmwconfig/carml -Digf.arisidstack.home=/home/ecm/Oracle/Middleware/user_projects/domains/ecm_domain/config/fmwconfig/arisidprovider -Doracle.security.jps.config=/home/ecm/Oracle/Middleware/user_projects/domains/ecm_domain/config/fmwconfig/jps-config.xml -Doracle.deployed.app.dir=/home/ecm/Oracle/Middleware/user_projects/domains/ecm_domain/servers/AdminServer/tmp/_WL_user -Doracle.deployed.app.ext=/- -Dweblogic.alternateTypesDirectory=/home/ecm/Oracle/Middleware/oracle_common/modules/oracle.ossoiap_11.1.1,/home/ecm/Oracle/Middleware/oracle_common/modules/oracle.oamprovider_11.1.1 -Djava.protocol.handler.pkgs=oracle.mds.net.protocol -Dweblogic.jdbc.remoteEnabled=false -Dipm.oracle.home=/home/ecm/Oracle/Middleware/Oracle_ECM1 -Ducm.oracle.home=/home/ecm/Oracle/Middleware/Oracle_ECM1 -Dem.oracle.home=/home/ecm/Oracle/Middleware/oracle_common -Djava.awt.headless=true -Dweblogic.management.discover=true -Dwlw.iterativeDev= -Dwlw.testConsole= -Dwlw.logErrorsToConsole= -Dweblogic.ext.dirs=/home/ecm/Oracle/Middleware/patch_wls1211/profiles/default/sysext_manifest_classpath:/home/ecm/Oracle/Middleware/patch_ocp371/profiles/default/sysext_manifest_classpath weblogic.Server
  <Sep 12, 2012 12:08:02 PM EEST> <Info> <Security> <BEA-090905> <Disabling CryptoJ JCE Provider self-integrity check for better startup performance. To enable this check, specify -Dweblogic.security.allowCryptoJDefaultJCEVerification=true>
  <Sep 12, 2012 12:08:03 PM EEST> <Info> <Security> <BEA-090906> <Changing the default Random Number Generator in RSA CryptoJ from ECDRBG to FIPS186PRNG. To disable this change, specify -Dweblogic.security.allowCryptoJDefaultPRNG=true>
  <Sep 12, 2012 12:08:03 PM EEST> <Info> <WebLogicServer> <BEA-000377> <Starting WebLogic Server with Java HotSpot(TM) 64-Bit Server VM Version 20.8-b03 from Sun Microsystems Inc..>
  <Sep 12, 2012 12:08:04 PM EEST> <Info> <Management> <BEA-141107> <Version: WebLogic Server Temporary Patch for 13340309 Thu Feb 16 18:30:21 IST 2012
  WebLogic Server Temporary Patch for 13019800 Mon Jan 16 16:53:54 IST 2012
  WebLogic Server Temporary Patch for BUG13391585 Thu Feb 02 10:18:36 IST 2012
  WebLogic Server Temporary Patch for 13516712 Mon Jan 30 15:09:33 IST 2012
  WebLogic Server Temporary Patch for BUG13641115 Tue Jan 31 11:19:13 IST 2012
  WebLogic Server Temporary Patch for BUG13603813 Wed Feb 15 19:34:13 IST 2012
  WebLogic Server Temporary Patch for 13424251 Mon Jan 30 14:32:34 IST 2012
  WebLogic Server Temporary Patch for 13361720 Mon Jan 30 15:24:05 IST 2012
  WebLogic Server Temporary Patch for BUG13421471 Wed Feb 01 11:24:18 IST 2012
  WebLogic Server Temporary Patch for BUG13657792 Thu Feb 23 12:57:33 IST 2012
  WebLogic Server 12.1.1.0 Wed Dec 7 08:40:57 PST 2011 1445491 >
  <Sep 12, 2012 12:08:06 PM EEST> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to STARTING.>
  <Sep 12, 2012 12:08:06 PM EEST> <Info> <WorkManager> <BEA-002900> <Initializing self-tuning thread pool.>
  <Sep 12, 2012 12:08:06 PM EEST> <Notice> <LoggingService> <BEA-320400> <The log file /home/ecm/Oracle/Middleware/user_projects/domains/ecm_domain/servers/AdminServer/logs/AdminServer.log will be rotated. Reopen the log file if tailing has stopped. This can happen on some platforms, such as Windows.>
  <Sep 12, 2012 12:08:06 PM EEST> <Notice> <LoggingService> <BEA-320401> <The log file has been rotated to /home/ecm/Oracle/Middleware/user_projects/domains/ecm_domain/servers/AdminServer/logs/AdminServer.log00009. Log messages will continue to be logged in /home/ecm/Oracle/Middleware/user_projects/domains/ecm_domain/servers/AdminServer/logs/AdminServer.log.>
  <Sep 12, 2012 12:08:06 PM EEST> <Notice> <Log Management> <BEA-170019> <The server log file /home/ecm/Oracle/Middleware/user_projects/domains/ecm_domain/servers/AdminServer/logs/AdminServer.log is opened. All server side log events will be written to this file.>
  Sep 12, 2012 12:08:09 PM oracle.security.jps.internal.keystore.file.FileKeyStoreManager openKeyStore
  WARNING: Opening of file based keystore failed.
  <Sep 12, 2012 12:08:09 PM EEST> <Error> <Security> <BEA-090892> <The loading of OPSS java security policy provider failed due to exception, see the exception stack trace or the server log file for root cause. If still see no obvious cause, enable the debug flag -Djava.security.debug=jpspolicy to get more information. Error message: JPS-06514: Opening of file based keystore failed.>
  <Sep 12, 2012 12:08:09 PM EEST> <Critical> <WebLogicServer> <BEA-000386> <Server subsystem failed. Reason: weblogic.security.SecurityInitializationException: The loading of OPSS java security policy provider failed due to exception, see the exception stack trace or the server log file for root cause. If still see no obvious cause, enable the debug flag -Djava.security.debug=jpspolicy to get more information. Error message: JPS-06514: Opening of file based keystore failed.
  weblogic.security.SecurityInitializationException: The loading of OPSS java security policy provider failed due to exception, see the exception stack trace or the server log file for root cause. If still see no obvious cause, enable the debug flag -Djava.security.debug=jpspolicy to get more information. Error message: JPS-06514: Opening of file based keystore failed.
       at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.loadOPSSPolicy(CommonSecurityServiceManagerDelegateImpl.java:1402)
       at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.initialize(CommonSecurityServiceManagerDelegateImpl.java:1022)
       at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:873)
       at weblogic.security.SecurityService.start(SecurityService.java:148)
       at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
       Truncated. see log file for complete stacktrace
  Caused By: oracle.security.jps.JpsRuntimeException: JPS-06514: Opening of file based keystore failed.
       at oracle.security.jps.internal.policystore.PolicyDelegationController.<init>(PolicyDelegationController.java:167)
       at oracle.security.jps.internal.policystore.JavaPolicyProvider.<init>(JavaPolicyProvider.java:369)
       at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
       at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:39)
       at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:27)
       Truncated. see log file for complete stacktrace
  Caused By: oracle.security.jps.JpsException: JPS-06514: Opening of file based keystore failed.
       at oracle.security.jps.internal.policystore.PolicyUtil.getDefaultPDPService(PolicyUtil.java:2855)
       at oracle.security.jps.internal.policystore.PolicyUtil.getPDPService(PolicyUtil.java:3097)
       at oracle.security.jps.internal.policystore.PolicyDelegationController.<init>(PolicyDelegationController.java:164)
       at oracle.security.jps.internal.policystore.JavaPolicyProvider.<init>(JavaPolicyProvider.java:369)
       at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
       Truncated. see log file for complete stacktrace
  Caused By: oracle.security.jps.service.keystore.KeyStoreServiceException: JPS-06514: Opening of file based keystore failed.
       at oracle.security.jps.internal.keystore.file.FileKeyStoreManager.openKeyStore(FileKeyStoreManager.java:374)
       at oracle.security.jps.internal.keystore.file.FileKeyStoreServiceImpl.doInit(FileKeyStoreServiceImpl.java:104)
       at oracle.security.jps.internal.keystore.file.FileKeyStoreServiceImpl.<init>(FileKeyStoreServiceImpl.java:76)
       at oracle.security.jps.internal.keystore.file.FileKeyStoreServiceImpl.<init>(FileKeyStoreServiceImpl.java:66)
       at oracle.security.jps.internal.keystore.KeyStoreProvider.getInstance(KeyStoreProvider.java:157)
       Truncated. see log file for complete stacktrace
  >
  <Sep 12, 2012 12:08:09 PM EEST> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to FAILED.>
  <Sep 12, 2012 12:08:09 PM EEST> <Error> <WebLogicServer> <BEA-000383> <A critical service failed. The server will shut itself down.>
  <Sep 12, 2012 12:08:09 PM EEST> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to FORCE_SHUTTING_DOWN.>
  bash-4.1$

  Looks to be a cert or keystore issue. How do you have that setup?

• Server Admin Doesn't show info for Software Update Service

  In server admin, under the settings and available updates, I see a list of available updates, but they are labelled with the hash code for the update, not the name, and the info panel doesn't show any information like it should. We have our corporate firewall configured to allow connections to the server apple uses for this service so that we can get the updates. Any suggestions?

  That option is only available after upgrading to iOS 5. It appears you have a 2nd generation unit, which can not be upgraded beyond iOS 4.2.1.

• Configure directiry server failover for delegated admin schema 2

  Hello,
  I am using Delegated Admin for Schema 2 on solaris 9 sparc platform.
  I want to configure directory servers failover for delegated admin.
  Unfortunately I havent found any clue for the same.
  Can anyone help me?
  Regards,
  Shujaat Nazir
  Senior System Engineer
  Cyber Internet Services, Pakistan
  http://www.cyber.net.pk

  Different product.
  Schema 1 used the old iPlanet Delegated Admin.
  Schema 2 uses Delegated Admin, based on Identity Server.
  As far as I know, failover is not in this product.