DSCP marking for non WMM-clients

Similar Messages

• Sharing Primary Site and Secondary Site's SUP WSUS for non-SCCM client use

  I was wondering if the WSUS deployed for the SCCM's SUP can also be (re)used for non-SCCM clients.
  Our SCCM infrastructure are mainly used to manage Workstations whereas our back-end servers are not deployed with SCCM agents due to overlapping SLAs and responsibilities. However, we would like to take advantage of WSUS's centralized update repository without
  each back-end servers initiating connection to the Internet to get their updates.
  Is this possible?

  No. WSUS servers that are used for SUPs are controlled by ConfigMgr and cannot be used outside ConfigMgr.
  Torsten Meringer | http://www.mssccmfaq.de

• Risk Management & Process controls for non SAP client

  Hi Forum Gurus,
  I need clarity on the following:  Can Risk managment 3.0 and Process controls be implemented for a non-SAP client?
  i.e. Our client does not run SAP, but they are interested in RM and PC, so is this possible to implement?
  Any advice would be highly appreciated.
  Kind regards,
  PREVO.

  Hi Prevo,
  Process control and Risk management 3.0 are delivered within same installation package files so it is same for both the applications .
  Also real time agents for Oracle or peoplesoft are avaialble if you want to leverage the automated control functionality of PC 3.0 in non SAP environment.
  Remember the automated control functionality is the optional feature of PC3.0.If you wish only to use the manual controls features of PC 3.0 you dont need RTAs(real time agent).
  You can find further information about manual controls at http://service.sap.com
  use the quicklink '/rkt' then the following menu path: SAP Business Objects for GRC Solutions -> SAP BO Process Control 3.0 -> Technology Consultant
  Regards
  Debraj

• Windows Domain Controller certificate for non domain clients

  Hi,
  Is it possible that we can export windows domain certificate and use it for non domain computers without joining domain, so that they can communicate each others without joining domain controller?
  Regards

  Hi,
  Is it possible that we can export windows domain certificate and use it for non domain computers without joining domain, so that they can communicate each others without joining domain controller?
  Not sure that what you want to achieve here.
  However, yes, it is possible to export certificates (with private keys) from domain machines then import them to non-domain machines, and some certificates can even function well based on key usages. Please note that Domain Controller certificates are only
  meaningful to Domain Controllers. Possession of domain certificates doesn’t indicate machines are part of domain.
  Without joining a machine to a domain (or without a trust), the machine is always treated as untrusted by the domain members no matter what kind of certificates it holds.
  Best Regards,
  Amy
  Please remember to mark the replies as answers if they help and un-mark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected]

• DHCP configuration for non-compliant clients

  So your question isn't for a live situation, but because you are studying for a test?

  hello!
  i have a question about network policy server..
  that is , how to configure DHCP server to lease IP address to non-compliant client??
  specifically for access to remediation servers
  thank you..
  This topic first appeared in the Spiceworks Community

• App-V 5 over https for non-domain clients

  Hello, Is this scenario possible?

  Hi,
  here's how I have it set in my lab. Your mileage may vary, but hopefully this should give you all the different components of how I managed to get it to work, and allow you to try something similar.
  Firstly, my publishing server is: HTTPS://CSC-APPV5.CSC.local:8016
  I have an application published through the app-v console, with the package URL configured to be:
  HTTPS://CSC-APPV5.CSC.local/APPVSHARE/Notepadplusplusx86/notepadplusplusx86.appv
  This is published to the AD group CSC.local\notepadplusplus, of which the user CSC.local\appvuser is a member of.
  On my Windows 8 non domain joined computer, Press Start, type "credential manager", and click on this option under settings.
  Click on "Windows Credentials", then click "Add a Windows credential".
  It will ask you for the Internet or network address. Based on the information I stated earlier, I entered the address: CSC-APPV5.CSC.local
  for User name, I entered: CSC.local\appvuser
  and lastly for password I entered the current valid credentials for this user.
  To test this, I then browsed to the publishing server mentioned above, but found that it still prompted me for a password (but remembered the user ID I had specified), and that the app-v client would not sync through powershell.
  I then added http://csc-appv5.csc.local into this devices local intranet zone (im sure you can avoid this step by adjusting a various number of settings, this was just the first quick test I performed).
  Browsing to the publishingserver address now no longer prompted for a username/pw - correctly showing the application published to this user. I then performed a restart (unlikely to be required, but I just wanted to have a clean run from a user perspective),
  and straight away, there was my shortcut to the appv application, and running it resulted in the normal streaming you would expect.
  The one thing I will add is I was very particular around fully quilifying everything, to eliminate this as a potential issue, and would be one of the first places I would start if you are attempting to troubleshoot why you were not able to get this to work.

• A Web application + API for non web clients

  Hi there,
  I am new to the java enterprise world, i have a query regarding the application i am developing currently, I am not sure this is the exact category to ask this question but please help me on this.
  In very simple terms my applications job is to give a listing or view of files distributed across network.
  For this I need to have a webApp which can provide a view to all web clients. (where view is nothing but listing of files independent of there location)
  Because this view tells nothing more than files , and i am as data center administrator cannot tell much about data, so we need to provide APIs so other applications (WebAPP or anything else)
  can present the view in more data specific terms.
  The webapp part is fine with me, but how do i support API being on an application server like glassfish.
  Please help me on this.
  Thanks in advance
  AP

  Dear all,
  Anyone can help me to clear this problem ?

• Cross-Certification for Non-Windows Clients

  Still trying to get more information on getting my SHA256 root CA certificate signed by my SHA1 root CA (temporarily), and having non-Windows entities recognize that:
  Creating Cross-Certification between two root CA's within the same organization (one hierarchy is all SHA1 and the other is all SHA256) and distributing the CrossCA certificate is painless enough for Forest members because it gets published to
  AD and from their comes down to the Forest member certificates store (Trusted Intermediary).  But what is the best way to get non-Windows end entities to also recognize the CrossCA certificate?  The RFC (http://tools.ietf.org/html/rfc5280#section-4.2.2.1)
  states you can configure the AIA extension to point to a collection of certificates, but then that means (unless I am missing something) I need to modify the AIA extensions configuration on my SHA256 root CA to point to the PKCS7 container on my http location,
  then issue my SHA256 SubCA certificates to my subordinate CA's.  So this way when my SHA256 subordinate CA's issue end entity certificates to non-Windows entities the chain of trust will go back to my SHA1 root CA.
  Both hierarchies are 2-tier.
  End Entity cert from SHA256 Subordinate CA --> http location specifying the location of the SHA256 SubCA .crt --> http location specifying the location of the exported Cross-Certification certificate in PKCS7 format (which contains the
  SHA256 root CA certificate and the SHA1 root CA certificate).
  Does this seem like the correct configuration?  If so, how easy will it be to remove this configuration when the cutover is complete?  If this is all correct then I assume the only way to remove this configuration is to modify the AIA extension
  of the SHA256 root CA and then issue new SubCA certificates to my SHA256 subordinates.

  Elke,
  Thank you for the information.  I defintely have some other options to consider now.
  One odd thing I noticed in my lab is my setup appears to work differently than you described.  In my lab I have a crossCA certificate which was published automatically into AD when it was issued.  Since that has happened even when issuing
  new certificates to end entities that are aware of the new SHA256 CA's (and Trust them), all certificates still chain back to my SHA1 root CA.  They don't take the short route anymore.
  And because of the above behavior I ran a quick test:
  - I installed a Windows 7 machine and never joined it to AD (kept it in a workgroup)
  - I manually imported the SHA1 root CA certificate into its certificates store
  - Then I accessed a web site running on a Windows web server which had an SSL certificate from one of the new SHA256 Subordinate CA's (and was part of the domain so it trusted the new SHA256 CA's).
  The result was the Windows 7 machine trusted the certificate just fine.
  When I looked at the certificate through IE on that Windows 7 machine, it showed the SSL certificate chaining back to my SHA1 root CA which I manually imported earlier, so it was trusted.
  Perhaps this is where setting constraints in the policy.inf file come into play...not 100% sure.
  Anyway, for the reasons you pointed out to me and the fact that anchoring my SHA256 environment with a SHA1 CA isn't really recommended, I am going to explore some other ways to get this done.
  Thank you.

• 1240AG WPA2 and PSK for non radius clients

  does this device support this options?
  We want to move to WPA2 enterprise and use our radius server (windows IAS), but we want to hand out a key to non domain computers. We have production machines that arent on the domain for various reasons.
  2nd question, does the AP allow for creating a 2nd "Guest" wireless for visitors?
  thanks!

  Hi Shayne,
  The Cisco 1240 supports WPA2/AES.Yes, the can provide different security policys via different SSIDs. For example:
  SSID#1 - Corporate - WPA2/AES 802.1X
  SSID#2 - CorporatePSK - WPA2/AES PSK
  SSID#3 - Guest
  There is a good deal of configuration to make this happen. But yes this is supported..
  Here is a link how to configure SSIDs on a autonomous access points
  http://www.cisco.com/en/US/docs/wireless/access_point/12.3_7_JA/configuration/guide/s37ssid.html
  Please be so kind to rate helpful post!

• Deliverables for non-Java clients

  I'm trying to write my first web service. My server code can be in Java but the client system cannot use Java anything. I'm looking at the Java web services tutorial provided by Sun and it seems to assume a Java client. Do I need to go elsewhere for a tutorial that will show me how to construct a web service that does not assume a Java client? I also won't be using the Sun ap server but tomcat, so I wonder if again that's a reason to not use the tutorial. Suggestions? Thanks.

  I'm trying to write my first web service. My server code can be in Java but the client system cannot use Java anything. I'm looking at the Java web services tutorial provided by Sun and it seems to assume a Java client. Do I need to go elsewhere for a tutorial that will show me how to construct a web service that does not assume a Java client? I also won't be using the Sun ap server but tomcat, so I wonder if again that's a reason to not use the tutorial. Suggestions? Thanks.

• Non-ACC client for WSIT enabled services

  Hallo All,
  Can anyone tell me how I could develop a non-ACC java client for SSL enabled web service/Reliable Messaging enabled web services.
  As of now, I am able to access these services with clients deployed in ACC containers of Glassfish V2UR1.
  I read some thing about glassfish connectors, but did not get a clear picture. I don't believe that Glassfish doesn't have support for non-ACC clients.
  Thanks a lot in advance.

  Hallo All,
  Can anyone tell me how I could develop a non-ACC java client for SSL enabled web service/Reliable Messaging enabled web services.
  As of now, I am able to access these services with clients deployed in ACC containers of Glassfish V2UR1.
  I read some thing about glassfish connectors, but did not get a clear picture. I don't believe that Glassfish doesn't have support for non-ACC clients.
  Thanks a lot in advance.

• How to see materials marked for deletion

  Which is the T-Code to see  materials marked for deletion . if yes where

  Hi RM,
  You can check material marked for deletion by using transaction code MM06.
  On this screen you can check whether material is marked for deletion at Client level, plant level, storage location level, valuation type level, Sales org level, Warehouse number level or storage type level.
  Hope this resolves your issue, reward if helpful.
  Regards,
  Avinash.

• SAP - Material Master- If a Material Record is marked for deletion

  If a Material Record is marked for deletion at client level, would this material be available for MRP runs and Physical inventory purpose.

  Hi Hemant
  If the material is just marked for deletion, it gives the flexibilty to revert back your decision and have them live. For this reason, the behavouir is controlled by system messages. The system will allow you to post inventory if the system message (M7 127)is configured as Warning under Materials Management --> Inventory Management and Physical Inventory --> Define Attributes of System Messages. The same way we can configure for Purchasing as well.
  But from a MRP run prespective, it will terminate as mentioned by Mario.
  If you want to get rid of a material from your system, then refer to the below thread
  how to delete material
  Best Regards
  Sathees Gopalan

• DSCP-Support for H.323-Messages

  Hi all,
  is it possible to priotize H.323-Messages like ARQ/LRQ with DSCP-marking, for example AF31???
  Regards,
  //Ronald

  I guess, this is not possible. The H323 data can be prioritised using DSCP marking. But the LRQ/ARQ may not be. If any such thing is possible, I would be interested to know that too.

• QoS application for Lync for Mac 2011 clients

  Hi guys,
  I'm deploying Lync 2013 at a customer site. We'll be applying QoS by enforcing static port ranges within Lync (CsConferencingConfiguration), and applying ACLs on the network equipment and dropping the various Lync modalities into the relevant QoS queue,
  pretty standard.
  Quick question. What's the expected behaviour for the Lync for Mac 2011 client. Will it honour the port ranges as defined on the Lync server conferencing configuration? Can't seem to find the answer anywhere online or in the forums.
  2nd question - does anyone know what the meaning of the following command:
  Set-CsMediaConfiguration -EnableQoS $True
  According to the TechNet
  article titled Enabling QoS for devices that are not based on Windows, it sounds like this command has some role to play in enabling QoS for non-Windows devices... just wondering if that includes Mac OS. Again, information is sketchy
  on this.
  Cheers, James.
  James Frost

  One way you can check is simply by running a WireShark capture on a Windows endpoint.  Either run a capture on the Mediation server to sniff a PSTN call, or as RTP traffic is point to point in a two-party call you can just call a Windows PC from the
  Mac.  Look for the DSCP section in the Internet Protocol area as shown in this non-Lync article:
  http://conceptsfortheroad.com/2012/06/how-to-verify-dscp-value-in-not-being-stripped/
  Or play with this filter "ip.dsfield.dscp == 46" to see if something is being sent at all.
  Hopefully someone has done a deep dive and will chime in, but I'd love to see your results!
  Please remember, if you see a post that helped you please click "Vote As Helpful" and if it answered your question please click "Mark As Answer".
  SWC Unified Communications