How to setup Mobile Access Server

Similar Messages

• Mobile Access Server setup

  So, I'm setting up a 10.6.1 server in the DMZ to be a Mobile Access Server to reverse proxy mail, calendaring, and web. Couple issues I have:
  1. I want to manage this DMZ server from a different internal 10.6.1 Server inside my network. I have turned on Remote Management on the DMZ server, but cannot connect from Server Admin on the internal server to the DMZ server. I need to be able to manage both servers from one Server Admin console. I also need to be able to screen share the DMZ server for access ONLY from the internal server. How do I accomplish this?
  2. My internal 10.6.1 server is my Open Directory Master already, and working nicely. But to use Mobile Access Server and reverse proxy services back to the internal server, I need the DMZ server to be aware of my existing directory inside. Would I want to make the DMZ server an Open Directory Replica, or should I use the middle option for Open Directory types called "Connect to another directory"? Obviously, I know that it should NOT be another master.
  3. I have purchased and implemented a wildcard cert on my internal 10.6.1 server to use for TLS, HTTPS, etc. I have also told the Open Directory Master to use ssl for the LDAP piece of it (there's a GUI option for that). Figured I might as well secure everything I can a bit more since I purchased the cert. What effect will this have on Question 2 above? Will I need to open a different port for instance on the firewall for LDAP over SSL? Or any issues with creating a Replica or "connect to another OD server" on the OD server in the DMZ to get it to connect to the internal OD Master?
  Thanks for all the help here.

  To your #1: When you use a firewall to place a device in a DMZ, that device is not part of the internal network. It 'technically' sits on the outside of the firewall at nearly the same place as your external connection.
  Some discussions about a firewall use colors to designate the 'data protection' level or 'threat' vector.
  (Below was 'borrowed' from http://riskless.com/firewall_configuration.aspx)
  * RED Network Interface
  This network is the Internet or other untrusted network. IPCop’s primary purpose is to protect the GREEN, BLUE and ORANGE networks and their computers from traffic originating on the RED network. Your current connection method and hardware are used to connect to this network.
  * GREEN Network Interface
  This interface only connects to the computer(s) that IPCop is protecting. It is presumed to be local. Traffic to it is routed though an Ethernet NIC on the IPCop computer firewall.
  * BLUE Network Interface
  This optional network allows you to place wireless devices on a separate network. Computers on this network cannot get to the GREEN network except tightly controlled “pinholes”, or via a VPN. Traffic to this network is routed through an Ethernet NIC.
  * ORANGE Network Interface
  This optional network allows you to place publicly accessible servers on a separate network. Computers on this network cannot get to the GREEN or BLUE networks, except through tightly controlled “DMZ pinholes”. Traffic to this network is routed through an Ethernet NIC.
  * The GREEN and RED networks are required
  * The ORANGE and BLUE networks are optional
  The interface requirements for your RED network will vary depending on your connection to the Internet. The RED network may require an additional Ethernet card and cable.
  you can also read up all this from a more neutral article here: http://www.ocmodshop.com/ocmodshop.aspx?a=1526
  The point of all this is that, depending on 'where' the dat is comgin from , it either is denied access ,or must be 'punched through' to allow access. Her is a diagram of that process (from a linux firewall called ipcop)
  !http://www.ipcop.org/1.4.0/en/admin/images/traffic.png!
  Soaccess from inside (your network) to your DMZ device should work without any trouble but from DMZ to inside should require ports to be opened up. On most Firewalls, they call this port access 'Pin Holes' as the DMZ is itself protected by only allowing the ip address of that network into through the firewall. Possibly Your firewall is not doing any kind of Statefull Packet Inspection so all conversations must have a pinhole to come 'back' out of the dmz? Tell us your firewall brand and that might help.
  #2: I would use "Connect to another directory". YOu want to limit the amount of data that can be compromised in the DMZ. As I mentioned the DMZ is outside your network, technically naked to the world. I believe that any port that does NOT get routed (forwarded) into your green, will automatically be forwarded to your DMZ, so it will be hammered with all manner of hack and virus vectors.
  Peter

• How to close Mobile Mouse Server?

  I was doing an update on the App Mobile Mouse Server and when it weas ready to install it indicated I needed to close the App before it could install the update.  The app is not in the dock and I don't know how to close it.  Help Please!!!

  Hi,
  In the field for local server you just type in the local dns name for your calendar server, mail server etc... Also select which port you want publish externally and the the correct port your service is actually using on your lan (Selected under advanced tab). Make sure your mobile access server can resolv your hostnames correctly. It should point to an local ip. If an nslookup shows your public ip, you have to correct your local dns server (This is often called split dns configuration.)
  To access this from outside your LAN you have setup NAT and permit the port you have configure your mobile access server to be the incomming port. How exactly you do that on the airport I am not sure, but I am sure it is explained in the user manual for the airport.
  I found this video about the mobile access server on youtube: http://www.youtube.com/watch?v=_VRgl2bncZU
  Hope this helps.
  Bernt

• Can I use my iPad to connect to a Mobile Access Server on a Mac mini ?

  I run a small business and am considering setting up an internal network. The online "features" description for Mobile Access Server (a component of Snow Leopard Server) says I can connect remoetley from an iPod or a Mac. The iPad is not mentioned. can I use my iPad to connect to a Mobile Access Server?

  Yes. It's the same as connecting from an iPod touch or iPhone.
  Logmeinigniton or teamviewer are a few of the apps you can use.
  Teamvewer has free app and you can see if it does what you want.

• How to setup the access privilege of flash file in Web Intelligence?

  How to setup the access privilege of flash file in Web Intelligence?   WEBI can set access privilege for single WEBI report file, but it seem cano not set access privilege for one flash file.

  Thank you Maksim,
  I did set the "selectionMode" to "Auto". I don't understand where In supply function I have to set lead selection of nested node to first element. Please elaborate on this. Are you talking about the context attribute bound to the second table? OR do I have to change the Importing parameters "Node" and "Parent_Element" of my supply function?
  Thanks for your time.

• How to setup the SMTP server in Oracle apps?

  Hi,
  How to setup the SMTP server in Oracle Apps? Is it mandatory to keep the SMTP server on the same host where the Oracle data base is installed? Also can someone help how we can set up the SMTP server on different host (not the Database server) and we can use the same for Workflow notification mailer.
  Thanks,
  Bijoy
  Edited by: user12070886 on Feb 6, 2013 4:26 AM
  Edited by: user12070886 on Feb 6, 2013 4:27 AM

  How to setup the SMTP server in Oracle Apps? Is it mandatory to keep the SMTP server on the same host where the Oracle data base is installed? No, it is not mandatory. Also please note that the mails are sent out from concurrent manager mode. Not from the database node.
  Also can someone help how we can set up the SMTP server on different host (not the Database server) and we can use the same for Workflow notification mailer.
  >
  It depends on the operating system you are using. If you are using *nix then sendmail needs to be configured.
  Thanks

• How to setup external access in VM?

  We need to setup a Microsoft VM and allow external access without using my company VPN as we need to test the web services integration with other vendors. could you please help how to setup external access? Thanks

  Hi Wilson,
  As a prerequisite , that VM need to access the gateway .
  It means that you need to
  create an external virtual switch then connect that VM to external virtual switch then allocate a LAN IP for VM .
  http://technet.microsoft.com/en-us/library/jj647786.aspx
  After this you may think of this VM as a physical machine in your LAN then do what you need .
  Best Regards
  Elton Ji
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• How to setup Adobe Media Server Professional x 2 run as cluster for load balance?

  How to setup Adobe Media Server Professional x 2 run as cluster for load balance?

  Hi,
  Welcome to adobe forums,
  Please refer to these help files in order to setup AMS as a cluster : https://helpx.adobe.com/adobe-media-server/config-admin/load-balancing.html
                                                                                                              https://helpx.adobe.com/adobe-media-server/tech-overview/scaling-server.html
  Let me know if you need any help.
  Regards,
  Puspendra

• How to understand who access server unautorize person ?

  How to understand who access server unauthorized person ? How I tracking ?
  Thanks & Regards, Amol . Amol Dhaygude

  You would have to enable SQL server auditing to track who are accessing SQL server database.
  Please refer to this Technet library that will assist you in right direction to enable server audit in SQL database :http://msdn.microsoft.com/en-us/library/cc280386.aspx
  To understand in depth about SQL server audit, please walk through this library :
  http://msdn.microsoft.com/en-us/library/cc280386%28SQL.100%29.aspx
  In addition, you can also have a look at this proficient application available at (http://www.sqlserveraudit.org/) that provide all the comprehensive auditing report at granular level with real time monitoring
  and alerts instantly of all critical changes occurred in SQL server.
  Carlo

• How to setup remote access with E4200?

  Hi,
  I am new to this and I need help from you all on how to setup the E4200 so that I can access the media server when I am in office?  Is there a guide or step by step procedure on this?  I was browsing on the Cisco website and unable to find it. 

  The purpose of using DDNS is it substitutes the public/WAN ip address provided by your ISP.We all know that the ip address provided by our ISP(if we are not subscribe to a premium static ip address) is basically public and will always change from time to time.So it will be difficult for us to know what's the ip address our ISP has provided us and this will lead us problems accessing our router or ftp server remotely. Thus by using DDNS' it will now allow us to access the router remotely without knowing what's the WAN ip address.

• OTP and Mobile Access Server

  Hi Guys,
  We are trying to implement a OTP solution for the Mobile Access page. How can the source code be altered or modified to accept the OTP token?
  I am trying to follow the following module, but where is it supposed to be put in?
  http://code.google.com/p/mod-authn-otp/wiki/Configuration
  Regards
  AJ

  Whoops, forgot to specify that this problem is only for the SMTP portion of MAS. Receiving email through IMAP via the MAS works fine.
  Here's a flow using openssl of a successful SMTP transaction through the MAS, in case anyone sees anything obvious:
  openssl s_client -starttls smtp -crlf -connect <my MAS server>:587
  CONNECTED(00000003)
  <key exchange information>
  250 DSN
  ehlo testing
  250-<my MAS server>
  250-PIPELINING
  250-SIZE 104857600
  250-VRFY
  250-AUTH PLAIN
  250-ETRN
  250-ENHANCEDSTATUSCODES
  250-8BITMIME
  250 DSN
  AUTH PLAIN <user key>
  235 2.7.0 Authentication Succeeded
  mail from: <[email protected]>
  250 2.1.0 Ok
  rcpt to: <[email protected]>
  250 2.1.5 Ok
  data
  354 End data with <CR><LF>.<CR><LF>
  From: Test <[email protected]>
  To: Test <[email protected]>
  Subject: Blah
  Blah!
  250 2.0.0 Ok: queued as <mail ID>
  quit
  221 2.0.0 Bye
  closed

• How to setup a Proxy Server for SSL

  Hello,
  We have a proxy server that uses the same port for http and https. How can I setup a proxy server in OSB (10gR3) for my business services to use with same port for both http and https?
  Thanks,
  Mike.

  Hi Mike,
  The problem is OSB doesn't seem to let me set the same port for both http and https on a proxy.Can you please let us know the exact problem you are facing? I hope you would have referred below links as well -
  http://download.oracle.com/docs/cd/E13159_01/osb/docs10gr3/eclipsehelp/ui_ref.html#wp1347580
  http://download.oracle.com/docs/cd/E13159_01/osb/docs10gr3/consolehelp/global_resources.html#systemadminProxyAdding
  You may set the proxy server at JVM level as well (workaround).
  Regards,
  Anuj

• How to setup a Jabber server?

  Hi,
  I want to setup a Jabber server on my Archlinux machine for a couple of friends of mine to use for some personal group communication. What package can I install for such a server? I'm hoping it's easy to setup, so that's a bonus. Thanks in advance.

  ejabberd is rather nice for a begginer admin/operator. I can't say anything about the quality of the provided package in [community]. Ejabberd is also distributed as a one-click-install binary which you can (with all contents) install somewhere like /opt or /usr/local/opt, and there is also a video available on process-one site which shows you how to install and setup ejabberd in under 5 minutes with it (which should tell you something about "ease of use"). For everything from installation to configuration and operating read the Ejabberd operation guide: http://www.process-one.net/en/ejabberd/guide_en

• How to setup WebLogic Admin Server and Managed Server

  Hi,
  I working to setup a Weblogic admin and managed server but fail.
  May i know the correct steps to setup the system ?
  Tx.

  TX. I will proceed to upload more logs here later.
  Anyway I notice that after i follow the guide to setup the admin and managed server, I only able to access the web apps on admin server. I can not access web apps for managed server.
  I setup the admin server using port 7001 and managed server using port 7003 based on oracle guide.
  I found weird here. when I browse to http://adminserver:7001/apps, it works. But when i browse to http://managedserver:7003/apps it does not work.
  But funny thing is when i browse to http://adminserver:7003/apps, it works.
  I confuse that which configuration I have done is incorrect and have this result???
  besides that I notice that in the nodemanager setting...the listening address is set to localhost and it works. If i configure it to IP address, it will give me errors.
  Edited by: Wilson78 on Dec 22, 2008 12:29 PM

• How to configure the Access Server?

  Hi All
  I am in the process of migrating from 11.0.1 to 12.0.
  I have some real-time jobs.
  For this I need to configure the Access Server.
  I can understand I should do this from Server Manager>Edit Access Server Config>Add
  Here what info we need to give? Does it mean we need to give the server name on which current version is installed? How to choose the port?
  My old version DI 11.0.1 is using port 4000. Also in the DS Mgmt Console, I am defaultly getting the Old Job Server in the Adapter Config node. How to remove this?
  Someone plz help me on this.
  Thank You
  Ganesh Sampath

  You have to explicitly share directories on external/secondary volumes.
  Use the Server admin app to configure file sharing, and select which directory/directories on the second drive you want to share, then they'll be available to clients.