LB in front of IWA IIS servers
Hi,
We have configured IWA authentication scheme with OAM 10g. For this, we are using 2 instances of IIS 7 server. Both of these IIS servers are on 2 different physical machines and have been configured for IWA.
Now to achieve HA, we have deployed a Cisco LB in front of these 2 IIS servers.
In OAM IWA authentication scheme, we have given LB hostname for IWA server.
Now when we make a request for IWA protected resource, the request is passed on to IIS server from LB but after that, nothing happens.
Is there anything we need to do at LB configuration to resolve our issue ?
Thanks
To provide my inputs, please respond to below queries:
Are you getting any error when you access IWA protected resource ?
What is the response it gives ?
Note: Make sure you have added LB URL to Local Intranet zone in IE browser settings.
Thanks
GK
Similar Messages
-
Problems Balancing IIS servers with ACEs.
Hi ...
Pls your help in this case ...
I just configured an ACE solution for Web Balancing. The Web Servers are Microsoft Windows 2008 IIS.
The ACE is configured with two contexts, one for Web Servers and other for Application Servers (both in Microsoft solution).
The context were configured in "One Arm" for each subnet (web and apps).
In attached files I'm sending the configuration of ACE.
Any sugestion ?
The error we got in the browsing is:
System.Web.HttpException: Validation of viewstate MAC failed. If this application is hosted by a Web Farm or cluster, ensure that <machineKey> configuration specifies the same validationKey and validation algorithm. AutoGenerate cannot be used in a cluster.
Invalid viewstate. Client IP: 10.11.60.26 Port: 1173.Hello,
Have you checked if your application requires persistence? Even when both server may have the exact same content if the user gets rebalanced to a different server during the connection will fail and that error you're getting could be a probe of it.
Just to confirm try doing a no inservice under the secondary server in the serverfarm in question, clear all the caches and re-test.
If this indeed solves the issue then it can be easily solved using a sticky method such as source IP or cookie insertion.
HTH
Pablo -
Splitting front and back end servers across time zones
Weblogic Server 7.0
EJB is in Memphis,
jsp/servlets/web command classes are in Colorado
sending a date to the DB (in Memphis) results in a date getting changed by about 13 hours.
The change happens between the web command class in Colorado and the EJB command class in Memphis.
Any ideas as to what might be causing this and how to eliminate this bug would be very much appreciated.
Thanks.Solution was that someone had configured the WLS to always operate dates in GMT, therefore the time differences between time zones were blown out of proportion...
-
2 Front End Servers with reporting enabled in topology but only one server shows reports
Hi,
We have 2 Front End Standard pool servers with resiliency enabled between them. The monitoring service is configured in the topology so that both Front End Servers point to the same monitoring database. We have half our users homed on 1 Front
end and half the other users sitting on the other Front End. In the Reports we can only see information on Audio calls made from users that are sitting on our Primary Front End Pool Server however we cannot see call information from users that are sitting
on the other front end server?
Thanks, KevinWe have applied the backend updates and verified the config by running Test-CSDatabases cmd-let . I ran enable-cstopology and ran bootstrapper.exe and rebooted both Front End Servers, however we are still unable to see monitoring data of users
homed on our second Lync Front End server.
Any other suggestions? Thanks for responses so far, appreciate the assistance!
DatabaseName ExpectedVersion InstalledVersion
xds 10.13.2
10.13.2
lis 3.1.1
3.1.1
rtcxds 15.13.1 15.13.1
rtcshared 5.0.1 5.0.1
rtcab 62.42.2 62.42.2
rgsconfig 5.5.1 5.5.1
rgsdyn 2.2.1
2.2.1
cpsdyn 1.1.2
1.1.2
and ......
DatabaseName ExpectedVersion InstalledVersion
LcsCDR 39.82.2 39.82.2
QoEMetrics 62.90.1 62.90.1 -
Setup Virtual Servers in IIS with WLS 8.1
Hi,
I have multiple virtual servers (using host headers) in my IIS 5.0 web server. I also created multiple server instances in WLS. Can anyone tell me how I can integrate this virtual servers to connect to WLS virtual servers via port 80.
Would I have to create ini file for all virtual IIS servers.
ThanksHi,
I have multiple virtual servers (using host headers) in my IIS 5.0 web server. I also created multiple server instances in WLS. Can anyone tell me how I can integrate this virtual servers to connect to WLS virtual servers via port 80.
Would I have to create ini file for all virtual IIS servers.
Thanks -
Lync Mobile client signs out - Unknown Error- requires IIS reset on Front End
My Mobile clients are signing out on their own and do not sign back in until I reset the IIS on my front end server. i have a standard edition front end with IIS ARR as my reverse proxy.
Another issue that I have (this is sporadic) is that when a mobile device is connected to internal wifi it fails to sign and and the only way to get it back to work is to turn off wifi , sign in, and then you can turn on wifi and then it can sign in even
if wifi is on. This will work for sometime until the issue comes back again.
I would appreciate if anyone can help me resolve this issue.
ThanksHi,
Which version of IIS did you use? If you are deploying mobility, we recommend that you use IIS 7.5. The Lync Server Mobility Service installer sets some ASP.NET flags to improve performance. IIS 7.5 is installed by default on Windows Server 2008
R2, and the Mobility Service installer automatically changes the ASP.NET settings. If you use IIS 7.0 on Windows Server 2008, you need to manually change these settings.
Best Regards,
Eason Huang
Eason Huang
TechNet Community Support -
Localdir 416 real servers not failing..
We have a localdirector sitting in front of two real servers(IIS).
Load balancing works fine with both backend servers connected, and show real produces:
# show real
Real Machines:
No Answer TCP Reset DataIn
Machine Connect State Thresh Reassigns Reassigns Conns
server2:0:0:tcp 2 IS 8 0 0 0
server1:0:0:tcp 0 IS 8 0 0 0
But if one backend server is disconnected, show real does not change (No OOS, or TESTING under STATE), and nothing is displayed in syslog?
ping server1
real_server_ip_1 NO response received -- 1000ms
real_server_ip_1 NO response received -- 1000ms
real_server_ip_1 NO response received -- 1000ms
show real
Real Machines:
No Answer TCP Reset DataIn
Machine Connect State Thresh Reassigns Reassigns Conns
server2:0:0:tcp 2 IS 8 0 0 0
server1:0:0:tcp 1 IS 8 0 0 0
Is this normal?
Minimal config, just for testing:
virtual virt_ip:0:0:tcp is
real real_server_ip_1:0:0:tcp is
real real_server_ip_2:0:0:tcp is
name real_server_ip_1 server1
name real_server_ip_2 server2
name virt_ip domain
bind virt_ip:0:0:tcp real_server_ip_1:0:0:tcp
bind virt_ip:0:0:tcp real_server_ip_2:0:0:tcp
Regards,
MBDepending on your version, here is a good document how servers are failed and brought back on LD.
http://www.cisco.com/univercd/cc/td/doc/product/iaabu/localdir/ld33rns/ld334con/ld3_ch01.htm#xtocid275378
The reassign command controls how many times a connection synchronization (TCP SYN) packet from a requesting client is sent to a nonresponsive server before it is reassigned to another server. The default is three TCP SYN packets. After the third packet receives no response or a TCP RST from the server, the fourth packet is sent to another server.
Each reassign process increments the reassign tally by one. When the tally reaches the threshold value, the server is considered failed. With a default threshold value of 8, the reassign process will happen eight times before the server is considered failed. "
In other words, the LD doesn't ping and check the server if its up or down, it takes the client(end-user). Depending on your site, if you have a very slow active site... it could take that much more time for LD to fail the down server.
-jan -
Can't post to Mircrosoft IIS machines
Hi I am using the following code from a tutorial. But it blows up every time after a second POST. But I can post as many times as I need to a linux box or any other UNIX boxes I can think of.
What is going on? Why does it not work with microsoft products?
* HttpMidlet.java
* Created on October 23, 2001, 11:19 AM
import javax.microedition.midlet.*;
import javax.microedition.lcdui.*;
import javax.microedition.io.*;
import java.io.*;
* @author kgabhart
* @version
public class HttpMidlet extends MIDlet implements CommandListener {
// A default URL is used. User can change it from the GUI
private static String defaultURL = "http://www.microsoft.com";
// Main MIDP display
private Display myDisplay = null;
// GUI component for entering a URL
private Form requestScreen;
private TextField requestField;
// GUI component for submitting request
private List list;
private String[] menuItems;
// GUI component for displaying server responses
private Form resultScreen;
private StringItem resultField;
// the "send" button used on requestScreen
Command sendCommand;
// the "exit" button used on the requestScreen
Command exitCommand;
// the "back" button used on resultScreen
Command backCommand;
public HttpMidlet(){
// initialize the GUI components
myDisplay = Display.getDisplay( this );
sendCommand = new Command( "SEND", Command.OK, 1 );
exitCommand = new Command( "EXIT", Command.OK, 1 );
backCommand = new Command( "BACK", Command.OK, 1 );
// display the request URL
requestScreen = new Form( "Type in a URL:" );
requestField = new TextField( null, defaultURL, 100, TextField.URL );
requestScreen.append( requestField );
requestScreen.addCommand( sendCommand );
requestScreen.addCommand( exitCommand );
requestScreen.setCommandListener( this );
// select the HTTP request method desired
menuItems = new String[] {"GET Request", "POST Request"};
list = new List( "Select an HTTP method:", List.IMPLICIT, menuItems, null );
list.setCommandListener( this );
// display the message received from server
resultScreen = new Form( "Server Response:" );
resultScreen.addCommand( backCommand );
resultScreen.setCommandListener( this );
}//end HttpMidlet()
public void startApp() {
myDisplay.setCurrent( requestScreen );
}//end startApp()
public void commandAction( Command com, Displayable disp ) {
// when user clicks on the "send" button
if ( com == sendCommand ) {
myDisplay.setCurrent( list );
} else if ( com == backCommand ) {
// do it all over again
requestField.setString( defaultURL );
myDisplay.setCurrent( requestScreen );
} else if ( com == exitCommand ) {
destroyApp( true );
notifyDestroyed();
}//end if ( com == sendCommand )
if ( disp == list && com == List.SELECT_COMMAND ) {
String result;
if ( list.getSelectedIndex() == 0 ) { // send a GET request to server
System.out.println("getHTTP");
result = sendHttpGet( requestField.getString() );
else // send a POST request to server
System.out.println("postHTTP");
result = sendHttpPost( requestField.getString() );
resultField = new StringItem( null, result );
resultScreen.append( resultField );
myDisplay.setCurrent( resultScreen );
}//end if ( dis == list && com == List.SELECT_COMMAND )
}//end commandAction( Command, Displayable )
private String sendHttpGet( String url )
HttpConnection hcon = null;
DataInputStream dis = null;
StringBuffer responseMessage = new StringBuffer();
try {
// a standard HttpConnection with READ access
hcon = ( HttpConnection )Connector.open( url );
// obtain a DataInputStream from the HttpConnection
dis = new DataInputStream( hcon.openInputStream() );
// retrieve the response from the server
int ch;
while ( ( ch = dis.read() ) != -1 ) {
responseMessage.append( (char) ch );
}//end while ( ( ch = dis.read() ) != -1 )
catch( Exception e )
e.printStackTrace();
responseMessage.append( "ERROR" );
} finally {
try {
if ( hcon != null ) hcon.close();
if ( dis != null ) dis.close();
} catch ( IOException ioe ) {
ioe.printStackTrace();
}//end try/catch
}//end try/catch/finally
return responseMessage.toString();
}//end sendHttpGet( String )
private String sendHttpPost( String url )
HttpConnection hcon = null;
DataInputStream dis = null;
OutputStream os = null;
StringBuffer responseMessage = new StringBuffer();
// the request body
String requeststring = "This is a POST.";
try {
hcon = (HttpConnection)Connector.open(url);
byte [] data = "TextField=Hello&TextField2=Hello2&Submit=Submit".getBytes ();
hcon.setRequestMethod(HttpConnection.POST);
hcon.setRequestProperty("User-Agent","Profile/MIDP-1.0 Configuration/CLDC-1.0");
hcon.setRequestProperty("Content-Language","en-US");
hcon.setRequestProperty("Content-Type","application/x-www-form-urlencoded");
os = hcon.openOutputStream ();
os.write (data);
os.close ();
//conn.close ();
// obtain DataInputStream for receiving server response
dis = new DataInputStream( hcon.openInputStream() );
// retrieve the response from server
int ch;
while( ( ch = dis.read() ) != -1 ) {
responseMessage.append( (char)ch );
}//end while( ( ch = dis.read() ) != -1 ) {
catch( Exception e )
e.printStackTrace();
responseMessage.append( "ERROR" );
finally {
// free up i/o streams and http connection
try {
if( hcon != null ) hcon.close();
if( dis != null ) dis.close();
if( os != null ) os.close();
} catch ( IOException ioe ) {
ioe.printStackTrace();
}//end try/catch
}//end try/catch/finally
return responseMessage.toString();
}//end sendHttpPost( String )
private String xsendHttpPost( String url )
HttpConnection hcon = null;
DataInputStream dis = null;
DataOutputStream dos = null;
StringBuffer responseMessage = new StringBuffer();
// the request body
String requeststring = "This is a POST.";
try {
// an HttpConnection with both read and write access
hcon = ( HttpConnection )Connector.open( url, Connector.READ_WRITE );
// set the request method to POST
hcon.setRequestMethod( HttpConnection.POST );
//hcon.setRequestProperty("Content-length", ""+ requeststring.length() );
hcon.setRequestProperty("Content-type","application/x-www-form-urlencoded");
//hcon.setRequestProperty("Content-language", "en-US"); // should be config.
//hcon.setRequestProperty("Accept", "text/xml");
//hcon.setRequestProperty("Connection", "close");
// obtain DataOutputStream for sending the request string
dos = hcon.openDataOutputStream();
byte[] request_body = requeststring.getBytes();
// send request string to server
for( int i = 0; i < request_body.length; i++ ) {
dos.writeByte( request_body[i] );
}//end for( int i = 0; i < request_body.length; i++ )
// obtain DataInputStream for receiving server response
dis = new DataInputStream( hcon.openInputStream() );
// retrieve the response from server
int ch;
while( ( ch = dis.read() ) != -1 ) {
responseMessage.append( (char)ch );
}//end while( ( ch = dis.read() ) != -1 ) {
catch( Exception e )
e.printStackTrace();
responseMessage.append( "ERROR" );
finally {
// free up i/o streams and http connection
try {
if( hcon != null ) hcon.close();
if( dis != null ) dis.close();
if( dos != null ) dos.close();
} catch ( IOException ioe ) {
ioe.printStackTrace();
}//end try/catch
}//end try/catch/finally
return responseMessage.toString();
}//end sendHttpPost( String )
public void pauseApp() {
}//end pauseApp()
public void destroyApp( boolean unconditional ) {
// help Garbage Collector
myDisplay = null;
requestScreen = null;
requestField = null;
resultScreen = null;
resultField = null;
}//end destroyApp( boolean )
}//end HttpMidletModified your code on the line:
dos.writeByte( request_body );
to:
dos.write( request_body );
and it works with 2 Microsoft IIs servers. I don't know if you ever got this working or if you went to a GET method but we were having major difficulties with IIs servers as well. I figured late was better than never for a response. -
Weblogic clustering with IIS as web server
Hi,
I have two IIS servers and two machines for weblogic. I am planning to have
a weblogic clustering. I have seen the documentation online. But has some questions
for which dint find any answers.
Somewhere on the newsgroup I read , if we will be having IIS proxy-plug in we
do not need the DNS setup. Is that true ?
How many IPs and other things I need to do this setup ? What is admin server &
its role ? configuration how to do it is not avaliable in the documentation.
Could someone help ?
Thanks and Regards,
Sheetal
Hi
you can find the ore information in the following link
http://bernal.bea.com/stage/wls/docs70/plugins/isapi.html
Regards,
Prasanna Yalam -
List of IIS websites with Host header
Hi,
I am looking for a script, to export a list of websites along with host header information. This should accept list of IIS servers 6/7/7.5 and provide output into a text file.
Thanks,
Kunal JaiswalMight look around here.
https://gallery.technet.microsoft.com/scriptcenter/site/search?f%5B0%5D.Type=RootCategory&f%5B0%5D.Value=servers&f%5B0%5D.Text=Servers&f%5B1%5D.Type=SubCategory&f%5B1%5D.Value=iis&f%5B1%5D.Text=IIS
or try asking them over here.
http://forums.iis.net/
Regards, Dave Patrick ....
Microsoft Certified Professional
Microsoft MVP [Windows]
Disclaimer: This posting is provided "AS IS" with no warranties or guarantees , and confers no rights. -
IIS - Webserver - Best Practice ?
Hey Community
I have some questions , and i´d love to hear some responses.
I have a virtualized environment at home ... DC-1 , DC-2 , GW-1 , WEB-01 and some client and application VM´s running.
GW-01 and WEB-01 are not part of the domain mcsa.local
I have setup WS2012-r2 on all machines.
And on WEB-01 is IIS role installed , and i only use the IP address , i dont have a www domain.
My questions are these :
question 1. What is the best practice for this setup ?
question 2. And how do I forward http requests from gw-01 to Web-01 ? (do i do that in DNS or do I do that in Routing and remote access MMC console ?)
question 3(not necessary to answer this one). How do I add a second site easily , and how do I visit the second site from the outside ( do i surf to x.x.x.x/secondsite? )
Any step-by-step guide would be really helpful, on how i would do this so that external computers can visit my website that is hosted on WEB-01.Hi,
question 1. What is the best practice for this setup ?
Please refer to the following article for configuration steps:
http://www.iis.net/learn/web-hosting/scenario-build-a-web-farm-with-iis-servers/configuring-step-1-install-iis-web-farm-infrastructure
question 2. And how do I forward http requests from gw-01 to Web-01 ? (do i do that in DNS or do I do that in Routing and remote access MMC console ?)
You could do this using IIS Manager, please refer to:
https://technet.microsoft.com/en-us/library/cc732969(v=ws.10).aspx
For issue related to iis, please ask in:
http://forums.iis.net/
Regards.
Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected] -
Need VB script for getting the IIS certification information
Hi guys,
I have totally 1000 IIS servers 2003 & 2008
windows and some of the servers configured
IIS 3rd party Security certificates. I need a script to get the certification information like expiry date & certificate vendor name.
Regards,
SreeMPost here:http://forums.iis.net/
Look in Gallery for IIS scripts:http://gallery.technet.microsoft.com/
¯\_(ツ)_/¯ -
CSS Keepalive for two applications on same IIS server
We have 2 IIS servers running two MOSS 2007 appications. The app owners want keepalives setup for each application which each application is using the same IP and just different hostnames. So I need an example to do keepalives using a hostname / uri index.html for example rather then it using the IP address.
I'm inheriting a system and don't want to break what's working so any examples would be greatly appreciated.
Thanks
JimJim,
This is how I utilize 1 server with multiple web sites. The web server is configured to respond to http host headers. For this to work DNS needs to be correct. Each web site has a keepalive file for the script to check.
service connections-1
ip address 1.1.1.1
keepalive port 80
redundant-index 8001
keepalive type script ap-kal-httptag "connections1.company.com /keepalive/lb.htm connections1"
keepalive frequency 15
active
service datacentacc-1
ip address 1.1.1.1
keepalive port 80
redundant-index 8030
keepalive type script ap-kal-httptag "datacenteraccess1.company.com /keepalive/lb.htm datacenteraccess1"
keepalive frequency 15
active
DNS entries for the individual web sites will point to the servers. I.E. connections1.company.com = 1.1.1.1
datacenteraccess1.company.com = 1.1.1.1
The Content rules will be the following.
content connections
vip address 2.2.2.2
advanced-balance sticky-srcip
redundant-index 8000
add service connections-1
protocol tcp
port 80
url "//connections.company.com/*"
active
content datacenteraccess
vip address 2.2.2.2
advanced-balance sticky-srcip
redundant-index 8025
add service datacentacc-1
port 80
protocol tcp
url "//datacenteraccess.company.com/*"
active
Rich -
I'm in desparate need of some help. Up until now I've done
"basic" web pages and uploaded html web pages to FTP sites with no
problem. I am currently working on Catalog web site and am using
ASP Javascript. I was told those were compatible with IIS servers.
I uploaded the pages to a testing server and I am getting a HTTP
404 error/Page Not Found in my browser (Safari).
I am using ECart with Dreamweaver to create my shopping cart.
Anyone have any suggestions. Am I using the wrong
extension?Hi
A 404 error means the page is not at the location that you
have
provided. You need to check exactly where your page is on the
server, if
indeed it is on the server.
Cheers jojo
Adobe Community Expert for Dreamweaver 8
http://www.webade.co.uk
http://www.ukcsstraining.co.uk/
Extending Knowledge, Daily.
http://www.communityMX.com/
Free 10 day trial
http://www.communitymx.com/joincmx.cfm -
Flash FLV and Microsoft IIS Bug?
I have run into a problem that may be a real problem for
anyone relying on SWF files playing FLV files from Microsoft IIS
servers. I have used this method of playing videos on a few of my
clients sites and as of the last week or so these videos stopped
playing! I know nothing changed with the videos so I was not sure
what happend. As a spent countless hours trouble shooting this
problem, I found that if I took the .SWF and FLV files off the
server they were on and moved them to another server (non
microsoft) they magically work again. At first I thought my hosting
company had a problem with their IIS server but I checked three
other servers (IIS) and they all have the same problem (all
patched). Now I know these files played on all these servers in the
last week or so. I even went as far as to check these file against
a computer running XP with IIS turned on and running and the SWF
file loads but will not play the FLV video. I even downloaded
"flvplayer" to check this theory to make sure I didnt do something
stupid with my SWF file. It appears that all my computers that have
been patched using microsoft's update program over the last week or
so are now broken. Is there anyone out there that can check my
theory?Maybe the settings got deleted during the patch. Follow these
directions and see if they work again:
http://www.adobe.com/cfusion/knowledgebase/index.cfm?event=view&id=KC.tn_19439&extid=tn_19 439&dialogID=185014411&iterationID=1&sessionID=9630f39ccb3510656d78&stateID=0+0+37458677&m ode=simple
Good luck.
Maybe you are looking for
-
USB External HD with WRT350N - How to Avoid Entering Password to Access?
I just purchased my new WRT350N primarily to use the storage link feature. I have connected a 300 GB HP personal media drive (USB) to the router. The router shows up on my home network just fine. I have one wired desktop and one wireless desktop (bot
-
Need leading Zeros in the excel sheet which is sent from ABAP
Hi , I am downloading data from SAP to excel sheet using the WS_DOWNLOAD Function Module. The numeric data in not having leading zeros. if it is 0010 it is displaying 10 in the excel sheet . i need the leading zeros in the excel sheet. without manul
-
I constructed a calendar in iPhoto'09, but I can't buy it, as my country (Russia) is not on the list in the drop-down box of the countries. And I can't export it and save it in any other format so that I could print it off myself. Would upgrading t
-
Material Procurement + Manufacturer
Dear All Please let me know how can i link two-three manufacturer for one material. and same can be utilised in PO as well as at the time of GR Regards Narendra
-
Can't authorize computer to play already purchased music in thailand
Help! I recently came to thailand with a fresh panther install on my pismo notebook. I guess since it's a fresh hard drive, iTunes won't let me play my purchased music without authorization. Here's the catch, when I try to authorize, the iTunes store