Multiple ADFS farm or two IDP in same domain

Similar Messages

• Two sites, Two Exchange servers, same domain

  Exchange can seriously baffle me at the best of times. Which is why I'm writing here at the moment.
  I have 2 sites in two geographical locations for the same business connected via IPsec VPN. At each site we have:
  - Domain Controller (domain.local)
  - RDS Server
  - File server
  - Exchange server (domain.org.au) (SiteA - exch1, SiteB - exch2)
  All servers are Windows Server 2008R2, Exchange servers are 2010, Outlook is also 2010.
  Both exchange servers are set up with DAG replicating the primary mailbox database.
  Both RDS servers have outlook set up - users are currently connecting to exch1 for exchange connectivity (at both siteA and siteB)
  I want to configure the outlook clients so that SiteA uses exch1, and SiteB uses exch2.
  When testing, I manually set up an outlook profile and entered the server name as 'exch2', but upon clicking 'check name' it substituted 'exch2' for 'exch1'.
  I have had a look at implementing CAS array, but this will not work as we have DAG set up between exchange servers, and according to a microsoft article this cannot be done:
  ""WNLB can't be used on Exchange servers where mailbox DAGs are also being used because WNLB
  is incompatible with Windows failover clustering.""
  Is there something I need to change in either the Group Policy or Autodiscover instance, or even DNS to allow this to work? Is this even possible? Any help would be greatly appreciated.

  Forgive me - I still dont quite understand what's required..
  Because I have 2 physical sites with AD and Exchange, even though both sites are using the same domain and the same Exchange Mailbox Database, I still require 2 CAS arrays?
  Just to clarify, both DC's arent under separate sites within Active Directory Sites and Services - they are both members of the 'Default-First-Site-Name' site. Would this make any difference to the config I am aiming for?
  I can understand the concept of having 2 CAS arrays, one for physical site A and physical site B, so that their respective RDS servers outlook clients point to their own local exchange server - but if both exchange servers are replicating and using the one
  Mailbox Database, I'm not sure if that will cause any issues - Cant you only apply one CAS array per database?
  Also, if I am unable to use network load balancing because the software balancing service wont work with the cluster service, what IP(s) would I point the CAS array to - my guess is the local IP's of the exchange servers for its relevant site?

• Can we have two clusters in same domain running different versions of WLS

  I have not tested this yet but was looking for help from people who might have done this already.. Is it possible to have this scenario:
            create two independent clusters, say C1 and C2 as part of a single domain D. C1 has 2 managed servers running WLS8.1 and C2 has 2 managed servers running WLS7.0
            Can this be done?
            Thanks,
            Raghu

  It is definetely inviting for trouble.
            We can have two clusters from same version of weblogic server within a domain.
            If we have a WLS8.1 domain, the managed servers that we create from that domain should be from WLS8.1.
            As far I remember, its not a supported configuration to have different versions(major versions) of Admin and managed servers.
            -Vijay

• Update multiple rows based on two columns in same row

  I have a 1000 rows in a table I would like to update with a unique value. This unique value is a cocatenation of two columns in teh same row.
  Each row has a (i) date and a (ii) time and a (iii) date_time column. I would like to update the date_time (iii) column with a cocatenation of the (i) date and (ii) time columns.
  I know how I would update a single row but how can I update multiple rows with a cocatenation of each of the two columns - i.e put a different value into the date_time column for each row?

  this?
  update table tab_name
  set date_time =date||time
  where your_condition

• When multiple MAs present in fimsync belonging to same domain, how to define attribute precedence.

  Hi,
  In our environment there are multiple MAs and i have to define proper precedence of attribute flows in order to function properly. The list of MAs present are
  1. FlatFileMA
  2. FIM MA
  3. ADDs MA
  4. Google Apps MA
  We are provisioning the user from FlatFile to FIM, and then from FIM to AD, FIM to Google Apps MA. Some times the provision directly takes from FIM to AD and from FIM to Google Apps MA. In order to achieve this how should i assign the attribute precedence.
  The attributes that are using are accountName,firstName,LastName etc..
  We are using Code Based provisioning...
  Thanks
  Prasanthi

  If your main source of users is Flat File, it should have the highest.
  Then, as you can create users in FIM Portal and want them also to be provisioned to other sources, FIM MA should be second in precedence.
  Otherwise (if you set FIM MA higher than Flat File), attributes from Flat File would not be propagated to FIM Portal with "Denied - Attribute not precedent" warning in Preview.
  So you can have only two import flows for accountName for example - one from Flat File, second from FIM MA (and Flat file should be higher in precedence). The same are for first and last name.
  If you want to allow users to log in to FIM Portal (for example for password reset purposes), make sure also that you import objectSID from AD MA and domain (probably as "Advanced -> constant value") and export them to FIM MA along with accountName.
  If you found my post helpful, please give it a Helpful vote. If it answered your question, remember to mark it as an Answer.

• How many ADFS farms can you have in a single forest/single domain?

  Hi
  I may have some terminology incorrect...please let me know if I do. :)
  My question is, how many ADFS farms can you have in a single forest/single domain? If you want to know why I am asking...please read on.
  We have 1 ADFS Farm and we are looking adding services to it. However not every cloud vendor provides a "Identity Broker" with there services.
  We have a consultant that is advising that we need to enable a SAML-based IdP-initiated single sign-on (SSO) ie using "IdpInitiatedSignOnPage"
  However to do this we need to modify the ADFS website to have "drop down" list so the user can select the "Relying Party" and then authentication with them.
  This means we are exposing a list of every company/party we have federated with. The exposure of this information, is deemed a security concern by our company....which I agree with.
  So the consultant advises that we need a separate ADFS farm. I have searched online, but haven't found any information that confirms multiple ADFS farms can be implemented in a single forest/single domain.
  Thanks for reading and if you have any other suggestions...I'd appreciate it.
  Nyobi

  This is not exactly FIM related question - there is ADFS forum available on Technet. However - technically there is no limit of ADFS farms in a forest \ domain. It is just a service which uses AD and is not altering it in any way or storing some forest-wide
  information like Exchange. So you can setup two ADFS services in single forest - no problem. 
  If it is a best solution to your problem? I can't say with that limited information but maybe just customization of pages on ADFS side would be enough? 
  Tomek Onyszko, memberOf Predica FIM Team (http://www.predica.pl), IdAM knowledge provider @ http://blog.predica.pl

• How can I create multiple versions of a video within the same project?

  OK...this is a probably a very basic question but I'm not sure how to word it clearly.
  How can I create multiple versions of a video within the same project? What I mean is that I have a bout 50 minutes of video and I want to make two DVDs using different clips from this original 50 minutes of footage. It would be a real pain to have to re-import the video AGAIN for the second DVD. I suppose I could drop anything I don't want to burn to DVD back into the clips pane but that would wipe out all my transitions wouldn't it? I want to save each project in their “raw” form so I can burn additional DVDs later otherwise I would just do them one at a time and not care about one of them being destroyed.
  Wow...that was a mess. Does anyone understand what the heck I’m asking? I hope so.

  How can I create multiple versions of a video within the same project?
  You can't. You make separate projects using the same or different clips, segments, transitions, titles, etc. You can even duplicate the first project and then modify/make the desired changes in the duplicated project. Each project can then be burned as a different DVD or as different titles on the same DVD if there is enough room.

• Seperate libraries for two ipods on same computer

  how can i set up seperate libraries for two ipods on same computer . running xp . after installing software for second ipod , i only have one version of itunes ,with only one library .tried setting up seperate playlists but that didnt help . thanks for help!

  The only way I know to have two entirely separate iTunes libraries on one computer is to have two Windows or Mac user accounts: How To Use Multiple iPods with One Computer

• Two methods with same name but different return type?

  Can I have two methods with same name but different return type in Java? I used to do this in C++ (method overloading or function overloading)
  Here is my code:
  import java.io.*;
  public class Test{
  public static void main(String ar[]){
  try{          
  //I give an invalid file name to throw IO error.
  File file = new File("c:/invalid file name becasue of spaces");
  FileWriter writer = new FileWriter(file ,true);
  writer.write("Test");
  writer.close();     
  } catch (IOException IOe){
       System.out.println("Failure");
  //call first method - displays stack trace on screen
       showerr(NPe);
  //call second method - returns stack trace as string
          String msg = showerr(NPe);
          System.out.println(msg);
  } // end of main
  public static void showerr(Exception e){
       StringWriter sw = new StringWriter();
       PrintWriter pw = new PrintWriter(sw);
       e.printStackTrace(pw);
       try{
       pw.close();
       sw.close();
       catch (IOException IOe){
       IOe.printStackTrace();     
       String stackTrace = sw.toString();
       System.out.println("Null Ptr\n" +  stackTrace );
  }//end of first showerr
  public static String showerr(Exception e){
       StringWriter sw = new StringWriter();
       PrintWriter pw = new PrintWriter(sw);
       e.printStackTrace(pw);
       try{
       pw.close();
       sw.close();
       catch (IOException IOe){
       IOe.printStackTrace();     
       return sw.toString();
  }//end of second showerr
  } // end of class
  [\code]

  Overloading is when you have multiple methods that have the same name and the same return type but take different parameters. See example
  public class Overloader {
       public String buildError(Exception e){
            java.util.Date now = new java.util.Date() ;
            java.text.DateFormat format = java.text.DateFormat.getInstance() ;
            StringBuffer buffer = new StringBuffer() ;
            buffer.append(format.format(now))
                 .append( " : " )
                 .append( e.getClass().getName() )
                 .append( " : " )
                 .append( e.getMessage() ) ;
            return buffer.toString() ;
       public String buildError(String msg){
            java.util.Date now = new java.util.Date() ;
            java.text.DateFormat format = java.text.DateFormat.getInstance() ;
            StringBuffer buffer = new StringBuffer() ;
            buffer.append(format.format(now))
                 .append( " : " )
                 .append( msg ) ;
            return buffer.toString() ;
       public String buildErrors(int errCount){
            java.util.Date now = new java.util.Date() ;
            java.text.DateFormat format = java.text.DateFormat.getInstance() ;
            StringBuffer buffer = new StringBuffer() ;
            buffer.append(format.format(now))
                 .append( " : " )
                 .append( "There have been " )
                 .append( errCount )
                 .append( " errors encountered.")  ;
            return buffer.toString() ;
  }Make sense ???
  Regards,

• Two actions on same day

  hi,
  We have requirement where we need to run the two actions on same day
  Hiring actions
  Change in pay action
  In hiring action basic pay has to come as mention in pay scale group then they want to run one more actions called change in pay on same day where they would maintain basic pay
  My doubt is that will we able run two actions on same day if yes,
  I have actived IT0302 addition action and T77S0 Table as  ADMIN              EVSUP  1
  Please let me know what the other settings I have to do 
  I am getting below error when I run two actions on same day

  You can excute multiple actions for an employee on same date in PA40
  For Example:
    An Employee of a company , got Hired and Change in Pay on the Same date.
  You need to execute  RPUEVSUP program  for Activation of Additional Actions  and
  In T77S0 table: below values should be maintained
  Group name Semantic abbr.    Value
  ADMIN           EVSUP                1
  In T529A table:below value should be maintained
        Field                         Value
        Action Type              A3 (Hiring)
        Update IT0000           X
        Update IT0302           X
        Field                         Value
        Action Type              A9 (Change in Pay)
        Update IT0000           X
        Update IT0302           X
  I hope this will resolve your issue

• Two database in same machine

  Hai
  I want to create two database in same machine. I searched in google but no use.
  Is it possible in oracle 9i r2?
  If so,Anybody please help on that.

  jey84 wrote:
  I want to create two database in same machine. You can have a 100 Oracle databases on the same machine. The issue though is why?
  Why do you want to duplicate database overheads? Why two sets of system and process monitoring processes? Log writers? Database writers? Etc.
  Why two SGAs? Why two system tablespaces? Two temp tablespaces, undo tablespaces? Two sets of redo logs? Etc.
  You now have two database footprints. Instead of a single large SGA with properly sized buffer cache, shared pool, large pool and so on - you know have two smaller SGAs and smaller caches and pools that are now less capable and less scalable.
  Why would you want to do this?
  There are no sound technical reasons for running multiple database instances on a server - unless it is something like a 32 CPU/multicore server with 256 GBs of memory. But then why not use this as a cloud-type server on which you can run multiple server VMs? One VM for each database, as that provides more flexibility than multiple databases on a single server(physical or VM)?
  In today's world of cluster and cloud computing, running 2 databases instances on the same server does not make much sense. And needs to be backed up by reason and logic that justify such an approach.

• Two records with same  key (Infocube)

  Hi,
  I was trying to do, in a update rule, an "IF" condition with two key figures.
  IF Kf1 > Kf2. result = Kf1 else result = Kf2.
  But the data in the source (datamart Infocube to infocube) have tow records with the same characteristics combination (the same keys)and different amount in the keyfigures, then the result of my "if" condition is not the expected because I understood in the infocube only exists one characteristics combination. :S
  I was seeing those records in the manage transaction of the infocube.
  Some reason for this?
  Thanks and regards
  Victoria Leó

  This can happen with parallel loads.  Two rows with same set of Char values but in different packets of the same Request, being loaded at the same time.
  It really shouldn't be an issue - your update rule will make the KF change as desired.  Your queries aggregate KFs based characteristic values, not Dim IDs, so you'll get the totals you expect.
  Here's some more info:
  There is an RSRV Test that lets you check a dimension for a cube to see if multiple DIM IDs exist for the same combination of Chars - <b>Multiple Entries in Dimensions of a (Basis) InfoCube</b>
  Output looks like:
  12:02:24 o'clock on 08/25/2006: Start test run for user PIZZAMAN:)
  Dimension ZFM_C521: DIMID 61,215 and 61,214 have same characteristic values
  Dimension ZFM_C521: DIMID 61,880 and 61,879 have same characteristic values
  Dimension ZFM_C521: DIMID 61,366 and 61,365 have same characteristic values
  Dimension ZFM_C521: DIMID 61,368 and 61,367 have same characteristic values
  12:02:24 on 08/25/2006: Test run for user PIZZAMAN:) completed
  You can run the Correct Error option to have it update fact rows to use one of the DimIDs if you want, but unless you have lots of them, I even wouldn't bother.
  Here's the description of the test:
  <u>Description</u>
  This elementary test recognizes whether there are several lines that have different DIMIDs(dimension table key), but have the same SIDs for the selected dimension table for the InfoCube specified. (This can occur by using parallel loading jobs). This has nothing to do with an inconsistency. However, unnecessary storage space is occupied in the database.
  <u>Repairs</u>
  Since the different DIMIDs with the same SIDs are normally used in the fact tables, they cannot simply be deleted. Therefore, all of the different DIMIDS in the fact tables are replaced by one DIMID that is randomly selected from the equivalent ones. Before a change can be made to the database, the consent of the user is requested.
  DIMIDs that have become unnecessary are deleted in the connection. In doing so, not only are the DIMDs deleted that were released in the first part of the repair, but so are all of those that are no longer used in the fact tables (including aggregates). The consent of the user is again requested before this change is made.

• How can I use the same domain.sites2 on two macs?

  I know iWeb is no longer supported but I still find it ok to manage my web site.
  I would like to work on the site from two macs. I thought I could just use the same Domain.sites2 on both macs but: if I move Domain.sites2 to dropbox folder, when I launch iWeb it does not know about it and creates a new empty Domain.sites2 in the Library/iWeb folder
  I do not want to have to manually make a copy of Domain.sites2 to Dropbox and then to the other mac's Library every time I switch computer.

  You may want to use :
  http://wyodor.byethost8.com/iwebsites/iWebSites.html
  Select "Choose new folder" from the File menu to select the folder on Dropbox where your domain file is.
  If that does not work, use:
  http://wyodor.byethost8.com/iwebsites/iWebDrop.zip
  (Unzip the file and drop the domain file on top of it)
  After that, you can open iWeb with your currently used domain file.

• HT1206 Lots of info about one user using multiple computers. What about multiple users with separate Apple IDs using same computer? Having problems getting my wifes new iPhone talking to her apple account on the computer we share (2 users)

  Lots of info about one user using multiple computers. What about multiple users with separate Apple IDs using same computer? Having problems getting my wifes new iPhone talking to her apple account on the computer we share (2 users)

  You need to create a user account for your wife (or yourself depending on who has the current user account). When syncing, each of you should sign in as a separate user, login to iTunes and then sync. I had this problem when my sister got an iPhone. When we did her initial sync, everything on my iPhone showed up on hers. Apple gave me this solution.

• We have multiple devices in the family, including now 4 iphones, all who share the same Apple ID. I want to stop this, but need thoughts on multiple IDs as Findmyphone works well as same ID?!

  We have multiple devices in the family, including now 4 iphones, all who share the same Apple ID. I want to stop this, but need thoughts on multiple IDs as Findmyphone works well as same ID?!

  I don't know if I'm asking this all in a way that can be understood? Thanks ED3K, however that part I do understand (in the link you provided!)
  What I need to know is "how" I can separate or rather create another Apple ID for my son-who is currently using "my Apple ID?" If there is a way to let him keep "all" his info on his phone (eg-contacts, music, app's, etc.) without doing a "reset?') Somehow I need to go into his phone's setting-create a new Apple ID and possibly a new password so he can still use our combined iCloud & Itunes account?
  Also then letting me take back my Apple ID & password, but again allowing us (my son and I) to use the same iCloud & Itunes account? Does that make more sense??? I'm sincerely trying to get this cleared up once and for all----just need guidance from someone who has a true understanding of the whole Apple iCloud/Itunes system!
  Thanks again for "anyone" that can help me!!!