Open Directory access from outside of network / internet

Similar Messages

• Design Studio access from outside the network

  Hi!
  I've got a problem with Design Studio 1.2 SP01. Everything works well, if I access everything when I sit in the office. If I'm at home and I chose "Add Datasource", I can select a Universe, but if I want to build a query "Edit Query Spezification", I get the following error:
  Failed to create CMS session (see error log for detail)
  Caused by: com.crystaldecisions.sdk.exception.SDKException$OCAFramework: Server demo.comp:6400 not found or server may be down (FWM 01003)
  cause:com.crystaldecisions.enterprise.ocaframework.OCAFrameworkException$NotFoundInDirectory: Server demo.comp:6400 not found or server may be down (FWM 01003)
  cause:java.net.UnknownHostException: demo
  detail:Server demo.comp:6400 not found or server may be down (FWM 01003) demo
  detail:Server demo.comp:6400 not found or server may be down (FWM 01003) demo
  Our server is named demo.comp and can be accesed if you are inside the company network. I can access the Server via comp-demo.com from the Internet, but if I use the Designer, I get the error described above.
  Thanks in advance!

  Could a Mod please move this to Design Studio space for answers? Tammy Powlas
  I already read through a bunch of threads, without finding an answer
  Thanks a lot!

• Access SAP through SAPRouter from outside of Network

  Hello All,
  As my SAPRouter cerificate got expired  i genrated new certificate & import same into SAProuter. And this time my router is working fine.
  But this time i want to access from outside of network so added this entries in my SAProutab as follow:
  KT "p:CN=sapserv2, OU=SAProuter, O=SAP, C=DE" 194.39.131.34 *
  KP "p:CN=sapserv2, OU=SAProuter, O=SAP, C=DE" <Public ip>
  P <Public ip> 194.39.131.34 3299
  P <my router ip> 194.39.131.34 3299
  P 172.16.. 194.39.131.34 3299
  P 194.39.131.34 172.16..
  P 194.39.131.34 <Public ip> 3299
  S * <my SAP ip> 3200
  P <Public ip> <my SAP ip> 3200
  Note:
  SAP System No: 00
  DEV_Rout
  trc file: "dev_rout", trc level: 1, release: "700"
  Thu Sep 30 11:38:25 2010
  SAP Network Interface Router, Version 38.10
  command line arg 0: F:\usr\sap\saprouter\saprouter.exe
  command line arg 1: -r
  command line arg 2: -W
  command line arg 3: 60000
  command line arg 4: -R
  command line arg 5: F:\usr\sap\saprouter\saprouttab
  command line arg 6: -K
  command line arg 7: p:CN=<HOSTNAME>,OU=0000*****,OU=SAProuter,O=SAP,C=DE
  SncInit(): Initializing Secure Network Communication (SNC)
  PC with Windows NT (mt,ascii,SAP_UC/size_t/void* = 16/64/64)
  SncInit(): Trying environment variable SNC_LIB as a
  gssapi library name: "F:\usr\sap\saprouter\nt-x86_64\sapcrypto.dll".
  File "F:\usr\sap\saprouter\nt-x86_64\sapcrypto.dll" dynamically loaded as GSS-API v2 library.
  The internal Adapter for the loaded GSS-API mechanism identifies as:
  Internal SNC-Adapter (Rev 1.0) to SECUDE 5/GSS-API v2
  main: pid = 2028, ppid = 0, port = 3299, parent port = 0 (0 = parent is not a saprouter)
  reading routtab: 'F:\usr\sap\saprouter\saprouttab'
  I am not able to access my sap from outside of network.
  SAP Router String: /H/<PUBLIC IP>/S/3299/H
  Any idea. Thnaks in advance
  Regards.

  Hi,
  Hope you have private external IP than dynamic which changes every now and then you can this:
  P <Public ip> * 3299 or P <Public ip> SID_IP 3299
  Also look for your the logs for saprouter and your router logs if this not works.
  Regards;

• Unable to access hosts from outside local network

  I have set up a few different name-based virtual hosts for a small client. DNS is set up correctly; sites can be accessed internally; everything is working OK.
  However, none of the virtual hosts can be accessed from outside their internal network. I know for a fact that DNS is set up correctly as dig tells me so. Firewall port 80 is open and everything (mail, vpn, etc.) else is working fine.
  I've looked over the httpd config files many times and just can't seem to find anything wrong. Any suggestions on where to look for problems?
  Xserve   Mac OS X (10.4.5)  

  What if you swap out your Apache config for a moment with the default one? Do you have reason to think that it's something in your name-based virtual host settings?
  Can you access a web site from the outside if you only have the default config on there, accessing it maybe via IP address?
  If so, we'll probably need to know more about your virtual host setup in order to troubleshoot this any further, considering you have other services running and accessible on the machine.
  Are you getting any errors? What happens when you try to reach one of the websites? Have you looked at your error log for any of the sites?

• USB External HD Connected to Airport Extreme - access from outside network?

  Hi,
  Is there any type of software that I can get that would allow me to access my shared external hard drive w/ my airport extreme from outside the network, like some type of ftp server or anything that would allow me to access it from outside my home?

  A simple way would be to share it via Apple File Sharing and FTP...
  You'll need a static Ip and a hostname, although it is easy to set up if you have a dynamic Ip too...
  Creat a free hostname on "www.dyndns.com" (for example), open your AFP and FTP ports on your router, and then use sotware such as "Rumpus" for the FTP service and tell it what drive you want to share (it can be a network drive). For AFP, all you have to do is connect to the server from the finder, hitting "Go...Connect to Server.."
  I've got my extreme drive shared globally and it works fine...just need some time and patience to set up the ports and hostnames...
  If you need help on the setup just email me... [email protected] and i'll be happy to answer any questions...

• Do I need a domain name in order to connect to my Mini Server 10.8.2 from outside my network?

  I am working on setting up my mac mini server. Aside from in home file sharing I want ot be able to connect to some files remotely and even upload files, say pictures from my camera, to my server from outside my network. I am only looking to have maybe 2 users that have access. Should I get a domain name from a place like GoDaddy? in order to set up server to use domain in initial setup? I have 2 Drobos connected with my music, videos and pictures and I wat to access them from an Android, Windows and iPod device when away from home. Any how-tos out there or good step by step guides?
  Thanks for any information.
  -Peace
  -Dave

  A normal address like www.domain.com is intended to work with static IP addresses, DynDNS is a service specifically intended for dynamic addresses and it will therefore automatically update the address e.g. name.dyndns.org to match the dynamic IP address each time it changes.
  Some home broadband routers have built-in support to act as a DynDNS client but if yours does not then you can run the DynDNS software on your Mac server. This will then tell the DynDNS servers what your current dynamic IP address is so they can map it to your host name.
  The result will be that your users can use a name like yourname.dyndns.org to access your server and not have to worry about the fact your IP address may change.
  You would still need to run a VPN server to allow your remote users to connect to your network but OS X Server can do this. You could also run a website but depending on your needs that might be better done by using a web hosting service.

• When trying to open a pdf from a shared network folder I get an error

  hello,
  When trying to open a pdf from a shared network folder I get the error: 'there was an error opening this document the document cannot be found'. The share is on a Windows 7 machine and sharing to a OS X 10.7 Machine. Permisson has been given on the share for 'Everyone' read and Write, and is mapped to the 10.7 machine through the 'Connect to Server' in finder with login credentials.
  Can you help please?
  Kind regards,
  Chris

  This is in Internet Explorer 6 (yes, horrible, I know), but we use a standardized image where I work, with pretty intense GPO's.
  Don't know what happens if you right-click the link; but from any other machine (with the same image) the same link will open with all three options "Open", "Save", and "Cancel".  These are not freshly imaged machines, so some setting must of been changed along the way to make this happen on this user's computer.
  Repaired Acrobat, but this resolved nothing.
  Also checked in IE to make sure that Adobe was enabled under the Programs tab.
  Also, the option to view a pdf within the browser is not turned on.
  Any other ideas?

• Access SharePoint outside the network

  Please correct my if I'm wrong or if there are other ways to access SharePoint outside the network with AD authentication
  Option 1 - Internal SharePoint Server. Configure reverse proxy and punch a hole in the firewall to access it outside network
  Option 2- Setup SharePoint server in the DMZ then configure 1 way trust in the Internal Domain Controller
  Option 3 - If both above are not doable setup a UAG in the DMZ 
  Is there another option that I'm missing ? I'm really looking on implementing Option 1 or 2 but some of the network team doesn't want to punch a hole in the firewall or configure a trust (option 2), but without the trust the only way you can authenticate is
  FBA correct?
  Thanks in advance
  AJ MCTS: SP 2010 Configuration MCSA: Windows 7 If you find this post useful kindly please mark it as an answer :) TY

  Hi,
  According to your post, my understanding is that you wanted to access SharePoint outside the network.
  You need to set up a zone with Forms Based Authentication for the people not on the domain
  Here is a similar thread for your reference:
  http://stackoverflow.com/questions/1783884/giving-access-to-sharepoint-site-for-people-outside-organization
  More information:
  Configuring Forms Based Authentication in SharePoint 2010
  Claims Walkthrough: Creating Forms-Based Authentication for Claims-Based SharePoint 2010 Web Applications Using ASP.NET SQL Membership and Role Providers
  Best Regards,
  Linda Li
  Linda Li
  TechNet Community Support

• Lync client cannot connect to Exchange Server when accessing from outside (Internet) - please HELP!

  Hello,
  I have full representation of the Lync 2010 from Outside (i.e. Internet), but I still have small issue related to Lync-to-Exchange integration. Clients who is using Lync client from outside (i.e. Internet) cannot see Exchange-related information including
  Call Logs, Voicemail and Calendar information.
  Here is the experience and error messages that anyone will see when connecting to Lync server from Outside:
  And this is the error message that will be displayed on Lync phone edition devices (a.g. Polycom CX-700) when connected from Internet:
  If somebody can suggest what I can try I would appreciate this very much. I do believe that many other people have this issue as well.
  Thanks!

  Hi, we had this issue and I ended up logging a MS support job. Turns out it was the TMG rule/Auth method causing the issue.
  Job details:
  **Symptom:
  Lync Client External User are not able to retrieve the EWS URL
  **Troubleshooting:
  • We found External users are not able to Retrieve the EWS information in the Lync Client .
  • We found the below error in the ETL logs.We found for EWS request we are getting the  401 response
  HTTP/1.1 401 Unauthorized ( The server requires authorization to fulfill the request. Access to the Web server is denied. Contact the server administrator.  )
  • TMG need pass through Authentication
  Public names are  autodiscover.domain.com and Outlook anywhere External FQDN  and paths are /ews/* and /autodiscover/*, OAB/*
  Users is All Users, and Delegation is "No delegation but client may authenticate directly" on the corresponding tabs of the publishing rule.
  This changes is required for Lync Client as Lync Client does not  work well with this BASIC authentication on TMG .
  • After  TMG engineer changed this settings in the TMG users are able to see EWS information.
  RELATED ARTICLES:
  Configure Certificates for Servers
  http://technet.microsoft.com/en-us/library/gg398995.aspx
  Associate a Subnet with a Network Site
  http://technet.microsoft.com/en-us/library/gg412804.aspx
  Deploy Office Web Apps Server
  http://technet.microsoft.com/en-us/library/jj219455.aspx
  Reset-CsPoolRegistrarState
  http://technet.microsoft.com/en-us/library/jj619172.aspx
  Manage Access Edge Configuration for Your Organization
  http://technet.microsoft.com/en-us/library/jj552443.aspx
  http://technet.microsoft.com/en-us/library/gg182549.aspx
  Edge Certificate
  http://technet.microsoft.com/en-us/library/gg398409.aspx
  Edge Deployment
  http://blogs.technet.com/b/nexthop/archive/2012/05/15/lync-server-2010-geographically-dispersed-edge-topology-part-1.aspx
  http://blog.schertz.name/2012/07/lync-edge-server-best-practices/
  http://blog.schertz.name/2012/04/lync-server-2010-deployment-part-4/
  http://technet.microsoft.com/en-us/library/gg425891.aspx
  http://blogs.technet.com/b/nexthop/archive/2010/11/17/microsoft-lync-server-2010-protocol-workloads-poster.aspx
  MRAS
  http://blogs.technet.com/b/dodeitte/archive/2012/06/22/issues-with-mras-and-limited-external-calling.aspx
  http://blogs.technet.com/b/ucedsg/archive/2011/05/09/what-can-you-tell-me-about-lync-security.aspx
  IIS ARR Configuration for  Lync 2013
  http://blogs.technet.com/b/nexthop/archive/2013/02/19/using-iis-arr-as-a-reverse-proxy-for-lync-server-2013.aspx
  http://social.technet.microsoft.com/wiki/contents/articles/15893.iis-arr-url-rewrite-for-lync-2010-reverse-proxy.aspx
  Archiving Options in Lync Server 2013
  http://blogs.technet.com/b/dodeitte/archive/2013/04/24/archiving-options-in-lync-server-2013.aspx
  http://blogs.technet.com/b/dodeitte/archive/2013/06/02/sample-lync-server-archiving-report-available.aspx
  Microsoft Lync Server 2010 Resource Kit
  http://www.microsoft.com/en-us/download/details.aspx?id=22644
  Microsoft Lync Server 2013
  http://technet.microsoft.com/en-us/library/gg398616.aspx
  Microsoft Lync Server 2013 RTM Documentation
  http://blogs.technet.com/b/nexthop/archive/2012/10/24/microsoft-lync-server-2013-preview-rtm-documentation-now-available.aspx
  Release Notes for Lync Server 2013
  http://technet.microsoft.com/en-us/library/jj205120.aspx
  Integrating Exchange 2013 Preview and Lync Server 2013 Preview
  http://blogs.technet.com/b/nexthop/archive/2012/07/23/integrating-exchange-2013-preview-and-lync-server-2013-preview.aspx.
  Migration from Lync Server 2010 to Lync Server 2013
  http://technet.microsoft.com/en-us/library/jj205369.aspx
  Lync Online Resource
  http://www.microsoft.com/en-in/download/details.aspx?id=13602

• Blocking access to file sharing (AFP/SMB) from outside of network

  Hello all,
  Is there a way to block access to file shares from outside of our LAN? I have a machine that has some sharing turned on (it is also my email server) and I can reach it across the internet and mount shares as if I was in the office.
  How can I block this access? Both SMB and AFP?
  Thank you,
  -John

  Justin, thank you for your reply. The machine is on a public ip address and is not behind a NAT router. I've turned on the software firewall and that is working now. However, I imagine it would be better to use a hardware firewall. Any suggestions on a good one? Thank you.

• With Mountain Lion Server, can users access the Messages Server from outside your network?

  I would like to setup a new messaging service between my employees because we have issues with most online services. I'm thinking of getting a Mac Mini Server, so I can run Messages Server, but I have an employee outside my network. Can they login to the server remotely to use the Messages Server?
  Thanks

  If you're talking about setting up and using the Jabber messaging service provided by OS X server then yes, it's really easy to set up and use in and out of the office. The only trick it is, and also most other services, is a correct DNS setup so you're able to connect and use the server from the "outside".
  I use this myself (via Lion server rather than Moutain Lion server) from behind a dynamic IP addressed ADSL line and have no problems whatsoever.

• How do I set up a static IP on Airport Express so I can activate the Connet my Mac App from outside my network?

  How do I set up a static IP on Airport Express so I can activate and use the Connect My Mac app from outside my home network?

  You will need to enable file sharing in System Preferences
  as well as setting up sharing and permissions for the
  directories that you want shared.  You may also want to
  setup a non-administrative user or allow limited guest
  access.  The user would require entering a user name and
  password to make the connection, but would allow remotes
  to change files, if set up tat way.
  As for serving iTunes media, better to post in the iTunes forum.

• SMB not working from outside local network

  Hello,
  On my old MacBook I installed OS X Server to create a file sharing server.  I set it up using my public IP address so that I could access my files from outside the local network.  I don't have an Apple router, but I found the port number for SMB and AFP and did the port forwarding.  My issue is that smb stopped working.  It used to work out side the network because it tested it.  My Mac can still connect though outside the local network using my public IP.  I have no clue why SMB is not working as it was working recently.  My only idea is that I got a new modem from my ISP.  Could that make a difference?  I don't get it because AFP still works fine.  File sharing using SMB is checked in the server app and file sharing preferences so it is not that.  I am using OS X 10.8.4 on a MacBook running OS X Server version 2.2.1.  Any help would be appreciated. 
  Thanks,
  Michael

  Is it a modem only, or is it a modem/router that might be creating a double-NAT on your network?
  Incidentally, since you're running Server, you might want to use the built-in VPN gateway to give yourself better security - tunneling AFP/SMB through a router/firewall is pretty insecure.
  Matt

• DNS conflict when running Open Directory Master inside of WIndows network..

  We installed Snow Leopard Server as an Open Directory Master in a building that already has a Windows Primary Domain Controller. The intent was to create a Mac network inside of the building with their own services. The Mac server does not pull LDAP/Kerberos/etc. from the Windows server and the Mac clients do not use the WIndows server for any other services.
  Everything (Final Cut Server, Open Directory, DNS, File Sharing) worked fine for a day. The next day, all of the windows machines were getting DNS conflict messages on their screens every 15 minutes. After shutting down the Snow Leopard Server, the Windows machines are back to normal.
  Ideas?
  Thanks!

  Hi
  Is it possible the Window's Administrators have added your server as a DNS Server in their DHCP Service for some reason unknown to you? Or possibly you've chosen an IP address that is listed as a DNS Server in their DHCP Service?
  If you launch terminal from a client mac and issue the host command for the server's IP address what's the result?
  +"we understood the Mac server has to be hosting DNS in order for Open Directory to function"+
  DNS does not have to be running on the Server itself for any of the Services in OSX Server to function. Just as long as it can resolve itself on both pointers is all that matters. If it was the only server on the network then yes configure the Service. If there already is an existing and mature DNS Service then it makes sense to use it.
  Tony

• Access from an external network

  Hi everyone!
  I'm trying to give support to a client who has an OBIEE application.
  Here's the problem: The software is installed on the network of the developer's company. This server is connected to the client's network through a firewall. This firewall has been configured to enable communication with all ports related to OBIEE (including, off course, port 9704 in wich OBIEE is running).
  From the developer's company, OBIEE runs. If they try to access the application from another computer within their own network, the application runs.
  Now, from the client's network the application does not run. They already checked the firewall and said everything is ok.
  What I wonder is if there is some sort of configuration for OBIEE (more specifically to OC4J wich I believe is the default application server) that prevents the application from being accessed from another network. Pretty much like Apache wich by default only allows local connections.
  Thanks for helping!

  It is possible that your security software (firewall, anti-virus) blocks or restricts Firefox or the plugin-container process without informing you, possibly after detecting changes (update) to the Firefox program.
  Remove all rules for Firefox and the plugin-container from the permissions list in the firewall and let your firewall ask again for permission to get full unrestricted access to internet for Firefox and the plugin-container process and the updater process.
  See:
  *https://support.mozilla.org/kb/Server+not+found
  *https://support.mozilla.org/kb/Firewalls
  See also:
  *https://support.mozilla.org/kb/fix-problems-connecting-websites-after-updating
  *http://kb.mozillazine.org/Error_loading_websites