QUESTION ABOUT CLIENT ACCESS ROLE AND MAILBOX SERVER INSTALLATION ON DIFFERENT HOSTS

Similar Messages

• Question about transfer between oracle and sql server

  Could i program to transfer lots of data between Oracle and SQL Server quickly?
  I have tried make two connection between two databases, but it took me lots of time to transfer data.
  How could I do it?
  Thanks

  Hi,
  If you need to move data fast, then use the Oracle Migration Workbench to Generate SQL Server BCP data extraction scripts and Oracle SQL Loader files.
  This is the fastest way to migrate the data.
  In the Oracle Model UI tab of the Oracle Migration Workbench, right mouse click on the tables folder. there is a menu option to 'Generate SQL Loader ...' scripts. This will help you migrate your data efficiently.
  Regards
  John

• EXCHANGE SERVER 2013 CLIENT ACCESS ROLE BASED QUESTION

  In my environment,i have to install two CAS in two different host machines and mailbox server on a different host machine.can it be possible?if possible then please tell me the procedure how can these communicate with each other?and is this a cas array?please
  help me,i am confused. 
  trainee

  Yes you can always go ahead and do this . Having 2 cas and one mailbox is not going to harm in anyways but one cas can handle  all the connections as far as you have less number of users and you can have equal number of mailbox servers as well so that
  you can manage the DB's btw 2 mbx servers  by setting up DAG.
  Please mark as helpful if you find my contribution useful or as an answer if it does answer your question.That
  will encourage me - and others - to take time out to help you.
  Regards,
  Sathish

• Installation of Client Access role fails on Windows Server 2008 R2 (Execution of: "$error.Clear(); Install-ExchangeCertificate -services "IIS, POP, IMAP")

  Hello
  I am trying to install Exchange Server 2010 beta 1 onto a Windows Server 2008 R2 (build 7000) machine which has also been set up as a domain controller.
  However when attempting to install the Client Access role, setup fails with the error below.
  Does anyone know of a way to get around this please?
  I have already searched for this error and not found any similar threads.
  Also every time I press the code button on this forum it crashes the browser and I keep losing the message! (IE8 from within Server R2). Also the message box is very small, will not expand and keeps jumping to the top.
  Thanks
  Robin
  [code]
  Summary: 4 item(s). 1 succeeded, 1 failed.
  Elapsed time: 00:00:01
  Preparing Setup
  Completed
  Elapsed Time: 00:00:00
  Client Access Role
  Failed
  Error:
  The execution of: "$error.Clear(); Install-ExchangeCertificate -services "IIS, POP, IMAP" -DomainController $RoleDomainController", generated the following error: "Could not grant Network Service access to the certificate with thumbprint 2F320F5D5B5C6873E54C8AB57F604D8AFA31D18C because a cryptographic exception was thrown.".
  Could not grant Network Service access to the certificate with thumbprint 2F320F5D5B5C6873E54C8AB57F604D8AFA31D18C because a cryptographic exception was thrown.
  Access is denied.
  Elapsed Time: 00:00:01
  Mailbox Role
  Cancelled
  Finalizing Setup
  Cancelled
  [/code]
  Robin Wilson

  Hello
  Thanks for all the replies.
  I have since wiped the system and installed everything again and it all worked this time so not sure what was wrong last time. I did try to uninstall all Exchange components and then uninstall IIS and Application server, reboot and re-install but I received the same error still when it came to installing the client access role.
  Walter: I just attempted the standard installation which should have used the default self-signed certificate. Everything was a fresh install done at the same time on a freshly formatted PC.
  For info last time when it failed to work:
  - Installed Windows Server 2008 R2
  - Installed Domain Controller role using dcpromo. I set the forest and domain as Windows Server 2008 R2
  - Added a forest trust between main domain and test Exchange domain (set up as ex2010.local)
  - Installed IIS and Application Server role
  - Installed Hyper-v role
  - Installed Desktop Experience feature
  - Installed Exchange and recieved the error
  When it worked I set up the forest and domain in Windows Server 2008 mode (i.e. not R2), installed Exchange first and then set up the forest trust and then Hyper-v. It did say it failed to configure dns which was probably because it started trying to do automatic updates half way through the dcpromo! DNS seems to work ok though.
  I did notice this time that Hyper-v gave a warning about the virtual network adapter not being set up correctly and the local network did not work correctly although I could access the internet. Not sure if this could have been related to the cause of the problem previously. For now I have disabled the virtual network until I get time to try and get it working and so the mail will work in the meantime.
  I also noticed that Hyper-v added an extra 443 ssl binding to the default website so as it had 2 bindings on port 443 it refused to start. After deleting one it worked.
  I decided to install Exchange onto a domain controller as it is only a test and I wouldn't do it in a live environment. I am also short of test machines! It didn't give me any warnings about this actually, I think previous versions warn you that it is not recommended.
  Andreas and Chinthaka: I did not know about the requirement to run the domain at 2003 mode. The main domain is running in 2008 mode with Exchange 2007 so I assume this is just a temporary beta related requirement. It does seem to be working (second attempt) so far in a 2008 mode domain although I haven't had a chance to fully test it yet.
  Thanks
  Robin
  P.S. Sorry it's taken me a while to reply!
  Robin Wilson

• Exchange 2010 SP2 to SP3 upgrade fails on Client Access Role

  Hello,
  I have searched everywhere and cannot find any answer to my problem. We have 1 Exchange server with all 3 roles installed and during the upgrade from SP2 to SP3 the server fails during the Client Access Role with the following error:
  Error:
  The following error was generated when "$error.Clear();
            Get-ClientAccessServer $RoleFqdnOrName | Add-AdPermission -User "S-1-5-20" -ExtendedRights "Exchange Web Services Token Serialization";
          " was run: "Invalid URI: The format of the URI could not be determined.".
  Invalid URI: The format of the URI could not be determined.
  Click here for help... http://technet.microsoft.com/en-US/library/ms.exch.err.default(EXCHG.141).aspx?v=14.2.247.1&e=ms.exch.err.Ex88D115&l=0&cl=cp
  here is more info from the ExchangeSetupLogs
  [10/09/2014 09:26:07.0463] [1] Executing:
            Get-ClientAccessServer $RoleFqdnOrName | Add-AdPermission -User "S-1-5-20" -ExtendedRights "Exchange Web Services Token Serialization";
  [10/09/2014 09:26:07.0463] [2] Active Directory session settings for 'Get-ClientAccessServer' are: View Entire Forest: 'True', Configuration Domain Controller: 'ADROOT.DOMAIN.local', Preferred Global Catalog: 'ADROOT.DOMAIN.local', Preferred Domain Controllers:
  '{ ADROOT.DOMAIN.local }'
  [10/09/2014 09:26:07.0463] [2] Beginning processing Get-ClientAccessServer -Identity:'EXCH2010.DOMAIN.local'
  [10/09/2014 09:26:07.0463] [2] Active Directory session settings for 'Add-ADPermission' are: View Entire Forest: 'True', Configuration Domain Controller: 'ADROOT.DOMAIN.local', Preferred Global Catalog: 'ADROOT.tioh.local', Preferred Domain Controllers: '{
  ADROOT.DOMAIN.local }'
  [10/09/2014 09:26:07.0463] [2] Beginning processing Add-AdPermission -User:'S-1-5-20' -ExtendedRights:'Exchange Web Services Token Serialization'
  [10/09/2014 09:26:07.0479] [2] Searching objects "EXCH2010.DOMAIN.local" of type "Server" under the root "$null".
  [10/09/2014 09:26:07.0479] [2] Previous operation run on domain controller 'ADROOT.DOMAIN.local'.
  [10/09/2014 09:26:07.0479] [2] Previous operation run on domain controller 'ADROOT.DOMAIN.local'.
  [10/09/2014 09:26:07.0479] [2] Preparing to output objects. The maximum size of the result set is "unlimited".
  [10/09/2014 09:26:07.0510] [2] [WARNING] An unexpected error has occurred and a Watson dump is being generated: Invalid URI: The format of the URI could not be determined.
  [10/09/2014 09:26:07.0526] [2] [ERROR] Invalid URI: The format of the URI could not be determined.
  The article it references doesn't exist and I cannot find anything related to this error searching the web.
  Please help!
  NJV

  Hi  NJv7300
  Thank you for your question.
  By your state, I know you get error when you use Get_ClientAccessServer. I think it caused by AutoDiscover, you can check it.
  You can refer to the following link:http://www.shudnow.net/?s=autodiscoverserviceinternaluri
  You can refer to the following steps:1. 
  1. Using LDP, locate the following container:
  CN=<SERVERNAME>,CN=Autodiscover,CN=Protocols,CN=<SERVERNAME>,CN=Servers,CN=Exchange Administrative Group (FYDIBOHF23SPDLT),CN=Administrative Groups,CN=<ORGNAME>,CN=Microsoft Exchange,CN=Services,CN=Configuration,DC=<DOMAIN>,DC=<TLD>
  2. Double-click the <SERVERNAME> under Autodiscover and look for the "serviceBindingInformation" value:serviceBindingInformation (2): AutoDiscover.Corp.HMSA.com;
  https://honmail.corp.hmsa.com/autodiscover/autodiscover.xml;
  serviceClassName: ms-Exchange-AutoDiscover-Service;The proper format for the Autodiscover URI is
  https://serverfqdn/Autodiscover/Autodiscover.xml
  3. Ran Set-ClientAccessServer -Identity HON10343 -AutodiscoverServiceInternalUri
  https://honmail.corp.hmsa.com/autodiscover/autodiscover.xml
  4. Ran Get-ClientAccessServer, but received an error after HON10343 was enumerated.
  5. Next, did another Set-ClientAccessServer on HON10344.
  6. Finally, ran Get-ClientAccessServer and enumerated all CAS servers in the org without error.
  7. Tested opening EMC on both Exchange 2007 and 2010 and were able to successfully expand the Server Configuration for every role and enumerate all servers.
  If any questions, please let me know.
  Best Regard,
  Jim Xu

• Diiferences between bin/client/jvm.dll and bin/server/jvm.dll

  Hello,
  A basic question about the jvm.dll library :
  I can't find any document explaining the difference between bin/client/jvm.dll and bin/server/jvm.dll both locatedin the j2sdk directory.
  Therefore, I don't really know which one I should use with tomcat run as a service.
  Thanks for your help .
  -- gregory

  I found the answer here:
  http://java.sun.com/javase/6/webnotes/install/jre/README
  under-> Redistributable JDK(TM) Files
  it states:
  jre\bin\server\
  On Microsoft Windows platforms, the JDK includes both
  the Java HotSpot(TM) Server VM and Java HotSpot Client VM.
  However, the Java SE Runtime Environment for Microsoft Windows
  platforms includes only the Java HotSpot Client VM. Those wishing
  to use the Java HotSpot Server VM with the Java SE Runtime
  Environment may copy the JDK's jre\bin\server folder to a
  bin\server directory in the Java SE Runtime Environment. Software
  vendors may redistribute the Java HotSpot Server VM with their
  redistributions of the Java SE Runtime Environment.

• A question about users assigned roles extraction

  Dear all,
  I have a question about users assigned roles list extraction. I need the list of the users who have already been created along with their assigned roles. According to what I found on Google, there is a table named AGR_USERS which provides the roles assigned to each user. Yet, this table provides only the SAP ID of each user along with the assigned roles. What I need more is to have also the first name and second name of each user.
  So, do you know any table providing at least the following information:
  1) First name of each user
  2) Second name of each user
  3) SAP ID of each user
  4) All assigned roles to each user.
  NOTE: I really need to have first name and second name in separate columns
  Thanks in advance,
  Dariyoosh

  >
  Shekar.J wrote:
  > Agr_users for the user ID and role assignments
  > USR02 to check the validity of the User ID
  > and USER_ADDR for the first name and last name
  >
  > You can create a Table join of the above 3 tables to retrieve the data you require
  Thanks to you and others for your attention to my problem
  I don't know anything about ABAP programming, is there any transaction allowing to create this join? As it seems to me the column "UNAME" in the table "AGR_USERS" and the column "BNAME" in the table "USER_ADDR", both refer to the SAP ID of the user. As a result the condition of the join would be "WHERE (UNAME = BNAME)", is there  any transaction/programme allowing to create this join?
  Thanks in advance,
  Dariyoosh

• HT201263 What will i do?screenshot There is a problem with your iPhone. Please visit the Service Answer Center to find answers to all your questions about service options, warranty and other processes in your country. To find your nearest Apple Store, cli

  What will i do? ITune screenshot is as follows >
  There is a problem with your iPhone. Please visit the Service Answer Center to find answers to all your questions about service options, warranty and other processes in your country. To find your nearest Apple Store, click here.

  Do what it said to do.
  "Please visit the Service Answer Center to find answers to all your questions about service options, warranty and other processes in your country. "

• TS1814 There is a problem with your iPhone. Please visit the Service Answer Center to find answers to all your questions about service options, warranty and other processes in your country. To find your nearest Apple Store, click here.

  There is a problem with your iPhone.
  Please visit the Service Answer Center to find answers to all your questions about service options, warranty and other processes in your country.
  To find your nearest Apple Store, click here.
  Please help me i can aktivate my phone imei 012423006333181.

  There is a problem with your iPhone.
  Please visit the Service Answer Center to find answers to all your questions about service options, warranty and other processes in your country.
  To find your nearest Apple Store
  no imei also

• Do I need to set  system env variables for weblogic and SOA server installation?

  Hi All,
     I already have two weblogic application servers on my machine(that were installed by others).
  I observed some environment variables were also set in System variables(ORACLE_HOME,WEB_SERVER_HOME etc) section in Env variables section(Start Menu---> Computer --> properties ---).But why do we need to have system environment variables wherein we already have those variables in files like setDomainEnv.bat or/and setSOADoaminEnv.bat for each server.
  And one more thing system variables will be applicable for all servers(the whole machine) right.It may spoil the installation of new servers and present servers as variables should be unique to each server.
      I want to install weblogic and SOA server installation.
  So Can I remove the existing system variables(as they will applicable for every server) and install weblogic and SOA server installation without setting up the environment variables?
  Especially I have multiple Weblogic servers,In that case how it would be to have environment variables(JAVA_HOME,WL_HOME,ORACLE_HOME etc)?
  Please guide me on this to installl SOA suite .
  Thanks in advance

  Hi All,
     I already have two weblogic application servers on my machine(that were installed by others).
  I observed some environment variables were also set in System variables(ORACLE_HOME,WEB_SERVER_HOME etc) section in Env variables section(Start Menu---> Computer --> properties ---).But why do we need to have system environment variables wherein we already have those variables in files like setDomainEnv.bat or/and setSOADoaminEnv.bat for each server.
  And one more thing system variables will be applicable for all servers(the whole machine) right.It may spoil the installation of new servers and present servers as variables should be unique to each server.
      I want to install weblogic and SOA server installation.
  So Can I remove the existing system variables(as they will applicable for every server) and install weblogic and SOA server installation without setting up the environment variables?
  Especially I have multiple Weblogic servers,In that case how it would be to have environment variables(JAVA_HOME,WL_HOME,ORACLE_HOME etc)?
  Please guide me on this to installl SOA suite .
  Thanks in advance

• A question about CPS (CPS processing) and CAPolicy.inf file.

  Hello All
  Can someone please help me with the following question.
  Background, I am building a 3-tier PKI infrastructure. offline Root, offline Policy (intermediate), online issuing.
  Now my first question is about CPS (certificate practice statement) for this example lets just call this the InternalIssuancePolicy as below.
  Basically I was thinking it is best not to set a given certificate (aka issuance) policy at the Root, the reason being I may wish to have different issuance policies at a latter date.
  For example right now I just want an issuance policy (CPS) for internal certificates only, therefore I am thinking set this at the Policy CA level, as below [InternalIssuancePolicy] (example OID) and then issuing CA certs from this Policy CA to the
  internal issuing CAs. If at a latter date I want a different policy (CPS) for issuance of external certificates I can build a new Policy CA under the existing Root with a different policy extension.
  Is the above logic sound?
  Questions:
  I am assuming from recent study that the CA cert issued to the Issuing CA will contain a single issuance policy "only" i.e. the one that was specified in the Policy CA 1.3.6.1.4.11111111.1.1.1.  If so I believe you cannot build a new
  issuing CA and submit the CSR to the Policy CA asking for a CA cert with any other certificate policy extension other than 1.3.6.1.4.11111111.1.1.1
  Is that correct?
  Also
  I saw a blog post which stated if are going to use certificate/issuance policies (other than all issuance policies) you should mark the extension as critical=true otherwise the policy just becomes glorified comment. I take the point but that leads me to
  two more questions
  1: How does the certificate changing engine or CryptoAPI enforce a certificate policy (as it is just a policy, e.g. written procedure). I am assuming all this means is it forces the client to process the extension and therefore check the certificate
  policy extension in the certificate does not violate the certificate chain but that is all it can do?
  2: If the certificate policy extension is set to critical and the URL referenced in the extension is not available (e.g. on a WEB Server and the client is working offline, but has a cached CRL), does setting the extension to critical also force the
  client to try and access the URL listed, or not (I am assuming not as you could just have a text block rather than URL).
  Any comments suggestions on my proposed three CAPolicy.inf files below for the 3-tier PKI (again offline Root and Policy)
  ** Root **
  [Version]
  Signature= "$Windows NT$"
  [Certsrv_Server]
  RenewalKeyLength=4096
  RenewalValidityPeriodUnits=Years
  RenewalValidityPeriod=20
  CRLPeriod=Years
  CRLPeriodUnits=1
  LoadDefaultTemplates=False
  AlternateSignatureAlgorithm=0
  [CRLDistributionPoint]
  [AuthorityInformationAccess]
  basicconstraintsextension]
  pathlength = 2
  critical=true
  PolicyStatementExtension]
  Policies = AllIssuancePolicy
  Critical = FALSE
  [AllIssuancePolicy]
  OID = 2.5.29.32.0
  ** Policy CA **
  [Version]
  Signature= "$Windows NT$"
  [Certsrv_Server]
  RenewalKeyLength=2048
  RenewalValidityPeriodUnits=Years
  RenewalValidityPeriod=10
  CRLPeriod=Years
  CRLPeriodUnits=1
  [PolicyStatementExtension]
  Policies = InternalIssuancePolicy
  Critical = False
  [InternalIssuancePolicy]
  OID = 1.3.6.1.4.11111111.1.1.1
  Notice = "Internal Certificate Policy"
  URL="http://pki.lab.local/Certenroll/CPS.txt"
  [AuthorityInformationAccess]
  URL=http://pki.lab.local/Certenroll/PolicyCA01.crt
  [CRLDistributionPoint]
  URL=http://pki.lab.local/Certenroll/PolicyCA01.crl
  [basicconstraintsextension]
  pathlength = 1
  critical=true
  ** Issuing CA **
  [Version]
  Signature= "$Windows NT$"
  [Certsrv_Server]
  RenewalKeyLength=2048
  RenewalValidityPeriodUnits=Years
  RenewalValidityPeriod=5
  CRLPeriod=Weeks
  CRLPeriodUnits=1
  CRLDeltaPeriod=Days
  CRLDeltaPeriodUnits=1
  LoadDefaultTemplates=False
  AlternateSignatureAlgorithm=0
  [AuthorityInformationAccess]
  URL=http://pki.lab.local/Certenroll/IssuingCA01.crt
  [CRLDistributionPoint]
  URL=http://pki.lab.local/Certenroll/IssuingCA01.crl
  [basicconstraintsextension]
  pathlength = 0
  critical=true
  Thanks All
  AAnotherUser__

  > Is the above logic sound?
  not that much. In this case 3-tier PKI could be reduced to 2-tier. Make default Offline Root CA and below it issuing CAs with desired policy OIDs. You will combine issuing CA with policy CA functionality. Additional tier will cost you a license, administration
  overhead and increased certificate chain processing delays. There is nothing wrong if you combine policy CAs with issuing.
  > I saw a blog post which stated if are going to use certificate/issuance policies (other than all issuance policies) you should mark the extension as critical=true
  where did you get this? Certificate policies should not be marked critical. Certificate chaining engine will take care of it, when application reqests CCE to validate desired policy.
  > does setting the extension to critical also force the client to try and access the URL listed
  no. Certificate chaining engine do not inspect policy qualifier URLs.
  > Any comments suggestions on my proposed three CAPolicy.inf files below for the 3-tier PKI (again offline Root and Policy)
  [CRLDistributionPoint]
  [AuthorityInformationAccess]
  [PolicyStatementExtension]
  Policies = AllIssuancePolicy
  Critical = FALSE
  [AllIssuancePolicy]
  OID = 2.5.29.32.0
  these sections are not required in root CA.
  [AuthorityInformationAccess]
  URL=http://pki.lab.local/Certenroll/PolicyCA01.crt
  [CRLDistributionPoint]
  URL=http://pki.lab.local/Certenroll/PolicyCA01.crl
  [basicconstraintsextension]
  pathlength = 1
  critical=true
  These sections are not required at policy CA. Afaik, CDP and AIA extensions are not supported in non-root CA configuration files. The same is with issuing CA. And your issuing CA is missing PolicyStatementExtension section.
  Vadims Podāns, aka PowerShell CryptoGuy
  My weblog: en-us.sysadmins.lv
  PowerShell PKI Module: pspki.codeplex.com
  PowerShell Cmdlet Help Editor pscmdlethelpeditor.codeplex.com
  Check out new: SSL Certificate Verifier
  Check out new:
  PowerShell File Checksum Integrity Verifier tool.

• Client access from W7 to Server 2008 with SQL Express 2008 R2 not possible anymore (since installing yesterdays patches)

  Hi everyone!
  We are suddenly having Problems to access our SQL Express Server from our Clients (SBS 2008 with W7 clients).
  Till yesterday evening everything was working fine. At night we installed the latest MS patches für our Server 2008 (SBS2008).
  Since then we are not able to connect to the SQL Express Server over the Network. Locally (on the Server) it runs fine.
  Switching the Windows Firewall off on the Server also lets the clients connect ...
  The Windows Firewall still has all the ports open needed for SQL Server, we havn't changed anything.
  All the incoming rules that worked for years are still there (untouched).
  We just deinstalled all the latest patches, but problem still is here ... not sure if this was just a coincidence ...
  Any ideas what could be the Problem?
  Thanks in advance for your help
  Best regards
  Thomas

  Check firewall rules
  enable traffic on TCP 1433 and UDP 1434 (if isn't a named instance) or check sql using ports.
  Check Sql Server Browser in Configuration Manager and also net protocols.
  let's know about it
  Best regards,
  P.Ceglie
  Questo post è fornito "così com'è". Non conferisce garanzie o diritti di alcun tipo. Ricorda di usare la funzione "segna come risposta" per i post che ti hanno aiutato a risolvere il problema e "deseleziona come risposta" quando
  le risposte segnate non sono effettivamente utili. Questo è particolarmente utile per altri utenti che leggono il thread, alla ricerca di soluzioni a problemi similari. ENG: This posting is provided "AS IS" with no warranties, and confers no rights.
  Please remember to click "Mark as Answer" on the post that helps you, and to click "Unmark as Answer" if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread.

• Some questions about Unity 4.0 and IPC

  I have a couple of questions and I was looking for "real world" answers, not specific answers from the design guide.
  1.What is this bandwidth requirement between Exchange and Unity and what is it used for?
  2. What sort of issues would we experience if we placed the Unity UM Server at the Colo and placed the Exchange server at the customer premise; with a single T1 between the sites?
  3.What else is involved with a Unity UM install vs. a Unity VM install?
  4.Does the Unity UM and Exchange servers have to be running AD?
  5. Can Unity or the Exchange box be the Domain Controller? Or does it need to be a separate server?
  6. Where does a vm message get streamed from? The Unity server or the Exchange server?

  No you do not pay for FaceTime. It uses your WiFi network, so if you have access to WiFi it is free.
  There is no server required for FaceTime, it will use a direct device to device protocol.
  I can't answer the question about using phones in different countries as that will depend on if you buy a phone that is locked to a carrier.
  If you buy a phone in Germany and it is locked to a German phone network then it will most likely not work with a SIM from Turkey. You would need to buy an unlocked phone which are very expensive as they do not have any carrier subsidy applied to the price.

• Question about AUTOTRACE, SP2-0618 and SP2-0611

  Good morning,
  I wanted to look at the execution plan(s) for some sample queries. I did a little research using Google, found out about autotrace, plan_table, plustrace role and utlxplan. I followed the instructions I found but the result isn't quite as expected.
  Here is an output of a freshly started session:
  0 01:50 [SS1TB Attic-Z] [5G] [750M] Z:\Documentation\Oracle\
  Oracle Concepts\Scripts>sqlplus hr/abc123
  SQL*Plus: Release 11.2.0.1.0 Production on Sun Aug 8 01:50:16 2010
  Copyright (c) 1982, 2010, Oracle.  All rights reserved.
  Connected to:
  Oracle Database 11g Enterprise Edition Release 11.2.0.1.0 - Production
  With the Partitioning, OLAP, Data Mining and Real Application Testing options
  SQL> select count(*) from plan_table;
    COUNT(*)
           2
  SQL> set autotrace on
  SP2-0618: Cannot find the Session Identifier.  Check PLUSTRACE role is enabled
  SP2-0611: Error enabling STATISTICS report
  SQL> select count(*) from plan_table;
    COUNT(*)
           2
  Execution Plan
  Plan hash value: 3662021055
  | Id  | Operation          | Name       | Rows  | Cost (%CPU)| Time     |
  |   0 | SELECT STATEMENT   |            |     1 |     3   (0)| 00:00:01 |
  |   1 |  SORT AGGREGATE    |            |     1 |            |          |
  |   2 |   TABLE ACCESS FULL| PLAN_TABLE |     2 |     3   (0)| 00:00:01 |
  Note
     - dynamic sampling used for this statement (level=2)
  SQL>1. the first select is there to ensure I have a plan_table, that checks.
  2. When I set autotrace on, I get SP2-0618 and SP2-0611 for reasons that I cannot figure out.
  3. the second select is there to find out if the autotrace in step 2 had any effect. It did since now the explain plan is displayed.
  The question is: if it is working (as step 3 demonstrates) then why I am getting those errors in step 2 ? and what do I have to do to not get those errors anymore ?
  Thank you (again!) for your help,
  John.
  Note: I created the plustrace role, granted it select on v_$sesstat, v_$statname, v_$session, then I granted plustrace to hr. Was there something else needed ?

  Hi John,
  It looks like that, for PLUSTRACE it is important for the user to be logged out when the role is granted otherwise, it looks like there is a part of the process that doesn't "stick".That's not just with the PLustrace role. Any role would be working when the next time the user is going to log in. Please see below where using two sessions, I shall grant a user some privs and would see whether its working for the user or not.
  *Session1BANNER
  Oracle Database 11g Enterprise Edition Release 11.2.0.1.0 - Production
  PL/SQL Release 11.2.0.1.0 - Production
  CORE    11.2.0.1.0      Production
  TNS for 32-bit Windows: Version 11.2.0.1.0 - Production
  NLSRTL Version 11.2.0.1.0 - Production
  SQL> create user john identified by john;
  User created.
  SQL> grant connect to john;
  Grant succeeded.
  SQL> create role dangerous ;
  Role created.
  SQL> grant drop any table,create any index to dangerous;
  Grant succeeded.
  SQL> conn john/john
  Connected.
  SQL> select * from session_privs;
  PRIVILEGE
  CREATE SESSIONSo far, what I did that I created a user John, granted him a direct priviledge. There is a role also that's prepared and would be granted to the user while still he being connected. See below, this is the second session,
  SQL*Plus: Release 11.2.0.1.0 Production on Sun Aug 8 15:33:09 2010
  Copyright (c) 1982, 2010, Oracle.  All rights reserved.
  Connected to:
  Oracle Database 11g Enterprise Edition Release 11.2.0.1.0 - Production
  With the Partitioning, OLAP, Data Mining and Real Application Testing options
  SQL> grant dangerous to john;
  Grant succeeded.I would check the available permissions for the user in the session. This command was entered in the first session where the user john was already connected.
  SQL> /
  PRIVILEGE
  CREATE SESSIONYou can see that there is no change in the session privs. Now, let's disconnect and connect again,
  SQL> disconn
  Disconnected from Oracle Database 11g Enterprise Edition Release 11.2.0.1.0 - Production
  With the Partitioning, OLAP, Data Mining and Real Application Testing options
  SQL> conn john/john
  Connected.
  SQL> select * from session_privs;
  PRIVILEGE
  CREATE SESSION
  DROP ANY TABLE
  CREATE ANY INDEXAll he privs are active now for the user.
  Now, the privs in the role, if would be updated, would be reflecting right away in the user's currently connected session. I added one more priv to the role in the 2nd session and it was coming in the 1st session, see below please,
  session-2
  SQL> grant alter any table to dangerous;
  Grant succeeded.
  SQL>
  session-1
  SQL> /
  PRIVILEGE
  CREATE SESSION
  ALTER ANY TABLE
  DROP ANY TABLE
  CREATE ANY INDEX
  SQL>I copied extra lines I guess, deleted them now.
  Aman....
  Edited by: Aman.... on Aug 8, 2010 3:56 PM

• RPC client access log and IIS log, difference??

  RPC logging is in "C:\Program Files\Microsoft\Exchange Server\V14\Logging\RPC Client Access" by default.
  And IIS logs is in "C:\inetpub\logs\LogFiles\W3SVC1" by default.
  Just want to know which client will generate which Log?
  For example, exchange server 2010 supports:
  Outlook Web App
  Outlook anywhere
  Exchange ActiveSync
  POP3 and IMAP4
  Autodiscover
  So far as I know, "exchange activesync" is always appear in IIS log. But outlook users(all in domain), most of them are always appear in RPC log, but sometime a few users appear in IIS log. 
  For example:(IIS log)
  2014-03-31 00:01:51 172.23.0.100 POST /EWS/Exchange.asmx - 443 TEST\alice 172.26.0.41 Microsoft+Office/14.0+(Windows+NT+6.1;+Microsoft+Outlook+14.0.7116;+Pro) - 200 0 0 312
  RPC log:
  2014-03-31T00:42:09.964Z,1024,1,/o=first organization/ou=exchange administrative group(fydibohf23spdlt) /cn=recipients/cn=alice,,OUTLOOK.EXE,14.0.7108.5000,Cached,,,ncacn_http,,OwnerLogon,0,00:00:00.0156287,,
  I want to understand the logging rules, please help?

  Hi, Steve:
  Thanks very much for your reply. I have a question to your reply here.
  RPC-->Outlook clients, and then EWS(includes Outlook 2011??) What's the difference between Outlook clients and Outlook 2011(I think it should be 2010?), but is that Outlook 2010 not belong to 'Outlook clients'?
  Best Regards,
  Ryo