Remote 2 no longer allows direct access to chapters?
One of the coolest features of the original Remote app was how I could play a movie on my ATV, go to "now playing" on the iPhone, tap to flip the cover art over, and tap on a chapter title to jump the movie directly to that chapter.
If I do the same thing in Remote 2, the chapter list isn't there. Only the movie title is listed. Is this a bug in the new version, or has this functionality been purposefully removed?
Hello there, GrammaLove.
The following Knowledge Base article offers up some steps on how to change your Apple ID:
iOS: Changing the signed-in iTunes Store Apple ID account
http://support.apple.com/kb/ht1311
Thanks for reaching out to Apple Support Communities.
Cheers,
Pedro.
Similar Messages
-
Photoshop no longer allows me access after update
Today I was told by Adobe Application Manager that Photoshop needed to update (both 32-bit and 64-bit versions) which I did.
After that I tried opening Photoshop only to be told that my Photoshop trial license had expired. I have a yearly Creative Cloud subscription and have never installed a trial version of Photoshop to the best of my memory.
I opened Adobe Application Manager to check the state of affairs and was told that application manager needed to be updated so I allowed that to go ahead.
After opening the updated application manager I was asked to sign in to Creative Cloud again which I did. Then all my applications except Dreamweaver were listed as simple "Install". However, I can open Illustrator as normal so it's clearly installed. I installed Illustrator, Dreamweaver, Photoshop and a few others in exactly the same way so I have no idea why they are all treated differently.
I then received an email from creative cloud confirming my email address. Not sure why. I have always used the same address and I get the confirmation mails at that address each month from Adobe reminding me that they are billing me.
I re-installed Photoshop from application manager and it installed and ran correctly when launching from the application manager. Then I closed it and opened it from the Start Menu. It opened successfully then it promptly shut down after about 1 second and displayed a window saying I have 9 days left in my trial and asking me if I want to join the creative cloud. This is not very funny. I search in vain for the button that says, "Actually, I am already paying a fair sum to be in the cloud and you know it, now let me in."
I tried loading the application manager and launching Photoshop from there but now there is no "launch" link.
I checked if there are two versions of Photoshop installed alongside each other but there are only the two executables (32-bit and 64-bit). Quite frustrated about now. Double-clicking "Photoshop" in the application manager doesn't do anything either although at least it recognises I have the latest version isntalled.
Now I go to open Illustrator and it says my trial has expired too. Oh, did I mention it's Christmas and I'm at work. (Wow, that automatically turned into a smiley! First thing to work so far! Things are looking up!)
(As for the user name apparently screen names 'frustrated', 'frustrated22', 'frustrated99', 'veryfrustrated', 'frstrated' are all taken. This was after I searched in vain for a support contact only to find an international phone number in a completely different time zone that has already closed for the day)For others who have this problem, I found the solution here: http://www.seangw.com/wordpress/2012/08/help-photoshop-cs6-asks-for-serial-number-after-si gning-up-for-creative-cloud/
-
My macbook is no longer allowing me access to some of my bookmarked websites including Apple
I had to remove a trojan from my Macbook and downloaded Sophos antivirus for Macs. The removal was successful and everything worked okay until I shut down and restarted. I am now unable to access a number of my bookmarked pages (including the apple site) and I get the error message that either the site is unavailable or their is a problem with one of the proxy servers. I am using my windows based notebook to pose this question and have checked web access with it. The macbook still accesses my mail server and I am getting my mail. Some website front pages are accessible but then I find I can't move to the next level of pages. It isn't my connection or the servers used. I have tried various combinations of settings on the computer including turning off the firewall and sophos. Checking the Sophos log it is suggesting that the Airport.exe has been corrupted. I have tried to find a way of repairing this specific file without success so reloaded the operating software OS X in its entirety from the installation disc. However no success. What have I missed?
See:
Eliminating browser redirects and advertisements
This is probably due to a similar issue to a browser redirect. -
When I open my Mozilla Start Page, I type in a name or website I am searching and Google provides the usual list of websites. When I click on the website I want it won't open. Instead I keep getting redirected instead of going directly to the website. How I can I stop this from happening?
I would normally wonder if this was a malware problem, but apparently a day or so ago there may have been dns problems relating to google.
Have a look at the thread [http://support.mozilla.com/en-US/questions/773501 Search bar causes browser to be hijacked]
That gives suggestion for
* re-seting the search bar
* sorting out malware
* and if necessary considering changing DNS -
Icloud drive - direct access from an ios device
Good morning all :-) Does anyone know if there is some hidden app that allows direct access to iCloud Drive on either an iPad or iPhone? I know I can open Numbers, Pages, etc and access my iCloud files that pertain to those specific apps, but is there a way to access iCloud Drive so I can see ALL the folders in my iCloud Drive? I'm talking similar to the way you open the finder in OS X on the desktop and access the iCloud Drive.
Apple's website in the iCloud section clearly shows an image of an iOS device with iCloud Drive open, showing all the folders in the drive, however I am reading on third-party websites that there is in fact no such app. Strange that Apple would show this on their own webpage, but not make it available to the users.
Thanks!As far as I understood there is no such an app like "file manager" for the icloud drive. So its impossible to access your files from your iOS8 device..!!! Amazing ah!!! Therefore you CAN'T read .pdf files!!!. ibook doesnt work for that job. Another surprise in the post-Jobs Apple!!
Apple sometimes hurts much!!
<Edited by Host> -
Good morning/afternoon/evening TechNet,
I've finally gotten a DA client connected to the corporate network utilizing an external network. I'm having a couple issues, one, not being able to ping the server from a computer that's on the same domain(I'm able to ping the DA client from the DA server).
I'm not sure if there is a firewall setting that needs to be open on the client for incoming echo requests? Second, we use a client management system called BMC and I would like the direct access server to be able to utilize the BMC server so that I can manage
the DA client whenever its on the network. I noticed on the DA server that "Step 3" offers an area where it allows you to add servers that will be used for direct access client management. Would I just need to populate the server in here and then
open appropriate firewall rules so that the DA server has access to them? Lastly, Trying to "mstsc" into the DA client what would I need to open up on both sides so that I'm able to do this?
Sorry about the horrible grammar but I've been up 24+ hours getting this awesome but pain in the butt Direct Access feature working.
Thank you as always!
-Liqsh0tI'm afraid it's a bit more complicated than adding a server into the list in Step 3 :)
When a DirectAccess client is connecting into a corporate network that is IPv4 (I assume yours is, most are), it can reach into your IPv4 servers because the DA server is doing NAT64/DNS64 translations, turning all of your DirectAccess IPv6 packets into
IPv4 packets before they head inside the network. But even though this happens in the background without you really knowing about it, the key thing there is that all DirectAccess traffic is IPv6. This means the clients can only be contacted via IPv6. If you
have IPv6 inside your network, then you can route outbound fairly easily to your DA client computers. If you are all IPv4 inside as most companies are, then you have to either roll IPv6 out inside your network, at least partially, or you have to utilize ISATAP
inside your network in order to create a sort of "virtual IPv6 cloud" that runs on top of your IPv4 internal network. This enables your internal management systems (like the BMC servers and helpdesk computers for RDP access outbound) to have a connection
into the IPv6 world, which then enables them some routing capability to get out to the IPv6-connected DA clients. In addition to this IPv6 or ISATAP setup, you also need to configure WFAS rules on the DA clients so that they will allow this traffic.
There is some info on setting up ISATAP here: http://blogs.technet.com/b/jasonjones/archive/2013/04/19/limiting-isatap-services-to-directaccess-manage-out-clients.aspx
Otherwise one of the chapters in this book is also dedicated to the setup of a selective ISATAP environment, to be used for the purposes of DirectAccess outward management: https://www.packtpub.com/virtualization-and-cloud/microsoft-directaccess-best-practices-and-troubleshooting -
Our accountant is no longer allowed access to the QuickBooks file
My main server is Small Business Server 2008 Standard (i.e. pre-R2). I have another box running Server 2012 that's just acting as a Hyper-V host. On that server I have three relevant VMs, all Windows 7 Professional and joined to the domain. One
is acting as a host for our QuickBooks file and running some other QuickBooks-related tasks. The other two are for two people who have to access QuickBooks remotely via RDP (we don't have a Terminal Server license).
Our accountant has been accessing the QuickBooks file for several weeks from an in-office domain-joined Windows 7 Pro computer at the shared resource "\\Quickbooks-host\QuickBooks Data". Today she's told that she's not allowed to access Quickbooks-host.
In the SBS console she is set for local administrator access to that computer. On Quickbooks-host the "Quickbooks Data" folder is shared with her having explicit full control as <domain>\<user>, both in Properties | Sharing | Share...
and Properties | Sharing | Advanced Sharing ... | Permissions. On Quickbooks-host she is listed in Control Panel | User Accounts | Give other users access to this computer under her user name and my domain as an administrator. What more could Microsoft
possibly want?
(BTW, I despise Microsoft's networking permissions management. Why must I give permission in two places for the same resource, and still have it not work?)
So I tried to get her going for the day by letting her RDP into one of the other two VMs, since the person that regularly uses that is in the office today. She's a member of Remote Desktop Users and Mobile Users and a few others. But I can't
connect using her account, with or without a domain and using the real domain name or "quickbooks-host" as the domain name. SOmetims I just get "login failed", sometimes I get a pop-up "The connection was denied because the user
account is not authorized for remote login". I can't find any more places to add authorization.
Did I mention how much I despise Windows' control of networking permissions?
So is there any way to convince Windows 7 that our accountant is allowed access?Hi,
Glad to see your problem resolved, hope your experience is helpful with others.
Roger Lu
TechNet Community Support -
Because of this line "<?php defined('SYSPATH') or die('No direct access allowed.');" at the onset of my php script I can not open my site in dreamweaver. How do I define the "syspath" for dreamweaver so it can be opened?
Please assist me if possible to open my site in dreamweaver. I contacted tech support who were unable to assist me and referred me to the forums. If anyone know how to resolve this please let me know. ThanksNow that I have found the "index.php" file and uploaded it to wamp/www, I am not quite sure how to proceed to successfully integrate it in my localserver files for use in dreamweaver. For quick reference the syspath definition is:
// Define the absolute paths for configured directories
define('APPPATH', realpath($application).DIRECTORY_SEPARATOR);
define('KOMODPATH', realpath($komodules).DIRECTORY_SEPARATOR);
define('MODPATH', realpath($modules).DIRECTORY_SEPARATOR);
define('COMMONPATH', realpath($common).DIRECTORY_SEPARATOR);
define('SYSPATH', realpath($system).DIRECTORY_SEPARATOR);
Please advise. Thank you.
Below I have pasted the full "index.php" script.
<?php
* Debug variable used in Bootstrap, this will setup the Kohana::$environment = Kohana::DEVELOPMENT;
* Seted to TRUE:
* - disables the cache,
* - enable the profiler in the bottom of the page
* - Enable logs for anything (false=only ERRORs)
* - Displays the full error stack instead of friendly page
define('OC_DEBUG', FALSE);
* Where the application for Open Classifieds is installed.
$application = '/oc';
* The directory in which your external modules are located.
$modules = $application.'/modules';
* The directory in which the Kohana resources are located. The system
* directory must contain the classes/kohana.php file.
* @see http://kohanaframework.org/guide/about.install#system
$system = $application.'/kohana/system';
* The directory in which KO modules are located.
* @see http://kohanaframework.org/guide/about.install#modules
$komodules = $application.'/kohana/modules';
* The directory where common Open Classifieds files are
* @see https://github.com/open-classifieds/common
* @see https://github.com/open-classifieds/openclassifieds2/blob/master/CONTRIBUTING.md
$common = $application.'/common';
* The default extension of resource files. If you change this, all resources
* must be renamed to use the new extension.
* @see http://kohanaframework.org/guide/about.install#ext
define('EXT', '.php');
* Set the PHP error reporting level. If you set this in php.ini, you remove this.
* @see http://php.net/error_reporting
* When developing your application, it is highly recommended to enable notices
* and strict warnings. Enable them by using: E_ALL | E_STRICT
* In a production environment, it is safe to ignore notices and strict warnings.
* Disable them by using: E_ALL ^ E_NOTICE
* When using a legacy application with PHP >= 5.3, it is recommended to disable
* deprecated notices. Disable with: E_ALL & ~E_DEPRECATED
ini_set('display_errors', 'On');
# Error reporting may look like this but E_ALL is only what we need
error_reporting(E_ALL & ~E_DEPRECATED);
* End of standard configuration! Changing any of the code below should only be
* attempted by those with a working knowledge of Kohana internals.
* @see http://kohanaframework.org/guide/using.configuration
// Set the full path to the docroot
define('DOCROOT', realpath(dirname(__FILE__)).DIRECTORY_SEPARATOR);
// Make the application relative to the docroot, for symlink'd index.php
if ( ! is_dir($application) AND is_dir(DOCROOT.$application))
$application = DOCROOT.$application;
// Make the modules relative to the docroot, for symlink'd index.php
if ( ! is_dir($modules) AND is_dir(DOCROOT.$modules))
$modules = DOCROOT.$modules;
// Make the modules relative to the docroot, for symlink'd index.php
if ( ! is_dir($komodules) AND is_dir(DOCROOT.$komodules))
$komodules = DOCROOT.$komodules;
// Make the common module relative to the docroot, for symlink'd index.php
if ( ! is_dir($common) AND is_dir(DOCROOT.$common))
$common = DOCROOT.$common;
// Make the system relative to the docroot, for symlink'd index.php
if ( ! is_dir($system) AND is_dir(DOCROOT.$system))
$system = DOCROOT.$system;
// Define the absolute paths for configured directories
define('APPPATH', realpath($application).DIRECTORY_SEPARATOR);
define('KOMODPATH', realpath($komodules).DIRECTORY_SEPARATOR);
define('MODPATH', realpath($modules).DIRECTORY_SEPARATOR);
define('COMMONPATH', realpath($common).DIRECTORY_SEPARATOR);
define('SYSPATH', realpath($system).DIRECTORY_SEPARATOR);
// Clean up the configuration vars
unset($application, $modules, $komodules,$common, $system);
// OC install
if (file_exists(DOCROOT.'install/install.lock'))
// Load the installation check
return include DOCROOT.'install/index'.EXT;
* Define the start time of the application, used for profiling.
if ( ! defined('KOHANA_START_TIME'))
define('KOHANA_START_TIME', microtime(TRUE));
* Define the memory usage at the start of the application, used for profiling.
if ( ! defined('KOHANA_START_MEMORY'))
define('KOHANA_START_MEMORY', memory_get_usage());
// Bootstrap the application
require APPPATH.'bootstrap'.EXT;
if ( ! defined('SUPPRESS_REQUEST'))
* Execute the main request. A source of the URI can be passed, eg: $_SERVER['PATH_INFO'].
* If no source is specified, the URI will be automatically detected.
echo Request::factory()
->execute()
->send_headers()
->body(); -
Data source could not able select NOT ALLOWED DTP Direct Access
He Experts,
I have a Problem, I have searched in Fourms and Blogs also but I did get any solution .
I am developing HCM reports, as per my requirement extracting data through customized Function Module.ZGET_REQUI_DETAILS_NEW1.
I can find data in RSA3 and it is loaded sucessful in BI, this I was comformation with the monitor screen
all indicators are in Green Trafic signals.
then I came to PSA but I cann't see data here one pop up is comming Error & in help message no D0313
I found one thing the request which is in PSA come with GREEN (request updated to Target)
rest of all standard are in Red untill transfer to targets.
I found secound thing in the DATA SOURCE in Extraction Tab option Direct Access is selected with
Allowed, but I want to sent data to standard DSO.
that options are in disable mode even in edit selection.
Queires:
1. How to change the option NOT ALLOWED DTP Direct Access insted of Allowed in Data Source(ZREQUI_FM)
2. what is will do to see data in PSA.
Regards
VijayDear Vijay,
Iu2019m going to try helping you,
In the ECC DataSource setting tcode: SBIW. You should check in your ZREQUI_FM DataSource the following setting of value in the DataSource: Costumer Version Edit field u201CExtractionu201D the following field ExtractStruct, Direct Access and Delta Update:
https://www.sdn.sap.com/irj/scn/go/portal/prtroot/docs/library/uuid/fb69a990-0201-0010-64ab-cbbfc6f0f75b
I hope this guideline can help you to find the answeru2026.
Luis -
The Remote Procedure call failed error in Microsoft Direct Access configuration
Hi,
I have setup the Microsoft Base lab using Microsoft TLG, I have generated the IPHTTPS and NLS server certificate using the Microsoft PKI. After that I have installed the Microsoft Direct Access role but at the time of configuring the Remote Access Server
it fails with the remote procedure call failed error.
Could anybody help me to resolve this issue. I have searched a lot but no any solution found. It will be very helpful, if some one can point me where I did mistake.
Thanks,
Arifsql server services give error the remote procedure call failed [0x800706be] in sql server 2008.
To resolve this issue, I executed the following mofcomp command in command prompt to re-register the *.mof files:
mofcomp.exe "C:\Program Files (x86)\Microsoft SQL Server\100\Shared\sqlmgmproviderxpsp2up.mof".
but it does not work.
Plz give the exact soln to solve this error.
So when you tried starting SQL server service it gave the error right ? or when you click on SQL server services in SQL server configuration manager(SSCM) you get this error. Can you be more clear. As far as I read your question it has something
to do with permission. Close SSCM window and this time right click on SQL server configuration manager and select run as administrator and check if you can see SQL server services
Please mark this reply as answer if it solved your issue or vote as helpful if it helped so that other forum members can benefit from it
My Technet Articles -
Direct Access 2012 R2 - Problems with Force Tunneling and other questions
I have just setup a Direct Access 2012 R2 server in my network, 2012 domain and all Windows 8 clients.
Internal CA environment (no external CRL) using a public issued cert for IPHTTPS tunnel, 2 interfaces for the DA server, 1 internal and 1 in the DMZ behind a NAT firewall (1 public IPv4 address) and my test clients are connecting fine to internal resources.
1. When I enable Force Tunneling the clients no longer are able to access the external internet. Is there anything I need to add to make this work?
2. I am having trouble with our Remote Desktop Session Hosts. I can only assume it has something to do with the DNS as we have our AD domain performing internal DNS of the int.contoso.com domain and public DNS performing for the external
Contoso.com domain (RDWA etc). DA has only int.contoso.com set as a DNS Name Suffix in the Infrastructure Setup. Should I add the external contoso.com Name Suffix in there too?
3. I have a Kaspersky Security Center server for centralized AV admin, can I still push out AV updates to the clients that connect with DA. Do I add my KSC server to the Management Servers list in the Infrastructure Server Setup page on the DA
setup. Does that list allow those servers to access the DA clients?Hi,
Let's solve problems one by one. Force tunneling. When enabled, all network trafic from DirectAccess clients goes throught IPSEC tunnels. Just configure a proxy on your DirectAccess clients (with a FQDN of course) and your clients should be able to surf
internet again.
RDS : Depend. Where are your RDS servers registred internal zone DNS or external DNS zone. If a DirectAccess client cannot resolve a name it does not know if it has to go throught the tunnel. At last can you ping your RDS Server?
Remote Management : Right. Adding servers in this list allow them to use the IPSEC infrastructure tunnel (computer established tunnel) without users being logged.
BenoitS - Simple by Design http://danstoncloud.com/blogs/simplebydesign/default.aspx -
Configuration of Direct Access 2012
Good morning.
I have tried to set up Direct Access from what I see is pretty much a 30-40 minute job, but has turned out to be something of a pain. Having followed the video on youtube for Windows Server 2012 with Basic PKI configuration and Windows 7 clients. I
have set up a working DA server with no issues and all green ticks.
Here's a run down.
I have a DC (2012) with the CA already installed.
I have a virtual DA (2012) set up with the advanced settings.
I have a a TMG 2010 server as the firewall with a Non-Web Publishing rule designed to forward HTTPS requests to the DA on the internal network.
The set up went as planned and I followed the instruction to set up the PKI and all computers have picked up a computer Certificate for the CA so that the internal root is validated.
The Certificates that I chose for the DA server were as follows;
DirectAccess-NLS.mydomain.local
remote.my-external-domain-name.co.uk
both published from my internal CA so that the root of the certificates were valid.
I have a Third party wildcard cert ( *.my-external-domain-name.co.uk ) for TMG to allow other connection such as VPN and web access.
DA Config:
Step 1: Remote Clients
I set up the DA server as per the video, set the DirectAccessClient group, and in the
Network Connectivity Assistant The resource was filled in with the
http://diectaccess-WebProbeHost URL.
Step 2: Remote Access Server
The Network Topology was set to Behind an edge device (with single network adapter), and then is says to type in the 'PUBLIC NAME' used by clients to connect to the Remove Access Server. Here I typed in the external DNS
name remote.my-external-domain-name.co.uk.
Network Adapters had the one ethernet and an IPv6 address. The
Select Certificate sued to authenticate IP-HTTPS connections has the CN=remote.my-external-domain-name.co.uk.
Authentication is set to AD and I used the root certificate of the CA for
use computer certificates. I also Enabled windows 7 client computers to connect via DirectAccess.
Step 3: Infrastructure Servers
Network Location Sevrer had the NLS is deployed on this server with the
DirectAccess-NLS cert.
DNS had the internal domain and the DirectAccess-NLS. the Internal domain was pointing to the IPv4 address of the DA. I read that I need to put the external name suffix of remote.my-external-domain-name.co.uk entry in and pointed that
to the internal DA IPv4 address also.
DNS Suffix List was set automatically and I also added my external domain name just in case.
Managerment was straight forward and I pointed to our System Centre 2012 R2 server.
Upon clicking finish and applying the GPO policies everything went according to plan. All green ticks. I did a GPupdate on the client I was testing and the GPO policies came through.
Now the issue I have is that on the internal network I get the Last Error 0x80190190 unable to connect to server. Now I am sure that this should say active as it is inside the network. I get the same error out side. When I check the DA server for
netsh int https sh int it returns the value that client authentication = NONE. I set it up to use computer certificates and even is I uncheck that it does not change.
It there a straight forward thing I missed or is it to do with publishing in TMG. Internally the direct access client will not connect as it will find the NLS in the internal DNS as I have the host record for both the server FQDN and the DirectAccess-NLS
potining to the IPv4 address. I also have the external remote.my-external-domain-name.co.uk entry in the internal DNS to point to the internal IPv4.
I have opened the ports for 443, 62000 on the DA for the IIS inbound and outbound.
I have a windows 8 client but need to test it as Windows 8 is supposed to work just like that.
What am I doing wrong here?? Any ideas would be much appreciated.Thank you for this Jordan.
I have now got it working. The next step is to make sure my applications are all using Names rather than IP addresses.
I have basically setup the system as per my original thread that follows, NOT in BOLD.
I have tried to set up Direct Access from what I see is pretty much a 30-40 minute job, but has turned out to be something of a pain. Having followed the video on youtube for Windows Server 2012 with Basic PKI configuration and Windows 7 clients. I have
set up a working DA server with no issues and all green ticks.
Here's a run down.
I have a DC (2012) with the CA already installed.
I have a virtual DA (2012) set up with the advanced settings.
I have a a TMG 2010 server as the firewall with a Non-Web Publishing rule designed to forward HTTPS requests to the DA on the internal network.
The set up went as planned and I followed the instruction to set up the PKI and all computers have picked up a computer Certificate for the CA so that the internal root is validated.
The Certificates that I chose for the DA server were as follows;
DirectAccess-NLS.mydomain.local
remote.my-external-domain-name.co.uk
both published from my internal CA so that the root of the certificates were valid.
I have a Third party wildcard cert ( *.my-external-domain-name.co.uk ) for TMG to allow other connection such as VPN and web access.
DA Config:
Step
1: Remote Clients
I set up the DA server as per the video, set the DirectAccessClient group, and in the Network Connectivity Assistant The resource was
filled in with the http://diectaccess-WebProbeHost URL.
Step
2: Remote Access Server
The Network Topology was set to Behind
an edge device (with single network adapter), and then is says to type in the 'PUBLIC NAME' used by clients to connect to the Remove Access Server. Here I typed in the external DNS name remote.my-external-domain-name.co.uk.
Network Adapters had the one ethernet and an IPv6 address. The Select
Certificate sued to authenticate IP-HTTPS connections has the CN=remote.my-external-domain-name.co.uk.
Authentication is set to AD and I used the root certificate of the CA for use
computer certificates. I also Enabled windows 7 client computers to connect via DirectAccess.
Step
3: Infrastructure Servers
Network Location Sevrer had the NLS
is deployed on this server with the DirectAccess-NLS cert.
DNS had the internal domain and the DirectAccess-NLS. the Internal domain was pointing to the IPv4 address of the DA. I read that I need
to put the external name suffix of remote.my-external-domain-name.co.uk entry in and pointed that to the internal DA IPv4 address also.
DNS Suffix List was set automatically and I also added my external domain name just in case.
Managerment was straight forward and I pointed to our System Centre 2012 R2 server.
Upon clicking finish and applying the GPO policies everything went according to plan. All green ticks. I did a GPupdate on the client I was testing and the GPO policies came through.
I have set up TMG as per the isa.org forum
http://www.isaserver.org/articles-tutorials/general/implementing-windows-server-2012-directaccess-behind-forefront-tmg-part2.html .
@ Jordan - I ensured that I had a separate external IP address for the requests from the clients to TMG as I publish websites internally.
I used a third party wildcard cert for the IP-HTTPS connect part in DA Config Step 2.
All the rest of the DA set up was pretty much out of the box as stated above. -
Direct access of data in BI 7.0
Hi,
In real time data acquisition, usually a remote provider in BI can only get data that supports direct data access.
For enabling this feature, we should goto Data source>>Extraction tab>> "check" the check box:Direct data access:allowed. By checking this, the "real time data acquisition is supported " option should be visible.
But, inspite of checking the check box:Direct access:allowed , it is showing "real time data acquisition is not supported " . How do I resolve this .
Any help is appreciated.Check this: Re: New GL cubes 0FIGL_V10, 0FIGL_V11
Hope it helps... -
Routing back to Direct Access Clients - is this possible?
Hi,
We have been using direct access for the past few months successfully, however the one problem we are still having is we can't use programs that require a route back to the Direct Access client (such as managing a Hyper-V machine on the local lan), using SourceOffsite
or even using Remote Desktop to remote onto a direct access client or ping the direct access client.
Our local LAN uses Ipv4 and we can route fine to the Direct Access clients from the Direct Access Server where the tunnel terminates but not from any other machine on the network. Do I need to change the direct access configuration to allow this or do I need
to somehow create a route on my LAN for the direct access clients?
Thanks in advance
DavidI found out how to do this in this useful article and tested it and it is working fine - thanks.
http://www.packtpub.com/article/configuring-manage-out-to-directaccess-clients -
LAN side firewall settings for Direct Access (Windows Server 2012 R2) in DMZ?
I am currently planning to set up our first Direct Access server (Windows Server 2012 R2). I will be in our firewall DMZ and we will be using the IP-HTTPS listener.
For the Internet facing rule only TCP 443 inbound/outbound is sufficient but for the LAN facing rules (not talking about the Windows server firewall) what would be the recommended firewall rules for a Direct Access server? Is there a best practice guideline
to follow for this? Appreciate any advice or comments. Thank you.Hi Barkley
Please see this Technet Link which will backup your requirements - https://technet.microsoft.com/en-gb/library/jj574101.aspx
Section Reads -
When using additional firewalls, apply the following internal network firewall exceptions for Remote Access traffic:
ISATAP—Protocol 41 inbound and outbound
TCP/UDP for all IPv4/IPv6 traffic
Also another link from http://www.ironnetworks.com/blog/directaccess-network-deployment-scenarios#.VO3tfvmsVrU
"I have had a number of conversations with security administrators and network architects who have expressed a desire to place the DirectAccess server between two firewalls (firewall sandwich) in order to explicitly control access from the DirectAccess
server to the internal corporate network. While at first this may sound like a sensible solution, it is often quite problematic and, in my opinion, does little to improve the overall security of the solution. Restricting network access from the DirectAccess
server to the internal LAN requires so many ports to be opened on the inside firewall that the benefit of having the firewall is greatly diminished. Placing the DirectAccess server’s internal network interface on the LAN unrestricted is the best configuration
in terms of supportability and provides the best user experience."
Kindest Regards
John Davies
Thank for your reply and information John. I find it somewhat disappointing that Microsoft does not provide much more in the way of documentation and information regarding this topic. I required more information to show to our security team so they will allow
us to have the internal facing NIC not have more restrictive rules in place as it is a security concern.
Maybe you are looking for
-
SQL Server 2012 BUsiness Intelligence Edition vs EnterPrise Edition
Hi All, We are deciding with versión of SQL Server 2012 to buy. Really there are no differences between Business Intelligence Edition and Enterprise Edition regarding all BI Stack????... I mean ( Integration Services, Reporting Services, Analysis Ser
-
To check posting date lies in closed period
Hi all , I have to check whether posting date lies in closing period. Please let me know any FM FOR same. Thanks in advance Rahul
-
Phone
-
Could sap do mass craete/update for material master classification?
Hi Expert, Now we craeted new classifcaiton for material master. It need be assigned to related many parts. May I query Could sap do mass craete/update for material master classification? How to do this ? Thanks Alice
-
Need help with the brush tool.
I just got Illustrator yesterday, and I'm trying to ink a sketch. So I open the file of the sketch, Save it as an adobe Illustrator document, then I create a new layer, then when I go to trace the sketch I get a symbol saying I cant use the brush too