Remote Managing remote computers

Similar Messages

• Issue Binding remote computers

  OK, have Advanced Leopard Server running, DNS and Open Directory setup. Can Bind local computers. Tried binding remote computers and does not see/find server in Directory Utility... yet I can sign in and mount NFS shares. Does a specific port need to be open in firewall to do the binding? - Lewis

  Binding is largely for login. Yes some management settings, like printers, can be passed through this way.
  To print from home you should be using a VPN. The Internet is not a safe place these days. VPN creates a virtual tunnel between home and the office and you can imagine a virtual Ethernet cable passing through that tunnel.
  I think a combination of Mobile accounts and VPN may be the deal for you. You might not even need mobile accounts if your users have their own Mac and are already using a local account.
  VPNs are meant to be the only entry point on to your network. So once you have a VPN setup then your Internet connection should only allow VPN traffic in and nothing else, e.g. LDAP.
  Ok, two basic choices for VPNs... either your router is fancy enough to have its own VPN feature or you can setup your Leopard Server to be your VPN server. The router would then need to be configured to route incoming VPN requests to your Mac server. All other types of traffic pass through the VPN.
  This isn't the place for detailing exact steps for this. It would get long and complicated and there are specific info needed about your actual setup. I have to refer you to the manuals in the first instance:
  http://images.apple.com/server/macosx/docs/NetworkServices_Admin_v10.5_2ndEd.pdf
  http://images.apple.com/server/macosx/docs/UserManagementv10.5.mnl.pdf
  Other recommended reading:
  Mac OS X Support Essentials v10.5 ISBN-13: 978-0321489814
  Mac OS X Server Essentials v10.5 ISBN-13: 978-0321496607
  Leader-led training:
  http://training.apple.com/itpro/leopard101
  http://training.apple.com/itpro/leopard201
  Trust me... you will feel so enlightened.

• Hi I am looking for a way to have trace32 open multiple files on remote computers

  Simply put I am looking for someone who could afford to give me a basic script (vbs) that I could run from an elevated command prompt. It would need to be available for me to type in the name of a remote computer or (mulitple if possible) and also
  allow me to choose log files to open or multiple files and then open them using trace 32. Hopefully it would detect the available log files and show me what is available to choose to open... anyone know of such a thing or know how to go about setting up something
  like this for people to use?
  EDIT
  I was able to create a basic script to do what I wanted but I want to be able to add wildcards for the rollover logs... Can someone suggest the easiest way to do that as I am not sure how to add the wildcards directly before the .log
  here is the script.
  ' ******Created by Luis Delgado*********
  'This script will get a remote computers .log files depending on which documents you enter in the "files to open on remote computer using trace32" section
  'Get and open log files on remote Computer
  on error resume next
  Set WshShell = Wscript.CreateObject("Wscript.Shell")
  strcomputer   = inputbox("Enter remote computer name or leave as localhost for this computer","Get log files from a remote computer with Trace32","Localhost")
  If strComputer = "" Then
    WScript.Quit
  End If
  'Opens trace32
  wshShell.run "C:\Program Files\ConfigMgr 2007 Toolkit\CCM Tools\Trace32.exe"
  'Files to open on remote computer using trace32
  wshShell.Run "\\" & strcomputer & "\c$\Windows\System32\CCM\Logs\datatransferservice.log"
  wshShell.Run "\\" & strcomputer & "\c$\Windows\System32\CCM\Logs\ccmexec.log"
  wshShell.Run "\\" & strcomputer & "\c$\Windows\System32\CCM\Logs\locationservices.log"
  !!!!NOTE!!!
  What I need is for any file that starts with datatransferservices, ccmexec, or locationservices to open in trace32
  my thought would be place a wild card in its respective spots but it does not work see below
  wshShell.Run "\\" & strcomputer & "\c$\Windows\System32\CCM\Logs\datatransferservice*.log"
  wshShell.Run "\\" & strcomputer & "\c$\Windows\System32\CCM\Logs\ccmexec*.log"
  wshShell.Run "\\" & strcomputer & "\c$\Windows\System32\CCM\Logs\locationservices*.log"

  The roll over logs all have the same name exact the extension is .lo_ , So.. I'm not sure what you are looking for.
  Garth Jones | My blogs: Enhansoft and
  Old Blog site | Twitter:
  @GarthMJ

• ARD report to find admin users on remote computers

  It there a way to tell which users have administrator rights on the remote computers? I cannot find anything in the built in reports. I have found a way to do it via terminal by finding who is in the admin group, but was wondering if there is a report built into ARD that will do this.
  Thanks!

  Here is Sherry's post:
  http://mnscug.org/blogs/sherry-kissinger/244-all-members-of-all-local-groups-inventory-for-configmgr-2012
  I hope that helps,
  Nash
  Nash Pherson, Senior Systems Consultant
  Now Micro -
  My Blog Posts
  If you've found a bug or want the product worked differently,
  share your feedback.
  <-- If this post was helpful, please click "Vote as Helpful".

• Passing Credentials When Reading Performance Counters on Remote Computers; Systems.Diagnostics namespace

  Hello,
  I am working on a website where I need to read a few performance counters on remote computers.
  I'm using the System.Diagnostics namespace and the following is a snipet of my code:
  ****************  CODE  *********************************************************
   Try
              With perf_process
                  .MachineName = Hostname
                  .CategoryName = "Process"
                  .CounterName = "Private Bytes"
                  'Write entry to log here
                  tmp_working_set = perf_process.NextValue()
                  txtWorkingSet.Text = tmp_working_set
                  Select Case tmp_working_set
                      Case Is > 80000000
                          working_set_status = "Red"
                      Case 40000000 To 80000000
                          working_set_status = "Green"
                      Case 1000000 To 40000000
                          working_set_status = "Yellow"
                      Case Else
                          working_set_status = "Error"
                  End Select
                  If working_set_status = "Error" Then
                      txtWorkingSet.BackColor = Drawing.Color.Red
                      txtWorkingSet.Text = String.Format(CultureInfo.InvariantCulture, "{0:0,0.0}", working_set_status)
                  Else
                      txtWorkingSet.Text = String.Format(CultureInfo.InvariantCulture, "{0:0,0.0}", tmp_working_set)
                      txtWorkingSet.Text = tmp_working_set
                  End If
              End With
          Catch
              ErrMsg = ("Error reading the Working Set (memory) counter on " & Hostname & "." & vbCrLf & "Error number is " & Err.Number & vbCrLf & "Error description:
  " & Err.Description)
              MsgBox(ErrMsg)
              Write_Log_Entry(Now(), ErrMsg)            
              ErrMsg = ""
          End Try
  ****************  CODE  *********************************************************
  I usually end up with an "Access Denied" error because the account I'm running under does not have the proper permissions on the remote computer to read the counters.
  How can I pass and connect to the remote computer with a different set of credentials that have access to the counters?
  Exactly what permissions do I need to access the remote counters?  I can read them on some of my test computers and on others, I get the "Access Denied" error.
  Thanks in Advance,
  DetRich
  DetRich

  http://forums.asp.net/
  The ASP.NET forum is probably where you need to post.

• How can get value of registry DWORD value of remote computers with powershell

  HI
  I am using below script to get registry of remote computers with powershell but not desired result.
  $computers = Import-Csv 'C:\New folder\dclist.csv'
  $key = "SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A7-37EF-4b3f-8CFC-4F3A74704073}"
  foreach ($computer in $computers)
  Get-RegDword -ComputerName $computer -Key $key -Value IsInstalled
  As I have installed remoteregistry pssnapin a well..
  Also How can i get this from Invoke-Command ............
  Please help or guide me 

  This script may help (I haven't used it personally, but I know that many people have used it and thanked Jason for coming up with it):
  http://gallery.technet.microsoft.com/scriptcenter/Enable-PSRemoting-Remotely-6cedfcb0
  You can also configure remoting across your entire domain via GP:
  http://www.briantist.com/how-to/powershell-remoting-group-policy/
  http://blog.powershell.no/2010/03/04/enable-and-configure-windows-powershell-remoting-using-group-policy/
  Don't retire TechNet! -
  (Don't give up yet - 12,830+ strong and growing)

• PST search on remote computers

  Hi,
  I am seeking for a pst search in VB or dos to locate any pst on all drives on remote computers that will record pst file + size, inc username or computer name and log all this information to a central csv or txt file on a network.....please help.

  To get the most mutable results, you can use this PowerShell script.  You will need to provide a list of computers in a text file with each computer on a separate line.
  Get-Content computers.txt |
  %{Get-ChildItem "\\$_\c$" -Include *.pst -Recurse} |
  Select Name,Directory,Length,LastAccessTime,LastWriteTime,CreationTime |
  Export-Csv C:\results\PSTfiles.csv -NoTypeInformation
  This assumes that you are only searching the C: drives of the computers.  As noted, this script will take a long time to run based on the number of computers that you are running it against.
  Rich Prescott | Infrastructure Architect, Windows Engineer and PowerShell blogger | MCITP, MCTS, MCP
  Engineering Efficiency
  @Rich_Prescott
  Windows System Administration tool 2.0
  AD User Creation tool

• Run Powershell in remote computers

  Hi All,
  I want to run Powershell function in a remote computers in AD 
  Here are the steps that i take but i got some errors 
  * I Import the ADComputer from Active directory 
  Get-ADComputer -Filter * -Property * | Select-Object Name,OperatingSystem,OperatingSystemServicePack,OperatingSystemVersion | Export-CSV C:\Users\Administrator\Documents\AllWindows.csv -NoTypeInformation -Encoding UTF8
  *Then I create a script to run the function I got from net 
  $FilePath = "C:\Users\Administrator\Documents\AllWindows.csv"$ComputerName = Import-Csv -Path $FilePath -Delimiter ","foreach($CompName in $ComputerName){Invoke-Command -ComputerName $PSItem.Name -ScriptBlock ${function:Get-WindowsKey}}
  But when i run above gives the following error
  Invoke-Command : Cannot validate argument on parameter 'ComputerName'. The argument is null or empty. Provide an argument that is not null or empty, and then try the command again.
  At C:\Users\Administrator\Desktop\GetWinKey.ps1:9 char:30
  + Invoke-Command -ComputerName $PSItem.Name -ScriptBlock ${function:Get-WindowsKey ...
  +                              ~~~~~~~~~~~~
      + CategoryInfo          : InvalidData: (:) [Invoke-Command], ParameterBindingValidationException
      + FullyQualifiedErrorId : ParameterArgumentValidationError,Microsoft.PowerShell.Commands.InvokeCommandCommand
  Following is the function i run to get windows keys
  function Get-WindowsKey {    ## function to retrieve the Windows Product Key from any PC    param ($targets = ".")    $hklm = 2147483650    $regPath = "Software\Microsoft\Windows NT\CurrentVersion"    $regValue = "DigitalProductId"    Foreach ($target in $targets) {        $productKey = $null        $win32os = $null        $wmi = [WMIClass]"\\$target\root\default:stdRegProv"        $data = $wmi.GetBinaryValue($hklm,$regPath,$regValue)        $binArray = ($data.uValue)[52..66]        $charsArray = "B","C","D","F","G","H","J","K","M","P","Q","R","T","V","W","X","Y","2","3","4","6","7","8","9"        ## decrypt base24 encoded binary data        For ($i = 24; $i -ge 0; $i--) {            $k = 0            For ($j = 14; $j -ge 0; $j--) {                $k = $k * 256 -bxor $binArray[$j]                $binArray[$j] = [math]::truncate($k / 24)                $k = $k % 24            }            $productKey = $charsArray[$k] + $productKey            If (($i % 5 -eq 0) -and ($i -ne 0)) {                $productKey = "-" + $productKey            }        }        $win32os = Get-WmiObject Win32_OperatingSystem -computer $target        $obj = New-Object Object        $obj | Add-Member Noteproperty Computer -value $target        $obj | Add-Member Noteproperty Caption -value $win32os.Caption        $obj | Add-Member Noteproperty CSDVersion -value $win32os.CSDVersion        $obj | Add-Member Noteproperty OSArch -value $win32os.OSArchitecture        $obj | Add-Member Noteproperty BuildNumber -value $win32os.BuildNumber        $obj | Add-Member Noteproperty RegisteredTo -value $win32os.RegisteredUser        $obj | Add-Member Noteproperty ProductID -value $win32os.SerialNumber        $obj | Add-Member Noteproperty ProductKey -value $productkey        $obj    }} 
  What i want is to run the Get-WindowsKey function in all AD computers 
  Thanks

  The error tells you what is wrong, try changing this -
  Invoke-Command -ComputerName $PSItem.Name to thisInvoke-Command -Computername $Compname.Name
  You need to use the variable you declare in the foreach loop.

• Start and stop windows service for multiple remote computers

  Hello,
  Can someone show me how to Start and Stop windows service for multiple remote computers using Command Prompt or PowerShell or even Java?
  Thank you

  You asked a pure Windows related question at a pure Java related forum. We have advised you to look for a Windows related forum to post the question. Nothing special. It's like asking a car mechanican to help you with your migraine, he would advise you to look for a general practitioner.
  But why are you so surprised and negative about this answer after all? Don't we have to help you? Don't you appreciate help? So be it then, but please stay away then if you keep this attitude.

• Manage multiple computers from out side

  Hi ,
  i want to manage 2 computers from out side my network. Ihave time machine, dynamic ip, wha ti wanted is able to log in from out side to this 2 computers. what is the best option ?
  thanks in advnace

  power mac, you could use other software like timbuktu or logmein. If you wanted to you Apple Remote Desktop, you would have to set up VPN so the mac you would be using to control the other ones is part of the network.
  Regards.

• Managing which computers can play iTunes music

  Is there a way I can manage which computers can play my music. I am only allowed to activate 5. I've uninstalled iTunes on one, and installed it on another...three times. Now, I only have 1 computer left, and I am afraid I may use that. How can I deactivate the unused ones?
  Thanks,
  Shane Stimpson

  About iTunes Music Store authorization and deauthorization

• Remote Management Freezes computers

  When ever I remote manage a user who is running an application in the Oracle instant client it freezes there Internet Explorer. I have to force the program to end now and then the user can go back into the oracle app and everything works fine.
  Any Ideas??? Kind of a big problem being that most users call with a problem in Oracle and we cant see the problem since we freeze everything when we remote manage.

  jortman83 wrote:
  >
  > I am running ZEN7 sp1 hp6 on a Netware 6.5 sp6 server. The
  > workstations that freeze up are Windows XP pro sp2. You remote into
  > their workstation and can view the oracle application they are in
  > which runs in IE 6. But as soon as you click on any field IE6 locks
  > up and turns all white and then you have to use task manger to close
  > IE6. If they are not in the Oracle app you can remote manage them
  > with out a problem
  what would happen if IE was upgraded to 7??? still the same problem?

• Losing hypertrend data on remote computers in Lookout 6.1

  I know this issue has occurred in the past, but because we ares still losing trends too often,  I am at the point where I am going to have to create expressions on my client process file for every data member I want to have on a hypertrend so that I can have each client machine get its trend data from a local database rather than pulling the data from the database on the server. Before beginning this tedious task, I wanted to get some input on why this might be happening.
  When we lose trends I have to restart the server in order for the trends to come back. At first I thought is was caused by nicitdl5.exe crashing but I went into the settings for this service and set it to restart everytime it crashes. This did not fix the problem.
  My client process file contains approximately 250-300 hypertrends with 24hr. time periods trending both numeric and logical data members (water levels and pump run statuses). Could the number of trends I have in my process file could be causing the issue (too many)?
  Also, when I lose trends I have opened NIMax to try and create a trace for one of the members being trended and I cannot view the trace either - (no data) is displayed in the trace description.
  And, another strange thing that occurs is immediately after closing my server process file, the trends appear on the client machine before I restart the server process file.
  Some things I have done to try and correct the problem are:
  1.) reduced the resolution for the numerics from .001 to 0.01.
  2.) the resolution for the logicals from .001 (default) to 0.1.
  3.) reduced the lifespan from perpetual to 15 days (did that today).
  My server machine is a Dell PWS690 with 3.25 GB of RAM running Windows XP Pro, Service Pack 2, and the lookout version I am running is 6.1 (build 3)
  Due to the size and location of our client computers, they have to go through 2-3 subnets to get to our server where the database resides.
  Could this be a network issue where Lookout for whatever reason is disallowing access to the database after a period of time or because of a networking "hiccup"?
  Plus, would using a local database to to display the info on these trends be a viable option in your opinion?
  Please note: I AM NOT losing communication with my server as far as information coming from my plcs and being transmitted to the clients from the server.
  Thanks for any quick response.
  Jason Phillips

  Maybe Ryan and crew can clear this up....
  All that is needed for the discreet object connection form a remote client to the server is an IP address of the server and firewall ports on the server to be properly opened.  There are references online for the Firewall settings.
  Hypertrend connections are a different animal and I would like NI to step in and explain this if possible:
  What I have observed is that the traces must be using a commonly blocked (by ISP's) port.  I have to use a VPN to get the traces to work from an internet client.  I also must either be logged on to the domain of the server machine or map a local network drive to the server Citadel (Database) directory.  The map only needs read permissions.
  I haven't been able to find any documentation online explaining the differences between live oject data (Logos?) and trace data connections (also Logos?...but different somhow?) over the Internet with Lookout and/or DSC and I would like to understand this better myself.
  Ed
  Message Edited by erblock on 04-01-2008 09:29 AM

• Remote Computers login

  Hi people, at work I have a Mac Pro, at home I have an iMac, and I also use a Time Machine, now, I will like to remote login from work to home, and yes, I have enable Remote Login, from system preferences, but I still cant login, so what can I do?, any suggestions?
  Thanks!!
  CristV

  I have this sinking feeling that when you said *Remote Login* you did not mean using using Applications -> Utilities -> Terminal and the ssh command to remotely login so you can execute command lines commands.
  I'm going to discuss ssh usage, but if is not what you had in mind, then please tell us what kind of remote access you desire. I'm sure there is a way to arrange this, including using 75% of the stuff you have already setup. It just might involve enabling some different Sharing features and maybe doing Port Forwarding on different port numbers.
  Now on to ssh
  Start Applications -> Utilities -> Terminal
  Issue the command
  ssh [email protected]
  password:
  where username is the short username you are going to login to, and password is that accounts password.
  You can do anything from the command line remotely as you can from a local command line.
  ls
  cd different/directory
  etc...
  If you just want to copy some files to or from the remote system you can use the scp command (which is part of the ssh package).
  scp [email protected]:/path/to/the/remote/file /local/path/store/it
  scp /local/path/to/get/file [email protected]:/remote/path/to/store/it
  Of course using the above ssh session to look for a file may not be as satisfying, so you could create an ssh tunnel that will allow you to securely mount your remote Mac's file system over the network.
  First you need to enable the remote Mac's file sharing:
  System Preferences -> Sharing -> File Sharing on the remote Mac.
  Now you can create an ssh tunnel:
  ssh -L 22548:localhost:548 [email protected]
  The -L option says: on the local host setup port 22548 as entrance to the tunnel, and attach the tunnel's remote end to port 548 (which is the standard Mac OS X file sharing port).
  Now you can mount the remote file system across the tunnel using
  Finder -> Go -> Connect to Server...
  afp://localhost:22548
  The performance may be be fantastic, depending on the network speeds.
  If you want to see your remote Mac's screen, you can enable that via an ssh tunnel. However, there are other means of implementing screen sharing.
  Via ssh you enable the remote Mac's
  System Preferences -> Sharing -> Remote Management
  now create an ssh tunnel for screen sharing:
  ssh -L 5922:localhost:5900 [email protected]
  The -L option says: on the local host setup port 5922 as entrance to the tunnel, and attach the tunnel's remote end to port 5900 (which is the standard Mac OS X screen sharing port; it is also the standard VNC port number).
  NOTE: The ssh command can have multiple -L options establishing as many tunnels as you wish on the same command line. So the same ssh command can setup a file sharing tunnel, as well as a screen sharing tunnel.
  Now you can start a screen sharing session using
  Finder -> Go -> Connect to Server...
  vnc://localhost:5922
  Now there are about half a dozen ways to establish screen sharing that do not include ssh. One approach is to use iChat based Screen Sharing.
  First you download and install Chax on the remote Mac
  <http://www.versiontracker.com/dyn/moreinfo/macosx/28551>
  Chax is an add-on to iChat and gives you a new *iChat Preferences Tab*. You can then configure iChat via the Chax tab to automatically accept Screen Sharing request from selected users.
  Once the remote Mac's iChat is setup, you can use iChat to start a screen sharing session.
  Using iChat/Chax screen sharing setup, you can use iChat to copy files between systems. Just switch to the screen of the system where the file reside, and drag that file to the iChat buddy list on top of the other system's buddy name, and it will be copied to the other system to the Download folder (or whatever folder you configure iChat as the file copy destination). You will need to switch to the other system's screen so you can accept the file transfer, unless you configure the iChat/Chax preference to automatically accept file transfers from selected iChat users.
  It is now after midnight, so I'm going to stop here. Hopefully this has been useful. Let us know if you need something difference.

• Question on how to detect remotely, computers having issues processing GPO's

  We are troubleshooting multiple Win7 computer issues with SCCM 2007 SP2 R3 SUP patching--the patches fail for some reason.
  In checking multiple computers, runngin GPResults shows numerous 1085 and 1096 errors, with the 1096 error indicating that the registry.pol file cannot access (the data is invalid).  After experimentation, it seems that deleting the file and rebooting
  is fixing the computers, and SUP patching begins to work fine.
  While we discussed simply creating an SCCM package to delete the file and reboot the computers, for all computers that are not patching--we are looking for a way to detect this issue, via SCCM HW or SW or DCM inventory methods, so we can correctly target.
  Two questions:
       1.  Anyone have a method we can used to detect this problem remotely?
       2.  Any harm in just deleting this file, if we have a problem computer, in the hopes that will fix the issue?
  Thanks!

  The customized group policy settings are stored into registry.pol. What i can assume is the corruption of the registry.pol file & there can be numerous reason for this such as viruses, disk corruption etc. To troubleshoot issues with the GPO at the advanced
  level, you can make use of uderenv debug logging.
  UserEnv Debugging Line by Line
  http://blogs.msdn.com/b/richpec/archive/2009/07/20/userenv-debugging-line-by-line.aspx 
  What is logged to the Userenv.log file? 
  http://blogs.technet.com/b/instan/archive/2008/09/17/what-is-logged-to-the-userenv-log-file.aspx
  Awinish Vishwakarma - MVP
  My Blog: awinish.wordpress.com
  Disclaimer This posting is provided AS-IS with no warranties/guarantees and confers no rights.