SCCM and citrix servers - SCCM routing to localhost in hosts file

Similar Messages

• WSUS - SSL and DMZ servers - 0x80072f8f

  Hello,
  First of all sorry for my english.
  I've got error 0x80072F8F when i try to use WSUS (that is in the internal network) on my DMZ's servers.
  Wsus server is a Wsus 3.0 SP1 on Windows 2003 (SSL enabled on port 8531)
  DMZ's servers are Windows 2008 R2
  1 - I have installed the root certificate of my PKI on the trust root certificate store of the DMZ's servers
  2 - I have modified the Hosts file of the DMZ's servers for name resolution of the internal WSUS server therefore the wsus web certificate subject match the Wsus URL of the DMZ's servers.
  3 - I created firewall rule for open the communications on port 8531 between DMZ's servers and Wsus server
  4 -I created firewall rule for the download of the Certificate revocation list (of the WSUS certificate) by the DMZ's servers
  5 - I am able to download
  https://wsusserver/selfupdate/wuident.cab and there is no certificate error
  6 - I am able to dowload the CRL of the WSUS certificate
  7 - There is no time difference between Wsus server and DMZ's servers
  But after all that when i run a 'wuauclt /detectnow' the DMZ's servers failed on the SelfUpdate check with error 0x80072F8F
  anyone have a idea ?
  WindowsUpdate.log :
  WARNING: Send failed with hr = 80072f8f.
  WARNING: SendRequest failed with hr = 80072f8f. Proxy List used: <(null)> Bypass List used : <(null)> Auth Schemes used : <>
  WARNING: WinHttp: SendRequestUsingProxy failed for <https://WSUSserver:8531/selfupdate/wuident.cab>. error 0x80072f8f
  WARNING: WinHttp: SendRequestToServerForFileInformation MakeRequest failed. error 0x80072f8f
  WARNING: WinHttp: SendRequestToServerForFileInformation failed with 0x80072f8f
  WARNING: WinHttp: ShouldFileBeDownloaded failed with 0x80072f8f
  FATAL: SelfUpdate check failed, err = 0x80072F8F

  Wsus server is a Wsus 3.0 SP1 on Windows 2003 (SSL enabled on port 8531)
  The first step here is to either properly identify the actual version of WSUS in use, or to apply all of the required patches.
  5 - I am able to download
  https://wsusserver/selfupdate/wuident.cab and there is no certificate error
  WARNING: WinHttp: SendRequestUsingProxy failed for <https://WSUSserver:8531/selfupdate/wuident.cab>. error 0x80072f8f
  The second problem here is that SSL should *NOT* be used on the /selfupdate v-dir, so it seems that you have not properly configured the WSUS SSL implementation. Please refer to
  Secure WSUS with the Secure Sockets Layer Protocol for the proper procedures.
  Note also that there is a known issue with the April Update for Win8.1/WS2012R2 and WSUS SSL environments, so if you have Win8.1/WS2012R2 systems, since installing the update is fundamentally required, you should consider deferring the implementation of
  SSL on WSUS until the patch for that issue is released.
  Lawrence Garvin, M.S., MCSA, MCITP:EA, MCDBA
  SolarWinds Head Geek
  Microsoft MVP - Software Packaging, Deployment & Servicing (2005-2014)
  My MVP Profile: http://mvp.microsoft.com/en-us/mvp/Lawrence%20R%20Garvin-32101
  http://www.solarwinds.com/gotmicrosoft
  The views expressed on this post are mine and do not necessarily reflect the views of SolarWinds.

• I cannot activate LR5 and find 2 hosts file in html. not sure how to proceed from now

  i cannot activate lr5
  Contacted help desk and found the info on the site but i ma supposed to copy the hosts file and remove reference to adobe activation. issue is that i see two host file but in html format. how am i supposed to do this? sorry, am not a techy.

  What operating system are you on?
  Win: - How can I reset the Hosts file back to the default?
  Mac: - restore orginal host file | Apple Support Communities
  Or get in contact with the support of the Operating system and ask them to guide on getting the Host file restored.
  It is a System Related file, they should be able to assist you in restoring it to default.

• How to use the same services-config for the local and remote servers.

  My flex project works fine using the below but when I upload my flash file to the server I doesn't work, all the relative paths and files are the same execpt the remote one is a linux server.
  <?xml version="1.0" encoding="UTF-8"?>
  <services-config>
      <services>
          <service id="amfphp-flashremoting-service"
              class="flex.messaging.services.RemotingService"
              messageTypes="flex.messaging.messages.RemotingMessage">
              <destination id="amfphp">
                  <channels>
                      <channel ref="my-amfphp"/>
                  </channels>
                  <properties>
                      <source>*</source>
                  </properties>
              </destination>
          </service>
      </services>
      <channels>
      <channel-definition id="my-amfphp" class="mx.messaging.channels.AMFChannel">
          <endpoint uri="http://localhost/domainn.org/amfphp/gateway.php" class="flex.messaging.endpoints.AMFEndpoint"/>
      </channel-definition>
      </channels>
  </services-config>
  I think the problem  is the line
          <endpoint uri="http://localhost/domainn.org/amfphp/gateway.php" class="flex.messaging.endpoints.AMFEndpoint"/>
  but I'm not sure how to use the same services-config for the local and remote servers.

  paul.williams wrote:
  You are confusing "served from a web-server" with "compiled on a web-server". Served from a web-server means you are downloading a file from the web-server, it does not necessarily mean that the files has been generated / compiled on the server.
  The server.name and server.port tokens are replaced at runtime (ie. on the client when the swf has been downloaded and is running) not compile time (ie. while mxmlc / ant / wet-tier compiler is running). You do not need to compile on the server to take advantage of this.
  Hi Paul,
  In Flex, there is feature that lets developer to put all service-config.xml file configuration information into swf file. with
  -services=path/to/services-config.xml
  IF
  services-config.xml
  have tokens in it and user have not specified additional
  -context-root
  and this swf file is not served from web-app-server (like tomcat for example) than it will not work,
  Flash player have no possible way to replace token values of service-config.xml file durring runtime if that service-config.xml file have been baked into swf file during compilation,
  for example during development you can launch your swf file from your browser with file// protocol and still be able to access blazeDS services if
  -services=path/to/services-config.xml
  have been specified durring compilation.
  I dont know any better way to exmplain this, but in summary there is two places that you can tell swf  about service confogiration,
  1) pass -services=path/to/services-config.xml  parameter to compiler this way you tell swf file up front about all that good stuff,
  or 2) you put that file on the webserver( in this case, yes you should have replacement tokens in that file) and they will be repaced at runtime .

• Issue with VPN configuration in Windows 2008 r2 and 2012 Servers.

  Hello ,
  I hope you can help me to fix this issue, it's been 5 days since I a, trying to configure VPN in your 2008 and 2012 Servers. On both platform  (2008 and 2012) I am getting same error while configuring VPN (after role installation). 
  "Unable to load C:\Windows\System32\iprtrmgr.dll". So, I have removed IPv 6 entry from the registry and now able to start server (not sure what configuration it took automatically).  I tried to disable "Routing
  and Remote Access" service and got the same error while enabling "Routing and Remote Access" is running but VPN is still not functioning properly). 
  I am getting following error,
  ================================================
  Errors under the Event viewer (Remote access)
  1) --->>    CoId={DF744409-02D7-4FF4-AD24-504F0C83E1AB}: The user 10.0.0.1\chetan connected from 10.0.0.1 but failed an authentication attempt due to the following reason: The remote connection was denied because the user name and password
  combination you provided is not recognized, or the selected authentication protocol is not permitted on the remote access server.
  2) ----->>   CoId={DF744409-02D7-4FF4-AD24-504F0C83E1AB}: The user connected to port VPN3-127 has been disconnected because the authentication process did not complete within the required amount of time.
  Errors under the Event viewer (Remote access)
  3) ---->>  Network Policy Server denied access to a user.
  Contact the Network Policy Server administrator for more information.
  ================================================
  I am using (MS-CHAP v2) + EAP (Authentication Method).  Please let me know if you need any additional information. 
  Thank you,

  I Guess this thread is not related to SQL Server .User is facing issue because of network or may be due to OS.I guess I will move this into windows forum.
  Moderators please move to Network forum
  Please mark this reply as the answer or vote as helpful, as appropriate, to make it useful for other readers

• Advantages of using a webserver inbetween a load balancer and application servers

  I am building out a new weblogic domain.
  I am wondering which one of these configuration to go with:
  1. Load balancer > weblogic servers
  2. Load balancer > web server > weblogic servers
  Could someone tell me what are the specific advantages of having web servers inbetween a load balancer and application servers (besides caching static data content and acting as a proxy)?
  Thanks in advance
  Srini

  Other than hosting the static content, nothing much really.   We have our load balancer go straight to WL for applications without static content and route to web server if there is static content.   Easy enough to do it both ways, best of both worlds.

• Acrobat X and citrix

  We are currently using Acrobat 9.4 pro and having problems in a Citrix Presentation Server with Windows Terminal Services. We are having problems with the servers pegging out their CPU's. Will X alleviate this? Also, will there be support if this hasn't been fixed. Acrobat has become virutally useless to us and we're thinking of switching to Foxit.

  Right now we're running 9.4 pro and when our staffers opens pdf's, the cpu on the servers go to 100%. We haven't figured out any pattern with when or how this happens.
  We have been aware that sometimes when a staffer opens a pdf they get errors and then it pegs out the cpu and then they close and re-open the same pdf again the problem goes away. This is only sometime though. For these instances it seems that acrobat is looking for something and when the pdf is open for the 2nd time it finds whatever it is looking for.
  We're also running acrobat on vmware, citrix and terminal servers.

• Business One and Citrix

  Iu2019d like to start a general discussion regarding the use of Business One over Citrix Presentation Server/XenApp.  Specifically, how best to design this type of solution and how to overcome any obstacles that may result.
  For example, my company is currently working on planning and designing a project to consolidate multiple remote Business One installations back to the corporate headquarters and using XenApp to publish the Business One client to these remote offices.  This has already raised a few questions that I was hoping to get some insight on.
  First, we are consolidating remote offices running both the 2007A and 2007B versions of B1.  How can we publish both versions simultaneously?  We envisioned installing at least two B1 servers, one for 2007A and one for 2007B, then we assumed we would have to run the B1 client on the XenApp servers either in an isolation environment or as profiled applications streamed to the XenApp servers.  Is anybody else publishing both versions of the B1 client?  If so, are there any issues that need to be dealt with?
  Second, would you recommend installing one B1 server for each remote office/company to connect to or would you recommend connecting each separate remote office/company to the same B1 server (specific to the B1 version they need to connect to)?  There are pros and cons to each scenario.  If each remote office/ company has their own B1 server, they can be kept at different patch levels and the servers can be upgraded or rebooted without affecting other users, however this results in additional overhead for hardware (even if running the B1 servers as VMs) and maintenance.  If each remote office/company uses the same B1 server specific to their needed version, then administrative overhead is reduced, but all will need to be kept at the same patch level and issues or reboots will affect all connected users.  Also, are there issues with add-ons that are site specific, will we need to run multiple B1 servers to achieve this functionality?  Are there limitations on the number of users that can connect through one B1 server, taking into consideration that different users will be connecting to different companies/databases simultaneously?
  Our original overall design will consist of one SQL server for all necessary databases, one Citrix Licensing/Web Interface/Secure Gateway server, at least two (maybe more) B1 servers running 2007A and 2007B, and at least three Citrix XenApp/Presentation servers running the B1 clients.
  If anybody has any questions or comments, Iu2019d love to hear them.  Thank you.

  My comments:
  It is good intention that you try to solve all the problem in one shot.  However, this is in contradiction to the forum rule.  You would be better to split your questions one by one.
  Another hint:  the format of your message is too heavy for other users to read.  You may need to reformat it in new thread so that it is not that difficult to read.
  Thanks,
  Gordon

• Adobe XI keeps loosing serial number on Citrix servers

  Hi All,
  we have a customer who has bought Adobe Acrobat XI. They have 4 Citrix servers and on all of them is the software installed. There is one serialnumber and that was bought for 11 users. The issue we face is that from time to time, on a random server, the software isn't registered anymore and we need to re-enter the serial number. This happens 2/3 times a week and you can't predict on which server it will happen. I have already tryed to clear the serialnumber cache directory on the server, but it does not solve anything. Does anyone know what we could do to solve this issue?
  Thanks,
  Michael

  Hi Stacy,
  i don't really know where they were purchased, I believe directly from Adobe, but they are attached to an account on the LWS. I have the End user ID of the customer and the serial number and even the order number. Just tell me what you need.
  Thanks in advance,
  Michael

• ACE module client and real servers on same subnet

  I am working on a ACE load balancing implementation,which has following requirement? Can someone let me know if this can be implemented and how?
  Configuration
  test context
  real server vlan 233
  real server subnet - 167.6.233.x
  VIP vlan - 539
  VIP subnet - 167.6.238.128/25
  production context
  real server vlan 232
  real server subnet - 167.6.232.x
  VIP vlan - 538
  VIP subnet - 167.6.238.0/25
  Load balancing is coinfigured in routed mode with ACE as gateway for test and prod real sever subnets (233 and 232 subnets).
  Test and production servers are mixed in these subnets. So we need to configure source NAT to access the test servers in the production subnet (232) and vis versa.
  Here are the scenarios and questions
  1. clients need to access the real servers in prod subnet (232) through VIP configured in test context (vlan 539) - this is done by SNAT at vlan 539 and working.
  2. real servers in test subnet (233) needs to access real servers in same subnet (233) through VIP configured in test context (vlan 539) - this is done by SNAT at vlan 233 and working
  3. real servers in prod subnet (232) need to access the real servers in test subnet (233) through VIP configured in test context (vlan 539) - this appears to be working fine without any additional configuration
  4. real servers in test subnet (233) needs to access another real servers in prod subnet (232) through VIP configured in test context (539)  - this is not working
  5. real servers in test subnet (233) needs to access another real server which is not on one of the subnet (167.6.56.x) behind ace - this is not working.
  Can we implement the scenarios 4 and 5?

  Hi Suresh,
  I see it's a bit complex and we do not have the config at hand.
  However for the scenario 4 if you apply the policy already applied on vlan 539 on the interface vlan233 then the ACE should catch the packets and apply the policy (i.e. forward the packets to the serverfarm you want)
  Alessandro
  If  this helps you and/or answers your question please mark the question as  "answered" and/or rate it, so other users can easily find it.

• SBO and Citrix. Hardware requeriments

  Hi,
  We are looking for the hardware requeriments for a SBO and Citrix installation. It would be for moreless 30-40 concurrent users.
  We have downloaded the SBO hardware requeriments sizing guide, but we are looking for real experience feedback.
  Anybody can give us some feedback on this issue?
  Thanks in advance,
  Ibai Peña
  PS: Nobody has used Citrix? This is not what Citrix says...

  I've checkes it for you, here it comes:
  SBO & MSSQL Server
  Intel Xeon 3.2 Ghz, 1,5 GB RAM
  Clients
  Intel Xeon 3.2 Ghz, 2 GB RAM
  However, keep in mind that these are virtual servers, and I don't know on what 'real' servers those virtual servers are hosted, and not know the amount of memory I get allocated per user...
  Kind regards,
  Rowdy
  Concerning Virtual Servers, it's some software that runs on a 'real' server, wich can host multiple operating systems. So you have one piece of hardware, but in your network you can have multiple servers/clients etc. Need a nice test server? Add one to your Virtual Server and your ready, no need to buy new hardware...
  Usefull links:
  <a href="http://www.microsoft.com/windowsserversystem/virtualserver/default.mspx">Microsoft Virtual Server</a>
  <a href="http://en.wikipedia.org/wiki/Microsoft_Virtual_Server">Virtual Server (Wikipedia)</a>
  <a href="http://www.vmware.com/">VMWare</a> (Other Virtualisation software vendor)

• Move and redeploy application- and web-servers for Planing?

  Hi, all!
  Have Hyperion Planing ability to move application- and web-servers from unix-machine to another win-machine and after redeploy existing unix-installed planing on it?

  They are actually for for 2 different things. The Sun WAS is for enterprise applications, EJBs and the like.
  Tomcat is for simpler Servlet/JSP hosting.
  The Sun WAS actually uses the Tomcat server as its Servlet/JSP engine then adds EJBs on top.

• Can i use my time capsule as wireless storage and not as a router too?

  hi there i just bought my self a time capsule its a 500gb one as i do not need the 1tb+ storage.
  i play a lot of online games and have a fast router so i do not want the time capsule for its router capabilitys i only want to use it as a wireless storage unit is this possible to do?
  if not i can connect a usb storage to my current router and use that as my wireless storage if so where is the best place to sell this time capsule?

  You simply bridge the TC and plug it into the existing router.. it will then provide network storage..
  Can connect either via the existing router or the TC.. if you set up wireless correctly.. if it is a gen1 you can set to 5ghz only.. that will keep it from interferring with the existing router.

• Can I use my time capsule for back up only and not as a router?

  I have been trying to set up my time capsule as a router but have not been successful, the dsl I am using is not responding. Can I just use my time capsule as a back up device and not as a router? if so how can I do this?

  Yes, you can. Simply plug the TC via Ethernet into the current router and set it up in bridge mode.

• I just bought a new iMac and I am using a apple air port router.  How do I connect mt windows PC to the air port router do I can move files

  I Just purchased a 21.5 iMac and connected it to the Internet using a apple air port router.  How do I connect my windows PC to my air port router so I can transfer files.

  It makes life easier to install the airport utility for windows.. which has a couple of different apps in it.. if you airport is new type then the utility is too old.. but is still valuable for Bonjour which provides network information for shared devices in the apple world to windows.. and a disk access agent..
  It will also help the Apple computer access shared directory in the windows computer.. nowadays this is pretty easy.