UNIX monitoring( different domain) using gateway servers

Similar Messages

• Send email to different domain using different address

  hi
  I want to set my exchange recipients have 2 email address.
  1=[email protected] 2=[email protected]
  1.how can I set this setting? (I know I can use something called policy but I don't know how can use that for exchange 2013; please tell me how can do this)
  2.how can set my exchange server to send email to different domain with different account? (after question 1; my recipients has 2 email address (***@domain.com,
  ***@domain.co) I want my recipients when send email to "company.com" using domain.com address and for other domains using domain.co)
  thanks

  1.  Add an accepted domain.  Add the e-mail address to your e-mail address policy.  Update the e-mail address policy.
  2.  http://www.ivasoft.biz/choosefrom2007.shtml  This has been the traditional answer for Exchange 2010 and earlier.  You might contact him to see if it works for Exchange 2013. 
  I don't know of a native way to do this except to create separate mailboxes for each address.
  Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."

• Multiple Gateways servers - any issues?

  I am being asked to monitor multiple untrusted domains through gateway servers. We already have one gateway server setup, are there any issues I should beware of when setting up a second or third one for different domains? Do they all talk back through
  port 5723 happliy without any contention?

  Not really - the individual servers can become the bottle-neck should there be a large number of agents reporting to them but this would be for relatively large deployments. But in terms of contention you shouldn't have any problems, there's a good article
  here which has details of the process (similar content
  here as well) .
  I'd also take a look at the SCOM sizing tool as this will give you some details on server spec, etc
  http://blogs.technet.com/b/momteam/archive/2012/04/02/operations-manager-2012-sizing-helper-tool.aspx
  Extract from the SCOM2012 deployment guide:
  "Gateway servers are used to enable agent-management of computers that are outside the Kerberos trust boundary of management groups, such as in a domain that is not trusted. The gateway server acts as a concentration point for agent-to-management server
  communication. Agents in domains that are not trusted communicate with the gateway server and the gateway server communicates with one or more management servers. Because communication between the gateway server and
  the management servers occurs over only one port (TCP 5723), that port is the only one that has to be opened on any intervening firewalls to enable management of multiple agent-managed computers. Multiple gateway servers can be placed in a single domain so
  that the agents can failover from one to the other if they lose communication with one of the gateway servers. Similarly, a single gateway server can be configured to failover between management servers so that no single point of failure exists in the
  communication chain.
  Because the gateway server resides in a domain that is not trusted by the domain that the management group is in, certificates must be used to establish each computer's identity, agent, gateway server, and management server. This arrangement satisfies
  the requirement of Operations Manager for mutual authentication."

• Finding Domain used in a table

  I would like to find the different domains used in a particular table. Is there any function module or a way out work out this...

  Hi,
  Use table DD04L.
  The field rollname is the Data Element. With the data element you can find the fields used.
  Regards,
  Fernando

• How to access _global variables in different domain

  hi
  i am loading a swf in local and this has to be communicate the swf which was in the server(different domain). using the system.security.allowdomail i can access the variables, but i can't able to access _global variable.
  Pls tell how to access _global variable in different domain
  Thanks in advance
  @flash

  Ganesh,
  It should work the way you mentioned it. I don't see why it
  didn't unless there is a spelling mistake or something. If there
  is you should have a got an error message. :-)
  I actually don't recommend using globals at all, I would rather
  use a PL\SQL Package Specification to define Global Variable.
  These variables are valid for the duration of the Session and
  they are restricted to Char(255) limit. It reduces the number of
  mistakes when converting dates and Such. It also forces the
  developers to place all the globals in one place instead of
  multiple places. Read Feurstein's book on PL\SQL Programming for
  more details.
  Sunil
  MS Ganesh (guest) wrote:
  : Hi Steve,
  : I know how to assign values to global variables.
  : I did the following
  : Form Name : FIRST_FORM
  : :global.group_id := 'SUPERVISOR'
  : call_form('SECOND_FORM');
  : In Second Form
  : When New Form Instance
  : Message(:global.group_id);
  : No message is displayed.
  : Please explain to me the steps in detail.
  : Thanks in advance.
  : Bye
  : MS GANESH
  : Steve (guest) wrote:
  : : Just assign value to global variable i.e.
  : : :global.foo := 'anything'; or
  : : COPY('anything', 'global.foo');
  : : to remove global variable
  : : ERASE('global.foo');
  : : Note: global variables are always VARCHAR2(255);
  : : MS Ganesh (guest) wrote:
  : : : Dear OTN Members,
  : : : I would like to pass values between forms,
  : : : I know it is possible to do it by using Parameters.
  : : : But I would like to know how to use global variables to
  : : : accomplish the same task.
  : : : Thanks in Advance.
  : : : Bye
  : : : MS Ganesh
  null

• Deploy SCOM 2012 R2 Agents to Domain Servers on Perimeter Network using SCOM Gateway on different Domain

  Hi, I have a bit odd situation on a SCOM 2012R2 deployment.
  I have a MS on the internal network, and a Gateway Server on the perimeter network. Each server is connected to different Active Directory Forests and there are no trust relationships between them. I configured the communication between the two using certificates.
  I have already connected some servers through the Gateway using certificates because there are on Workgroups, they are already approved on the MS and reporting their status.
  However, I have some servers that are member servers of the internal AD domain but are located on the perimeter network.
  So I've tried to configure one of them for testing to connect to the Gateway Server using a certificate using manual agent installation. Initially it didn't report on the SCOM, but then I ran the get-scompendingmanagement and saw that it showed there,
  so I ended up approving the agent using Powershell and then it was reported on the Console as "Not Monitored"
  First the agent was running as local system and then tried using a local admin account on the server, neither options have worked.
  I get the following errors:
  The OpsMgr Connector connected to scomgateway.externaldomain.com, but the connection was closed immediately after authentication occurred.  The most likely cause of this error is that the agent is not authorized to communicate with the server, or the
  server has not received configuration.  Check the event log on the server for the presence of 20000 events, indicating that agents which are not approved are attempting to connect.
  For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
  OpsMgr was unable to set up a communications channel to scomgateway.externaldomain.com and there are no failover hosts.  Communication will resume when scomgateway.externaldomain.com is available and communication from this computer is allowed.
  For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
  Is this configuration possible? Or do I need to open communication ports from the agents to the MS inside the corporate network and not use the Gateway?
  Any ideas if someone else has done this are appreciated.
  Thank you.
  Regards.
  Eduardo Rojas

  I'm sorry, maybe I didn't explained myself correctly, I already have the gateway up and running with some Workgroup machines connected to it using certificates, so the Gateway is indeed working. These Workgroup machines are in fact reporting back to the
  Management Server on the internal network through the Gateway.
  My problem is with Domain Member machines that are on the perimeter network. This machines are joined to the Active Directory inside the corporate firewall, not the Active directory from the perimeter network (where the Gateway is joined). So my question
  is, can I connect these machines through the Gateway (even if the Gateway is on a different domain) or do I need to open ports and connect them directly to the management server (which is on the same active directory domain)? 
   Let me know if I made myself clear.
  Thank you.
  Regards.
  Eduardo Rojas

• Use Wildcard SSL Cert to Monitor Non-Domain COmputers

  Hello,
    I was wondering if a Wildcard SSL Cert from GoDaddy or another Provider can be used to monitor Non-Domain Computer on SCOM 2012R2?
  TIA,
  Jim

  Hi,
  The Operations Manager agents support two types of authentication method, Kerberos or certificate based authentication. In order to monitor servers and clients located outside the Operations Manager’s native Active Directory domain, you will need to configure
  certificate authentication using either an internal Certificate Authority or through a 3rd party Certificate Authority.
  Regards,
  Yan Li
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact [email protected]

• EDN:  subscribe to the same event deployed on different domain/Servers

  We are working on use case where in we would like to publish an Event from an ADF application . We would like to subscribe to the same event deployed on different domain/Servers than the servers on which ADF Application deployed. We would like to get more information on the configuartion of Foreing JNDI for the Business events for this use case. in the documentation it was mentioned, it is possible but not much details were provided.
  So far all I have to go on is: http://download.oracle.com/docs/cd/E21764_01/integration.1111/e10224/obe_intro.htm#BABHBGAG

  We are working on use case where in we would like to publish an Event from an ADF application . We would like to subscribe to the same event deployed on different domain/Servers than the servers on which ADF Application deployed. We would like to get more information on the configuartion of Foreing JNDI for the Business events for this use case. in the documentation it was mentioned, it is possible but not much details were provided.
  So far all I have to go on is: http://download.oracle.com/docs/cd/E21764_01/integration.1111/e10224/obe_intro.htm#BABHBGAG

• Moving SAP ERP Servers to a different domain.

  Hello Experts
  I currently have 3 SAP ERP 6.0 servers (central installs) a solution manager 7.0 EHP1 and netweaver CE machine all located in one windows domain (currenlty windows 2003 domain controllers) all running Oracle databases.  I have been asked to look into moving all of these severs into the main corporate domain (currently windows 2008 r2 domain controllers) with a view to streamlining the domain structure.  All the SAP installs are domain installs and therefore the accounts would need migrating to the new domain, what I would like to know, is are there  any other factors other than those listed below that I need to consider:-
  Migrate SAP user and service account to new domain
  Adjust Profile Parameters for SAP G:\usr\sap\<SID>\sys\profile
  Change frontend gui's to reference new domain (SSO has reference to the sap service account from the users domain)
  Review folder permissions to ensure security is maintained (the current dommain no users log on to this domain- the new domain everyone logs onto)
  Is there anything specific for oracle that should be changed?? 
  It would be usful to know if anyone has done this and any pitfuls to avoid.
  Thanks you.
  Liz

  Hi,
  If some of your SAP systems will stay in the previous domain, you may have problems with the saplogon tickets because, as http cookies,   they are valid for a domain. So SSO between SAP systems in different domains may generate problems (which can be solved).
  If you use BSP or web dynpro applications, and use URL rewrites or redirects ,the change of FQDN may also need some configuration changes.
  Concerning Oracle, check your OPS$ users.
  Regards,
  Olivier

• Can we assign 2 IPs for a SCCM 2012 primary site server and use 1 IP for communicating with its 2 DPs and 2nd one for communicating with its upper hierarchy CAS which is in a different .Domain

  Hi,
  Can we assign 2 IPs for a SCCM 2012 primary site server and use 1 Ip for communicating with its 2 DPs and 2nd one for communicating with its upper hierarchy CAS . ?
  Scenario: We are building 1 SCCM 2012 primary site and 2 DPs in one domain . In future this will attach to a CAS server which is in different domain. Can we assign  2 IPs in Primary site server , one IP will use to communicate with its 2 DPs and second
  IP for communicating with the CAS server which is in a different domain.? 
  Details: 
  1)Server : Windows 2012 R2 Std , VM environment .2) SCCM : SCCM 2012 R2 .3)SQL: SQL 2012 Std
  Thanks
  Rajesh Vasudevan

  First, it's not possible. You cannot attach a primary site to an existing CAS.
  Primary sites in 2012 are *not* the same as primary sites in 2007 and a CAS is 2012 is completely different from a central primary site in 2007.
  CASes cannot manage clients. Also, primary sites are *not* used for delegation in 2012. As Torsten points out, multiple primary sites are used for scale-out (in terms of client count) only. Placing primary sites for different organizational units provides
  no functional differences but does add complexity, latency, and additional failure points.
  Thus, as the others have pointed out, your premise for doing this is completely incorrect. What are your actual business goals?
  As for the IP Addressing, that depends upon your networking infrastructure. There is no way to configure ConfigMgr to use different interfaces for different types of traffic. You could potentially manipulate the routing tables in Windows but that's asking
  for trouble IMO.
  Jason | http://blog.configmgrftw.com | @jasonsandys

• Active Directory Domain Controllers using Virtual Servers

  Hi,
  I want to place a new SAP landscape in a child domain of the Active Directory forest. Due to an ordering error I am short two servers.
  Basically I am thinking about installing a virtual server on each of the development servers and using the virtual server installation to run as Active Directory Domain controllers.
  I know SAP do not recommend using SAP servers to be used as domain controllers, but as these are separate servers with their defined resources, it should not be a factor if the servers are sized with enough spare capacity.
  Can anyone think of any other major issues that would cause me an further issues.
  TIA
  Chris aka BoobBoo

  should be no problem, but please don't try to put the host-operating system in the domain for which their own guests will provide the domain controlers.
  peter

• Can I use mp3 files from different domain as the feed?

  Hi..
  I have just created a new podcast here:
  http://artistsofliving.com/?feed=podcast
  I would like to submit the podcast to iTunes sometime soon...
  However, I'm wondering if they will reject it because the feed lives on 'artistsofliving.com', whereas I keep the media mp3 files on 'livinginthepresent.com'... a different domain.
  I own the mp3 content and both domains- I'm splitting the media from the website for bandwidth reasons.
  Is this ok? If this causes a rejection straight out is there a way to indicate that I own the material fairly?
  Thanks!
  -rich

  There's no problem about using media files from any source: the feed just has to reference them (the URLs have to be 'absolute' - i.e. including the http:// and the server name - even if the file is on the same server as the feed anyway). I don't see the fact that some files have different URLs leading to accusations of copyright breach.

• Dynamic domain uses the same ViewObject for different parameters.

  Hi all.
  My version：
  JDeveloper 10.1.3.2
  JHeadstart 10.1.3.1
  When I in the same group different fields use DynamicDomain,as below：
  DynamicDomain with ViewObject(ex：CodeView and parameters set :1),Query Bind Parameters set "a001".
  Then create another DynamicDomain with the same ViewObject, but Query Bind Parameters set "a002".
  Result, all value of the field is Parameters set 'a002'.
  can give me any help?
  Thanks.
  Joy

  Joy,
  The queried data collection is held at the level of the View Object usage. So, while you can reuse the same ViewObject, you need to create two separate View Object usages in the application module, one for each domain.
  Steven Davelaar,
  JHeadstart Team.

• How to build transitional replication on two different domain servers in SQL server 2012 ?

  Hi All,
  We have to build transnational replication with updatable  subscribers between two different domains .
  Is it possible ,if it's possible please share the any document or process .....
  Thanks in advance. 
  RAM

  Yes this is possible.
  Replication across two non-trusted domains or workgroups can be done by using Windows Authentication by configuring
  pass-through authentication.
  Create a local Windows account on both the Publisher and Subscriber that has
  the same username and password. Use this account for the Merge Agent process account and have the connections to the publisher and distributor impersonate the agent process account. Ensure the account has the permissions required in
  Replication Agent Security Model.
  This approach is covered in the section Use Windows Authentication to Set Up Replication Between Two Computers Running SQL Server in Non-Trusted Domains in
  HOW TO: Replicate Between Computers Running SQL Server in Non-Trusted Domains or Across the Internet.
  Another approach to configure replication between non-trusted domains is to use SQL authentication for cross domain connections.
  Brandon Williams (blog |
  linkedin)

• How can I add a user Role member that is from a different domain

  We are currently building out SCOM 2012 R2 to provide monitoring as a service to some of our customers.  As of now we have the RMS on our own department's domain (Domain A) which we have full control of and we have a gateway server that is on the company
  wide domain (Domain B) so that we can monitor other departments devices as the leverage this system.
  Monitoring is working just fine on both domains and we are just working on fine tuning SCOM so that we can roll it out as a service we offer to our customers.  One of the next steps we are working on before rolling it out is giving specific users access
  to view only their own devices, dashboards, and groups.  So I created a Read-Only profile and went to add a user to test it out, but that user is on Domain B and SCOM is unable to resolve this account.  I'm seeing Event ID 26319 with Error Code 1332.
  How can I get SCOM to discover devices on a different domain so that I can give them different permissions for accessing the Operations Console and/or Web Console?  Is this possible?
  Here is the Error I'm seeing.
  Log Name:      Operations Manager
  Source:        OpsMgr SDK Service
  Date:          2/4/2015 1:11:59 PM
  Event ID:      26319
  Task Category: None
  Level:         Error
  Keywords:      Classic
  User:          N/A
  Computer:      xxxxx.xxxx.xxxxxxxx.xxx
  Description:
  An exception was thrown while processing UpsertUserRolesV2 for session ID uuid:f3b4015e-9583-4237-b7a6-406826434553;id=40.
   Exception message: The creator of this fault did not specify a Reason.
   Full Exception: System.ServiceModel.FaultException`1[Microsoft.EnterpriseManagement.Common.UserRoleUserUnresolvedException]: The creator of this fault did not specify a Reason. (Fault Detail is equal to Microsoft.EnterpriseManagement.Common.UserRoleUserUnresolvedException:
  Unable to resolve the user [email protected] associated with the user role. Error code 1332. Check your active directory configuration.).
  Event Xml:
  <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
      <Provider Name="OpsMgr SDK Service" />
      <EventID Qualifiers="49152">26319</EventID>
      <Level>2</Level>
      <Task>0</Task>
      <Keywords>0x80000000000000</Keywords>
      <TimeCreated SystemTime="2015-02-04T21:11:59.000000000Z" />
      <EventRecordID>172748</EventRecordID>
      <Channel>Operations Manager</Channel>
      <Computer>xxxxx.xxxx.xxxxxxxx.xxx</Computer>
      <Security />
    </System>
    <EventData>
      <Data>UpsertUserRolesV2</Data>
      <Data>uuid:f3b4015e-9583-4237-b7a6-406826434553;id=40</Data>
      <Data>The creator of this fault did not specify a Reason.</Data>
      <Data>System.ServiceModel.FaultException`1[Microsoft.EnterpriseManagement.Common.UserRoleUserUnresolvedException]: The creator of this fault did not specify a Reason. (Fault Detail is equal to Microsoft.EnterpriseManagement.Common.UserRoleUserUnresolvedException:
  Unable to resolve the user [email protected]  associated with the user role. Error code 1332. Check your active directory configuration.).</Data>
    </EventData>
  </Event>
  Thanks for any help I can get in resolving this issue.
  Jake

  The SCOM Management Server is in Domain A.  I've tried it already and it has failed.  
  So just to clarify the method I used was to go to Administration>Security>User Roles.  Then New User Role>Read-Only Operator.  In the Create User Role Wizard I then gave the User Role a name, Clicked "Add" under User Role Members.
   Then the Select Users or Groups window pops up and I changed the Locations from Domain A to Domain B and searched for the user, which it's able to find, then clicked "OK" to add it to the User Role members which it does just fine.  On
  the next page which is Group Scope I checked the one group I want this account to have access to and then click next.  This brings me to Dashboards and Views where I click the radio button for "Only the dashboards and views selected in each tab are
  approved" and chose the folder of dashboards I want this account to access and then click next.  This brings me to the Summary and I click "Create".  At this point it thinks for a moment then closes out the wizard but the new Read-Only
  Operator does not appear.  I then look in Event Viewer and see the Event I pasted above.
  Am I doing something wrong here?  Any guidance on how to get around this issue would be much appreciated.
  Thanks,
  Jake