VALN locally assigned and VTP prunning and Domain

Similar Messages

• Metro Apps don't open on Local and Domain account. Works on Microsoft Live account. Windows 8.1 Pro

  This is Happening on Three different computers.
  All computers are Windows 8.1 Pro. This is a clean install.
  When the computer is initially setup, I first sign on with my Windows Live ID and everything seems to work fine there.
  After Joining the computer to the domain, none of the Metro UI apps will open, they open briefly and close.
  Added a local account and found that it also does not work there.
  Steps I have tried to resolve this:
  Modified owner and permissions on registry Key: HKCR\AppID\{3EB3C877-1F16-487C-9050-104DBCD66683}
  Changed owner to Local Administrator and gave full controll to Local Admin and Domain user account.
  Ran DCOMCNFG and under Computers ->My Computer-> WinInetCacheServer Properties I went to the IDENTITY TAB and changed
  it to the Interactive User.
  That did not help.
  Ran this command: "powershell
  -ExecutionPolicy Unrestricted Add-AppxPackage -DisableDevelopmentMode -Register $Env:SystemRoot\WinStore\AppxManifest.xml" from elevated command prompt and also did not help.
  I tried downloading the App troubleshooter but it would not run.
  I also tried "wsreset.exe" and got an error saying: " Windows cannot find 'ms-windows-storePurgeCaches'. Make sure you typed the name
  correctly, and then try again"
  When Trying to open the app and it fails I get this error under Applications in Event Viewer:
  "Activation of app winstore_cw5n1h2txyewy!Windows.Store failed with error: This app does not support the contract specified or is not installed. See the Microsoft-Windows-TWinUI/Operational log for additional information."
  Anyone know how to resolve this.
  We are looking to implement Windows 8.1 Pro to our clients pretty soon and need to get this resolved asap.
  Thanks

  This is Happening on Three different computers.
  All computers are Windows 8.1 Pro. This is a clean install.
  When the computer is initially setup, I first sign on with my Windows Live ID and everything seems to work fine there.
  After Joining the computer to the domain, none of the Metro UI apps will open, they open briefly and close.
  Hi,
  Did you mean that this problem only after you join the computer to the domain? if so, you may need to check whether you domain controller would install any program to your system. or you can contact domain adminstrator for further assistance.
  In addition, run the following in a Command Window (CMD) to re-register the Store App:
  powershell -ExecutionPolicy Unrestricted Add-AppxPackage -DisableDevelopmentMode -Register $Env:SystemRoot\WinStore\AppxManifest.XML
  Roger Lu
  TechNet Community Support

• How can I install WebOfTrust for a local account and save the profile so that it transfers to domain accounts that log on to that specific computer?

  We are creating images through ghost server to clone onto several laptops and one of the features we need to have configured is the Web of Trust extension in Firefox. I have configured a local account on the machine and set up Web of Trust and then copied the profile image in regedit to the default profile image and saved this. WOT works for local accounts but whenever I try domain accounts, Web of Trust needs to be disabled and re-enabled.

  Try using Web of Trust support:
  http://www.mywot.com/en/support
  Or post in their user support forum:
  http://www.mywot.com/en/forum

• Strange info in "Bypass Proxy Settings for These Hosts and Domains"

  For my Mac Mini my Network IP Address always has a self-assigned 169.254 number that I cannot change. Strangely, this same IP number is similar to info that is in the Proxies section (of Network Settings) under "Bypass Proxy Settings for These Hosts and Domains".
  No matter what I do, this info (*,local, 169.254/16) appears in my Network Settings in the Proxies section under "Bypass Proxy Settings for These Hosts and Domains". (I tried removing the info and it would cause the "Configure Proxies" selection to default to "Always Use PAC File". Had to go back and retrash all the plist files to have Proxies go back to "Configure Proxies-Manually". Still, the info (*,local, 169.254/16) continues to appear in the "Bypass Proxy Settings for These Hosts and Domains" section and my IP address is always a 169.254 number.)
  Comcast cable modem via direct hardwired Ethernet works fine with my other computer, so not the modem. Also, other computer does not have any info in the "Bypass Proxy Settings for These Hosts and Domains" section.
  Installed a fresh copy of OS X 11.5 on a new hard drive. Still the same problem.
  I posted this issue before but only got one responder and the problem still exists. Any clues? Somebody must know about this stuff. Help please.
  Thanks

  When your Mac wakes up, it does not yet have an IP Addresss. It wants to send a request to a Router for an apprpriste IP address to use now. But it needs to have an IP address (like a return address) to receive any messages. So, ... wait for it,
  ... it (your Mac) makes one up. There are rules that ensure it is a random address, but they always start with 169.254. It is on the same subnet with any low-order 16 bits This is the "self-assigned" range of IP Addresses. This address is only good for talking on a local network segment, for things like asking for a valid IP Address from a DHCP-enabled Router.
  In most cases, on most networks, the 169.254 self-assigned IP Address is replaced by a valid Local IP Address such as 192.168.xxx yyy or 10.0.xxx.yyy so quickly that you never even see the 169.254 Address.
  If you do see the 169.254 Address, it can be read as "Nobody will talk to me" or "Nobody will give me an IP Address". When you have this IP Address for more than an instant, you should suspect bad cables for Ethernet connections, bad signal strength or interference for wireless, Router configuration problems, or Mac configuration problems.
  Mac configuration problems are often solved by using the "Assist Me" button is System Preferences > Network  and choosing to set up again.
  Another diagnostic is to try using Network Utility and the Ping function, and Ping-ing the address of your Airport base Station, often 192.168.0.1 or 10.0.0.1 or similar. This will tell you if the Router is reachable, or there are cabling/wirelss signal problems.
  In this case, proxies are not an issue, and are simply a distraction from the real problems.

• How do I change an IP address of SQL Server which is locally hosted and is not on cluster?

  Hi All,
  How do I change an IP address of SQL Server which is locally hosted and is not on cluster?
  I am asking about IP for SQL Server, is there a way we can assign a different IP to SQL Server other than the server's(host) IP address? like the same what we do in a clustered env.
  aa

  Full explanation can seen here:
  SQL Server: Configure Listening IP, Port, and Named pipe
  http://ariely.info/Blog/tabid/83/EntryId/151/SQL-Server-Configure-Listening-IP-Port-and-Named-pipe.aspx
  [Personal Site] [Blog] [Facebook]

• Win 8.1 domain workstation. Block all access, except for a fews users/groups and domain controller information/date.

  Hi!
  Win 8.1 pro, domain workstation. How Block all access, except for a fews users/groups and domain controller information/date.
  Nuance:
  From domain AD is locked Workstation Firewall "Domain profile" edit.
  Possible?
  cenubit

  Hi GirtsR,
  I am not sure the command to use the SID to accomplish what you want to achieve, if you only know the SID, you could take use Powershell to find the related information, more information, please check:
  Working with SIDs
  And a similar thread for reference:
  How to find user/group known only SID
  More reference: Default local groups.
  Best regards
  Michael Shao
  TechNet Community Support

• On Sympatico homepage, my local weather and news does not come up unless I refresh the page. But when I return to the homepage during the same session, local news/weather is gone again. Is this correctable?

  When I first open the browser and it goes my homepage, Sympatico.ca, there are 2 areas of the homepage you can personalize. On the left hand side "News" Column, the bottom box "Local News" allows you to select a location (Toronto, Ontario Canada for me) to display news from that area. On the far right hand column, below the advertising bar, is "Weather" where you select your city (Brantford in my case) and it will display the 4 day forecast in C or F degrees. Once you close the homepage the settings are saved. The problem is that when I leave the homepage to any other website, if I return to the homepage the weather and local news is back to the default setting of having to select the city again. I did find if I just refreshed the page, the personalized settings appear. I have Firefox 4 and it seemed to correct the problem when I installed 4 as the same problem had been occurring with my previous version of Firefox. But now it's back to having to refresh the page to get the saved location for local weather and news. My wife uses IE8 on the same PC and has not had this problem on her Sympatico homepage.

  aha!
  Wed Feb 14 12:29:16 2007
  PUSH:
  Received control message:
  'PUSH_REPLY,
  route 192.168.100.3 255.255.255.255,
  route 192.168.1.0 255.255.255.0,
  route 192.168.3.0 255.255.255.0,
  route 172.16.0.0 255.255.0.0,
  route 10.123.123.0 255.255.255.0,
  redirect-gateway,
  dhcp-option DNS 172.16.70.12,
  dhcp-option WINS 172.16.70.2,
  dhcp-option DOMAIN timberline.int,
  route-gateway 172.16.70.254,
  ping 10,ping-restart 120,
  ifconfig 172.16.70.216 255.255.255.0'
  The ifconfig line the server is pushing is not right. That is meant for a point to point connection. That is why the local client is puking on it...it is not correct. At least for a tun type device. If it was a tap, then it would be fine.
  http://openvpn.net/man.html
  (look for "--ifconfig l rn" )
  so.... change the line to dev tap, and then do this stuff..
  http://wiki.archlinux.org/index.php/OpenVPN_Bridge

• Account assignment  and G/L account

  Hi
  Im a SAP-BW Consultant. I need some information in MM.
  1) what is account assignment ..why it is required ...and how it is link to FI.I need some information regading account assignment .
  2) what is G/L account...why it is required and how can it link to FI.
  Pls help me
  kumar

  Dear Kumar,
  According to the document principle. a document must be generated and stored in the system for every transaction/event that causes a change in stock.
  When posting a goods movement in the SAP System, the following documents are created:
  <b>Material document</b>
  In the Inventory Management system, when a goods movement is posted, a material document is generated that serves as proof of the movement and as a source of information for any applications that follow.
  A material document consists of a header and at least one item. The header contains general data about the movement (for example, its date). Each item describes one movement.
  <b>Accounting document</b>
  If the movement is relevant for Financial Accounting (that is, if it leads to an update of the G/L accounts), an accounting document is created parallel to the material document.
  In some cases, several accounting documents are created for a single material document. This might be the case, for example, if you have two material document items with different plants that belong to different company codes.
  The G/L accounts involved in a goods movement are updated through an automatic account assignment.
  For goods receipts for purchase orders, goods movements for stock transport orders and consignment withdrawals, business partners may have different local currencies. Therefore, as well as the local currency, the accounting document must also contain another currency for processing and postings. For this purpose, accounting documents created as a result of these goods movements will automatically be managed in the local currency and in the document currency. You can switch between both currencies by choosing Settings -> Currency display.
  http://help.sap.com/saphelp_erp2005/helpdata/en/4d/2ba31643ad11d189410000e829fbbd/frameset.htm
  <b>General Ledger Accounting:</b>
  The central task of G/L accounting is to provide a comprehensive picture for external accounting and accounts. Recording all business transactions (primary postings as well as settlements from internal accounting) in a software system that is fully integrated with all the other operational areas of a company ensures that the accounting data is always complete and accurate.
  The SAP FI General Ledger has the following features:
  Free choice of level: corporate group or company
  Automatic and simultaneous posting of all sub-ledger items in the appropriate general ledger accounts (reconciliation accounts)
  Simultaneous updating of general ledger and cost accounting areas
  Real-time evaluation of and reporting on current accounting data, in the form of account displays, financial statements with different financial statement versions and additional analyses.
  Essentially, the general ledger serves as a complete record of all business transactions. It is the centralized, up-to-date reference for the rendering of accounts. Actual individual transactions can be checked at any time in realtime processing by displaying the original documents, line items, and transaction figures at various levels such as:
  Account information
  Journals
  Totals/transaction figures
  Balance sheet/profit and loss evaluations
  Account postings form an integrated part of SAP accounting. All transactions entered in the sub ledger accounts end up as general ledger postings in SAP. Thus, a posting to sub ledger account say account receivable, account payable will have an effect on the general ledger. As a rule, any accounting transaction, which affects the general ledger invariably results in a GL account posting.
  But how does SAP recognize the correct GL account to be posted based on the sub ledger transaction entry. SAP recognized every transaction or entry in the sub ledger as a line item. Having said that, each line item has a unique account number, amount, and posting key. SAP FIGL uses this information in identifying the account to be posted. Similar to account postings, documents created in other modules such as production planning, sales & distribution, materials management, controlling, also get posted if they affect the general ledger i.e. SAP GL. A user in SAP does not even have to manually post a document / line item. SAP can be configured for automatic posting though an option is available for manual posting as well.
  http://help.sap.com/saphelp_erp2005/helpdata/en/c7/a89dd243dd11d182b30000e829fbfe/frameset.htm
  Regards,
  Naveen.

• How to change the full host and domain name on OS X Leopard...

  I recently bought an iMac, and I'm trying to configure it for my network. The question I have is, how can I change the host name and domain name from Skuld.local to skuld.tolharadys.net?
  After mucking around with a few searches on Google, I've gotten the domain name to stick since running domainname returns tolharadys.net. Also I can change the hostname as reported by 'hostname' temporarily by running 'hostname skuld.tolharadys.net' in Terminal.app. However, this isn't persistent after reboots. Ideas are welcome.

  You would need a DNS server on your network configured to answer authoritatively for that particular subdomain.

• OAS 10.1.2.3, changing the ip and domain on one machine

  Hello
  We are changing the ip and domain of the hardware (hostname remains the same). We have OAS 10.1.2.3 infra, metadata repository (created with MRCA), middle tier on one and the same machine on Aix 5300-10 (I know you are wondering at this). Middle tier is of the Business Intelligence and Forms type. I'm not sure of the procedure. Also the new metadata repository which has to be created, because changing the domain name of identity management with metadata repository according to administrator's guide is not supported, will be on the same machine.
  Should I follow this procedure:
  (1) Deregister the metadata repository from OID with MRCA.
  (2) Change the domain dame and the ip of the identity management.
  (3) Create a new metadata repository and register it with OID.
  (4) Upgrade the metadata repository to 10.1.2.3.
  (5) Install a new middle tier 10.1.0.2 to use the identity management which is on 10.1.2.3
  (6) Upgrade the middle tier to 10.1.2.3.
  Or is there a simpler supported way of changing the ip&domain when everything is all the time only on one machine. If not, is there something not mentioned here which should be taken into account when following the procedure above.
  I'd much appreciate a comment.
  Best Regards

  For midtier is script chgiphost.sh for infra this one doesn'w work cause only let you change IP I belive.
  I think you can try to make a new installation backing up your users from ldap (SSO-OID) and import them to the new installation and try to re-assign the midtiers to the new infra.
  Greetinges.

• Event ID 1085 on DC - Failed to Apply the Group Policy Local Users and Groups Settings

  I have a domain with 2 DCs.  The primary DC is running Server 2012 and is raising Event ID 1085 every 10 minutes and 20 seconds.
  Windows failed to apply the Group Policy Local Users and Groups settings. Group Policy Local Users and Groups settings might have its own log file. Please click on the "More information" link.
  System
  - Provider
  [ Name] Microsoft-Windows-GroupPolicy
  [ Guid] {AEA1B4FA-97D1-45F2-A64C-4D69FFFD92C9}
  EventID 1085
  Version 0
  Level 3
  Task 0
  Opcode 1
  Keywords 0x8000000000000000
  - TimeCreated
  [ SystemTime] 2014-10-20T20:09:03.706992400Z
  EventRecordID 130087
  - Correlation
  [ ActivityID] {FDDFB8C5-9ECF-41B9-B2B4-3AD0B345A37A}
  - Execution
  [ ProcessID] 1000
  [ ThreadID] 3280
  Channel System
  Computer SERVER.DOMAIN.NAME
  - Security
  [ UserID] S-1-5-18
  - EventData
  SupportInfo1 1
  SupportInfo2 4404
  ProcessingMode 0
  ProcessingTimeInMilliseconds 10343
  ErrorCode 183
  ErrorDescription Cannot create a file when that file already exists.
  DCName \\SERVER.DOMAIN.name
  ExtensionName Group Policy Local Users and Groups
  ExtensionId {17D89FEC-5C44-4972-B12D-241CAEF74509}
  Everything I look up for Event ID 1085 seems to be about a different cause.
  Any ideas?

  I enabled tracing on a domain gpo and I still get the error when running gpupdate /force .
  I'm also still getting Event 1085.  Here's the trace file.  I've anonymized the site/domain and the GUIDs.
  2014-10-21 11:16:54.003 [pid=0x3e8,tid=0xcd0] Entering ProcessGroupPolicyExLocUsAndGroups()
  2014-10-21 11:16:54.018 [pid=0x3e8,tid=0xcd0] SOFTWARE\Policies\Microsoft\Windows\Group Policy\{GUID-1}
  2014-10-21 11:16:54.018 [pid=0x3e8,tid=0xcd0] BackgroundPriorityLevel ( 0 )
  2014-10-21 11:16:54.018 [pid=0x3e8,tid=0xcd0] DisableRSoP ( 0 )
  2014-10-21 11:16:54.018 [pid=0x3e8,tid=0xcd0] LogLevel ( 2 )
  2014-10-21 11:16:54.018 [pid=0x3e8,tid=0xcd0] Command subsystem initialized. [SUCCEEDED(S_FALSE)]
  2014-10-21 11:16:54.065 [pid=0x3e8,tid=0xcd0] Background priority set to 0 (Idle).
  2014-10-21 11:16:54.065 [pid=0x3e8,tid=0xcd0] ----- Parameters
  2014-10-21 11:16:54.065 [pid=0x3e8,tid=0xcd0] CSE GUID : {GUID-1}
  2014-10-21 11:16:54.065 [pid=0x3e8,tid=0xcd0] Flags : ( X ) GPO_INFO_FLAG_MACHINE - Apply machine policy rather than user policy
  2014-10-21 11:16:54.065 [pid=0x3e8,tid=0xcd0] ( X ) GPO_INFO_FLAG_BACKGROUND - Background refresh of policy (ok to do slow stuff)
  2014-10-21 11:16:54.065 [pid=0x3e8,tid=0xcd0] ( ) GPO_INFO_FLAG_SLOWLINK - Policy is being applied across a slow link
  2014-10-21 11:16:54.065 [pid=0x3e8,tid=0xcd0] ( ) GPO_INFO_FLAG_VERBOSE - Verbose output to the eventlog
  2014-10-21 11:16:54.065 [pid=0x3e8,tid=0xcd0] ( ) GPO_INFO_FLAG_NOCHANGES - No changes were detected to the Group Policy Objects
  2014-10-21 11:16:54.065 [pid=0x3e8,tid=0xcd0] ( ) GPO_INFO_FLAG_LINKTRANSITION - A change in link speed was detected between previous policy application and current policy application
  2014-10-21 11:16:54.065 [pid=0x3e8,tid=0xcd0] ( ) GPO_INFO_FLAG_LOGRSOP_TRANSITION - A change in RSoP logging was detected between the application of the previous policy and the application of the current policy.
  2014-10-21 11:16:54.065 [pid=0x3e8,tid=0xcd0] ( X ) GPO_INFO_FLAG_FORCED_REFRESH - Forced Refresh is being applied. redo policies.
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] ( ) GPO_INFO_FLAG_SAFEMODE_BOOT - windows safe mode boot flag
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] ( ) GPO_INFO_FLAG_ASYNC_FOREGROUND - Asynchronous foreground refresh of policy
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] Token (computer or user SID): S-1-5-18
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] Abort Flag : Yes (0x313be090)
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] HKey Root : Yes (0x80000002)
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] Deleted GPO List : No
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] Changed GPO List : Yes
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] Asynchronous Processing : Yes
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] Status Callback : No (0x00000000)
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] WMI namespace : Yes (0x32273740)
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] RSoP Status : Yes (0x320cc7f4)
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] Planning Mode Site : (none)
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] Computer Target : No (0x00000000)
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] User Target : No (0x00000000)
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] Calculated list relevance. [SUCCEEDED(S_FALSE)]
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] ----- Changed - 0
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] Options : ( ) GPO_FLAG_DISABLE - This GPO is disabled.
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] ( ) GPO_FLAG_FORCE - Do not override the settings in this GPO with settings in a subsequent GPO.
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] Options (raw) : 0x00000000
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] Version : 19267878 (0x01260126)
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] GPC : LDAP://CN=Machine,CN={GUID-2},CN=Policies,CN=System,DC=SITE,DC=DOMAIN
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] GPT : \\SITE.DOMAIN\sysvol\SITE.DOMAIN\Policies\{GUID-2}\Machine
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] GPO Display Name : Default Domain Policy
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] GPO Name : {GUID-2}
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] GPO Link : ( ) GPLinkUnknown - No link information is available.
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] ( ) GPLinkMachine - The GPO is linked to a computer (local or remote).
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] ( ) GPLinkSite - The GPO is linked to a site.
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] ( X ) GPLinkDomain - The GPO is linked to a domain.
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] ( ) GPLinkOrganizationalUnit - The GPO is linked to an organizational unit.
  2014-10-21 11:16:54.081 [pid=0x3e8,tid=0xcd0] ( ) GP Link Error
  2014-10-21 11:16:54.096 [pid=0x3e8,tid=0xcd0] lParam : 0x00000000
  2014-10-21 11:16:54.096 [pid=0x3e8,tid=0xcd0] Prev GPO : No
  2014-10-21 11:16:54.096 [pid=0x3e8,tid=0xcd0] Next GPO : Yes
  2014-10-21 11:16:54.096 [pid=0x3e8,tid=0xcd0] Extensions : [{00000000-0000-0000-0000-000000000000}{GUID-3}][{GUID-1}{GUID-3}][{GUID-4}{GUID-5}{GUID-6}{GUID-7}{GUID-8}][{GUID-9}{GUID-10}][{GUID-11}{GUID-5}{GUID-6}]
  2014-10-21 11:16:54.096 [pid=0x3e8,tid=0xcd0] lParam2 : 0x3146f978
  2014-10-21 11:16:54.096 [pid=0x3e8,tid=0xcd0] Link : LDAP://DC=SITE,DC=DOMAIN
  2014-10-21 11:16:54.096 [pid=0x3e8,tid=0xcd0] Purge GPH : C:\ProgramData\Microsoft\Group Policy\History\{GUID-2}\Machine\Preferences\Groups\Groups.xml
  2014-10-21 11:16:54.096 [pid=0x3e8,tid=0xcd0] Read GPE XML data file (592 bytes total).
  2014-10-21 11:16:54.112 [pid=0x3e8,tid=0xcd0] ----- Changed - 1
  2014-10-21 11:16:54.112 [pid=0x3e8,tid=0xcd0] Options : ( ) GPO_FLAG_DISABLE - This GPO is disabled.
  2014-10-21 11:16:54.112 [pid=0x3e8,tid=0xcd0] ( ) GPO_FLAG_FORCE - Do not override the settings in this GPO with settings in a subsequent GPO.
  2014-10-21 11:16:54.112 [pid=0x3e8,tid=0xcd0] Options (raw) : 0x00000000
  2014-10-21 11:16:54.112 [pid=0x3e8,tid=0xcd0] Version : 1245203 (0x00130013)
  2014-10-21 11:16:54.112 [pid=0x3e8,tid=0xcd0] GPC : LDAP://CN=Machine,CN={GUID-12},CN=Policies,CN=System,DC=SITE,DC=DOMAIN
  2014-10-21 11:16:54.112 [pid=0x3e8,tid=0xcd0] GPT : \\SITE.DOMAIN\sysvol\SITE.DOMAIN\Policies\{GUID-12}\Machine
  2014-10-21 11:16:54.112 [pid=0x3e8,tid=0xcd0] GPO Display Name : Default Domain Controllers Policy
  2014-10-21 11:16:54.112 [pid=0x3e8,tid=0xcd0] GPO Name : {GUID-12}
  2014-10-21 11:16:54.112 [pid=0x3e8,tid=0xcd0] GPO Link : ( ) GPLinkUnknown - No link information is available.
  2014-10-21 11:16:54.112 [pid=0x3e8,tid=0xcd0] ( ) GPLinkMachine - The GPO is linked to a computer (local or remote).
  2014-10-21 11:16:54.112 [pid=0x3e8,tid=0xcd0] ( ) GPLinkSite - The GPO is linked to a site.
  2014-10-21 11:16:54.112 [pid=0x3e8,tid=0xcd0] ( ) GPLinkDomain - The GPO is linked to a domain.
  2014-10-21 11:16:54.112 [pid=0x3e8,tid=0xcd0] ( X ) GPLinkOrganizationalUnit - The GPO is linked to an organizational unit.
  2014-10-21 11:16:54.112 [pid=0x3e8,tid=0xcd0] ( ) GP Link Error
  2014-10-21 11:16:54.112 [pid=0x3e8,tid=0xcd0] lParam : 0x00000000
  2014-10-21 11:16:54.112 [pid=0x3e8,tid=0xcd0] Prev GPO : Yes
  2014-10-21 11:16:54.112 [pid=0x3e8,tid=0xcd0] Next GPO : No
  2014-10-21 11:16:54.112 [pid=0x3e8,tid=0xcd0] Extensions : [{00000000-0000-0000-0000-000000000000}{GUID-3}][{GUID-1}{GUID-3}][{GUID-9}{GUID-10}]
  2014-10-21 11:16:54.112 [pid=0x3e8,tid=0xcd0] lParam2 : 0x324e8198
  2014-10-21 11:16:54.112 [pid=0x3e8,tid=0xcd0] Link : LDAP://OU=Domain Controllers,DC=SITE,DC=DOMAIN
  2014-10-21 11:16:54.127 [pid=0x3e8,tid=0xcd0] Purge GPH : C:\ProgramData\Microsoft\Group Policy\History\{GUID-12}\Machine\Preferences\Groups\Groups.xml
  2014-10-21 11:16:54.127 [pid=0x3e8,tid=0xcd0] Read GPE XML data file (592 bytes total).
  2014-10-21 11:16:54.143 [pid=0x3e8,tid=0xcd0] Completed get next GPO. [SUCCEEDED(S_FALSE)]
  2014-10-21 11:16:54.143 [pid=0x3e8,tid=0xcd0] WQL : SELECT * FROM RSOP_PolmkrSetting WHERE polmkrBaseCseGuid = "{GUID-1}"
  2014-10-21 11:16:54.143 [pid=0x3e8,tid=0xcd0] Purged 2 old RSoP entries.
  2014-10-21 11:16:54.143 [pid=0x3e8,tid=0xcd0] Logging 2 new RSoP entries.
  2014-10-21 11:16:54.159 [pid=0x3e8,tid=0xcd0] RSoP Entry 0
  2014-10-21 11:16:54.174 [pid=0x3e8,tid=0xcd0] RSoP Entry 1
  2014-10-21 11:16:54.174 [pid=0x3e8,tid=0xcd0] Completed get GPO list. [SUCCEEDED(S_FALSE)]
  2014-10-21 11:16:54.174 [pid=0x3e8,tid=0xcd0] IsRsopPlanningMode() [SUCCEEDED(S_FALSE)]
  2014-10-21 11:17:04.252 [pid=0x3e8,tid=0xcd0] Completed settings update (csePostProcess). [ hr = 0x800700b7 "Cannot create a file when that file already exists." ]
  2014-10-21 11:17:04.252 [pid=0x3e8,tid=0xcd0] Completed CSE post-processing. [ hr = 0x800700b7 "Cannot create a file when that file already exists." ]
  2014-10-21 11:17:04.267 [pid=0x3e8,tid=0xcd0] Leaving ProcessGroupPolicyExLocUsAndGroups() returned 0x000000b7

• Need to understand Site Assignment and Content Location Boundary Groups

  Okay I am very confused about something that I am seeing that is throwing my understanding of how Boundary Groups work completely off. 
  Here is my dilemma:
  I created two boundary groups, a site assignment and a content location boundary group. The site assignment boundary group contains all of my sites. The content location boundary group I have just has my datacenter systems where the DP installed on my site
  server is being referenced in that boundary group. 
  Now, I had two pilot deployments. The very first pilot deployment I had I created a content location boundary group for that site and referenced the local DP and when I deployed software updates to the clients there, I kept getting timeout errors. The second
  pilot deployment i had, I totally forgot to create a content location boundary group, but the software updates installed perfectly fine on those clients. 
  What the heck is going on here?
  I thought if a content locatoin boundary group was NOT created for a remote site, then those clients would not be able to receive any content at all, period. 
  Can someone please, please explain to me what is going on here?
  Thanks everyone

  A couple of additional comments here that build on the previous by Peter and Nick.
  Site assignment has nothing to do clients finding content so while it's good that you have a site assignment boundary group and even that you mentioned it, it has nothing to do with what's going on here. Also as a semantic side note, when referring
  to remote locations, you shouldn't use the word "site" when discussing ConfigMgr because "site" means something very specific and could cause confusion. I typically try to use the word "location".
  Clients that do not fall into a boundary within a content location boundary group automatically fall into a "default" boundary marked as slow in a default "boundary group". Neither of these is defined anywhere in the console or the product
  so default isn't exactly the right word here, but it does convey the meaning. Thus, not being in a defined boundary does not mean that clients cannot get content, just that they will only get content allowed for slow boundaries or where fallback is enabled.
  Jason | http://blog.configmgrftw.com | @jasonsandys

• [SOLVED] multiple host names and domains configuration

  Hi everybody,
  probably this is a less than newbie questions but I can't figure out what is the right way to set my hosts files within this framework:
  1) Two registred domains pointing to my ip address: www.bonfus.it, argo.mooo.com
  2) nslookup of wan ip address:
  nslookup 79.41.201.100
  Server: 192.168.2.1
  Address: 192.168.2.1#53
  Non-authoritative answer:
  100.201.41.79.in-addr.arpa name = host100-201-dynamic.41-79-r.retail.telecomitalia.it.
  3) DDWrt (192.168.2.1) natting traffic to local network and web server
  4) Server PC with services (192.168.2.100)
  My problem is: how should I set domain name within DDWRT router configuration and on the server PC? Is this configuration correct for the pc?
  /etc/hosts/
  #<ip-address> <hostname.domain.org> <hostname>
  127.0.0.1 localhost.localdomain localhost argo
  192.168.2.100 argo.mooo.com argo
  192.168.2.100 www.bonfus.it www
  /etc/rc.conf
  HOSTNAME="argo"
  Thanks,
  Pietro
  Last edited by pie86 (2010-11-28 19:29:40)

  Any domains that are local should point to the local IP in /etc/hosts. You should just need one line.
  Something like this:
  127.0.0.1 localhost.localdomain localhost argo argo.mooo.com www.bonfus.it
  You don't have to put them all in there. For example, you'd only want to add 'www' if you want the www host to resolv to 127.0.0.1. I doubt you'd ever see the host www used by itself. Usually having just the short and long server hostname is enough (argo and argo.mooo.com).
  I think you should have the long hostname in your /etc/rc.conf:
  HOSTNAME="argo.mooo.com"

• OS X Server clients can't login after IP renumber and domain Name change

  I can not seem to get the logins working again on my OS X server (10.9.4 w/ server 3.1.2 on a 1 yr old. MacMini) after I needed to renumber the IP and change the domain name. I destroyed the Open Directory server, recreated it and created one test account. If I log in to the client with a local account I can connect to the server (Go>Connect To Server)  from the client using my newly created account, but when I try to login to the server  using the same network account login I get the "shaking head" response immediately. I have rebound the server to this client and it says that network accounts are available, but seem to be at a loss to understand why it won't let me login...
  The only error message I see in any of the logs is the following:
  (AFP Error Log:) Sep 15 20:21:47 isis.mydomain.com AppleFileServer[3032] <Info>: major error <1>: No credentials were supplied, or the credentials were unavailable or inaccessible.
  I'm not sure what credentials it is referring to. I created a self signed certificate that I am using with OD, could that be the one?

  Many Open Directory problems can be resolved by taking the following steps. Test after each one, and back up all data before making any changes.
  1. The OD master must have a static IP address on the local network, not a dynamic address.
  2. You must have a working DNS service, and the server's hostname must match its fully-qualified domain name. To confirm, select the server by name in the sidebar of the Server application window, then select the Overview tab. Click the Edit button on the Host Name line. On the Accessing your Server sheet, Domain Name should be selected. Change the Host Name, if necessary. The server must have at least a three-level name (e.g. "server.yourdomain.com"), and the name must not be in the ".local" top-level domain, which is reserved for Bonjour.
  3. The primary DNS server used by the server must be 127.0.0.1 (that is, itself) unless you're using another server for internal DNS. The only DNS server set on the clients should be the internal one, which they should get from DHCP if applicable.
  4. Follow these instructions to rebuild the Kerberos configuration on the master.
  5. If you use authenticated binding, check the validity of the master's certificate. The common name must match the hostname and domain name. Deselecting and then reselecting the certificate in Server.app has been reported to have an effect in some cases. Otherwise delete all certificates and create new ones.
  6. Unbind and then rebind the clients in the Users & Groups preference pane. Use the fully-qualified domain name of the master.
  7. Reboot the master and the clients.
  8. Don't log in to the server with a network user's account.
  9. Disable any internal firewalls in use, including third-party "security" software.
  10. If you've created any replica servers, delete them.
  11. As a last resort, export all OD users. In the Open Directory pane of Server, delete the OD server. Then recreate it and import the users. Ensure that the UID's are in the 1001+ range.

• Difficulty changing computer name and domain name

  I have a working Xserve with the latest Snow Leopard Server and am having difficulty reconfiguring it from its keyboard.
  I would like to edit the computer name and domain name and maintain all other server settings. I would prefer to do this off-line. However Server Admin appears not to work off-line and any attempt to change computer name or domain name removes all server settings from view including the serial number. I can recover everything by reinstating computer name etc and restarting on-line.
  Is the serial number tied to the computer name and/or domain name?
  Is there any way to retain my existing server settings for a different domain?
  Is there any way to progress any of this off-line?

  This has now been resolved. This note is to assist others who have the same problem.
  1 - I had been changing the computer name in the place I had always done it - System Preferences/Sharing. This confused Server Admin. Reverting to the original name and changing computer name and location within Server Admin resolved the issue. That is System Preferences/Sharing is updated by Server Admin but not vice versa.
  2 - Playing with these things can corrupt Server Admin plist resulting in a restarted Server Admin not seeing the edited server even with the server otherwise fully functioning. Trashing Server Admin plist resolved this for me without loss of server settings.
  3 - Having set it up off-line I experienced difficulty as soon as I went on-line. This was resolved by changing the server from 'local' to its full domain name. I have no explanation for this as the same settings had previously worked with 'local'.
  4 - Server Admin can take a long time to find settings and occasionally failed to do so until after a restart.
  The result can be seen here: http://links.open.ac.uk/ - Since Apache refuse to provide hit counter support (there are several public posts of mine on the subject) I use JavaScript to retrieve the count from an old QPQ server running on a G3 with OS 9.