Verify DNS is running...
I have two OES 11 servers that provide DNS and DHCP services in
addition to other things. I was just looking into some DNS issues and
realized that DNS on one of them was down. Anybody know of a script
or something that I could use to monitor DNS (and possibly DHCP)? It
would be great if I could get an email and/or restart the service.
Ken
Very often you can just "steal" the nagios scripts and use them to test for livlieness of the service and then let that trigger a restart of the server. Your script calls the stock nagios script with the proper parameters to test a given host / service. If the nagios script returns an error level indicating its down, your script will call the appropriate rc scripts to stop and restart or just outright kill the offending service. There is no need to install all of nagios, as most of these scripts are stand alone ( the one for imap, activesync, DNS, etc... are ).
After you create your resurrection script, test it a bit to ensure it does NOT restart things when they are up, and plop that in your cron, and it will happily check for it working and restart the services. As for checking DHCP, thats a bit more of a mess. You need to have another network adapter dedicated to the testing, you can easily script a release and renew, when the dhcp server is dead, you will not be able to renew the address, then cue the villagers with pitchforks, or a script to stop and start DHCP services.
The biggest issue is that if, for some reason, the service is chronically dying, you may end up restarting it a lot. Also if the server is just slooooow, you may end up killing and restarting an an overlapping fashion. So set your cron to be reasonable. For example, you can live without a DHCP server for 10 minutes or a redundant DNS server for however long it took you to discover it was down, so perhaps once or twice a day.
-- Bob
Similar Messages
-
Verifying DNS Record Readiness fails before domain rename
I'm in the process of a domain rename. I am verifying DNS readiness (see: http://technet.microsoft.com/en-us/library/cc816721(v=ws.10).aspx)When I run the command: Dcdiag /test:DNS /DnsRecordRegistration /s:<my domaincontroller>I get the following errors:Directory Server Diagnosis
Performing initial setup:
* Identified AD Forest.
Done gathering initial info.
Doing initial required tests
Testing server: AZ01\DC1PHX
Starting test: Connectivity
......................... DC1PHX passed test Connectivity
Doing primary tests
Testing server: AZ01\DC1PHX
Starting test: DNS
DNS Tests are running and not hung. Please wait a few minutes...
......................... DC1PHX passed test DNS
Running partition tests on : ForestDnsZones
Running partition tests on : DomainDnsZones
Running partition tests on : Schema
Running partition tests on : Configuration
Running partition tests on : corp
Running enterprise tests on : corp.l**t.net
Starting test: DNS
Test results for domain controllers:
DC: dc1phx.corp.l**t.net
Domain: corp.l**t.net
TEST: Records registration (RReg)
Network Adapter [00000016] Hyper-V Virtual Ethernet Adapter:
Warning:
Missing CNAME record at DNS server 172.17.0.3:
<GUID>._msdcs.corp.l**t
net
Warning:
Missing A record at DNS server 172.17.0.3:
dc1phx.corp.l**t.net
Error:
Missing SRV record at DNS server 172.17.0.3:
_ldap._tcp.corp.l**t.net
Error:
Missing SRV record at DNS server 172.17.0.3:
_ldap._tcp.<guid>.domains._mdcs.corp.l**t.net
Error:
Missing SRV record at DNS server 172.17.0.3:
_kerberos._tcp.dc._msdcs.corp.l**t.net
Error:
Missing SRV record at DNS server 172.17.0.3:
_ldap._tcp.dc._msdcs.corp.l**t.net
Error:
Missing SRV record at DNS server 172.17.0.3:
_kerberos._tcp.corp.l**t.net
Error:
Missing SRV record at DNS server 172.17.0.3:
_kerberos._udp.corp.l**t.net
Error:
Missing SRV record at DNS server 172.17.0.3:
_kpasswd._tcp.corp.l**t.net
Error:
Missing SRV record at DNS server 172.17.0.3:
_ldap._tcp.AZ01._sites.corp.l**t.net
Error:
Missing SRV record at DNS server 172.17.0.3:
_kerberos._tcp.AZ01._sites.dc._msdcs.corp.l**t.net
Error:
Missing SRV record at DNS server 172.17.0.3:
_ldap._tcp.AZ01._sites.dc._msdcs.corp.l**t.net
Error:
Missing SRV record at DNS server 172.17.0.3:
_kerberos._tcp.AZ01._sites.corp.l**t.net
Error:
Missing SRV record at DNS server 172.17.0.3:
_ldap._tcp.gc._msdcs.corp.l**t.net
Warning:
Missing A record at DNS server 172.17.0.3:
gc._msdcs.corp.l**t.net
Error:
Missing SRV record at DNS server 172.17.0.3:
_gc._tcp.AZ01._sites.corp.l**t.net
Error:
Missing SRV record at DNS server 172.17.0.3:
_ldap._tcp.AZ01._sites.gc._msdcs.corp.l**t.net
Error: Record registrations cannot be found for all the network
adapters
Summary of DNS test results:
Auth Basc Forw Del Dyn RReg Ext
Domain: corp.l**t.net
dc1phx PASS PASS n/a n/a n/a FAIL n/a
......................... corp.l**t.net failed test DNS
Help please :)Thanks :)
I just ran dnslint between the two root DCs. It's strange, they don't list any missing glue records.
DNSLint Report
System Date: Sun Jun 29 09:11:29 2014
Command run:
dnslint /ad 172.17.0.3 /s 172.16.0.4
Root of Active Directory Forest:
corp.l**t.net
Active Directory Forest Replication GUIDs Found:
DC: DC1NY
GUID: <My GUID>
DC: DC1NYLV
GUID: <My GUID>
DC: DC1NYLVPS
GUID: <My GUID>
DC: DC1PHX
GUID: <My GUID>
DC: DC1PHXLV
GUID: <My GUID>
DC: DC1PHXLVPS
GUID: <My GUID>
Total GUIDs found: 6
The following 6 DNS servers were checked for records related to AD forest replication:
DNS server: dc1ny.corp.l**t.net
IP Address: 172.16.0.4
UDP port 53 responding to queries: YES
TCP port 53 responding to queries: Not tested
Answering authoritatively for domain: YES
SOA record data from server:
Authoritative name server: dc1ny.corp.l**t.net
Hostmaster: hostmaster.corp.l**t.net
Zone serial number: 134
Zone expires in: 1.00 day(s)
Refresh period: 900 seconds
Retry delay: 600 seconds
Default (minimum) TTL: 3600 seconds
Additional authoritative (NS) records from server:
dc1phxlv.l**t.com Unknown
dc1nylvps.l**tp**g.com Unknown
dc1ny.corp.l**t.net Unknown
dc1nylv.l**t.com Unknown
dc1phxlvps.l**tp**g.com Unknown
dc1phx.corp.l**t.net Unknown
Alias (CNAME) and glue (A) records for forest GUIDs from server:
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1ny.corp.l**t.net
Glue: 172.16.0.4
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1nylv.l**t.com
Glue: 172.16.0.20
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1nylvps.l**tp**g.com
Glue: 172.16.0.21
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1phx.corp.l**t.net
Glue: 172.17.0.3
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1phxlv.l**t.com
Glue: 172.17.0.12
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1phxlvps.l**tp**g.com
Glue: 172.17.0.13
Total number of CNAME records found on this server: 6
Total number of CNAME records missing on this server: 0
Total number of glue (A) records this server could not find: 0
DNS server: dc1phxlv.l**t.com
IP Address: 172.17.0.12
UDP port 53 responding to queries: YES
TCP port 53 responding to queries: Not tested
Answering authoritatively for domain: YES
SOA record data from server:
Authoritative name server: dc1phxlv.l**t.com
Hostmaster: hostmaster.corp.l**t.net
Zone serial number: 134
Zone expires in: 1.00 day(s)
Refresh period: 900 seconds
Retry delay: 600 seconds
Default (minimum) TTL: 3600 seconds
Additional authoritative (NS) records from server:
dc1ny.corp.l**t.net Unknown
dc1nylv.l**t.com Unknown
dc1phxlvps.l**tp**g.com Unknown
dc1phx.corp.l**t.net Unknown
dc1phxlv.l**t.com Unknown
dc1nylvps.l**tp**g.com Unknown
Alias (CNAME) and glue (A) records for forest GUIDs from server:
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1ny.corp.l**t.net
Glue: 172.16.0.4
CNAME: <My GUID>.corp.l**t.net
Alias: dc1nylv.l**t.com
Glue: 172.16.0.20
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1nylvps.l**tp**g.com
Glue: 172.16.0.21
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1phx.corp.l**t.net
Glue: 172.17.0.3
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1phxlv.l**t.com
Glue: 172.17.0.12
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1phxlvps.l**tp**g.com
Glue: 172.17.0.13
Total number of CNAME records found on this server: 6
Total number of CNAME records missing on this server: 0
Total number of glue (A) records this server could not find: 0
DNS server: dc1nylvps.l**tp**g.com
IP Address: 172.16.0.21
UDP port 53 responding to queries: YES
TCP port 53 responding to queries: Not tested
Answering authoritatively for domain: YES
SOA record data from server:
Authoritative name server: dc1nylvps.l**tp**g.com
Hostmaster: hostmaster.corp.l**t.net
Zone serial number: 134
Zone expires in: 1.00 day(s)
Refresh period: 900 seconds
Retry delay: 600 seconds
Default (minimum) TTL: 3600 seconds
Additional authoritative (NS) records from server:
dc1ny.corp.l**t.net Unknown
dc1nylv.l**t.com Unknown
dc1phxlvps.l**tp**g.com Unknown
dc1phx.corp.l**t.net Unknown
dc1phxlv.l**t.com Unknown
dc1nylvps.l**tp**g.com Unknown
Alias (CNAME) and glue (A) records for forest GUIDs from server:
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1ny.corp.l**t.net
Glue: 172.16.0.4
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1nylv.l**t.com
Glue: 172.16.0.20
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1nylvps.l**tp**g.com
Glue: 172.16.0.21
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1phx.corp.l**t.net
Glue: 172.17.0.3
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1phxlv.l**t.com
Glue: 172.17.0.12
CNAME: f<My GUID>._msdcs.corp.l**t.net
Alias: dc1phxlvps.l**tp**g.com
Glue: 172.17.0.13
Total number of CNAME records found on this server: 6
Total number of CNAME records missing on this server: 0
Total number of glue (A) records this server could not find: 0
DNS server: dc1nylv.l**t.com
IP Address: 172.16.0.20
UDP port 53 responding to queries: YES
TCP port 53 responding to queries: Not tested
Answering authoritatively for domain: YES
SOA record data from server:
Authoritative name server: dc1nylv.l**t.com
Hostmaster: hostmaster.corp.l**t.net
Zone serial number: 134
Zone expires in: 1.00 day(s)
Refresh period: 900 seconds
Retry delay: 600 seconds
Default (minimum) TTL: 3600 seconds
Additional authoritative (NS) records from server:
dc1nylvps.l**tp**g.com Unknown
dc1ny.corp.l**t.net Unknown
dc1nylv.l**t.com Unknown
dc1phxlvps.l**tp**g.com Unknown
dc1phx.corp.l**t.net Unknown
dc1phxlv.l**t.com Unknown
Alias (CNAME) and glue (A) records for forest GUIDs from server:
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1ny.corp.l**t.net
Glue: 172.16.0.4
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1nylv.l**t.com
Glue: 172.16.0.20
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1nylvps.l**tp**g.com
Glue: 172.16.0.21
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1phx.corp.l**t.net
Glue: 172.17.0.3
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1phxlv.l**t.com
Glue: 172.17.0.12
CNAME: f<My GUID>._msdcs.corp.l**t.net
Alias: dc1phxlvps.l**tp**g.com
Glue: 172.17.0.13
Total number of CNAME records found on this server: 6
Total number of CNAME records missing on this server: 0
Total number of glue (A) records this server could not find: 0
DNS server: dc1phxlvps.l**tp**g.com
IP Address: 172.17.0.13
UDP port 53 responding to queries: YES
TCP port 53 responding to queries: Not tested
Answering authoritatively for domain: YES
SOA record data from server:
Authoritative name server: dc1phxlvps.l**tp**g.com
Hostmaster: hostmaster.corp.l**t.net
Zone serial number: 134
Zone expires in: 1.00 day(s)
Refresh period: 900 seconds
Retry delay: 600 seconds
Default (minimum) TTL: 3600 seconds
Additional authoritative (NS) records from server:
dc1phxlvps.l**tp**g.com Unknown
dc1phx.corp.l**t.net Unknown
dc1phxlv.l**t.com Unknown
dc1nylvps.l**tp**g.com Unknown
dc1ny.corp.l**t.net Unknown
dc1nylv.l**t.com Unknown
Alias (CNAME) and glue (A) records for forest GUIDs from server:
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1ny.corp.l**t.net
Glue: 172.16.0.4
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1nylv.l**t.com
Glue: 172.16.0.20
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1nylvps.l**tp**g.com
Glue: 172.16.0.21
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1phx.corp.l**t.net
Glue: 172.17.0.3
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1phxlv.l**t.com
Glue: 172.17.0.12
CNAME: f<My GUID>._msdcs.corp.l**t.net
Alias: dc1phxlvps.l**tp**g.com
Glue: 172.17.0.13
Total number of CNAME records found on this server: 6
Total number of CNAME records missing on this server: 0
Total number of glue (A) records this server could not find: 0
DNS server: dc1phx.corp.l**t.net
IP Address: 172.17.0.3
UDP port 53 responding to queries: YES
TCP port 53 responding to queries: Not tested
Answering authoritatively for domain: YES
SOA record data from server:
Authoritative name server: dc1phx.corp.l**t.net
Hostmaster: hostmaster.corp.l**t.net
Zone serial number: 134
Zone expires in: 1.00 day(s)
Refresh period: 900 seconds
Retry delay: 600 seconds
Default (minimum) TTL: 3600 seconds
Additional authoritative (NS) records from server:
dc1ny.corp.l**t.net Unknown
dc1nylv.l**t.com Unknown
dc1phxlvps.l**tp**g.com Unknown
dc1phx.corp.l**t.net Unknown
dc1phxlv.l**t.com Unknown
dc1nylvps.l**tp**g.com Unknown
Alias (CNAME) and glue (A) records for forest GUIDs from server:
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1ny.corp.l**t.net
Glue: 172.16.0.4
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1nylv.l**t.com
Glue: 172.16.0.20
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1nylvps.l**tp**g.com
Glue: 172.16.0.21
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1phx.corp.l**t.net
Glue: 172.17.0.3
CNAME: <My GUID>._msdcs.corp.l**t.net
Alias: dc1phxlv.l**t.com
Glue: 172.17.0.12
CNAME: f<My GUID>._msdcs.corp.l**t.net
Alias: dc1phxlvps.l**tp**g.com
Glue: 172.17.0.13
Total number of CNAME records found on this server: 6
Total number of CNAME records missing on this server: 0
Total number of glue (A) records this server could not find: 0
Legend: warning, error
DNSLint developed by Tim Rains -
Is there a test to verify the current running version of firefox is valid
Is there a web site or application that can verify the running version of Firefox?
See the Help > Troubleshooting Information page.
*https://support.mozilla.org/kb/Using+the+Troubleshooting+Information+page
*Firefox > About Mozilla Firefox
You are currently running Firefox 13.0.1 and that is not the latest Firefox 15.0 release according to the user agent in the system details list.
*Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:13.0) Gecko/20100101 Firefox/13.0.1
If there are problems with updating then easiest is to download the full version and trash the currently installed version to do a clean install of the new version.
Download a new copy of the Firefox program and save the disk image (dmg) file to the desktop
*Firefox 15.0.x: http://www.mozilla.org/en-US/firefox/all.html
*Trash the current Firefox application (e.g. open the Applications folder in the Finder and drag the Firefox application to the Trash) to do a clean (re-)install
*Install the new version that you have downloaded
*https://support.mozilla.org/kb/Installing+Firefox+on+Mac
Your profile data is stored elsewhere in the Firefox Profile Folder, so you won't lose your bookmarks and other personal data if you uninstall and (re)install Firefox.
*http://kb.mozillazine.org/Profile_folder_-_Firefox -
I'm wondering if I have to use the DNS service on OS X Server. I understand what DNS is but I'm admittedly in over my head with DNS and how to operate it properly on the server. We always have connection issues with various services within our office network that we don't experience anywhere else (ie: when we take the same laptop out of the office and use it on another network). I'm convinced it's the DNS setup on our server, which I'm sure has gotten messed up from all the poking around. But do we even need to be running this service?
The services we use on the server are VPN, iCal, File Sharing, and Blogs/Wikis. We have an airport extreme that serves DHCP router and our ISP supplied modem serves as our internet gateway and generic firewall (default settings).
Some examples of random access/connection problems we have within our office that we don't have elsewhere:
-email/web host access problems (new sub domains often do not appear unless we kill/reboot the DNS service)
-screensharing via iChat never works within our office network (not sure if that's DNS related or not, just another one of those things that never works within the office, but works fine when we take laptops outside of the office).
Any of this DNS related? Even if it's not, do I have to have DNS service running on our server?
Thanks!!Bogus or buggy DNS can certainly cause issues, and so can a bad Ethernet cable or WiFi interference. Could be a misconfigured network. Could be somebody's corrupted the DNS configuration. Which of these might be the trigger in this case is difficult to say.
And no, you don't need to be running local DNS. But you do need access to DNS servers somewhere upstream of your clients, and your local boxes certainly can operate with either Bonjour (mDNS) or static IP assignments. Or with your own local DNS.
What the next step depends on your intent and your budget. If you want to learn and manage DNS, then Cricket Liu's DNS and BIND book is a good resource for learning. (And the CutEdge Systems DNS Enabler package -- though with a few weirdnesses aside -- has a more capable interface.) If you have somewhat more budget and less desire to learn DNS, then getting somebody in to verify and reconfigure (and secure) DNS is a valid approach. -
How can I verify what version of IE11 (32 or 64) is running on a 64 bit version of Windows 7
Hello,
I recently upgraded from IE8 to IE 11. In the past when I would run ie8 from the Programs(86) folder it would indicate it was the the 32 bit version in the task manager by having an entry for iexplorer.exe *32
For IE11, the *32 does not show in the task manager.
How can I verify IE11 is running in *32 mode? I am trying to troubleshoot some active X controls that have known problems with IE11 *64 but I can't seem to verify which version I am running. Note I launch IE11 from the Program Files (86) directory
but I still would like some verification on what version is actually running. I am concerned because I am not seeing the *32 in task manager.In IE10+, on a 64bit PC the frame (outer window) is always 64bit. The tabs are generally 32bit unless you've enabled Enhanced Protected Mode or are running inside Win8+ Metro environment.
More details here:
http://blogs.msdn.com/b/ieinternals/archive/2009/05/29/q-a-64-bit-internet-explorer.aspx -
DNS Issue - Unable to resolve Hostname until IPConfig /flushdns and ipconfig /registerdns is done.
We are having a random issue, that at first was limited to our Windows 7 x64 boxes, but now is appearing in our x32 bit boxes.
Network Setup -> we are running Active Directory 2008 in Native. Our DHCP scope is setup to hand out the DNS addresses to all clients, and is working.
What happens to an impacted client.
They will be working, and able to browse/connect to services with in/out our network. Then for some reason they will go to a page like -> intranet.ourcompanyname.net. IE will advise it cannot open the page.
1)If we ping either just intranet or the FQDN - it will advise host cannot be found.
2)However if we do an nslookup on the same client - nslookup will return the IP of the Corresponding FQDN.
3)We have to perform a ipconfig /flushdns and a ipconfig /registerdns on the the client.
4)Once that is done, the client machine can again connect to the FQDN
The only FQDN's that are impacted by this are ALL Internal. Example - they never lose the ability to resolve something like
www.google.ca, etc. It also usually impacts just one internal FQDN - so they may lose the ability to resolve the Intranet, but another internal website on the same server and/or another application (like email) will
continue to work fine.
I really am at a loss as to why. DNS is working properly at the Server Level.Hi,
It may be caused by DNS cache pollution. To verify this, please run "ipconfig /displaydns > C:\dnscache.txt" command, then check if there is a wrong cache of "intranet.ourcompanyname.net" in the dnscache.txt
file.
To find out where does the wrong cache come from, please run "ipconfig /all" command, then check if there is a unexpected DNS server configured.
If the DNS configuration is correct in the client side, please try to perform a network capture on the client. It can tell us where does the wrong cache come from.
Best Regards.
Steven Lee
TechNet Community Support -
Permissions to create Reverse Lookup Zones in DNS
What Active Directory permissions are needed to create Reverse Lookup Zones in DNS? My co-worker is getting an access denied error when completing the wizard for this and the zone is NOT created. He is a member of the "DnsAdmins" group and
he can create Forward Lookup Zones. We are running Server 2008 R2 SP1 on our Domain Controllers where DNS is running. Any ideas?Set permissions for the DnsAdmins group on the DomainDNSZones application partition. To do this, follow these steps:
Click Start, click Run, type Adsiedit.msc, and then click
OK.
In the task pane, right-click ADSI Edit, and then click
Connect to.
Under Connection Point, click Select or type a Distinguished Name or Naming Context, type the following, and then click
OK:
CN=MicrosoftDNS,DC= DomainDNSZones,DC=<var>Domain</var>,DC=<var>Domain_Extension</var>
In the task pane, locate and right-click CN=MicrosoftDNS,DC= DomainDNSZones,DC=<var>Domain</var>,DC=<var>Domain_Extension</var>, and then click
Properties.
Click the Security tab, and then click Advanced. The
Advanced Security Settings for MicrosoftDNS dialog box appears.
In the Permissions tab, click Add.
In the Enter the object name to select box, type DnsAdmins, and then click
Check Names to verify the name.
Click OK. The Permission Entry for Microsoft DNS dialog box appears.
In the Apply onto drop-down list, click This object only.
Click to select the Allow check box for the Full Control
permission, and then click OK.
In the Advanced Security Settings for MicrosoftDNS dialog box, click
Apply, and then click OK.
Click OK to close the properties dialog box for the DomainDNSZones application partition.
Close the ADSI Edit window.
Test whether you can create a new DNS zone now.
If you found this post helpful, please "Vote as Helpful". If it answered your question, remember to "Mark as Answer". MCSE,MSCITP-EA -
Hi!
I'm currency helping a customer deploying Office 365 with DirSync and federation. The customer are using a third party "AD FS" application.
The company responsible for installing the third party "AD FS" application get an error, "xxxxxx.yyy is not a valid domain, when they run the command "Convet-MsolDomainToFederated".
The domain xxxxxx.yyy has the status of "Verified" when i run the command "Get-MsolDomain".
The company doing the installation of the third party "AD FS" application now says this is a DNS related error but i can not find any information that federation in Office 365 is dependent on any DNS record except the FQDN off the AD FS server.
So my questin is: do the federation in Office 365 depend on any DNS reqords (except the FQDN of the AD FS server)?Hi Carlos,
I assume that you are talking about Exchange Public folders.
I didn’t find any DNS and certificate requirements about Public folders, although, here are some DNS and certificate requirements for ADFS:
DNS requirement for ADFS: the Federation Service Name must be registered as a host record in DNS.
AD FS 2.0: Guidance for Selecting and Utilizing a Federation Service Name
http://social.technet.microsoft.com/wiki/contents/articles/4177.ad-fs-2-0-guidance-for-selecting-and-utilizing-a-federation-service-name.aspx
Certificate Requirements for Federation Servers
http://technet.microsoft.com/en-us/library/dd807040.aspx
3) I've some doubt how user Access to Workfolders.....
[email protected] ??
[email protected] ??
4) What happen is user hasn't mail address?
You may need to refer to Exchange forum to get professional support on questions above:
Exchange Server 2013 – Sharing and Collaboration: Site Mailboxes and Public Folders
http://social.technet.microsoft.com/Forums/en-US/home?forum=exchangesvrsharingcollab&filter=alltypes&sort=lastpostdesc
In addition, here is a dedicated forum for ADFS:
Claims based access platform (CBA), code-named Geneva Forum
http://social.msdn.microsoft.com/Forums/vstudio/en-US/home?forum=Geneva
Best Regards
Amy -
DNS Server Having Intermittent Issues with Open Directory
I work for a school and we're undertaking the large task of moving from Xserves running 10.6.8 to Mac Minis running 10.9. I have a lot of experience with OS X Server (I held ACSA up until they ditched it, and ACTC through the current OS) but I've hit a fairly large snag in configuring our DNS server. We currently run DNS via an AD server that is being retired at the end of the summer, so this is the first time our DNS will be Mac-based. That said, our network is ridiculously simple as we are a very small school. For the most part it's a flat network using the same IP range for our wired and wireless internal clients (we do have a vlan for guests but that's through Aerohive). I configured the DNS by hand, recreating the entries in our AD server (there were only about a dozen) and then adding in things that should have been there in the first place (e.g. printers and some other devices with static IPs that I'd like FQDNs for). Everything seemed to be working fine...until trying to log into Open Directory accounts.
For some background, the DNS server running 10.9 was the first server we upgraded and it was a completely clean install. We run DHCP on another Mac Server currently running 10.6.8 and it does have the proper OD server listed. All DNS entries for the OD server match our current DNS server. The issue is that it's taking some users 5-6 tries to log in with their network accounts. The errors they receive range from the login window shaking to it stating the user cannot log in at this time. This seems to be worse on client machines running 10.9. but it's appearing on machines running 10.6.8-10.9.3.
In my troubleshooting, I found that if I log in as a local user to one of those machines and do a dig for the OD server the results vary, this is where it gets weird. For example, if I dig ourodserver.ourdomain.org it will sometimes return host not found or it will sometimes resolve. If I ping the same thing it will sometimes work (even after stating it cannot resolve the host) and it will sometimes fail. If I then try a dig for the .local (e.g. ourodserver.local) it also yields the same varied results. However, on every machine that I've tested if I then open a Finder window and navigate to the server via the "Shared" menu and connect I have no trouble connecting and then magically my digs and pings in terminal work. If I revert DNS back to point to our old Windows server the issue goes away. I have meticulously combed through that server many many times now and am not seeing any missed entries. Any idea what could be causing this?You must have a working DNS service, and the server's hostname must match its fully-qualified domain name. To confirm, select the server by name in the sidebar of the Server application window, then select the Overview tab. Click the Edit button on the Host Name line. On the Accessing your Server sheet, Domain Name should be selected. Change the Host Name, if necessary. The server must have at least a three-level name (e.g. "server.yourdomain.com"), and the name must not be in the ".local" top-level domain, which is reserved for Bonjour.
The primary DNS server used by the server must be 127.0.0.1 (that is, itself) unless you're using another server for internal DNS. The only DNS server set on the clients should be the internal one, which they should get from DHCP if applicable. -
Issues with iTunes 9.2 not running after download.
I have been trying to get iTunes 9.2 going since the 24th when I purchased my iPhone 4. I have had NO LUCK getting iTunes to properly run after downloading the flie.
I have Vista 64 bit.
When I download the file and attempt to run it, I get the error "Publisher could not be verified" I select run anyway and nothing happens.
I have tried every suggestion made on this form
I have-
Tried to run as administrator
Deleted temp folder in Users/Name
Ran windows installer cleanup utility
downloaded the file from firefox and IE
It's very annoying because the 32 bit will run and install, but the 64 bit will not. Any suggestions?None of your software will install on any computer I own. I tried to download Safari and download iTunes through that browser to see if the results would be different, but after downloading it that file does NOTHING after being ran. It's so pathetic I can't even sync my iPhone 4 to my computer after having it since Thursday. Three different computers three different downloads with 2 different browsers.
I'm getting ready to just box up this phone and return it, if I cant even sync it to iTunes, it's useless to me.
If I download through Firefox, nothing happens when I run the executable.
If I download it through Internet Explorer, I get the message that it is an invalid publisher, or publisher could not be identified.
I have erased my temp folder, deleted browser history on both browsers, still nothing.
I am running it in Administrator mode, I have done every suggestion that you have on your site and nothing works. -
I built a fairly simple application using 8.2 Developer's Suite and targeted Windows 2000. When I attempted to install the application on a Windows 2000 machine, I received an error stating that the machine did not meet the minimum requirements. It has enough hard drive space and is running Windows 2000, so the only items not conforming would be processor speed or RAM. Does the target machine have the same requirements as the development machine (8.2)? Is there a method of determining what the system requirements are for a particular build of an application?
Thanks for any assistance.
Marty GThe development was done on a Windows 2000 machine and the app runs fine on it. The target machine was verified to be running at only 200 MHz with 64 MB RAM. While this meets the Windows 2000 minimums, it appears the 8.2 Run Time or App requirements are higher. I knew the app would be slow - we are trying to reuse assets. My real concern is determining the actual minimums for the application prior to installation. I have been poking around in 8.2, but have not as yet found a way to determine this. We will likely have to acquire a different machine, and I need to ensure that it will run the application.
Thanks -
Working on my friends iMac 20" computer. It is 2.66 ghz, and was running 4mb of ram when the computer started acting up on OSX 10.5.
When I was called over the computer was so slow that I could not even scroll without getting the beach ball of death. I checked the activities moniter, and found an HP application was taking up 46% of the CPU. We attempted to go in and uninstall all of the HP applications, but the computer ended up freezing. Ended up doing a hard shut down, and decided to run disk utilities. Repaired both Permissions, and Disk. Restarted... no difference. Thought of restoring the computer to when it was working fine via Time machine in disk utility mode... failed. Finally resorted to deleting the hard drive, reinstalling Tiger, and upgrading.
After what seemed like forever for the hard drive to erease, attempted to reinstall. Ended up taking almost an hour to verify the disk, and then announced, that it would take 58+ hours to install. After leaving it for 3 hours, the number was going up, and was not installing.
I then thought the problem would be the 2nd party ram. We replaced the paired 2mb's to give 4mb's with the origional paired 1mb's providing now 2 mb's. Attempted to reinstall osx. Same problem 60+ hours after 3 hours of letting it sit.
What to do now? Is it the logic board? Could it be a faulty hard drive? Should I attempt in firewire more from another computer? Do a 7 pass erase over the hard drive? Run Disk warrior?
If anyone could give some info on why this is so blessedly slow that would be great thanks!Decided to try and chek out the hard drive more extensively. SMART, states that it is verified. After running Diskwarrior and repairing all of the disk and the permissions, and running a hardware test, everything seemed to be running fine.
Went back to disk utilities, checked disk and permissions again, verified. SMART states it is verified.
Attemping now to install Mac OSX 10.4.7 from the original install disk. I am currently attemting the basic install, no programs, nothing. It has been over an hour, It is 44% of installing the base system Part 1, announcing 5 hours and 53 minutes.
When I did erase the hard drive yes I selected to write over zeros once. I then erased a second time from Diskwarrior. -
I cannot also restore the iPod touch because the 'find my iPod touch" is on but I cannot click anything. just the "check email" to verify account
You are running into the activation lock'
iCloud: Find My iPhone Activation Lock in iOS 7
If you can't get the previous owner to remove it from theri account
Find My iPhone Activation Lock: Removing a device from a previous owner’s account
all you have is a thin brick. I would then return the iPod for a refund. -
How do I get DNS searchs to span multiple network interaces?
Each of our developer machines have two network cards. One is attached to the corporate network the other to a private network. There is a DNS server running on both networks. On our windows boxes we have no trouble doing something like
ping <device-name-on-corporate-network>
ping <device-name-on-private-network>
On our newly purchased Mac Minis running Mavericks 10.9.2 it doesn't work the same way.
If the service order has the corporate network above the private network then the ping of the corporate device name works but the ping of the private device name doesn't.
If I swtich the service order so the private network is above the corporate network then the ping of the private device name works but not the coporate one.
From what I am seeing I believe that on the Macs when a DNS lookup request failure is returned by the DNS server associated with highest active network in the service order list the DNS server associated with next highest active network in the service order is not being sent a DNS lookup request. Is this correct or am I missing a setting someplace?I found another the solution was already posted in response to the following question in the discussions group.
https://discussions.apple.com/message/15095747#15095747
"Network Service Order Causing Conflict with Private DNS on Local Network"
KJB_ -
DNS required for NAT and DHCP services?
I have a 10.6.2 server with a static IP, domain name, working as a gateway (I have my reasons) as well as providing some services inside and outside. My ISP has a PTR setup so the domain points to the static IP.
My question is, do I need the DNS service running on the server? Based on some of the docs it tells me to put my ISPs DNS servers in both of my servers ethernet port settings, as well as in the DHCP profile to give out to clients on the network. When I do this, clients cannot resolve names. I can ping IPs from the client, I can even ping my ISPs DNS servers from clients, but I can't resolve names. When I try to dig anything it just hangs there with a blinky cursor.
When I have the DNS service running it's all happy. The only thing is, clients on the LAN experience some serious lag when accessing services on the server, UNLESS I configure the DNS for my domain on the server with both internal and external IP addresses. Is that how it is supposed to be?In the server zone files, the dedicated IP address should point to the machine name, as in name.someserver.com. The local IP address should point to name.local. If you have more than one domain name, the zone files should show their network IP address, not the dedicated IP address, which should only point to the machine name.
As a side note, I strongly advise against connecting a server directly to the Internet. It should be behind a router with DMZ/NAT/firewall capabilities. By the time you realize why, it will be too late.
Maybe you are looking for
-
How to create an event marker with durations of upto 10mins
Hi, I want to record the time of an event, occuring on the acquired data or a user generated keyboard event, since the start of a recording sessions. A typical session of record will take 10-15 mins. The timer need to start as soon as the recording i
-
I've read the firewall administrator's guide and I'm still not sure that I know how to get the WAF to answer for multiple ip addresses. For example, if I want the following to happen: 192.168.1.101:80 (WAF) -> 172.16.1.1 (Backend server) 192.168.1.10
-
Hi EHS gurus, I would like to know whether there is any BP for SAP Portal content(EP7) for EHS(ECC6). I have found a BP BPEHS501_0-20000614 and imported in SAP portal. I got a role with pages for Industrial Hygiene&Safety and Product Safety. Is this
-
Photoshop elements 11 stops working
Photoshop elements 11 won't work. It keeps erroring out before I can do anything, and Windows doesn't find a solution. If you need clarification or more info about my system, please let me know. Thanks!!!
-
Oracle 11g new features and download.
Hi, What are the new features of oraacle 11g and when I will be able to download 11g database. Regards MMU