Web Access of Nacs in Local Host

Similar Messages

• Users see all applications in RDS 2012 Web access in one-way trust domain environment

  Hello!
  We have RDS 2012 deployment in domainA.local. There is a one-way trust between domainA.local and domainB.local: A trusts B and B doesn't trust A.
  A user from domainB.local authenticates in Web-access interface (wa.domainA.local) and sees
  every published application in every collection in the deployment independently of UserGroups setting of collections and applications. This occurs for any domainB user.
  In the security log of wa.domainA.local we can find an event :
  An account failed to log on.
  Subject:
  Security ID:                IIS APPPOOL\RDWebAccess
  Account Name:                RDWebAccess
  Account Domain:                IIS APPPOOL
  Logon ID:                0x2C7B16
  Logon Type:                        3
  Account For Which Logon Failed:
  Security ID:                NULL SID
  Account Name:                
  Account Domain:                
  Failure Information:
  Failure Reason:                An error occurred during logon
  Status:                        0xC000005E
  Sub Status:                0x0
  Also in network trace on wa.domainA.local kerberos error could be found:
  On TGS-REQ for krbtgt/[email protected] there is an answer: KRB5KDC_ERR_S_PRINCIPAL_UNKNOWN (7), server name krbtgt/domainB.
  How to deal with this issue? The aim is to show only specified applications to domainB users.
  Any help would be appreciated.

  Hi,
  Thank you for your posting in Windows Server Forum.
  Please check below links might useful for your case.
  “After adding the RDS server’s computer account to the Builtin Windows Authorization Access Group domain group, the RemoteApp icons displayed perfectly.” (Quoted from
  this article)
  1. Remote APP list empty
  2. RD
  Web Access unable to access Source (RD Server)
  In respect to Kerberos Error, refer this link for troubleshooting.
  1. Troubleshooting Kerberos Authentication problems – Name resolution issues
  2. Kerberos Authentication problems – Service Principal Name (SPN) issues - Part 2
  Hope it helps! 
  Thanks,
  Dharmesh

• Local host give errors 403

  I have a local host set up using XAMPP. Until recently this worked fine. Now, when I try to access files using http://local host, I get error 403 Forbidden.
  == URL of affected sites ==
  http://

  iam using xp professional
  and firefox 3.6.
  i have instled iis
  iam gettin problem in getting localhost
  iamgetting error
  "firefo cannot estblish a connection to the localhost "

• Unable to export data from Web Access Data Sheet in Sharepoint to local excel or access file

  Greetings and good morning.
  I'm going to start off in broad terms with this question because I'm not 100 percent sure what information to provide.
  Long story short, we've got a Web Access Data Sheet list hosted in a Sharepoint 2010 environment. It is accessed and used by multiple people throughout the day. It contains several thousand line item entries. I'd call it a large data sheet.
  I think the size of the data sheet is casuign some instability in the list. I'd like to be able to export a defined range of data from the list into a local excel or access file. After that, I'd delete the stuff on the Access list to improve performance.
  But...when I attempt to use the Sharepoint Action bar to export - Excel locks up/crashes. If I try to export to Access, I get a similar issue.
  Any ideas? Could anyone begin by telling me what other information is required?

  Hi,
  If you would like to export data from Access Web Database in SharePoint 2010, you could go to Design With Access page in Settings. The url in my environment is http://sp/tt/_layouts/accsrv/ModifyApplication.aspx . Then choose the Table and export it to Excel
  or Modify it in Access.
  Regards,
  Rebecca Tu
  TechNet Community Support

• How to run local host web application in win 7 64 bit with oracle database?

  Hi all,
  Hope doing well,
  sir i am running my local host web application with oracle database in win 7 32 bit. it's working fine.
  but when i am running the same thing in win 7 64 bit. it's showing login error.
  not going to home page even i checked with this published file open in visual studio it's working fine.
  how to run it correctly?
  thanks in advance.

  The number of times you have been asked to post sufficient details for your questions, we would expect you to have got the message by now... but clearly not.
  952646 wrote:
  but when i am running the same thing in win 7 64 bit. it's showing login error.What error? You haven't posted an error. There are millions of possible errors in computing and you're expecting people to guess which one.
  not going to home page even i checked with this published file open in visual studio it's working fine.
  how to run it correctly?No code, no database version, no details...... = NO HELP.
  When are you going to learn.

• What ports to open between Connection broker and Web access hosts

  I have setup a 4 node 2008 R2 RDS farm (1 connection broker, 1 Web access, and 2 session hosts.) They were all built from the same image, but the web access and connection broker will not talk to each other. They are all on the same subnet, and ips are x.x.x.200-203 The Web access server can ping the Sesions hosts, the session hosts can ping each other, web access and the connection broker. But the Web access and Connection broker cant ping each other. I turned off the windows firewall and they can ping, and connect... So whats ports does it need open?
   Thanks!
  ~M

  Hello,
  Do you need any further helps? Please let us know it. Thanks.
  ·        Lionel Chen
  TechNet Subscriber Support in forum
  If you have any feedback on our support, please [email protected]
  This posting is provided "AS IS" with no warranties, and confers no rights.

• Cisco ASA 5505 IPsec client VPN - Cannot connect to local hosts

  I have created a Cisco IPsec vpn on my ASA using the VPN creation wizard. I am able to successfully connect to the vpn and seemingly join the network, but after I connect I am unable to connect to or ping any of the hosts on the network.
  Checking the ASA I can see that a VPN session is open and my client reports that it is connected. If I attempt to ping the client from the ASA all packets are dropped.
  I suspect it may be an issue with my firewall, but I am not really sure where to begin.
  Here is a copy of my config, any pointers or tips are aprpeciated:
  hostname mcfw
  enable password Pt8fQ27yMZplioYq encrypted
  passwd 2qaO2Gd6IBRkrRFm encrypted
  names
  interface Ethernet0/0
  switchport access vlan 400
  interface Ethernet0/1
  switchport access vlan 400
  interface Ethernet0/2
  switchport access vlan 420
  interface Ethernet0/3
  switchport access vlan 420
  interface Ethernet0/4
  switchport access vlan 450
  interface Ethernet0/5
  switchport access vlan 450
  interface Ethernet0/6
  switchport access vlan 500
  interface Ethernet0/7
  switchport access vlan 500
  interface Vlan400
  nameif outside
  security-level 0
  ip address 58.13.254.10 255.255.255.248
  interface Vlan420
  nameif public
  security-level 20
  ip address 192.168.20.1 255.255.255.0
  interface Vlan450
  nameif dmz
  security-level 50
  ip address 192.168.10.1 255.255.255.0
  interface Vlan500
  nameif inside
  security-level 100
  ip address 192.168.0.1 255.255.255.0
  ftp mode passive
  clock timezone JST 9
  same-security-traffic permit inter-interface
  same-security-traffic permit intra-interface
  object-group network DM_INLINE_NETWORK_1
  network-object host 58.13.254.11
  network-object host 58.13.254.13
  object-group service ssh_2220 tcp
  port-object eq 2220
  object-group service ssh_2251 tcp
  port-object eq 2251
  object-group service ssh_2229 tcp
  port-object eq 2229
  object-group service ssh_2210 tcp
  port-object eq 2210
  object-group service DM_INLINE_TCP_1 tcp
  group-object ssh_2210
  group-object ssh_2220
  object-group service zabbix tcp
  port-object range 10050 10051
  object-group service DM_INLINE_TCP_2 tcp
  port-object eq www
  group-object zabbix
  port-object eq 9000
  object-group protocol TCPUDP
  protocol-object udp
  protocol-object tcp
  object-group service http_8029 tcp
  port-object eq 8029
  object-group network DM_INLINE_NETWORK_2
  network-object host 192.168.20.10
  network-object host 192.168.20.30
  network-object host 192.168.20.60
  object-group service imaps_993 tcp
  description Secure IMAP
  port-object eq 993
  object-group service public_wifi_group
  description Service allowed on the Public Wifi Group. Allows Web and Email.
  service-object tcp-udp eq domain
  service-object tcp-udp eq www
  service-object tcp eq https
  service-object tcp-udp eq 993
  service-object tcp eq imap4
  service-object tcp eq 587
  service-object tcp eq pop3
  service-object tcp eq smtp
  access-list outside_access_in remark http traffic from outside
  access-list outside_access_in extended permit tcp any object-group DM_INLINE_NETWORK_1 eq www
  access-list outside_access_in remark ssh from outside to web1
  access-list outside_access_in extended permit tcp any host 58.13.254.11 object-group ssh_2251
  access-list outside_access_in remark ssh from outside to penguin
  access-list outside_access_in extended permit tcp any host 58.13.254.10 object-group ssh_2229
  access-list outside_access_in remark http from outside to penguin
  access-list outside_access_in extended permit tcp any host 58.13.254.10 object-group http_8029
  access-list outside_access_in remark ssh from outside to hub & studio
  access-list outside_access_in extended permit tcp any host 58.13.254.13 object-group DM_INLINE_TCP_1
  access-list outside_access_in remark dns service to hub
  access-list outside_access_in extended permit object-group TCPUDP any host 58.13.254.13 eq domain
  access-list dmz_access_in extended permit ip 192.168.10.0 255.255.255.0 any
  access-list dmz_access_in extended permit tcp any host 192.168.10.251 object-group DM_INLINE_TCP_2
  access-list public_access_in remark Web access to DMZ websites (mediastudio/civicrm)
  access-list public_access_in extended permit object-group TCPUDP any object-group DM_INLINE_NETWORK_2 eq www
  access-list public_access_in remark General web access. (HTTP, DNS & ICMP and  Email)
  access-list public_access_in extended permit object-group public_wifi_group any any
  access-list inside_nat0_outbound extended permit ip 192.168.0.0 255.255.255.0 192.168.10.0 255.255.255.0
  access-list inside_nat0_outbound extended permit ip 192.168.0.0 255.255.255.0 192.168.20.0 255.255.255.0
  access-list inside_nat0_outbound extended permit ip any 192.168.0.80 255.255.255.240
  access-list inside_nat0_outbound extended permit ip any 192.168.0.64 255.255.255.192
  pager lines 24
  logging enable
  logging timestamp
  logging buffered notifications
  logging trap notifications
  logging asdm debugging
  logging from-address [email protected]
  logging recipient-address [email protected] level warnings
  logging host dmz 192.168.10.90 format emblem
  logging permit-hostdown
  mtu outside 1500
  mtu public 1500
  mtu dmz 1500
  mtu inside 1500
  ip local pool OfficePool 192.168.0.80-192.168.0.90 mask 255.255.255.0
  ip local pool VPN_Pool 192.168.0.91-192.168.0.99 mask 255.255.255.0
  no failover
  icmp unreachable rate-limit 1 burst-size 1
  no asdm history enable
  arp timeout 60
  global (outside) 1 interface
  global (dmz) 2 interface
  nat (public) 1 0.0.0.0 0.0.0.0
  nat (dmz) 1 0.0.0.0 0.0.0.0
  nat (inside) 0 access-list inside_nat0_outbound
  nat (inside) 1 0.0.0.0 0.0.0.0
  static (inside,outside) tcp interface 2229 192.168.0.29 2229 netmask 255.255.255.255
  static (inside,outside) tcp interface 8029 192.168.0.29 www netmask 255.255.255.255
  static (dmz,outside) 58.13.254.13 192.168.10.10 netmask 255.255.255.255 dns
  static (dmz,outside) 58.13.254.11 192.168.10.30 netmask 255.255.255.255 dns
  static (inside,dmz) 192.168.10.0 192.168.0.0 netmask 255.255.255.0 dns
  static (dmz,inside) 192.168.0.251 192.168.10.251 netmask 255.255.255.255
  static (dmz,public) 192.168.20.30 192.168.10.30 netmask 255.255.255.255 dns
  static (dmz,public) 192.168.20.10 192.168.10.10 netmask 255.255.255.255 dns
  access-group outside_access_in in interface outside
  access-group public_access_in in interface public
  access-group dmz_access_in in interface dmz
  route outside 0.0.0.0 0.0.0.0 58.13.254.9 1
  timeout xlate 3:00:00
  timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 icmp 0:00:02
  timeout sunrpc 0:10:00 h323 0:05:00 h225 1:00:00 mgcp 0:05:00 mgcp-pat 0:05:00
  timeout sip 0:30:00 sip_media 0:02:00 sip-invite 0:03:00 sip-disconnect 0:02:00
  timeout sip-provisional-media 0:02:00 uauth 0:05:00 absolute
  timeout tcp-proxy-reassembly 0:01:00
  dynamic-access-policy-record DfltAccessPolicy
  http server enable
  http 192.168.0.0 255.255.255.0 inside
  http 59.159.40.188 255.255.255.255 outside
  no snmp-server location
  no snmp-server contact
  snmp-server enable traps snmp authentication linkup linkdown coldstart
  sysopt noproxyarp dmz
  sysopt noproxyarp inside
  crypto ipsec transform-set ESP-AES-256-MD5 esp-aes-256 esp-md5-hmac
  crypto ipsec transform-set ESP-DES-SHA esp-des esp-sha-hmac
  crypto ipsec transform-set ESP-DES-MD5 esp-des esp-md5-hmac
  crypto ipsec transform-set ESP-AES-192-MD5 esp-aes-192 esp-md5-hmac
  crypto ipsec transform-set ESP-3DES-MD5 esp-3des esp-md5-hmac
  crypto ipsec transform-set ESP-AES-256-SHA esp-aes-256 esp-sha-hmac
  crypto ipsec transform-set ESP-AES-128-SHA esp-aes esp-sha-hmac
  crypto ipsec transform-set ESP-AES-192-SHA esp-aes-192 esp-sha-hmac
  crypto ipsec transform-set ESP-AES-128-MD5 esp-aes esp-md5-hmac
  crypto ipsec transform-set TRANS_ESP_3DES_SHA esp-3des esp-sha-hmac
  crypto ipsec transform-set TRANS_ESP_3DES_SHA mode transport
  crypto ipsec transform-set ESP-3DES-SHA esp-3des esp-sha-hmac
  crypto ipsec security-association lifetime seconds 28800
  crypto ipsec security-association lifetime kilobytes 4608000
  crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set pfs group1
  crypto dynamic-map SYSTEM_DEFAULT_CRYPTO_MAP 65535 set transform-set ESP-AES-128-SHA ESP-AES-128-MD5 ESP-AES-192-SHA ESP-AES-192-MD5 ESP-AES-256-SHA ESP-AES-256-MD5 ESP-3DES-SHA ESP-3DES-MD5 ESP-DES-SHA ESP-DES-MD5
  crypto map inside_map 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
  crypto map inside_map interface inside
  crypto map outside_map 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
  crypto map outside_map interface outside
  crypto map public_map 65535 ipsec-isakmp dynamic SYSTEM_DEFAULT_CRYPTO_MAP
  crypto map public_map interface public
  crypto isakmp enable outside
  crypto isakmp enable public
  crypto isakmp enable inside
  crypto isakmp policy 5
  authentication pre-share
  encryption 3des
  hash sha
  group 2
  lifetime 86400
  crypto isakmp policy 10
  authentication pre-share
  encryption des
  hash sha
  group 2
  lifetime 86400
  telnet timeout 5
  ssh 59.159.40.188 255.255.255.255 outside
  ssh 192.168.0.0 255.255.255.0 inside
  ssh timeout 20
  console timeout 0
  dhcpd dns 61.122.112.97 61.122.112.1
  dhcpd auto_config outside
  dhcpd address 192.168.20.200-192.168.20.254 public
  dhcpd enable public
  dhcpd address 192.168.10.190-192.168.10.195 dmz
  dhcpd enable dmz
  dhcpd address 192.168.0.200-192.168.0.254 inside
  dhcpd enable inside
  threat-detection basic-threat
  threat-detection statistics access-list
  threat-detection statistics host number-of-rate 2
  no threat-detection statistics tcp-intercept
  ntp server 130.54.208.201 source public
  webvpn
  group-policy DefaultRAGroup internal
  group-policy DefaultRAGroup attributes
  dns-server value 61.122.112.97 61.122.112.1
  vpn-tunnel-protocol l2tp-ipsec
  group-policy CiscoASA internal
  group-policy CiscoASA attributes
  dns-server value 61.122.112.97 61.122.112.1
  vpn-tunnel-protocol IPSec
  username mcit password 4alT9CZ8ayD8O8Xg encrypted privilege 15
  tunnel-group DefaultRAGroup general-attributes
  address-pool VPN_Pool
  default-group-policy DefaultRAGroup
  tunnel-group DefaultRAGroup ipsec-attributes
  pre-shared-key *****
  tunnel-group ocmc type remote-access
  tunnel-group ocmc general-attributes
  address-pool OfficePool
  tunnel-group ocmc ipsec-attributes
  pre-shared-key *****
  tunnel-group CiscoASA type remote-access
  tunnel-group CiscoASA general-attributes
  address-pool VPN_Pool
  default-group-policy CiscoASA
  tunnel-group CiscoASA ipsec-attributes
  pre-shared-key *****
  class-map inspection_default
  match default-inspection-traffic
  policy-map type inspect dns preset_dns_map
  parameters
    message-length maximum client auto
    message-length maximum 512
  policy-map global_policy
  class inspection_default
    inspect dns preset_dns_map
    inspect ftp
    inspect h323 h225
    inspect h323 ras
    inspect ip-options
    inspect netbios
    inspect rsh
    inspect rtsp
    inspect skinny 
    inspect esmtp
    inspect sqlnet
    inspect sunrpc
    inspect tftp
    inspect sip 
    inspect xdmcp
  service-policy global_policy global
  smtp-server 192.168.10.10
  prompt hostname context
  call-home
  profile CiscoTAC-1
    no active
    destination address http https://tools.cisco.com/its/service/oddce/services/DDCEService
    destination address email [email protected]
    destination transport-method http
    subscribe-to-alert-group diagnostic
    subscribe-to-alert-group environment
    subscribe-to-alert-group inventory periodic monthly
    subscribe-to-alert-group configuration periodic monthly
    subscribe-to-alert-group telemetry periodic daily
  Cryptochecksum:222d6dcb583b5f5abc51a2251026f7f2
  : end
  asdm location 192.168.10.10 255.255.255.255 inside
  asdm location 192.168.0.29 255.255.255.255 inside
  asdm location 58.13.254.10 255.255.255.255 inside
  no asdm history enable

  Hi Conor,
  What is your local net ? I see only one default route for outside network. Dont you need a route inside for your local network.
  Regards,
  Umair

• SSL VPN message "This (client) machine does not have the web access privilege."

  Hello!
  I am trying to configure the SSL VPN (WebVPN) and I am almost done but when clicking on the URL's I configured in the bookmarks, I get the message "This (client) machine does not have the web access privilege. Please contact your SSLVPN provider for assistance." I looked through the many tutorials and guides in existence and none talks about such error and the fix for it. In fact, if I search the net for this error message I get only one match, in the Cisco website, where is say that "The client computer does not meet the security criteria of having web access functionality through the SSL VPN gateway." and as fix it gave this tip "Check the URL to the gateway or contact the administrator if it persists." So, nothing on the website about what this issue is and how to fix it. I will provide my IOS configuration and hopefully someone will spot the issue. Here it goes:
  version 12.4
  service timestamps debug datetime msec
  service timestamps log datetime msec
  no service password-encryption
  hostname R1
  boot-start-marker
  boot-end-marker
  logging message-counter syslog
  no logging buffered
  enable secret 5 $1$1LLX$u7aTc8XfNqPZhPVGwEF/J0
  enable password xxxxxxxx
  aaa new-model
  aaa authentication login userAuthen local
  aaa authentication login sdm_vpn_xauth_ml_1 local
  aaa authorization network groupauthor local
  aaa session-id common
  crypto pki trustpoint TP-self-signed-1279712955
  enrollment selfsigned
  subject-name cn=IOS-Self-Signed-Certificate-1279712955
  revocation-check none
  rsakeypair TP-self-signed-1279712955
  crypto pki certificate chain TP-self-signed-1279712955
  certificate self-signed 01
    3082023A 308201A3 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
    31312F30 2D060355 04031326 494F532D 53656C66 2D536967 6E65642D 43657274
    69666963 6174652D 31323739 37313239 3535301E 170D3130 30333233 31313030
    33375A17 0D323030 31303130 30303030 305A3031 312F302D 06035504 03132649
    4F532D53 656C662D 5369676E 65642D43 65727469 66696361 74652D31 32373937
    31323935 3530819F 300D0609 2A864886 F70D0101 01050003 818D0030 81890281
    8100A8EF 34E3E792 36660498 9801F934 E8A41865 3599EA35 B073AC91 D7A53AF4
    A4390D2F CB3DB2DE 936B28F0 A25F3CE1 6F40FD9E E79096F2 F89620E0 B31A7B34
    649BBA22 AE44CB55 9F38BF0C 2F2770CF 8380C167 C17D760C 380E28E4 FF7D6874
    9EFC310A 2AA60835 F1AA384F CD1A0173 19C98192 EBFBD531 24CB9203 EA9E7D54
    B2C30203 010001A3 62306030 0F060355 1D130101 FF040530 030101FF 300D0603
    551D1104 06300482 02523130 1F060355 1D230418 30168014 0D9D62EC DA77EAF3
    11ABF64D 933633F9 2BA362DC 301D0603 551D0E04 1604140D 9D62ECDA 77EAF311
    ABF64D93 3633F92B A362DC30 0D06092A 864886F7 0D010104 05000381 81006853
    48ED4E3E 5721C653 D9A2547C 36E4F0CB A6764B29 9AFFD30A 1B382C8C C6FDAA55
    265BCF6C 51023F5D 4AF6E177 C76C4560 57DE5259 40DE4254 E79B3E13 ABD0A78D
    7E0B623A 0F2D9C01 E72EF37D 5BAB72FF 65A176A1 E3709758 0229A66B 510F9AA2
    495CBB4B 2CD721A7 D6F6EB43 65538BE6 B45550D7 A80A4504 E529D092 73CD
     quit
  dot11 syslog
  ip source-route
  ip dhcp excluded-address 192.168.0.1 192.168.0.10
  ip dhcp pool myPOOL
     network 192.168.0.0 255.255.255.0
     default-router 192.168.0.1
     dns-server 87.216.1.65 87.216.1.66
  ip cef
  ip name-server 87.216.1.65
  ip name-server 87.216.1.66
  ip ddns update method mydyndnsupdate
  HTTP
    add http://username:[email protected]/nic/update?system=dyndns&hostname=<h>&myip=<a>
  interval maximum 1 0 0 0
  no ipv6 cef
  multilink bundle-name authenticated
  vpdn enable
  vpdn-group pppoe
  request-dialin
    protocol pppoe
  username cisco privilege 15 password 0 xxxxxxxx
  crypto isakmp policy 3
  encr 3des
  authentication pre-share
  group 2
  crypto isakmp fragmentation
  crypto isakmp client configuration group vpnclient
  key cisco123
  domain selfip.net
  pool ippool
  acl 110
  crypto ipsec transform-set myset esp-3des esp-md5-hmac
  crypto dynamic-map dynmap 10
  set transform-set myset
  reverse-route
  crypto map clientmap client authentication list userAuthen
  crypto map clientmap isakmp authorization list groupauthor
  crypto map clientmap client configuration address respond
  crypto map clientmap 10 ipsec-isakmp dynamic dynmap
  archive
  log config
    hidekeys
  interface Loopback0
  ip address 10.11.0.1 255.255.255.0
  ip nat inside
  ip virtual-reassembly
  interface Loopback2
  description SSL VPN Website IP address
  ip address 10.10.10.1 255.255.255.0
  interface Loopback1
  description SSL DHCP Pool Gateway Address
  ip address 192.168.250.1 255.255.255.0
  interface FastEthernet0
  description $ES_LAN$
  ip address 192.168.0.1 255.255.255.0
  ip nat inside
  ip virtual-reassembly
  duplex auto
  speed auto
  interface BRI0
  no ip address
  encapsulation hdlc
  shutdown
  interface FastEthernet1
  interface FastEthernet2
  switchport access vlan 2
  interface FastEthernet3
  interface FastEthernet4
  interface FastEthernet5
  interface FastEthernet6
  interface FastEthernet7
  interface FastEthernet8
  interface ATM0
  no ip address
  no atm ilmi-keepalive
  pvc 8/35
    encapsulation aal5mux ppp dialer
    dialer pool-member 1
  bundle-enable
  dsl operating-mode auto
  interface Vlan1
  no ip address
  interface Dialer1
  ip ddns update hostname myserver.selfip.net
  ip ddns update mydyndnsupdate host members.dyndns.org
  ip address negotiated
  ip nat outside
  ip virtual-reassembly
  encapsulation ppp
  ip policy route-map VPN-Client
  dialer pool 1
  ppp chap hostname xxx
  ppp chap password 0 xxxx
  ppp pap sent-username xxx password 0 xxxx
  crypto map clientmap
  ip local pool ippool 192.168.50.100 192.168.50.200
  ip local pool sslvpnpool 192.168.250.2 192.168.250.100
  ip forward-protocol nd
  ip route 0.0.0.0 0.0.0.0 Dialer1
  ip http server
  ip http authentication local
  ip http secure-server
  ip nat inside source static tcp 192.168.0.2 21 interface Dialer1 790
  ip nat inside source static tcp 192.168.0.15 21 interface Dialer1 789
  ip nat inside source list 102 interface Dialer1 overload
  ip nat inside source static tcp 10.10.10.1 443 interface Dialer1 443
  ip nat inside source static tcp 10.10.10.1 80 interface Dialer1 80
  access-list 102 deny   ip 192.168.0.0 0.0.0.255 192.168.50.0 0.0.0.255
  access-list 102 permit ip 192.168.0.0 0.0.0.255 any
  access-list 110 permit ip 192.168.0.0 0.0.0.255 192.168.50.0 0.0.0.255
  access-list 144 permit ip 192.168.50.0 0.0.0.255 any
  route-map VPN-Client permit 10
  match ip address 144
  set ip next-hop 10.11.0.2
  control-plane
  banner motd ^C
  ================================================================
                  UNAUTHORISED ACCESS IS PROHIBITED!!!
  =================================================================
  ^C
  line con 0
  line aux 0
  line vty 0 4
  password mypassword
  transport input telnet ssh
  webvpn gateway MyGateway
  ip address 10.10.10.1 port 443 
  http-redirect port 80
  ssl trustpoint TP-self-signed-1279712955
  inservice
  webvpn install svc flash:/webvpn/svc_1.pkg sequence 1
  webvpn install csd flash:/webvpn/sdesktop.pkg
  webvpn context SecureMeContext
  title "My SSL VPN Service"
  secondary-color #C0C0C0
  title-color #808080
  ssl authenticate verify all
  url-list "MyServers"
     heading "My Intranet"
     url-text "Cisco" url-value "http://192.168.0.2"
     url-text "NetGear" url-value "http://192.168.0.3"
  login-message "Welcome to My VPN"
  policy group MyDefaultPolicy
     url-list "MyServers"
     functions svc-enabled
     svc address-pool "sslvpnpool"
     svc keep-client-installed
  default-group-policy MyDefaultPolicy
  aaa authentication list userAuthen
  gateway MyGateway domain testvpn
  max-users 100
  csd enable
  inservice
  end
  Thank you!

  Hi,
  Please check SAP note:
  2004579 - You cannot create a FR company from a Package
  Thanks & Regards,
  Nagarajan

• Error on invoking a webservice by giving ip address instead of local host

  Hi,
  I created a web service through jdeveloper and tried accessing the webservice generated WSDl file by giving ip address of my machine , but it throws me an error stating IE cannot display the web page . The same web service is running fine when giving local host on the Web service URL .
  Looking frwd fr sme help
  Thanks in advance
  Ragaven

  Hi,
  your WebLogic server is not setup to listen for the IP address. You can change this in the WLS console for the server configuration. Note that when you install WLS and don't define any hostname then it will listen to all addresses (which also is the default for the integrated WLS)
  Frank

• RD Web Access SSO not working correctly

  I have two Win 2008 r2 sp1 servers.  Both are RD Session host servers.  One of them is also serving as a RD Gateway server AND RD Web access server.  Most everything is working well and as planned.  However, I am having an issue with
  the the RD Web Access.
  In the RD Web access server configuration page, I've set "One or more RemoteApp sources" and I've added two servers there, separated by a semicolon (eg RDServer1;RDServer2), and as expected a long list of RemoteApps hosted on both servers is shown .  The
  issue is that whatever server is listed second (eg RDServer2) won't allow sso to work right  -- when I click a link for a RemoteApp hosted on RDServer1 I am not prompted again for login credentials.  However, when clicking a link for a RemoteApp
  hosted on RDServer2 I am prompted "Enter Your Credentials".  I've tried swapping the order of the "Source Name" servers, and after a reboot indeed links to the RemoteApps hosted on that second server now prompt for me to "Enter your credentials".
  Things I've tried:
  1. Trying various server name formats (IP address, NetBIOS name, FQDN, and more) to no apparent effect.
  2. Applied the hotfix from KB2524668 to both servers.
  3. Flushed the IE caches for the client machines.
  4.  Tried various AD login accounts
  5. Ensuring that the RD Web Access server is added to the local group "TS Web Access Computers" on both servers.
   This is one step that I'm not 100% sure of -- it is clear to me that the RD Session host server that doesn't contain RD Web access should be there, but I'm not totally clear as to whether the dual-duty RD Web server/RD Session host should have this setting.
   I've tried it both ways, but it doesn't seem to make a difference.
  I'm stumped.

  Kevin,
  That's it!  I have a separate SSL cert for each RD Session Host, and used the corresponding certs to sign RemoteApps for each.  I still don't see this requirement in the documentation (although they do mention exporting self-signed certs, but that
  is due to the fact that they are self-signed and not automatically trusted by client machines), but maybe I'm just blind.
  Regardless, the fix to my problem was to export the cert from my RDServer1, import it to RDServer2, then set RDServer2 to use that cert to sign the RemoteApp connections.
  Thanks for your assistance, I was really stuck.
  Chris

• Maverick Local Host Not Working Correctly

  Hello,
  I recently upgraded to Maverick 10.9.2. Now my local host is working incorrectly? Now when I try to access one of my sites on my local machine, it just shows the php code and not loading the pages? I also restored httpd.conf~previous to httpd.conf, and still the same issue?
  Also
  * Web sharing is on
  *PHP is enabled
  *Mysql is running
  Did I mis something?
  Thanks JR

  Hello,
  I recently upgraded to Maverick 10.9.2. Now my local host is working incorrectly? Now when I try to access one of my sites on my local machine, it just shows the php code and not loading the pages? I also restored httpd.conf~previous to httpd.conf, and still the same issue?
  Also
  * Web sharing is on
  *PHP is enabled
  *Mysql is running
  Did I mis something?
  Thanks JR

• 2012 R2 Web Access Logon

  Just trying to get a definitive answer to the age old question of can we remove the initial user logon requirements when accessing the RD Web Access server in a 2012 R2 RDS deployment?
  I was under the impression that the Single Sign-On only removes the logon prompts when users try to access a RemoteApp or Session Host once they've logged on to the Web Access server?
  Is there a way to use the current users credentials (they're all connecting from domain joined windows 7 or 8 machines) to logon to the RD Web Access site?
  Cheers for now
  Russell

  Hi,
  AFAIK you can only to single sign on when using published applications, not to the actual login page on remote desktop web services. 
  You may be able to look at changing some of the authentication options in IIS and making sure the website is in the local intranet site to see if you can pass through the creds. 
  Thanks
  Regards,
  Denis Cooper
  MCITP EA - MCT
  Help keep the forums tidy, if this has helped please mark it as an answer
  Blog: http://www.windows-support.co.uk 
  Twitter:   LinkedIn:

• Java Web Console starts in "user local mode" after Sol 10 Patches

  After applying Solaris 10 recommended patch cluster, the web console on my SPARC platform starts the web console such that only the local host clients can connect via web (https://localhost:6789/). Webconsole log file states "the console instance "console" is starting in local user mode. Prior to applying the patch cluster, the log file stated "the console instance "console" is starting in user mode." How do I get it to start in regular user mode?
  Patch cluster is dated: 24-Apr-2009. I am running Version 3.1 of the webconsole. Using the webconsole primarily for adminsistration of Sun Java Directory Server 6.3.1 using the DSCC.

  Thank you for the response. Prior to implementing your recommended fix, I discovered the following Example in the man pages for smcwebserver:
  Example 3 Using SMF Property to Allow Remote Access
  The following sequence of commands allows remote access to the Sun Web Console server.
  # svccfg -s svc:/system/webconsole \
  setprop options/tcp_listen = true
  # svcadm refresh svc:/system/webconsole
  Executing the above commands restored full webconsole access.

• Cannot Connect to local host

  from the xserv where i am setting up a website i cannot access local host which is preventing me from setting up phpmyadmin config file. I open safari and type in http://localhost/ and i get the error message cannot connect to local host. I can access the server using the ip (no domain setup yet). I am a novice at setting up web serves in the mac/apache environment so i may have missed a simple step somewhere. Any help would be appreciated.

  Hi, and a warm welcome to the forums!
  No expert here, but have you tried http://127.0.0.1 ?
  Might get better help in the xserve, or Server forums here.

• Wordpress on local host?

  I have a simple (only 2 posts and no pages) test WP blog installed on a remote web host. I'm trying to work on a copy of it off-line on my localhost. I started by adding a new wordpress to my local host, then copied the wp-include folder from remote host to the new localhost wordpress. Export/Import databse. Start and install WP and follow steps to create config.php file.
  All works as should. Blog appears on localhost with the 2 posts and the theme appearance and etc just as it does on remote host.
  Problem - When, in the WP dashboard Posts section,  I click on "view" post I get page not found error 404. I have been advised that I need to go to Settings>Permalinks and then click save. As soon as I select Settings>Permalinks a .htaccess file is added to the WP on localhost, the dashboard display becomes not correct and if I click save I get server error 500 message. From that point on I cannot access the blog on localhost at all. If I delete the .htaccess file I get back to where everything works except as described at the top of this post.
  So I believe I need to configure the .htaccess file and/or possibly some other configuration settings I need to change. I just can't figure out what I need to do to get this working correctly. A link to the .htaccess files is below. One file from original remote host the other created by WP when I go to Settings>Permalinks
  http://www.openrangeimaging.com/Test/htacess.jpg
  someone suggested to me that I just work on my localhost without the .htaccess file but that doesn't seem right to me and I want to get this sorted out and working 100% correctly.
  I know this is not realy a DW question. I have posted on the WP forum but not received any replies. I have gotten al lot of gret help and advice here so I am posting this in hopes someone can help me with this. Any advice on how I might get this resolved will be very much appreciated

  Disable permalinks when working locally.
  Nancy O.