Not for corporate users!
I have a problem convincing the management to upgrade from Windows 7 Enterprise to Windows 8 Enterprise; the management said the new interface is complicated and completely different than what our employees have used, they said we cannot provide training for around 5000 employees to use the new interface.
So I think unless Microsoft releases the old interface as a feature in SP1, my organization will not upgrade.
Reply:
------------------------------------
Windows 7 64bits - Everyday BSoD !!
My OS on notebook is windows 7 ultimate edition 64bit !
I had 18 times BSoD (blue screen of death) since 05.september.2011 and I debugged all crash dump files, files causing BSoD are :
Probably caused by : ntkrnlmp.exe ( nt!CmpKcbCacheLookup+22d ) ===> 10 times
Probably caused by : win32k.sys ( win32k!PopThreadGuardedObject+19 ) ===> 2 times
Probably caused by : Ntfs.sys ( Ntfs!NtfsPagingFileIo+155 ) ===> 2 times
Probably caused by : memory_corruption ( nt!MiUnsecureVirtualMemory+15f ) ===> 3 times
Probably caused by : dxgmms1.sys ( dxgmms1!VIDMM_PROCESS_HEAP::Free+a2 ) ===> 1 time
As you can all see, these files causing BSoD are ALL WINDOWS 7 CORE FILES, they are not driver files, they are not virus related etc.
I have another desktop machine with windows 7 professional 64bit and it has been getting BSoDs since last month!
You can debug your crash dump files to find out why your computer is getting a BSoD by reading this page =>http://blogs.technet.com/b/askcore/archive/2008/11/01/how-to-debug-kernel-mode-blue-screen-crashes-for-beginners.aspx
Microsoft MUST correct this issue immediately ! >:(
If anybody wants to look at my original crash dump files, here is the link:
https://skydrive.live.com/?cid=b2801afcf1b8bc71&sc=documents&id=B2801AFCF1B8BC71%21961
Reply:
hello again,
I tested my notebook pc's RAMs (4x Hynix 2GB DDR3 1333Mhz RAM) with memtest, also with my notebook pc's "diagnostic tools".
As a result, I saw that one of my RAMs had errors. I took dead ram out of my notebook pc and there is no BSoD (blue screen of death) now.
This time, microsoft is innocent, Hynix is guilty! Thanks for your help.
- Edited by GokhanS Saturday, October 22, 2011 7:01 PM
------------------------------------
Reply:
hello again,
I tested my notebook pc's RAMs (4x Hynix 2GB DDR3 1333Mhz RAM) with memtest, also with my notebook pc's "diagnostic tools".
As a result, I saw that one of my RAMs had errors. I took dead ram out of my notebook pc and there is no BSoD (blue screen of death) now.
This time, microsoft is innocent, Hynix is guilty! Thanks for your help.
lol, glad you get the problem sorted out
------------------------------------
Reply:
Step 1
memtest.org and select cd/usb
report results
I also need make/model to better understand the platform I am helping with
Windows MVP, XP, Vista, 7. Expanding into Windows Server 2008 R2, SQL Server, SharePoint etc.
My page on Video Card Problems is now my most popular landing page. My Page on SSD is now #2. See my gaming site for game reviews etc.
Developer | Windows IT | Chess | Economics | Hardcore Games | Vegan Advocate | PC Reviews
Hello Vegan Fanatic my sony vaio notebook has been experiencing this random BSODs especially in idle state
I run Windows 7 Professional (64bit) SP1, 8G RAM, 256GB SSD
I run more of 32bits apps than 64bits
I have tried lots of routine solutions
First Uninstalled my avast antivirus and then installed MS Security Essentials
- it wasn't long that i got another BSOD
Then i uninstalled Catalyst Control Center, CCC from my ATI drivers
- it seemed okay like when i unistalled my antivirus but i still got a BSOD on leaving the system on all through the night
Not having much time to run memtest, i had checked my RAM with a vendor specific diagnostic tool, certifying the RAM chips are okay. The 8GB RAM consists of an onboard 4GB and a detachable 4GB Hynix Chip Set.
At this point i have finally removed the Hynix Chipset, hoping the challenges i have been facing could be as a result of this RAM been dead or with errors.
Meanwhile i'd love for you to help go through the last system dump details.
Microsoft (R) Windows Debugger Version 6.12.0002.633 AMD64
Copyright (c) Microsoft Corporation. All rights reserved.
Loading Dump File [C:\Windows\Minidump\101612-11185-01.dmp]
Unable to load image \SystemRoot\system32\ntoskrnl.exe, Win32 error 0n2
*** ERROR: Module load completed but symbols could not be loaded for ntoskrnl.exe
Windows 7 Kernel Version 7601 (Service Pack 1) MP (4 procs) Free x64
Product: WinNt, suite: TerminalServer SingleUserTS
Built by: 7601.17944.amd64fre.win7sp1_gdr.120830-0333
Machine Name:
Kernel base = 0xfffff800`03266000 PsLoadedModuleList = 0xfffff800`034aa670
Debug session time: Tue Oct 16 03:59:17.892 2012 (UTC + 1:00)
System Uptime: 0 days 7:22:25.720
*********************************************************************
Unable to load image \SystemRoot\system32\ntoskrnl.exe, Win32 error 0n2
*** ERROR: Module load completed but symbols could not be loaded for ntoskrnl.exe
Loading Kernel Symbols
...............................................................
................................................................
........................................
Loading User Symbols
Loading unloaded module list
.........................................
*******************************************************************************
* *
* Bugcheck Analysis *
* *
*******************************************************************************
Use !analyze -v to get detailed debugging information.
BugCheck 3B, {c000001d, fffff88007438a08, fffff8800baf2d30, 0}
*** WARNING: Unable to verify timestamp for mssmbios.sys
*** ERROR: Module load completed but symbols could not be loaded for mssmbios.sys
Unable to load image \??\C:\Windows\system32\drivers\vmx86.sys, Win32 error 0n2
*** WARNING: Unable to verify timestamp for vmx86.sys
*** ERROR: Module load completed but symbols could not be loaded for vmx86.sys
***** Kernel symbols are WRONG. Please fix symbols to do analysis.
Probably caused by : vmx86.sys ( vmx86+8a08 )
Followup: MachineOwner
---------
The System details,
<?xml version="1.0" encoding="Unicode" ?>
<SYSTEMINFO>
<SYSTEM>
<OSNAME>Windows 7 Professional Professional</OSNAME>
<OSVER>6.1.7601 1.0</OSVER>
<OSLANGUAGE>2057</OSLANGUAGE>
<ARCHITECTURE>9</ARCHITECTURE>
<PRODUCTTYPE>48</PRODUCTTYPE>
</SYSTEM>
<MEMORYDIAGNOSTIC>
<REG_VALUE>
<NAME>LaunchType</NAME>
<DATA>0</DATA>
</REG_VALUE>
<REG_VALUE>
<NAME>ScheduleType</NAME>
<DATA>0</DATA>
</REG_VALUE>
<REG_VALUE>
<NAME>LastResult</NAME>
<DATA>Pass</DATA>
</REG_VALUE>
<REG_VALUE>
<NAME>LastRun</NAME>
<DATA>10-15-2012 19:01:36</DATA>
</REG_VALUE>
</MEMORYDIAGNOSTIC>
<DEVICES>
<DEVICE>
<DESCRIPTION>UMBus Enumerator</DESCRIPTION>
<HARDWAREID>UMB\UMBUS</HARDWAREID>
<SERVICE>umbus</SERVICE>
<DRIVER>umbus.sys</DRIVER>
</DEVICE>
.....
<DRIVER>
<FILENAME>viaide.sys</FILENAME>
<FILESIZE>17488</FILESIZE>
<CREATIONDATE>07-13-2009 23:19:50</CREATIONDATE>
<VERSION>6.0.6000.170</VERSION>
<MANUFACTURER>VIA Technologies, Inc.</MANUFACTURER>
<PRODUCTNAME>VIA PCI IDE MINI Driver</PRODUCTNAME>
<GROUP>System Bus Extender</GROUP>
</DRIVER>
<DRIVER>
<FILENAME>vmbus.sys</FILENAME>
<FILESIZE>199552</FILESIZE>
<CREATIONDATE>11-21-2010 03:23:48</CREATIONDATE>
<VERSION>6.1.7601.17514</VERSION>
<MANUFACTURER>Microsoft Corporation</MANUFACTURER>
<PRODUCTNAME>Microsoft® Windows® Operating System</PRODUCTNAME>
<GROUP>System Bus Extender</GROUP>
</DRIVER>
<DRIVER>
<FILENAME>VMBusHID.sys</FILENAME>
<FILESIZE>21760</FILESIZE>
<CREATIONDATE>11-21-2010 03:23:48</CREATIONDATE>
<VERSION>6.1.7601.17514</VERSION>
<MANUFACTURER>Microsoft Corporation</MANUFACTURER>
<PRODUCTNAME>Microsoft® Windows® Operating System</PRODUCTNAME>
<GROUP>Extended Base</GROUP>
</DRIVER>
<DRIVER>
<FILENAME>vmci.sys</FILENAME>
<FILESIZE>116336</FILESIZE>
<CREATIONDATE>08-08-2011 13:59:12</CREATIONDATE>
<VERSION>9.1.54.0</VERSION>
<MANUFACTURER>VMware, Inc.</MANUFACTURER>
<PRODUCTNAME>VMware PCI VMCI Bus Device</PRODUCTNAME>
<GROUP>System Bus Extender</GROUP>
</DRIVER>
<DRIVER>
<FILENAME>vmnetadapter.sys</FILENAME>
<FILESIZE>20080</FILESIZE>
<CREATIONDATE>11-13-2011 20:33:56</CREATIONDATE>
<VERSION>4.1.2.0</VERSION>
<MANUFACTURER>VMware, Inc.</MANUFACTURER>
<PRODUCTNAME>VMware virtual network adapter driver (64-bit)</PRODUCTNAME>
<GROUP>NDIS</GROUP>
</DRIVER>
<DRIVER>
<FILENAME>vmnetbridge.sys</FILENAME>
<FILESIZE>45680</FILESIZE>
<CREATIONDATE>11-13-2011 20:33:56</CREATIONDATE>
<VERSION>4.1.2.0</VERSION>
<MANUFACTURER>VMware, Inc.</MANUFACTURER>
<PRODUCTNAME>VMware bridge driver (64-bit)</PRODUCTNAME>
<GROUP>PNP_TDI</GROUP>
</DRIVER>
<DRIVER>
<FILENAME>vmnetuserif.sys</FILENAME>
<FILESIZE>30320</FILESIZE>
<CREATIONDATE>10-12-2012 13:15:15</CREATIONDATE>
<VERSION>0.0.0.0</VERSION>
<MANUFACTURER></MANUFACTURER>
<PRODUCTNAME></PRODUCTNAME>
</DRIVER>
<DRIVER>
<FILENAME>vmx86.sys</FILENAME>
<FILESIZE>63088</FILESIZE>
<CREATIONDATE>10-12-2012 13:15:39</CREATIONDATE>
<VERSION>0.0.0.0</VERSION>
<MANUFACTURER></MANUFACTURER>
<PRODUCTNAME></PRODUCTNAME>
<GROUP>Extended base</GROUP>
</DRIVER>
<DRIVER>
<FILENAME>volmgr.sys</FILENAME>
<FILESIZE>71552</FILESIZE>
<CREATIONDATE>11-21-2010 03:23:47</CREATIONDATE>
<VERSION>6.1.7601.17514</VERSION>
<MANUFACTURER>Microsoft Corporation</MANUFACTURER>
<PRODUCTNAME>Microsoft® Windows® Operating System</PRODUCTNAME>
<GROUP>System Bus Extender</GROUP>
</DRIVER>
<DRIVER>
<FILENAME>volmgrx.sys</FILENAME>
<FILESIZE>363392</FILESIZE>
<CREATIONDATE>11-21-2010 03:24:15</CREATIONDATE>
<VERSION>6.1.7601.17514</VERSION>
<MANUFACTURER>Microsoft Corporation</MANUFACTURER>
<PRODUCTNAME>Microsoft® Windows® Operating System</PRODUCTNAME>
<GROUP>System Bus Extender</GROUP>
</DRIVER>
<DRIVER>
<FILENAME>volsnap.sys</FILENAME>
<FILESIZE>295808</FILESIZE>
<CREATIONDATE>11-21-2010 03:23:47</CREATIONDATE>
<VERSION>6.1.7601.17514</VERSION>
<MANUFACTURER>Microsoft Corporation</MANUFACTURER>
<PRODUCTNAME>Microsoft® Windows® Operating System</PRODUCTNAME>
</DRIVER>
<DRIVER>
<FILENAME>vsmraid.sys</FILENAME>
<FILESIZE>161872</FILESIZE>
<CREATIONDATE>06-10-2009 20:37:58</CREATIONDATE>
<VERSION>6.0.6000.6210</VERSION>
<MANUFACTURER>VIA Technologies Inc.,Ltd</MANUFACTURER>
<PRODUCTNAME>VIA RAID driver</PRODUCTNAME>
<GROUP>SCSI Miniport</GROUP>
</DRIVER>
<DRIVER>
<FILENAME>VSPerfDrv100.sys</FILENAME>
<FILESIZE>68440</FILESIZE>
<CREATIONDATE>03-17-2010 22:34:36</CREATIONDATE>
<VERSION>0.0.0.0</VERSION>
<MANUFACTURER></MANUFACTURER>
<PRODUCTNAME></PRODUCTNAME>
</DRIVER>
</DRIVERS>
</SYSTEMINFO>
Thank you as i await your response.
------------------------------------
Windows 2008 Cluster Add Disk
I have rebuilt two servers. These servers were a win2k3 cluster running SQL. I am using the same SAN, Server hardware and network. I installed win2k8, Features MPIO and Failover Cluster. I seem to be having an issue with the SAN drives that I do not understand. The first node I can see the drives in Disk Manager. I brought them online and was able to format them to NTFS and write to them. The second node on the other hand can see the drives in Disk Manager but it can not bring the drives online. When I try I get a error that "the resource is in use". I would think this is normal since only one server should be able to write to a drive at a time but when I run the cluster validater it says the drives are only accessable from one node. I also tried shutting down the node that can see and write to the drives but still the second node still gets the same "resource is in use" error.
Am I missing a step for Windows 2008?
- Changed type Vincent Hu Tuesday, September 4, 2012 10:05 AM
Reply:
Yes, you need to add these disks as a cluster resource.
1. Open failover cluster manager and select the storage tab from the left-hand side.
2. Select Add a Disk from the Actions menu on the far-right side, or right-click the storage tab on the left.
3. Add all of your disk to the cluster then run the cluster validation wizard. If you run into any troubles let me know.
I hope this helps,
Chris
Please remember to mark correct answers and helpful post.
------------------------------------
Reply:
Guess I should have added more details. I have tried that but I get the error "No disk suitable for cluster disks were found". I assume this goes back to the problem I listed above.
Thanks
------------------------------------
Reply:
Open disk manager and set the disks offline on the first node. R-click them and it should be an option. Once you have done that see if they can come online on the other node or if the steps in my above post will work.
Let me know where that gets you and I will try to help,
Chris
Please remember to mark correct answers and helpful post.
------------------------------------
Reply:
I have tried that in the past as well.
My first try was straight forward. I built the servers and noticed I had twice the number of SAN disk I should have. I forgot the MPIO so I added that feature. Once that was installed both servers could see the correct number of drives. On the first server I installed the cluster feature and in Disk Manager I placed all five drives online and formated them so I had not data from the old 2k3 cluster. Ran the validater and saw that the disks came up as "Assesable from only one node". I checked the second server again and could still see the drives in Disk Manager but could not bring them online.
I then set the drives on server one offline and check the second server again with no luck. I even shutdown the first server to see if that changes anything. no luck.
Thanks again for your time.
- Edited by Zach85 Tuesday, August 14, 2012 7:20 PM edit spelling
------------------------------------
Reply:
Storage for Windows 2003 clusters may not necessarily work in Windows 2008 clusters. Your storage needs to support SCSI-3 persistent reservations in Windows 2008. Additionally, parallel SCSI is no longer supported in 2008 clusters.
The first step should have been to run the cluster validation against the nodes and storage. If this passed (and actually tested the storage) then you should have been able to create a cluster and add these disks. If the storage does not pass cluster validation, then there would be no point troubleshooting further.
Does (or did) the storage pass cluster validation tests?
------------------------------------
Reply:
He mentioned that they did not. However, you very likely may have hit the nail on the head with the SCSI-3 persistent reservations. When you run the validation test and see "Assesable from only one node" what other information does it provide you? Post what you find and potentially we can help you further.
Chris
Please remember to mark correct answers and helpful post.
------------------------------------
Reply:
Hi,
Agree with John. Please check whether your SAN is Windows Server 2008 Cluster compatible.
------------------------------------
Reply:
Sadly where I work I have no control over the SAN. I think it is an IBM DS5020. I did notice other forum items talking about the the SCSI3 persistent reservations so I sent that info to my SAN managers two days ago. I have not heard back from them yet. I will try to confirm the model and see if I can get IBM on the phone. I will update this post when I have more.
Thanks all.
------------------------------------
Reply:
Please remember to mark correct answers and helpful post.
------------------------------------
Reply:
The report has a few areas where it states issues. Below are all the Yellow items in the Storage section.
Disk ID x is only visible from one node. (this is listed for all 5 disk I have from the san)
no disks were found for disk access lat, disk arbitration, disk failover, SCSI-3 Persisten Res, SCSI VPD or file system tests.
It really seems that once there were no disks seen from both nodes all other disk results gave up with "No disks were found on which to perform cluster validation tests"
My SAN group is opening a ticket with IBM.
------------------------------------
Reply:
Please remember to mark correct answers and helpful post.
------------------------------------
Reply:
Chuck Timon Senior, Support Escalation Engineer (SEE) Windows 8 Beta Engineer Microsoft Corporation
------------------------------------
Reply:
I did run the validation, which is where I first noticed a few of my SAN drives were not working correctly.
I finished up working with my goverment contact on the SAN side. The first go around they removed the drive and "re-presented" them to my servers. This had no effect. The issue was ongoing so they brought in a few more people. They took the time to blow away all the drives on the SAN that were for these two nodes this time and recreate them. This did the trick. Apprently the luns were reserved for 2k3 and needed to be wiped so 2k8 could access them. I have little SAN experience so all I know is that all my drives are working again. Thanks to everyone that chimed in.
- Edited by Zach85 Wednesday, September 12, 2012 6:58 PM more detail added
------------------------------------
Reply:
Zach85: if you need help with DS5020, I was in test engineering on that product and would be happy to help with any SAN questions you may have. I can exchange my contact information on a more private matter than out in the forums.
Tim Dinkel Regarding technet forum
------------------------------------
Reply:
Thanks Tim. We finally have it working well. The last piece of the puzzle I should have known. I was using Microsoft's MPIO and simple things like moving the DTC app from one node to the other was taking over 3 minutes. The IBM MPIO was installed and now the DTC moves over in seconds. Once the group that controls the san recreated the LUNs (left over from Windows 2003) and the IBM MPIO was used over the MS MPIO all is well.
Thanks all for your time.
- Edited by Zach85 Tuesday, October 16, 2012 2:43 PM misspelling
------------------------------------
Reply:
tim
------------------------------------
DAG maintenance question
We have 5 member DAG in our exchange environment. Is it possible to put two DAG members to maintenance mode at a time
Many thanks
David
Reply:
We have 5 member DAG in our exchange environment. Is it possible to put two DAG members to maintenance mode at a time
Many thanks
David
Yes.
(P.S. Putting a server in "maint mode" doesnt prevent it from participating or maintaining the cluster membership or quorum)
- Edited by Andy DavidMVP Monday, October 15, 2012 1:49 PM
------------------------------------
Reply:
http://technet.microsoft.com/en-us/library/ee861125.aspx
Hope this helps.
ExchangeGeek (MCITP,Enterprise Messaging Administrator)
***Don't forget to mark helpful or answer***
**Note:(My posts are provided "AS IS" without warranty of any kind)------------------------------------
Reply:
While i trying to put second server in DAG maintenance, then i got below error. It says that abc1 server has been blocked to activate the Database (abc1 server is the first server which i have put into DAG maintenance mode
An Active Manager operation failed. Error: The database action failed. Error: An error occurred while trying to validat
-5, Server: abc2.test.com]
------------------------------------
Reply:
Check the cluster logs for more details.
Make sure server abc1 and server abc2 shouldn't have a database configured as active copy on abc1 and passive copy on abc2 & vice-verse.
ExchangeGeek
(MCITP,Enterprise Messaging Administrator)
**My posts are provided "AS IS" without warranty of any kind**
------------------------------------
Reply:
i have configured Database as below
DB Server
DAG1--> abc1,abc2,abc3
DAG2-->abc2,abc3,abc4
DAG3-->abc3,abc4,abc1
DAG4--> abc4,abc1,abc2
DAG5-->abc1,abc2,abc3
DAG6-->abc2,abc3,abc4
DAG7-->abc3,abc4,abc1
DAG8--> abc4,abc1,abc2
So you mean in the above case, we cannot put 2 servers in DAG maintenance at a time?
------------------------------------
Reply:
While i trying to put second server in DAG maintenance, then i got below error. It says that abc1 server has been blocked to activate the Database (abc1 server is the first server which i have put into DAG maintenance mode
An Active Manager operation failed. Error: The database action failed. Error: An error occurred while trying to validat
e the specified database copy for possible activation. Error: Database copy 'DRTEST-DAG01-5' has been blocked from activation on server 'abc1.test.com' by an administrative action. Reason: None specified.. [Database: DRTEST-DAG01
-5, Server: abc2.test.com]
How are you putting the server in maint mode? Using the provided script?
If so, then activate all the databases on other servers other than the ones you want to work on, then run the StartDagMaint script on each.
Or simply run suspend-mailboxdatabasecopy -activationonly on each server you want to put in maint. mode after you activate the stores on the other servers.
------------------------------------
Reply:
i have configured Database as below
DB Server
DAG1--> abc1,abc2,abc3
DAG2-->abc2,abc3,abc4
DAG3-->abc3,abc4,abc1
DAG4--> abc4,abc1,abc2
DAG5-->abc1,abc2,abc3
DAG6-->abc2,abc3,abc4
DAG7-->abc3,abc4,abc1
DAG8--> abc4,abc1,abc2
So you mean in the above case, we cannot put 2 servers in DAG maintenance at a time?
Yes, you can..
Once you run the script, make sure all the copies are active on some other servers other then one you are going to put on maintenance mode next.
ExchangeGeek
(MCITP,Enterprise Messaging Administrator)
**My posts are provided "AS IS" without warranty of any kind**
------------------------------------
Look up column in datasheet view.
Hi ,
We have a list in which we have a look up column refering to another list in the same site.
We have create a view in the list where we filter the data with specfic condition.
Now for one of the column it shows in the drop down the valus the no of times the same column is used in the list.have anyone face this issue.
Thanks,
Sudan
- Edited by Sudan12 Tuesday, October 16, 2012 10:07 AM
how to install sqlserver 2008 on windows 7 home premium 64bit
Hi,
I have Windows 7 Home Premium 64 Bit in my laptop.i am trying to install sqlserver 2008 but its not accepting it showing an error that this operating system is not compatible,
I am a s/w professional,i have to work on sqlserver 2008,how to install it in my laptop,
Thanks & Regards,
Naseer.
Reply:
PLEASE MARK ANY ANSWERS TO HELP OTHERS Blog: rorymon.com Twitter: @Rorymon
------------------------------------
Reply:
Here is the express version. Download the 64 bit version and see if it's what you need. Read the whole page for installation instructions.
http://www.microsoft.com/en-us/download/details.aspx?id=1695
- Edited by Schloicka Tuesday, October 16, 2012 3:48 AM
------------------------------------
Reply:
Hi,
Actually, you'd better to post this issue on SQL forum as this is SQL Installation problem.
http://social.msdn.microsoft.com/Forums/en/category/sqlserver
Kim Zhou
TechNet Community Support
------------------------------------
Windows Live Movie Maker, Freezing and Crashing
Please help me, Thanks.
- Changed type Jeremy_Wu Monday, October 22, 2012 6:38 PM
Reply:
Hi,
As the issues are related to Windows Live Movie Maker, it is recommended to address issues in Windows Live Movie Maker forum for better assistance.
Thanks for your understanding and hope the issues will be resolved soon!
Thanks.
Jeremy Wu
TechNet Community Support
------------------------------------
Threat Managment Gateway.
Dear All, i have install Forefornt Threat Management Gateway in our network, but i can't connect our Ipad and mobile devices with it,
so please help me i have seriouse problems.
thanks in advance
Shookrullah Qurashi
shookrullah@yahoo.com
+93 788 851 911
- Edited by SHOOKRULLAH QURASHI Saturday, October 13, 2012 2:13 PM
- Moved by Rick TanModerator Monday, October 15, 2012 9:24 AM (From:Forefront Client Security)
- Changed type Nick Gu - MSFTModerator Monday, October 22, 2012 1:47 AM
Reply:
Hi,
Thank you for the post.
As we know, there will be two scenarios, one is the outbound traffic that Ipad and mobile device unable to access the internet through TMG; the other is the inbound traffic that Ipad and mobile device unable to access the web site published by TMG server. So would you please elaborate "can't connect our Ipad and mobile devices" and what is the error message?
Regards,
Nick Gu - MSFT
------------------------------------
how to give a backup sharepoint 2010 day by day automatically
hello sir,
how to give a backup sharpoint server 2010 day by day automatically
so please help me.
Reply:
Hi Harshad123,
Check this out
http://gallery.technet.microsoft.com/sharepoint/Automate-SharePoint-2010-74b307d3
Hrishi Deshpande – Senior Consultant DeltaBahn
Blog | < | LinkedIn
Please click Mark As Answer; if a post solves your problem or Vote As Helpful; if a post has been useful to you.This can be beneficial to other community members reading the thread.
------------------------------------
Reply:
------------------------------------
Reply:
Backup what.?
Above site is helpful to schedule automatic backup.
Hrishi Deshpande – Senior Consultant DeltaBahn
Blog | < | LinkedIn
Please click Mark As Answer; if a post solves your problem or Vote As Helpful; if a post has been useful to you.This can be beneficial to other community members reading the thread.
------------------------------------
Reply:
------------------------------------
extract email address from Distinguished Names
The script below searches for mailbox with greater than equal to 2 GB in a specific server. What I want to accomplish is to send an email to the Managers of this mailboxes. Basically all the information I need is already in the $combine variable. How can i send this information to the managers? Contents of the mail should include the Display Name and the totalitemsize of a mailbox.
==========SCRIPT BEGINS HERE===============
#get mailbox that have higher than 2GB in a particular server
$server="<servername>"
$convertGB=@{Name="TotalSize (GB)";expression={$line.Totalitemsize.value.toGB()}}
$storagegrp=@{Name="StorageGroup Name";expression={$line.storagegroupname}}
$combine=@()
$stats = Get-Exchangeserver $server | Get-MailboxStatistics | Where-Object {$_.Totalitemsize.Value.ToGB() -ge 2} | select-object DisplayName,totalitemsize,LegacyDN,storagegroupname
Foreach ($line in $stats) {
$combine += get-user -identity $line.LegacyDN | select-object DisplayName,$convertGB,$storagegrp,Manager
}
$combine | sort-object -descending "TotalSize (GB)"
PoSH newbie, BaSH Oldie
- Edited by navarro_aries Thursday, September 27, 2012 5:50 AM
Reply:
--- Rich Matheisen MCSE+I, Exchange MVP
------------------------------------
Reply:
Hi Rich,
sorry for the confusion as I can no longer update the subject of my post. its not actually how to send mail in an html format as i have already aware of this.
Basically I already have the information I want in the $combine variable. What I want is to send each Manager with an email advising them about the mailbox sizes. But the Manager is in DN format. I need to search for their email address. And I think another FOrEach is required to get the value in the $combine variable and locate the Managers email address. How you go about this? I already tried searching the web but cannot find any similarity to it.
PoSH newbie, BaSH Oldie
------------------------------------
Reply:
Tried adding the line below to query the Manager's information from the $combine by using Get-Mailbox but what is happening is its generating the error below then continue searching for accounts on the whole Exchange server.
If I run Get-Mailbox -identity "<DN>" for one user it works though, only if I use the value in $combine variable then I get the error below and also it search on all the accounts in the server. Which should only be searching from the $combine variable.
ERROR:
Cannot bind argument to parameter 'InputObject' because it is null.
=====BEGIN SCRIPT ===============
Trap {"Error: $_"; Break;}
$server="<servername>"
$convertGB=@{Name="TotalSize (GB)";expression={$line.Totalitemsize.value.toGB()}}
$storagegrp=@{Name="StorageGroup Name";expression={$line.storagegroupname}}
$combine=@()
$mngr=@()
$stats = Get-Exchangeserver $server | Get-MailboxStatistics | Where-Object {$_.Totalitemsize.Value.ToGB() -ge 2} | select-object DisplayName,totalitemsize,LegacyDN,storagegroupname
Foreach ($line in $stats) {
$combine += get-user -identity $line.LegacyDN | select-object DisplayName,$convertGB,$storagegrp,Manager
}
Foreach ($line2 in $combine) {
$mngr += get-mailbox -identity $line2.Manager
}
$mngr
- Edited by navarro_aries Thursday, September 27, 2012 8:51 AM
------------------------------------
Reply:
--- Rich Matheisen MCSE+I, Exchange MVP
------------------------------------
Reply:
Hi RIch,
This worked in getting the Name of the Manager. However, how is it that getting the e={$_.Manager.Name}} will get the Managers Name and not the users name.
From my understanding for get-user the Name attribute is for the name of the user and not of the Managers name, any further clarification on this?
Also now that I have the Managers Name instead of its DN, how can I obtain the Managers SMTP address? the get-mailbox identity doesnt support display Name instead its the DN.
As always, Many Thanks for your assistance
PoSH newbie, BaSH Oldie
- Edited by navarro_aries Sunday, September 30, 2012 8:33 AM
------------------------------------
Reply:
--- Rich Matheisen MCSE+I, Exchange MVP
------------------------------------
Reply:
Hi Rich,
Yes this one worked, I was planning to rewrite my script but realising that I have already put so much effort in it. I rather leave it as it is and just put comments in it to help me remind myself.
I'm still learning on posh and ill note what you have advised here.
Thanks a lot!!
PoSH newbie, BaSH Oldie
------------------------------------
WebProvisioned event vs feature Stapling mechanism.
Hi All,
wherever we can use the feature stapping, we can use the webprovisioned event too. so can we say that WebProvisioned event has replaced the feature Stapling mechanism to extend the site defination.
Regards Amit
- Changed type Restless Spirit Tuesday, October 16, 2012 6:46 AM
Reply:
Feature Stapler is still relevant while creating a new site collection. Since it's based on site definition, feature stapler forms a superset vs. WebProvisioned event receiver which is applicable only for subsites. I am assuming that feature stapler holds good even for a site being created from a site template (.wsp).
SPWebEventReceiver.WebProvisioned Method
Synchronous After event that fires after a subsite is fully provisioned and the provisioning process has stopped, but does not fire when the root web site of a new site collection is created.
- Edited by Guru Karnik Tuesday, October 16, 2012 7:11 AM
------------------------------------
Windows Server 2003 Problem?
hello while performing some operations on server i am getting this particular error.
" The instruction at "0x0036413b" referenced memory at "0x10773d28". The memory could not be written.
Click on ok to terminate the program.
Click on cancel to debug the problem.
- Edited by bharat _singh Tuesday, October 16, 2012 5:50 AM
- Changed type bharat _singh Tuesday, October 16, 2012 10:26 AM
- Changed type bharat _singh Tuesday, October 16, 2012 10:26 AM
Reply:
Hi Bharat,
This forum is dedicated to Microsoft Project Server related problems and issue. Please repost your question using appropriate forum
http://social.technet.microsoft.com/Forums/en-US/winservergen/threads
Hrishi Deshpande – Senior Consultant DeltaBahn
Blog | < | LinkedIn
Please click Mark As Answer; if a post solves your problem or Vote As Helpful; if a post has been useful to you.This can be beneficial to other community members reading the thread.
------------------------------------
does windows 7 has special tool to find out which hardware is defect in the time of problems ?
hello,
I want to know if windows 7 has some special tool to find out which hardware is not functioning good or is defect such as video card , proccesor ,harddisk controller ect. (I mean the hardware it self not hardware driver). I know there is third party tools for this problem,one of them is ULTRA X but they are little expensive.
thanks
johan
h.david
- Changed type Kim Zhou Tuesday, October 16, 2012 4:36 AM
Reply:
Hi,
Please do not post the same question again and again.
Kim Zhou
TechNet Community Support
------------------------------------
Exchange 2010 CAS and Certificates
Internal Exchange 2010 environment was partially configured by prior staff, so we are in the process of identifying issues and moving towards completing the configuration in stages.
Exchange 2010 SP2 - using OWA, ActiveSync, and eventually Outlook Anywhere
External:
webmail.externaldomain.com
external requests go through TMG
certificate: has 3rd-party wildcard certificate *.externaldomain.com defined on TMG listener
Internal:
email.domain.local - name of CAS array, set as RPC Client Acces server on all databases
server1.domain.local, server2.domain.local, server3.domain.local - FQDN of each CAS
InternalURL: https://servername/owa (i.e. https://server1/owa on server1 CAS for owa,ecp, etc.)
ExternalURL: https://webmail.externaldomain.com
certificate: SAN cert from internal CA
1. Load-balancing was not set up and the DNS record email.domain.local points directly to server1.domain.local. The TMG policy publishes directly to server1 as well. We are setting up Windows NLB in the interim for all 3 CAS (moving to F5 next year), and pointing email.domain.local to the IP of the NLB. What URL's do we need to update to use the email.domain.local CAS array - is it just owa, ecp, and ews?
2. The ExBPA reports the following error message:
Certificate SAN Mismatch
The subject alternative name (SAN) of SSL certificate for https://webmail.externaldomain.com/ews/exchange.asmx does not appear to match the host address. Host address: webmail.externaldomain.com. Current SAN: DNS Name=*.externaldomain.com, DNS Name=externaldomain.com.
We do not get any security warnings or cert errors using OWA internally or externally (no problems using OWA or ActiveSync). Is the above error an actual problem that needs to be fixed or is it just ExBPA not liking wildcard certs?
What are the specific names needed in the internal SAN cert? The "email.domain.local" SAN cert currently has the following:
email.domain.local
autodiscover.domain.local
legacy.domain.local
server1.domain.local
server2.domain.local
server3.domain.local
webmail.externaldomain.com
autodiscover.externaldomain.com
legacy.externaldomain.com
Thanks for reading!
Reply:
1. Anything you want to load balance, which I would think would be everything.
2. I recommend you deploy split-brain DNS so you can use the same hostnames internally as you use externally. That will greatly simplify your certificate task and make it much more likely you can get certificate from a public CA that works for you. Seriously, you can do everything in Exchange 2010 with two names, one for autodiscover, and one for everything else. There is generally no need to put individual hostnames in the certificate unless you publish services under those names, which is not a best practice. The legacy hostname is required only if you have Exchange 2007 or 2003 servers.
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
------------------------------------
Reply:
1. Your internal cert needs to have SAN of server1/2/3.domain.local if you have any Outlook clients that joined your domain.
2. Wild card cert as subject name (common name) is not supported by Microsoft. It's obviously agaist best practice. But so far I see lots of organizations are doing this way without major problem.
- Edited by Li Zhen Friday, October 12, 2012 4:49 AM
------------------------------------
Reply:
I don't think split-DNS is a good idea.
For most organization, the external names are also used by internal machines. Typically DNS forwading is already in place. If you break the forwarding and implement split-DNS, you need to analyze the global impact because DNS is fundamental thing. Virtually everything on the network could be affected.
Further more, split-DNS need manually maintenance which comes with a recursive cost. Setting cert names may appears to be difficult but it's a one-time job.
------------------------------------
Reply:
You would be very wrong. Split-brain DNS is absolutely the way to go. In addition to solving the certificate issue I mentioned in my post, it keeps requests from having to go outside to the Internet and back in through the firewall.
Creating an unroutable DNS internal domain creates more problems than it solves and causes more user confusion than is necessary.
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
------------------------------------
Reply:
With split-brain DNS you don't need an "internal cert". One cert will work everywhere.
And you are also wrong on another point. Wildcard certificates are supported and are not against best practice. There can be issues with the use of a wildcard certificate but they're going away fast as operating systems and mobile devices mature. Lots of people use wildcard certificates without issue. Personally, I think it easy enough to use a split-brain DNS and simple UCC certificate with two SANs that it's unnecessary to bother with a wildcard certificate, but my opinion is not based on any real or perceived problems with wildcard certificates.
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
- Edited by Ed CrowleyMVP Friday, October 12, 2012 3:41 PM
------------------------------------
Reply:
Without using split-DNS, you also need one cert with proper SAN name. Even if you need 2, the cost of 1 SSL cert compared to the cost of yeard of DNS maintenance efforts, which is higher?
About wildcard cert as subject name, you're wrong also. It's not supported,
http://technet.microsoft.com/en-us/library/hh202161.aspx
This is a Lync article but it mentioned Exchange CAS cert
There is no support for a wildcard entry as the subject name (also referred to as the common name or CN) for any role. The following server roles are supported when using wildcard entries in the SAN:
- Reverse proxy. Wildcard SAN entry is supported for simple URL publishing certificate.
- Director. Wildcard SAN entry is supported for simple URLs in Director web components.
- Front End Server (Standard Edition) and Front End pool (Enterprise Edition). Wildcard SAN entry is supported for simple URLs in Front End web components.
- Exchange Unified Messaging (UM). The server dos not use SAN entries when deployed as a stand-alone server.
- Microsoft Exchange Server Client Access server. Wildcard entries in the SAN are supported for internal and external clients.
- Exchange Unified Messaging (UM) and Microsoft Exchange Server Client Access server on same server. Wildcard SAN entries are supported.
------------------------------------
Reply:
You absolutely do not need split-DNS in order to keep the request from going outside. Internal DNS won't direct the traffic to outside.
If the domain is designed to be used internally from day 1, it make no sense to resolve it from outside. Isn't it?
BTW, in DNS term, there's no such thing as routable/unroutable, it's resolvable/unresolvable.
------------------------------------
Reply:
With split-brain DNS you need one certificate. The same certificate can be used internally and externally. You don't have to find a public CA that will issue you a certificate with your internal domain that they can't prove that you own since it can't be registered on the Internet. (You can pick nits with my terminology if you want, but it doesn't help your point.) Split-brain DNS is absolutely the way to go.
Your link is irreelevant. It refers to Lync Server. This is an Exchange Server forum.
The remaider of your post only validates what I said--the only Exchange references say that wildcard certifcates ARE supported.
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
------------------------------------
Reply:
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
- Edited by Ed CrowleyMVP Friday, October 12, 2012 4:56 PM
------------------------------------
Reply:
- Edited by Li Zhen Friday, October 12, 2012 5:12 PM
------------------------------------
Reply:
True, if URLs are properly configured. But you still need a certificate for all those web services that has both the internal URLs' and external URLs' hostnames unless you have a reverse publishing device, and in that case even with a reverse publishing device, non-domain-joined PCs, internally connected tablets and mobile devices may connect to the wrong URL since they will look to Autodiscover as if they are external.
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
------------------------------------
Reply:
Who says internal used zone is not registered? It's a common practice to use a registered DNS zone or a sub-zone of the public zone as internal zone. Any public CA will issue the cert as long as the zone is registered by your organization. Isn't it?
Why you say it's not relevant? Did it mention Exchange CAS? Is it the same Exchange product? Does Microsoft has a dedicated Exchange version used for Lync only?
- Edited by Li Zhen Friday, October 12, 2012 5:15 PM
------------------------------------
Reply:
How much does it cost to buy a SSL cert? A few hundred bucks per year at most. Isn't it?
How much does it cost to maintain a split-DNS zone manually? A few hundred bucks per man-day at least. Isn't it?
Which one is more cost effective?
- Edited by Li Zhen Friday, October 12, 2012 5:25 PM
------------------------------------
Reply:
How many man-days does it take to create a new internal DNS zone and create records to duplicate the external DNS ones with internal IP addresses? Maybe fifteen minutes' effort for most sites. Once.
So, it's about fifty bucks, max.
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
- Edited by Ed CrowleyMVP Friday, October 12, 2012 5:55 PM grammar
------------------------------------
Reply:
- Edited by Li Zhen Saturday, October 13, 2012 2:29 AM
------------------------------------
Reply:
So on the rare occasions when you have to add a hostname to external DNS, you also add one to internal DNS. What's the big deal? Seriously, dude, you're proving my point!
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
------------------------------------
Reply:
It's hardly ever done. And in this particular case--we are discussing a real live case here--it isn't. It's a .local domain. So your point is moot.
There is no point in using a different domain for internal DNS and Active Directory. Enlightened organizations use the same namespace because it makes things easier for software development, configuration, certificates, and user understanding. Face it, Li Zhen, you're defending an old practice that makes no sense today.
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
------------------------------------
Reply:
- Edited by Li Zhen Saturday, October 13, 2012 6:52 AM
------------------------------------
Reply:
The way you talked is more like recommending split-DNS as a general solution, not only this case. Isn't it?
Never mind, let's talk about this case. AD domain name is domain.local. But who says internal URL must be domain.local? I can easily change all the internal url to something like mail.exchange.domain.com(using sub-domain of registered domain) or mail.domain.net (if you have another registered domain). It's a 5 mins job. No need to change the DNS infrastructure design which potentially affects everything on the network. No further maintenance like manually sync 2 DNS zones. Isn't it?
- Edited by Li Zhen Saturday, October 13, 2012 7:05 AM
------------------------------------
Reply:
And your split-DNS method cannot even save a cert. I can use a single cert also without split-DNS.
If your cert is server.domain.com, I also use one cert. Only need an additional SAN name is server.exchange.domain.com.
Split-DNS gives you nothing but additional efforts for DNS re-design and manual synchronization of 2 DNS zones.
------------------------------------
Reply:
How do you know it's rare occasion? How do you know the external DNS and internal DNS are maintained by the same team? Looks like you're running a one-man shop.
huh? Split-DNS is very common among very large orgs and is something I would recommend as well. This isnt the 1990s anymore.
------------------------------------
Reply:
And your split-DNS method cannot even save a cert. I can use a single cert also without split-DNS.
If your cert is server.domain.com, I also use one cert. Only need an additional SAN name is server.exchange.domain.com.
Split-DNS gives you nothing but additional efforts for DNS re-design and manual synchronization of 2 DNS zones.
Additional efforts? You sound like a one-man shop.
------------------------------------
Reply:
And your split-DNS method cannot even save a cert. I can use a single cert also without split-DNS.
If your cert is server.domain.com, I also use one cert. Only need an additional SAN name is server.exchange.domain.com.
Split-DNS gives you nothing but additional efforts for DNS re-design and manual synchronization of 2 DNS zones.
Additional efforts? You sound like a one-man shop.
When you convert from forwarding-DNS to split-DNS:
1. You're actually doing a re-org of the DNS infrastructure. Potentially all systems that make use of this DNS server could be affected. It may not really cause problem but you need to at least perform impact analysis. Owners of all affected system would be involved. Isn't it additional efforts?
2. Going down the road, you have 2 zones with the same name. You need to manually synchronize the records of the 2 zones from time to time. Isn't that additional efforts?
Do I sound like a one-man shop?
- Edited by Li Zhen Saturday, October 13, 2012 3:25 PM
------------------------------------
Reply:
I'm not saying split-DNS is bad. You may have tons of reasons to setup split-DNS. Not a problem.
What I'm saying is that it's not a good idea to convert forwarding-DNS to split-DNS just to save an Exchange cert. The cost of converting and maintaining the split-DNS will be much more higher than the cost of an SSL cert.
- Edited by Li Zhen Saturday, October 13, 2012 3:28 PM
------------------------------------
Reply:
Seems someone misunderstood what I said here. Let me clarify it.
1. I'm not saying split-DNS is absolutely bad. I'm not recommending converting your split-DNS to forwarding-DNS. If you're using split-DNS now and you're happy with it, no problem. Or if you have some good reasons to convert to split-DNS, why not?
2. On the other hand, if you're happy with forwarding-DNS before you hit Exchange cert problem, and you want to convert to split-DNS in order to resolve the cert issue or to save an SSL cert, I would say, it's not a good idea. The reason is, the cost of converting and ongoing maintenance will be at least 10 times of the cost of an SSL cert if you're thinking from the view point of a CIO.
- Edited by Li Zhen Saturday, October 13, 2012 3:55 PM
------------------------------------
Reply:
I will quote you directly:
"I don't think split-DNS is a good idea."
Perhaps something was lost in translation.
You are still wrong. No "conversion" is required. All that is required is the creation of the zone and addition of the external hostnames with their corresponding internal IP addresses if applicable, which costs almost nothing. How long does it take to add a record to DNS? Seriously, you're going to ridiculous lengths to justify your outdated personal bias.
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
------------------------------------
Reply:
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
------------------------------------
Reply:
OMG! Is this an Exchange forum or DNS forum? Did you recommend split-DNS as a solution of Exchange cert issue? Do you know something called context?
Seems that I have to teach you that when I say "Split-DNS is not a good idea" in this context, I mean "Split-DNS is not a good idea to resolve this problem".
- Edited by Li Zhen Sunday, October 14, 2012 9:25 AM
------------------------------------
Reply:
Split-brain DNS is a good idea, period.
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
------------------------------------
Reply:
Split-brain DNS is a good idea, period.
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
and a Microsoft best practice recommendation when deploying Exchange 2010.
------------------------------------
Reply:
Well, I never see any Microsoft article saying split-DNS is better than forwarding-DNS.
Even there is, I secrious doubt it. To me, it's not important who says it. The important thing is why he says so.
------------------------------------
Reply:
I have lots of experience that tells me that it's better, and I've explained my reasons and you haven't refuted them.
Just try to get a public certificate issuer to put a .local domain name in as a SAN.
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
------------------------------------
Reply:
I have mentioned that, but I can repeat it.
Without split-DNS, you don't need to get a cert with the name of xxx.domain.local.
You can set your interl URLs to xxx.exchange.domain.com, where exchange.domain.com is assigned to Exchange.
You cert need to has the names of xxx.exchange.domain.com. Any CA will have no problem to issue you such cert because you're the registered owner of domain.com.
Is that clear?
------------------------------------
Reply:
Now it looks like you don't understand what split-brain DNS is. Perhaps you should make sure you understand what you're arguing before you post.
Do you seriously think it's easier to make a subdomain of your external domain that's an internal domain? That's so much easier than creating split-brain DNS.
Not.
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
- Edited by Ed CrowleyMVP Monday, October 15, 2012 5:35 AM
------------------------------------
Reply:
1. I'm sure I understand the general term split-brain DNS. But I may not understand your own term split-brain DNS.
2. Yes, it's definately easier than split-DNS because it's a one-time job. Once setup, no more manual sync required.
3. Besides the running cost, manual sync is also prone to human error. If a VVIP is unable to access a mission critical system for a few hours due to your DNS not updated, I'm sure you'll be in a big trouble.
- Edited by Li Zhen Monday, October 15, 2012 7:03 AM
------------------------------------
Reply:
Well, I never see any Microsoft article saying split-DNS is better than forwarding-DNS.
Even there is, I secrious doubt it. To me, it's not important who says it. The important thing is why he says so.
If you read my post, it said specifically
"and a Microsoft best practice recommendation when deploying Exchange 2010."
http://technet.microsoft.com/en-us/library/dd638104.aspx
As a best practice, we recommend that you use split DNS for the Exchange hostnames that are used by clients. Split DNS refers to a DNS server configuration in which internal DNS servers return an internal IP address for a hostname and external (Internet-facing) DNS servers return a public IP address for the same hostname. Because using split DNS uses the same hostnames internally and externally, this strategy enables you to minimize the number of hostnames you'll need.
------------------------------------
Reply:
1. I'm sure I understand the general term split-brain DNS. But I may not understand your own term split-brain DNS.
2. Yes, it's definately easier than split-DNS because it's a one-time job. Once setup, no more manual sync required.
3. Besides the running cost, manual sync is also prone to human error. If a VVIP is unable to access a mission critical system for a few hours due to your DNS not updated, I'm sure you'll be in a big trouble.
I know lots of DNS admins at large companies ( including the one I work at) that would disagree with you.
------------------------------------
Reply:
- If I can understand it, I will make my own judgement. Who says it? Who cares?
- If it's something I could not understand, then I'll ask who says it, because I need that to help me make judgement
DNS is something I can understand very well. So, if you only say someone disagree with me, I'll simply ignore it because it means nothing to me. If you tell me why they disagree with me, I'd like to discuss with you.
- Edited by Li Zhen Monday, October 15, 2012 12:36 PM
------------------------------------
Reply:
Split DNS refers to a DNS server configuration in which internal DNS servers return an internal IP address for a hostname and external (Internet-facing) DNS servers return a public IP address for the same hostname. Because using split DNS uses the same hostnames internally and externally, this strategy enables you to minimize the number of hostnames you'll need.This statement is true. But, what is the benefit by "minimize the number of hostnames" ? Nothing. On the other hand, manual synchronization of 2 zones will definitely raise IT operational cost. Isn't it?
------------------------------------
Reply:
1. I'm sure I understand the general term split-brain DNS. But I may not understand your own term split-brain DNS.
2. Yes, it's definately easier than split-DNS because it's a one-time job. Once setup, no more manual sync required.
3. Besides the running cost, manual sync is also prone to human error. If a VVIP is unable to access a mission critical system for a few hours due to your DNS not updated, I'm sure you'll be in a big trouble.
I know lots of DNS admins at large companies ( including the one I work at) that would disagree with you.
Dear Andy,
If you disagree with me and would like to discuss it with me, please tell some contents.
"XXX is good", "XXX recommends this", "XXX disagree with you" means nothing to me unless you also tell me why.
------------------------------------
Reply:
1. I'm sure I understand the general term split-brain DNS. But I may not understand your own term split-brain DNS.
2. Yes, it's definately easier than split-DNS because it's a one-time job. Once setup, no more manual sync required.
3. Besides the running cost, manual sync is also prone to human error. If a VVIP is unable to access a mission critical system for a few hours due to your DNS not updated, I'm sure you'll be in a big trouble.
I know lots of DNS admins at large companies ( including the one I work at) that would disagree with you.Dear Andy,
If you disagree with me and would like to discuss it with me, please tell some contents.
"XXX is good", "XXX recommends this", "XXX disagree with you" means nothing to me unless you also tell me why.
This is probably not the correct forum for this,so this will be my last post in this thread. Suffice it say, many prefer Split DNS because they find it easier to manage and maintain. The only large company that I know of personally that does not use split DNS is a bank and they didnt because they never changed anything. :P
------------------------------------
Reply:
------------------------------------
Reply:
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
------------------------------------
Reply:
How many changes? It depends on business requirement. It can be as low as 0 change per month. It can be as high as 100 changes per month. Who knows?
No matter how many changes you have, you need to setup a procedure of manual synchronization. This is called SOP. You need to assign someone to take care of this job. Hopefully you understand what I'm saying. You also need to take the risk of human error. System unavailability may cause your org to lose thousands of dollars per hour.
I'm using forwarding-DNS, I don't need to worry all these at all.
------------------------------------
Reply:
I know! I've told you! The answer is that it's very close to 0 per month for all organizations.
Split-brain DNS makes Exchange certificates much easier, and that is the topic of this thread. It also simplifies URLs for end users, and simplifies DNS overall.
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
------------------------------------
Reply:
------------------------------------
Reply:
1. You need to remove the conditional forwading, I do nothing.
2. You need to create a new zone, I do the same.
3. You need to create internal host records, I do the same.
4. You need to add the public DNS to internal zone, I do nothing.
5. You need to do DNS changes X times per year, I do nothing.
6. You need 1 Exchange cert from public CA, I need the same.
7. Your internal traffice won't go out, mine is the same.
You got only extra work, no benefit.
------------------------------------
Reply:
1. Conditional forwarding was not required in the first place.
4. That makes no sense.
5. X is approximately 0.
8. Your users need to know about a different zone for services like OWA for internal versus external.
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
------------------------------------
Reply:
I know. You guess or make stuff up.
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
------------------------------------
Reply:
I know. You guess or make stuff up.
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
Everyone can say that. A two year old boy like that tone the most.
------------------------------------
Reply:
1. Conditional forwarding was not required in the first place.
4. That makes no sense.
5. X is approximately 0.
8. Your users need to know about a different zone for services like OWA for internal versus external.
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
1. Condition forwarding was there already. If it was not there, you don't need split-DNS.
4. Same as above. If you don't need that, you don't need a split DNS.
5. That's your guess. Even it's close to 0, your effort is more than 0. Mine is 0.
8. Definately no need. They can use the same URL.
- Edited by Li Zhen Tuesday, October 16, 2012 3:39 AM
------------------------------------
Reply:
The point is that there is nothing to change with regard to conditional forwarding. If the external zone is created in internal DNS, then it is used for lookups.
You're welcome to continue posting, but I've rather proved my point.
Ed Crowley MVP "There are seldom good technological solutions to behavioral problems."
------------------------------------
Reply:
For 99.9% of the organizations, internal client need to resolve public names. Isn't it?
If the split-DNS was not there yet, there must be a conditional forwaring in place already. Isn't it?
That's why I said you need to remove the conditional forwarding. Is that clear?
------------------------------------
How do I report this Excel 2010 recalculation bug to Microsoft?
How do I report this Excel 2010 recalculation bug to Microsoft?
I reported it at . . .
http: //answers.microsoft.com /en-us/office/forum/office_2010-excel/excel-2010-recalculation-bug-works-ok-in-xl2003/ edc64f88-7ae6-4ab7-926f-3595bf8b56ae
I have a workaround, but I will need to implement in hundreds of files in as of yet undetermined cells.
Recalculation not working in Excel 2010, but does it in 2003. . .
In a blank workbook in a blank worksheeet . . .
Cell A1 is "=MAX(A4:A5)"
Cell A2 is "=A1"
Cells A3:A5 is an Excel Table (created from Insert tab, Tables group, Table)
Cell A3 is "Nbr"
Cell A4 is "1"
Cell A5 is "2"
1 Review formulas in cells A1 & A2
2 Enter a "3" into cell A6
3 Again, review formulas in cells A1 & A2
4 Observe values in cells A1 & A2
5 Note that A1 does not equal A2
And yes, calculation is set to Automatic.
When I enter a "3" into cell A6 . . .
Cell A1 changed from "=MAX(A4:A5)" to "=MAX(A4:A6)" and displays value "3"
Cell A2 is "=A1" and yet displays value of "2" and formulas using cell A2 calculate as "2" and not "3"
I do expect a change in the formula in Cell A1.
And I do get a change in the formula in Cell A1.
This is because the Cells A3:A6 are in an Excel Table not an Excel range.
Yet the formula of Cell A2 does not recalculate to equal Cell A1.
Reply:
Try here:-
------------------------------------
Reply:
------------------------------------
Reply:
------------------------------------
Reply:
Top right hand corner states:-
Products currently
accepting bugs
------------------------------------
Reply:
Hi,
I have tried the steps you described in the post, and Cell A2 always the same as Cell A1. And I also use Excel 2010.
So how about create a new file to check the issue?
Try to start the file in safe mode to check the issue:
http://office.microsoft.com/en-us/excel-help/work-with-office-safe-modes-HP010354300.aspx
Jaynet Zhang
TechNet Community Support
------------------------------------
Reply:
Charles Excel MVP The Excel Calculation Site http://www.decisionmodels.com/
------------------------------------
Reply:
Charles,
Thank you extremely very much.
I really could not find an appropriate site at Connect for MS Office or Excel.
Yes, it is very important to me because I have many many "automatic" files - files that, upon opening, import external data from external databases, calculate additional formulae, summarize in pivot tables and graph in pivot graphs - all automatically simply from opening the file. These files have several formulae that each depends on a similar set of conditions as described in the "bug". So my entire auto update has a big monkey wrench when things do not calc. And to reprogram each cell that contains a "non-calculating formulas would require maybe 3 or 4 weeks of dedicated effort for "my" files. Many of my files I have shared with friends and co-workers and their copies do not work correctly either. So all-in-all, I might be sitting on the tip of an iceberg that I created. Everything worked fine in XL 2003, and when we updated to XL2007, I hadn't noticed errors, although I personally cannot confirm XL2007 performance, yet others have stated that XL2007 works OK. I only used XL 2007 for a few months before updating to XL2010 after which the files starting slinging organic matter on the rotating oscillator.
Anyways, thanks again and if it is possible for me to report via connect, how and where would I do that?------------------------------------
Reply:
http://connect.microsoft.com/. Am I missing something that you are seeing? If so, please could you help me and identify the specific steps I need to take, or the direct url for reporting an Excel bug.
------------------------------------
Reply:
@ Jaynet,
Thanks for offering the Excel safe-mode suggestion. Unfortunately, the XL2010 problem has been verified by no fewer than 6 completely distinct computers / users all in different companies &/or private systems. The issue is not if the problem can be resolved using safe-mode, the issue is that the formulae do not recalculate when they should recalculate.
Respectfully, I do not know the following to be factual true, but I suspect that you are not seeing the problem because you are not using an Excel table, but rather an Excel range that you think is a table. The problem exists when referencing cells that in-turn reference "table" ranges. "Cells A3:A5 is an Excel Table ***** (created from Insert tab, Tables group, Table) *****
Sincerely
------------------------------------
Reply:
gizzzzmo,
Presumably you have noticed that this bug only occurs if the =MAX() formula is constructed before the Table is created.
If you construct the formula after the table was created it uses the Table Reference syntax rather than range Reference syntax, and works OK.
Charles Excel MVP The Excel Calculation Site http://www.decisionmodels.com/
- Edited by cHARLES_wILLIAMS MVPMVP Friday, October 12, 2012 7:58 AM
------------------------------------
Reply:
Hi Charles,
Yes, I noticed. Most of my files were created in XL2000 or XL-XP or XL2003 - - - only a few in XL2007 or XL2010. The automatic table reference syntax is one workaround, although I have hundreds of scattered formulae as I previously stated. Another workaround is to modify the formula to make it volatile, such as A2=A1+today()-today() - - - but for me, that also involves hundreds of changes. The automatic table reference syntax is the default installation configuration for my XL2010, yet that preference can be disabled after installation in the Excel options. The programmers failed to make XL2010 backwards compatible in this situation, and in my humble opion, they erred, and I think I should have a direct method to report that my purchased product fails to perform as it should.
By the way, thanks again and if it is possible for me to report via connect, how and where would I do that?
Sincerely . . .
------------------------------------
Reply:
Tables were only introduced in XL 2007 and the precursor Lists feature in XL 2003, so any files created in XL2000 or Xl2002 should not have this problem unless you have added the Tables later on.
Probably the simplest bypass is to do a single Application.CalculateFull after importing all the additional data. Since the dependency tree is correct any subsequent recalcs that do not involve extending the Tables will work correctly.
Charles Excel MVP The Excel Calculation Site http://www.decisionmodels.com/
- Edited by cHARLES_wILLIAMS MVPMVP Monday, October 15, 2012 4:36 PM
------------------------------------
Reply:
Well I could not find a direct website where I could submit to Microsoft the bug that exists in Excel 2010 and 2013. So I called <phone o:ls="trans" w:st="on">1-800-936-5800</phone> and spoke with a customer service rep. She informed me that if I open a "case" with tech support, I would not be charged any money if the tech support rep determined that the problem is an actual "bug". So being the gambler that I am, I rolled the dice, and provided her with my credit card number. She processed a "pre-authorized fee" of $259, opened a case, and provided me with the case number. Less than 1 hour later, I was contacted by a tech support engineer, and in less than 5 minutes he was able to re-create the problem. Then he excused himself from the phone call saying that he needed to do some checking. One hour later he called back and relayed the following . . . He took the situation to his peers, who were also able to re-create the problem. Then he took the situation to the highest ranking senior tech support engineer, and that person confirmed that it is a bug. So I do not have to pay the $259 and the bug is now officially reported to Microsoft by me. So what remains to be seen is how soon the problem is remedied.
My opinion is that Microsoft should have better methods for reporting bugs.
------------------------------------
how to convert the article page to PDF document?.
Dear All,
how to convert the article page to PDF document?.
Thanks
swapna
SWAPNA
Reply:
-victor
Be a part of the community, please remember to indicate if your question/comment has been answered or is helpful.
------------------------------------
Reply:
One option is to create a word document template, insert content through Open Office Xml, generate the word document, save it to a library/temp location and convert to PDF using word automation services.
Similar Thread: generate a word file by completing a Form
------------------------------------
Reply:
Hi Swapna,
I am not quite sure whether the "Word Automation Services" support the .ASPX files on the run time. I would recommend the iText open source application for your requirement.
You can code it yourself and get all bytes by passing your article page URL through "WebRequest" class.
Once you get the related file's in bytes push back them to "iText" related methods and class to generate the .pdf
Helpful links:
http://iamdarren.net/wordPress/2009/09/c-itextsharp/
http://msdn.microsoft.com/en-us/library/debx8sh9.aspx
http://www.ujihara.jp/iTextdotNET/en/examples.html
Murugesa Pandian.,MCTS|App.Devleopment|Configure
------------------------------------
Activation (GUI) !
What happened to the GUI to enter the product key and activate Windows 8 Enterprise addition?
Why we have to use CMD to do that?
Reply:
------------------------------------
Reply:
Thanks for the link, although it made it easier now but still not as simple as it was in Windows 7.
------------------------------------
viso and excel solutions
- Moved by Max Meng Tuesday, October 16, 2012 1:47 AM Off-topic (From:Visio General Questions and Answers for IT Professionals)
Reply:
I hope this isn't solvent abuse!
Paul Herber, Sandrila Ltd. Engineering and software shapes for Visio
Sandrila Ltd
------------------------------------
Reply:
Used to clean road tar from your car wheels?
:-)
If this answer solves your problem, please check Mark as Answered. If this answer helps, please click the Vote as Helpful button. Al Edlund Visio MVP
------------------------------------
Reply:
I hope not, the car was valeted on Wednesday!
Paul Herber, Sandrila Ltd. Engineering and software shapes for Visio
Sandrila Ltd
------------------------------------
Reply:
Joking aside, does this add to the discussion ?
http://blog.bvisual.net/2011/05/24/data-import-export-features-in-visio-2010/
al
If this answer solves your problem, please check Mark as Answered. If this answer helps, please click the Vote as Helpful button. Al Edlund Visio MVP
------------------------------------
High Availability & Disaster Recover Site between SCOM 2007 & 2012
Hi,
Interesting case with a customer he requested, appreciate guidance if possible
the customer own two branches
Office 1: Located in UK "Already Using SCOM 2007 one RMS including Reporting & ACS"
Office 2: Located in Italy "he want to install SCOM 2012"
User requested the following:
1. Office 1 Use OpsMgr 2007
2. Office 2 User OpsMgr 2012
3. Office 1 Monitor all servers on both office 1 & 2
4. Office 2 Monitor all servers on both office 1 & 2
simply he want to create a high availability scenario between OpsMgr 2007 & 2012
after some searching i found this topic:
Monitoring Operations Manager from a Second Management Group
http://technet.microsoft.com/en-us/library/hh212734.aspx
I also found this post show the differences between multi-homed in SCOM and OM 2012 and i understand it
http://thoughtsonopsmgr.blogspot.com/2011/08/dude-where-is-multi-home-option-for.html
but the question here is can SCOM agent report to OM 2012 RMS ? or i must update the agent to 2012 ? AND IF DID will the OM 2012 Agents report normally to the SCOM 2007 ?
- Edited by Sn0w_MOnkEY Monday, October 15, 2012 10:47 AM
Reply:
Hi, agents 2012 can work with 2007 and 2012 management groups. it's better to upgrade agents to 2012 version.
as for Monitoring Operations Manager from a Second Management Group
it will not provide you with a high availability as you'll only get the state of your management servers but not all inf. about agents from another Management group. In your scenario you need multihoming.
- Edited by Alexis Yakovlev Monday, October 15, 2012 11:19 AM
------------------------------------
Reply:
Hi, agents 2012 can work with 2007 and 2012 management groups. it's better to upgrade agents to 2012 version.
as for Monitoring Operations Manager from a Second Management Group
it will not provide you with a high availability as you'll only get the state of your management servers but not all inf. about agents from another Management group. In your scenario you need multihoming.
Hi Alexis,
1st thanks for your reply, 2nd i applied the multihoming scenario and i faced two issues:
1st issue i can't add/monitor the primary RMS > meaning i can't install the OM 2012 Agent on the 2007 RMS Server .. both RMS servers can't monitor each other is this normal ?
2nd issue i have sccm 2007 on 64bit server and already 2007 32bit Agent installed on that machine, with some search i found the following note "If you attempt to upgrade a 32-bit agent that was installed on a 64-bit machine, the upgrade of the agent will fail."
So i removed the 2007 32bit agent and tried to install the 2012 32bit agent but info message show up "this installation package is not supported by this processor type" and i guess he only accept 64bit > if i installed the 64bit i won't be able to monitor the SCCM 2007 .. !
------------------------------------
Reply:
Hi,
1. You dont need to install agent on management servers... it's normal (in this situation Monitoring Operations Manager from a Second Management Group might help but not sure it will work with old management group and I personnally did not see it in action)
2. Yes. You are right, you need remove old 32bit agent and install new 64bit agent on 64bit OS. Why do you think 64bit agent won't be able to monitor sccm 2007?
some extracts from SCCM 2007 MP Guid 6.0.6000.3
1 Operating system architecture detection logic was updated to determine 64-bit operating systems.2. The monitoring pack adds support for monitoring Configuration Manager 2007 SP2 in a 64-bit environment with Operations Manager 2007 R2 or Operations Manager 2007 SP1 hotfix (KB971541). This enables the Monitoring pack for Configuration Manager 2007 SP2 to work with both the 32-bit and the 64-bit Operations Manager 2007 agent.
3. This enables the monitoring pack to work with both the 32-bit and the 64-bit Operations Manager 2007 agent.
------------------------------------
Reply:
Without installing 32-bit agent the ConfigMgr Site Hierarchy & State and Diagram will be Not Monitored and blank :(Hi,
1. You dont need to install agent on management servers... it's normal (in this situation Monitoring Operations Manager from a Second Management Group might help but not sure it will work with old management group and I personnally did not see it in action)
2. Yes. You are right, you need remove old 32bit agent and install new 64bit agent on 64bit OS. Why do you think 64bit agent won't be able to monitor sccm 2007?
some extracts from SCCM 2007 MP Guid 6.0.6000.3
1 Operating system architecture detection logic was updated to determine 64-bit operating systems.
2. The monitoring pack adds support for monitoring Configuration Manager 2007 SP2 in a 64-bit environment with Operations Manager 2007 R2 or Operations Manager 2007 SP1 hotfix (KB971541). This enables the Monitoring pack for Configuration Manager 2007 SP2 to work with both the 32-bit and the 64-bit Operations Manager 2007 agent.
3. This enables the monitoring pack to work with both the 32-bit and the 64-bit Operations Manager 2007 agent.
------------------------------------
Reply:
I see no issue with 6.0.6000.3
"Site hierarchy discovery now succeeds even if a site or component server does not have a fully qualified domain name (FQDN) configured.
This was a complaint which caused the topology diagrams to not populate'
are you using the latest MP?
and once again about Monitoring Operations Manager from a Second Management Group, it works fine on between two 2012 management groups. We can see management servers in one management group from management server in another management group and management server appear as agent and you can monitor it.
------------------------------------
Reply:
I see no issue with 6.0.6000.3
"Site hierarchy discovery now succeeds even if a site or component server does not have a fully qualified domain name (FQDN) configured.
This was a complaint which caused the topology diagrams to not populate'
are you using the latest MP?
and once again about Monitoring Operations Manager from a Second Management Group, it works fine on between two 2012 management groups. We can see management servers in one management group from management server in another management group and management server appear as agent and you can monitor it.
Yes i am using the latest ver .03 and it only work if i installed the 32bit agent, but anyway it's not a big deal right know i will figure it later.
Regarding the RMS, now i was able to Monitor the 2012 only from the 2007 by configure the agent properties from control panel but it's of course marked as agent managed not management server .. but i'm still unable to monitor the 2007 because no agent can be configured or installed -_-
------------------------------------
Reply:
1. Yes..you can resolve this issue ...that configuration must work and Hierarchy must be discovered (some additional link to help - http://social.technet.microsoft.com/Forums/en-US/operationsmanagermgmtpacks/thread/56d89d70-f287-46f2-a605-b308da1a75b0)
2. but it's of course marked as agent managed - It's by design. If its Health State is green - it's working and no problem with scom server. But it doesnt monitor management server specific aspects (for example - System Center Management Configuration service stoped). But you will see if some critical operating services stoped on it (if OS MP installed of course)
If you need additional inf on that ...check these
http://blogs.msdn.com/b/rslaten/archive/2009/02/25/monitoring-the-monitoring-solution.aspx
3. but i'm still unable to monitor the 2007 because no agent can be configured or installed
I suppose it's a new feature of SCOM 2012.
- Edited by Alexis Yakovlev Monday, October 15, 2012 5:10 PM
------------------------------------
content organizer rules are not getting triggered automatically
my issue is content organizer rules are not getting triggered automatically. ( Its getting triggered only when i follow either observation/option #1 or #2 given below) , so i would like to know whether its known issue in SharePoint itself.
- I have created content organizer rules programmatically for a (my site collection) content type I am able to create the Content organizer rule by using EcmDocumentRoutingWeb and EcmDocumentRouterRule classes. But after creating the rule and placing the documents from Dropoff library i am getting attachd error:
Surprisingly it works using one of the two options without any modifications.
Observation 1:
Close the attached error page . Then the document is available in drop off library.
Go to Drop of library àselect the uploaded document à Edit document properties à Submit the document without changing the properties : The document moved to the respective folder.
Observation 2:
Edit content organization rule which is created programmatically created.
Save the details without changing any details.
Do this all the rules which are created programmatically.
Then upload a document to the drop off library.
Document moved to respective folder without any issues based on the rule condition.
Googled for the issue and found below mentioned resolution in many blogs:
"Then I could simply move the item to the destination library using the MoveTo method of the SPFile object:
string destUrl = destinationLibrary.ParentWeb.Url + "/" + destinationLibrary.RootFolder.Url + "/";
item.File.MoveTo(destUrl + item.File.Name, SPMoveOperations.BypassApprovePermission, false);
As mentioned this did the trick for routing documents between libraries within the same site. I read some posts saying that the MoveTo method would only copy the file/item and not the whole item (including other field values) - however, this approach worked just fine.
The SPFile.MoveTo method however does not support moving a document across sites. For that particular issue, in our case moving documents to a library of a subsite, we had to write code to copy all the item data;
byte[] fileBytes = item.File.OpenBinary();
string destUrl = destinationLibrary.RootFolder.Url + "/" + item.File.Name;
SPFile destFile = destinationLibrary.RootFolder.Files.Add(destUrl, fileBytes, false);
SPListItem newItem = destFile.Item;
foreach (SPField field in destFile.Item.Fields)
{
if (!field.Hidden && !field.ReadOnlyField && field.InternalName != "ContentType" && field.ShowInEditForm != false)
{
newItem[field.InternalName] = item[field.InternalName];
}
}
newItem.Update();
Perhaps not the ideal solution, but it seems to do the trick ;) "
I would like to know whether this is system issue or sharepoint release issue or is it known issue. I may need to write another event handler to for option 1 to fix the issue but my question why the content organizer rules are not got triggered automatically..
Please help.
Other reference links:
http://go4answers.webhost4life.com/Example/content-organizer-rules-not-applied-28924.aspx
No comments:
Post a Comment