Using Ubuntu 12.04 VM's built last year on Azure. They only seem to get proper time on boot, and drift about a second a day. Is this a normal issue for Azure VM's? I know VM time drift is normal but thought Linux VM's in Azure (Hyper-V) get regular time sync from the host via integration services.
Question: How do i tell RDWeb to launch apps from remote.domain.com rather then host.internaldomain.local?
Environment:
Existing org with AD forest. New single Server 2012 running all Remote Desktop Services roles for session host. Used the new 2012 wizard to setup "QuickSessionCollection" with roles:
- RD Session Host
- RD Connection Broker
- RD Gateway
- RD Web Access
- RD Licensing
Everything works with self-signed cert, but we want to prevent those.
The users are potentially non-domain machines so sticking a private root cert for on their machines isn't an option. Every part of the solution needs to use public cert.
Added public remote.domain.com cert to all roles using Server Manager GUI:
- RD Connection Broker - Enable Single Sign On
- RD Connection Broker - Publishing
- RD Web Access
- RD Gateway
So now everything works beautifully except the last step:
- user logs into https://remote.domain.com
- user clicks a app icon, which in background downloads a .rdp file that is signed by remote.domain.com.
- .rdp is set to use RD Gateway, which is remote.domain.com
- .rdp says app is hosted on internal host.internaldomain.local, which doesn't match the RDP-tcp TLS cert of remote.domain.com, and pops a warning.
It's this last step that I'd like to fix. Is there a config option in PowerShell, WMI, or .config to tell RDWeb/RemoteApp to use remote.domain.com for all published apps so the TLS cert for RDP matches what the Session Host is using?
NOTE: This question talks about this issue, and this answer mentions how you might fix it in 2008, but that GUI doesn't exist in 2012 for RemoteApp, and I can't find a PowerShell setting for it.
NOTE: Here's a screenshot of the setting in 2008R2 that I need to change. It tells RemoteApp what to use for the Session Host server name. How can I set that in 2012?
Looking for ideas on how to troubleshoot. MY Delivery Reports in ECP or Search-MessageTrackingReport in EMS will yeild what seems like random results for both internal an external email tracking. By random I mean only a small subset will show up. I've checked C:\Program Files\Microsoft\Exchange Server\V14\TransportRoles\Logs\MessageTracking and I've got 30 days of logs in there and the emails exist in the logs, and they are in my sent items, but only a random few will show in ECP or PowerShell. I'm running Exchange 2010 SP2 without Update 1, on Windows Server 2008 R2 with SP1, single server org with all roles but edge.
For example, I've sent 4 emails in last 24hr with the word papersave in the subject line with internal and external addresses in to/cc, but ECP Delivery Reports will only show one of the 4. PowerShell will yield the exact same result of 1 for 4 buy using Search-MessageTrackingReport -Identity myuser -Subject "papersave". This was happening before SP2 as well.
On Exchange 2010 with SP1. Mailbox role on one server, CAS on another. I need to know What Outlook versions my client are using to connect, but this server is hosted and all clients are RPC over HTTP (Outlook Anywhere).
Get-LogonStatistics can give me ClientVersion, but it can only be run against mailbox role servers and shows versions like 3585.0.33038.1 and ClientName of CAS server hostname.
Any other ideas on how to find the Outlook client versions (2003/2007/2010/2011) being used through RPC over HTTP?
Wanting to make sure I've done everything I can to prevent our legitimate email from being incorrectly marked as spam by other companies:
Exchange 2010 with SP1, no major changes in 6 months.
I've run email for this particular 30-user business for nearly a decade, but the last few months their emails are starting to be caught by their customers/partners spam tools. These are human to human emails outgoing from my Exchange servers to other companies. When one or two starting saying company X or Y isn't receiving my emails I think it's a fluke, but now it seems to be up to 5 people internally having issues with 1/2 a dozen of their customers/partners on every email, sometimes just new emails, sometimes replies.
- I have a proper PTR record matching hostname
- My email domain matches MX domain name and the EHLO response
- On no blacklists according to mxtoolbox.com
- senderscore.org is all good and shows score of 100
- SPF/Sender ID setup correctly
- Exchange 2010 doesn't support DomainKeys so I'm not doing that
- No spam or marketing emails are sent from this server/IP
- All sending email is human generated
- IP is from a colo not residential ISP
- no complaints of email not getting to email providers (hotmail, gmail, yahoo, etc.)
Any further ideas? At this point all I have to say to people is "totally out of our control", unless I want to work with each company to find out their anti spam vendor and contact each one for resolution...
Thanks for any ideas!
Since the old days, ISA and now TMG have had several great features that I often want to deploy to my customers because of the enhanced functionality and security, but often the cost of an additinal server HW, Windows Server, and TMG license is too much to justify when compared to a $300-500 appliance.
Are there other gateway firewalls that can perform one or more of these application layer features:
- Pre-authenticate incoming HTTP traffic against AD/LDAP before sending packets to internal server (forms auth or basic creds popup)?
- Read host headers of incoming HTTP traffic (even on https) to a public IP and route packets to different internal servers based on that host header?
I've used Microsoft Network Monitor 3.x before for various reasons but realized today I don't know how to tell the URL inside a conversation. I've got it set for "Windows" Parser Profile and I see a list of TCP and TLS packets, but was hoping there was an easy trick to decipher the HTTP URL requested in the packet details. Fiddler isn't showing me anything for this app accessing the web so I've resorted to netmon which shows me conversations but not sure how to dig out URL's, if possible.
Have a client asking for me to move their Joomla site from register.com to bluehost.com. Is everything in the DB? I was imaging deploying a fresh Joomla at bluehost.com via SimpleScripts and importing a DB backup from register.com. Is this feasible? I'd like to overwrite Joomla app files on bluehost.com so that SimpleScripts can manage upgrades in the future. Is this the best way?
When running the update inside the Lync Server 2010 BPA, I get "an error occurred trying to access the web". I get this from Win7 client or the Lync server, both have full Internet access through router/firewall. Other BPA's and Windows Update work fine. Maybe because the tool is so new there are no updates but thought this error was unusually unfriendly.