August 18, 2011

Publishing CRM without https through TMG.

Warning : Publishing CRM through http is a great risk, because it passes credentials in plain text.


We will Publish CRM Server as following diagram:




1. Open new Web Site Publishing Rule Wizard on TMG by
Right Clicking Firewall Policy in the Left Pane => New => Web-Site Publishing Rule.
2. Supply Rule Name => Action = Allow => Publish Single Web Site or Load Balancer => Select Non Secure Connection => Mention your CRM Server name as internal site name => Select Accept requests for any Domain name => Create a new web Listener or use an existing one => On authentication delegation, choose No delegation but client may authenticate directly => Select All Users => Finish.
3. If your CRM Web Server does not use Default Web Site and uses other port number such as 5555, then Change the Bridging settings by
Right Clicking newly created Firewall Rule => Properties => Bridging Tab => Change Redirect request to this port Property to your port 5555 => Apply.
4. Change Properties of Web Listener as following screenshot:
5. Apply and Test settings. When accessing CRM from external network, you will be asked for CRM user password once only, Then you should be able to Access CRM from external network using http.

Labels:

August 16, 2011

Configure Ubuntu Server 11.04 as DHCP Server.


You may have problems while configuring DHCP Server on Ubuntu Server 11.04 because, configuration file locations of Ubuntu Server 11.04 differ from previous releases of Ubuntu. So /etc/dhcp3 directory does not exist in this release.
Run following command on Ubuntu Server 11.04 to install DHCP Server:

#sudo apt-get install dhcp3-server

This will install DHCP Server but will fail while starting service because its not initially configured.
You will have to mention what NIC it will use for DHCP Request handling.
You mention this in /etc/default/isc-dhcp-server:

# Defaults for dhcp initscript
# sourced by /etc/init.d/dhcp
# installed at /etc/default/isc-dhcp-server by the maintainer scripts

#
# This is a POSIX shell fragment
#

# On what interfaces should the DHCP server (dhcpd) serve DHCP requests?
#       Separate multiple interfaces with spaces, e.g. "eth0 eth1".
INTERFACES="eth0"
By editing INTERFACES="", you can mention NIC there. I've used eth0.

You can change DHCP Server Configuration by editing /etc/dhcp/dhcpd.conf from line number 52 like this:

# A slightly different configuration for an internal subnet.
subnet 192.168.0.0  netmask 255.255.255.0 {
  range 192.168.0.0 192.168.0.255;
  option domain-name-servers ns1, ns2;
#  option domain-name "example.com";
  option routers 192.168.0.1;
#  option broadcast-address 10.5.5.31;
  default-lease-time 600;
  max-lease-time 7200;
}

And then after you've configured the server, you start it by:
#/etc/init.d/isc-dhcp-server start

Installing Ubuntu Server 11.04 on Hyper V

Installing Ubuntu Server 11.04 on Hyper V is as same as you would do on a x64 machine or a VM on VMWare/VirtualBox. The problem is the drivers. Hyper V is obviously not going to provide drivers for Ubuntu. You can have a nice installation guide located over here for your reference:
https://help.ubuntu.com/11.04/serverguide/C/installing-from-cd.html
So if you start the installation, go as if you are normal till you encounter following warning:
Continue at this dialog box.
Let the Server install completely.
After you install and log on to the new server, edit the file /etc/initramfs-tools/modules
Type following commands at the prompt:


sudo chmod 777 /etc/initramfs-tools/modules
vi /etc/initramfs-tools/modules


After you open the file, you add following module at the end of the file:


hv_vmbus
hv_storvsc
hv_blkvsc
hv_netvsc


After you make the changes run the following command:


sudo update-initramfs –u
sudo reboot


After a reboot and logging in, you can verify that the modules are added using lsmod command.


And then you can configure the network interface using /etc/network/interface file.


Note: Make sure that you change the permissions of the /etc/initramfs-tools/modules file after you are done.

August 5, 2011

RPC Server Error, 0x8009480f Error with Certificate with TMG

You get certificate enrollment error when connecting via TMG to CA.
With an error that RPC Server is unavailable.
This happens because of strict RPC Compliance TMG Policy.
Change following to make TMG Certification request work.

Labels: